last executing test programs:

29m49.189612013s ago: executing program 0 (id=241):
r0 = socket(0x10, 0x2, 0xc)
syz_genetlink_get_family_id$auto_netdev(0x0, 0xffffffffffffffff)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
unshare$auto(0x20000080)
ioctl$auto_XFS_IOC_FREESP(0xffffffffffffffff, 0x4030580b, 0x0)
syz_clone3(&(0x7f0000000300)={0x28020000, 0x0, 0x0, 0x0, {0x1f}, 0x0, 0x0, 0x0, 0x0}, 0x58)
openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0)
mmap$auto(0x7, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0x60800, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001340), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r2, &(0x7f0000001400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYRES16=r3, @ANYBLOB="01002bbd7000fcdbdf25040000000400100008000cf1edfba1d1e45aea61b8f7020700000002681af944a5465101930e1f4b991ef2f1"], 0x20}, 0x1, 0x0, 0x0, 0x24040000}, 0x18800)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
rseq$auto(&(0x7f0000000080)={0xe, 0x400, 0x0, 0x20006, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
brk$auto(0xffffffffffffff66)
fanotify_init$auto(0x65, 0x2)
kcmp$auto(0x1, 0x1, 0x0, 0x100000004, 0x100000001)
fspick$auto(0xffffffffffffffff, 0x0, 0x3)
r5 = openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, 0x0, 0x100000, 0x0)
r6 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
write$auto(r6, &(0x7f0000000100)='\x01\x00\x00\x00\x00\x00W\xc8\xcf\x7f\x8a_h\x88\x93\xfa+\xe18o\xf5j\x96<\xbf(\xaf\x16m\x00\x00\v\xb1\xe3#\x01:!S\xb9\xec1\x12s9\xc0E\x92\xf7q\x8fp\xdae\x8e\r\xe58\x9d\x1d', 0x7138)
close_range$auto(r5, 0xffffffffffffffff, 0x0)
sendmsg$auto_WG_CMD_SET_DEVICE(r4, 0x0, 0x4000010)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_WRITE(r1, 0xc4c85513, 0x0)
getpid()
r7 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$auto_CTRL_CMD_GETPOLICY(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)={0x14, r7, 0x10, 0x70bd2c, 0x25dfdbfa, {0xa, 0x0, 0xc00}}, 0x14}, 0x1, 0x0, 0x0, 0x24050803}, 0x10004010)

29m47.699098105s ago: executing program 0 (id=244):
r0 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000002c0), 0xffffffffffffffff)
mmap$auto(0x0, 0x2020009, 0x2, 0xf8, 0xfffffffffffffffa, 0x8000)
r1 = socket(0x2b, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a)
sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x3, 0x20000000)
write$auto(r1, 0x0, 0xfffffde9)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
open(&(0x7f0000000100)='.\x00', 0x591002, 0x408)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
open(&(0x7f0000000100)='.\x00', 0x591002, 0x408)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/asound/card1/pcm1c/xrun_debug\x00', 0x20440, 0x0)
socket(0x27, 0x2, 0xffffff80)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000140)='/dev/v4l-touch13\x00', 0x280, 0x0)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0)
ioctl$auto(0xffffffffffffffff, 0x541c, 0xffffffffffffffff)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r2, 0x0, 0x9)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r3, &(0x7f00000000c0)={0x0, 0x7}, 0x2)
openat$auto_dma_buf_debug_fops_(0xffffffffffffff9c, 0x0, 0x781dc0, 0x0)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x184b01, 0x0)
socket(0x2, 0x1, 0x0)
openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r4 = socket(0x10, 0x2, 0x4)
sendmsg$auto_NFSD_CMD_THREADS_SET(r4, 0x0, 0x400c000)
write$auto(0x3, 0x0, 0xfffffdef)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="6bfdffff", @ANYRES16=r0, @ANYBLOB='\x00'/14], 0x14}, 0x1, 0x0, 0x0, 0x24050803}, 0x100040c0)

29m45.716492417s ago: executing program 0 (id=250):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_BATADV_CMD_GET_HARDIF(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB='d\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000428bd7000ffdbdf25050000000a00090700000000000000000810310001002c0000000000000000000c000c929ec3423acde4802dbb6bd50000080000000000000a001d00aaaaaaaaaaaa0000140007007665746830000000000000000000000005003500fe0000007f78c7cd709812a80abebbcabb909fc99886e7f1eac29a9192cfa5a91a3f11d85fe75895040e80a9fe09fd6074d4542e8813d7beeeb7effb28f608e87d038658631fce4f3f937b9fde0565a3589292ce463200"/199], 0x64}, 0x1, 0x0, 0x0, 0x6551c9b5996f2cec}, 0x0)
read$auto(r0, &(0x7f0000000140)='%,-\x00', 0x3)
keyctl$auto(0x13, 0x8000, 0x2d, 0x0, 0x47c3fcf7)
socket(0x1e, 0x4, 0x9)
getrandom$auto(&(0x7f0000000040)='\x00', 0x2, 0x3)
pwrite64$auto(0xc8, &(0x7f00000001c0)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x00\rB\x1c>\x99\x00:c\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\f\xa3@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x80004b, 0x4)

29m44.690366895s ago: executing program 0 (id=253):
bpf$auto_BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000000)=@info={<r0=>0xffffffffffffffff, 0x4, 0x4000000000}, 0x3)
sendmsg$auto(r0, &(0x7f0000001200)={&(0x7f00000000c0)="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", 0x5, &(0x7f0000001180)={&(0x7f00000010c0)="179d9aa6051901e0459ae19bf2677b14a016eedfcade5595d0c68eba39db92d20189bd1f1e81313f189b7b7257761a9d6de2eb8437466c98d94da4ae08c7a75cc038e18e64c47eaa2da921971c06576bf2101e5692727304195131f8f70d2fd2a5e53afa3abb154e905fe6f895bf4a353b0bcb3afd8980511411af14a1ebac37edfe35b4de34c3069169d50d", 0x9}, 0xd33, &(0x7f00000011c0)="b7b32a7248800f9c0b92571a3bf1d09778f70cdeba20cca859", 0x80000000, 0x1eaa}, 0xffffffff)
read$auto_ftrace_set_event_notrace_pid_fops_trace_events(r0, &(0x7f0000001240)=""/4096, 0x1000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000002240)='/sys/devices/platform/vhci_hcd.8/usb25/25-0:1.0/usb25-port5/power/autosuspend_delay_ms\x00', 0x24100, 0x0)
sendto$auto(r0, &(0x7f00000022c0), 0x20d79e65, 0x6, &(0x7f0000002300)=@xdp={0x2c, 0x1, 0x0, 0x24}, 0x80)
r2 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000002380), r0)
sendmsg$auto_NL802154_CMD_SET_LBT_MODE(r0, &(0x7f0000002440)={&(0x7f0000002340)={0x10, 0x0, 0x0, 0x1000100}, 0xc, &(0x7f0000002400)={&(0x7f00000023c0)={0x14, r2, 0xc00, 0x70bd29, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x20040010}, 0x0)
r3 = io_uring_setup$auto(0x5, &(0x7f0000002480)={0x10000, 0x8, 0x4, 0x8, 0x2, 0x80000001, r0, [0x7, 0x1, 0x2], {0xe, 0x5, 0x4, 0xfa, 0x9, 0x3, 0xc814, 0x5, 0x1}, {0x2, 0x3, 0x1, 0x7, 0x8, 0x6, 0x1, 0x1ff, 0x5}})
r4 = syz_clone(0x400b0000, &(0x7f0000002500)="ed9be26629fc89c1a4babbdb21d53d55234d32094bbd606e5e5cecedeccc29cde6d14cd872095ca457346857499097b598ebc9068a596de52d0c35361b014a05af23af4b9f0bb3651f3baaf21d69c4996ee9e356cc840a7f85c45c182aeb5702ad934cba952bd326cfbdd51a9b94e96694278d3042fe32f6dea205ee295152c81cd79d175f0fb2f82c9b5a63d5bfc85d471a34bbfb8ef208e6e5fad7880aaaf133bb92b8f1e5d95584fe7a6696128003d70f367e059596955ea58a24fe3ffb5b79eee50b66e52dc0b097e12c4d39e55d8c06b31fad2395", 0xd7, &(0x7f0000002600), &(0x7f0000002640), &(0x7f0000002680)="c3e1fb729f67fb88fad00f2ba50bf68dbc8b1f2bbe9277e96a72f9354a2ae44fc901f2bd5b02b5aa8c9baaec73f75201ac8d975c9765464acb114c5c43cd5c5af8acd150cd264bc33f2d2baa9a3a905f15f0f9cef31ffa39bd606b6696")
fcntl$auto_F_SETOWN(r1, 0x8, r4)
r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000002740), r0)
ioctl$auto_BLKTRACESETUP32(r3, 0xc0401273, &(0x7f0000002780)={"51ac8d07c0c76e342ad96dbda427744f46ee70e88999fab340611def0e04ba03", 0x9, 0xfffff84b, 0x0, 0x4, 0x8000, <r6=>r4})
sendmsg$auto_NL80211_CMD_GET_KEY(r3, &(0x7f0000003580)={&(0x7f0000002700)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000003540)={&(0x7f0000002800)={0xd10, r5, 0x100, 0x70bd28, 0x25dfdbfe, {}, [@NL80211_ATTR_MDID={0x6, 0xb1, 0x800}, @NL80211_ATTR_CQM={0x304, 0x5e, 0x0, 0x1, [@nested={0x8e, 0x3b, 0x0, 0x1, [@nested={0x4, 0x10b}, @typed={0x8, 0x81, 0x0, 0x0, @u32=0x8000}, @generic="78d6c90ca86a1aeaa14f5e237367f547ef087065be7c7efb1cea72e8d00371e3d8bd28f558c1d85879e8745807882585c4246b0ba6f9", @generic="1e02e33dc367886059591945943a71c20437ad7942e467d8d978fc456ecd89b067b32db4f2413b49e976df08f6b9ddc92560b86900869813df208d0e1a46cc2437458b4471dbc037"]}, @nested={0x19c, 0x10e, 0x0, 0x1, [@typed={0x8, 0x10b, 0x0, 0x0, @pid=r6}, @generic="8edeacd70fd10b288f37d0893a2d220941ef926859eb2a3eca2160f1fe017eee9b3cf0b6fd9b2524d35572ed4fe3abdd0893c86dbfc545805a116762b11200181201a3dab75f2de381122a2095bf126f6797d87ef0c0c66f7cb862489039379e38515a90473f53f1ce9fe463f5bfc9666a27bdbc5cd8f363dc804d8d8777eaabb988d8d1a88f00030736b438421345c4cfe5b358c37701b95b542c29b13e", @generic="9471b7957f13b7657594a0819c91072e1cb6b99cfdf374f8249dae29e94dd40ebbce5e9e2a02a3d5adaf42b14c6218219ed0c0bf51b40cacdd54b73354ab470f832e7a4906b18b53fd47418822d86105450d01a60c25636dce7e99036d710728b6fced19670df908cf5001d18fc48805fa869c4274036620a0d3cea28644869d7058dc6681fa74f639e1bef4516093ff74d4c933ae8ab799ce1eb13c38918d75b26af033cb4579ec3e53c3814916845703e368b0a9d36269059d35945261f64f6ad288fd3c6d7f0bd4487ae32907ee846ec9315954e8bd0cb84133c11833315bb117c52dc2966fe1d89d38007047ed1c9d61"]}, @typed={0xd2, 0x49, 0x0, 0x0, @binary="ea54a9d8c4cf1dfa53469d4b2c947bbc137af5cb11afc4a8f1d73798d72f15d3eb96f48f329942614182d50562579d40164a04b8d57d33f95cb276d4a26ab5629eb9b1b0e04c5fce5378028cfdbf991c23d0bbeaab06f986b8f7f6e90280264f0cc8544d69fbd98c6ea30efd74de45e1aba3055eeec97f5fa595d711c83fc4ef6172b82bc3b7c34a5591895c689c3a85e8bb5f66e120852a95ecffc5692aac0b6670bacbfe9c4c66163897cdc1d8f9b1786a00994d622f0f3df0d82e096ae8a56203daf239bcd262993a8fd863b7"}]}, @NL80211_ATTR_IE={0x48d, 0x2a, "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"}, @NL80211_ATTR_QOS_MAP={0x6e, 0xc7, "685a664f8ea524d67aa38d8d5a5fab09a729ef4b13e87b7f1ab2c36c7a9a6ce9d9052c3effaf27abf635bae376b00b158481cee9d7b30c015e6539f65b7f0c567bff54b1d4dd8e78449d6184b31eab878dd5ef1b87056f65923b37b60a6542b462ae1d90e3ee9b35151f"}, @NL80211_ATTR_WIPHY_COVERAGE_CLASS={0x5, 0x59, 0x7f}, @NL80211_ATTR_CNTDWN_OFFS_PRESP={0xf3, 0xbb, "6c6839b65bb9a46ca7d1e87c01901e8f116c8ea74797c03ec91b669dd8d5ad2da4b14bd6103df2d083928152aa4a83b63d749b61048b450dbc574eb19e96599f0eaa6c3b41611b4676218091a2666872759c0c5dd972df8ab2ef6e618fed29704219ad39203d6b7cb455b3ddaaeef463cf76c3c1f4dba1da05d623b226aa6e8b0395ce5d5282d6ab1aa6494418a7f2054cec078a53734d8716a074288ae7bfa8aa564b6c696ac2badcb1302c5722509f07f10d83229a7a0735d6860a9b9b87f131cc0e0b72bb44646fa970a039537ec8064db9769c45bed8d3377a3881433d6f42ee4e93a5cc73c3c3568f1f3be962"}, @NL80211_ATTR_SCHED_SCAN_MATCH={0x358, 0x84, 0x0, 0x1, [@nested={0x1d9, 0x3e, 0x0, 0x1, [@nested={0x4, 0x9c}, @typed={0x4, 0x54}, @nested={0x4, 0xa0}, @generic="27ff0cebb8c9b4796da24fa7caeafc3e5a91d5a337795b13a79a8c1d11f83c35c46d879db6a765e49d3e177c1e56da234475593daaaf1fb508ad93f2c51926953703dcb25a6cefbeed78560341600e7633d052fe85eb9ae5662717b0785d0965e2e56f78b8f9eccd9dd86d24a4ad56d0101bc83061ab671ce5b14f8c8682dadd4218ee2caac4ec4b5baf4c34187b1c94a1c28141e01a8777f4d49a26223687304a37032f54d5a63419fa3b3d81098d8713d1d292dcbad841c9dec3456cc76e9c253ae105a0252761dd9f0efce6cafd9d4df99d4df6630ed6", @typed={0x8, 0x27, 0x0, 0x0, @ipv4=@remote}, @generic="7f9e9f45451d13621267cdffbb5e06119b0f34c284d4c160d3b0816947e5ad282743efec692c03f6d2869ac0a7e43c7edc08e2e301a007a39c453852540a3f0243cfa23d633322b1f4cfbdc8cf58ef88dcef6a6c8abf13daa02efea9518007310a3eb181d785b53c7e9a9df02388565cc54e0431e5115a4c430d44ce097d1b3811729a67b5d2a5c6", @typed={0x4, 0x109}, @generic="7de477d7cde8ad8818b7fffb1fe63a1b8bceb65db35aadeb9c75a55a95c9cec2ffecbd946f3a559fc28e89f2ac4bf13f12a5095aaccae640a4a9c8849e5ce56553a83df7612286e286b54bb9b4752778ad", @typed={0x9, 0x103, 0x0, 0x0, @str='-#]&\x00'}]}, @generic="34fc8598c7ea241b259176122c1ed4ceab326e64cfa64aee8efcc9d28e38fd196e593c7e60e5a96b805e2f587b979b9ffa5d83fe745bb9c56a7eb43e99d8bde6db3a332e6232ab535adcda153b74fb72bc32f72de7fd5e393a48d26c856ddf092132819c19d2dc58465ad0afacb449695366a59df5f8ac6d18ee2e246ceb22e644be2a1c25b5c52e8393a3eb97134e84275ceb58ed7a96b88d1d9ed69c38648e2793968cd595417addd0259056e917cee53aa61ba0d304efded6b4d0c89921c185d85879d6626c503aec93578e3061b8ca9ef62749a2546448571f54af78ae96b554a41347d3d56e0c372596f68e16a457f37902214bd69c9f49c125c20b8b", @generic="8e4a08139dbc4f247dd3614dd228540aa2bab2c125619c2e1ffe25fdf167ab650ab02ead69905b566a65f7c81903b993819e5bfff3a6524a5bcca57534e9965d6c5a3d7ef90f6190860015ff92b2359d7b13b7e2d04a98a0faee774edbc9717791fe3e820d93fcbe1c94cc591d617268182ec44115cb45b086"]}, @NL80211_ATTR_STA_SUPPORT_P2P_PS={0x5, 0xe4, 0x3}, @NL80211_ATTR_FRAME_MATCH={0x93, 0x5b, "35c709315a3899c9691e6885676ce7c7c69c8ce20b4df6b5dbe1ca69012418ddb2b03c66623879149ebedfd4f3fbb455dacdd484b5be09c2fc7866210920c4e80e1d0ca7668f8e5673b2e8d407b7f0be391d75a2163e3eef31a685111b28fbaee26001f5920d8d218cc1cfeb8c6e07560cd1121ae45bb5a7d3b00ce84c41f9de8af4850a77b6d8e9c9a0a8d62c4641"}]}, 0xd10}, 0x1, 0x0, 0x0, 0x4044040}, 0x0)
r7 = fanotify_init$auto(0x0, 0x200)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_TDLS_MGMT(r0, &(0x7f00000038c0)={&(0x7f00000035c0), 0xc, &(0x7f0000003880)={&(0x7f0000003600)={0x260, r5, 0x20, 0x70bd2d, 0x25dfdbfd, {}, [@NL80211_ATTR_STA_EXT_CAPABILITY={0x64, 0xac, "a489719c8fc590aaccca728bbaafe779136eac962a7408016a411f3542adf9bf3dd4976c0c0558290e85ef0d956cc82b9bc9bbe04447fc023a97ff9f3e45239cd93f04a449f784622090468895b9152e719a371b4dcc63028f173dd71c63a6b8"}, @NL80211_ATTR_MNTR_FLAGS={0x52, 0x17, "e854fa3ff3ec24b9aa7b297717589a5adb564c6bf9c9732a97ddac3d3d9f39c7d24b1ac4901d26a319f622034ac95d9398adf5e9e0ff1e02d048a7b4fbc622f5caa7241546904f0e52c02b0df810"}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "291627d7ff0ff557af2649767cf4922106ee49b60e000b7e"}, @NL80211_ATTR_MNTR_FLAGS={0x73, 0x17, "a214ce3b09727b69ff5f25090b092daf61561d0e7fb47abffc90fb0d82d609e9a13753d25075e804243d9a23fb0ed723feb3c8ec05900a0e0e1acdf3fa2b8873e6cd2b1f3c4e43790614ffe08640ae779f2bb692ae08363e36e4f9fc92066e28a13725aa117f7f0e6c1354803e3574"}, @NL80211_ATTR_HE_OBSS_PD={0x104, 0x117, 0x0, 0x1, [@NL80211_HE_OBSS_PD_ATTR_MAX_OFFSET={0x5, 0x2, 0xf6}, @NL80211_HE_OBSS_PD_ATTR_BSS_COLOR_BITMAP={0xf5, 0x4, "b9f0ade7d96f86667dccd49f0982cafb67d26745c28af6b225538784af5e2c9a2c85ed23c9e3aede833f622177e22f7747c0280578a8163e61b8167a83888027c8963b41d8d6f6f6457db36e66817a9e9f09e1fe48aec8bd1c8a0a03e7b4cc7bd51ea68204a8ff14b001d713b6d49b3c976806597d85211180abd52bd67eea252e9310d677deec98ec48ae0e7d1489876f83e2dd2388514ba01fe896fdb2bad80cf6f74954229628d73ddd4a9bab4819690388bd16dc6bf368bbf177f2627498586ab432c61a422ef7e2fedbb8f7ea2f5d9b79597606ffc75fe24b2a160c50341b1f045b660aea1fe9fca42fd57d2768e6"}]}]}, 0x260}, 0x1, 0x0, 0x0, 0x4000}, 0x20042805)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000003900)='/dev/dri/renderD128\x00', 0x40000, 0x0)
r8 = fanotify_init$auto(0x101, 0x10)
fsconfig$auto_FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000003940)='@!\x00', &(0x7f0000003980)="593d799a13cf08bd81ab69b2730d124411e1b6fd7dbf52bb03b09af46c8202b56b735ffd26a8b89f8fc921ab7cbf58af0bdc2d6022ce64afc100e305bbc3c04a477d21459b0e074cd2ad07f97b28b5f580e15b0466f588a571542b84d784176e95e990bb12f84a281a49b774611ba741b1d63d43c105723091da88cc0b341b1ab1316d6b85847b87", 0x3)
ioctl$auto_PPPIOCSPASS(r3, 0x40107447, &(0x7f0000003a80)={0xa, &(0x7f0000003a40)={0xff, 0x6, 0x85, @raw=0x5}})
r9 = openat$auto_objects_fops_(0xffffffffffffff9c, &(0x7f0000003ac0), 0x8000, 0x0)
sendmmsg$auto(r9, &(0x7f0000004c00)={{&(0x7f0000003b00)="5cf27c843ee959e9e8b71b9f025c1afd1631834daa765892ed1d0365b97b1c5f51311bd9346c73e44118cd282ba6f40f6100b0b6717052e685cf47e4c68bae1deee48f35d70589f96b6985d839d98bde18b1eb38c879262522487225ea1fa8563def23bd2ac1d43e8db392055a5a4297112c54108f9a", 0xfffffff9, &(0x7f0000003bc0)={&(0x7f0000003b80), 0x9}, 0x8, &(0x7f0000003c00)="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", 0x7fffffffffffffff, 0x5}, 0x10000000}, 0x8, 0x1d54)
r10 = syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000004c80), r0)
sendmsg$auto_IEEE802154_LLSEC_DEL_KEY(r8, &(0x7f0000004d40)={&(0x7f0000004c40)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000004d00)={&(0x7f0000004cc0)={0x34, r10, 0x20, 0x70bd2d, 0x25dfdbfe, {}, [@IEEE802154_ATTR_LLSEC_FRAME_TYPE={0x5}, @IEEE802154_ATTR_COORD_PAN_ID={0x6, 0xa, 0x401}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5, 0x36, 0x2}, @IEEE802154_ATTR_LLSEC_KEY_USAGE_FRAME_TYPES={0x5, 0x31, 0x9}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000000}, 0x50)
sendto$auto(r1, &(0x7f0000004d80)="42ab1fa257256a25431430779ad15ed076ee43f0edad1ab654a78d1371d8d37652e713509757662e0d91d1a5b0745895633b0bac0ea008e7ece4cacfe2ae212d13a1eeefc39e30ab703f2d364b902767ef071ebd31f8aec2479b15624b1ef086e634ca2bf47235268624d0ba9349cc08ed0dbf497fe712cee429500f70bbddb3b76700c9dc61e46e", 0x4, 0x55, &(0x7f0000004e40)=@l2tp={0x2, 0x0, @private=0xa010102, 0x1}, 0x1ff)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_REMOVE(r7, 0xc0405519, &(0x7f0000004e80)={@inferred=<r11=>r4, 0x7b63, 0x0, 0x0, "95c2f15be3dec6f58afd639d9ab97f99795025ce2110f0c35ead1d9324781b097db1595cd693d889b17897d7", @inferred=r6})
bpf$auto(0x3, &(0x7f0000004ec0)=@task_fd_query={r4, r0, 0x5, 0x9, 0x6, 0x10, r0, 0x8, 0x9}, 0x80)
r12 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000004f80), 0x101800, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r12, 0x40345410, &(0x7f0000004fc0)={{0x8, 0xf909, 0x4b86, 0x8000, 0x10000}, "92d2e8e8d8a6f0ddd8baa22e028a2b6e0eaf0b38bde5d5f0a77bc11af6ec82ac"})
ptrace$auto_PTRACE_GETREGSET(0x4204, r11, 0x800, 0x400)

