last executing test programs:

8m38.114789569s ago: executing program 2 (id=6255):
openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000001a80)='/sys/kernel/tracing/events/vmalloc/filter\x00', 0x2, 0x0)
mmap$auto(0x0, 0x40009, 0x7, 0x9b72, 0x7, 0x28000)
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000100), 0x20400, 0x0)
io_uring_setup$auto(0x7, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0x30}, 0x1)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
fanotify_init$auto(0x65, 0x2)
pipe$auto(0x0)
dup2$auto(0x5, 0x4)
splice$auto(0x4, 0x0, 0x2, 0x0, 0x80000001, 0x9)
write$auto(0x6, 0x0, 0x100000001)

8m37.206659096s ago: executing program 2 (id=6260):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
madvise$auto(0x0, 0xffffffffffff0004, 0x19)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = io_uring_setup$auto(0x100, 0x0)
mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
madvise$auto(0x0, 0x200007, 0x8)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
ioctl$auto_KVM_GET_MSRS(r1, 0x4008ae89, &(0x7f0000000040)={0x2, 0x0, [{0x1fc, 0x400, 0x2}]})
mmap$auto(0x0, 0xa, 0xdb, 0x9b71, r1, 0x8000)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
ioctl$auto(r2, 0x4b30, 0x9)
r3 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/pcmC1D0c\x00', 0x88000, 0x0)
ioctl$auto_SNDRV_PCM_IOCTL_DRAIN2(r3, 0x4144, 0x0)
r4 = openat$auto_ftrace_event_format_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000640)='/sys/kernel/tracing/events/vmalloc/alloc_vmap_area/format\x00', 0x40, 0x0)
pread64$auto(r4, &(0x7f0000000100)='/sys/kernel/tracing/events/vmalloc/alloc_vmap_area/format\x00', 0x100000001, 0x101)

8m36.743896351s ago: executing program 2 (id=6263):
r0 = openat$auto_ima_measurements_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000040), 0x2400, 0x0)
pread64$auto(r0, &(0x7f0000000000)='\x00\x80_\x93gX\x90\x8cA;O0\x03\xcab\xa6\x8bU/t\xc5', 0xd56c, 0xa84)
mmap$auto(0x5, 0x20007, 0xfffffffffffffffe, 0xeb4, r0, 0x8000)
sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f00000002c0)=ANY=[@ANYRES64=r0, @ANYRES16=0x0, @ANYRES64, @ANYRESHEX=r0], 0x2c}, 0x1, 0x0, 0x0, 0x40000}, 0x20008810)
mmap$auto(0x0, 0x4020009, 0xe3, 0xfffffffffffffffb, 0x401, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
madvise$auto(0x2, 0xffffffffffff0001, 0x15)
munmap$auto(0x2, 0x1a525c0f)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0x8000, 0xd4, 0x1, 0x6, 0x0, 0x1, 0x2, 0x2, {0x100000003, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x1008000, 0x0, 0x80000004, 0x100000001, 0x7, 0xa747, 0xdeaf, 0x804})
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x42, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0xb03840, 0x0)
sendfile$auto(r2, 0xffffffffffffffff, 0x0, 0x1)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
r3 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000800), 0xffffffffffffffff)
sendmsg$auto_MACSEC_CMD_DEL_RXSA(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000200)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="25da24261f28e9b9a2da89f742cd01002abd3000fcdbdf250800734aa1408a54b76b3c032ac34de68d9f2840c27a82d4e8eaba5f9700cf5f160259ba67b134063192ccd74ad85ed65b6ee197108bfa8eb48bd16b757cd9d3d94c0db3895e15eeb471a5221d60b386d55a582a5bb15de5542693fb2ef1b02034a42e04661bf9c011cff0b477b982a7529734d45ff1a46536974932", @ANYRES32=r1, @ANYRES64=r1], 0x24}, 0x1, 0x0, 0x0, 0x844}, 0x0)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000340), 0xffffffffffffffff)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2b, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x3}, 0x55)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/mm/hugepages/hugepages-2048kB/resv_hugepages\x00', 0x40200, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000000180)=""/78, 0x4e)
setsockopt$auto(0x3, 0x6, 0x15, 0x0, 0xfb3)
mbind$auto(0x0, 0x800605, 0x8003, &(0x7f0000000100)=0xfffe, 0x3, 0x3)
socketcall$auto_SYS_SOCKET(0x1, &(0x7f0000000140)=0x5)

8m35.810404303s ago: executing program 2 (id=6265):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/sctp/remaddr\x00', 0x2b00, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6)
pread64$auto(r0, 0x0, 0xf469, 0xbc3ab41)
close_range$auto(0x2, 0x8, 0x0)
socket(0x25, 0x1, 0x58)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket(0x2, 0x1, 0x84)
r1 = socket(0xa, 0x801, 0x84)
listen$auto(r1, 0x3)
getsockopt$auto(r1, 0x84, 0x6d, 0x0, &(0x7f0000000280)=0x1000c0)
bind$auto(r0, &(0x7f0000000040)=@l2tp={0x2, 0x0, @rand_addr=0x64010102, 0x2}, 0x6a)
mmap$auto(0x0, 0x5, 0x4000000000df, 0xeb1, 0x401, 0x8000)
connect$auto(0x3, 0x0, 0x54)
sendmmsg$auto(0x3, &(0x7f00000000c0)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
setfsuid$auto(0x1)
rseq$auto(&(0x7f0000000040)={0x1, 0x9, 0xd2c8a8c, 0x8, 0x0, 0xafb7, "5249b83db6d481689c965f1eebbc882263f00aa63eff5a3ed9062facfd290b8828c7e15c2632a54697f07b54bbfe1e3d0ba2be34568b5814da485e9bc5fdcf958047aadad1189f7608a0f56b150385d62c35b778893ee43ac988b46197aeaf1ede650815cb3d7188922e7c639a4f2e50b2708099603b22daef8e7847dad0bd1980c3a415947ca94d262ca53df02e1aa17b1f6430cc9e2c71bc22cdc24aa58b23d954ce6074fdd7d6477eff88c2a1daeb65442e80a8ada89a2cff68ad04a711df2b3772e448ee36e3ce78a4221b205ff2d355489c2f26dd8ef700"}, 0x8, 0x0, 0x3)
r3 = ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
mseal$auto(0x5, 0xe, 0x80000000)
ioctl$auto_USBDEVFS_SUBMITURB(r3, 0x8038550a, 0x0)
r4 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$auto_VHOST_SET_FEATURES(r4, 0x4008af00, &(0x7f00000000c0)=0x4000000)
unshare$auto(0x40000080)
write$auto(0xca, &(0x7f0000000400)='\x04>\x00\x19\xa4\xd2\xc3\xec&9\v\xbc\xdein\xe1G8\x02\x18\x00\x00\xd3b\x01\xbd\x9b@\xb0\x00\x00\x00\x84\xa2\\\x15\xc4>\xa9\x82,\x95\xeeH\xf8}v\xb3\xcb(\xa90Abe\xc3\x8c\xcc\xe7\xb8\x00F\x89#\xb4\xf0F\xa1GH\xb5\x8f\x9dZ~\xea\xa3\x93\xc2\x04\xe1;b\x99\x97}Z\x7f\x0f\x90\xce\x85-e\xb6n\xbc\xc6=\xf8\xce\xe7\x1e]\x85|\xce\xd7L\x9b\xd3lb\xc5\xee\xdb\xcb\xbb\xd8\xd9\xd3\xf8 \xe9e\xe5\x80\x1c7B+]\\!\xcej}H\x03x\x83Z\x98\xb8\t\xde\xd4\xf5\xf32\xccR\xaa\xdd\x16\xab\xd8\x1d\"\xc7\xa5\xe1k\x1d\xd9k\xc6\xb2\xa7\x97\x9a\xf6\xfe\xef\x1a\xbd\xcb\xb8*\x8b9\x00R\xe9)?Em\xb2\xac\xd1\xf6\xff\xc1\xc7\xbdl\xa2+tI\xa3\xa8\xabVe\x87\xa9\xae9\x82\xd2.SCt\xcc\x8c7\x7f\xdc\xc3\xfb\x94\xfc\xdfc+\x04\xfb\xf5$\xecO1@\x99l;\xd3X\xd5\"\xec\x17hR\xc5\x99\x8b\x9f\xf3\xf48%\xfa\xf2\x1d\xc5\x10T\x83p\x0flzM\xa6\xab\xde!T\x9bG\x19\x9680\xd7]\x83{\x81\xdei\xd2\xfc\xfd=3K\xc3\xfe\x12\x98\x8b\xbe\xd1+\xc4r\x7f\x8f5\xcc\xa6\xd8>k\xcc\xee\xe0\x9bW\x0e\xc63\x84^\xde`\xd2\xe8\xfc\x02\xef\xa4\xdc\xd0?9D\x1c\x1b\x1b\xd5\xcb\xfb\x03I\xc9\x97\xac#\x0ee\xc8ltL\x88\x17m~aA%\xd3\xaf\xaa6hf\x9b\x83\x02A\xb0\xf6\x14\xb3\x18B\xfd\x9ai\xf8j \a\x1es\xa3U\x98sqq,\xd2A4?l\xa2\x9c\xc9\x9fa\xe8\x99qw\xf3\x18\x12R\x00\x00\x00', 0x100)
close_range$auto(0x2, 0x8, 0x0)

8m35.662542195s ago: executing program 2 (id=6266):
madvise$auto(0x0, 0x8000000000000000, 0x34)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2b, 0x1, 0x0)
ioctl$auto(0xffffffffffffffff, 0x64c8, 0x1e2)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000000)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
unshare$auto(0x40000080)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x10004)
mmap$auto(0x0, 0x4, 0x2, 0x9b72, 0x2, 0x0)
prctl$auto_PR_GET_TID_ADDRESS(0x28, 0x2, 0x0, 0x0, 0x40)
setsockopt$auto(0x3, 0x6, 0x3, 0x0, 0xd)
openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/tracing/per_cpu/cpu1/trace\x00', 0x1a6b75d63882a712, 0x0)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0)
openat$auto_bm_status_operations_binfmt_misc(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, 0x0, 0x800, 0x0)
write$auto(0x3, 0x0, 0xfffffdef)

8m34.59976886s ago: executing program 2 (id=6274):
mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
ioctl$auto_SNDCTL_DSP_SETFRAGMENT(0xffffffffffffffff, 0xc004500a, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
timer_create$auto(0x9, 0x0, 0x0)
getcwd$auto(0x0, 0xffffffffffffffff)
r0 = signalfd4$auto(0xffffffff, 0x0, 0x8, 0x0)
read$auto_l2cap_debugfs_fops_(r0, &(0x7f0000000240)=""/177, 0xb1)
memfd_create$auto(&(0x7f0000000040)='A^^\x02\x00\xef\x97\x8aY\x00\x00\xd2\x8c\xb05\x03\\\xb2\xbf247{\xde\t8\f\x00\x00\v\x00\x82\xcc\"K\xe1IIT\x00'/54, 0x5)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0)
open_by_handle_at$auto(0xffffffffffffffff, 0x0, 0x2)
fallocate$auto(0x3, 0x0, 0xe, 0x8ec5)
rt_sigprocmask$auto(0x0, &(0x7f0000000000)={0xfffffffffffffe01}, 0x0, 0x8)
timer_settime$auto(0x0, 0x3, &(0x7f00000000c0)={{0x26b, 0x4}, {0x0, 0x83}}, 0x0)
mmap$auto(0x0, 0xffffffff, 0x8e, 0x9b71, 0xffffffffffffffff, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
gettid()
syz_clone3(0x0, 0x0)
writev$auto(0xffffffffffffffff, 0x0, 0x3)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
move_pages$auto(0x1, 0x400000000f54, 0x0, 0x0, 0x0, 0x8000000000000000)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/conf/gre0/dad_transmits\x00', 0xd0181, 0x0)
write$auto(r1, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x3, 0xff)
socket(0xa, 0x801, 0x84)
openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000002040)='/dev/snd/pcmC1D1c\x00', 0x80, 0x0)
getsockopt$auto(r0, 0x0, 0x5, 0xfffffffffffffffe, 0x0)
getpgid(0x0)

8m18.916159678s ago: executing program 32 (id=6274):
mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
ioctl$auto_SNDCTL_DSP_SETFRAGMENT(0xffffffffffffffff, 0xc004500a, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
timer_create$auto(0x9, 0x0, 0x0)
getcwd$auto(0x0, 0xffffffffffffffff)
r0 = signalfd4$auto(0xffffffff, 0x0, 0x8, 0x0)
read$auto_l2cap_debugfs_fops_(r0, &(0x7f0000000240)=""/177, 0xb1)
memfd_create$auto(&(0x7f0000000040)='A^^\x02\x00\xef\x97\x8aY\x00\x00\xd2\x8c\xb05\x03\\\xb2\xbf247{\xde\t8\f\x00\x00\v\x00\x82\xcc\"K\xe1IIT\x00'/54, 0x5)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0)
open_by_handle_at$auto(0xffffffffffffffff, 0x0, 0x2)
fallocate$auto(0x3, 0x0, 0xe, 0x8ec5)
rt_sigprocmask$auto(0x0, &(0x7f0000000000)={0xfffffffffffffe01}, 0x0, 0x8)
timer_settime$auto(0x0, 0x3, &(0x7f00000000c0)={{0x26b, 0x4}, {0x0, 0x83}}, 0x0)
mmap$auto(0x0, 0xffffffff, 0x8e, 0x9b71, 0xffffffffffffffff, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
gettid()
syz_clone3(0x0, 0x0)
writev$auto(0xffffffffffffffff, 0x0, 0x3)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
move_pages$auto(0x1, 0x400000000f54, 0x0, 0x0, 0x0, 0x8000000000000000)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/conf/gre0/dad_transmits\x00', 0xd0181, 0x0)
write$auto(r1, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x3, 0xff)
socket(0xa, 0x801, 0x84)
openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000002040)='/dev/snd/pcmC1D1c\x00', 0x80, 0x0)
getsockopt$auto(r0, 0x0, 0x5, 0xfffffffffffffffe, 0x0)
getpgid(0x0)

10.451506822s ago: executing program 3 (id=10505):
mmap$auto(0x0, 0x7, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'xfrm0\x00'}) (async)
r1 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0)
ioctl$auto_PPPIOCSMRU(r1, 0xc004743e, 0x0) (async)
open(&(0x7f0000000100)='./file0\x00', 0x10400, 0x0) (async)
r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f000001f300), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYRES32=r2], 0x1ac}}, 0x40000)
ioctl$auto_PPPIOCSPASS(r1, 0x40107447, &(0x7f00000000c0)={0x9, &(0x7f0000000000)={0x30, 0xff, 0x0, @raw=0xfffff004}})

9.551812352s ago: executing program 3 (id=10513):
io_uring_setup$auto(0x1, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
openat$auto_tracing_err_log_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/error_log\x00', 0xb01, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000200)='/dev/tty53\x00', 0x200, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/midiC2D0\x00', 0x109302, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0x7, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x0, 0x1, 0x2, 0x3, 0x95f4da0a, 0xefffffffffffffff, 0x3, 0x62, 0x80000001, 0x10000000000004, 0x6d40, 0x1, 0x2, 0xfffffffffffffffe]}, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = socket(0x2b, 0x1, 0x1)
setsockopt$auto(r1, 0x1000, 0x4, 0x0, 0xf76)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1c001b"], 0x1ac}}, 0x40000)
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="1a00"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x20000800)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000140)={[0x1ff, 0x7, 0xc45d, 0x80, 0x6, 0x3, 0x2, 0x3, 0x3, 0x62, 0x80000022, 0x7, 0x6d3e, 0x2000000004000009, 0x2, 0x6]}, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0xeb1, 0x0, 0x8000)
ioctl$auto_SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045002, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r2 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0)
ioctl$auto(r2, 0x5522, 0xf15)
ioctl$auto(r2, 0x5523, r2)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0x0, 0x0)

6.28824802s ago: executing program 0 (id=10523):
socket(0x2, 0x3, 0xa)
connect$auto(0x3, 0x0, 0x54)
r0 = openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x180b01, 0x0)
mmap$auto(0x0, 0x400008, 0x3, 0x9b72, 0x2, 0x8000)
write$auto(0x4, 0x0, 0x100082)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0xa00, 0x0, 0xfffffffffffffffd)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS0\x00', 0x1, 0x0)
ioctl$auto(r1, 0x5408, r1)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/pci/00/01.3\x00', 0x48041, 0x0)
write$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f0000000240)="1c520b214b197e", 0x7)
unshare$auto(0x40000080)
socket(0xa, 0x1, 0x84)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x8081, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
open(&(0x7f0000000140)='./file0\x00', 0x40, 0xa2)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
fadvise64$auto_POSIX_FADV_SEQUENTIAL(r0, 0x40, 0x3, 0x2)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/igmp\x00', 0x100, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x40102, 0x0)
pread64$auto(r3, 0x0, 0x40000000f42c, 0x585)
write$auto(0x3, 0x0, 0xfffffdef)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
unshare$auto(0x7)
socket(0xa, 0x2, 0x3a)
mmap$auto(0x0, 0x20005, 0x1ff, 0x17, 0x8000000000000024, 0x9)
fanotify_init$auto(0x2208, 0x2)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)

4.282933912s ago: executing program 0 (id=10527):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket(0x29, 0x2, 0x0)
r1 = socket(0x10, 0x2, 0x0)
sendmsg$auto_ETHTOOL_MSG_DEBUG_SET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x200408a4}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x40040)
recvmmsg$auto(r1, &(0x7f0000000140)={{0x0, 0xfffffffe, 0x0, 0x5, 0x0, 0x200002, 0x8}, 0x801}, 0xfffffff9, 0x10, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_SET_WIPHY(r0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x18400}, 0xc, &(0x7f00000001c0)={&(0x7f0000001e40)={0x158c, r2, 0x200, 0x70bd27, 0x25dfdbfb, {}, [@NL80211_ATTR_FILS_ERP_RRK={0x7, 0xfc, "4f37a1"}, @NL80211_ATTR_INACTIVITY_TIMEOUT={0x6, 0x96, 0x34d}, @NL80211_ATTR_TID_CONFIG={0x1468, 0x11d, 0x0, 0x1, [{0x10b8, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x40}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0xf8}, @NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0x3}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x1084, 0xd, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x6b, 0x3, "146f69959514e1396da4416e39c663511662f9694fdab002a9dc691ee06a5272b0d93366926bb1c742a8c628939036f057fbf93d4065e0d036a8cc74c43a32617db3fbb6d4e66f5db74965ef8818b18dc7ee1859bb067232178f7309e22d68637b326e0ec41632"}, @NL80211_TXRATE_HE={0x1004, 0x5, "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"}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x7}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x3}]}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x4}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5, 0x9, 0x8}]}, {0x3ac, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE={0x1f0, 0xd, 0x0, 0x1, [@NL80211_TXRATE_HE={0xd3, 0x5, "b363bafc967bfe980ede7f7c9a0049001f8b90012218c0c4b7ec1f883ea349c0d2902b16f94d3e4c55aa4c2c2b8cbd36c2bda7972869f2d7204ad7b4851680ab8e46ecdc4f28b5d89f513a9919d68ef76f8c59b3b5a106e996207d7b5a9adc9ea885f5543c5ef553232e91b77d44f2fb42033946f48358600b8d465c64a8470dc366ea4f874dbe21a0cb73da3fbe82d805b40ae3d8582039fd1c9368e92a1975dbf9cf4e4294b77d41c6b1b2b11c6a74b7236550c6e7b904c472ef988c40e0560ea22e50dc070fc0ed1042ec9c97d8"}, @NL80211_TXRATE_HE={0x21, 0x5, "b3fb3de6fed4c39e2301dfabc13cdc08dcbeb4771329261a8338453f83"}, @NL80211_TXRATE_VHT={0x4}, @NL80211_TXRATE_VHT={0xed, 0x3, "ede97cfc957add2b0266fa7d48b86621cc5f56084903e799f554b1233495df88a8824777aaf2a1ee1fb5d0b3ee53f92014899d7b19e2c91479c69bb2095304b29e2d42d9fa40e13071ddfc6e9a5c448a7dc03dba0cb9b3192f4a4e1de8073c28a9064ae757fb4b22d920a6dbb018fa9cf0f71242f5969ce052f64f726bbd63277b8c25582ae0d168fdabafc0e05d7e2ddb850700f7af469dab62eb8091133fc71855caf169773cb827a0fd01549ec4faa60940ea4c5b2937939c041ddc2a549aa3a2b87e4026a4cfbf9659f2ed9f4266266c863a36d773a798ee5bf2d9604d9b31842f5f0d8b55bfbe"}]}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x4}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0xd0, 0xd, 0x0, 0x1, [@NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x5}, @NL80211_TXRATE_VHT={0x41, 0x3, "59300cfca9e9e49f733fc576d0b82bfa46acd98289541680a5e5854376d2d8ef070079d8790ded9ed1928c711fbfb7327cd5a83b6fb560c48501a95fd4"}, @NL80211_TXRATE_HE={0x58, 0x5, "0a1730523c0ce8a2ceaeb2a51f8d87fbb8907de615e45f593123f7b6a235b2b13d29cd9982088628c892dbe87a130ce6900dc563efbc435cc3883d59eee4da2ca8a09b9f9649215e3d4accf0534ac4401df58774"}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x9}, @NL80211_TXRATE_VHT={0x1d, 0x3, "abe9cdbf88e123a51f1843a1bdc17a7dae39a1994f8f363e89"}]}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0xfd}, @NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0x81}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0xc0, 0xd, 0x0, 0x1, [@NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x5}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x3}, @NL80211_TXRATE_HT={0x35, 0x2, "e475f8bcc29c4275caafd77e68e465ff515478699e5304adb994e56abc344fe4241234d06e988270e05396d418fe090701"}, @NL80211_TXRATE_HT={0x3f, 0x2, "177e913cec7902f6a3033d60d74dd18cc2d27138335c9bbf0e3b89204f99dc7b48be47e8e2499013a4377515200c95cb26f9d21eca442d834b8fee"}, @NL80211_TXRATE_HT={0x2b, 0x2, "bfb03a6dfa9e3b2a0663615d63790ab0086f3f3ccd8a6933c1b744fc195c10d0ccf93fa2202202"}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x4}]}, @NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0x3}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x10}]}]}, @NL80211_ATTR_VIF_RADIO_MASK={0x8, 0x14d, 0x4}, @NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES={0xf6, 0xbe, "6447987293774b2998ab9285ccda6a0d15d92935543882ead2ba3fd0d2959ea7a8de8b04fdcc7e230f7beacb20d05ad095b4b94be30ce037243d28a2b17e9d0b16f6bd163a077071b81868b53f8e36e5f17d867b7e58485d379ee8fd5af4b3e4a98ec35b37c4d706c01c0f4fd67caf9944c8ba6b2b8e4f4802c19bfa0557b561a9463a63ee67ee6642864eef1a39ba36132c734b3606ecfb5616e80086e944b0331eff05ac090aeb6fa2d6f53e742f2512774a4c59db32bcf43682125c029eb5037f714ffc340b9721272ff76e4a5f126f316ca4c19f5eb930a1a1df9115975769b9f8ade6fb8cebb6fe54bc649a597f7332"}]}, 0x158c}, 0x1, 0x0, 0x0, 0x814}, 0x8040)
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000480)='/proc/self/maps\x00', 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x11, 0x800, 0x2)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x4, 0x300000000000)
get_mempolicy$auto(0x0, 0x0, 0x3, 0x1ff, 0x3)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
r4 = prctl$auto_PR_SET_MM_END_CODE(0x4, 0x2, 0xffffffffffffffff, 0x7, 0x8000)
write$auto_tty_fops_tty_io(r4, &(0x7f00000003c0)="5e2cf5cb25e8ed52ee0b47e27b6cb68b8f6fd0d0cfc5f2939e6637ade5c8967184d77e4ab557563194acb8d03a01cc528aea0993492858b74aee9fa2ced7436afe7c84fd44c9284f937c40093d6f213b0d95b71268b0cd614e01288be9e994cce89b7deba3b059415ec2dfcc6e0421eee6b8a113ea6ffa30b8f6058319e6e236150040f02b0f67cd80d2b4a0aaef12418c21b8604392824970964c18ed1cf456fcb74a476c3365", 0xa7)
read$auto(r3, 0x0, 0x20)
r5 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r5, &(0x7f0000000200)={0x0, 0x7}, 0x3)
r6 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
write$auto_console_fops_tty_io(r6, 0x0, 0x0)
sendmsg$auto_NL80211_CMD_SET_QOS_MAP(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="20002bbd7000fedbdf25680000000c00311c0004008c00080023010004000000000000"], 0x2c}, 0x1, 0x0, 0x0, 0x20040041}, 0x8000)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001d00), 0xffffffffffffffff)
sendmsg$auto_NBD_CMD_CONNECT(r7, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000000280)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="010023bd7000fadbdf2501000000040007800c00020005000000dd00000008000100232e0000", @ANYRESHEX=r5], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x8880)

4.259325866s ago: executing program 3 (id=10529):
unshare$auto(0x40000080)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
getsockopt$auto(0x3, 0x200000000001, 0x1e, 0x0, 0x0)
mmap$auto(0x0, 0x402000b, 0xdf, 0xeb1, 0x401, 0x8000)
getsockname$auto(0x3, 0x0, &(0x7f0000000d40)=0x4)
r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/dummy0/stable_secret\x00', 0x100, 0x0)
ioctl$auto_dma_heap_fops_dma_heap(0xffffffffffffffff, 0xfffffffffffffc00, &(0x7f0000000100)="a2b36d0449473b7bcbcd6d7f6186e9de29e708c62b9db37658c96e1ed364c5d867daa7438de65e6d2aa369df7e32e2c897c4bd029f0845c6b5196ced8ef9b1a53b4011ed14a904f19072629f7cc6ed922acba72edc667e917861d1e7dc8a72ee61bc9cca5caba2a46a9b0656a4da3fcde3")
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0)
read$auto(r2, 0x0, 0x20)
mq_open$auto(&(0x7f0000000200)='\\*)A\x00', 0x83, 0x9, 0x0)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0)
writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3)
write$auto(r0, &(0x7f00000000c0)='-+\\\x00', 0x6)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), 0xffffffffffffffff)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r4 = openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000de, 0xeb1, 0x401, 0x8000)
socket(0x2, 0x5, 0x0)
bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0xb, 0xb5, 0x10, 0x4, 0x53000000, r1, 0x9, "2af051b26b658a20d8dc6b36c83ce63f", 0x0, 0xffffffffffffffff, 0x9, 0x2, 0x4f4, 0x5}, 0x10)
r5 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/028/001\x00', 0xa901, 0x0)
get_robust_list$auto(0x1, 0x0, 0x0)
ioctl$auto_USBDEVFS_SUBMITURB32(r5, 0x802c550a, &(0x7f00000001c0)=ANY=[@ANYBLOB])
ioctl$auto_IMADDTIMER(r4, 0x80044940, 0x0)
unshare$auto(0x40000080)