29m44.452376496s ago: executing program 0 (id=256):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001d00), 0xffffffffffffffff)
sendmsg$auto_NBD_CMD_CONNECT(r0, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f00000000c0)={0x3c, r1, 0x1, 0x70bd25, 0x25dfdbfd, {}, [@NBD_ATTR_SOCKETS={0x10, 0x7, 0x0, 0x1, [@nested={0xc, 0x1, 0x0, 0x1, [@nested={0x8, 0x1, 0x0, 0x1, [@generic='\x00\x00\x00\x00']}]}]}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x6}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0xfffffffffffffff7}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4}, 0x8880)

29m44.013189823s ago: executing program 0 (id=258):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000001640), r0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
rseq$auto(0x0, 0x0, 0x0, 0xffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/net/rpc/use-gss-proxy\x00', 0x48041, 0x0)
write$auto(r1, 0x0, 0x16d)
socket(0x21, 0x4, 0x2)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x1e, 0x5, 0x3, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x155)
socket(0x5, 0x2, 0x0)
r2 = socket(0x2, 0x5, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r3 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7114}, 0x8)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[], 0x5c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
write$auto(r3, &(0x7f0000000040)='S\x00\x00\x00\xfe\xff\xff\xff', 0x8487)
close_range$auto(0xffffffffffffffff, r2, 0x1)
open(0x0, 0x22240, 0x155)
socket(0x2, 0x1, 0x100)
bind$auto(0x3, &(0x7f0000000040)=@generic={0x2c, "46f8b4d1a2db780ff7932ec25fcc"}, 0x6a)
socket(0x2, 0x1, 0x106)
listen$auto(0x3, 0x81)
sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
move_pages$auto(0x1, 0x1002040000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
accept$auto(0x3, 0xffffffffffffffff, 0xffffffffffffffff)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
syz_genetlink_get_family_id$auto_nlbl_unlbl(0x0, 0xffffffffffffffff)

29m28.006336478s ago: executing program 32 (id=258):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000001640), r0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
rseq$auto(0x0, 0x0, 0x0, 0xffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/net/rpc/use-gss-proxy\x00', 0x48041, 0x0)
write$auto(r1, 0x0, 0x16d)
socket(0x21, 0x4, 0x2)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x1e, 0x5, 0x3, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x155)
socket(0x5, 0x2, 0x0)
r2 = socket(0x2, 0x5, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r3 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7114}, 0x8)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[], 0x5c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
write$auto(r3, &(0x7f0000000040)='S\x00\x00\x00\xfe\xff\xff\xff', 0x8487)
close_range$auto(0xffffffffffffffff, r2, 0x1)
open(0x0, 0x22240, 0x155)
socket(0x2, 0x1, 0x100)
bind$auto(0x3, &(0x7f0000000040)=@generic={0x2c, "46f8b4d1a2db780ff7932ec25fcc"}, 0x6a)
socket(0x2, 0x1, 0x106)
listen$auto(0x3, 0x81)
sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
move_pages$auto(0x1, 0x1002040000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
accept$auto(0x3, 0xffffffffffffffff, 0xffffffffffffffff)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
syz_genetlink_get_family_id$auto_nlbl_unlbl(0x0, 0xffffffffffffffff)

25.687145837s ago: executing program 1 (id=5463):
r0 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
ioctl$auto_FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000140)="58fcb282bcbc38bfaef257e019406ea6c445cd4f7f7662ac0f8834baa918d5b3cea133243c4f2b9a39e536b67f5a1a2bfdf589da2b1c980e1ce53883444996d1721d7f3ae627c6c604000000000000007910fbc02d899ab93d002d849884a5377ff11be2ed012110f2f520")
write$auto(0xffffffffffffffff, &(0x7f0000000000)='-\x00', 0xfdef)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/mnt\x00')
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/ip6gre0/power/control\x00', 0x10b142, 0x0)
prctl$auto_PR_SCHED_CORE_SHARE_FROM(0xc, 0x3, 0x0, 0x0, 0x2)
socket(0x3, 0x3, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x5e, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0)
write$auto(r3, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
write$auto(r3, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000)
r4 = socket(0x15, 0x5, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001d00), r5)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan1\x00'})
getsockopt$auto(r4, 0x114, 0x2720, 0xfffffffffffffffc, 0x0)
r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/ipv6_route\x00', 0x101000, 0x0)
pread64$auto(r6, 0x0, 0x8, 0xffff)
sendfile$auto(r1, r1, 0x0, 0x1000200)

21.854152587s ago: executing program 1 (id=5473):
socket(0xf, 0x3, 0x2)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket(0x2, 0x2, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000040), 0xa480, 0x0)
readv$auto(0x3, 0x0, 0x87)
socket(0x2b, 0x2, 0x0)
openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/trace_pipe\x00', 0x20c01, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
ioctl$auto_posix_clock_file_operations_posix_clock(0xffffffffffffffff, 0x2, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x4, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x1000, 0x2, 0xfffffffffffffffe]}, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
ppoll$auto(&(0x7f0000000180)={0xffffffffffffffff, 0x4, 0x8}, 0x6, 0x0, 0x0, 0x8)
open(&(0x7f0000000800)='./file0\x00', 0x183242, 0x154)
unshare$auto(0x40000080)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_INTERFACE(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r2, @ANYBLOB="010b12bd7000fcdbdf2505067163a063e164b2582d2a9eb8000000"], 0x14}, 0x1, 0x0, 0x0, 0x4000001}, 0x4000084)
socket(0xa, 0x5, 0x4)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, 0x0, 0x305080, 0x0)
mmap$auto(0x2000000, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xfffffffffffeffff, 0x15)
setreuid$auto(0x4, 0x8)
mlockall$auto(0x8000000000000001)
unshare$auto(0x40000080)

18.434016893s ago: executing program 1 (id=5481):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop6\x00', 0x88441, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x2020006, 0x1000000000000007, 0xeb1, 0x0, 0x1008000)
close_range$auto(0x0, 0xffffffffffffffff, 0x2)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
fcntl$auto(0x8000000000000001, 0x26, 0x8)
fcntl$auto(r1, 0x7, 0x4)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
ioctl$auto_SG_GET_RESERVED_SIZE(r0, 0x4c03, 0x0)

17.83866704s ago: executing program 1 (id=5482):
mmap$auto(0x0, 0x400006, 0xdc, 0x9b72, 0xffffffffffffffff, 0x80000008000)
getcwd$auto(0x0, 0xffffffffffffffff)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptyze\x00', 0x113280, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0xa, 0xb4, 0x10, 0x4, 0x4, 0xffffffffffffffff, 0xa, "29f08bcfd0a23f00", <r1=>0x0, r0, 0x5, 0x7, 0x7, 0x9}, 0x10)
bpf$auto(0x19, &(0x7f0000000380)=@link_create={@prog_fd, @target_ifindex=r1, 0x3, 0x81, @tracing={0x3, 0x4}}, 0x92)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x88201, 0x0)
mmap$auto(0x0, 0x1000, 0xdf, 0x9b72, 0x2, 0x8000)
io_uring_setup$auto(0xd037, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
socket(0x21, 0x1, 0x82)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r3)
ioctl$auto_KVM_CREATE_VM(r2, 0xc048aeca, 0x0)
prctl$auto(0xe5, 0x7, 0x0, 0x0, 0x0)
mknod$auto(&(0x7f0000000180)=':,\x00', 0xc9, 0xfffffffa)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x40080}, 0x40)

17.256291676s ago: executing program 1 (id=5483):
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB="0600", @ANYRES16=0x0, @ANYBLOB="010025bd70"], 0x14}, 0x1, 0x0, 0x0, 0x30000881}, 0xc040804)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_net_dm(&(0x7f0000000040), r0)
sendmsg$auto_NET_DM_CMD_CONFIG_GET(r1, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000380)=ANY=[@ANYBLOB="2c000000da5319d4eed5a67bb936f5ccbd5f3ada5d43b96372b3c0eb41032ec17352fb9fa02392d1b43afb1fd8b5d9101458554a85dea49f48c1c106aec3d0576a4dec47191c0139330388ea421934dc89fc3ad10088e868a9f24d896e792d56326e36adaa94b122dfedb9dea2fb01c2c4a5fd6789a6f46fb9b64fda0fee80a21b16467a3497a2bd6204619a9aa81e0169fa5eab6a5eaa17b8e3a80ef2f394bc1e33dd78ddc8d04c47b3e3e7b6a5f05f86967837a4b283532c4f13cdf37ca1fc6464d78dbe0a776221aa015ea8d740260c3dd27ee7146e0ddb761781fe8975525b2c9104e7e6d3b652436162d0f9abded4dca062e4bd8ada", @ANYRES16=r2, @ANYBLOB="080027bd7000fedbdf2506000000050001008000000008000b00ffffff7f08000b00ff010000"], 0x2c}, 0x1, 0x0, 0x0, 0x801}, 0x1)
socketpair$auto(0x8, 0x9, 0x5d, &(0x7f00000000c0)=0x9)
read$auto_uinput_fops_uinput(0xffffffffffffffff, &(0x7f00000002c0)=""/140, 0x8c)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='B'], 0x1ac}}, 0x40000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000)
r3 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x1c}}, 0x4044820)
ioctl$auto_XFS_IOC_ERROR_INJECTION(0xffffffffffffffff, 0x40085874, &(0x7f00000000c0)={0xffffffffffffffff, 0x1})
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xd, 0x0, 0x0, 0x0, 0x0)
mount$auto(0x0, &(0x7f00000000c0)='.\x00', 0x0, 0xdef, 0x0)
write$auto(r4, &(0x7f0000000400)='/d\xe5\xf0\xff\xff\xff\xff\xff\xff\xff\x00', 0x100000a3d9)
socket(0x1e, 0x1, 0x0)
setsockopt$auto(0x3, 0x5, 0x100000000, 0xfffffffffffffffc, 0xa)
getpid()
rt_sigprocmask$auto(0x26, &(0x7f0000000040)={0x80000000}, &(0x7f0000000080)={0x9}, 0x8)
mmap$auto(0x6, 0x48000a, 0x100002bb, 0x14, r3, 0x1)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
unshare$auto(0x40000080)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xc, 0x800008000)
prctl$auto_PR_SET_VMA(0x53564d41, 0x0, 0x0, 0x2, 0x2)

15.491321877s ago: executing program 1 (id=5488):
mmap$auto(0x0, 0x80000000004005, 0x1000005, 0x40eb2, 0x401, 0x300000000000)
r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x3, 0x7)
r1 = pidfd_open$auto(0x1, 0x0)
setns(r1, 0x60020000)
syz_genetlink_get_family_id$auto_nlbl_cipsov4(&(0x7f0000000040), r0)
umount2$auto(&(0x7f0000000000)='.\x00', 0x8)

12.054987789s ago: executing program 4 (id=5497):
mmap$auto(0x0, 0xa00006, 0x400002, 0x40eb1, 0x602, 0x300000000000)
madvise$auto(0x0, 0xffffffffffff0006, 0x17) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2, 0x1, 0x106)
bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) (async)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) (async)
openat$dir(0xffffffffffffff9c, 0x0, 0x40000, 0x0)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x109001, 0x0) (async)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x1, 0x0) (async)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10) (async)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0x11, 0x0, 0x0, 0x0, 0x0) (async)
sendmsg$auto(r2, 0x0, 0xfb15)
msync$auto(0x10000, 0x6, 0xb)
select$auto(0x1009, &(0x7f00000000c0)={[0xeeda, 0x7, 0x6e, 0x9, 0x6, 0x1ff, 0x6, 0x3, 0x4, 0x4618ecd2, 0x3, 0x42ff, 0x6, 0x9a8c, 0x9, 0x10001]}, 0x0, 0x0, &(0x7f0000000280)={0x6, 0xcb})
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) (async)
write$auto(0x3, 0x0, 0xfffffdef) (async)
ioctl$auto(0xffffffffffffffff, 0x900064b5, 0xc14) (async)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_ftrace_avail_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/available_events\x00', 0x40000, 0x0) (async)
mmap$auto(0x4, 0x1000003b, 0x7ec, 0x18, 0x200000401, 0x8002) (async)
unshare$auto(0x40000080) (async)
r3 = socket(0xa, 0x1, 0x100)
setsockopt$auto(r3, 0x29, 0x1b, 0x0, 0x56b) (async)
r4 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000080), 0x60d80, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r4, 0x40345410, &(0x7f0000000280)={{0x3, 0x1000, 0x5, 0x1, 0x8}, "654c6dbc7a4d30983899a7e1325b6a29ba1e184410ba9f74e82a3fa6c3ccf1bf"})

10.631741474s ago: executing program 3 (id=5499):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop6\x00', 0x88441, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x2020006, 0x1000000000000007, 0xeb1, 0x0, 0x1008000)
close_range$auto(0x0, 0xffffffffffffffff, 0x2)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
fcntl$auto(0x8000000000000001, 0x26, 0x8)
fcntl$auto(r1, 0x7, 0x4)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
ioctl$auto_SG_GET_RESERVED_SIZE(r0, 0x4c03, 0x0)

10.305082808s ago: executing program 4 (id=5500):
r0 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
ioctl$auto_FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000140))
r1 = socket(0x10, 0x2, 0x4)
write$auto(r1, &(0x7f0000000000)='-\x00', 0xfdef)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/mnt\x00')
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/ip6gre0/power/control\x00', 0x10b142, 0x0)
prctl$auto_PR_SCHED_CORE_SHARE_FROM(0xc, 0x3, 0x0, 0x0, 0x2)
socket(0x3, 0x3, 0x0)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x5e, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0)
write$auto(r4, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
write$auto(r4, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000)
r5 = socket(0x15, 0x5, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001d00), r6)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r9=>0x0})
sendmsg$auto_ETHTOOL_MSG_RINGS_SET(r6, &(0x7f0000001dc0)={0x0, 0x0, &(0x7f0000001d80)={&(0x7f0000000200)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="050027bd7000ffdbdf3e00"/26, @ANYRES32=r9, @ANYBLOB="08000a0003000000"], 0x28}, 0x1, 0x0, 0x0, 0x90}, 0x80080)
getsockopt$auto(r5, 0x114, 0x2720, 0xfffffffffffffffc, 0x0)
pread64$auto(0xffffffffffffffff, 0x0, 0x8, 0xffff)
sendfile$auto(r2, r2, 0x0, 0x1000200)

10.262819834s ago: executing program 3 (id=5501):
syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000180), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/ram8/dev\x00', 0x6a8800, 0x0)
prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
sendmsg$auto_NL802154_CMD_DEL_INTERFACE(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1}, 0xc, 0x0}, 0x80)
semget$auto(0x0, 0x13c, 0x1ff)
semtimedop$auto(0x0, &(0x7f0000000300)={0x7, 0xffff, 0x70}, 0x1f4, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x800000000001, 0x0)
write$auto(r0, &(0x7f00000005c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D_#\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc^:\xd1\xe3\xf1@\xc0\x93^:Mn#Oi\xaa[X\x93)\x8f\x03K\xe6\xa4\x11?\xf1\x02+\\\xf9\x8b\xe5l5\x11\x006c\x907E\xeb\x81\fB\xe3\xf8n\x8f\x94V\xbcB\x9cm\x9f\x15\x00Q\xf8\x8fFW#?\xd5Z~\xa51\x832\xbd|\x19\xda\x8e\xff\x17\r\x96\xa3\xcc+\xf4a\xffN\xd2_\xe5\\\xf8Lzc\xd4\xa0\x1f\x04_\xf1\xc6\fO\xbe?)Q\xc7\\B\xdb\xeaI\xde\xe9m\xf5\xf9\x19\xd3@IK\xe3c\x0ek\x8drZ\xad\xdc\xbb\xfc\xd4\x1f\xdaOW\x87\xb6Fm\x12\xadw(z\\j\xcc0P\xaeC\x9f\xbf\xd5\xf9\xe3\x85~cG\f\x85\xd6\x84ma\xfd\xdayNj\x80\xdd3^\x87,\x14\x8e\xbe$\x05\x8a\xb0 M\xf6$B TCs\xa9\x91dil[\xfc\a\xbfD\xd9\x8d(F\x1e\f\xec\xe9K|h\xf5\xcaUI\x18#\xbed\xa8C\x8a\xbb\fE\xe6\xa3|\xf7\xa8\xbb\xd3\x97l.V/uc\xb5Q\x1eY\xe0\x03\xa1\xc1\xc8\xe2=RK\x7fWV;\xe4\xccTsf\xa7[\xdd\x9cR\xab\xf81s\xbc\x9c\xaaSGH\x9al\xb9%u\v\xb4\x9d\x95\x16\x01\xbbT\x99S\xf8A\xcd\bRC\xf4\xb0\x1a%\xdd+1\x81\x9d6\x90\xe8\xc6\xc1\x1e\xf0~\xaf\x10g&\xd6\x01l::V\xdbJiVW\xab4G\x97\x9cl', 0x100000a3d9)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0)
write$auto(r2, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
write$auto(r2, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7)
r3 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000900)='/sys/kernel/debug/block/nbd0/hctx0/sched_tags\x00', 0x60100, 0x0)
ioctl$auto_TUNSETVNETHDRSZ2(r1, 0x400454d8, &(0x7f0000000100)=0x2d)
read$auto(r3, &(0x7f0000000040)='\x00', 0x3)
mmap$auto(0x0, 0x400008, 0x7d3, 0x9b72, 0xffffffffffffffff, 0x5cd)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x7, 0x4008)
r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/rxrpc/peers\x00', 0x101000, 0x0)
pread64$auto(r4, 0x0, 0x8, 0xffff)
madvise$auto(0x0, 0x200007, 0x8)
openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/usb/usbmon/9t\x00', 0xa00, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000180)='/dev/usbmon9\x00', 0x80000, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x630001, 0x0)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/pagemap\x00', 0xee90ce37eb497475, 0x0)
syz_clone3(&(0x7f00000004c0)={0x2000000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b71, 0x2, 0x7fff)

8.961193412s ago: executing program 2 (id=5502):
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f00000000c0)=""/97, 0x61)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000000200000000)
getpid()
ioctl$auto_UBI_IOCDET(0xffffffffffffffff, 0x40046f41, 0x0)
unshare$auto(0x40000080)
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
r1 = openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, &(0x7f0000000500)='/dev/cpu/0/cpuid\x00', 0xad00, 0x0)
readv$auto(r1, &(0x7f0000000680)={&(0x7f0000000540), 0x40200}, 0x3)
ioctl$auto_SNDCTL_DSP_SPEED(r0, 0xc0045002, 0x0)
ppoll$auto(&(0x7f0000000000)={r0, 0x40}, 0x2, 0x0, 0x0, 0x8)
ioctl$auto_SNDCTL_DSP_SYNC(r0, 0x5001, 0xfffffffffffffffc)
modify_ldt$auto(0x1, 0x0, 0x10)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40, 0x0)
r2 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
lsm_list_modules$auto(0x0, 0x0, 0x0)
r3 = openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
read$auto_mISDN_fops_timerdev(r3, &(0x7f0000001a00)=""/4097, 0x1001)
ioctl$auto_IMADDTIMER(r3, 0x80044940, 0x0)
landlock_add_rule$auto(0xffffffffffffffff, 0x3, &(0x7f0000000040)="c604ebf2c9bc", 0x2)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r4 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000000), 0x88600, 0x0)
ioctl$auto_UBI_IOCATT(r4, 0x40186f40, 0x0)
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000)
r5 = socket(0xa, 0x1, 0x84)
getsockopt$auto(r5, 0x0, 0x482, 0x0, &(0x7f0000000040)=0x83)
ioctl$auto_UBI_IOCDET(r4, 0x40046f41, 0x0)
pread64$auto(r2, &(0x7f0000000040)='\x00\x00\x00\x88\xde\x90\a\'\x9bM\xa0\x848\xbbz(\xe9\x05<\x82\xfe\xe2\xf6 \x0f8\xfb\xa7\xb4\xa0\x9e\xcb\xec\x9e{W\xed>\xe7l\xcb\x90\\/\x84\x99!*\xe3\x99}x\xd4\xa5D\xfa\xe5\xf9od^\xa6', 0x7ff, 0x400)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)