3.875967524s ago: executing program 4 (id=10531):
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video36\x00', 0x8a603, 0x0)
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/vm/mmap_min_addr\x00', 0x101302, 0x0)
r1 = openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000003b80)='/proc/stat\x00', 0x0, 0x0)
preadv$auto(r1, &(0x7f0000009180)={&(0x7f0000008180), 0x7}, 0x26, 0x80, 0x5)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
sendmmsg$auto(r1, 0x0, 0x9, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x100e980, 0xdf, 0xe30, 0x401, 0x8000)
openat$auto_uprobe_events_ops_trace_uprobe(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/uprobe_events\x00', 0x400, 0x0)
get_robust_list$auto(0x0, &(0x7f0000000200)=&(0x7f00000001c0)={{}, 0x8, &(0x7f0000000180)}, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
io_uring_setup$auto(0x8, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x100)
mmap$auto(0x7fff, 0x400008, 0xda, 0x9b72, 0x2, 0x480000000008001)
mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, r0, 0xc000)
getrandom$auto(0x0, 0x6000000, 0x3)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
write$auto(0x3, 0x0, 0xfffffdef)
write$auto(0x3, 0x0, 0xfffffdef)
mmap$auto(0x0, 0x400020009, 0x10000000000df, 0x13, 0x8000000401, 0x7fffffffffffffff)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
fstat$auto(r2, &(0x7f0000000100)={0x4, 0x1a0000000000, 0x7f, 0x77d508f7, 0xee01, 0xee01, 0x0, 0x8, 0xa6ee, 0x8, 0x100000000, 0x8787, 0x7fffffff, 0x10, 0x7, 0x4, 0x7})
semctl$auto_SETALL(0x2, 0x6, 0x11, 0xb1c)
r4 = socket(0x15, 0x5, 0x0)
getsockopt$auto(r4, 0x114, 0x271f, 0xfffffffffffffffc, 0x0)
writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3)

3.408112628s ago: executing program 1 (id=10533):
mmap$auto(0xfffffffffffffffb, 0x2, 0x100000021, 0x400009b75, 0xea8a, 0x8000)
socket(0x2, 0x3, 0x2)
setsockopt$auto(0x3, 0x0, 0xc8, 0xfffffffffffffffc, 0x4)
mmap$auto(0xd733, 0x8000, 0x80000001, 0x1e, 0xffffffffffffffff, 0x2080000000001)
open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100)
r0 = open(&(0x7f0000000040)='./file0\x00', 0x1ebe02, 0x61)
mmap$auto(0x0, 0x11, 0xdf, 0x9b72, r0, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
r1 = openat$auto_tracing_free_buffer_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/free_buffer\x00', 0x20103, 0x0)
writev$auto(r1, &(0x7f0000000100)={0x0, 0x400000000000fdf1}, 0xd39)
ioctl$auto(0x1, 0x800, 0x8)
syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000001500), 0xffffffffffffffff)
sendmsg$auto_NET_SHAPER_CMD_GROUP(0xffffffffffffffff, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='L\x00\x00', @ANYRES32, @ANYBLOB="010029bd7000fedbdf25040000000c000180080001000100000004000a8008000800", @ANYRES32], 0x4c}, 0x1, 0x0, 0x0, 0x44000}, 0x14)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001f00), r2)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r3 = io_uring_setup$auto(0xf, 0x0)
fsconfig$auto(r3, 0x5, 0x0, 0x0, 0x0)
sendmsg$auto_NBD_CMD_STATUS(r2, &(0x7f00000023c0)={0x0, 0x0, &(0x7f0000002380)={&(0x7f0000002000)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x40005}, 0x4008050)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
io_uring_setup$auto(0x406, 0x0)
mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x80000001, 0xdf, 0x9b72, 0x2, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x5, 0x0)

3.322654363s ago: executing program 0 (id=10534):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @private=0xa010100}, 0x6a)
r0 = socket(0x2, 0x5, 0x0)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[@ANYBLOB="53137cb56590fa292e52f8c81479da2220000000", @ANYRES16=0x0, @ANYBLOB="000325bd7000ffdbdf25030000000c000b000600000000000000"], 0x20}, 0x1, 0x0, 0x0, 0x1080}, 0x4000000)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0xff80}, 0x7, 0x0, 0x2, 0xb}, 0x40000fff}, 0x5, 0x7fffffff)

3.04340739s ago: executing program 4 (id=10535):
socket(0x2, 0x3, 0xa)
connect$auto(0x3, 0x0, 0x54)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x1, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb5, 0x401, 0x300000000000)
prctl$auto(0x16, 0x2, 0x2, 0x4000000d, 0x100)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/usb/usbmon/9t\x00', 0x0, 0x0)
pread64$auto(r0, 0x0, 0x59, 0x7)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/adsp1\x00', 0x1, 0x0)
fanotify_init$auto(0x200, 0x2010000000000)
socket(0xa, 0x3, 0x3a)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x6, 0x0)
setsockopt$auto(0x400000000000003, 0x29, 0xcc, 0x0, 0x567)
ppoll$auto(0x0, 0xc, 0x0, 0x0, 0x8)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x8000, 0x0)
ioctl$auto_TIOCGSERIAL2(r1, 0x541e, 0x0)

2.973452688s ago: executing program 0 (id=10536):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) (async)
capset$auto(&(0x7f0000000540)={0x1998032f, 0xffffffffffffffff}, 0x0) (async)
sendmsg$auto_TIPC_NL_PUBL_GET(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000001740)={&(0x7f00000003c0)=ANY=[], 0x1368}}, 0x20000) (async)
pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRNM\x99\x86\xdde\x1cJ\x99\x00\x00\x00\x00\x00\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbe\x01\x00\x00\x00\'\x03\x00\x00\x9f\x1e\xf9\xa4*\x01\x00\x00\x00^B\xb8\xe4j\t3\xe4\x90\xcc\x9d\xc5\x0fo\x84\xf4\x89\v\xea\x1b\x95\xafQ;CL\"\x01@\x00\x00\x00\x00\f\x00\xc0\x13\xc8\xe2\xae\xf5\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8d\x81\x81O*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,8\x93\xba\x88\x93\x9d\xb6\x1a\x7f\xc0%\xb0\x83ROJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd6eWj\xdc\xac\x88\xf0\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\xfb\xba\xb2.$\'\x1e\x82\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00\x00\xff\xff\x00'/250, 0xfdf3, 0x6) (async)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x82000, 0x0) (async)
r0 = socket(0x15, 0x1, 0x100)
getsockopt$auto_SO_RCVPRIORITY(r0, 0x2, 0x52, 0x0, &(0x7f0000000240)=0x7) (async)
socket(0x1e, 0x1, 0x0)
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0) (async)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) (async)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x3, 0xe, 0x2, 0x948b, 0x3, 0x9, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x0, 0x9, 0x2, 0x5]}, 0x0) (async, rerun: 32)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) (async, rerun: 32)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) (async, rerun: 64)
openat$auto_cachefiles_daemon_fops_internal(0xffffffffffffff9c, &(0x7f0000000340), 0x58080, 0x0) (rerun: 64)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) (async)
mmap$auto(0x8, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async, rerun: 64)
close_range$auto(0x2, 0x8, 0x0) (async, rerun: 64)
sendmsg$auto_HWSIM_CMD_GET_RADIO(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="1dc03387096854c362e6fb00ad3b8c3de1777d593bdf011a437da1080df252d019f632ff7049cb63a1a3812d62598bf1b3561c59", @ANYRES16=0x0], 0x28}, 0x1, 0x0, 0x0, 0x44000}, 0x40000d0) (async)
socket(0x10, 0x3, 0x6) (async)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) (async)
pwrite64$auto(0xc8, &(0x7f0000000180)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\x00/\x00\x00\x00\xfd\xfdX\xd3\x1d\xf8\xbebZ\xddL\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x88\v\xae\xa9i8W\xe5\x00!\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00v\xd9\xe5H.-\x14\xee\xbc\xae\xe1\x85\xb2b\xd42\x89\x05e\x03z\xe6q\xcd\x91\tM\xd2\x90\xc91\xd9\x86\xe4\x8e\x0fI\xf0b2\nfa\xb8\x1a\xdb\xaa0P\xca\xb2W\xe3\x14\xb9Cx\x0e4\xc9\xb4\xdc4\xe3\x8f\x1c\xa5\x89\x8d\x84V\x97dg \x9f\xcd\x8fA\x16\x01\xc5.\x7fG\x86L\xa4\xd6h\xea\x11x\xce\x96t\xc7~# )\x8c6\x06\xd7\xfcu\x8c{t\xa5\x92JW\x8b\xb3Oj%\xb5H\x91F\x1b\x01\xef\x0e\xc5\xac\xcfK\xd5\x98\xce\xd6?\t\xa8\xb7\xce\x87\xdb\xb0\xaa\x8al8qF\re\xa7\xda\x1f\x9ad\b!\xddBD\xd9', 0x40, 0x1000) (async)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) (async)
mmap$auto(0x0, 0x6, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) (async)
socket(0xa, 0x1, 0x100) (async)
r2 = socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000740), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'netdevsim0\x00'})

2.890343597s ago: executing program 1 (id=10537):
mmap$auto(0x0, 0x2020009, 0x126, 0xf8, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mprotect$auto(0x200000000000, 0x806121, 0x4000000000008)
io_uring_setup$auto(0x1, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0)
pipe$auto(0x0) (async)
pipe$auto(0x0)
r1 = openat$auto_regulator_summary_fops_(0xffffffffffffff9c, &(0x7f0000000080), 0x401, 0x0)
close_range$auto(r1, 0x8, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/bpq3/statistics/tx_aborted_errors\x00', 0x111000, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0) (async)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
mmap$auto(0x0, 0x8, 0x80000000000000df, 0x10004000eb1, 0x8, 0x8000008000) (async)
mmap$auto(0x0, 0x8, 0x80000000000000df, 0x10004000eb1, 0x8, 0x8000008000)
socketpair$auto(0x1e, 0x5, 0x3, 0x0)
close_range$auto(0x2, 0x8, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x155) (async)
open(0x0, 0x22240, 0x155)
socket(0xa, 0x1, 0x84) (async)
socket(0xa, 0x1, 0x84)
uname$auto(0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
r3 = socket(0x2, 0x801, 0x84)
getsockopt$auto(r3, 0x84, 0x2, 0x0, 0x0) (async)
getsockopt$auto(r3, 0x84, 0x2, 0x0, 0x0)
setsockopt$auto(0x3, 0x10000000084, 0x64, 0x0, 0x1c)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$auto(0x3, 0x4048aec9, r0)

2.383852626s ago: executing program 1 (id=10538):
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000240)='/proc/self/net/rpc/nfs4.nametoid/channel\x00', 0x8200, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000026d00)='/dev/dri/card1\x00', 0x2000, 0x0)
pivot_root$auto(0x0, &(0x7f00000004c0)='/\x00\xf5\xdf\xeb\xa1\xb1\xccYE\x92\x0e\xf1\xb6?S\xad\xdeiN\xc0\xb6\xa7>\x95\x1e\xdd\x03;t}\"\x01\xbf\an4>j<\xcb\xe0n\xa1\xae\xf7;\xf5\tJ\xb0\x95\xd5\x96\xae(\xd2\x06\xa7\xc2o\xe25\x8b\xe4\xac\x87\x98NAe\xf0\xf1\xd9\xd36\x98\x86\xca\xf6\xf8\xd0/\x1f\xb3\xe4N\xc0\x06\'\x11\x8a\xe108N/\xcc\x1f\xa9\xd0\xac\xf2\xf5\x90\xbbO\xcc\xa9qH\x00[\x86o\xf4\xaf\x93\x14\xbf|@\xb6E\xd5\xa7\xa9^\x84\x19\xca\x84\\\xb9u8\xa4\f\x7f\xa1Vh\xdc\'\x0e\xf6\xd9;\xcf@\xea\xde\xa0\xa8\xea\xef\xfcK5\x87Z\xc1\xccOx\x8bn\x1b\x93@o\xf7\xe30\x90\b\aQ_\xb9\x9dO\xab\xea \x88\xdc\xda>\xdc.O.\xc8\xe2\x04D\xc6\x14A\x7f\x000\xdd*\a\vX\xb0\x8bI\xd0K)u\x13{-\x02\xb2B\xabd[\xdd\xdc\x10M\x9c\x88a\xfd\xa1\x12\xeb\xe0O\xf8\xbf37e\x1e\xf1@\xe3\xae\xe4\xef\xbd|D\x1e;3\x99g\xd8\xf5\xf3\xe0\x96D\x93\x93\x86m\xa0Fn;\xff\xc3}\xb8\xcd\x0f0F\x96\x98\xd0\x19\xf5\xdf\xf1B\x17_t\xe4|i\xcd\x81|w\xfcNc\xdd\xb8\xdbQ\x0fb}c`=F\x91_\xbd+E\b\x14\x848\xe3\xee/\xe37\xcb\x00\xd7\xe0\x8f\xb2\xffU\xa3\n\xb3PW\x11\xe1\xdd\x05\x86\x9c\xcf\xfe\xfapL\xb2\x05\x82\xf4\xf2v\xe8\x83\xc9*M\x90\xa6P\x98\xb1\x94\x84\xb7\x00\xf2\xf0#\xd4\xe4\xe2\xaa~\x1d\xbc \xa2y\xae@\xab\x1d\xd8pBg\xbb\xa8|g\xc70.\x04\"\ff\xb0\xc6umooMT\xa8\xd3\x97 ?\xf1\x80\x01\x80\x10\xe9\x84Ff\xd4WU\xc41\xc3}\x03\xdc\'\xdd\xecJ\x97\xdb\xed\rr\xb6-$\x8b\xc5i\xe3\x113\x89M\xe4\xd7\x1dX\xc9\x15\x00\xd7j1t\\ \x88>s\xb5\x83\xf3\xef\x05\xb8+Y\x04{\x9a\x8e|\xfd\x92\xfb\xd1\"\x85\xb1\xf4*=\xee{\x7fS%;\xfd\xc0,\xa7\x973\xdc\x7f/B\xd8pe!\xd8sl\x15g\xd5\x05\x8eRQ\nm\xaa\xf2N\x1d\xda\xeb\xe3\x06\xd1at\xd9\xd5\xb2\xcb\xf5\x83\x84\x1eF\xab\x00\x8f\xa4\xb3\xd6\xaf\xcee3s\t\xf5\xcc*\xff\xf5\xf2\x98\x89T\x80\xa8\xae\x1e0\xe5\xa6\xc9.\v}\xa3\vi\x06e\xbd\xa1u\xc5_B\x8a\xe2@sF\xfd\xa9\x8f\x11\xdc\xbe\rjrb\x8a\xa6\x0f\xb3Zq\xf2\xce\xbc\xf3X\xcc\a\xe8v\xdb\xa0\x1cb</\x93\xc9\xb8\xdaB\xcc\xc9\xaaQ\xees\xc7\xf4\x14H\x98')
setresgid$auto(0x81, 0x800000a0, 0x8)
r0 = socket(0xa, 0x2, 0x3a)
r1 = openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000800)='/sys/kernel/config/target/dbroot\x00', 0x40180, 0x0)
sendmsg$auto_ETHTOOL_MSG_LINKINFO_SET(r0, 0x0, 0x80)
setfsuid$auto(0xee00)
r2 = getuid()
newfstatat$auto(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)={0x4795, 0x40, 0x54dd, 0x2, 0xffffffffffffffff, <r3=>0xffffffffffffffff, 0x0, 0xfffffffffffffff9, 0x5, 0xffffffffffffff2d, 0x8, 0x10001, 0x54e, 0xfffffffffffffffc, 0x1, 0xc, 0x1}, 0x8)
keyctl$auto(0x8, 0x0, r2, r3, 0x2)
setreuid$auto(r2, 0x0)
getegid()
fchmod$auto(r1, 0x0)
r4 = ioctl$auto_TUNSETDEBUG(0xffffffffffffffff, 0x400454c9, &(0x7f0000000080)=0x8)
ioctl$auto(r4, 0x3, r0)
socket(0xa, 0x1, 0x100)
ioperm$auto(0x7, 0x5ad2, 0x8)
modify_ldt$auto(0xef3b, 0x0, 0x8)
ioctl$auto_USBDEVFS_ALLOW_SUSPEND(0xffffffffffffffff, 0x5522, 0x0)
r5 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0x0, 0x0)
pread64$auto(r5, &(0x7f00000000c0)='\x008\xbbz(\xe9\x05<\x82\xfe\xe2\xf6 \x0f8\xfb\xec\x9e{W\xed>\xe7l\xcb\x90\x9fLV\xb4\x82xY\xe6\\/\x84\x99!*\xe3\x99}x\xd4\xa5D\xfa\xe5\xf9\x95#\xa2(\x12\xc2\xb5\x9aod^\xa6\x00\x80\x00\x00\x00\x00\x00\x00\x00\x00\x00', 0x7ff, 0x400)
socket(0x1e, 0x1, 0x0)
mmap$auto(0x0, 0xfb1, 0xffffffff, 0x9b72, 0x2, 0x8000)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/mm/ksm/pages_volatile\x00', 0x0, 0x0)
read$auto(r6, 0x0, 0x20)

2.242895129s ago: executing program 3 (id=10539):
mmap$auto(0x0, 0x10000, 0x4000000000db, 0xeb1, 0x2, 0x8000) (async)
madvise$auto(0x0, 0x5, 0x15) (async, rerun: 64)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/bus/scsi/drivers/st/fixed_buffer_size\x00', 0x0, 0x0) (rerun: 64)
mmap$auto(0x0, 0xfff, 0xdf, 0x9b72, 0x400, 0x28000)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) (async, rerun: 64)
socketpair$auto(0x21, 0x5, 0x8000000000000000, 0x0) (async, rerun: 64)
close_range$auto(0x2, 0x8, 0x0)
r2 = open(0x0, 0x22240, 0x55) (async)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket(0xa, 0x2, 0x0) (async)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) (async, rerun: 64)
statx$auto(r2, 0x0, 0x2001003, 0x4005, 0x0) (async, rerun: 64)
setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88) (async)
mmap$auto(0x0, 0x40009, 0xe1, 0x9b72, 0x7, 0x28000) (async)
sendmmsg$auto(0x3, 0x0, 0x3, 0x0) (async)
recvmmsg$auto(r1, &(0x7f0000000300)={{0x0, 0x3, &(0x7f0000000000)={0x0, 0x40809}, 0xc, 0x0, 0x4, 0x28e1}, 0x2632265}, 0x11, 0xad91, 0x0) (async)
mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4)
r3 = open(&(0x7f00000000c0)='./file0\x00', 0x161342, 0x13d) (async)
read$auto(0x3, 0x0, 0x7fffffff)
write$auto(r3, &(0x7f0000000000)='(,\'\\\x00', 0x8001) (async, rerun: 32)
read$auto(r0, 0x0, 0x3) (rerun: 32)

2.084604864s ago: executing program 1 (id=10540):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000062c0), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_GET(r0, &(0x7f00000000c0)={0xfffffffffffffffd, 0x0, &(0x7f0000006340)={&(0x7f00000002c0)={0x2c, r1, 0x1, 0x70bd29, 0x25dfdbfb, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bridge\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4044040}, 0x4000) (fail_nth: 5)

1.925614017s ago: executing program 4 (id=10541):
statmount$auto(0x0, 0x0, 0x1fa, 0xd)
socket(0x15, 0x5, 0x0)
r0 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000580), 0x2802, 0x0)
r1 = ioctl$auto_TUNSETCARRIER(0xffffffffffffffff, 0x400454e2, &(0x7f0000000080))
openat$auto_media_devnode_fops_mc_devnode(0xffffffffffffff9c, &(0x7f0000000340)='/dev/media8\x00', 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x42200, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe97f, 0xdf, 0xeb1, 0x401, 0x8000)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x801, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0xfc6, 0x80000001, 0x4, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da07, 0x8, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r0, 0xfffffff7effffd05, &(0x7f00000001c0))
r3 = pipe$auto(0x0)
splice$auto(0x4, 0x0, r3, 0x0, 0x80000001, 0x9)
r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
ioctl$auto(r4, 0x4b63, 0x4)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = fsopen$auto(0x0, 0x1)
fsconfig$auto(r5, 0x8, 0x0, 0x0, 0x0)
accept$auto(r0, &(0x7f00000000c0)=@nfc={0x27, 0x0, 0x1, 0x4}, &(0x7f0000000100)=0xf)
acct$auto(0x0)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000002680), 0xffffffffffffffff)
sendmsg$auto_IPVS_CMD_DEL_DAEMON(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={0x14, r7, 0x1, 0x70bd29, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x40014}, 0x0)
msgctl$auto_MSG_INFO(0x0, 0xc, &(0x7f00000001c0)={{0x23, 0xffffffffffffffff, 0xffffffffffffffff, 0x3, 0x9, 0xfff, 0x4}, &(0x7f0000000140)=0xc, &(0x7f0000000180)=0xae, 0x8000, 0x9, 0x4, 0x7, 0x7fffffff, 0xa, 0x4, 0x2})
sendmsg$auto_IPVS_CMD_FLUSH(r1, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000240)={&(0x7f0000000440)={0x14, r7, 0x200, 0x70bd28, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x24040001}, 0x40008c1)

1.227971467s ago: executing program 1 (id=10542):
r0 = socket(0x2b, 0x1, 0x0)
close_range$auto(0x2, 0xa, 0x0)
socket(0xf, 0x3, 0x2)
mmap$auto(0x0, 0x20009, 0x4000000000e2, 0xeb1, 0x401, 0x8000)
socket(0x2, 0x801, 0x106)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x3, 0x20000000)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)

932.74632ms ago: executing program 3 (id=10543):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.cpu/hugetlb.2MB.rsvd.limit_in_bytes\x00', 0x0, 0x0)
read$auto(r0, 0x0, 0x20)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/pci0000:00/waiting_for_supplier\x00', 0x15bb02, 0x0)
bpf$auto_BPF_PROG_LOAD(0x5, &(0x7f00000012c0)=@info={0xffffffffffffffff, 0x9, 0xffff}, 0x5)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/vt/parameters/default_blu\x00', 0x183042, 0x0)
write$auto(0x3, 0x0, 0xfdef)
read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000000)=""/32, 0x20)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000005800), 0xffffffffffffffff)
socket(0xa, 0x2, 0x3a)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
socket(0xa, 0x3, 0x3b)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58)
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
io_uring_setup$auto(0x6, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x28641, 0x0)
gettimeofday$auto(&(0x7f0000000040)={0x8, 0x105}, &(0x7f00000000c0)={0x1ff, 0x7})
r2 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
write$auto_console_fops_tty_io(r2, &(0x7f00000005c0)="671f264add69b6440843b66668ef000000df2669e6f9cd237232b20ed763ac8caf4b9b4cd10196bc7b4c3cf9ee0cb9f61968f4782754e1706b1bb14a4ace080c4c96c604a2812c41ceb0540ad94892a9e1fc919c762d1b29000c4b", 0x5b)
ioctl$auto(0x3, 0x80000541b, 0x38)
r3 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, 0x0, 0x200, 0x0)
ioctl$auto_IOCTL_VMCI_VERSION2(r3, 0x7a7, 0x0)
ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r3, 0x7a0, 0x6)
r4 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/kcore\x00', 0x10b402, 0x0)
pread64$auto(r4, 0x0, 0x800003, 0x270)
ioctl$auto_TCFLSH2(0xffffffffffffffff, 0x540b, 0xfffffffffffffffd)

742.222195ms ago: executing program 4 (id=10544):
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x38, 0x6, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
socket(0x1d, 0x2, 0x6)
bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, 0x0, 0xfd, 0xfd000000}, 0x6a)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="1b0026bd7000fbdbdf250300000004000800100003800c00038008001100", @ANYRES32, @ANYBLOB="12000100898771f1c19f17790485908208000000040002"], 0x40}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_uprobe_events_ops_trace_uprobe(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/uprobe_events\x00', 0x40000, 0x0)
r3 = socket(0x10, 0x2, 0x14)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000002fc0)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000000a14af"], 0x14}, 0x1, 0x0, 0x0, 0x80c3}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0xffffffffffffff14, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYRES8=r2], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x200440c0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4c084}, 0x51)
io_uring_setup$auto(0x59, &(0x7f0000000340)={0x7fffffff, 0xd, 0x2, 0x4, 0x7, 0x8, 0xffffffffffffffff, [], {0x6, 0x6, 0xf, 0x29f, 0x100, 0x83, 0x101, 0x6, 0x2}, {0x100, 0x1, 0x52, 0x5, 0x1, 0x40, 0x76c5, 0x8, 0x100000000}})
io_uring_enter$auto(0x3, 0x5, 0xffffffff, 0x3, 0x0, 0x2)
sendmmsg$auto(r3, &(0x7f0000000080)={{0x0, 0x8001c01, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x1}, 0x7}, 0x3d55, 0x0)

487.825055ms ago: executing program 0 (id=10545):
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2, 0x3, 0x6)
lsm_list_modules$auto(0x0, 0x0, 0x0)
pread64$auto(r0, &(0x7f0000000000)=')*\x00', 0x6, 0x4)
close_range$auto(0x2, 0x8, 0x0)
open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x401c5820, 0x0)
mkdir$auto(0x0, 0x353)

471.023755ms ago: executing program 4 (id=10546):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/devices/platform/vhci_hcd.0/usb9/9-0:1.0/usb9-port8/location\x00', 0x103843, 0x0)
prctl$auto(0x23, 0xc, 0x2008, 0x0, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/bus/usb/drivers/dw2102/bind\x00', 0x400, 0x0)
read$auto(r1, 0x0, 0x20)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/self/fail-nth\x00', 0x204302, 0x0)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, 0x0, 0x102, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001d00), 0xffffffffffffffff)
statmount$auto(0x0, 0x0, 0x3500, 0x9ed)
sendmsg$auto_NBD_CMD_CONNECT(r3, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000000280)=ANY=[@ANYRES16=r2, @ANYRES8=r3, @ANYBLOB="010c02000500fcffffff000000000025c289"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x8880)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x2, 0xa, 0x1)
bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_4={0x1f, r3, 0x10000}, 0x10)
write$auto(r0, &(0x7f0000000080)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbbOO]e[\xabxo\xd9\x90\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5Y\a\xc1\xe9(\x85R\x96\xe4\x86\\\x13\xa9\x1a&\x19\x8a9\x82\xf0\x83\f\xf7\xeb\x00\x00\x00\x00\x00\x00\x00\x00v\x92<e\x8b?#a\xa3 \xaa\x19\xde}\x10\xa4\x95\x02\x12\xbb\x13\xeb<\xc8x\x86\xc6\x12w2u\xe5\xb0\x8f\xda\x88R\xf4 @\xdc\x8e\xaa\xf0{\xa8,\xa3\xc7\x01\\\x03(\xc0\xb3\xf3\xf80eqo\x1a\xe0\xc6\xd9\xcf\xab\xf4_\xf2', 0x100000004)
r4 = gettid()
timer_create$auto(0x0, &(0x7f0000000040)={@sival_ptr=0x0, @raw=0x4, 0x6, @_tid=r4}, 0x0)
pidfd_open$auto(r4, 0x2)
mmap$auto(0x0, 0x20009, 0x4000000000db, 0xeb1, 0x400, 0x8000)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="24000408", @ANYRES16=0x0, @ANYBLOB="02002cbd7000fbdbdf25020000000800030080004000080002007f000000"], 0x24}, 0x1, 0x0, 0x0, 0x20008010}, 0x400d0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a0027"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
mmap$auto(0x6, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x5000000000)
timer_create$auto(0x9, 0x0, 0x0)
timer_settime$auto(0x0, 0x3, &(0x7f00000000c0)={{0x26b, 0x4}, {0x0, 0x83}}, 0x0)
mmap$auto(0x0, 0x4, 0x810000, 0x40eb2, r0, 0x3)
socket(0xa, 0x5, 0x0)

450.28928ms ago: executing program 1 (id=10547):
unshare$auto(0x40000080)
ioctl$auto(0x3, 0x4008ae48, 0x38)
r0 = socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
timer_create$auto(0x9, 0x0, 0x0)
timer_settime$auto(0x0, 0x3, &(0x7f00000000c0)={{0x26b, 0x4}, {0x0, 0x83}}, 0x0)
r1 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec18\x00', 0x900, 0x0)
ioctl$auto_CEC_S_MODE(r1, 0x40046109, &(0x7f0000002c40)=0x7)
sendmmsg$auto(0x3, 0x0, 0x2, 0x9)
recvmmsg$auto(0x4, 0x0, 0x7, 0xe, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000)
r2 = socket(0x8, 0x4, 0x23b)
openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, 0x0, 0x80040, 0x0)
openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x88e00, 0x0)
preadv$auto(0x40000000000003, 0x0, 0x6, 0x8, 0x5)
r3 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, 0x0, 0x400, 0x0)
ioctl$auto_CEC_RECEIVE(r3, 0xc0386106, 0x0)
unshare$auto(0x40000080)
r4 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000040), r2)
sendmsg$auto_OVS_VPORT_CMD_DEL(r0, &(0x7f0000000300)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000080)={0x1c, r4, 0x300, 0x70bd29, 0x25dfdbfe, {}, [@OVS_VPORT_ATTR_NAME={0x6, 0x3, '&\x00'}]}, 0x1c}}, 0x40000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x4, 0x0)
sysfs$auto(0x2, 0x1a, 0x0)
r5 = socket(0x2b, 0x1, 0x0)
bind$auto(0x3, 0x0, 0x6a)
sendmmsg$auto(r5, 0x0, 0x5, 0x20000000)
r6 = syz_clone3(0x0, 0x0)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000000800030004020000060007000080000000000600010000000a0005000000000000000000b3fc010000000000000000000a000100000000000000000006000600050000000800", @ANYRES32=0x0, @ANYBLOB="0800040003"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40090)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="f2000000", @ANYRES8=r6], 0x1ac}, 0x1, 0x0, 0x0, 0x24040840}, 0x94)

263.457066ms ago: executing program 4 (id=10548):
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
write$auto(0x3, 0x0, 0x7fffffff)
write$auto(0x1, 0x0, 0x80000000)
mmap$auto(0x6dea, 0x5, 0x9, 0x17, r0, 0x10001)
r1 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5)
openat$auto_nsim_dev_max_vfs_fops_dev(0xffffffffffffff9c, &(0x7f00000089c0)='/sys/kernel/debug/netdevsim/netdevsim1/max_vfs\x00', 0xc798ee72cfbd85fc, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xf, 0x3, 0x2)
openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000180)='/dev/cec18\x00', 0x1c0, 0x0)
r2 = openat$auto_proc_timens_offsets_operations_base(0xffffffffffffff9c, &(0x7f0000002440), 0x80c02, 0x0)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
r4 = socketpair$auto(0x1, 0x2164, 0x8000000000000000, 0x0)
connect$auto(r3, &(0x7f0000000300)=@llc={0x1a, 0x17, 0x7, 0x3, 0x2, 0x4, @local}, 0x0)
write$auto(r3, &(0x7f0000000400)='\x05deo1\x00', 0x100000a3d9)
close_range$auto(0x2, 0xa, 0x0)
r5 = socket(0xa, 0x2, 0x88)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/mac80211_hwsim/hwsim0/ieee80211/phy0/macaddress\x00', 0x0, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r6, &(0x7f0000000200)=""/206, 0xce)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000040)={'bond0\x00'})
bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_fd=r2, r1, 0x4, 0x1ff, r5, @relative_fd=r4, 0xe600}, 0xf)
socketpair$auto(0x1, 0x3, 0x8000000000000000, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, r7, 0x0, 0x3}, 0xc)
close_range$auto(0x2, 0x8, 0x0)

121.935378ms ago: executing program 0 (id=10549):
r0 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x1, 0xdf, 0x9b72, r1, 0x7ffd)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/firmware/acpi/interrupts/ff_pwr_btn\x00', 0x10b142, 0x0)
write$auto(r2, 0x0, 0x8)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r1, &(0x7f0000004240)={0x0, 0x0, &(0x7f0000004200)={&(0x7f00000005c0)={0x1c, r0, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@HWSIM_ATTR_REG_HINT_ALPHA2={0x6, 0xb, ',)'}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000060}, 0x0)

0s ago: executing program 3 (id=10550):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000062c0), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_GET(r0, &(0x7f00000000c0)={0xfffffffffffffffd, 0x0, &(0x7f0000006340)={&(0x7f00000002c0)={0x2c, r1, 0x1, 0x70bd29, 0x25dfdbfb, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bridge\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4044040}, 0x4000) (fail_nth: 6)

kernel console output (not intermixed with test programs):