7.831264563s ago: executing program 3 (id=5503):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
madvise$auto(0xfff, 0x8, 0xab8)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
r1 = socket(0x1e, 0x1, 0x0)
setsockopt$auto(0x3, 0x6, 0x100000000, 0xfffffffffffffffc, 0xa)
socket(0x2, 0x801, 0x100)
mmap$auto(0x1, 0x3, 0x3, 0x55, r0, 0x8001)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x5452, 0x0)
r3 = openat$auto_check_wx_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x400, 0x0)
r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/thread-self/net/netfilter/nf_log\x00', 0x101000, 0x0)
pread64$auto(r4, 0x0, 0x8, 0xffff)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual/tty/ptyp4/dev\x00', 0xa2900, 0x0)
read$auto_check_wx_fops_(r3, &(0x7f0000000080)=""/228, 0xe4)
mlockall$auto(0x5)
mmap$auto(0x2, 0x40000a, 0x2bb, 0x14, 0x2, 0x3)
syz_genetlink_get_family_id$auto_nlbl_mgmt(0x0, r1)
io_uring_setup$auto(0x8, 0x0)
unshare$auto(0x40000080)
futex$auto(&(0x7f0000000340)=0xefcb, 0x6, 0x80000001, &(0x7f0000000380)={0x0, 0x3}, &(0x7f00000003c0)=0x6, 0x1ff)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
execve$auto(&(0x7f0000000180)='./file0\x00', &(0x7f0000000280)=&(0x7f0000000240)='/dev/ptp0\x00', &(0x7f0000000300)=&(0x7f00000002c0)='\x00')
socket(0x28, 0x80000, 0x300)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r5 = socket(0x28, 0x5, 0x0)
connect$auto(r5, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2710, @hyper=0x1000000}, 0x56)
io_uring_setup$auto(0x6, 0x0)
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000000), 0xc0402, 0x0)

7.184537886s ago: executing program 4 (id=5504):
r0 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000180), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/ram8/dev\x00', 0x6a8800, 0x0)
r2 = prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r4 = prctl$auto(0x3e, 0x1, 0x0, 0x800000000001, 0x0)
fstat$auto(r1, &(0x7f0000000240)={0xfffffffffffffffb, 0xf15e, 0x40, 0xfffff001, <r5=>0x0, 0xee01, 0x0, 0x3, 0x9, 0x9, 0x2, 0x800000abca, 0xa9d, 0x100000001, 0xfffffffffffffffd, 0x297, 0x2})
sendmsg$auto_TIPC_NL_MON_SET(r4, &(0x7f0000000300)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000140)={&(0x7f00000024c0)=ANY=[@ANYBLOB="701b0000667b206632c11b37a58bb61ff165c479eaf0b0208179589a6409c9a0a438d2", @ANYRES16=r0, @ANYBLOB="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", @ANYRES32=r2, @ANYBLOB="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", @ANYRES32=r5, @ANYBLOB="f401518000017e00a250a4175c55662c5667f4b9f5c67eef004fe915d9b1be090dfd8e95630b8ded244177661f1e9bf565aac5297333669734a88fb4e6f1d4a565402ab0f4420541feb665f6a74cabec10362b377761b229c36902429976e0a18cc87f9ca9c856c0499c062b6fd239dd4204441ba21487de29b27accafc497191d293221126429447e4c88f886700ad68de99055f36e857d4d51650f8487e6af55b9f853a7ed6dcfb3501eaca5a071dca6dc07c510691255852c342a24f713cdecef5f56cc5ed03c7511e4e45f3115198c0fba38f68bd104278241d23f658c22637ee1fd1b5eea6f7afcbb5e60958e1066af28499a495afc68c21bad0edc9bad5ac05e14891b704a9766bf8cbc041ea2f820633a8d6f2d498a61f2963b848004c17dffff95199d2f734764542d3c7db28f8e52356c5e91e24ab31afa205d7380a855fd6000f0b8061d14e00c50551ff28c071aa81c1fa7bc7179eb3c39d2302fa82ae544d0d917997f50d501b0cab9f0f0718d9e0d0620d4279eb6088e7a60df6dc55429dd201466bd29c55f9c13a1a75b10885d30b440eb10cbb4f5eee81a8a874524f8ff75b04b1f6a6264020fa4e68dff1a4602cf3302b2276a0b19f5a7383e925b04d91a3758ea0cb8653a9b5e3cb84d173b1842cf18ef9931b869eaa3dec1d48299945b46f181d2bd591b7a2b505ec7a293177a01668de1dfd54c5ab67cb24cd6429fb0651c703be34e42afbc5775b64294f1b8daebb3b3b6bfb0f6c992e2e3c762c17e24d24d130ed25ab57d9bb267bdf10055c32a30f9ef3f495bac898a2d0e437e5739c9a4910eede075d6d6e3e2c8bdf54db4e0590aee2e57bfbf79740de8c8e1e0f52f98ae1ea97acf59aa8ad6a28c4e6397dd15b205042d25bcca8d487b3201aec677a26de4dec412e90b2269f0109156a7e859c6ed53d701ecd82102df2c654acdb34bae273b98eb90ecac32e100abd7fba6d79c2172711b0032806744d5d088dfce710735eb874d0088803699a0339eb3da00000000830205809c00f880b5adc36798201118c03f7c9a417518601e3f11d09f3764028184db73c619c232ff06327b4177595f26941c898bcfcea3abf1d17785b8dd42f1c909f86f062be0a37b4030388288ce1513dd31417823a0289f5e748bf657016408ba6526db6904dd6cdc209290b2de699147217b48884ab251d383522a5268e42eedc3ff6fdb5e1d6575345a2c1ea80fe8f6d908004e00020000000400b6802eba453083e2ae0202e30dfb937365c45d3cb25c95f3f8998f7f0152326ae1c2aee3abb99cc86c3375a9279345ca0b96feba2a869b77f46c9122f6e5ee9cf73767d2fe28f45b980893c955738ac4a5a37270aa28e7e06e8108255d59640296033b8fc452a9f5983a571a90737f4c68e0237914e74a0f329269db9bbb335ed2d2286d9b656e338e8f9477696334792400870d9695af38593a77d74d0ffb7a42c385fc1da7908eff241ca50ee376a3c58f9ea28f2c40536042b2b8e0ba063b697a1a69fadd1703e0d2619ac106fd640f3941249d05873a12da48327711d18a61315983efb289422c86d325ab9b1e5da4a6d00eb5a51e8af8a8eec41db3ee3bc1327d389045fcead945b77993edf339e39b9f3a721005c1c25d82097c3b47a4536c4a0bb49c7268e9298b29d4f6302546f7810079de1f387ad64d4f0f58531131bbd94d1219625070e708cefabe6127786354cfddb45ff6e7a1565f62e5a8839fd6f4f69a2b1da843bd48ea51afc9e43b3b9b4e4fcc345cca8b32e05f42959049341d166277766739637a8aa56608bdafba9bedee6a282fc7151c3d23f6a7c2956af0be0c48802220f0303c9c51cf7832bf8540b1a018e45b22a824ecbb25aedeb460cb77b862c43694548020fe9b7a209b751e8f5c3ff9f6b74b91cc08008b000200000000"], 0x1b70}, 0x1, 0x0, 0x0, 0x40001}, 0x4000024)
write$auto(r3, &(0x7f00000005c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D_#\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc^:\xd1\xe3\xf1@\xc0\x93^:Mn#Oi\xaa[X\x93)\x8f\x03K\xe6\xa4\x11?\xf1\x02+\\\xf9\x8b\xe5l5\x11\x006c\x907E\xeb\x81\fB\xe3\xf8n\x8f\x94V\xbcB\x9cm\x9f\x15\x00Q\xf8\x8fFW#?\xd5Z~\xa51\x832\xbd|\x19\xda\x8e\xff\x17\r\x96\xa3\xcc+\xf4a\xffN\xd2_\xe5\\\xf8Lzc\xd4\xa0\x1f\x04_\xf1\xc6\fO\xbe?)Q\xc7\\B\xdb\xeaI\xde\xe9m\xf5\xf9\x19\xd3@IK\xe3c\x0ek\x8drZ\xad\xdc\xbb\xfc\xd4\x1f\xdaOW\x87\xb6Fm\x12\xadw(z\\j\xcc0P\xaeC\x9f\xbf\xd5\xf9\xe3\x85~cG\f\x85\xd6\x84ma\xfd\xdayNj\x80\xdd3^\x87,\x14\x8e\xbe$\x05\x8a\xb0 M\xf6$B TCs\xa9\x91dil[\xfc\a\xbfD\xd9\x8d(F\x1e\f\xec\xe9K|h\xf5\xcaUI\x18#\xbed\xa8C\x8a\xbb\fE\xe6\xa3|\xf7\xa8\xbb\xd3\x97l.V/uc\xb5Q\x1eY\xe0\x03\xa1\xc1\xc8\xe2=RK\x7fWV;\xe4\xccTsf\xa7[\xdd\x9cR\xab\xf81s\xbc\x9c\xaaSGH\x9al\xb9%u\v\xb4\x9d\x95\x16\x01\xbbT\x99S\xf8A\xcd\bRC\xf4\xb0\x1a%\xdd+1\x81\x9d6\x90\xe8\xc6\xc1\x1e\xf0~\xaf\x10g&\xd6\x01l::V\xdbJiVW\xab4G\x97\x9cl', 0x100000a3d9)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0)
write$auto(r6, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
write$auto(r6, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7)
r7 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000900)='/sys/kernel/debug/block/nbd0/hctx0/sched_tags\x00', 0x60100, 0x0)
read$auto(r7, &(0x7f0000000040)='\x00', 0x3)
mmap$auto(0x0, 0x400008, 0x7d3, 0x9b72, 0xffffffffffffffff, 0x5cd)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x7, 0x4008)
r8 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/rxrpc/peers\x00', 0x101000, 0x0)
pread64$auto(r8, 0x0, 0x8, 0xffff)
madvise$auto(0x0, 0x200007, 0x8)
openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/usb/usbmon/9t\x00', 0xa00, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000180)='/dev/usbmon9\x00', 0x80000, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x630001, 0x0)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/pagemap\x00', 0xee90ce37eb497475, 0x0)
syz_clone3(&(0x7f00000004c0)={0x2000000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58)
mmap$auto(0x0, 0x9, 0xdf, 0x17, r2, 0x8000)
sysfs$auto(0x2, 0x4b, 0x0)
r9 = fsopen$auto(0x0, 0xb)
fsconfig$auto(r9, 0x8, 0x0, 0x0, 0x0)

6.679370037s ago: executing program 2 (id=5505):
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x400008, 0x0, 0x19, 0x2, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
mount$auto(&(0x7f0000000180)='pimreg0\x00', 0x0, &(0x7f0000000200)='#\x00', 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'veth0\x00'})
close_range$auto(0x0, 0xffffffffffffffff, 0x2)
socket(0xa, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x801, 0x84)
r1 = socket(0x18, 0x5, 0x1)
connect$auto(r1, &(0x7f0000000000)=@in={0x2, 0x100}, 0x3a)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) (fail_nth: 2)

5.542815227s ago: executing program 2 (id=5506):
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x400008, 0x0, 0x19, 0x2, 0x8000)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
mount$auto(&(0x7f0000000180)='pimreg0\x00', 0x0, &(0x7f0000000200)='#\x00', 0x5, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
r4 = set_tid_address$auto(0x0)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)={0x3c, r3, 0x1b, 0x70bd26, 0x25dfdbfc, {}, [@OVS_PACKET_ATTR_ACTIONS={0x4}, @OVS_PACKET_ATTR_KEY={0x4}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "89803500"}, @OVS_PACKET_ATTR_ACTIONS={0xc, 0x3, 0x0, 0x1, [@typed={0x8, 0x6, 0x0, 0x0, @pid=r4}]}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4004040}, 0x4004800)
capset$auto(&(0x7f0000000480)={0x81, r4}, &(0x7f00000004c0)={0x8, 0x7, 0x345f})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'veth0\x00'})
close_range$auto(0x0, 0xffffffffffffffff, 0x2)
socket(0xa, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x801, 0x84)
r5 = socket(0x18, 0x5, 0x1)
connect$auto(r5, &(0x7f0000000000)=@in={0x2, 0x100}, 0x3a)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x2, 0x0)
socket(0x2, 0x1, 0x0)
socket(0x2, 0x5, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
epoll_ctl$auto(0x5, 0x1, r6, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
epoll_ctl$auto(0x5, 0x3, r6, 0x0)
syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000080), r1)