ilure.
[ 1353.691601][T29022] name failslab, interval 1, probability 0, space 0, times 0
[ 1353.769888][T29022] CPU: 1 UID: 0 PID: 29022 Comm: syz.0.5558 Not tainted 6.16.0-rc2-syzkaller-00024-g9afe652958c3 #0 PREEMPT(full) 
[ 1353.769924][T29022] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1353.769939][T29022] Call Trace:
[ 1353.769947][T29022]  <TASK>
[ 1353.769955][T29022]  dump_stack_lvl+0x16c/0x1f0
[ 1353.769997][T29022]  should_fail_ex+0x512/0x640
[ 1353.770034][T29022]  should_failslab+0xc2/0x120
[ 1353.770056][T29022]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1353.770091][T29022]  ? vma_merge_new_range+0x37f/0xa00
[ 1353.770123][T29022]  ? vm_area_alloc+0x1f/0x160
[ 1353.770156][T29022]  vm_area_alloc+0x1f/0x160
[ 1353.770193][T29022]  __mmap_region+0xf0a/0x25e0
[ 1353.770230][T29022]  ? __pfx___mmap_region+0x10/0x10
[ 1353.770268][T29022]  ? rcu_is_watching+0x12/0xc0
[ 1353.770291][T29022]  ? lock_release+0x201/0x2f0
[ 1353.770319][T29022]  ? bpf_ksym_find+0x124/0x1c0
[ 1353.770343][T29022]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 1353.770369][T29022]  ? is_bpf_text_address+0x94/0x1a0
[ 1353.770400][T29022]  ? kernel_text_address+0x8d/0x100
[ 1353.770435][T29022]  ? __kernel_text_address+0xd/0x40
[ 1353.770492][T29022]  ? aa_file_perm+0x4d6/0xfb0
[ 1353.770526][T29022]  mmap_region+0x1ab/0x3f0
[ 1353.770559][T29022]  ? __get_unmapped_area+0x267/0x440
[ 1353.770586][T29022]  do_mmap+0xa3e/0x1210
[ 1353.770611][T29022]  ? __pfx_do_mmap+0x10/0x10
[ 1353.770636][T29022]  ? __pfx_down_write_killable+0x10/0x10
[ 1353.770663][T29022]  vm_mmap_pgoff+0x281/0x450
[ 1353.770688][T29022]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1353.770710][T29022]  ? lock_release+0x201/0x2f0
[ 1353.770739][T29022]  ? __fget_files+0x20e/0x3c0
[ 1353.770772][T29022]  ksys_mmap_pgoff+0x32c/0x5c0
[ 1353.770808][T29022]  ? __pfx_ksys_write+0x10/0x10
[ 1353.770844][T29022]  __x64_sys_mmap+0x125/0x190
[ 1353.770879][T29022]  do_syscall_64+0xcd/0x490
[ 1353.770901][T29022]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1353.770929][T29022] RIP: 0033:0x7fe8b078e929
[ 1353.770947][T29022] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1353.770971][T29022] RSP: 002b:00007fe8b15e0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1353.770994][T29022] RAX: ffffffffffffffda RBX: 00007fe8b09b5fa0 RCX: 00007fe8b078e929
[ 1353.771011][T29022] RDX: 0000000100000001 RSI: 0000000000000009 RDI: 0000000000800000
[ 1353.771026][T29022] RBP: 00007fe8b15e0090 R08: 0000000000000003 R09: 0000000080000000
[ 1353.771042][T29022] R10: 0008000000008011 R11: 0000000000000246 R12: 0000000000000001
[ 1353.771057][T29022] R13: 0000000000000000 R14: 00007fe8b09b5fa0 R15: 00007fff3057cf38
[ 1353.771080][T29022]  </TASK>
[ 1354.070612][T29013] KVM: debugfs: duplicate directory 29013-3
[ 1354.077133][T29013] KVM: debugfs: duplicate directory 29013-4
[ 1354.910999][T29034] syz.3.5561: vmalloc error: size 18446744073709551615, exceeds total pages, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1
[ 1355.079091][T29034] CPU: 1 UID: 0 PID: 29034 Comm: syz.3.5561 Not tainted 6.16.0-rc2-syzkaller-00024-g9afe652958c3 #0 PREEMPT(full) 
[ 1355.079133][T29034] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1355.079159][T29034] Call Trace:
[ 1355.079167][T29034]  <TASK>
[ 1355.079176][T29034]  dump_stack_lvl+0x16c/0x1f0
[ 1355.079220][T29034]  warn_alloc+0x248/0x3a0
[ 1355.079256][T29034]  ? __pfx_warn_alloc+0x10/0x10
[ 1355.079300][T29034]  ? dvb_dvr_do_ioctl+0x15d/0x290
[ 1355.079323][T29034]  __vmalloc_node_range_noprof+0xff5/0x14b0
[ 1355.079354][T29034]  ? __pfx___mutex_trylock_common+0x10/0x10
[ 1355.079390][T29034]  ? __pfx___might_resched+0x10/0x10
[ 1355.079418][T29034]  ? rcu_is_watching+0x12/0xc0
[ 1355.079443][T29034]  ? dvb_dvr_do_ioctl+0x15d/0x290
[ 1355.079465][T29034]  ? __mutex_lock+0x1ca/0xb90
[ 1355.079487][T29034]  ? dvb_dvr_do_ioctl+0x7e/0x290
[ 1355.079510][T29034]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1355.079541][T29034]  ? __pfx___mutex_lock+0x10/0x10
[ 1355.079563][T29034]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1355.079593][T29034]  ? futex_wake+0x1ad/0x530
[ 1355.079629][T29034]  ? dvb_dvr_do_ioctl+0x15d/0x290
[ 1355.079651][T29034]  __vmalloc_node_noprof+0xad/0xf0
[ 1355.079680][T29034]  ? dvb_dvr_do_ioctl+0x15d/0x290
[ 1355.079704][T29034]  dvb_dvr_do_ioctl+0x15d/0x290
[ 1355.079728][T29034]  dvb_usercopy+0x167/0x340
[ 1355.079766][T29034]  ? __pfx_dvb_dvr_do_ioctl+0x10/0x10
[ 1355.079789][T29034]  ? __pfx_dvb_usercopy+0x10/0x10
[ 1355.079833][T29034]  ? __fget_files+0x20e/0x3c0
[ 1355.079868][T29034]  dvb_dvr_ioctl+0x29/0x40
[ 1355.079906][T29034]  ? __pfx_dvb_dvr_ioctl+0x10/0x10
[ 1355.079945][T29034]  __x64_sys_ioctl+0x18b/0x210
[ 1355.079974][T29034]  do_syscall_64+0xcd/0x490
[ 1355.079997][T29034]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1355.080022][T29034] RIP: 0033:0x7fe33678e929
[ 1355.080040][T29034] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1355.080065][T29034] RSP: 002b:00007fe337654038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1355.080088][T29034] RAX: ffffffffffffffda RBX: 00007fe3369b5fa0 RCX: 00007fe33678e929
[ 1355.080105][T29034] RDX: ffffffffffffffff RSI: 0000000000006f2d RDI: 0000000000000003
[ 1355.080120][T29034] RBP: 00007fe336810b39 R08: 0000000000000000 R09: 0000000000000000
[ 1355.080136][T29034] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1355.080158][T29034] R13: 0000000000000000 R14: 00007fe3369b5fa0 R15: 00007fff575c5ad8
[ 1355.080181][T29034]  </TASK>
[ 1356.583952][T29034] Mem-Info:
[ 1356.623630][T29034] active_anon:13800 inactive_anon:12396 isolated_anon:0
[ 1356.623630][T29034]  active_file:22140 inactive_file:40956 isolated_file:0
[ 1356.623630][T29034]  unevictable:768 dirty:88 writeback:0
[ 1356.623630][T29034]  slab_reclaimable:14128 slab_unreclaimable:94510
[ 1356.623630][T29034]  mapped:33410 shmem:9642 pagetables:1286
[ 1356.623630][T29034]  sec_pagetables:0 bounce:0
[ 1356.623630][T29034]  kernel_misc_reclaimable:0
[ 1356.623630][T29034]  free:1288769 free_pcp:16506 free_cma:0
[ 1356.862315][T29034] Node 0 active_anon:55200kB inactive_anon:55148kB active_file:88556kB inactive_file:163692kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:139152kB dirty:404kB writeback:0kB shmem:42724kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11536kB pagetables:5100kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1357.182757][T29034] Node 1 active_anon:0kB inactive_anon:0kB active_file:4kB inactive_file:132kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1408kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:80kB pagetables:148kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1357.367532][T29034] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1357.559471][T29034] lowmem_reserve[]: 0 2481 2482 2482 2482
[ 1357.587411][T29034] Node 0 DMA32 free:1241228kB boost:0kB min:34076kB low:42592kB high:51108kB reserved_highatomic:0KB free_highatomic:0KB active_anon:55148kB inactive_anon:72184kB active_file:87588kB inactive_file:163360kB unevictable:1536kB writepending:104kB present:3129332kB managed:2540876kB mlocked:0kB bounce:0kB free_pcp:25508kB local_pcp:25508kB free_cma:0kB
[ 1357.630928][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[ 1357.639295][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[ 1357.648179][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[ 1357.660205][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[ 1357.673585][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[ 1357.685704][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[ 1357.694124][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[ 1357.702858][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[ 1357.902298][T29034] lowmem_reserve[]: 0 0 1 1 1
[ 1357.937530][T29034] Node 0 Normal free:20kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:52kB inactive_anon:0kB active_file:968kB inactive_file:340kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB
[ 1358.163687][T29034] lowmem_reserve[]: 0 0 0 0 0
[ 1358.196186][T29034] Node 1 Normal free:3872760kB boost:0kB min:55804kB low:69752kB high:83700kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:4kB inactive_file:132kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:45396kB local_pcp:45396kB free_cma:0kB
[ 1358.383963][T29034] lowmem_reserve[]: 0 0 0 0 0
[ 1358.415852][T29034] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 1358.451298][T29066] FAULT_INJECTION: forcing a failure.
[ 1358.451298][T29066] name failslab, interval 1, probability 0, space 0, times 0
[ 1358.496746][T29066] CPU: 1 UID: 0 PID: 29066 Comm: syz.1.5571 Not tainted 6.16.0-rc2-syzkaller-00024-g9afe652958c3 #0 PREEMPT(full) 
[ 1358.496783][T29066] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1358.496799][T29066] Call Trace:
[ 1358.496807][T29066]  <TASK>
[ 1358.496817][T29066]  dump_stack_lvl+0x16c/0x1f0
[ 1358.496859][T29066]  should_fail_ex+0x512/0x640
[ 1358.496898][T29066]  should_failslab+0xc2/0x120
[ 1358.496921][T29066]  __kvmalloc_node_noprof+0x137/0x620
[ 1358.496956][T29066]  ? lockdep_init_map_type+0x5c/0x280
[ 1358.496991][T29066]  ? v4l2_ctrl_handler_init_class+0x1fc/0x340
[ 1358.497029][T29066]  ? __raw_spin_lock_init+0x3a/0x110
[ 1358.497068][T29066]  ? v4l2_ctrl_handler_init_class+0x1fc/0x340
[ 1358.497114][T29066]  v4l2_ctrl_handler_init_class+0x1fc/0x340
[ 1358.497153][T29066]  vicodec_open+0x1a9/0xf90
[ 1358.497188][T29066]  v4l2_open+0x225/0x490
[ 1358.497221][T29066]  ? __pfx_v4l2_open+0x10/0x10
[ 1358.497254][T29066]  chrdev_open+0x231/0x6a0
[ 1358.497291][T29066]  ? __pfx_apparmor_file_open+0x10/0x10
[ 1358.497323][T29066]  ? __pfx_chrdev_open+0x10/0x10
[ 1358.497362][T29066]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[ 1358.497397][T29066]  do_dentry_open+0x744/0x1c10
[ 1358.497434][T29066]  ? __pfx_chrdev_open+0x10/0x10
[ 1358.497474][T29066]  vfs_open+0x82/0x3f0
[ 1358.497500][T29066]  path_openat+0x1de4/0x2cb0
[ 1358.497540][T29066]  ? __pfx_path_openat+0x10/0x10
[ 1358.497579][T29066]  do_filp_open+0x20b/0x470
[ 1358.497614][T29066]  ? __pfx_do_filp_open+0x10/0x10
[ 1358.497659][T29066]  ? alloc_fd+0x471/0x7d0
[ 1358.497695][T29066]  do_sys_openat2+0x11b/0x1d0
[ 1358.497721][T29066]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1358.497753][T29066]  __x64_sys_openat+0x174/0x210
[ 1358.497781][T29066]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1358.497814][T29066]  do_syscall_64+0xcd/0x490
[ 1358.497838][T29066]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1358.497862][T29066] RIP: 0033:0x7f8ea4f8e929
[ 1358.497881][T29066] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1358.497906][T29066] RSP: 002b:00007f8ea5e8b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1358.497930][T29066] RAX: ffffffffffffffda RBX: 00007f8ea51b5fa0 RCX: 00007f8ea4f8e929
[ 1358.497947][T29066] RDX: 00000000000c4400 RSI: 0000200000000000 RDI: ffffffffffffff9c
[ 1358.497963][T29066] RBP: 00007f8ea5010b39 R08: 0000000000000000 R09: 0000000000000000
[ 1358.497979][T29066] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1358.497994][T29066] R13: 0000000000000000 R14: 00007f8ea51b5fa0 R15: 00007fff8ba40988
[ 1358.498017][T29066]  </TASK>
[ 1358.499049][T29034] Node 0 
[ 1358.902297][T29075] FAULT_INJECTION: forcing a failure.
[ 1358.902297][T29075] name failslab, interval 1, probability 0, space 0, times 0
[ 1358.921230][T29074] nbd: illegal input index 2147483647
[ 1358.938756][T29075] CPU: 1 UID: 0 PID: 29075 Comm: syz.1.5574 Not tainted 6.16.0-rc2-syzkaller-00024-g9afe652958c3 #0 PREEMPT(full) 
[ 1358.938792][T29075] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1358.938808][T29075] Call Trace:
[ 1358.938815][T29075]  <TASK>
[ 1358.938823][T29075]  dump_stack_lvl+0x16c/0x1f0
[ 1358.938875][T29075]  should_fail_ex+0x512/0x640
[ 1358.938913][T29075]  should_failslab+0xc2/0x120
[ 1358.938935][T29075]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1358.938972][T29075]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1358.939007][T29075]  ? mas_alloc_nodes+0x18b/0x8b0
[ 1358.939043][T29075]  mas_alloc_nodes+0x18b/0x8b0
[ 1358.939080][T29075]  mas_node_count_gfp+0x105/0x130
[ 1358.939119][T29075]  mas_preallocate+0x77b/0xda0
[ 1358.939146][T29075]  ? __pfx_mas_preallocate+0x10/0x10
[ 1358.939176][T29075]  ? vma_merge_new_range+0x37f/0xa00
[ 1358.939209][T29075]  ? vm_area_alloc+0x1f/0x160
[ 1358.939240][T29075]  ? lockdep_init_map_type+0x5c/0x280
[ 1358.939275][T29075]  __mmap_region+0x1104/0x25e0
[ 1358.939312][T29075]  ? __pfx___mmap_region+0x10/0x10
[ 1358.939351][T29075]  ? rcu_is_watching+0x12/0xc0
[ 1358.939372][T29075]  ? lock_release+0x201/0x2f0
[ 1358.939401][T29075]  ? bpf_ksym_find+0x124/0x1c0
[ 1358.939426][T29075]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 1358.939454][T29075]  ? is_bpf_text_address+0x94/0x1a0
[ 1358.939488][T29075]  ? kernel_text_address+0x8d/0x100
[ 1358.939525][T29075]  ? __kernel_text_address+0xd/0x40
[ 1358.939585][T29075]  ? aa_file_perm+0x4d6/0xfb0
[ 1358.939622][T29075]  mmap_region+0x1ab/0x3f0
[ 1358.939658][T29075]  ? __get_unmapped_area+0x267/0x440
[ 1358.939686][T29075]  do_mmap+0xa3e/0x1210
[ 1358.939714][T29075]  ? __pfx_do_mmap+0x10/0x10
[ 1358.939739][T29075]  ? __pfx_down_write_killable+0x10/0x10
[ 1358.939768][T29075]  vm_mmap_pgoff+0x281/0x450
[ 1358.939793][T29075]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1358.939816][T29075]  ? lock_release+0x201/0x2f0
[ 1358.939853][T29075]  ? __fget_files+0x20e/0x3c0
[ 1358.939888][T29075]  ksys_mmap_pgoff+0x32c/0x5c0
[ 1358.939913][T29075]  ? __pfx_ksys_write+0x10/0x10
[ 1358.939950][T29075]  __x64_sys_mmap+0x125/0x190
[ 1358.939982][T29075]  do_syscall_64+0xcd/0x490
[ 1358.940003][T29075]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1358.940027][T29075] RIP: 0033:0x7f8ea4f8e929
[ 1358.940044][T29075] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1358.940067][T29075] RSP: 002b:00007f8ea5e8b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1358.940089][T29075] RAX: ffffffffffffffda RBX: 00007f8ea51b5fa0 RCX: 00007f8ea4f8e929
[ 1358.940105][T29075] RDX: 0000000100000001 RSI: 0000000000000009 RDI: 0000000000800000
[ 1358.940120][T29075] RBP: 00007f8ea5e8b090 R08: 0000000000000003 R09: 0000000080000000
[ 1358.940134][T29075] R10: 0008000000008011 R11: 0000000000000246 R12: 0000000000000001
[ 1358.940149][T29075] R13: 0000000000000000 R14: 00007f8ea51b5fa0 R15: 00007fff8ba40988
[ 1358.940171][T29075]  </TASK>
[ 1359.243003][T28737] Bluetooth: hci1: command 0x1003 tx timeout
[ 1359.249764][T27837] Bluetooth: hci1: Opcode 0x1003 failed: -110
[ 1359.311921][   T31] audit: type=1804 audit(6045214186.838:143): pid=29077 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.5576" name="/newroot/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter" dev="tracefs" ino=19680823 res=1 errno=0
[ 1359.836416][T29085] FAULT_INJECTION: forcing a failure.
[ 1359.836416][T29085] name failslab, interval 1, probability 0, space 0, times 0
[ 1359.879707][T29085] CPU: 1 UID: 0 PID: 29085 Comm: syz.0.5579 Not tainted 6.16.0-rc2-syzkaller-00024-g9afe652958c3 #0 PREEMPT(full) 
[ 1359.879744][T29085] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1359.879760][T29085] Call Trace:
[ 1359.879768][T29085]  <TASK>
[ 1359.879777][T29085]  dump_stack_lvl+0x16c/0x1f0
[ 1359.879827][T29085]  should_fail_ex+0x512/0x640
[ 1359.879865][T29085]  should_failslab+0xc2/0x120
[ 1359.879889][T29085]  __kmalloc_cache_noprof+0x6a/0x3e0
[ 1359.879921][T29085]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1359.879962][T29085]  ? vicodec_open+0xe4/0xf90
[ 1359.879996][T29085]  vicodec_open+0xe4/0xf90
[ 1359.880030][T29085]  v4l2_open+0x225/0x490
[ 1359.880063][T29085]  ? __pfx_v4l2_open+0x10/0x10
[ 1359.880096][T29085]  chrdev_open+0x231/0x6a0
[ 1359.880133][T29085]  ? __pfx_apparmor_file_open+0x10/0x10
[ 1359.880165][T29085]  ? __pfx_chrdev_open+0x10/0x10
[ 1359.880203][T29085]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[ 1359.880239][T29085]  do_dentry_open+0x744/0x1c10
[ 1359.880276][T29085]  ? __pfx_chrdev_open+0x10/0x10
[ 1359.880316][T29085]  vfs_open+0x82/0x3f0
[ 1359.880343][T29085]  path_openat+0x1de4/0x2cb0
[ 1359.880382][T29085]  ? __pfx_path_openat+0x10/0x10
[ 1359.880420][T29085]  do_filp_open+0x20b/0x470
[ 1359.880455][T29085]  ? __pfx_do_filp_open+0x10/0x10
[ 1359.880500][T29085]  ? alloc_fd+0x471/0x7d0
[ 1359.880536][T29085]  do_sys_openat2+0x11b/0x1d0
[ 1359.880562][T29085]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1359.880595][T29085]  __x64_sys_openat+0x174/0x210
[ 1359.880622][T29085]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1359.880655][T29085]  do_syscall_64+0xcd/0x490
[ 1359.880677][T29085]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1359.880703][T29085] RIP: 0033:0x7fe8b078e929
[ 1359.880721][T29085] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1359.880746][T29085] RSP: 002b:00007fe8b15e0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1359.880768][T29085] RAX: ffffffffffffffda RBX: 00007fe8b09b5fa0 RCX: 00007fe8b078e929
[ 1359.880796][T29085] RDX: 00000000000c4400 RSI: 0000200000000000 RDI: ffffffffffffff9c
[ 1359.880812][T29085] RBP: 00007fe8b0810b39 R08: 0000000000000000 R09: 0000000000000000
[ 1359.880827][T29085] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1359.880842][T29085] R13: 0000000000000000 R14: 00007fe8b09b5fa0 R15: 00007fff3057cf38
[ 1359.880866][T29085]  </TASK>
[ 1360.234160][T29034] DMA32: 2954*4kB (UME) 974*8kB (UM) 680*16kB (UME) 1566*32kB (UME) 799*64kB (UME) 293*128kB (UME) 206*256kB (UM) 175*512kB (UM) 65*1024kB (UM) 4*2048kB (UM) 212*4096kB (UM) = 1254680kB
[ 1360.252803][T29034] Node 0 Normal: 1*4kB (M) 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20kB
[ 1360.265202][T29034] Node 1 Normal: 220*4kB (UME) 31*8kB (UME) 23*16kB (UME) 247*32kB (UME) 107*64kB (UME) 25*128kB (UME) 10*256kB (UME) 7*512kB (UM) 3*1024kB (M) 7*2048kB (UME) 935*4096kB (M) = 3872760kB
[ 1360.284043][T29034] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1360.293918][T29034] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1360.303280][T29034] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1360.312891][T29034] Node 1 hugepages_total=3 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB
[ 1360.322236][T29034] 64469 total pagecache pages
[ 1360.326973][T29034] 3 pages in swap cache
[ 1360.331187][T29034] Free swap  = 124984kB
[ 1360.335377][T29034] Total swap = 124996kB
[ 1360.339598][T29034] 2097051 pages RAM
[ 1360.343457][T29034] 0 pages HighMem/MovableOnly
[ 1360.348165][T29034] 429854 pages reserved
[ 1360.352368][T29034] 0 pages cma reserved
[ 1360.520445][T29093] FAULT_INJECTION: forcing a failure.
[ 1360.520445][T29093] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1360.539973][T29093] CPU: 1 UID: 0 PID: 29093 Comm: syz.3.5584 Not tainted 6.16.0-rc2-syzkaller-00024-g9afe652958c3 #0 PREEMPT(full) 
[ 1360.540009][T29093] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1360.540024][T29093] Call Trace:
[ 1360.540031][T29093]  <TASK>
[ 1360.540040][T29093]  dump_stack_lvl+0x16c/0x1f0
[ 1360.540081][T29093]  should_fail_ex+0x512/0x640
[ 1360.540117][T29093]  should_fail_alloc_page+0xe7/0x130
[ 1360.540141][T29093]  prepare_alloc_pages+0x3c2/0x610
[ 1360.540169][T29093]  ? unwind_next_frame+0x3f4/0x20a0
[ 1360.540206][T29093]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[ 1360.540242][T29093]  ? is_bpf_text_address+0x8a/0x1a0
[ 1360.540275][T29093]  ? rcu_is_watching+0x12/0xc0
[ 1360.540297][T29093]  ? lock_release+0x201/0x2f0
[ 1360.540326][T29093]  ? bpf_ksym_find+0x124/0x1c0
[ 1360.540351][T29093]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 1360.540378][T29093]  ? is_bpf_text_address+0x94/0x1a0
[ 1360.540410][T29093]  ? kernel_text_address+0x8d/0x100
[ 1360.540446][T29093]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1360.540483][T29093]  ? arch_stack_walk+0xa6/0x100
[ 1360.540524][T29093]  ? stack_trace_save+0x8e/0xc0
[ 1360.540549][T29093]  ? __pfx_stack_trace_save+0x10/0x10
[ 1360.540573][T29093]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1360.540610][T29093]  ? policy_nodemask+0xea/0x4e0
[ 1360.540648][T29093]  alloc_pages_mpol+0x1fb/0x550
[ 1360.540670][T29093]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1360.540690][T29093]  ? rcu_is_watching+0x12/0xc0
[ 1360.540713][T29093]  ? unwind_next_frame+0x3f4/0x20a0
[ 1360.540758][T29093]  folio_alloc_mpol_noprof+0x36/0x2f0
[ 1360.540785][T29093]  vma_alloc_folio_noprof+0xed/0x1e0
[ 1360.540812][T29093]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[ 1360.540839][T29093]  ? __handle_mm_fault+0x1092/0x5490
[ 1360.540869][T29093]  ? rcu_is_watching+0x12/0xc0
[ 1360.540892][T29093]  ? lock_release+0x201/0x2f0
[ 1360.540924][T29093]  __handle_mm_fault+0x2f21/0x5490
[ 1360.540959][T29093]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1360.540989][T29093]  ? __pfx_mt_find+0x10/0x10
[ 1360.541019][T29093]  ? find_vma+0xbf/0x140
[ 1360.541042][T29093]  ? __pfx_find_vma+0x10/0x10
[ 1360.541066][T29093]  handle_mm_fault+0x589/0xd10
[ 1360.541097][T29093]  ? __pkru_allows_pkey+0x41/0xb0
[ 1360.541129][T29093]  do_user_addr_fault+0x7a6/0x1370
[ 1360.541162][T29093]  ? rcu_is_watching+0x12/0xc0
[ 1360.541187][T29093]  exc_page_fault+0x5c/0xb0
[ 1360.541223][T29093]  asm_exc_page_fault+0x26/0x30
[ 1360.541247][T29093] RIP: 0010:rep_movs_alternative+0x4a/0x90
[ 1360.541278][T29093] Code: 10 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 e9 8f 10 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[ 1360.541301][T29093] RSP: 0018:ffffc9000b8279f0 EFLAGS: 00050206
[ 1360.541320][T29093] RAX: 0000000000000001 RBX: 0000000000000ff2 RCX: 0000000000000052
[ 1360.541335][T29093] RDX: ffffed100f56f9ff RSI: ffff88807ab7cfa0 RDI: 0000200000001000
[ 1360.541350][T29093] RBP: 0000000000000ff2 R08: 0000000000000000 R09: ffffed100f56f9fe
[ 1360.541365][T29093] R10: ffff88807ab7cff1 R11: 0000000000000000 R12: 0000000000000060
[ 1360.541380][T29093] R13: ffffc9000b827c08 R14: ffff88807ab7c000 R15: 0000200000000060
[ 1360.541402][T29093]  _copy_to_iter+0x4eb/0x16f0
[ 1360.541444][T29093]  ? __pfx__copy_to_iter+0x10/0x10
[ 1360.541481][T29093]  ? rcu_is_watching+0x12/0xc0
[ 1360.541505][T29093]  ? rcu_is_watching+0x12/0xc0
[ 1360.541532][T29093]  seq_read_iter+0xcf8/0x12c0
[ 1360.541568][T29093]  seq_read+0x39e/0x4e0
[ 1360.541596][T29093]  ? __pfx_seq_read+0x10/0x10
[ 1360.541630][T29093]  ? bpf_lsm_file_permission+0x9/0x10
[ 1360.541656][T29093]  ? security_file_permission+0x71/0x210
[ 1360.541688][T29093]  ? rw_verify_area+0xcf/0x680
[ 1360.541717][T29093]  ? __pfx_seq_read+0x10/0x10
[ 1360.541759][T29093]  vfs_read+0x1e4/0xc60
[ 1360.541789][T29093]  ? lock_release+0x201/0x2f0
[ 1360.541818][T29093]  ? __pfx_vfs_read+0x10/0x10
[ 1360.541848][T29093]  ? __fget_files+0x204/0x3c0
[ 1360.541876][T29093]  ? rcu_is_watching+0x12/0xc0
[ 1360.541898][T29093]  ? lock_release+0x201/0x2f0
[ 1360.541928][T29093]  ? __fget_files+0x20e/0x3c0
[ 1360.541956][T29093]  ? __fget_files+0x190/0x3c0
[ 1360.541988][T29093]  __x64_sys_pread64+0x1eb/0x250
[ 1360.542022][T29093]  ? __pfx___x64_sys_pread64+0x10/0x10
[ 1360.542059][T29093]  do_syscall_64+0xcd/0x490
[ 1360.542079][T29093]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1360.542101][T29093] RIP: 0033:0x7fe33678e929
[ 1360.542119][T29093] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1360.542142][T29093] RSP: 002b:00007fe337654038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011
[ 1360.542163][T29093] RAX: ffffffffffffffda RBX: 00007fe3369b5fa0 RCX: 00007fe33678e929
[ 1360.542179][T29093] RDX: 000000000000d56c RSI: 0000200000000000 RDI: 0000000000000003
[ 1360.542194][T29093] RBP: 00007fe337654090 R08: 0000000000000000 R09: 0000000000000000
[ 1360.542210][T29093] R10: 0000000000000a84 R11: 0000000000000246 R12: 0000000000000001
[ 1360.542226][T29093] R13: 0000000000000000 R14: 00007fe3369b5fa0 R15: 00007fff575c5ad8
[ 1360.542249][T29093]  </TASK>
[ 1361.230451][T29108] vcan0: tx drop: invalid da for name 0x000000000000003f
[ 1361.398176][T29101] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_cmd_wq": -EINTR
[ 1361.690006][T29107] FAULT_INJECTION: forcing a failure.
[ 1361.690006][T29107] name failslab, interval 1, probability 0, space 0, times 0
[ 1361.713958][T29107] CPU: 1 UID: 0 PID: 29107 Comm: syz.2.5580 Not tainted 6.16.0-rc2-syzkaller-00024-g9afe652958c3 #0 PREEMPT(full) 
[ 1361.714002][T29107] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1361.714017][T29107] Call Trace:
[ 1361.714026][T29107]  <TASK>
[ 1361.714034][T29107]  dump_stack_lvl+0x16c/0x1f0
[ 1361.714078][T29107]  should_fail_ex+0x512/0x640
[ 1361.714117][T29107]  should_failslab+0xc2/0x120
[ 1361.714139][T29107]  __kvmalloc_node_noprof+0x137/0x620
[ 1361.714174][T29107]  ? lockdep_init_map_type+0x5c/0x280
[ 1361.714209][T29107]  ? v4l2_ctrl_handler_init_class+0x1fc/0x340
[ 1361.714247][T29107]  ? __raw_spin_lock_init+0x3a/0x110
[ 1361.714287][T29107]  ? v4l2_ctrl_handler_init_class+0x1fc/0x340
[ 1361.714323][T29107]  v4l2_ctrl_handler_init_class+0x1fc/0x340
[ 1361.714363][T29107]  vicodec_open+0x1a9/0xf90
[ 1361.714398][T29107]  v4l2_open+0x225/0x490
[ 1361.714430][T29107]  ? __pfx_v4l2_open+0x10/0x10
[ 1361.714463][T29107]  chrdev_open+0x231/0x6a0
[ 1361.714500][T29107]  ? __pfx_apparmor_file_open+0x10/0x10
[ 1361.714532][T29107]  ? __pfx_chrdev_open+0x10/0x10
[ 1361.714571][T29107]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[ 1361.714607][T29107]  do_dentry_open+0x744/0x1c10
[ 1361.714644][T29107]  ? __pfx_chrdev_open+0x10/0x10
[ 1361.714684][T29107]  vfs_open+0x82/0x3f0
[ 1361.714720][T29107]  path_openat+0x1de4/0x2cb0
[ 1361.714761][T29107]  ? __pfx_path_openat+0x10/0x10
[ 1361.714799][T29107]  do_filp_open+0x20b/0x470
[ 1361.714834][T29107]  ? __pfx_do_filp_open+0x10/0x10
[ 1361.714880][T29107]  ? alloc_fd+0x471/0x7d0
[ 1361.714916][T29107]  do_sys_openat2+0x11b/0x1d0
[ 1361.714942][T29107]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1361.714974][T29107]  __x64_sys_openat+0x174/0x210
[ 1361.715002][T29107]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1361.715036][T29107]  do_syscall_64+0xcd/0x490
[ 1361.715058][T29107]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1361.715083][T29107] RIP: 0033:0x7fc8da78e929
[ 1361.715102][T29107] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1361.715127][T29107] RSP: 002b:00007fc8d85f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1361.715151][T29107] RAX: ffffffffffffffda RBX: 00007fc8da9b5fa0 RCX: 00007fc8da78e929
[ 1361.715168][T29107] RDX: 00000000000c4400 RSI: 0000200000000000 RDI: ffffffffffffff9c
[ 1361.715184][T29107] RBP: 00007fc8da810b39 R08: 0000000000000000 R09: 0000000000000000
[ 1361.715199][T29107] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1361.715214][T29107] R13: 0000000000000000 R14: 00007fc8da9b5fa0 R15: 00007fff57812868
[ 1361.715237][T29107]  </TASK>
[ 1362.428601][T29125] FAULT_INJECTION: forcing a failure.
[ 1362.428601][T29125] name failslab, interval 1, probability 0, space 0, times 0
[ 1362.467529][T29125] CPU: 1 UID: 0 PID: 29125 Comm: syz.2.5590 Not tainted 6.16.0-rc2-syzkaller-00024-g9afe652958c3 #0 PREEMPT(full) 
[ 1362.467567][T29125] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1362.467583][T29125] Call Trace:
[ 1362.467592][T29125]  <TASK>
[ 1362.467607][T29125]  dump_stack_lvl+0x16c/0x1f0
[ 1362.467650][T29125]  should_fail_ex+0x512/0x640
[ 1362.467688][T29125]  ? handler_new_ref+0x1b0/0xc60
[ 1362.467726][T29125]  should_failslab+0xc2/0x120
[ 1362.467748][T29125]  __kmalloc_noprof+0xd2/0x510
[ 1362.467784][T29125]  ? __asan_memcpy+0x3c/0x60
[ 1362.467818][T29125]  handler_new_ref+0x1b0/0xc60
[ 1362.467859][T29125]  v4l2_ctrl_new+0x1963/0x2180
[ 1362.467901][T29125]  ? __pfx_v4l2_ctrl_new+0x10/0x10
[ 1362.467943][T29125]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1362.467982][T29125]  v4l2_ctrl_new_std+0x1be/0x290
[ 1362.468024][T29125]  ? __pfx_v4l2_ctrl_new_std+0x10/0x10
[ 1362.468064][T29125]  ? rcu_is_watching+0x12/0xc0
[ 1362.468088][T29125]  ? trace_kmalloc+0x2b/0xd0
[ 1362.468111][T29125]  ? __kvmalloc_node_noprof+0x298/0x620
[ 1362.468146][T29125]  ? v4l2_ctrl_handler_init_class+0x1fc/0x340
[ 1362.468185][T29125]  ? media_request_object_init+0x100/0x180
[ 1362.468218][T29125]  vicodec_open+0x1d0/0xf90
[ 1362.468253][T29125]  v4l2_open+0x225/0x490
[ 1362.468285][T29125]  ? __pfx_v4l2_open+0x10/0x10
[ 1362.468317][T29125]  chrdev_open+0x231/0x6a0
[ 1362.468354][T29125]  ? __pfx_apparmor_file_open+0x10/0x10
[ 1362.468386][T29125]  ? __pfx_chrdev_open+0x10/0x10
[ 1362.468424][T29125]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[ 1362.468460][T29125]  do_dentry_open+0x744/0x1c10
[ 1362.468496][T29125]  ? __pfx_chrdev_open+0x10/0x10
[ 1362.468537][T29125]  vfs_open+0x82/0x3f0
[ 1362.468581][T29125]  path_openat+0x1de4/0x2cb0
[ 1362.468626][T29125]  ? __pfx_path_openat+0x10/0x10
[ 1362.468664][T29125]  do_filp_open+0x20b/0x470
[ 1362.468699][T29125]  ? __pfx_do_filp_open+0x10/0x10
[ 1362.468745][T29125]  ? alloc_fd+0x471/0x7d0
[ 1362.468781][T29125]  do_sys_openat2+0x11b/0x1d0
[ 1362.468806][T29125]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1362.468839][T29125]  __x64_sys_openat+0x174/0x210
[ 1362.468866][T29125]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1362.468900][T29125]  do_syscall_64+0xcd/0x490
[ 1362.468923][T29125]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1362.468948][T29125] RIP: 0033:0x7fc8da78e929
[ 1362.468967][T29125] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1362.468992][T29125] RSP: 002b:00007fc8d85f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1362.469016][T29125] RAX: ffffffffffffffda RBX: 00007fc8da9b5fa0 RCX: 00007fc8da78e929
[ 1362.469033][T29125] RDX: 00000000000c4400 RSI: 0000200000000000 RDI: ffffffffffffff9c
[ 1362.469049][T29125] RBP: 00007fc8da810b39 R08: 0000000000000000 R09: 0000000000000000
[ 1362.469065][T29125] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1362.469081][T29125] R13: 0000000000000000 R14: 00007fc8da9b5fa0 R15: 00007fff57812868
[ 1362.469105][T29125]  </TASK>
[ 1363.070245][   T31] audit: type=1804 audit(6045214190.328:144): pid=29128 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.5591" name="/newroot/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter" dev="tracefs" ino=19680823 res=1 errno=0
[ 1363.257962][T29131] nbd: must specify a device to reconfigure
[ 1363.695121][T29143] FAULT_INJECTION: forcing a failure.
[ 1363.695121][T29143] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1363.817561][T29143] CPU: 1 UID: 0 PID: 29143 Comm: syz.3.5597 Not tainted 6.16.0-rc2-syzkaller-00024-g9afe652958c3 #0 PREEMPT(full) 
[ 1363.817596][T29143] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1363.817612][T29143] Call Trace:
[ 1363.817619][T29143]  <TASK>
[ 1363.817628][T29143]  dump_stack_lvl+0x16c/0x1f0
[ 1363.817670][T29143]  should_fail_ex+0x512/0x640
[ 1363.817705][T29143]  _copy_to_user+0x32/0xd0
[ 1363.817741][T29143]  simple_read_from_buffer+0xcb/0x170
[ 1363.817770][T29143]  proc_fail_nth_read+0x197/0x270
[ 1363.817796][T29143]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1363.817821][T29143]  ? security_file_permission+0x71/0x210
[ 1363.817852][T29143]  ? rw_verify_area+0xcf/0x680
[ 1363.817879][T29143]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1363.817905][T29143]  vfs_read+0x1e4/0xc60
[ 1363.817936][T29143]  ? __pfx___mutex_lock+0x10/0x10
[ 1363.817956][T29143]  ? __pfx_vfs_read+0x10/0x10
[ 1363.817985][T29143]  ? __fget_files+0x204/0x3c0
[ 1363.818014][T29143]  ? rcu_is_watching+0x12/0xc0
[ 1363.818039][T29143]  ? __fget_files+0x20e/0x3c0
[ 1363.818072][T29143]  ksys_read+0x12a/0x250
[ 1363.818102][T29143]  ? __pfx_ksys_read+0x10/0x10
[ 1363.818137][T29143]  do_syscall_64+0xcd/0x490
[ 1363.818157][T29143]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1363.818181][T29143] RIP: 0033:0x7fe33678d33c
[ 1363.818198][T29143] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1363.818222][T29143] RSP: 002b:00007fe337654030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1363.818244][T29143] RAX: ffffffffffffffda RBX: 00007fe3369b5fa0 RCX: 00007fe33678d33c
[ 1363.818261][T29143] RDX: 000000000000000f RSI: 00007fe3376540a0 RDI: 0000000000000004
[ 1363.818281][T29143] RBP: 00007fe337654090 R08: 0000000000000000 R09: 0000000000000000
[ 1363.818296][T29143] R10: 0000000000000a84 R11: 0000000000000246 R12: 0000000000000001
[ 1363.818311][T29143] R13: 0000000000000000 R14: 00007fe3369b5fa0 R15: 00007fff575c5ad8
[ 1363.818334][T29143]  </TASK>
[ 1364.555099][   T31] audit: type=1804 audit(6045214192.098:145): pid=29154 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.5603" name="/newroot/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter" dev="tracefs" ino=19680823 res=1 errno=0
[ 1365.580177][T29182] base_sock_release(ffff8880491f8c00) sk=ffff888021ee6000
[ 1367.454061][T29219] FAULT_INJECTION: forcing a failure.
[ 1367.454061][T29219] name failslab, interval 1, probability 0, space 0, times 0
[ 1367.542157][T29222] block2mtd: parameter too long
[ 1367.584179][T29219] CPU: 1 UID: 0 PID: 29219 Comm: syz.1.5619 Not tainted 6.16.0-rc2-syzkaller-00024-g9afe652958c3 #0 PREEMPT(full) 
[ 1367.584216][T29219] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1367.584240][T29219] Call Trace:
[ 1367.584249][T29219]  <TASK>
[ 1367.584257][T29219]  dump_stack_lvl+0x16c/0x1f0
[ 1367.584301][T29219]  should_fail_ex+0x512/0x640
[ 1367.584339][T29219]  should_failslab+0xc2/0x120
[ 1367.584362][T29219]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[ 1367.584399][T29219]  ? __alloc_skb+0x2b2/0x380
[ 1367.584438][T29219]  __alloc_skb+0x2b2/0x380
[ 1367.584473][T29219]  ? __pfx___alloc_skb+0x10/0x10
[ 1367.584509][T29219]  ? ip_dst_mtu_maybe_forward.constprop.0+0x307/0x6e0
[ 1367.584546][T29219]  ? rcu_watching_snap_stopped_since+0xa0/0x110
[ 1367.584574][T29219]  ? lock_release+0x201/0x2f0
[ 1367.584605][T29219]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1367.584644][T29219]  sctp_packet_transmit+0x1ca/0x3040
[ 1367.584686][T29219]  ? sctp_outq_flush+0xb4e/0x3350
[ 1367.584717][T29219]  ? rcu_is_watching+0x12/0xc0
[ 1367.584740][T29219]  ? lock_release+0x201/0x2f0
[ 1367.584772][T29219]  sctp_outq_flush+0xb68/0x3350
[ 1367.584804][T29219]  ? do_ulpq_tail_event+0x10c/0x170
[ 1367.584841][T29219]  ? __pfx___alloc_skb+0x10/0x10
[ 1367.584877][T29219]  ? __pfx_do_ulpq_tail_event+0x10/0x10
[ 1367.584915][T29219]  ? sctp_make_abort+0x41/0x410
[ 1367.584951][T29219]  ? __pfx_sctp_outq_flush+0x10/0x10
[ 1367.584985][T29219]  ? rcu_is_watching+0x12/0xc0
[ 1367.585008][T29219]  ? lock_release+0x201/0x2f0
[ 1367.585041][T29219]  sctp_do_sm+0x3e0f/0x5c80
[ 1367.585079][T29219]  ? __pfx_sctp_do_sm+0x10/0x10
[ 1367.585135][T29219]  ? sctp_make_abort_user+0x2a1/0x4b0
[ 1367.585159][T29219]  ? __pfx_sctp_make_abort_user+0x10/0x10
[ 1367.585185][T29219]  sctp_primitive_ABORT+0x9f/0xd0
[ 1367.585221][T29219]  sctp_close+0x230/0x940
[ 1367.585256][T29219]  ? __pfx_sctp_close+0x10/0x10
[ 1367.585281][T29219]  ? lock_acquire+0x2cd/0x350
[ 1367.585312][T29219]  ? __pfx___might_resched+0x10/0x10
[ 1367.585340][T29219]  ? ip_mc_drop_socket+0x1f/0x280
[ 1367.585368][T29219]  ? down_write+0x14d/0x200
[ 1367.585394][T29219]  inet_release+0x13f/0x280
[ 1367.585429][T29219]  inet6_release+0x4f/0x70
[ 1367.585451][T29219]  __sock_release+0xb0/0x270
[ 1367.585475][T29219]  ? __pfx_sock_close+0x10/0x10
[ 1367.585496][T29219]  sock_close+0x1c/0x30
[ 1367.585518][T29219]  __fput+0x3ff/0xb70
[ 1367.585544][T29219]  task_work_run+0x14d/0x240
[ 1367.585582][T29219]  ? __pfx_task_work_run+0x10/0x10
[ 1367.585619][T29219]  ? __pfx___do_sys_close_range+0x10/0x10
[ 1367.585658][T29219]  exit_to_user_mode_loop+0xeb/0x110
[ 1367.585697][T29219]  do_syscall_64+0x3f6/0x490
[ 1367.585720][T29219]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1367.585746][T29219] RIP: 0033:0x7f8ea4f8e929
[ 1367.585765][T29219] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1367.585790][T29219] RSP: 002b:00007f8ea5e8b038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[ 1367.585814][T29219] RAX: 0000000000000000 RBX: 00007f8ea51b5fa0 RCX: 00007f8ea4f8e929
[ 1367.585830][T29219] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[ 1367.585846][T29219] RBP: 00007f8ea5010b39 R08: 0000000000000000 R09: 0000000000000000
[ 1367.585862][T29219] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1367.585876][T29219] R13: 0000000000000000 R14: 00007f8ea51b5fa0 R15: 00007fff8ba40988
[ 1367.585899][T29219]  </TASK>
[ 1368.236309][T29221] kexec: Could not allocate control_code_buffer
[ 1368.527548][T29231] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5623'.
[ 1368.865155][T29229] FAULT_INJECTION: forcing a failure.
[ 1368.865155][T29229] name failslab, interval 1, probability 0, space 0, times 0
[ 1368.984864][T29229] CPU: 1 UID: 0 PID: 29229 Comm: syz.1.5622 Not tainted 6.16.0-rc2-syzkaller-00024-g9afe652958c3 #0 PREEMPT(full) 
[ 1368.984902][T29229] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1368.984918][T29229] Call Trace:
[ 1368.984926][T29229]  <TASK>
[ 1368.984935][T29229]  dump_stack_lvl+0x16c/0x1f0
[ 1368.984977][T29229]  should_fail_ex+0x512/0x640
[ 1368.985015][T29229]  ? handler_new_ref+0x1b0/0xc60
[ 1368.985053][T29229]  should_failslab+0xc2/0x120
[ 1368.985075][T29229]  __kmalloc_noprof+0xd2/0x510
[ 1368.985114][T29229]  ? __asan_memcpy+0x3c/0x60
[ 1368.985148][T29229]  handler_new_ref+0x1b0/0xc60
[ 1368.985189][T29229]  v4l2_ctrl_new+0x1963/0x2180
[ 1368.985239][T29229]  ? __pfx_v4l2_ctrl_new+0x10/0x10
[ 1368.985280][T29229]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1368.985319][T29229]  v4l2_ctrl_new_std+0x1be/0x290
[ 1368.985362][T29229]  ? __pfx_v4l2_ctrl_new_std+0x10/0x10
[ 1368.985402][T29229]  ? rcu_is_watching+0x12/0xc0
[ 1368.985427][T29229]  ? trace_kmalloc+0x2b/0xd0
[ 1368.985449][T29229]  ? __kvmalloc_node_noprof+0x298/0x620
[ 1368.985485][T29229]  ? v4l2_ctrl_handler_init_class+0x1fc/0x340
[ 1368.985524][T29229]  ? media_request_object_init+0x100/0x180
[ 1368.985558][T29229]  vicodec_open+0x1d0/0xf90
[ 1368.985592][T29229]  v4l2_open+0x225/0x490
[ 1368.985624][T29229]  ? __pfx_v4l2_open+0x10/0x10
[ 1368.985657][T29229]  chrdev_open+0x231/0x6a0
[ 1368.985693][T29229]  ? __pfx_apparmor_file_open+0x10/0x10
[ 1368.985725][T29229]  ? __pfx_chrdev_open+0x10/0x10
[ 1368.985763][T29229]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[ 1368.985799][T29229]  do_dentry_open+0x744/0x1c10
[ 1368.985835][T29229]  ? __pfx_chrdev_open+0x10/0x10
[ 1368.985876][T29229]  vfs_open+0x82/0x3f0
[ 1368.985902][T29229]  path_openat+0x1de4/0x2cb0
[ 1368.985941][T29229]  ? __pfx_path_openat+0x10/0x10
[ 1368.985979][T29229]  do_filp_open+0x20b/0x470
[ 1368.986013][T29229]  ? __pfx_do_filp_open+0x10/0x10
[ 1368.986058][T29229]  ? alloc_fd+0x471/0x7d0
[ 1368.986093][T29229]  do_sys_openat2+0x11b/0x1d0
[ 1368.986119][T29229]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1368.986151][T29229]  __x64_sys_openat+0x174/0x210
[ 1368.986178][T29229]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1368.986228][T29229]  do_syscall_64+0xcd/0x490
[ 1368.986252][T29229]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1368.986277][T29229] RIP: 0033:0x7f8ea4f8e929
[ 1368.986296][T29229] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1368.986321][T29229] RSP: 002b:00007f8ea5e8b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1368.986345][T29229] RAX: ffffffffffffffda RBX: 00007f8ea51b5fa0 RCX: 00007f8ea4f8e929
[ 1368.986363][T29229] RDX: 00000000000c4400 RSI: 0000200000000000 RDI: ffffffffffffff9c
[ 1368.986379][T29229] RBP: 00007f8ea5010b39 R08: 0000000000000000 R09: 0000000000000000
[ 1368.986395][T29229] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1368.986410][T29229] R13: 0000000000000000 R14: 00007f8ea51b5fa0 R15: 00007fff8ba40988
[ 1368.986434][T29229]  </TASK>
[ 1370.305981][T29262] FAULT_INJECTION: forcing a failure.
[ 1370.305981][T29262] name failslab, interval 1, probability 0, space 0, times 0
[ 1370.359469][T29262] CPU: 1 UID: 0 PID: 29262 Comm: syz.3.5629 Not tainted 6.16.0-rc2-syzkaller-00024-g9afe652958c3 #0 PREEMPT(full) 
[ 1370.359507][T29262] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1370.359522][T29262] Call Trace:
[ 1370.359530][T29262]  <TASK>
[ 1370.359539][T29262]  dump_stack_lvl+0x16c/0x1f0
[ 1370.359582][T29262]  should_fail_ex+0x512/0x640
[ 1370.359621][T29262]  should_failslab+0xc2/0x120
[ 1370.359644][T29262]  __kvmalloc_node_noprof+0x137/0x620
[ 1370.359680][T29262]  ? lockdep_init_map_type+0x5c/0x280
[ 1370.359715][T29262]  ? v4l2_ctrl_handler_init_class+0x1fc/0x340
[ 1370.359752][T29262]  ? __raw_spin_lock_init+0x3a/0x110
[ 1370.359792][T29262]  ? v4l2_ctrl_handler_init_class+0x1fc/0x340
[ 1370.359829][T29262]  v4l2_ctrl_handler_init_class+0x1fc/0x340
[ 1370.359868][T29262]  vicodec_open+0x1a9/0xf90
[ 1370.359903][T29262]  v4l2_open+0x225/0x490
[ 1370.359935][T29262]  ? __pfx_v4l2_open+0x10/0x10
[ 1370.359968][T29262]  chrdev_open+0x231/0x6a0
[ 1370.360005][T29262]  ? __pfx_apparmor_file_open+0x10/0x10
[ 1370.360037][T29262]  ? __pfx_chrdev_open+0x10/0x10
[ 1370.360082][T29262]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[ 1370.360118][T29262]  do_dentry_open+0x744/0x1c10
[ 1370.360155][T29262]  ? __pfx_chrdev_open+0x10/0x10
[ 1370.360196][T29262]  vfs_open+0x82/0x3f0
[ 1370.360222][T29262]  path_openat+0x1de4/0x2cb0
[ 1370.360262][T29262]  ? __pfx_path_openat+0x10/0x10
[ 1370.360300][T29262]  do_filp_open+0x20b/0x470
[ 1370.360337][T29262]  ? __pfx_do_filp_open+0x10/0x10
[ 1370.360385][T29262]  ? alloc_fd+0x471/0x7d0
[ 1370.360421][T29262]  do_sys_openat2+0x11b/0x1d0
[ 1370.360447][T29262]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1370.360480][T29262]  __x64_sys_openat+0x174/0x210
[ 1370.360507][T29262]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1370.360541][T29262]  do_syscall_64+0xcd/0x490
[ 1370.360564][T29262]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1370.360588][T29262] RIP: 0033:0x7fe33678e929
[ 1370.360607][T29262] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1370.360631][T29262] RSP: 002b:00007fe337654038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1370.360655][T29262] RAX: ffffffffffffffda RBX: 00007fe3369b5fa0 RCX: 00007fe33678e929
[ 1370.360671][T29262] RDX: 00000000000c4400 RSI: 0000200000000000 RDI: ffffffffffffff9c
[ 1370.360688][T29262] RBP: 00007fe336810b39 R08: 0000000000000000 R09: 0000000000000000
[ 1370.360703][T29262] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1370.360718][T29262] R13: 0000000000000000 R14: 00007fe3369b5fa0 R15: 00007fff575c5ad8
[ 1370.360741][T29262]  </TASK>
[ 1370.624383][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1371.964698][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[ 1371.971640][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[ 1372.010086][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[ 1372.018653][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[ 1372.030030][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[ 1372.038198][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[ 1372.054670][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[ 1372.064676][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[ 1372.075432][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[ 1372.085287][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[ 1372.845037][T29313] netlink: 13832 bytes leftover after parsing attributes in process `syz.3.5641'.
[ 1374.193739][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[ 1374.202720][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[ 1374.213917][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[ 1374.222971][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[ 1374.235599][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[ 1374.252126][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[ 1374.265926][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[ 1374.277592][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[ 1375.606375][T29371] FAULT_INJECTION: forcing a failure.
[ 1375.606375][T29371] name failslab, interval 1, probability 0, space 0, times 0
[ 1375.820305][T29371] CPU: 1 UID: 0 PID: 29371 Comm: syz.0.5655 Not tainted 6.16.0-rc2-syzkaller-00024-g9afe652958c3 #0 PREEMPT(full) 
[ 1375.820342][T29371] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1375.820358][T29371] Call Trace:
[ 1375.820366][T29371]  <TASK>
[ 1375.820375][T29371]  dump_stack_lvl+0x16c/0x1f0
[ 1375.820418][T29371]  should_fail_ex+0x512/0x640
[ 1375.820456][T29371]  should_failslab+0xc2/0x120
[ 1375.820479][T29371]  __kvmalloc_node_noprof+0x137/0x620
[ 1375.820514][T29371]  ? lockdep_init_map_type+0x5c/0x280
[ 1375.820548][T29371]  ? v4l2_ctrl_handler_init_class+0x1fc/0x340
[ 1375.820585][T29371]  ? __raw_spin_lock_init+0x3a/0x110
[ 1375.820625][T29371]  ? v4l2_ctrl_handler_init_class+0x1fc/0x340
[ 1375.820661][T29371]  v4l2_ctrl_handler_init_class+0x1fc/0x340
[ 1375.820700][T29371]  vicodec_open+0x1a9/0xf90
[ 1375.820735][T29371]  v4l2_open+0x225/0x490
[ 1375.820768][T29371]  ? __pfx_v4l2_open+0x10/0x10
[ 1375.820824][T29371]  chrdev_open+0x231/0x6a0
[ 1375.820862][T29371]  ? __pfx_apparmor_file_open+0x10/0x10
[ 1375.820894][T29371]  ? __pfx_chrdev_open+0x10/0x10
[ 1375.820933][T29371]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[ 1375.820968][T29371]  do_dentry_open+0x744/0x1c10
[ 1375.821005][T29371]  ? __pfx_chrdev_open+0x10/0x10
[ 1375.821045][T29371]  vfs_open+0x82/0x3f0
[ 1375.821071][T29371]  path_openat+0x1de4/0x2cb0
[ 1375.821110][T29371]  ? __pfx_path_openat+0x10/0x10
[ 1375.821148][T29371]  do_filp_open+0x20b/0x470
[ 1375.821183][T29371]  ? __pfx_do_filp_open+0x10/0x10
[ 1375.821228][T29371]  ? alloc_fd+0x471/0x7d0
[ 1375.821263][T29371]  do_sys_openat2+0x11b/0x1d0
[ 1375.821288][T29371]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1375.821321][T29371]  __x64_sys_openat+0x174/0x210
[ 1375.821353][T29371]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1375.821387][T29371]  do_syscall_64+0xcd/0x490
[ 1375.821409][T29371]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1375.821434][T29371] RIP: 0033:0x7fe8b078e929
[ 1375.821453][T29371] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1375.821478][T29371] RSP: 002b:00007fe8b15e0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1375.821501][T29371] RAX: ffffffffffffffda RBX: 00007fe8b09b5fa0 RCX: 00007fe8b078e929
[ 1375.821519][T29371] RDX: 00000000000c4400 RSI: 0000200000000000 RDI: ffffffffffffff9c
[ 1375.821535][T29371] RBP: 00007fe8b0810b39 R08: 0000000000000000 R09: 0000000000000000
[ 1375.821550][T29371] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1375.821565][T29371] R13: 0000000000000000 R14: 00007fe8b09b5fa0 R15: 00007fff3057cf38
[ 1375.821588][T29371]  </TASK>
[ 1377.355740][T29416] input: jJǸ���;9�%v����l��Q�	J86�� as /devices/virtual/input/input226
[ 1377.365344][   T31] audit: type=1800 audit(6045214204.898:146): pid=29416 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.5665" name="lu_gp_id" dev="configfs" ino=129279 res=0 errno=0
[ 1378.047201][T27837] Bluetooth: hci0: unexpected event 0x17 length: 123 > 6
[ 1378.057427][T29430] FAULT_INJECTION: forcing a failure.
[ 1378.057427][T29430] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1378.157502][T29430] CPU: 1 UID: 0 PID: 29430 Comm: syz.1.5668 Not tainted 6.16.0-rc2-syzkaller-00024-g9afe652958c3 #0 PREEMPT(full) 
[ 1378.157538][T29430] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1378.157553][T29430] Call Trace:
[ 1378.157563][T29430]  <TASK>
[ 1378.157572][T29430]  dump_stack_lvl+0x16c/0x1f0
[ 1378.157621][T29430]  should_fail_ex+0x512/0x640
[ 1378.157658][T29430]  _copy_to_user+0x32/0xd0
[ 1378.157702][T29430]  simple_read_from_buffer+0xcb/0x170
[ 1378.157733][T29430]  proc_fail_nth_read+0x197/0x270
[ 1378.157760][T29430]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1378.157799][T29430]  ? security_file_permission+0x71/0x210
[ 1378.157832][T29430]  ? rw_verify_area+0xcf/0x680
[ 1378.157861][T29430]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1378.157887][T29430]  vfs_read+0x1e4/0xc60
[ 1378.157921][T29430]  ? __pfx___mutex_lock+0x10/0x10
[ 1378.157942][T29430]  ? __pfx_vfs_read+0x10/0x10
[ 1378.157974][T29430]  ? __fget_files+0x204/0x3c0
[ 1378.158005][T29430]  ? rcu_is_watching+0x12/0xc0
[ 1378.158031][T29430]  ? __fget_files+0x20e/0x3c0
[ 1378.158063][T29430]  ksys_read+0x12a/0x250
[ 1378.158093][T29430]  ? __pfx_ksys_read+0x10/0x10
[ 1378.158128][T29430]  do_syscall_64+0xcd/0x490
[ 1378.158149][T29430]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1378.158172][T29430] RIP: 0033:0x7f8ea4f8d33c
[ 1378.158190][T29430] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1378.158214][T29430] RSP: 002b:00007f8ea5e8b030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1378.158236][T29430] RAX: ffffffffffffffda RBX: 00007f8ea51b5fa0 RCX: 00007f8ea4f8d33c
[ 1378.158253][T29430] RDX: 000000000000000f RSI: 00007f8ea5e8b0a0 RDI: 0000000000000004
[ 1378.158267][T29430] RBP: 00007f8ea5e8b090 R08: 0000000000000000 R09: 0000000080000000
[ 1378.158283][T29430] R10: 0008000000008011 R11: 0000000000000246 R12: 0000000000000001
[ 1378.158297][T29430] R13: 0000000000000000 R14: 00007f8ea51b5fa0 R15: 00007fff8ba40988
[ 1378.158320][T29430]  </TASK>
[ 1378.387373][T29410] FAULT_INJECTION: forcing a failure.
[ 1378.387373][T29410] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1378.401272][T29410] CPU: 1 UID: 0 PID: 29410 Comm: syz.0.5663 Not tainted 6.16.0-rc2-syzkaller-00024-g9afe652958c3 #0 PREEMPT(full) 
[ 1378.401307][T29410] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1378.401322][T29410] Call Trace:
[ 1378.401330][T29410]  <TASK>
[ 1378.401338][T29410]  dump_stack_lvl+0x16c/0x1f0
[ 1378.401382][T29410]  should_fail_ex+0x512/0x640
[ 1378.401421][T29410]  should_fail_alloc_page+0xe7/0x130
[ 1378.401446][T29410]  prepare_alloc_pages+0x3c2/0x610
[ 1378.401474][T29410]  ? rcu_is_watching+0x12/0xc0
[ 1378.401500][T29410]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[ 1378.401538][T29410]  ? kasan_save_stack+0x42/0x60
[ 1378.401572][T29410]  ? kasan_save_stack+0x33/0x60
[ 1378.401608][T29410]  ? kasan_save_stack+0x42/0x60
[ 1378.401653][T29410]  ? kasan_save_stack+0x33/0x60
[ 1378.401687][T29410]  ? kasan_save_track+0x14/0x30
[ 1378.401722][T29410]  ? __kasan_slab_alloc+0x89/0x90
[ 1378.401759][T29410]  ? kmem_cache_alloc_noprof+0x1cb/0x3b0
[ 1378.401796][T29410]  ? __anon_vma_prepare+0x344/0x5e0
[ 1378.401830][T29410]  ? __vmf_anon_prepare+0x11c/0x240
[ 1378.401856][T29410]  ? __handle_mm_fault+0x27f6/0x5490
[ 1378.401887][T29410]  ? handle_mm_fault+0x589/0xd10
[ 1378.401916][T29410]  ? __get_user_pages+0x589/0x3b80
[ 1378.401942][T29410]  ? populate_vma_page_range+0x278/0x3a0
[ 1378.401972][T29410]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1378.402009][T29410]  ? __x64_sys_mmap+0x125/0x190
[ 1378.402043][T29410]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1378.402068][T29410]  ? const_folio_flags+0x5b/0x100
[ 1378.402104][T29410]  ? lru_gen_add_folio+0x1a4/0xef0
[ 1378.402144][T29410]  ? rcu_is_watching+0x12/0xc0
[ 1378.402167][T29410]  ? lock_acquire+0x2cd/0x350
[ 1378.402199][T29410]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1378.402237][T29410]  ? policy_nodemask+0xea/0x4e0
[ 1378.402277][T29410]  alloc_pages_mpol+0x1fb/0x550
[ 1378.402299][T29410]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1378.402320][T29410]  ? lock_release+0x201/0x2f0
[ 1378.402355][T29410]  folio_alloc_mpol_noprof+0x36/0x2f0
[ 1378.402383][T29410]  vma_alloc_folio_noprof+0xed/0x1e0
[ 1378.402409][T29410]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[ 1378.402437][T29410]  ? __handle_mm_fault+0x1092/0x5490
[ 1378.402468][T29410]  ? rcu_is_watching+0x12/0xc0
[ 1378.402491][T29410]  ? lock_release+0x201/0x2f0
[ 1378.402523][T29410]  __handle_mm_fault+0x2f21/0x5490
[ 1378.402558][T29410]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1378.402591][T29410]  ? __pte_offset_map_lock+0x174/0x310
[ 1378.402627][T29410]  ? follow_page_pte+0x3af/0x14c0
[ 1378.402656][T29410]  handle_mm_fault+0x589/0xd10
[ 1378.402691][T29410]  __get_user_pages+0x589/0x3b80
[ 1378.402722][T29410]  ? __pfx_mt_find+0x10/0x10