5.366889649s ago: executing program 3 (id=5507):
r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)={0x38, r2, 0x1b, 0x70bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0x8, 0x3, 0x0, 0x1, [@nested={0x4, 0x15}]}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f17790485908286dd"}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x38}, 0x1, 0x0, 0x0, 0x50}, 0xc800)
write$auto(r0, &(0x7f0000000040)='S\x00\x00\x00\x00\x00\x00\xf0I\xba\xc9\xae\x80HcH\x00\xe8VF\x9e', 0x8587)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x6, 0x0)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x20000, 0x0)
ioctl$auto_TCSBRKP2(r3, 0x5425, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r4 = socket(0x2b, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket(0x2c, 0x3, 0x0)
r7 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000280), r5)
sendmsg$auto_NL80211_CMD_GET_REG(r6, &(0x7f0000000340)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000300)={&(0x7f0000000440)=ANY=[@ANYBLOB="fb1d53efaa1398db9ec8add0e8c466b4", @ANYRES32=r7, @ANYBLOB="04002bbd7000fedbdf251f00000008009f000300000004006700"], 0x20}, 0x1, 0x0, 0x0, 0x8000}, 0x50)
clone$auto(0xfff, 0xfffffffffffffffc, &(0x7f00000003c0)=0x800, &(0x7f0000000400)=0xb, 0x7)
r8 = getpgid(0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_ADD_TX_TS(r4, &(0x7f0000000340)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000300)={&(0x7f00000000c0)={0x214, r7, 0x1, 0x70bd2b, 0x25dfdbfb, {}, [@NL80211_ATTR_FILS_ERP_REALM={0x6e, 0xfa, "85e82624dd20441f87a469d55d26241190388e6fe19fecb07b26c7b3f01bd6206053a4e4f19d4d68ab16482e2a11aeb2780861071b2511c72fc88c08e563332a92d5580914a3d643cd32f141a88f650ceee8bd5f511e5d39f20f0e8403b6f31e12a516d6c9bd4802236b"}, @NL80211_ATTR_CIPHER_SUITE_GROUP={0x8, 0x4a, 0x800}, @NL80211_ATTR_MESH_PEER_AID={0x6, 0xed, 0xf}, @NL80211_ATTR_STA_TX_POWER_SETTING={0x5, 0x113, 0x4}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x2}, @NL80211_ATTR_BSS_BASIC_RATES={0x21, 0x24, "37c8c0e5ba8724dc782bbd8eb3edc213398abc81b848728e11ab9a1d11"}, @NL80211_ATTR_STA_PLINK_ACTION={0x5, 0x19, 0x8a}, @NL80211_ATTR_CSA_IES={0x13f, 0xb9, 0x0, 0x1, [@typed={0x8, 0x4, 0x0, 0x0, @fd=r4}, @generic="11cc00f2b79eabb268aa30b1ed9ad006b84d63d68c7430c9f2c93af11d9e23c1a6141fceb9a81cbe34d8a098623fe3268e3952e22830e753e28e5c7819430a437620881a22d3c830d92e000b102e0bd4694b3060b8d57d7f5574334ba80da2f5560d197c6f0d0118109e039d700dd44573a7dcaf6914cd92032216a9ec8c1ddd4c7253433724ee625cbda5083c4a28c22ad1910438cc9bc438720f2bc36b5e2beb0806494174893cc3e0060297a7aa446bc714d6b1062b", @typed={0xc, 0x2e, 0x0, 0x0, @u64=0x1d}, @nested={0x52, 0x7, 0x0, 0x1, [@nested={0x4, 0xc8}, @generic="d6fc7d0dcf9b59024280a1caf11e52828a16f51078606ef64b8444628ee69191666001e6955e989d191c0e717b976d1ae7a3c8601964f11222b06ed5cd21e388c58be78b7a957683ef1d"]}, @typed={0x8, 0x103, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}, @typed={0x8, 0x42, 0x0, 0x0, @pid=r8}, @typed={0xc, 0x11d, 0x0, 0x0, @u64=0x1}]}, @NL80211_ATTR_DISABLE_VHT={0x4}]}, 0x214}, 0x1, 0x0, 0x0, 0x4080}, 0x4001)
fallocate$auto(r4, 0x3, 0x7, 0x81)
truncate$auto(0x0, 0x3f2ec021)
close_range$auto(0x2, 0xffffffffffffffff, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
select$auto(0x804, 0x0, &(0x7f0000000100)={[0x9, 0x0, 0x0, 0x80000300, 0x1, 0x4, 0x9, 0x3, 0x81, 0x10000005e58296b, 0x1e, 0x9, 0x7ff, 0x200, 0x20000000008, 0x4000000000006]}, 0x0, 0x0)
open(&(0x7f0000000040)='./cgroup\x00', 0x593002, 0x408)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x23}}, 0x54)
r9 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/fs/btrfs/features/extended_iref\x00', 0x18b440, 0x0)
read$auto(r9, 0x0, 0x10000007)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/cifs/smbd_receive_credit_max\x00', 0x641, 0x0)

5.247599159s ago: executing program 4 (id=5508):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='/sys/devices/virtual/net/nr12/iflink\x00', 0x20080, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000280)=""/175, 0xaf)
mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000)
r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer\x00', 0x0, 0x0)
ioctl$auto_SNDCTL_SEQ_GETTIME(r1, 0x80045113, &(0x7f0000000340))
adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x3, 0x6, 0x0, 0x200000000000001, 0x368e, 0x2, {0x100000000, 0x4}, 0xff, 0x100006, 0xfffffffffffffffd, 0x1008000, 0x0, 0x8000000c, 0x81, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x804})
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r2, &(0x7f00000003c0)='/de\xf8\xa5audio1\x00x\xe6\x1d\x99\x9c^\xcaY=\xdf\xcc\xbcX`O\xa7', 0xa3d9)
r3 = socket(0x15, 0x5, 0x0)
ustat$auto(0x801, 0x0)
sendmsg$auto(r3, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0)
mmap$auto(0x4, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000200), r3)
r4 = socket(0x15, 0x5, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a)
sendmsg$auto(r4, &(0x7f0000000180)={&(0x7f0000000680)="01000000b464df7da2f0ad3c5f4cbe092f3b236db408370be5b02a8cd4f8db1278a0aaaff5ab500bab0547e901151786197a6c7167a1bea54e0bb5100e4ee026afe2c62a558d2cb241f3c7bbb384b09eeda24152480325", 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0)
ioctl$auto_SNDRV_RAWMIDI_IOCTL_STATUS32(r2, 0xc0245720, &(0x7f00000000c0)={0x3ff, 0x1000, 0x8, 0xfffffff9, 0x8001, "6dcb5355e8c35b1190ce2c43b0fde89c"})
sendmsg$auto_NL802154_CMD_NEW_INTERFACE(r3, &(0x7f0000000440)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000480)={&(0x7f00000005c0)=ANY=[], 0x20}, 0x1, 0x0, 0x0, 0x24008004}, 0x8090)
sysfs$auto(0x2, 0x23, 0x0)
r5 = socket(0xe, 0xa, 0x300)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000040)={'vxcan1\x00'})
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x200)
listmount$auto(&(0x7f0000000240)={0x200, @raw=0xe, 0x1, 0x81, 0xf}, &(0x7f0000000140)=0x10000, 0xf, 0x7)
ioctl$auto_SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045002, &(0x7f00000000c0))
r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/afs/rootcell\x00', 0x1cb842, 0x0)
write$auto(r6, &(0x7f0000000300)='*o\xd3\xa49\xaf\xa9\xe4\xe17\x12\xb3Z\x17I\x82\xdc\xbeiw\xc1\xd1\x8d\x9b\r\x9aR\xe7\x9f\xd8\xab\x16`f\nT\xaa\xfap \xe6\xdaV\xdeD\x8dR5\xd2\xe58\n\xff\x19+\xeb\xb3+\xf6\xc6\a\x00\x00\x00\xf1A\xa5\x95\x1fk\x1f\xff\x99gP\x9e\x88\x97]\x93\xf4\xdd<\xe7p\x0e\xd4C\xdc\x84\v\xafz\xfd\x81\xa3\xb2\xbb\xa4\xd9\xf2P\xa8\xe9\x8f\x13\xa7\x98\x85\xf8\v\aB\xfc\xfa\x14E\xb8y\x884<\xa7\xffyb\x8a\b\xbb\x1b\x13W\xe3\xf7\xd8\x83\xc9\xd7\x8c', 0x6)

4.456903994s ago: executing program 3 (id=5509):
r0 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, 0x0, 0x20401, 0x0)
ioctl$auto_FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000140)="58fcb282bcbc38bfaef257e019406ea6c445cd4f7f7662ac0f8834baa918d5b3cea133243c4f2b9a39e536b67f5a1a2bfdf589da2b1c980e1ce53883444996d1721d7f3ae627c6c604000000000000007910fbc02d899ab93d002d849884a5377ff11be2ed012110f2f520")
r1 = socket(0x10, 0x2, 0x4)
write$auto(r1, &(0x7f0000000000)='-\x00', 0xfdef)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/mnt\x00')
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/ip6gre0/power/control\x00', 0x10b142, 0x0)
prctl$auto_PR_SCHED_CORE_SHARE_FROM(0xc, 0x3, 0x0, 0x0, 0x2)
socket(0x3, 0x3, 0x0)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x5e, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0)
write$auto(r4, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
write$auto(r4, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000)
r5 = socket(0x15, 0x5, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001d00), r6)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan1\x00'})
getsockopt$auto(r5, 0x114, 0x2720, 0xfffffffffffffffc, 0x0)
r7 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/ipv6_route\x00', 0x101000, 0x0)
pread64$auto(r7, 0x0, 0x8, 0xffff)
sendfile$auto(r2, r2, 0x0, 0x1000200)

4.136066644s ago: executing program 2 (id=5510):
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/radio2\x00', 0x240040, 0x0)
sendmsg$auto_THERMAL_GENL_CMD_THRESHOLD_DELETE(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x8004}, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x8000, 0x20009, 0x4000000000df, 0x100000000000eb1, 0x401, 0x8000)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0)
ioctl$auto_TCFLSH2(r0, 0x40045431, 0x0)
close_range$auto(r0, 0xa, 0x1)
mount$auto(&(0x7f0000000040)='ip6gretap0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000180)='/dev/pts/ptmx\x00', 0x1, &(0x7f0000000380)="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")
r1 = fcntl$auto(0x3, 0x401, 0x3)
ioctl$auto_FIDEDUPERANGE(r1, 0xc0189436, 0x3)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000000), 0x141401, 0x0)
clock_getres$auto(0xfffffffb, 0x0)
writev$auto(r1, &(0x7f0000000000)={&(0x7f0000000280)="00ec4fd2bf4b1716f4cb9cd8e36147cfe2e046abb7280500a8551538391a1aeb1e9291d87bffa6564fc70df6d0aa2407113c6e880d0cd2df8bc8b750512bfe405361aa3e9360360b89b651f08a54354d0200eb1ed418b1eb1f6b4698713cb21f50f0fe38823bbb75c6dcae7d4575008f1843c68e212b55f0fa01189c5f905cdabb11b898bdde091a5ef71e3d74fbfcf902149bf6e9e54df02183c372d61a43a54a4894328269fc5167306c7f9151ef7ae2d48e1478bd316e8059310809694f3b28bd", 0xffffffffffffffff}, 0x2)

3.587433312s ago: executing program 2 (id=5511):
r0 = openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/dynamic_events\x00', 0x103, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x1ff, 0x1, 0x5, 0x0, 0x1, 0x9, 0x64, 0x8aef, 0x2, 0x80003, 0x4, 0x1ffffffffffd, 0x28a2, 0x3, 0x2, 0x10007, 0x80, 0x2a0, 0x0, 0x7, 0x20022000, 0x200, 0x4, 0x84, 0x0, 0x0, 0x7, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x40000000, 0x0, 0x40000000000, 0x0, 0x5, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x100000, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf]}, 0x100000004, 0x1000009)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
write$auto(r1, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
bpf$auto(0x0, 0x0, 0x98)
write$auto(0xca, 0x0, 0x2d6)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x800)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000001040)='/proc/asound/card1/pcm1c/sub7/info\x00', 0x28102, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0x40000, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS3\x00', 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/numa_zonelist_order\x00', 0x202, 0x0)
sendfile$auto(r3, r3, &(0x7f0000000000)=0x4, 0x3)
r4 = socket(0x10, 0x2, 0x4)
close_range$auto(0x2, r0, 0x0)
r5 = socket(0x10, 0x2, 0xc)
sendmsg$auto_TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000003780)={0x0, 0x0, &(0x7f0000003740)={&(0x7f0000000000)=ANY=[@ANYBLOB="b1000000", @ANYRES16, @ANYBLOB="0100"], 0x20}, 0x1, 0x0, 0x0, 0x41}, 0x40080)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYRES8=r5, @ANYRES8=r2], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x4000050)
write$auto(r4, &(0x7f0000000000)='-\x00', 0xfdef)
r6 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
write$auto_console_fops_tty_io(r6, &(0x7f0000000440)="671d264add69b6440843b6e6688a2b5ad9df2669e6f9cd236532b20ed763ac8caf4bde4c30b530ac6ebbff950e1a647d6a08a1b55dde5a409b4b", 0x3a)

3.582174664s ago: executing program 4 (id=5519):
socket(0xf, 0x3, 0x2)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket(0x2, 0x2, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000040), 0xa480, 0x0)
readv$auto(0x3, 0x0, 0x87)
socket(0x2b, 0x2, 0x0)
openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/trace_pipe\x00', 0x20c01, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
ioctl$auto_posix_clock_file_operations_posix_clock(0xffffffffffffffff, 0x2, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x4, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x1000, 0x2, 0xfffffffffffffffe]}, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
ppoll$auto(&(0x7f0000000180)={0xffffffffffffffff, 0x4, 0x8}, 0x6, 0x0, 0x0, 0x8)
open(&(0x7f0000000800)='./file0\x00', 0x183242, 0x154)
unshare$auto(0x40000080)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_INTERFACE(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r2, @ANYBLOB="010b12bd7000fcdbdf2505067163a063e164b2582d2a9eb8000000"], 0x14}, 0x1, 0x0, 0x0, 0x4000001}, 0x4000084)
socket(0xa, 0x5, 0x4)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, 0x0, 0x305080, 0x0)
mmap$auto(0x2000000, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xfffffffffffeffff, 0x15)
setreuid$auto(0x4, 0x8)
mlockall$auto(0x8000000000000001)
unshare$auto(0x40000080)

2.863339523s ago: executing program 2 (id=5512):
socket(0xf, 0x3, 0x2)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket(0x2, 0x2, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
readv$auto(0x3, &(0x7f0000000280)={0x0, 0xf7}, 0x87)
r1 = socket(0x2b, 0x2, 0x0)
openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/trace_pipe\x00', 0x20c01, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
r2 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0)
ioctl$auto_posix_clock_file_operations_posix_clock(r2, 0x2, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x4, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x1000, 0x2, 0xfffffffffffffffe]}, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
ppoll$auto(&(0x7f0000000180)={0xffffffffffffffff, 0x4, 0x8}, 0x6, 0x0, 0x0, 0x8)
open(&(0x7f0000000800)='./file0\x00', 0x183242, 0x154)
mmap$auto(0x0, 0x8, 0x4, 0x10, r1, 0xff)
unshare$auto(0x40000080)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_INTERFACE(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r4, @ANYBLOB="010b12bd7000fcdbdf2505067163a063e164b2582d2a9eb8000000"], 0x14}, 0x1, 0x0, 0x0, 0x4000001}, 0x4000084)
socket(0xa, 0x5, 0x4)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, 0x0, 0x305080, 0x0)
madvise$auto(0x0, 0xfffffffffffeffff, 0x15)
setreuid$auto(0x4, 0x8)
mlockall$auto(0x8000000000000001)
unshare$auto(0x40000080)

1.028055202s ago: executing program 3 (id=5513):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r1 = socketpair$auto(0x7, 0x7ff, 0x3, 0x0)
recvmmsg$auto(r0, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff)
epoll_create$auto(0x4)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000)
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x3ff, 0x0, 0x3, 0x5f, 0x0, 0x3}, 0x6f3)
r2 = openat$auto_msr_fops_msr(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cpu/1/msr\x00', 0xf82, 0x0)
readv$auto(r2, &(0x7f00000000c0)={0x0, 0x101d0}, 0x400)
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
r3 = socket(0x2, 0x1, 0x0)
read$auto_proc_single_file_operations_base(r1, &(0x7f00000011c0)=""/236, 0xec)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
setsockopt$auto(0x3, 0x0, 0x4, 0x0, 0x28)
getsockopt$auto(r3, 0x0, 0x4, 0x0, &(0x7f0000000140)=0x49)
getsockopt$auto_SO_BROADCAST(0xffffffffffffffff, 0xf7f, 0x6, &(0x7f0000000000)='!.##\x00', &(0x7f0000000180))
ioctl$auto_BTRFS_IOC_FORGET_DEV(0xffffffffffffffff, 0x50009405, &(0x7f00000001c0)={@raw=0xbe, "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"})
socket(0x18, 0xa, 0x1)
socket(0xa, 0x2, 0x0)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)

518.713517ms ago: executing program 4 (id=5514):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop6\x00', 0x88441, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x2020006, 0x1000000000000007, 0xeb1, 0x0, 0x1008000)
close_range$auto(0x0, 0xffffffffffffffff, 0x2)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
fcntl$auto(0x8000000000000001, 0x26, 0x8)
fcntl$auto(r1, 0x7, 0x4)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
ioctl$auto_SG_GET_RESERVED_SIZE(r0, 0x4c03, 0x0)

0s ago: executing program 33 (id=5488):
mmap$auto(0x0, 0x80000000004005, 0x1000005, 0x40eb2, 0x401, 0x300000000000)
r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x3, 0x7)
r1 = pidfd_open$auto(0x1, 0x0)
setns(r1, 0x60020000)
syz_genetlink_get_family_id$auto_nlbl_cipsov4(&(0x7f0000000040), r0)
umount2$auto(&(0x7f0000000000)='.\x00', 0x8)

kernel console output (not intermixed with test programs):

gine/Google Compute Engine, BIOS Google 05/07/2025
[ 1747.937764][T29277] Call Trace:
[ 1747.937774][T29277]  <TASK>
[ 1747.937785][T29277]  dump_stack_lvl+0x16c/0x1f0
[ 1747.937874][T29277]  should_fail_ex+0x512/0x640
[ 1747.937919][T29277]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1747.937967][T29277]  should_failslab+0xc2/0x120
[ 1747.937996][T29277]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1747.938037][T29277]  ? __pfx___might_resched+0x10/0x10
[ 1747.938067][T29277]  ? __anon_vma_prepare+0x344/0x5e0
[ 1747.938113][T29277]  __anon_vma_prepare+0x344/0x5e0
[ 1747.938161][T29277]  __vmf_anon_prepare+0x11c/0x240
[ 1747.938196][T29277]  do_wp_page+0x105a/0x4f20
[ 1747.938249][T29277]  ? __pfx_do_wp_page+0x10/0x10
[ 1747.938284][T29277]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1747.938336][T29277]  __handle_mm_fault+0x2223/0x5490
[ 1747.938382][T29277]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1747.938415][T29277]  ? __pfx_mt_find+0x10/0x10
[ 1747.938463][T29277]  ? find_vma+0xbf/0x140
[ 1747.938490][T29277]  ? __pfx_find_vma+0x10/0x10
[ 1747.938538][T29277]  handle_mm_fault+0x589/0xd10
[ 1747.938578][T29277]  ? __pkru_allows_pkey+0x21/0xb0
[ 1747.938620][T29277]  do_user_addr_fault+0x7a6/0x1370
[ 1747.938662][T29277]  ? rcu_is_watching+0x12/0xc0
[ 1747.938696][T29277]  exc_page_fault+0x5c/0xb0
[ 1747.938742][T29277]  asm_exc_page_fault+0x26/0x30
[ 1747.938769][T29277] RIP: 0010:rep_movs_alternative+0x4a/0x90
[ 1747.938806][T29277] Code: 10 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 e9 8f 10 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[ 1747.938833][T29277] RSP: 0018:ffffc900000f77e8 EFLAGS: 00050206
[ 1747.938857][T29277] RAX: 0000000000000001 RBX: 0000000000008000 RCX: 0000000000008000
[ 1747.938881][T29277] RDX: 0000000000000000 RSI: ffff8880a4530000 RDI: 0000000000000000
[ 1747.938898][T29277] RBP: 0000000000000000 R08: 0000000000000000 R09: ffffed10148a6fff
[ 1747.938915][T29277] R10: ffff8880a4537fff R11: 0000000000000000 R12: ffffc900000f7d80
[ 1747.938933][T29277] R13: 0000000000008000 R14: ffff8880a4530000 R15: 00007ffffffff000
[ 1747.938972][T29277]  _copy_to_iter+0x383/0x16f0
[ 1747.939011][T29277]  ? __pfx__copy_to_iter+0x10/0x10
[ 1747.939052][T29277]  ? __lock_acquire+0x622/0x1c90
[ 1747.939100][T29277]  simple_copy_to_iter+0x46/0x90
[ 1747.939139][T29277]  __skb_datagram_iter+0x5af/0x900
[ 1747.939174][T29277]  ? __pfx_simple_copy_to_iter+0x10/0x10
[ 1747.939224][T29277]  skb_copy_datagram_iter+0x40/0x50
[ 1747.939266][T29277]  tcp_recvmsg_locked+0x1b31/0x2880
[ 1747.939325][T29277]  ? __pfx_tcp_recvmsg_locked+0x10/0x10
[ 1747.939375][T29277]  ? __local_bh_enable_ip+0xa4/0x120
[ 1747.939411][T29277]  tcp_recvmsg+0x12f/0x680
[ 1747.939453][T29277]  ? __pfx_tcp_recvmsg+0x10/0x10
[ 1747.939505][T29277]  ? aa_sk_perm+0x2f4/0xb10
[ 1747.939541][T29277]  ? __pfx_tcp_recvmsg+0x10/0x10
[ 1747.939581][T29277]  inet_recvmsg+0x12a/0x6a0
[ 1747.939619][T29277]  ? __fget_files+0x204/0x3c0
[ 1747.939655][T29277]  ? __pfx_inet_recvmsg+0x10/0x10
[ 1747.939728][T29277]  sock_recvmsg+0x1b2/0x250
[ 1747.939766][T29277]  __sys_recvfrom+0x203/0x310
[ 1747.939810][T29277]  ? 0xffffffff81000000
[ 1747.939844][T29277]  ? __pfx___sys_recvfrom+0x10/0x10
[ 1747.939923][T29277]  ? ksys_write+0x1ac/0x250
[ 1747.939961][T29277]  ? __pfx_ksys_write+0x10/0x10
[ 1747.940004][T29277]  __x64_sys_recvfrom+0xe0/0x1c0
[ 1747.940045][T29277]  ? do_syscall_64+0x91/0x490
[ 1747.940068][T29277]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1747.940111][T29277]  do_syscall_64+0xcd/0x490
[ 1747.940140][T29277]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1747.940166][T29277] RIP: 0033:0x7ffbed58e929
[ 1747.940187][T29277] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1747.940213][T29277] RSP: 002b:00007ffbee416038 EFLAGS: 00000246 ORIG_RAX: 000000000000002d
[ 1747.940241][T29277] RAX: ffffffffffffffda RBX: 00007ffbed7b6080 RCX: 00007ffbed58e929
[ 1747.940258][T29277] RDX: 000000800002000c RSI: 0000000000000000 RDI: 0000000000000003
[ 1747.940275][T29277] RBP: 00007ffbee416090 R08: 0000000000000000 R09: ffffffff81000000
[ 1747.940291][T29277] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000001
[ 1747.940311][T29277] R13: 0000000000000001 R14: 00007ffbed7b6080 R15: 00007ffeccf3f5d8
[ 1747.940336][T29277]  ? 0xffffffff81000000
[ 1747.940366][T29277]  </TASK>

syzkaller
syzkaller login: [ 1751.747860][T29333] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1124
[ 1752.146952][T29335] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1125

syzkaller
syzkaller login: [ 1753.467625][T23738] Bluetooth: hci1: command 0x0406 tx timeout
[ 1754.203475][T29354] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1126
[ 1755.058319][T29356] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1127
[ 1756.092078][T29374] snd_aloop snd_aloop.0: Parsing timer source 'ÿ' failed with -22
[ 1756.201903][T24300] Bluetooth: hci0: unexpected subevent 0x01 length: 122 > 18
[ 1756.721494][T29389] snd_aloop snd_aloop.0: Parsing timer source 'ÿ' failed with -22
[ 1756.807054][T29389] synth uevent: /bus/usb/drivers/ums-onetouch: unknown uevent action string
[ 1757.207339][T29377] sysfs_service_op_show: Client not running :-5:
[ 1757.355834][T29400] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[ 1757.833617][T29401] Invalid ELF header magic: != ELF

syzkaller
syzkaller login: [ 1759.100308][T29429] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1128
[ 1759.973860][T29430] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1129
[ 1760.564987][T24300] Bluetooth: hci2: unexpected subevent 0x01 length: 122 > 18
[ 1760.573015][T24300] Bluetooth: hci2: Ignoring HCI_Connection_Complete for existing connection
[ 1760.856487][T29454] sysfs_service_op_show: Client not running :-5:
[ 1761.227879][T29459] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[ 1761.389301][T29464] Unable to find swap-space signature
[ 1761.986999][T29475] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1130
[ 1762.325720][T29481] FAULT_INJECTION: forcing a failure.
[ 1762.325720][T29481] name fail_usercopy, interval 1, probability 0, space 0, times 0

syzkaller
syzkaller login: [ 1762.638066][T29478] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1131
[ 1762.680347][T29481] CPU: 0 UID: 0 PID: 29481 Comm: syz.3.5017 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(full) 
[ 1762.680393][T29481] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1762.680411][T29481] Call Trace:
[ 1762.680421][T29481]  <TASK>
[ 1762.680433][T29481]  dump_stack_lvl+0x16c/0x1f0
[ 1762.680485][T29481]  should_fail_ex+0x512/0x640
[ 1762.680534][T29481]  _copy_from_user+0x2e/0xd0
[ 1762.680580][T29481]  copy_msghdr_from_user+0x98/0x160
[ 1762.680627][T29481]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 1762.680680][T29481]  ? kfree+0x24f/0x4d0
[ 1762.680717][T29481]  ? __lock_acquire+0x622/0x1c90
[ 1762.680762][T29481]  ___sys_recvmsg+0xdb/0x1a0
[ 1762.680808][T29481]  ? __pfx____sys_recvmsg+0x10/0x10
[ 1762.680877][T29481]  ? __pfx___might_resched+0x10/0x10
[ 1762.680915][T29481]  do_recvmmsg+0x2fe/0x750
[ 1762.680949][T29481]  ? __pfx_do_recvmmsg+0x10/0x10
[ 1762.681005][T29481]  ? __mutex_unlock_slowpath+0x161/0x6a0
[ 1762.681045][T29481]  ? __fget_files+0x20e/0x3c0
[ 1762.681095][T29481]  __x64_sys_recvmmsg+0x22a/0x280
[ 1762.681127][T29481]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[ 1762.681168][T29481]  do_syscall_64+0xcd/0x490
[ 1762.681199][T29481]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1762.681228][T29481] RIP: 0033:0x7f14ec58e929
[ 1762.681252][T29481] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1762.681281][T29481] RSP: 002b:00007f14ed346038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1762.681306][T29481] RAX: ffffffffffffffda RBX: 00007f14ec7b5fa0 RCX: 00007f14ec58e929
[ 1762.681324][T29481] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1762.681339][T29481] RBP: 00007f14ed346090 R08: 0000000000000000 R09: 0000000000000000
[ 1762.681355][T29481] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000001
[ 1762.681371][T29481] R13: 0000000000000000 R14: 00007f14ec7b5fa0 R15: 00007ffc8da11388
[ 1762.681415][T29481]  </TASK>
[ 1763.770207][T29492] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1132
[ 1764.409136][T29494] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1133
[ 1765.522224][T29520] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[ 1770.711317][T29577] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1134
[ 1771.492626][T29578] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1135
[ 1771.511585][T29584] Invalid ELF header magic: != ELF
[ 1772.144717][T26447] Bluetooth: hci2: unexpected subevent 0x01 length: 122 > 18
[ 1772.154390][T26447] Bluetooth: hci2: Ignoring HCI_Connection_Complete for existing connection
[ 1772.930115][T29587] sysfs_service_op_show: Client not running :-5:
[ 1773.013305][T29595] Invalid ELF header magic: != ELF
[ 1775.791444][T26447] Bluetooth: hci1: unexpected subevent 0x01 length: 122 > 18
[ 1775.799031][T26447] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection
[ 1775.901682][T27681] Bluetooth: hci4: unexpected subevent 0x01 length: 122 > 18
[ 1776.334958][T29642] sysfs_service_op_show: Client not running :-5:
[ 1776.923968][T29640] sysfs_service_op_show: Client not running :-5:
[ 1777.189776][T26447] Bluetooth: hci1: unexpected subevent 0x01 length: 122 > 18
[ 1777.199777][T26447] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection
[ 1777.854862][T29664] sysfs_service_op_show: Client not running :-5:
[ 1778.905756][T29678] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1136
[ 1779.610526][T29679] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1137
[ 1779.818722][T26447] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1779.880875][T26447] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1779.898005][T26447] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1779.914610][T26447] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1779.922404][T26447] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1781.458851][T29715] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1138
[ 1781.785461][T29690] chnl_net:caif_netlink_parms(): no params data found
[ 1781.963503][T26447] Bluetooth: hci2: command tx timeout
[ 1782.360935][T29722] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1139
[ 1782.563819][T29690] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1782.625745][T29690] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1782.675082][T29690] bridge_slave_0: entered allmulticast mode
[ 1782.706587][T29690] bridge_slave_0: entered promiscuous mode
[ 1783.160412][T29690] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1783.197246][T29690] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1783.272482][T29690] bridge_slave_1: entered allmulticast mode
[ 1783.280555][T29690] bridge_slave_1: entered promiscuous mode
[ 1783.595467][T29690] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1783.628490][T29690] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1783.894906][T29744] Invalid ELF header magic: != ELF
[ 1784.024782][T29690] team0: Port device team_slave_0 added
[ 1784.054616][T26447] Bluetooth: hci2: command tx timeout
[ 1784.150030][T29690] team0: Port device team_slave_1 added
[ 1784.368153][T29690] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1784.381727][T29690] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1784.460851][T29690] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1784.498140][T29690] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1784.528775][T29690] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1784.603360][T29690] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1784.796582][T29690] hsr_slave_0: entered promiscuous mode
[ 1784.805437][T29690] hsr_slave_1: entered promiscuous mode
[ 1784.812100][T29690] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1784.821202][T29690] Cannot create hsr debugfs directory
[ 1785.157783][T29754] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1140
[ 1785.843942][T29690] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1786.073108][T29690] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1786.124050][T26447] Bluetooth: hci2: command tx timeout
[ 1786.192287][T29690] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1786.349937][T29690] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1786.595898][T29690] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1786.620684][T29690] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1786.640065][T29690] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1786.667332][T29690] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1786.901329][T29690] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1786.961043][T29690] 8021q: adding VLAN 0 to HW filter on device team0
[ 1786.981599][T27531] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1786.988802][T27531] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1787.005163][T27531] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1787.012375][T27531] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1787.423324][T29690] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1787.852000][T29690] veth0_vlan: entered promiscuous mode
[ 1787.872826][T29690] veth1_vlan: entered promiscuous mode
[ 1788.004226][T29690] veth0_macvtap: entered promiscuous mode
[ 1788.023700][T29690] veth1_macvtap: entered promiscuous mode
[ 1788.097040][T29690] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1788.122811][T29690] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1788.218052][T26447] Bluetooth: hci2: command tx timeout
[ 1788.224781][T29690] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1788.244952][T29690] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1788.253725][T29690] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1788.265683][T29690] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0