[ 1378.402746][T29410]  ? __pfx___get_user_pages+0x10/0x10
[ 1378.402774][T29410]  ? __pfx___might_resched+0x10/0x10
[ 1378.402799][T29410]  ? cap_capable+0xb3/0x250
[ 1378.402823][T29410]  populate_vma_page_range+0x278/0x3a0
[ 1378.402854][T29410]  ? __pfx_populate_vma_page_range+0x10/0x10
[ 1378.402884][T29410]  ? __pfx_find_vma_intersection+0x10/0x10
[ 1378.402912][T29410]  ? do_mmap+0x69c/0x1210
[ 1378.402939][T29410]  __mm_populate+0x1d8/0x380
[ 1378.402968][T29410]  ? __pfx___mm_populate+0x10/0x10
[ 1378.402998][T29410]  ? up_write+0x1b2/0x520
[ 1378.403034][T29410]  vm_mmap_pgoff+0x362/0x450
[ 1378.403059][T29410]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1378.403086][T29410]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1378.403115][T29410]  ? __x64_sys_futex+0x1e9/0x4c0
[ 1378.403147][T29410]  ksys_mmap_pgoff+0x7d/0x5c0
[ 1378.403172][T29410]  ? xfd_validate_state+0x61/0x180
[ 1378.403205][T29410]  __x64_sys_mmap+0x125/0x190
[ 1378.403240][T29410]  do_syscall_64+0xcd/0x490
[ 1378.403263][T29410]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1378.403287][T29410] RIP: 0033:0x7fe8b078e929
[ 1378.403306][T29410] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1378.403331][T29410] RSP: 002b:00007fe8b15e0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1378.403355][T29410] RAX: ffffffffffffffda RBX: 00007fe8b09b5fa0 RCX: 00007fe8b078e929
[ 1378.403372][T29410] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[ 1378.403388][T29410] RBP: 00007fe8b0810b39 R08: 0000000000000002 R09: 0000000000008000
[ 1378.403404][T29410] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[ 1378.403420][T29410] R13: 0000000000000000 R14: 00007fe8b09b5fa0 R15: 00007fff3057cf38
[ 1378.403443][T29410]  </TASK>
[ 1380.730571][T27837] Bluetooth: hci4: unexpected subevent 0x01 length: 123 > 18
[ 1382.759936][T29494] ceph: Failed to parse sending metrics switch value 'P^'
[ 1384.635226][T29535] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5692'.
[ 1384.822131][T29545] openvswitch: netlink: IP tunnel dst address not specified
[ 1384.946268][T29547] caif:caif_disconnect_client(): nothing to disconnect
[ 1916.974509][T27828] Bluetooth: hci1: command tx timeout
[ 1917.312675][ T9747] pci 0000:00:01.0: [8086:7110] type 00 class 0x060100 conventional PCI endpoint
[ 1917.529692][   T31] audit: type=1800 audit(4294967311.706:168): pid=9772 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.10146" name="dbroot" dev="configfs" ino=195240 res=0 errno=0
[ 1917.617676][ T9531] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1917.772732][ T9747] PCI: Can't parse resource_alignment parameter: B�F
[ 1917.788685][ T9531] veth0_vlan: entered promiscuous mode
[ 1917.904563][ T9531] veth1_vlan: entered promiscuous mode
[ 1918.103538][ T9531] veth0_macvtap: entered promiscuous mode
[ 1918.158791][ T9531] veth1_macvtap: entered promiscuous mode
[ 1918.303182][ T9531] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1918.386212][ T9531] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1918.505417][ T9531] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1918.575712][ T9531] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1918.584479][ T9531] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1918.656084][ T9531] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1919.043363][T27828] Bluetooth: hci1: command tx timeout
[ 1919.055801][ T9531] ieee80211 phy69: Selected rate control algorithm 'minstrel_ht'
[ 1919.283691][T27830] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1919.317321][ T9531] ieee80211 phy70: Selected rate control algorithm 'minstrel_ht'
[ 1919.336790][T27830] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1919.430836][T27830] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1919.475246][T27830] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1919.668699][ T9844] random: crng reseeded on system resumption
[ 1919.804892][ T9844] PM: hibernation: Marking nosave pages: [mem 0x00000000-0x00000fff]
[ 1919.908771][ T9844] PM: hibernation: Marking nosave pages: [mem 0x0009f000-0x000fffff]
[ 1919.916915][ T9844] PM: hibernation: Marking nosave pages: [mem 0xbfffd000-0xffffffff]
[ 1920.115399][ T9844] PM: hibernation: Basic memory bitmaps created
[ 1920.405570][T27837] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1920.413811][T27837] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1920.421283][T27837] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1920.429956][T27837] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1920.438977][T27837] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1920.474236][ T9851] Unrecognized hibernate image header format!
[ 1920.597897][ T9851] PM: hibernation: Image mismatch: architecture specific data
[ 1920.722762][ T9851] PM: hibernation: Basic memory bitmaps freed
[ 1921.040889][T27839] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1921.238274][T27839] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1921.297904][ T9855] chnl_net:caif_netlink_parms(): no params data found
[ 1921.344118][T27839] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1921.470258][T27839] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1921.753319][ T9855] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1921.793958][ T9855] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1921.846527][ T9855] bridge_slave_0: entered allmulticast mode
[ 1921.881233][ T9855] bridge_slave_0: entered promiscuous mode
[ 1921.921469][ T9855] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1921.960427][ T9855] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1922.001400][ T9855] bridge_slave_1: entered allmulticast mode
[ 1922.026518][ T9876] could not allocate digest TFM handle 
[ 1922.033558][ T9855] bridge_slave_1: entered promiscuous mode
[ 1922.246292][ T9855] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1922.303322][ T9855] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1922.449886][T27839] bridge_slave_1: left allmulticast mode
[ 1922.466414][T27837] Bluetooth: hci3: command tx timeout
[ 1922.477374][T27839] bridge_slave_1: left promiscuous mode
[ 1922.496234][T27839] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1922.536354][T27839] bridge_slave_0: left allmulticast mode
[ 1922.542059][T27839] bridge_slave_0: left promiscuous mode
[ 1922.569193][T27839] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1923.034464][T27839] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1923.133968][T27839] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1923.171217][T27839] bond0 (unregistering): Released all slaves
[ 1923.232418][ T9855] team0: Port device team_slave_0 added
[ 1923.273241][ T9855] team0: Port device team_slave_1 added
[ 1923.349592][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[ 1923.356345][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[ 1923.466415][ T9855] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1923.521276][ T9855] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1923.655448][ T9855] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1923.708496][ T9855] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1923.750074][ T9855] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1923.776007][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1923.901001][ T9855] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1924.069671][ T9912] bridge0: port 3(team0) entered blocking state
[ 1924.100753][ T9912] bridge0: port 3(team0) entered disabled state
[ 1924.149681][ T9912] team0: entered allmulticast mode
[ 1924.188049][ T9912] team_slave_0: entered allmulticast mode
[ 1924.236476][ T9912] team_slave_1: entered allmulticast mode
[ 1924.287581][ T9912] team0: entered promiscuous mode
[ 1924.328089][ T9912] team_slave_0: entered promiscuous mode
[ 1924.367460][ T9912] team_slave_1: entered promiscuous mode
[ 1924.414541][ T9912] bridge0: port 3(team0) entered blocking state
[ 1924.420943][ T9912] bridge0: port 3(team0) entered forwarding state
[ 1924.535811][T27837] Bluetooth: hci3: command tx timeout
[ 1924.640884][T27839] hsr_slave_0: left promiscuous mode
[ 1924.679038][T27839] hsr_slave_1: left promiscuous mode
[ 1924.702439][T27839] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1924.750737][T27839] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1924.798462][T27839] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1924.847534][T27839] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1924.891404][T27839] veth1_macvtap: left promiscuous mode
[ 1924.903974][ T9933] zram0: detected capacity change from 0 to 8
[ 1924.920621][T27839] veth0_macvtap: left promiscuous mode
[ 1924.946607][T27839] veth1_vlan: left promiscuous mode
[ 1924.951915][T27839] veth0_vlan: left promiscuous mode
[ 1924.984639][ T9935] random: crng reseeded on system resumption
[ 1925.097205][ T9935] PM: hibernation: Marking nosave pages: [mem 0x00000000-0x00000fff]
[ 1925.256782][ T9935] PM: hibernation: Marking nosave pages: [mem 0x0009f000-0x000fffff]
[ 1925.349521][ T9935] PM: hibernation: Marking nosave pages: [mem 0xbfffd000-0xffffffff]
[ 1925.403780][ T9935] PM: hibernation: Basic memory bitmaps created
[ 1925.592177][T27839] team0 (unregistering): Port device team_slave_1 removed
[ 1925.630510][T27839] team0 (unregistering): Port device team_slave_0 removed
[ 1925.771404][ T9934] PM: hibernation: Basic memory bitmaps freed
[ 1926.016381][ T9954] FAULT_INJECTION: forcing a failure.
[ 1926.016381][ T9954] name failslab, interval 1, probability 0, space 0, times 0
[ 1926.047562][ T9954] CPU: 1 UID: 0 PID: 9954 Comm: syz.0.10199 Tainted: G     U              6.16.0-rc2-syzkaller-00024-g9afe652958c3 #0 PREEMPT(full) 
[ 1926.047605][ T9954] Tainted: [U]=USER
[ 1926.047614][ T9954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1926.047629][ T9954] Call Trace:
[ 1926.047637][ T9954]  <TASK>
[ 1926.047646][ T9954]  dump_stack_lvl+0x16c/0x1f0
[ 1926.047688][ T9954]  should_fail_ex+0x512/0x640
[ 1926.047725][ T9954]  should_failslab+0xc2/0x120
[ 1926.047748][ T9954]  __kmalloc_cache_noprof+0x6a/0x3e0
[ 1926.047782][ T9954]  ? lock_release+0x201/0x2f0
[ 1926.047813][ T9954]  ? uevent_net_init+0xd3/0x350
[ 1926.047842][ T9954]  uevent_net_init+0xd3/0x350
[ 1926.047869][ T9954]  ? __pfx_uevent_net_init+0x10/0x10
[ 1926.047896][ T9954]  ? __pfx_uevent_net_rcv+0x10/0x10
[ 1926.047923][ T9954]  ? __pfx_genl_release+0x10/0x10
[ 1926.047964][ T9954]  ? __pfx_uevent_net_init+0x10/0x10
[ 1926.047991][ T9954]  ops_init+0x1e2/0x5f0
[ 1926.048015][ T9954]  setup_net+0x1ff/0x510
[ 1926.048037][ T9954]  ? lockdep_init_map_type+0x5c/0x280
[ 1926.048071][ T9954]  ? __pfx_setup_net+0x10/0x10
[ 1926.048092][ T9954]  ? __raw_spin_lock_init+0x3a/0x110
[ 1926.048131][ T9954]  ? debug_mutex_init+0x37/0x70
[ 1926.048155][ T9954]  copy_net_ns+0x2a6/0x5f0
[ 1926.048182][ T9954]  create_new_namespaces+0x3ea/0xa90
[ 1926.048214][ T9954]  unshare_nsproxy_namespaces+0xc0/0x1f0
[ 1926.048242][ T9954]  ksys_unshare+0x45b/0xa40
[ 1926.048274][ T9954]  ? __pfx_ksys_unshare+0x10/0x10
[ 1926.048307][ T9954]  ? xfd_validate_state+0x61/0x180
[ 1926.048343][ T9954]  __x64_sys_unshare+0x31/0x40
[ 1926.048374][ T9954]  do_syscall_64+0xcd/0x490
[ 1926.048397][ T9954]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1926.048423][ T9954] RIP: 0033:0x7fb80df8e929
[ 1926.048441][ T9954] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1926.048466][ T9954] RSP: 002b:00007fb80ee10038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1926.048490][ T9954] RAX: ffffffffffffffda RBX: 00007fb80e1b6080 RCX: 00007fb80df8e929
[ 1926.048507][ T9954] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 1926.048523][ T9954] RBP: 00007fb80e010b39 R08: 0000000000000000 R09: 0000000000000000
[ 1926.048538][ T9954] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1926.048552][ T9954] R13: 0000000000000000 R14: 00007fb80e1b6080 R15: 00007ffea1edaf18
[ 1926.048576][ T9954]  </TASK>
[ 1926.293918][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1926.641488][T27837] Bluetooth: hci3: command tx timeout
[ 1926.692147][ T9959] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[ 1926.780979][ T9855] hsr_slave_0: entered promiscuous mode
[ 1926.795907][ T9855] hsr_slave_1: entered promiscuous mode
[ 1927.578874][ T9968] zswap: compressor  not available
[ 1928.087910][ T9855] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1928.141713][ T9855] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1928.222446][ T9979] Page cache invalidation failure on direct I/O.  Possible data corruption due to collision with buffered I/O!
[ 1928.251870][ T9855] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1928.339744][ T9855] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1928.457239][ T9979] File: /dev/ram7 PID: 9979 Comm: syz.0.10203
[ 1928.675893][T27828] Bluetooth: hci3: command tx timeout
[ 1928.869447][ T9855] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1928.975069][ T9855] 8021q: adding VLAN 0 to HW filter on device team0
[ 1929.044194][T27929] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1929.051463][T27929] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1929.127239][T27929] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1929.134426][T27929] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1929.775494][T10021] mkiss: ax0: crc mode is auto.
[ 1930.769259][ T9855] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1931.899234][T10060] FAULT_INJECTION: forcing a failure.
[ 1931.899234][T10060] name failslab, interval 1, probability 0, space 0, times 0
[ 1931.996178][T10060] CPU: 1 UID: 0 PID: 10060 Comm: syz.3.10209 Tainted: G     U              6.16.0-rc2-syzkaller-00024-g9afe652958c3 #0 PREEMPT(full) 
[ 1931.996221][T10060] Tainted: [U]=USER
[ 1931.996230][T10060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1931.996245][T10060] Call Trace:
[ 1931.996253][T10060]  <TASK>
[ 1931.996262][T10060]  dump_stack_lvl+0x16c/0x1f0
[ 1931.996306][T10060]  should_fail_ex+0x512/0x640
[ 1931.996344][T10060]  ? ops_init+0x77/0x5f0
[ 1931.996365][T10060]  should_failslab+0xc2/0x120
[ 1931.996388][T10060]  __kmalloc_noprof+0xd2/0x510
[ 1931.996424][T10060]  ? __pfx_genl_release+0x10/0x10
[ 1931.996459][T10060]  ops_init+0x77/0x5f0
[ 1931.996482][T10060]  setup_net+0x1ff/0x510
[ 1931.996503][T10060]  ? lockdep_init_map_type+0x5c/0x280
[ 1931.996538][T10060]  ? __pfx_setup_net+0x10/0x10
[ 1931.996560][T10060]  ? __raw_spin_lock_init+0x3a/0x110
[ 1931.996604][T10060]  ? debug_mutex_init+0x37/0x70
[ 1931.996628][T10060]  copy_net_ns+0x2a6/0x5f0
[ 1931.996656][T10060]  create_new_namespaces+0x3ea/0xa90
[ 1931.996685][T10060]  unshare_nsproxy_namespaces+0xc0/0x1f0
[ 1931.996713][T10060]  ksys_unshare+0x45b/0xa40
[ 1931.996745][T10060]  ? __pfx_ksys_unshare+0x10/0x10
[ 1931.996778][T10060]  ? xfd_validate_state+0x61/0x180
[ 1931.996813][T10060]  __x64_sys_unshare+0x31/0x40
[ 1931.996845][T10060]  do_syscall_64+0xcd/0x490
[ 1931.996867][T10060]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1931.996892][T10060] RIP: 0033:0x7f6d21f8e929
[ 1931.996910][T10060] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1931.996936][T10060] RSP: 002b:00007f6d22e9c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1931.996959][T10060] RAX: ffffffffffffffda RBX: 00007f6d221b6080 RCX: 00007f6d21f8e929
[ 1931.996976][T10060] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 1931.996992][T10060] RBP: 00007f6d22010b39 R08: 0000000000000000 R09: 0000000000000000
[ 1931.997007][T10060] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1931.997021][T10060] R13: 0000000000000000 R14: 00007f6d221b6080 R15: 00007ffcecb360d8
[ 1931.997044][T10060]  </TASK>
[ 1932.948749][ T9855] veth0_vlan: entered promiscuous mode
[ 1933.034948][ T9855] veth1_vlan: entered promiscuous mode
[ 1933.154098][ T9855] veth0_macvtap: entered promiscuous mode
[ 1933.240541][ T9855] veth1_macvtap: entered promiscuous mode
[ 1933.370975][ T9855] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1933.474612][ T9855] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1933.639192][ T9855] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1933.721866][ T9855] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1933.778512][ T9855] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1933.836260][ T9855] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1934.052851][ T9855] ieee80211 phy71: Selected rate control algorithm 'minstrel_ht'
[ 1934.177599][ T9855] ieee80211 phy72: Selected rate control algorithm 'minstrel_ht'
[ 1934.198378][T27919] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1934.243063][T27919] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1934.335272][T28848] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1934.373305][T28848] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1934.777314][T10092] Invalid ELF header magic: != ELF
[ 1935.313459][T10120] snd_aloop snd_aloop.0: control 16781581:65535:6:�'x?F���/��zF˷fC���:8 is already present
[ 1938.202109][T10175] netlink: 330 bytes leftover after parsing attributes in process `syz.1.10228'.
[ 1938.294128][T10175] mac80211_hwsim hwsim66 �: renamed from wlan0 (while UP)
[ 1938.973977][T10177] netlink: 326 bytes leftover after parsing attributes in process `syz.0.10230'.
[ 1940.185358][T10188] caif:caif_disconnect_client(): nothing to disconnect
[ 1940.847205][T10234] ieee80211 phy73: Selected rate control algorithm 'minstrel_ht'
[ 1941.683591][T10258] block nbd9: NBD_DISCONNECT
[ 1942.832230][T10286] sd 0:0:1:0: PR command failed: 1026
[ 1942.837685][T10286] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[ 1942.895661][T10286] sd 0:0:1:0: Add. Sense: Invalid command operation code
[ 1944.250881][T27828] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260
[ 1944.250913][T27828] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260
[ 1944.266241][T27828] Bluetooth: hci1: Unknown advertising packet type: 0x7f
[ 1944.266265][T27828] Bluetooth: hci1: adv larger than maximum supported
[ 1944.276323][T27828] Bluetooth: hci1: adv larger than maximum supported
[ 1944.283233][T27828] Bluetooth: hci1: Unknown advertising packet type: 0x72
[ 1944.291283][T27828] Bluetooth: hci1: adv larger than maximum supported
[ 1944.301869][T27828] Bluetooth: hci1: Malformed LE Event: 0x0d
[ 1944.439827][T10317] FAULT_INJECTION: forcing a failure.
[ 1944.439827][T10317] name failslab, interval 1, probability 0, space 0, times 0
[ 1944.483111][T10317] CPU: 1 UID: 0 PID: 10317 Comm: syz.1.10253 Tainted: G     U              6.16.0-rc2-syzkaller-00024-g9afe652958c3 #0 PREEMPT(full) 
[ 1944.483155][T10317] Tainted: [U]=USER
[ 1944.483164][T10317] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1944.483178][T10317] Call Trace:
[ 1944.483186][T10317]  <TASK>
[ 1944.483195][T10317]  dump_stack_lvl+0x16c/0x1f0
[ 1944.483238][T10317]  should_fail_ex+0x512/0x640
[ 1944.483277][T10317]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[ 1944.483313][T10317]  should_failslab+0xc2/0x120
[ 1944.483335][T10317]  __kmalloc_noprof+0xd2/0x510
[ 1944.483374][T10317]  tomoyo_realpath_from_path+0xc2/0x6e0
[ 1944.483411][T10317]  ? tomoyo_profile+0x47/0x60
[ 1944.483450][T10317]  tomoyo_path_perm+0x274/0x460
[ 1944.483476][T10317]  ? tomoyo_path_perm+0x260/0x460
[ 1944.483505][T10317]  ? __pfx_tomoyo_path_perm+0x10/0x10
[ 1944.483539][T10317]  ? __filename_parentat+0x4ba/0x680
[ 1944.483578][T10317]  ? __d_lookup+0x25c/0x4a0
[ 1944.483603][T10317]  ? rcu_is_watching+0x12/0xc0
[ 1944.483628][T10317]  ? lock_release+0x201/0x2f0
[ 1944.483662][T10317]  tomoyo_path_unlink+0x91/0xe0
[ 1944.483700][T10317]  ? __pfx_tomoyo_path_unlink+0x10/0x10
[ 1944.483744][T10317]  ? d_lookup+0xe7/0x190
[ 1944.483773][T10317]  security_path_unlink+0x145/0x2b0
[ 1944.483803][T10317]  do_unlinkat+0x463/0x6a0
[ 1944.483839][T10317]  ? lock_release+0x201/0x2f0
[ 1944.483869][T10317]  ? __pfx_do_unlinkat+0x10/0x10
[ 1944.483911][T10317]  ? getname_flags.part.0+0x1c5/0x550
[ 1944.483939][T10317]  __x64_sys_unlink+0xc5/0x110
[ 1944.483976][T10317]  do_syscall_64+0xcd/0x490
[ 1944.483999][T10317]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1944.484024][T10317] RIP: 0033:0x7f0966b8e929
[ 1944.484043][T10317] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1944.484068][T10317] RSP: 002b:00007f09679a5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000057
[ 1944.484096][T10317] RAX: ffffffffffffffda RBX: 00007f0966db5fa0 RCX: 00007f0966b8e929
[ 1944.484113][T10317] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000640
[ 1944.484129][T10317] RBP: 00007f0966c10b39 R08: 0000000000000000 R09: 0000000000000000
[ 1944.484144][T10317] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1944.484160][T10317] R13: 0000000000000000 R14: 00007f0966db5fa0 R15: 00007ffea83f2ca8
[ 1944.484183][T10317]  </TASK>
[ 1944.487473][T10317] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1944.953481][T10324] FAULT_INJECTION: forcing a failure.
[ 1944.953481][T10324] name failslab, interval 1, probability 0, space 0, times 0
[ 1945.000222][T10324] CPU: 1 UID: 0 PID: 10324 Comm: syz.0.10254 Tainted: G     U              6.16.0-rc2-syzkaller-00024-g9afe652958c3 #0 PREEMPT(full) 
[ 1945.000266][T10324] Tainted: [U]=USER
[ 1945.000274][T10324] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1945.000290][T10324] Call Trace:
[ 1945.000298][T10324]  <TASK>
[ 1945.000307][T10324]  dump_stack_lvl+0x16c/0x1f0
[ 1945.000350][T10324]  should_fail_ex+0x512/0x640
[ 1945.000388][T10324]  should_failslab+0xc2/0x120
[ 1945.000410][T10324]  __kmalloc_cache_noprof+0x6a/0x3e0
[ 1945.000443][T10324]  ? lock_release+0x201/0x2f0
[ 1945.000473][T10324]  ? uevent_net_init+0xd3/0x350
[ 1945.000503][T10324]  uevent_net_init+0xd3/0x350
[ 1945.000529][T10324]  ? __pfx_uevent_net_init+0x10/0x10
[ 1945.000556][T10324]  ? __pfx_uevent_net_rcv+0x10/0x10
[ 1945.000584][T10324]  ? __pfx_genl_release+0x10/0x10
[ 1945.000617][T10324]  ? __pfx_uevent_net_init+0x10/0x10
[ 1945.000644][T10324]  ops_init+0x1e2/0x5f0
[ 1945.000679][T10324]  setup_net+0x1ff/0x510
[ 1945.000701][T10324]  ? lockdep_init_map_type+0x5c/0x280
[ 1945.000734][T10324]  ? __pfx_setup_net+0x10/0x10
[ 1945.000756][T10324]  ? __raw_spin_lock_init+0x3a/0x110
[ 1945.000795][T10324]  ? debug_mutex_init+0x37/0x70
[ 1945.000818][T10324]  copy_net_ns+0x2a6/0x5f0
[ 1945.000846][T10324]  create_new_namespaces+0x3ea/0xa90
[ 1945.000874][T10324]  unshare_nsproxy_namespaces+0xc0/0x1f0
[ 1945.000902][T10324]  ksys_unshare+0x45b/0xa40
[ 1945.000934][T10324]  ? __pfx_ksys_unshare+0x10/0x10
[ 1945.000967][T10324]  ? xfd_validate_state+0x61/0x180
[ 1945.001003][T10324]  __x64_sys_unshare+0x31/0x40
[ 1945.001034][T10324]  do_syscall_64+0xcd/0x490
[ 1945.001057][T10324]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1945.001081][T10324] RIP: 0033:0x7fb80df8e929
[ 1945.001099][T10324] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1945.001124][T10324] RSP: 002b:00007fb80ee10038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1945.001147][T10324] RAX: ffffffffffffffda RBX: 00007fb80e1b6080 RCX: 00007fb80df8e929
[ 1945.001164][T10324] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 1945.001180][T10324] RBP: 00007fb80e010b39 R08: 0000000000000000 R09: 0000000000000000
[ 1945.001196][T10324] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1945.001211][T10324] R13: 0000000000000000 R14: 00007fb80e1b6080 R15: 00007ffea1edaf18
[ 1945.001234][T10324]  </TASK>
[ 1945.245250][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1945.560524][T10335] usbip-vudc usbip-vudc.0: gadget not bound
[ 1945.606314][T10334] delete_channel: no stack
[ 1947.251053][T10390] FAULT_INJECTION: forcing a failure.
[ 1947.251053][T10390] name failslab, interval 1, probability 0, space 0, times 0
[ 1947.315409][T10390] CPU: 1 UID: 0 PID: 10390 Comm: syz.0.10268 Tainted: G     U              6.16.0-rc2-syzkaller-00024-g9afe652958c3 #0 PREEMPT(full) 
[ 1947.315452][T10390] Tainted: [U]=USER
[ 1947.315460][T10390] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1947.315476][T10390] Call Trace:
[ 1947.315484][T10390]  <TASK>
[ 1947.315493][T10390]  dump_stack_lvl+0x16c/0x1f0
[ 1947.315535][T10390]  should_fail_ex+0x512/0x640
[ 1947.315573][T10390]  ? ops_init+0x77/0x5f0
[ 1947.315595][T10390]  should_failslab+0xc2/0x120
[ 1947.315627][T10390]  __kmalloc_noprof+0xd2/0x510
[ 1947.315663][T10390]  ? __pfx_genl_release+0x10/0x10
[ 1947.315698][T10390]  ops_init+0x77/0x5f0
[ 1947.315722][T10390]  setup_net+0x1ff/0x510
[ 1947.315743][T10390]  ? lockdep_init_map_type+0x5c/0x280
[ 1947.315777][T10390]  ? __pfx_setup_net+0x10/0x10
[ 1947.315799][T10390]  ? __raw_spin_lock_init+0x3a/0x110
[ 1947.315836][T10390]  ? debug_mutex_init+0x37/0x70
[ 1947.315860][T10390]  copy_net_ns+0x2a6/0x5f0
[ 1947.315887][T10390]  create_new_namespaces+0x3ea/0xa90
[ 1947.315916][T10390]  unshare_nsproxy_namespaces+0xc0/0x1f0
[ 1947.315943][T10390]  ksys_unshare+0x45b/0xa40
[ 1947.315975][T10390]  ? __pfx_ksys_unshare+0x10/0x10
[ 1947.316007][T10390]  ? xfd_validate_state+0x61/0x180
[ 1947.316042][T10390]  __x64_sys_unshare+0x31/0x40
[ 1947.316077][T10390]  do_syscall_64+0xcd/0x490
[ 1947.316099][T10390]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1947.316124][T10390] RIP: 0033:0x7fb80df8e929
[ 1947.316143][T10390] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1947.316168][T10390] RSP: 002b:00007fb80ee10038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1947.316191][T10390] RAX: ffffffffffffffda RBX: 00007fb80e1b6080 RCX: 00007fb80df8e929
[ 1947.316208][T10390] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 1947.316223][T10390] RBP: 00007fb80e010b39 R08: 0000000000000000 R09: 0000000000000000
[ 1947.316238][T10390] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1947.316254][T10390] R13: 0000000000000000 R14: 00007fb80e1b6080 R15: 00007ffea1edaf18
[ 1947.316277][T10390]  </TASK>
[ 1947.527377][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1950.144928][T10430] netlink: 342 bytes leftover after parsing attributes in process `syz.0.10276'.
[ 1952.171032][T10443] mkiss: ax0: crc mode is auto.
[ 1954.881485][T10521] vivid-007: =================  START STATUS  =================
[ 1954.971346][T10521] vivid-007: Generate PTS: true
[ 1955.020341][T10521] vivid-007: Generate SCR: true
[ 1955.065716][T10521] tpg source WxH: 320x240 (Y'CbCr)
[ 1955.156561][T10521] tpg field: 1
[ 1955.223870][T10521] tpg crop: (0,0)/320x240
[ 1955.293201][T10521] tpg compose: (0,0)/320x240
[ 1955.368854][T10521] tpg colorspace: 8
[ 1955.372741][T10521] tpg transfer function: 0/0
[ 1955.559849][T10521] tpg Y'CbCr encoding: 0/0
[ 1955.587631][T10528] can: request_module (can-proto-3) failed.
[ 1955.713266][T10521] tpg quantization: 0/0
[ 1955.769608][T10521] tpg RGB range: 0/2
[ 1955.907130][T10521] vivid-007: ==================  END STATUS  ==================
[ 1959.058117][T10583] netlink: 8 bytes leftover after parsing attributes in process `syz.1.10312'.
[ 1959.096678][T10583] ieee80211 phy74: Selected rate control algorithm 'minstrel_ht'
[ 1961.410572][T10625] snd_aloop snd_aloop.0: control 16781581:65533:1073741830:�'x?F���/��zF˷fC���:45170 is already present
[ 1961.635145][T10647] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10322'.
[ 1961.678055][T10628] openvswitch: netlink: nsh attribute has 2 unknown bytes.
[ 1963.359700][T10667] ubi0: attaching mtd0
[ 1963.388318][T10667] ubi0: scanning is finished
[ 1963.412747][T10667] ubi0 error: ubi_read_volume_table: the layout volume was not found
[ 1963.676861][T10679] caif:caif_disconnect_client(): nothing to disconnect
[ 1963.724111][T10679] caif:caif_disconnect_client(): nothing to disconnect
[ 1963.979056][T10667] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[ 1964.150741][T10687] Invalid ELF header magic: != ELF
[ 1964.484454][T10701] random: crng reseeded on system resumption
[ 1964.524563][T10701] PM: hibernation: Marking nosave pages: [mem 0x00000000-0x00000fff]
[ 1964.583504][T10701] PM: hibernation: Marking nosave pages: [mem 0x0009f000-0x000fffff]
[ 1964.634391][T10701] PM: hibernation: Marking nosave pages: [mem 0xbfffd000-0xffffffff]
[ 1964.679211][T10701] PM: hibernation: Basic memory bitmaps created
[ 1964.701241][T10700] snd_aloop snd_aloop.0: control 4:65539:6:�'x?F���/��zF˷fC���:7 is already present
[ 1965.269715][T10688] PM: hibernation: Basic memory bitmaps freed
[ 1966.307004][T10740] netlink: 28 bytes leftover after parsing attributes in process `syz.4.10342'.
[ 1966.326656][T10738] input input247: cannot allocate more than FF_MAX_EFFECTS effects
[ 1966.431848][T10740] bond0: (slave bond_slave_0): Releasing backup interface
[ 1966.522860][T10734] could not allocate digest TFM handle 
[ 1967.483000][T10763] FAULT_INJECTION: forcing a failure.
[ 1967.483000][T10763] name failslab, interval 1, probability 0, space 0, times 0
[ 1967.574997][T10763] CPU: 1 UID: 0 PID: 10763 Comm: syz.1.10344 Tainted: G     U              6.16.0-rc2-syzkaller-00024-g9afe652958c3 #0 PREEMPT(full) 
[ 1967.575041][T10763] Tainted: [U]=USER
[ 1967.575049][T10763] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1967.575065][T10763] Call Trace:
[ 1967.575072][T10763]  <TASK>
[ 1967.575082][T10763]  dump_stack_lvl+0x16c/0x1f0
[ 1967.575129][T10763]  should_fail_ex+0x512/0x640
[ 1967.575168][T10763]  should_failslab+0xc2/0x120
[ 1967.575190][T10763]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1967.575228][T10763]  ? lock_release+0x201/0x2f0
[ 1967.575269][T10763]  ? __proc_create+0x2ce/0x8c0
[ 1967.575310][T10763]  __proc_create+0x2ce/0x8c0
[ 1967.575348][T10763]  ? __pfx___proc_create+0x10/0x10
[ 1967.575389][T10763]  ? __pfx_can_rcvlist_sff_proc_show+0x10/0x10
[ 1967.575420][T10763]  _proc_mkdir+0xb9/0x200
[ 1967.575458][T10763]  ? __pfx__proc_mkdir+0x10/0x10
[ 1967.575499][T10763]  ? can_init_proc+0x37f/0x4d0
[ 1967.575524][T10763]  ? __pfx_canbcm_pernet_init+0x10/0x10
[ 1967.575553][T10763]  canbcm_pernet_init+0x4d/0xa0
[ 1967.575581][T10763]  ops_init+0x1e2/0x5f0
[ 1967.575606][T10763]  setup_net+0x1ff/0x510
[ 1967.575627][T10763]  ? lockdep_init_map_type+0x5c/0x280
[ 1967.575660][T10763]  ? __pfx_setup_net+0x10/0x10
[ 1967.575682][T10763]  ? __raw_spin_lock_init+0x3a/0x110
[ 1967.575720][T10763]  ? debug_mutex_init+0x37/0x70
[ 1967.575744][T10763]  copy_net_ns+0x2a6/0x5f0
[ 1967.575771][T10763]  create_new_namespaces+0x3ea/0xa90
[ 1967.575800][T10763]  unshare_nsproxy_namespaces+0xc0/0x1f0
[ 1967.575829][T10763]  ksys_unshare+0x45b/0xa40
[ 1967.575861][T10763]  ? __pfx_ksys_unshare+0x10/0x10
[ 1967.575893][T10763]  ? xfd_validate_state+0x61/0x180
[ 1967.575930][T10763]  __x64_sys_unshare+0x31/0x40
[ 1967.575961][T10763]  do_syscall_64+0xcd/0x490
[ 1967.575984][T10763]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1967.576010][T10763] RIP: 0033:0x7f0966b8e929
[ 1967.576029][T10763] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1967.576054][T10763] RSP: 002b:00007f0967984038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1967.576078][T10763] RAX: ffffffffffffffda RBX: 00007f0966db6080 RCX: 00007f0966b8e929
[ 1967.576095][T10763] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 1967.576110][T10763] RBP: 00007f0966c10b39 R08: 0000000000000000 R09: 0000000000000000
[ 1967.576126][T10763] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1967.576140][T10763] R13: 0000000000000000 R14: 00007f0966db6080 R15: 00007ffea83f2ca8
[ 1967.576163][T10763]  </TASK>
[ 1967.833406][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1968.200559][T10774] netlink: zone id is out of range
[ 1968.205749][T10774] netlink: zone id is out of range
[ 1968.337552][T10774] netlink: zone id is out of range
[ 1968.342736][T10774] netlink: zone id is out of range
[ 1968.413656][T10774] netlink: zone id is out of range
[ 1968.455949][T10774] netlink: zone id is out of range
[ 1968.464140][T10778] FAULT_INJECTION: forcing a failure.
[ 1968.464140][T10778] name failslab, interval 1, probability 0, space 0, times 0
[ 1968.513711][T10774] netlink: zone id is out of range
[ 1968.527896][T10778] CPU: 1 UID: 0 PID: 10778 Comm: syz.4.10348 Tainted: G     U              6.16.0-rc2-syzkaller-00024-g9afe652958c3 #0 PREEMPT(full) 
[ 1968.527937][T10778] Tainted: [U]=USER
[ 1968.527946][T10778] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1968.527961][T10778] Call Trace:
[ 1968.527969][T10778]  <TASK>
[ 1968.527978][T10778]  dump_stack_lvl+0x16c/0x1f0
[ 1968.528021][T10778]  should_fail_ex+0x512/0x640
[ 1968.528060][T10778]  should_failslab+0xc2/0x120
[ 1968.528083][T10778]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[ 1968.528121][T10778]  ? alloc_inode+0x64/0x240
[ 1968.528153][T10778]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1968.528193][T10778]  ? __pfx_rpc_alloc_inode+0x10/0x10
[ 1968.528225][T10778]  alloc_inode+0x64/0x240
[ 1968.528249][T10778]  new_inode+0x22/0x1c0
[ 1968.528274][T10778]  __rpc_create_common+0x57/0x2f0
[ 1968.528310][T10778]  rpc_populate.constprop.0+0x20a/0x5d0
[ 1968.528349][T10778]  rpc_fill_super+0x485/0x840
[ 1968.528384][T10778]  ? sget_fc+0x808/0xc20
[ 1968.528418][T10778]  ? __pfx_rpc_fill_super+0x10/0x10
[ 1968.528454][T10778]  get_tree_keyed+0x10b/0x1d0
[ 1968.528487][T10778]  vfs_get_tree+0x8b/0x340
[ 1968.528514][T10778]  vfs_cmd_create+0xd7/0x2a0
[ 1968.528555][T10778]  __do_sys_fsconfig+0x7b8/0xbe0
[ 1968.528578][T10778]  ? __pfx___do_sys_fsconfig+0x10/0x10
[ 1968.528607][T10778]  do_syscall_64+0xcd/0x490
[ 1968.528629][T10778]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1968.528654][T10778] RIP: 0033:0x7f7a28f8e929
[ 1968.528672][T10778] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1968.528696][T10778] RSP: 002b:00007f7a29e0c038 EFLAGS: 00000246 ORIG_RAX: 00000000000001af
[ 1968.528720][T10778] RAX: ffffffffffffffda RBX: 00007f7a291b6080 RCX: 00007f7a28f8e929
[ 1968.528737][T10778] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000008
[ 1968.528753][T10778] RBP: 00007f7a29010b39 R08: 0000000000000000 R09: 0000000000000000
[ 1968.528768][T10778] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1968.528783][T10778] R13: 0000000000000000 R14: 00007f7a291b6080 R15: 00007ffe406bad58
[ 1968.528806][T10778]  </TASK>
[ 1968.528816][T10778] net/sunrpc/rpc_pipe.c: __rpc_create_common failed to allocate inode for dentry info
[ 1968.814547][T10774] netlink: zone id is out of range
[ 1968.819709][T10774] netlink: zone id is out of range
[ 1968.866356][T10774] netlink: zone id is out of range
[ 1969.488670][T10778] net/sunrpc/rpc_pipe.c: rpc_populate failed to populate directory clntXX
[ 1970.516780][T10795] caif:caif_disconnect_client(): nothing to disconnect
[ 1971.244640][T27828] Bluetooth: hci2: Malformed LE Event: 0x1d
[ 1971.442473][T10813] FAULT_INJECTION: forcing a failure.
[ 1971.442473][T10813] name failslab, interval 1, probability 0, space 0, times 0
[ 1971.468404][T10837] netlink: 342 bytes leftover after parsing attributes in process `syz.3.10362'.
[ 1971.498756][T10813] CPU: 1 UID: 0 PID: 10813 Comm: syz.4.10358 Tainted: G     U              6.16.0-rc2-syzkaller-00024-g9afe652958c3 #0 PREEMPT(full) 
[ 1971.498800][T10813] Tainted: [U]=USER
[ 1971.498809][T10813] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1971.498824][T10813] Call Trace:
[ 1971.498832][T10813]  <TASK>
[ 1971.498841][T10813]  dump_stack_lvl+0x16c/0x1f0
[ 1971.498884][T10813]  should_fail_ex+0x512/0x640
[ 1971.498922][T10813]  should_failslab+0xc2/0x120
[ 1971.498945][T10813]  __kmalloc_cache_noprof+0x6a/0x3e0
[ 1971.498978][T10813]  ? io_uring_setup+0x24f/0x2080
[ 1971.499011][T10813]  io_uring_setup+0x24f/0x2080
[ 1971.499044][T10813]  ? __pfx_io_uring_setup+0x10/0x10
[ 1971.499075][T10813]  ? do_futex+0x122/0x350
[ 1971.499105][T10813]  ? __pfx_do_futex+0x10/0x10
[ 1971.499133][T10813]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1971.499182][T10813]  ? xfd_validate_state+0x61/0x180
[ 1971.499219][T10813]  ? __pfx_do_writev+0x10/0x10
[ 1971.499254][T10813]  __x64_sys_io_uring_setup+0xc2/0x170
[ 1971.499288][T10813]  do_syscall_64+0xcd/0x490
[ 1971.499310][T10813]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1971.499336][T10813] RIP: 0033:0x7f7a28f8e929
[ 1971.499354][T10813] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1971.499378][T10813] RSP: 002b:00007f7a29e2d038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9
[ 1971.499401][T10813] RAX: ffffffffffffffda RBX: 00007f7a291b5fa0 RCX: 00007f7a28f8e929
[ 1971.499418][T10813] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006
[ 1971.499434][T10813] RBP: 00007f7a29010b39 R08: 0000000000000000 R09: 0000000000000000
[ 1971.499449][T10813] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1971.499477][T10813] R13: 0000000000000000 R14: 00007f7a291b5fa0 R15: 00007ffe406bad58
[ 1971.499500][T10813]  </TASK>
[ 1971.817892][T10838] Invalid ELF header magic: != ELF
[ 1971.827641][T10838] Invalid ELF header magic: != ELF
[ 1971.837089][T10838] Invalid ELF header magic: != ELF
[ 1971.846546][T10838] Invalid ELF header magic: != ELF
[ 1971.855929][T10838] Invalid ELF header magic: != ELF
[ 1971.865532][T10838] Invalid ELF header magic: != ELF
[ 1971.874824][T10838] Invalid ELF header magic: != ELF
[ 1971.886078][T10829] FAULT_INJECTION: forcing a failure.
[ 1971.886078][T10829] name failslab, interval 1, probability 0, space 0, times 0
[ 1971.941244][T10829] CPU: 1 UID: 0 PID: 10829 Comm: syz.3.10362 Tainted: G     U              6.16.0-rc2-syzkaller-00024-g9afe652958c3 #0 PREEMPT(full) 
[ 1971.941287][T10829] Tainted: [U]=USER
[ 1971.941296][T10829] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1971.941312][T10829] Call Trace:
[ 1971.941320][T10829]  <TASK>
[ 1971.941329][T10829]  dump_stack_lvl+0x16c/0x1f0
[ 1971.941372][T10829]  should_fail_ex+0x512/0x640
[ 1971.941411][T10829]  should_failslab+0xc2/0x120
[ 1971.941434][T10829]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1971.941472][T10829]  ? __kernfs_new_node+0xd2/0x8e0
[ 1971.941508][T10829]  __kernfs_new_node+0xd2/0x8e0
[ 1971.941542][T10829]  ? rcu_is_watching+0x12/0xc0
[ 1971.941565][T10829]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1971.941599][T10829]  ? __pfx___might_resched+0x10/0x10
[ 1971.941626][T10829]  ? rcu_is_watching+0x12/0xc0
[ 1971.941650][T10829]  ? kernfs_root+0xee/0x2a0
[ 1971.941681][T10829]  ? rcu_is_watching+0x12/0xc0
[ 1971.941705][T10829]  ? lock_release+0x201/0x2f0
[ 1971.941739][T10829]  kernfs_new_node+0x13c/0x1e0
[ 1971.941778][T10829]  __kernfs_create_file+0x53/0x350
[ 1971.941806][T10829]  sysfs_add_file_mode_ns+0x207/0x3c0
[ 1971.941841][T10829]  internal_create_group+0x578/0xf30
[ 1971.941879][T10829]  ? __pfx_internal_create_group+0x10/0x10
[ 1971.941917][T10829]  ? kernfs_create_link+0x1bd/0x240
[ 1971.941952][T10829]  internal_create_groups+0x9d/0x150
[ 1971.941988][T10829]  device_add+0x6d1/0x1a70
[ 1971.942013][T10829]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1971.942051][T10829]  ? __pfx_device_add+0x10/0x10
[ 1971.942075][T10829]  ? lockdep_init_map_type+0x5c/0x280
[ 1971.942109][T10829]  ? __init_waitqueue_head+0xca/0x150
[ 1971.942151][T10829]  netdev_register_kobject+0x182/0x3a0
[ 1971.942181][T10829]  register_netdevice+0x13dc/0x2270
[ 1971.942209][T10829]  ? __pfx_register_netdevice+0x10/0x10
[ 1971.942239][T10829]  __ip_tunnel_create+0x540/0x6e0
[ 1971.942269][T10829]  ? __pfx___ip_tunnel_create+0x10/0x10
[ 1971.942308][T10829]  ip_tunnel_init_net+0x22f/0x7d0
[ 1971.942341][T10829]  ? __pfx_ip_tunnel_init_net+0x10/0x10
[ 1971.942376][T10829]  ? trace_kmalloc+0x2b/0xd0
[ 1971.942400][T10829]  ? __kmalloc_noprof+0x242/0x510
[ 1971.942435][T10829]  ? lockdep_init_map_type+0x5c/0x280
[ 1971.942470][T10829]  ? __pfx_ipgre_tap_init_net+0x10/0x10
[ 1971.942494][T10829]  ops_init+0x1e2/0x5f0
[ 1971.942518][T10829]  setup_net+0x1ff/0x510
[ 1971.942540][T10829]  ? lockdep_init_map_type+0x5c/0x280
[ 1971.942573][T10829]  ? __pfx_setup_net+0x10/0x10
[ 1971.942595][T10829]  ? __raw_spin_lock_init+0x3a/0x110
[ 1971.942632][T10829]  ? debug_mutex_init+0x37/0x70
[ 1971.942656][T10829]  copy_net_ns+0x2a6/0x5f0
[ 1971.942683][T10829]  create_new_namespaces+0x3ea/0xa90
[ 1971.942712][T10829]  unshare_nsproxy_namespaces+0xc0/0x1f0
[ 1971.942739][T10829]  ksys_unshare+0x45b/0xa40
[ 1971.942771][T10829]  ? __pfx_ksys_unshare+0x10/0x10
[ 1971.942804][T10829]  ? xfd_validate_state+0x61/0x180
[ 1971.942839][T10829]  __x64_sys_unshare+0x31/0x40
[ 1971.942871][T10829]  do_syscall_64+0xcd/0x490
[ 1971.942894][T10829]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1971.942919][T10829] RIP: 0033:0x7f6d21f8e929
[ 1971.942943][T10829] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1971.942969][T10829] RSP: 002b:00007f6d22ebd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1971.942992][T10829] RAX: ffffffffffffffda RBX: 00007f6d221b5fa0 RCX: 00007f6d21f8e929
[ 1971.943010][T10829] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 1971.943026][T10829] RBP: 00007f6d22010b39 R08: 0000000000000000 R09: 0000000000000000
[ 1971.943041][T10829] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1971.943057][T10829] R13: 0000000000000000 R14: 00007f6d221b5fa0 R15: 00007ffcecb360d8
[ 1971.943080][T10829]  </TASK>
[ 1974.285387][T10888] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10371'.
[ 1974.550349][T10894] sysfs_service_op_show: Client not running :-5:
[ 1974.791751][T10888] bond0: (slave bond_slave_0): Releasing backup interface
[ 1975.858163][T10908] bcachefs: bch2_ioctl_fsck_offline() ret EFAULT
[ 1977.913186][T27828] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260
[ 1977.913218][T27828] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260
[ 1977.929298][T27828] Bluetooth: hci1: Unknown advertising packet type: 0x7f
[ 1977.929324][T27828] Bluetooth: hci1: adv larger than maximum supported
[ 1977.947249][T27828] Bluetooth: hci1: adv larger than maximum supported
[ 1977.954080][T27828] Bluetooth: hci1: Malformed LE Event: 0x0d
[ 1978.697050][T10955] blktrace: Concurrent blktraces are not allowed on ram7
[ 1978.756811][T10955] FAULT_INJECTION: forcing a failure.
[ 1978.756811][T10955] name failslab, interval 1, probability 0, space 0, times 0
[ 1978.877182][T10955] CPU: 1 UID: 0 PID: 10955 Comm: syz.3.10386 Tainted: G     U              6.16.0-rc2-syzkaller-00024-g9afe652958c3 #0 PREEMPT(full) 
[ 1978.877226][T10955] Tainted: [U]=USER
[ 1978.877234][T10955] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1978.877250][T10955] Call Trace:
[ 1978.877258][T10955]  <TASK>
[ 1978.877267][T10955]  dump_stack_lvl+0x16c/0x1f0
[ 1978.877310][T10955]  should_fail_ex+0x512/0x640
[ 1978.877348][T10955]  should_failslab+0xc2/0x120
[ 1978.877372][T10955]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[ 1978.877408][T10955]  ? __pfx___might_resched+0x10/0x10
[ 1978.877438][T10955]  ? alloc_vmap_area+0x645/0x29c0
[ 1978.877465][T10955]  alloc_vmap_area+0x645/0x29c0
[ 1978.877496][T10955]  ? __pfx_alloc_vmap_area+0x10/0x10
[ 1978.877533][T10955]  __get_vm_area_node+0x1ca/0x330
[ 1978.877563][T10955]  __vmalloc_node_range_noprof+0x271/0x14b0
[ 1978.877596][T10955]  ? __snd_dma_alloc_pages+0x50/0x90
[ 1978.877631][T10955]  ? __mutex_trylock_common+0xe9/0x250
[ 1978.877665][T10955]  ? __pfx___mutex_trylock_common+0x10/0x10
[ 1978.877699][T10955]  ? __snd_dma_alloc_pages+0x50/0x90
[ 1978.877735][T10955]  ? do_alloc_pages+0xd7/0x280
[ 1978.877764][T10955]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1978.877795][T10955]  ? lock_release+0x201/0x2f0
[ 1978.877828][T10955]  ? __mutex_unlock_slowpath+0x161/0x6a0
[ 1978.877870][T10955]  ? __snd_dma_alloc_pages+0x50/0x90
[ 1978.877902][T10955]  __vmalloc_node_noprof+0xad/0xf0
[ 1978.877932][T10955]  ? __snd_dma_alloc_pages+0x50/0x90
[ 1978.877965][T10955]  ? __pfx_snd_dma_vmalloc_alloc+0x10/0x10
[ 1978.878001][T10955]  __snd_dma_alloc_pages+0x50/0x90
[ 1978.878035][T10955]  snd_dma_alloc_dir_pages+0x151/0x240
[ 1978.878070][T10955]  do_alloc_pages+0x115/0x280
[ 1978.878102][T10955]  snd_pcm_lib_malloc_pages+0x3df/0x980
[ 1978.878138][T10955]  snd_pcm_hw_params+0x15e1/0x1b40
[ 1978.878173][T10955]  ? __pfx_snd_pcm_hw_params+0x10/0x10
[ 1978.878206][T10955]  ? snd_pcm_hw_param_near.constprop.0+0x734/0x8e0
[ 1978.878238][T10955]  ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10
[ 1978.878268][T10955]  ? __asan_memset+0x23/0x50
[ 1978.878301][T10955]  snd_pcm_kernel_ioctl+0x147/0x2e0
[ 1978.878334][T10955]  snd_pcm_oss_change_params_locked+0x1432/0x3a30
[ 1978.878374][T10955]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[ 1978.878402][T10955]  ? rcu_is_watching+0x12/0xc0
[ 1978.878435][T10955]  snd_pcm_oss_get_active_substream+0x168/0x1d0
[ 1978.878466][T10955]  snd_pcm_oss_ioctl+0x21e9/0x37a0
[ 1978.878494][T10955]  ? __fget_files+0x204/0x3c0
[ 1978.878530][T10955]  ? hook_file_ioctl_common+0x145/0x410
[ 1978.878557][T10955]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[ 1978.878588][T10955]  ? __fget_files+0x20e/0x3c0
[ 1978.878622][T10955]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[ 1978.878652][T10955]  __x64_sys_ioctl+0x18b/0x210
[ 1978.878682][T10955]  do_syscall_64+0xcd/0x490
[ 1978.878704][T10955]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1978.878730][T10955] RIP: 0033:0x7f6d21f8e929
[ 1978.878749][T10955] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1978.878774][T10955] RSP: 002b:00007f6d22ebd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1978.878798][T10955] RAX: ffffffffffffffda RBX: 00007f6d221b5fa0 RCX: 00007f6d21f8e929
[ 1978.878816][T10955] RDX: 00002000000000c0 RSI: 00000000c0045002 RDI: 0000000000000003
[ 1978.878832][T10955] RBP: 00007f6d22010b39 R08: 0000000000000000 R09: 0000000000000000
[ 1978.878847][T10955] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1978.878863][T10955] R13: 0000000000000000 R14: 00007f6d221b5fa0 R15: 00007ffcecb360d8
[ 1978.878886][T10955]  </TASK>
[ 1979.561048][T10955] warn_alloc: 1 callbacks suppressed
[ 1979.561068][T10955] syz.3.10386: vmalloc error: size 2097152, vm_struct allocation failed, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1
[ 1979.580861][T10955] CPU: 1 UID: 0 PID: 10955 Comm: syz.3.10386 Tainted: G     U              6.16.0-rc2-syzkaller-00024-g9afe652958c3 #0 PREEMPT(full) 
[ 1979.580903][T10955] Tainted: [U]=USER
[ 1979.580911][T10955] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1979.580927][T10955] Call Trace:
[ 1979.580936][T10955]  <TASK>
[ 1979.580946][T10955]  dump_stack_lvl+0x16c/0x1f0
[ 1979.580989][T10955]  warn_alloc+0x248/0x3a0
[ 1979.581026][T10955]  ? __pfx_warn_alloc+0x10/0x10
[ 1979.581063][T10955]  ? kfree+0x2b4/0x4d0
[ 1979.581095][T10955]  ? __get_vm_area_node+0x208/0x330
[ 1979.581127][T10955]  __vmalloc_node_range_noprof+0xb2d/0x14b0
[ 1979.581159][T10955]  ? __mutex_trylock_common+0xe9/0x250
[ 1979.581194][T10955]  ? __pfx___mutex_trylock_common+0x10/0x10
[ 1979.581229][T10955]  ? __snd_dma_alloc_pages+0x50/0x90
[ 1979.581265][T10955]  ? do_alloc_pages+0xd7/0x280
[ 1979.581301][T10955]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1979.581332][T10955]  ? lock_release+0x201/0x2f0
[ 1979.581365][T10955]  ? __mutex_unlock_slowpath+0x161/0x6a0
[ 1979.581479][T10955]  ? __snd_dma_alloc_pages+0x50/0x90
[ 1979.581517][T10955]  __vmalloc_node_noprof+0xad/0xf0
[ 1979.581549][T10955]  ? __snd_dma_alloc_pages+0x50/0x90
[ 1979.581582][T10955]  ? __pfx_snd_dma_vmalloc_alloc+0x10/0x10
[ 1979.581619][T10955]  __snd_dma_alloc_pages+0x50/0x90
[ 1979.581652][T10955]  snd_dma_alloc_dir_pages+0x151/0x240
[ 1979.581693][T10955]  do_alloc_pages+0x115/0x280
[ 1979.581736][T10955]  snd_pcm_lib_malloc_pages+0x3df/0x980
[ 1979.581773][T10955]  snd_pcm_hw_params+0x15e1/0x1b40
[ 1979.581809][T10955]  ? __pfx_snd_pcm_hw_params+0x10/0x10
[ 1979.581843][T10955]  ? snd_pcm_hw_param_near.constprop.0+0x734/0x8e0
[ 1979.581881][T10955]  ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10
[ 1979.581911][T10955]  ? __asan_memset+0x23/0x50
[ 1979.581946][T10955]  snd_pcm_kernel_ioctl+0x147/0x2e0
[ 1979.581980][T10955]  snd_pcm_oss_change_params_locked+0x1432/0x3a30
[ 1979.582018][T10955]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[ 1979.582049][T10955]  ? rcu_is_watching+0x12/0xc0
[ 1979.582084][T10955]  snd_pcm_oss_get_active_substream+0x168/0x1d0
[ 1979.582117][T10955]  snd_pcm_oss_ioctl+0x21e9/0x37a0
[ 1979.582148][T10955]  ? __fget_files+0x204/0x3c0
[ 1979.582181][T10955]  ? hook_file_ioctl_common+0x145/0x410
[ 1979.582209][T10955]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[ 1979.582249][T10955]  ? __fget_files+0x20e/0x3c0
[ 1979.582286][T10955]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[ 1979.582318][T10955]  __x64_sys_ioctl+0x18b/0x210
[ 1979.582349][T10955]  do_syscall_64+0xcd/0x490
[ 1979.582373][T10955]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1979.582400][T10955] RIP: 0033:0x7f6d21f8e929
[ 1979.582421][T10955] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1979.582453][T10955] RSP: 002b:00007f6d22ebd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1979.582476][T10955] RAX: ffffffffffffffda RBX: 00007f6d221b5fa0 RCX: 00007f6d21f8e929
[ 1979.582494][T10955] RDX: 00002000000000c0 RSI: 00000000c0045002 RDI: 0000000000000003
[ 1979.582510][T10955] RBP: 00007f6d22010b39 R08: 0000000000000000 R09: 0000000000000000
[ 1979.582527][T10955] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1979.582542][T10955] R13: 0000000000000000 R14: 00007f6d221b5fa0 R15: 00007ffcecb360d8
[ 1979.582566][T10955]  </TASK>
[ 1979.582576][T10955] Mem-Info:
[ 1980.049150][T10955] active_anon:12800 inactive_anon:39197 isolated_anon:0
[ 1980.049150][T10955]  active_file:12846 inactive_file:50088 isolated_file:0
[ 1980.049150][T10955]  unevictable:768 dirty:52 writeback:0
[ 1980.049150][T10955]  slab_reclaimable:12232 slab_unreclaimable:100989
[ 1980.049150][T10955]  mapped:42378 shmem:34771 pagetables:1715
[ 1980.049150][T10955]  sec_pagetables:0 bounce:0
[ 1980.049150][T10955]  kernel_misc_reclaimable:0
[ 1980.049150][T10955]  free:1241806 free_pcp:31686 free_cma:0
[ 1980.169342][T10955] Node 0 active_anon:51200kB inactive_anon:157516kB active_file:51380kB inactive_file:200220kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:170084kB dirty:208kB writeback:0kB shmem:138300kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12272kB pagetables:6764kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1980.331656][T10955] Node 1 active_anon:0kB inactive_anon:0kB active_file:4kB inactive_file:132kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1408kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:80kB pagetables:148kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1980.379026][T10967] Invalid ELF header magic: != ELF
[ 1980.492626][T10955] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1980.635725][T10955] lowmem_reserve[]: 0 2481 2482 2482 2482
[ 1980.656716][T10955] Node 0 DMA32 free:1075944kB boost:0kB min:34076kB low:42592kB high:51108kB reserved_highatomic:0KB free_highatomic:0KB active_anon:51148kB inactive_anon:166616kB active_file:50144kB inactive_file:200148kB unevictable:1536kB writepending:52kB present:3129332kB managed:2540876kB mlocked:0kB bounce:0kB free_pcp:75224kB local_pcp:75224kB free_cma:0kB
[ 1980.778323][T10955] lowmem_reserve[]: 0 0 1 1 1
[ 1980.798554][T10955] Node 0 Normal free:20kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:52kB inactive_anon:0kB active_file:1236kB inactive_file:72kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB
[ 1980.898731][T10955] lowmem_reserve[]: 0 0 0 0 0
[ 1980.921724][T10955] Node 1 Normal free:3875900kB boost:0kB min:55804kB low:69752kB high:83700kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:4kB inactive_file:132kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:41016kB local_pcp:41016kB free_cma:0kB
[ 1981.009961][T10955] lowmem_reserve[]: 0 0 0 0 0
[ 1981.020030][T10955] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 1981.051725][T10955] Node 0 DMA32: 7824*4kB (UME) 1558*8kB (UME) 414*16kB (UME) 346*32kB (UME) 282*64kB (UME) 779*128kB (UME) 519*256kB (UME) 262*512kB (UME) 99*1024kB (UM) 2*2048kB (M) 128*4096kB (UM) = 1075984kB
[ 1981.095058][T10955] Node 0 Normal: 1*4kB (M) 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20kB
[ 1981.120352][T10955] Node 1 Normal: 4*4kB (UME) 9*8kB (ME) 3*16kB (UME) 117*32kB (UME) 109*64kB (UME) 36*128kB (UME) 22*256kB (UME) 7*512kB (UM) 3*1024kB (UM) 5*2048kB (UME) 937*4096kB (M) = 3875944kB
[ 1981.161002][T10955] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1981.183281][T10955] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1981.209952][T10955] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1981.231275][T10955] Node 1 hugepages_total=3 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB
[ 1981.251389][T10955] 106632 total pagecache pages
[ 1981.256207][T10955] 3 pages in swap cache
[ 1981.270911][T10955] Free swap  = 124984kB
[ 1981.275187][T10955] Total swap = 124996kB
[ 1981.279353][T10955] 2097051 pages RAM
[ 1981.299423][T10955] 0 pages HighMem/MovableOnly
[ 1981.304153][T10955] 429854 pages reserved
[ 1981.321234][T10955] 0 pages cma reserved
[ 1981.432879][T10976] tipc: Started in network mode
[ 1981.449038][T10976] tipc: Node identity ee00, cluster identity 4711
[ 1981.459616][T10976] tipc: Node number set to 60928
[ 1981.640479][T10979] netlink: 'syz.3.10392': attribute type 16 has an invalid length.
[ 1981.695420][T10979] netlink: 326 bytes leftover after parsing attributes in process `syz.3.10392'.
[ 1981.745704][T10979] veth1_macvtap: left promiscuous mode
[ 1982.205689][T10985] vhci_hcd: invalid port number 23
[ 1982.270806][T10993] net_ratelimit: 21 callbacks suppressed
[ 1982.270826][T10993] netlink: zone id is out of range
[ 1982.346668][T10993] netlink: zone id is out of range
[ 1982.431959][T10993] netlink: zone id is out of range
[ 1982.477451][T10993] netlink: zone id is out of range
[ 1982.531193][T10993] netlink: zone id is out of range
[ 1982.569218][T10993] netlink: zone id is out of range
[ 1982.594781][T10993] netlink: zone id is out of range
[ 1982.611699][T10993] netlink: zone id is out of range
[ 1982.636543][T11002] netlink: 8 bytes leftover after parsing attributes in process `syz.4.10397'.
[ 1982.645797][T10993] netlink: zone id is out of range
[ 1982.661116][T10993] netlink: zone id is out of range
[ 1982.769814][T11005] netlink: 8 bytes leftover after parsing attributes in process `syz.4.10397'.
[ 1984.466247][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[ 1984.474118][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[ 1985.212333][T11054] can: request_module (can-proto-0) failed.
[ 1985.306873][T11048] zswap: compressor  not available
[ 1986.989494][T11090] base_sock_release(ffff88803ba54800) sk=ffff888030c41000
[ 1988.419129][T27828] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[ 1989.972277][T11155] FAULT_INJECTION: forcing a failure.
[ 1989.972277][T11155] name failslab, interval 1, probability 0, space 0, times 0
[ 1990.053647][T11155] CPU: 1 UID: 0 PID: 11155 Comm: syz.1.10430 Tainted: G     U              6.16.0-rc2-syzkaller-00024-g9afe652958c3 #0 PREEMPT(full) 
[ 1990.053690][T11155] Tainted: [U]=USER
[ 1990.053699][T11155] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1990.053714][T11155] Call Trace:
[ 1990.053721][T11155]  <TASK>
[ 1990.053731][T11155]  dump_stack_lvl+0x16c/0x1f0
[ 1990.053774][T11155]  should_fail_ex+0x512/0x640
[ 1990.053823][T11155]  ? lsm_blob_alloc+0x68/0x90
[ 1990.053860][T11155]  should_failslab+0xc2/0x120
[ 1990.053883][T11155]  __kmalloc_noprof+0xd2/0x510
[ 1990.053922][T11155]  lsm_blob_alloc+0x68/0x90
[ 1990.053959][T11155]  security_sk_alloc+0x30/0x270
[ 1990.053985][T11155]  sk_prot_alloc+0x1c7/0x2a0
[ 1990.054014][T11155]  sk_alloc+0x36/0xc20
[ 1990.054050][T11155]  __netlink_create+0x5e/0x2c0
[ 1990.054089][T11155]  __netlink_kernel_create+0xed/0x750
[ 1990.054117][T11155]  ? __pfx___netlink_kernel_create+0x10/0x10
[ 1990.054144][T11155]  ? audit_net_init+0x190/0x440
[ 1990.054172][T11155]  ? rcu_is_watching+0x12/0xc0
[ 1990.054196][T11155]  ? lock_release+0x201/0x2f0
[ 1990.054229][T11155]  audit_net_init+0x1ae/0x440
[ 1990.054257][T11155]  ? __pfx_audit_net_init+0x10/0x10
[ 1990.054286][T11155]  ? __pfx_audit_receive+0x10/0x10
[ 1990.054320][T11155]  ? __pfx_audit_multicast_bind+0x10/0x10
[ 1990.054353][T11155]  ? __pfx_audit_multicast_unbind+0x10/0x10
[ 1990.054388][T11155]  ? __kmalloc_noprof+0x242/0x510
[ 1990.054423][T11155]  ? __pfx_genl_release+0x10/0x10
[ 1990.054456][T11155]  ? __pfx_audit_net_init+0x10/0x10
[ 1990.054484][T11155]  ops_init+0x1e2/0x5f0
[ 1990.054508][T11155]  setup_net+0x1ff/0x510
[ 1990.054530][T11155]  ? lockdep_init_map_type+0x5c/0x280
[ 1990.054563][T11155]  ? __pfx_setup_net+0x10/0x10
[ 1990.054585][T11155]  ? __raw_spin_lock_init+0x3a/0x110
[ 1990.054624][T11155]  ? debug_mutex_init+0x37/0x70
[ 1990.054648][T11155]  copy_net_ns+0x2a6/0x5f0
[ 1990.054675][T11155]  create_new_namespaces+0x3ea/0xa90
[ 1990.054704][T11155]  unshare_nsproxy_namespaces+0xc0/0x1f0
[ 1990.054732][T11155]  ksys_unshare+0x45b/0xa40
[ 1990.054764][T11155]  ? __pfx_ksys_unshare+0x10/0x10
[ 1990.054803][T11155]  ? xfd_validate_state+0x61/0x180
[ 1990.054839][T11155]  __x64_sys_unshare+0x31/0x40
[ 1990.054871][T11155]  do_syscall_64+0xcd/0x490
[ 1990.054895][T11155]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1990.054920][T11155] RIP: 0033:0x7f0966b8e929
[ 1990.054938][T11155] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1990.054962][T11155] RSP: 002b:00007f0967984038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1990.054986][T11155] RAX: ffffffffffffffda RBX: 00007f0966db6080 RCX: 00007f0966b8e929
[ 1990.055003][T11155] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 1990.055019][T11155] RBP: 00007f0966c10b39 R08: 0000000000000000 R09: 0000000000000000
[ 1990.055034][T11155] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1990.055050][T11155] R13: 0000000000000000 R14: 00007f0966db6080 R15: 00007ffea83f2ca8
[ 1990.055074][T11155]  </TASK>
[ 1990.756729][T11155] audit: cannot initialize netlink socket in namespace
[ 1991.385927][T11185] Ignoring unsupported numa_zonelist_order value:  
[ 1991.385927][T11185] 
[ 1991.409246][T11177] FAULT_INJECTION: forcing a failure.
[ 1991.409246][T11177] name failslab, interval 1, probability 0, space 0, times 0
[ 1991.545715][T11177] CPU: 1 UID: 0 PID: 11177 Comm: syz.3.10436 Tainted: G     U              6.16.0-rc2-syzkaller-00024-g9afe652958c3 #0 PREEMPT(full) 
[ 1991.545757][T11177] Tainted: [U]=USER
[ 1991.545765][T11177] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1991.545779][T11177] Call Trace:
[ 1991.545786][T11177]  <TASK>
[ 1991.545795][T11177]  dump_stack_lvl+0x16c/0x1f0
[ 1991.545837][T11177]  should_fail_ex+0x512/0x640
[ 1991.545875][T11177]  should_failslab+0xc2/0x120
[ 1991.545903][T11177]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1991.545940][T11177]  ? getname_flags.part.0+0x4c/0x550
[ 1991.545968][T11177]  getname_flags.part.0+0x4c/0x550
[ 1991.546018][T11177]  getname_flags+0x93/0xf0
[ 1991.546053][T11177]  do_sys_openat2+0xb8/0x1d0
[ 1991.546079][T11177]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1991.546104][T11177]  ? __sock_release+0x20b/0x270
[ 1991.546133][T11177]  __x64_sys_openat+0x174/0x210
[ 1991.546159][T11177]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1991.546192][T11177]  do_syscall_64+0xcd/0x490
[ 1991.546215][T11177]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1991.546239][T11177] RIP: 0033:0x7f6d21f8e929
[ 1991.546256][T11177] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1991.546280][T11177] RSP: 002b:00007f6d22ebd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1991.546302][T11177] RAX: ffffffffffffffda RBX: 00007f6d221b5fa0 RCX: 00007f6d21f8e929
[ 1991.546319][T11177] RDX: 0000000000080102 RSI: 0000200000000000 RDI: ffffffffffffff9c
[ 1991.546335][T11177] RBP: 00007f6d22010b39 R08: 0000000000000000 R09: 0000000000000000
[ 1991.546351][T11177] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1991.546366][T11177] R13: 0000000000000000 R14: 00007f6d221b5fa0 R15: 00007ffcecb360d8
[ 1991.546389][T11177]  </TASK>
[ 1992.942464][T11205] netlink: 28 bytes leftover after parsing attributes in process `syz.4.10441'.
[ 1996.464266][T11279] netlink: 4 bytes leftover after parsing attributes in process `syz.3.10456'.
[ 1997.778485][T11311] blktrace: Concurrent blktraces are not allowed on ram7
[ 2001.980738][T11376] ptrace attach of "./syz-executor exec"[8723] was attempted by ""[11376]
[ 2003.198778][T11395] netlink: 504 bytes leftover after parsing attributes in process `syz.0.10481'.
[ 2004.815029][T11389] kexec: Could not allocate control_code_buffer
[ 2006.675290][T11436] zswap: compressor 000 not available
[ 2008.264981][T11459] usbip-vudc usbip-vudc.0: gadget not bound
[ 2008.834088][   T31] audit: type=1800 audit(4294967403.480:169): pid=11467 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.10498" name="file0" dev="tmpfs" ino=559 res=0 errno=0
[ 2008.857367][T11480] usbip-vudc usbip-vudc.0: gadget not bound
[ 2008.863322][T11480] FAULT_INJECTION: forcing a failure.
[ 2008.863322][T11480] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2008.971594][T11480] CPU: 1 UID: 0 PID: 11480 Comm: syz.4.10499 Tainted: G     U              6.16.0-rc2-syzkaller-00024-g9afe652958c3 #0 PREEMPT(full) 
[ 2008.971633][T11480] Tainted: [U]=USER
[ 2008.971641][T11480] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 2008.971655][T11480] Call Trace:
[ 2008.971662][T11480]  <TASK>
[ 2008.971671][T11480]  dump_stack_lvl+0x16c/0x1f0
[ 2008.971712][T11480]  should_fail_ex+0x512/0x640
[ 2008.971748][T11480]  _copy_to_user+0x32/0xd0
[ 2008.971783][T11480]  simple_read_from_buffer+0xcb/0x170
[ 2008.971813][T11480]  proc_fail_nth_read+0x197/0x270
[ 2008.971838][T11480]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 2008.971864][T11480]  ? security_file_permission+0x71/0x210
[ 2008.971894][T11480]  ? rw_verify_area+0xcf/0x680
[ 2008.971921][T11480]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 2008.971946][T11480]  vfs_read+0x1e4/0xc60
[ 2008.971976][T11480]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[ 2008.972002][T11480]  ? __pfx___mutex_lock+0x10/0x10
[ 2008.972021][T11480]  ? __pfx_vfs_read+0x10/0x10
[ 2008.972051][T11480]  ? __fget_files+0x204/0x3c0
[ 2008.972080][T11480]  ? rcu_is_watching+0x12/0xc0
[ 2008.972105][T11480]  ? __fget_files+0x20e/0x3c0
[ 2008.972138][T11480]  ksys_read+0x12a/0x250
[ 2008.972168][T11480]  ? __pfx_ksys_read+0x10/0x10
[ 2008.972203][T11480]  do_syscall_64+0xcd/0x490
[ 2008.972224][T11480]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2008.972248][T11480] RIP: 0033:0x7f7a28f8d33c
[ 2008.972266][T11480] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 2008.972291][T11480] RSP: 002b:00007f7a29e2d030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 2008.972314][T11480] RAX: ffffffffffffffda RBX: 00007f7a291b5fa0 RCX: 00007f7a28f8d33c
[ 2008.972331][T11480] RDX: 000000000000000f RSI: 00007f7a29e2d0a0 RDI: 0000000000000004
[ 2008.972346][T11480] RBP: 00007f7a29e2d090 R08: 0000000000000000 R09: 0000000000000000
[ 2008.972361][T11480] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2008.972376][T11480] R13: 0000000000000000 R14: 00007f7a291b5fa0 R15: 00007ffe406bad58
[ 2008.972399][T11480]  </TASK>
[ 2012.092475][T11547] netlink: 4 bytes leftover after parsing attributes in process `syz.1.10514'.
[ 2012.607174][T11553] sd 0:0:1:0: PR command failed: 1026
[ 2012.612623][T11553] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[ 2012.679265][T11553] sd 0:0:1:0: Add. Sense: Invalid command operation code
[ 2014.990593][T11591] random: crng reseeded on system resumption
[ 2015.037110][T11591] PM: hibernation: Marking nosave pages: [mem 0x00000000-0x00000fff]
[ 2015.133540][T11591] PM: hibernation: Marking nosave pages: [mem 0x0009f000-0x000fffff]
[ 2015.185637][T11591] PM: hibernation: Marking nosave pages: [mem 0xbfffd000-0xffffffff]
[ 2015.227848][T11591] PM: hibernation: Basic memory bitmaps created
[ 2015.585834][T11602] PM: hibernation: Basic memory bitmaps freed
[ 2016.274918][T11610] FAULT_INJECTION: forcing a failure.
[ 2016.274918][T11610] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2016.394899][T11610] CPU: 1 UID: 0 PID: 11610 Comm: syz.1.10526 Tainted: G     U              6.16.0-rc2-syzkaller-00024-g9afe652958c3 #0 PREEMPT(full) 
[ 2016.394942][T11610] Tainted: [U]=USER
[ 2016.394950][T11610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 2016.394964][T11610] Call Trace:
[ 2016.394971][T11610]  <TASK>
[ 2016.394980][T11610]  dump_stack_lvl+0x16c/0x1f0
[ 2016.395022][T11610]  should_fail_ex+0x512/0x640
[ 2016.395059][T11610]  _copy_from_iter+0x29f/0x16f0
[ 2016.395098][T11610]  ? __alloc_skb+0x200/0x380
[ 2016.395134][T11610]  ? __pfx__copy_from_iter+0x10/0x10
[ 2016.395173][T11610]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[ 2016.395204][T11610]  netlink_sendmsg+0x829/0xdd0
[ 2016.395246][T11610]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2016.395278][T11610]  ____sys_sendmsg+0xa98/0xc70
[ 2016.395312][T11610]  ? copy_msghdr_from_user+0x10a/0x160
[ 2016.395349][T11610]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 2016.395377][T11610]  ? __pfx_kstrtouint+0x10/0x10
[ 2016.395403][T11610]  ? 0xffffffff81000000
[ 2016.395423][T11610]  ? kstrtouint_from_user+0x13c/0x1d0
[ 2016.395453][T11610]  ___sys_sendmsg+0x134/0x1d0
[ 2016.395491][T11610]  ? __pfx____sys_sendmsg+0x10/0x10
[ 2016.395535][T11610]  ? rcu_is_watching+0x12/0xc0
[ 2016.395568][T11610]  __sys_sendmsg+0x16d/0x220
[ 2016.395603][T11610]  ? __pfx___sys_sendmsg+0x10/0x10
[ 2016.395652][T11610]  do_syscall_64+0xcd/0x490
[ 2016.395674][T11610]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2016.395698][T11610] RIP: 0033:0x7f0966b8e929
[ 2016.395715][T11610] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2016.395739][T11610] RSP: 002b:00007f09679a5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2016.395763][T11610] RAX: ffffffffffffffda RBX: 00007f0966db5fa0 RCX: 00007f0966b8e929
[ 2016.395780][T11610] RDX: 0000000000004000 RSI: 00002000000000c0 RDI: 0000000000000003
[ 2016.395795][T11610] RBP: 00007f09679a5090 R08: 0000000000000000 R09: 0000000000000000
[ 2016.395811][T11610] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2016.395825][T11610] R13: 0000000000000000 R14: 00007f0966db5fa0 R15: 00007ffea83f2ca8
[ 2016.395848][T11610]  </TASK>
[ 2017.073564][T11613] usbip-vudc usbip-vudc.0: gadget not bound
[ 2017.134448][T27828] Bluetooth: hci0: command 0x0406 tx timeout
[ 2019.249835][T11693] FAULT_INJECTION: forcing a failure.
[ 2019.249835][T11693] name failslab, interval 1, probability 0, space 0, times 0
[ 2019.355849][T11693] CPU: 1 UID: 0 PID: 11693 Comm: syz.1.10540 Tainted: G     U              6.16.0-rc2-syzkaller-00024-g9afe652958c3 #0 PREEMPT(full) 
[ 2019.355896][T11693] Tainted: [U]=USER
[ 2019.355905][T11693] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 2019.355920][T11693] Call Trace:
[ 2019.355927][T11693]  <TASK>
[ 2019.355936][T11693]  dump_stack_lvl+0x16c/0x1f0
[ 2019.355977][T11693]  should_fail_ex+0x512/0x640
[ 2019.356015][T11693]  should_failslab+0xc2/0x120
[ 2019.356037][T11693]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 2019.356074][T11693]  ? skb_clone+0x190/0x3f0
[ 2019.356101][T11693]  skb_clone+0x190/0x3f0
[ 2019.356122][T11693]  netlink_deliver_tap+0xabd/0xd30
[ 2019.356149][T11693]  netlink_unicast+0x5df/0x7f0
[ 2019.356176][T11693]  ? __pfx_netlink_unicast+0x10/0x10
[ 2019.356207][T11693]  netlink_sendmsg+0x8d1/0xdd0
[ 2019.356235][T11693]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2019.356267][T11693]  ____sys_sendmsg+0xa98/0xc70
[ 2019.356296][T11693]  ? copy_msghdr_from_user+0x10a/0x160
[ 2019.356334][T11693]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 2019.356361][T11693]  ? __pfx_kstrtouint+0x10/0x10
[ 2019.356389][T11693]  ? 0xffffffff81000000
[ 2019.356409][T11693]  ? kstrtouint_from_user+0x13c/0x1d0
[ 2019.356439][T11693]  ___sys_sendmsg+0x134/0x1d0
[ 2019.356477][T11693]  ? __pfx____sys_sendmsg+0x10/0x10
[ 2019.356520][T11693]  ? rcu_is_watching+0x12/0xc0
[ 2019.356553][T11693]  __sys_sendmsg+0x16d/0x220
[ 2019.356588][T11693]  ? __pfx___sys_sendmsg+0x10/0x10
[ 2019.356632][T11693]  do_syscall_64+0xcd/0x490
[ 2019.356653][T11693]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2019.356676][T11693] RIP: 0033:0x7f0966b8e929
[ 2019.356693][T11693] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2019.356716][T11693] RSP: 002b:00007f09679a5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2019.356740][T11693] RAX: ffffffffffffffda RBX: 00007f0966db5fa0 RCX: 00007f0966b8e929
[ 2019.356757][T11693] RDX: 0000000000004000 RSI: 00002000000000c0 RDI: 0000000000000003
[ 2019.356772][T11693] RBP: 00007f09679a5090 R08: 0000000000000000 R09: 0000000000000000
[ 2019.356788][T11693] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2019.356802][T11693] R13: 0000000000000000 R14: 00007f0966db5fa0 R15: 00007ffea83f2ca8
[ 2019.356825][T11693]  </TASK>
[ 2019.588494][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2019.991946][T11704] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(5)
[ 2020.491838][T11715] netlink: 4 bytes leftover after parsing attributes in process `syz.4.10544'.
[ 2020.536182][T11715] netlink: 354 bytes leftover after parsing attributes in process `syz.4.10544'.
[ 2021.434835][ T8723] ------------[ cut here ]------------
[ 2021.440480][ T8723] ODEBUG: free active (active state 0) object: ffff88807a4d52d8 object type: timer_list hint: hci_devcd_timeout+0x0/0x2e0
[ 2021.491747][T11735] FAULT_INJECTION: forcing a failure.
[ 2021.491747][T11735] name failslab, interval 1, probability 0, space 0, times 0
[ 2021.561241][ T8723] WARNING: CPU: 1 PID: 8723 at lib/debugobjects.c:612 debug_print_object+0x1a2/0x2b0
[ 2021.571125][ T8723] Modules linked in:
[ 2021.575220][ T8723] CPU: 1 UID: 0 PID: 8723 Comm: syz-executor Tainted: G     U              6.16.0-rc2-syzkaller-00024-g9afe652958c3 #0 PREEMPT(full) 
[ 2021.589233][ T8723] Tainted: [U]=USER
[ 2021.593515][ T8723] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 2021.604000][ T8723] RIP: 0010:debug_print_object+0x1a2/0x2b0
[ 2021.609877][ T8723] Code: fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 54 41 56 48 8b 14 dd c0 74 15 8c 4c 89 e6 48 c7 c7 40 69 15 8c e8 1f 75 9c fc 90 <0f> 0b 90 90 58 83 05 36 37 ca 0b 01 48 83 c4 18 5b 5d 41 5c 41 5d
[ 2021.629761][ T8723] RSP: 0018:ffffc900048b7988 EFLAGS: 00010286
[ 2021.636234][ T8723] RAX: 0000000000000000 RBX: 0000000000000003 RCX: ffffffff817aa1a8
[ 2021.644452][ T8723] RDX: ffff88804b939e00 RSI: ffffffff817aa1b5 RDI: 0000000000000001
[ 2021.652617][ T8723] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000
[ 2021.660638][ T8723] R10: 0000000000000001 R11: 0000000000121db8 R12: ffffffff8c156fe0
[ 2021.668817][ T8723] R13: ffffffff8bafe740 R14: ffffffff8a87b3e0 R15: ffffc900048b7a88
[ 2021.676851][ T8723] FS:  0000000000000000(0000) GS:ffff888124861000(0000) knlGS:0000000000000000
[ 2021.686152][ T8723] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2021.693154][ T8723] CR2: 000020000058f000 CR3: 00000000689e6000 CR4: 00000000003526f0
[ 2021.701382][ T8723] Call Trace:
[ 2021.704762][ T8723]  <TASK>
[ 2021.707714][ T8723]  ? __pfx_hci_devcd_timeout+0x10/0x10
[ 2021.713277][ T8723]  ? trace_irq_enable.constprop.0+0xd4/0x120
[ 2021.719325][ T8723]  debug_check_no_obj_freed+0x4b7/0x600
[ 2021.724936][ T8723]  ? __pfx_debug_check_no_obj_freed+0x10/0x10
[ 2021.731049][ T8723]  ? rcu_is_watching+0x12/0xc0
[ 2021.736062][ T8723]  ? kmem_cache_free+0x2d1/0x4d0
[ 2021.741301][ T8723]  ? kfree_skbmem+0x1a4/0x1f0
[ 2021.746188][ T8723]  kfree+0x28f/0x4d0
[ 2021.750167][ T8723]  ? hci_release_dev+0x4d8/0x600
[ 2021.755154][ T8723]  hci_release_dev+0x4d8/0x600
[ 2021.760067][ T8723]  ? __pfx_hci_release_dev+0x10/0x10
[ 2021.765381][ T8723]  ? rcu_is_watching+0x12/0xc0
[ 2021.770212][ T8723]  ? kfree+0x24f/0x4d0
[ 2021.774309][ T8723]  bt_host_release+0x6a/0xb0
[ 2021.778948][ T8723]  ? __pfx_bt_host_release+0x10/0x10
[ 2021.784277][ T8723]  device_release+0xa1/0x240
[ 2021.788944][ T8723]  kobject_put+0x1e7/0x5a0
[ 2021.793921][ T8723]  ? __pfx_vhci_release+0x10/0x10
[ 2021.799306][ T8723]  put_device+0x1f/0x30
[ 2021.803502][ T8723]  vhci_release+0x81/0xf0
[ 2021.807877][ T8723]  __fput+0x3ff/0xb70
[ 2021.811961][ T8723]  task_work_run+0x14d/0x240
[ 2021.816613][ T8723]  ? __pfx_task_work_run+0x10/0x10
[ 2021.821819][ T8723]  ? switch_task_namespaces+0xeb/0x100
[ 2021.827307][ T8723]  do_exit+0x864/0x2bd0
[ 2021.831521][ T8723]  ? do_raw_spin_lock+0x12c/0x2b0
[ 2021.836825][ T8723]  ? __pfx_do_exit+0x10/0x10
[ 2021.841721][ T8723]  ? do_group_exit+0x1c3/0x2a0
[ 2021.846515][ T8723]  ? rcu_is_watching+0x12/0xc0
[ 2021.851352][ T8723]  ? rcu_is_watching+0x12/0xc0
[ 2021.856134][ T8723]  do_group_exit+0xd3/0x2a0
[ 2021.860785][ T8723]  __x64_sys_exit_group+0x3e/0x50
[ 2021.865925][ T8723]  x64_sys_call+0x1530/0x1730
[ 2021.870721][ T8723]  do_syscall_64+0xcd/0x490
[ 2021.875243][ T8723]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2021.881359][ T8723] RIP: 0033:0x7fb80df8e929
[ 2021.885804][ T8723] Code: Unable to access opcode bytes at 0x7fb80df8e8ff.
[ 2021.892858][ T8723] RSP: 002b:00007ffea1ed8fa8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 2021.901756][ T8723] RAX: ffffffffffffffda RBX: 00007fb80e0109a9 RCX: 00007fb80df8e929
[ 2021.909971][ T8723] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001
[ 2021.917994][ T8723] RBP: 0000000000000001 R08: 00007ffea1ed6d47 R09: 00007ffea1eda260
[ 2021.926022][ T8723] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffea1eda260
[ 2021.934049][ T8723] R13: 00007fb80e010925 R14: 00005555863054a8 R15: 00007ffea1edb330
[ 2021.942336][ T8723]  </TASK>
[ 2021.945369][ T8723] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 2021.952668][ T8723] CPU: 1 UID: 0 PID: 8723 Comm: syz-executor Tainted: G     U              6.16.0-rc2-syzkaller-00024-g9afe652958c3 #0 PREEMPT(full) 
[ 2021.966755][ T8723] Tainted: [U]=USER
[ 2021.970566][ T8723] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 2021.980636][ T8723] Call Trace:
[ 2021.983930][ T8723]  <TASK>
[ 2021.986875][ T8723]  dump_stack_lvl+0x3d/0x1f0
[ 2021.991500][ T8723]  panic+0x71c/0x800
[ 2021.995590][ T8723]  ? __pfx_panic+0x10/0x10
[ 2022.000032][ T8723]  ? show_trace_log_lvl+0x29b/0x3e0
[ 2022.005259][ T8723]  ? check_panic_on_warn+0x1f/0xb0
[ 2022.010484][ T8723]  ? debug_print_object+0x1a2/0x2b0
[ 2022.015699][ T8723]  check_panic_on_warn+0xab/0xb0
[ 2022.020664][ T8723]  __warn+0xf6/0x3c0
[ 2022.024586][ T8723]  ? debug_print_object+0x1a2/0x2b0
[ 2022.029813][ T8723]  report_bug+0x3c3/0x580
[ 2022.034169][ T8723]  ? debug_print_object+0x1a2/0x2b0
[ 2022.039379][ T8723]  handle_bug+0x184/0x210
[ 2022.043727][ T8723]  exc_invalid_op+0x17/0x50
[ 2022.048333][ T8723]  asm_exc_invalid_op+0x1a/0x20
[ 2022.053198][ T8723] RIP: 0010:debug_print_object+0x1a2/0x2b0
[ 2022.059018][ T8723] Code: fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 54 41 56 48 8b 14 dd c0 74 15 8c 4c 89 e6 48 c7 c7 40 69 15 8c e8 1f 75 9c fc 90 <0f> 0b 90 90 58 83 05 36 37 ca 0b 01 48 83 c4 18 5b 5d 41 5c 41 5d
[ 2022.078743][ T8723] RSP: 0018:ffffc900048b7988 EFLAGS: 00010286
[ 2022.084843][ T8723] RAX: 0000000000000000 RBX: 0000000000000003 RCX: ffffffff817aa1a8
[ 2022.092836][ T8723] RDX: ffff88804b939e00 RSI: ffffffff817aa1b5 RDI: 0000000000000001
[ 2022.100838][ T8723] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000
[ 2022.108820][ T8723] R10: 0000000000000001 R11: 0000000000121db8 R12: ffffffff8c156fe0
[ 2022.116801][ T8723] R13: ffffffff8bafe740 R14: ffffffff8a87b3e0 R15: ffffc900048b7a88
[ 2022.124786][ T8723]  ? __pfx_hci_devcd_timeout+0x10/0x10
[ 2022.130278][ T8723]  ? __warn_printk+0x198/0x350
[ 2022.135065][ T8723]  ? __warn_printk+0x1a5/0x350
[ 2022.139856][ T8723]  ? debug_print_object+0x1a1/0x2b0
[ 2022.145072][ T8723]  ? __pfx_hci_devcd_timeout+0x10/0x10
[ 2022.150553][ T8723]  ? trace_irq_enable.constprop.0+0xd4/0x120
[ 2022.156562][ T8723]  debug_check_no_obj_freed+0x4b7/0x600
[ 2022.162129][ T8723]  ? __pfx_debug_check_no_obj_freed+0x10/0x10
[ 2022.168214][ T8723]  ? rcu_is_watching+0x12/0xc0
[ 2022.172998][ T8723]  ? kmem_cache_free+0x2d1/0x4d0
[ 2022.177960][ T8723]  ? kfree_skbmem+0x1a4/0x1f0
[ 2022.182655][ T8723]  kfree+0x28f/0x4d0
[ 2022.186574][ T8723]  ? hci_release_dev+0x4d8/0x600
[ 2022.191543][ T8723]  hci_release_dev+0x4d8/0x600
[ 2022.196335][ T8723]  ? __pfx_hci_release_dev+0x10/0x10
[ 2022.201645][ T8723]  ? rcu_is_watching+0x12/0xc0
[ 2022.206422][ T8723]  ? kfree+0x24f/0x4d0
[ 2022.210510][ T8723]  bt_host_release+0x6a/0xb0
[ 2022.215116][ T8723]  ? __pfx_bt_host_release+0x10/0x10
[ 2022.220413][ T8723]  device_release+0xa1/0x240
[ 2022.225021][ T8723]  kobject_put+0x1e7/0x5a0
[ 2022.229450][ T8723]  ? __pfx_vhci_release+0x10/0x10
[ 2022.234503][ T8723]  put_device+0x1f/0x30
[ 2022.238678][ T8723]  vhci_release+0x81/0xf0
[ 2022.243037][ T8723]  __fput+0x3ff/0xb70
[ 2022.247038][ T8723]  task_work_run+0x14d/0x240
[ 2022.251660][ T8723]  ? __pfx_task_work_run+0x10/0x10
[ 2022.256803][ T8723]  ? switch_task_namespaces+0xeb/0x100
[ 2022.262286][ T8723]  do_exit+0x864/0x2bd0
[ 2022.266565][ T8723]  ? do_raw_spin_lock+0x12c/0x2b0
[ 2022.271617][ T8723]  ? __pfx_do_exit+0x10/0x10
[ 2022.276229][ T8723]  ? do_group_exit+0x1c3/0x2a0
[ 2022.281013][ T8723]  ? rcu_is_watching+0x12/0xc0
[ 2022.285791][ T8723]  ? rcu_is_watching+0x12/0xc0
[ 2022.290574][ T8723]  do_group_exit+0xd3/0x2a0
[ 2022.295104][ T8723]  __x64_sys_exit_group+0x3e/0x50
[ 2022.300177][ T8723]  x64_sys_call+0x1530/0x1730
[ 2022.304883][ T8723]  do_syscall_64+0xcd/0x490
[ 2022.309413][ T8723]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2022.315326][ T8723] RIP: 0033:0x7fb80df8e929
[ 2022.319761][ T8723] Code: Unable to access opcode bytes at 0x7fb80df8e8ff.
[ 2022.326783][ T8723] RSP: 002b:00007ffea1ed8fa8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 2022.335212][ T8723] RAX: ffffffffffffffda RBX: 00007fb80e0109a9 RCX: 00007fb80df8e929
[ 2022.343198][ T8723] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001
[ 2022.351180][ T8723] RBP: 0000000000000001 R08: 00007ffea1ed6d47 R09: 00007ffea1eda260
[ 2022.359161][ T8723] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffea1eda260
[ 2022.367141][ T8723] R13: 00007fb80e010925 R14: 00005555863054a8 R15: 00007ffea1edb330
[ 2022.375132][ T8723]  </TASK>
[ 2022.378229][ T8723] Kernel Offset: disabled
[ 2022.382563][ T8723] Rebooting in 86400 seconds..