syzkaller
syzkaller login: [ 1789.610677][T27531] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1789.632533][T27531] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1789.950602][T27531] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1789.965898][T27531] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1790.821330][T29823] Invalid ELF header magic: != ELF
[ 1792.133893][T29838] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1141
[ 1792.319956][T29841] FAULT_INJECTION: forcing a failure.
[ 1792.319956][T29841] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1792.383380][T29841] CPU: 1 UID: 0 PID: 29841 Comm: syz.4.5078 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(full) 
[ 1792.383409][T29841] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1792.383434][T29841] Call Trace:
[ 1792.383443][T29841]  <TASK>
[ 1792.383452][T29841]  dump_stack_lvl+0x16c/0x1f0
[ 1792.383490][T29841]  should_fail_ex+0x512/0x640
[ 1792.383534][T29841]  _copy_from_iter+0x29f/0x16f0
[ 1792.383573][T29841]  ? __pfx__copy_from_iter+0x10/0x10
[ 1792.383606][T29841]  ? rcu_is_watching+0x12/0xc0
[ 1792.383645][T29841]  ? trace_kmalloc+0x2b/0xd0
[ 1792.383684][T29841]  ? __kmalloc_noprof+0x242/0x510
[ 1792.383725][T29841]  kernfs_fop_write_iter+0x19a/0x510
[ 1792.383757][T29841]  vfs_write+0x6c4/0x1150
[ 1792.383810][T29841]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[ 1792.383837][T29841]  ? __pfx___mutex_lock+0x10/0x10
[ 1792.383860][T29841]  ? __pfx_vfs_write+0x10/0x10
[ 1792.383916][T29841]  ksys_write+0x12a/0x250
[ 1792.383953][T29841]  ? __pfx_ksys_write+0x10/0x10
[ 1792.383998][T29841]  do_syscall_64+0xcd/0x490
[ 1792.384023][T29841]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1792.384047][T29841] RIP: 0033:0x7fbb6738e929
[ 1792.384066][T29841] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1792.384091][T29841] RSP: 002b:00007fbb6817c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1792.384113][T29841] RAX: ffffffffffffffda RBX: 00007fbb675b5fa0 RCX: 00007fbb6738e929
[ 1792.384130][T29841] RDX: 0000000000000081 RSI: 00002000000001c0 RDI: 0000000000000005
[ 1792.384145][T29841] RBP: 00007fbb6817c090 R08: 0000000000000000 R09: 0000000000000000
[ 1792.384161][T29841] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1792.384176][T29841] R13: 0000000000000000 R14: 00007fbb675b5fa0 R15: 00007ffeab4e94b8
[ 1792.384207][T29841]  </TASK>
[ 1793.030492][T29851] FAULT_INJECTION: forcing a failure.
[ 1793.030492][T29851] name failslab, interval 1, probability 0, space 0, times 0
[ 1793.076788][T29851] CPU: 0 UID: 0 PID: 29851 Comm: syz.3.5081 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(full) 
[ 1793.076832][T29851] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1793.076850][T29851] Call Trace:
[ 1793.076860][T29851]  <TASK>
[ 1793.076872][T29851]  dump_stack_lvl+0x16c/0x1f0
[ 1793.076929][T29851]  should_fail_ex+0x512/0x640
[ 1793.076976][T29851]  ? __kvmalloc_node_noprof+0x124/0x620
[ 1793.077029][T29851]  should_failslab+0xc2/0x120
[ 1793.077059][T29851]  __kvmalloc_node_noprof+0x137/0x620
[ 1793.077108][T29851]  ? seq_read_iter+0x826/0x12c0
[ 1793.077155][T29851]  ? seq_read_iter+0x826/0x12c0
[ 1793.077194][T29851]  seq_read_iter+0x826/0x12c0
[ 1793.077236][T29851]  ? aa_file_perm+0x4d6/0xfb0
[ 1793.077290][T29851]  seq_read+0x39e/0x4e0
[ 1793.077330][T29851]  ? __pfx_seq_read+0x10/0x10
[ 1793.077365][T29851]  ? __lock_acquire+0xb8a/0x1c90
[ 1793.077416][T29851]  ? get_pid_task+0xfc/0x250
[ 1793.077478][T29851]  full_proxy_read+0x13c/0x200
[ 1793.077511][T29851]  ? __pfx_full_proxy_read+0x10/0x10
[ 1793.077544][T29851]  vfs_read+0x1e4/0xc60
[ 1793.077595][T29851]  ? __pfx___mutex_lock+0x10/0x10
[ 1793.077626][T29851]  ? __pfx_vfs_read+0x10/0x10
[ 1793.077691][T29851]  ? __fget_files+0x20e/0x3c0
[ 1793.077747][T29851]  ksys_read+0x12a/0x250
[ 1793.077791][T29851]  ? __pfx_ksys_read+0x10/0x10
[ 1793.077849][T29851]  do_syscall_64+0xcd/0x490
[ 1793.077882][T29851]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1793.077915][T29851] RIP: 0033:0x7f14ec58e929
[ 1793.077940][T29851] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1793.077972][T29851] RSP: 002b:00007f14ed346038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1793.078001][T29851] RAX: ffffffffffffffda RBX: 00007f14ec7b5fa0 RCX: 00007f14ec58e929
[ 1793.078023][T29851] RDX: 0000000000000003 RSI: 0000000000000000 RDI: 0000000000000003
[ 1793.078041][T29851] RBP: 00007f14ed346090 R08: 0000000000000000 R09: 0000000000000000
[ 1793.078060][T29851] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1793.078079][T29851] R13: 0000000000000000 R14: 00007f14ec7b5fa0 R15: 00007ffc8da11388
[ 1793.078121][T29851]  </TASK>
[ 1793.391590][T29847] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1142
[ 1793.744770][T29852] Invalid ELF header magic: != ELF
[ 1794.087869][T29848] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1143
[ 1795.098371][T29867] netlink: 28 bytes leftover after parsing attributes in process `syz.1.5085'.
[ 1795.261719][T29867] mac80211_hwsim hwsim71 wlan1: entered allmulticast mode
[ 1795.835088][T29891] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1144
[ 1796.368857][T29893] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1145
[ 1798.473810][T26447] Bluetooth: hci1: unexpected subevent 0x01 length: 122 > 18
[ 1798.481741][T26447] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection
[ 1799.103837][T29933] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1146
[ 1799.172477][T29925] Invalid ELF header magic: != ELF
[ 1799.298661][T29935] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1147
[ 1799.369162][T29924] sysfs_service_op_show: Client not running :-5:
[ 1800.485342][T29939] Invalid ELF header magic: != ELF
[ 1800.922511][T29950] FAULT_INJECTION: forcing a failure.
[ 1800.922511][T29950] name failslab, interval 1, probability 0, space 0, times 0
[ 1800.971556][T29950] CPU: 1 UID: 0 PID: 29950 Comm: syz.3.5101 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(full) 
[ 1800.971597][T29950] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1800.971616][T29950] Call Trace:
[ 1800.971624][T29950]  <TASK>
[ 1800.971633][T29950]  dump_stack_lvl+0x16c/0x1f0
[ 1800.971673][T29950]  should_fail_ex+0x512/0x640
[ 1800.971704][T29950]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[ 1800.971751][T29950]  should_failslab+0xc2/0x120
[ 1800.971779][T29950]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[ 1800.971822][T29950]  ? __d_alloc+0x31/0xaa0
[ 1800.971868][T29950]  __d_alloc+0x31/0xaa0
[ 1800.971912][T29950]  d_alloc+0x4a/0x1e0
[ 1800.971946][T29950]  __rpc_lookup_create_exclusive+0x119/0x140
[ 1800.971977][T29950]  ? __pfx___rpc_lookup_create_exclusive+0x10/0x10
[ 1800.972020][T29950]  rpc_populate.constprop.0+0xbe/0x5d0
[ 1800.972060][T29950]  rpc_fill_super+0x2bc/0x840
[ 1800.972092][T29950]  ? sget_fc+0x808/0xc20
[ 1800.972121][T29950]  ? __pfx_set_anon_super_fc+0x10/0x10
[ 1800.972149][T29950]  ? __pfx_rpc_fill_super+0x10/0x10
[ 1800.972181][T29950]  get_tree_keyed+0x10b/0x1d0
[ 1800.972211][T29950]  vfs_get_tree+0x8e/0x340
[ 1800.972237][T29950]  vfs_cmd_create+0xd7/0x2a0
[ 1800.972257][T29950]  __do_sys_fsconfig+0x7b8/0xbe0
[ 1800.972280][T29950]  ? __pfx___do_sys_fsconfig+0x10/0x10
[ 1800.972299][T29950]  ? fput+0x70/0xf0
[ 1800.972330][T29950]  do_syscall_64+0xcd/0x490
[ 1800.972353][T29950]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1800.972374][T29950] RIP: 0033:0x7f14ec58e929
[ 1800.972392][T29950] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1800.972414][T29950] RSP: 002b:00007f14ed346038 EFLAGS: 00000246 ORIG_RAX: 00000000000001af
[ 1800.972435][T29950] RAX: ffffffffffffffda RBX: 00007f14ec7b5fa0 RCX: 00007f14ec58e929
[ 1800.972450][T29950] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000007
[ 1800.972464][T29950] RBP: 00007f14ed346090 R08: 0000000000000000 R09: 0000000000000000
[ 1800.972478][T29950] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1800.972491][T29950] R13: 0000000000000000 R14: 00007f14ec7b5fa0 R15: 00007ffc8da11388
[ 1800.972519][T29950]  </TASK>
[ 1800.972848][T29950] net/sunrpc/rpc_pipe.c: rpc_populate failed to populate directory /
[ 1801.281825][T29953] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1148
[ 1801.900387][T29954] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1149
[ 1802.616802][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[ 1802.624585][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[ 1803.422046][T29987] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1150
[ 1803.670636][T29988] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1151

syzkaller
syzkaller login: [ 1804.304116][T29994] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1152
[ 1804.765786][T29995] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1153
[ 1806.265698][T30015] Invalid ELF header magic: != ELF
[ 1806.900903][T30031] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1154
[ 1807.598208][T30032] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1155
[ 1807.675423][T30038] block nbd8: Cannot use ioctl interface on a netlink controlled device.
[ 1808.556168][T30050] block nbd8: shutting down sockets
[ 1808.876649][T30056] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1156
[ 1808.938173][T23738] Bluetooth: hci0: unexpected subevent 0x01 length: 122 > 18
[ 1808.945816][T23738] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection

syzkaller
syzkaller login: [ 1809.574783][T30058] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1157
[ 1810.438877][T30075] Invalid ELF header magic: != ELF
[ 1810.687963][T30085] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1158
[ 1811.518017][T30088] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1159
[ 1812.302580][T30107] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1160
[ 1812.634390][T30115] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[ 1812.887576][T23738] Bluetooth: hci0: unexpected subevent 0x01 length: 122 > 18
[ 1812.895037][T23738] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection
[ 1813.187451][T30110] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1161

syzkaller
syzkaller login: [ 1813.435629][T30124] FAULT_INJECTION: forcing a failure.
[ 1813.435629][T30124] name failslab, interval 1, probability 0, space 0, times 0
[ 1813.489307][T30124] CPU: 1 UID: 0 PID: 30124 Comm: syz.1.5136 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(full) 
[ 1813.489345][T30124] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1813.489362][T30124] Call Trace:
[ 1813.489372][T30124]  <TASK>
[ 1813.489383][T30124]  dump_stack_lvl+0x16c/0x1f0
[ 1813.489431][T30124]  should_fail_ex+0x512/0x640
[ 1813.489471][T30124]  ? fs_reclaim_acquire+0xae/0x150
[ 1813.489507][T30124]  ? tomoyo_init_log+0x1385/0x2140
[ 1813.489542][T30124]  should_failslab+0xc2/0x120
[ 1813.489566][T30124]  __kmalloc_noprof+0xd2/0x510
[ 1813.489614][T30124]  tomoyo_init_log+0x1385/0x2140
[ 1813.489670][T30124]  ? __pfx_tomoyo_init_log+0x10/0x10
[ 1813.489722][T30124]  tomoyo_write_log2+0x2f7/0xc10
[ 1813.489766][T30124]  tomoyo_supervisor+0x15e/0x13b0
[ 1813.489816][T30124]  ? __pfx_tomoyo_supervisor+0x10/0x10
[ 1813.489856][T30124]  ? __pfx_vsnprintf+0x10/0x10
[ 1813.489945][T30124]  ? tomoyo_encode2+0x329/0x3e0
[ 1813.489982][T30124]  ? tomoyo_check_path_number_acl+0xa6/0x2f0
[ 1813.490021][T30124]  tomoyo_path_number_perm+0x448/0x580
[ 1813.490069][T30124]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1813.490107][T30124]  ? find_held_lock+0x2b/0x80
[ 1813.490170][T30124]  ? find_held_lock+0x2b/0x80
[ 1813.490196][T30124]  ? hook_file_ioctl_common+0x145/0x410
[ 1813.490236][T30124]  ? __fget_files+0x20e/0x3c0
[ 1813.490282][T30124]  security_file_ioctl+0x9b/0x240
[ 1813.490319][T30124]  __x64_sys_ioctl+0xb7/0x210
[ 1813.490358][T30124]  do_syscall_64+0xcd/0x490
[ 1813.490386][T30124]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1813.490414][T30124] RIP: 0033:0x7f26a0f8e929
[ 1813.490434][T30124] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1813.490459][T30124] RSP: 002b:00007f26a1d2a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1813.490485][T30124] RAX: ffffffffffffffda RBX: 00007f26a11b5fa0 RCX: 00007f26a0f8e929
[ 1813.490503][T30124] RDX: 0000200000000080 RSI: 00000000c0305710 RDI: 0000000000000003
[ 1813.490519][T30124] RBP: 00007f26a1d2a090 R08: 0000000000000000 R09: 0000000000000000
[ 1813.490535][T30124] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1813.490551][T30124] R13: 0000000000000000 R14: 00007f26a11b5fa0 R15: 00007ffccad754a8
[ 1813.490602][T30124]  </TASK>
[ 1814.271743][T30129] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1162
[ 1814.284772][T30127] snd_aloop snd_aloop.0: Parsing timer source 'ÿ' failed with -22
[ 1814.949003][T30131] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1163
[ 1816.156343][T30151] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1164
[ 1817.199843][T23738] Bluetooth: hci0: unexpected subevent 0x01 length: 122 > 18
[ 1817.207412][T23738] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection
[ 1817.351387][T30170] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1165
[ 1817.543060][T30172] sysfs_service_op_show: Client not running :-5:

syzkaller
syzkaller login: [ 1818.810373][T30190] netlink: 32 bytes leftover after parsing attributes in process `syz.2.5150'.
[ 1819.591596][T30206] FAULT_INJECTION: forcing a failure.
[ 1819.591596][T30206] name failslab, interval 1, probability 0, space 0, times 0
[ 1819.624959][T30206] CPU: 0 UID: 0 PID: 30206 Comm: syz.3.5153 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(full) 
[ 1819.625008][T30206] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1819.625027][T30206] Call Trace:
[ 1819.625039][T30206]  <TASK>
[ 1819.625051][T30206]  dump_stack_lvl+0x16c/0x1f0
[ 1819.625105][T30206]  should_fail_ex+0x512/0x640
[ 1819.625149][T30206]  ? __kmalloc_cache_noprof+0x57/0x3e0
[ 1819.625193][T30206]  should_failslab+0xc2/0x120
[ 1819.625222][T30206]  __kmalloc_cache_noprof+0x6a/0x3e0
[ 1819.625262][T30206]  ? copy_net_ns+0x135/0x5f0
[ 1819.625304][T30206]  copy_net_ns+0x135/0x5f0
[ 1819.625348][T30206]  ? copy_cgroup_ns+0x71/0x700
[ 1819.625382][T30206]  create_new_namespaces+0x3ea/0xa90
[ 1819.625422][T30206]  unshare_nsproxy_namespaces+0xc0/0x1f0
[ 1819.625458][T30206]  ksys_unshare+0x45b/0xa40
[ 1819.625497][T30206]  ? __pfx_ksys_unshare+0x10/0x10
[ 1819.625535][T30206]  ? ksys_write+0x1ac/0x250
[ 1819.625588][T30206]  __x64_sys_unshare+0x31/0x40
[ 1819.625625][T30206]  do_syscall_64+0xcd/0x490
[ 1819.625655][T30206]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1819.625684][T30206] RIP: 0033:0x7f14ec58e929
[ 1819.625707][T30206] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1819.625736][T30206] RSP: 002b:00007f14ed325038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1819.625762][T30206] RAX: ffffffffffffffda RBX: 00007f14ec7b6080 RCX: 00007f14ec58e929
[ 1819.625781][T30206] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 1819.625798][T30206] RBP: 00007f14ed325090 R08: 0000000000000000 R09: 0000000000000000
[ 1819.625823][T30206] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1819.625840][T30206] R13: 0000000000000000 R14: 00007f14ec7b6080 R15: 00007ffc8da11388
[ 1819.625877][T30206]  </TASK>
[ 1820.709129][T30219] Invalid ELF header magic: != ELF
[ 1821.155164][T30225] FAULT_INJECTION: forcing a failure.
[ 1821.155164][T30225] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1821.223096][T30225] CPU: 0 UID: 0 PID: 30225 Comm: syz.2.5158 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(full) 
[ 1821.223138][T30225] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1821.223174][T30225] Call Trace:
[ 1821.223185][T30225]  <TASK>
[ 1821.223197][T30225]  dump_stack_lvl+0x16c/0x1f0
[ 1821.223252][T30225]  should_fail_ex+0x512/0x640
[ 1821.223308][T30225]  _copy_from_user+0x2e/0xd0
[ 1821.223361][T30225]  get_timespec64+0x8b/0x1b0
[ 1821.223399][T30225]  ? __pfx_get_timespec64+0x10/0x10
[ 1821.223435][T30225]  ? find_held_lock+0x2b/0x80
[ 1821.223477][T30225]  __x64_sys_futex+0x288/0x4c0
[ 1821.223522][T30225]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1821.223562][T30225]  ? xfd_validate_state+0x61/0x180
[ 1821.223617][T30225]  do_syscall_64+0xcd/0x490
[ 1821.223652][T30225]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1821.223686][T30225] RIP: 0033:0x7f915938e929
[ 1821.223729][T30225] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1821.223758][T30225] RSP: 002b:00007ffe8bb45ca8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1821.223786][T30225] RAX: ffffffffffffffda RBX: 00000000001bc71c RCX: 00007f915938e929
[ 1821.223805][T30225] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f91595b5fac
[ 1821.223822][T30225] RBP: 0000000000000032 R08: 00007f915a239000 R09: 000000078bb45f9f
[ 1821.223839][T30225] R10: 00007ffe8bb45da0 R11: 0000000000000246 R12: 00007f91595b5fac
[ 1821.223857][T30225] R13: 00007ffe8bb45da0 R14: 00000000001bc74e R15: 00007ffe8bb45dc0
[ 1821.223895][T30225]  </TASK>

syzkaller
syzkaller login: [ 1822.214944][T30227] ubi: mtd0 is already attached to ubi0
[ 1822.364361][T30238] Invalid ELF header magic: != ELF
[ 1824.280849][T30251] FAULT_INJECTION: forcing a failure.
[ 1824.280849][T30251] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1824.473016][T30251] CPU: 1 UID: 0 PID: 30251 Comm: syz.2.5163 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(full) 
[ 1824.473047][T30251] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1824.473061][T30251] Call Trace:
[ 1824.473067][T30251]  <TASK>
[ 1824.473076][T30251]  dump_stack_lvl+0x16c/0x1f0
[ 1824.473113][T30251]  should_fail_ex+0x512/0x640
[ 1824.473148][T30251]  _copy_to_user+0x32/0xd0
[ 1824.473169][T30251]  simple_read_from_buffer+0xcb/0x170
[ 1824.473196][T30251]  proc_fail_nth_read+0x197/0x270
[ 1824.473220][T30251]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1824.473245][T30251]  ? rw_verify_area+0xcf/0x680
[ 1824.473269][T30251]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1824.473292][T30251]  vfs_read+0x1e4/0xc60
[ 1824.473324][T30251]  ? __pfx_vfs_read+0x10/0x10
[ 1824.473389][T30251]  ksys_read+0x12a/0x250
[ 1824.473419][T30251]  ? __pfx_ksys_read+0x10/0x10
[ 1824.473448][T30251]  ? syscall_user_dispatch+0x78/0x140
[ 1824.473489][T30251]  do_syscall_64+0xcd/0x490
[ 1824.473511][T30251]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1824.473534][T30251] RIP: 0033:0x7f915938d33c
[ 1824.473552][T30251] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1824.473573][T30251] RSP: 002b:00007f915a238030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1824.473593][T30251] RAX: ffffffffffffffda RBX: 00007f91595b5fa0 RCX: 00007f915938d33c
[ 1824.473608][T30251] RDX: 000000000000000f RSI: 00007f915a2380a0 RDI: 0000000000000006
[ 1824.473621][T30251] RBP: 00007f915a238090 R08: 0000000000000000 R09: 0000000000000000
[ 1824.473635][T30251] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1824.473648][T30251] R13: 0000000000000000 R14: 00007f91595b5fa0 R15: 00007ffe8bb45b48
[ 1824.473675][T30251]  </TASK>
[ 1824.654917][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1825.336667][T30280] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1166
[ 1826.125978][T30281] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1167
[ 1827.423614][T30291] Invalid ELF header magic: != ELF
[ 1827.543340][T30298] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1168

syzkaller
syzkaller login: [ 1827.862362][T30301] FAULT_INJECTION: forcing a failure.
[ 1827.862362][T30301] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1827.909401][T30301] CPU: 1 UID: 0 PID: 30301 Comm: syz.1.5171 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(full) 
[ 1827.909439][T30301] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1827.909457][T30301] Call Trace:
[ 1827.909466][T30301]  <TASK>
[ 1827.909477][T30301]  dump_stack_lvl+0x16c/0x1f0
[ 1827.909527][T30301]  should_fail_ex+0x512/0x640
[ 1827.909576][T30301]  should_fail_alloc_page+0xe7/0x130
[ 1827.909606][T30301]  prepare_alloc_pages+0x3c2/0x610
[ 1827.909646][T30301]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[ 1827.909693][T30301]  ? __lock_acquire+0xb8a/0x1c90
[ 1827.909728][T30301]  ? lock_acquire+0x179/0x350
[ 1827.909757][T30301]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1827.909802][T30301]  ? __lock_acquire+0xb8a/0x1c90
[ 1827.909833][T30301]  ? __pfx___page_table_check_ptes_set+0x10/0x10
[ 1827.909869][T30301]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1827.909905][T30301]  ? policy_nodemask+0xea/0x4e0
[ 1827.909939][T30301]  alloc_pages_mpol+0x1fb/0x550
[ 1827.909959][T30301]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1827.909977][T30301]  ? block_dirty_folio+0x114/0x1b0
[ 1827.910018][T30301]  ? do_raw_spin_unlock+0x172/0x230
[ 1827.910071][T30301]  alloc_pages_noprof+0x131/0x390
[ 1827.910092][T30301]  pte_alloc_one+0x1c/0x3a0
[ 1827.910125][T30301]  __do_fault+0x320/0x490
[ 1827.910157][T30301]  ? __pfx_filemap_map_pages+0x10/0x10
[ 1827.910189][T30301]  __handle_mm_fault+0x374c/0x5490
[ 1827.910224][T30301]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1827.910251][T30301]  ? lock_vma_under_rcu+0x47d/0x970
[ 1827.910285][T30301]  ? lock_vma_under_rcu+0x47d/0x970
[ 1827.910333][T30301]  handle_mm_fault+0x589/0xd10
[ 1827.910366][T30301]  ? __pkru_allows_pkey+0x21/0xb0
[ 1827.910396][T30301]  do_user_addr_fault+0x60c/0x1370
[ 1827.910428][T30301]  ? rcu_is_watching+0x12/0xc0
[ 1827.910453][T30301]  exc_page_fault+0x5c/0xb0
[ 1827.910488][T30301]  asm_exc_page_fault+0x26/0x30
[ 1827.910509][T30301] RIP: 0033:0x7f26a0e6f262
[ 1827.910527][T30301] Code: 0f 1f 84 00 00 00 00 00 be 08 00 00 00 48 89 df e8 c3 75 fe ff 48 8b 53 38 48 8d 42 f8 48 89 43 38 8b 43 28 83 c0 08 89 43 28 <4c> 89 62 f8 41 8d 56 01 41 39 ee 0f 83 8d 00 00 00 41 89 d6 48 8b
[ 1827.910548][T30301] RSP: 002b:00007ffccad75500 EFLAGS: 00010202
[ 1827.910566][T30301] RAX: 0000000000020008 RBX: 00007f26a1ce5720 RCX: 0000000000000000
[ 1827.910580][T30301] RDX: 0000001b2dc00000 RSI: 0000000000000008 RDI: 00007f26a1ce5720
[ 1827.910594][T30301] RBP: 0000000000000787 R08: 00007f26a05ff090 R09: 00007f26a11a2000
[ 1827.910608][T30301] R10: 00007f26a05ff008 R11: 0000000000000006 R12: ffffffff824ca9e6
[ 1827.910623][T30301] R13: 00007f26a11b6038 R14: 00000000000002e9 R15: fffffffffffe0000
[ 1827.910639][T30301]  ? userfaultfd_unmap_complete+0x266/0x380
[ 1827.910676][T30301]  </TASK>
[ 1827.910982][T30301] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[ 1829.125809][T30302] ubi: mtd0 is already attached to ubi0
[ 1830.367875][T30340] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1169
[ 1831.804196][T30360] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1170
[ 1833.133620][T30317] Bluetooth: hci0: unexpected subevent 0x01 length: 122 > 18
[ 1833.142986][T30317] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection
[ 1833.562414][T30383] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1171
[ 1835.049684][T30389] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1172
[ 1835.301165][T30395] FAULT_INJECTION: forcing a failure.
[ 1835.301165][T30395] name fail_futex, interval 1, probability 0, space 0, times 0
[ 1835.356788][T30395] CPU: 0 UID: 0 PID: 30395 Comm: syz.4.5187 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(full) 
[ 1835.356828][T30395] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1835.356845][T30395] Call Trace:
[ 1835.356855][T30395]  <TASK>
[ 1835.356866][T30395]  dump_stack_lvl+0x16c/0x1f0
[ 1835.356934][T30395]  should_fail_ex+0x512/0x640
[ 1835.356982][T30395]  should_fail_futex+0x4c/0x60
[ 1835.357034][T30395]  __x64_sys_futex+0x25e/0x4c0
[ 1835.357077][T30395]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1835.357135][T30395]  ? xfd_validate_state+0x61/0x180
[ 1835.357191][T30395]  do_syscall_64+0xcd/0x490
[ 1835.357225][T30395]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1835.357259][T30395] RIP: 0033:0x7fbb6738e929
[ 1835.357294][T30395] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1835.357327][T30395] RSP: 002b:00007ffeab4e9618 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1835.357358][T30395] RAX: ffffffffffffffda RBX: 00000000001bfe57 RCX: 00007fbb6738e929
[ 1835.357378][T30395] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fbb675b5fac
[ 1835.357397][T30395] RBP: 0000000000000032 R08: 00007fbb6817d000 R09: 00000007ab4e990f
[ 1835.357416][T30395] R10: 00007ffeab4e9710 R11: 0000000000000246 R12: 00007fbb675b5fac
[ 1835.357436][T30395] R13: 00007ffeab4e9710 R14: 00000000001bfe89 R15: 00007ffeab4e9730
[ 1835.357477][T30395]  </TASK>
[ 1835.501573][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1836.003272][T30390] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1173
[ 1836.630760][T30398] ubi: mtd0 is already attached to ubi0
[ 1838.163198][T30423] Invalid ELF header magic: != ELF
[ 1839.582845][   T31] audit: type=1800 audit(4294970003.544:16): pid=30439 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.5194" name="discovery_nqn" dev="configfs" ino=117147 res=0 errno=0
[ 1839.732826][T30439] FAULT_INJECTION: forcing a failure.
[ 1839.732826][T30439] name failslab, interval 1, probability 0, space 0, times 0
[ 1839.806701][T30439] CPU: 0 UID: 0 PID: 30439 Comm: syz.4.5194 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(full) 
[ 1839.806743][T30439] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1839.806764][T30439] Call Trace:
[ 1839.806774][T30439]  <TASK>
[ 1839.806785][T30439]  dump_stack_lvl+0x16c/0x1f0
[ 1839.806835][T30439]  should_fail_ex+0x512/0x640
[ 1839.806887][T30439]  ? fs_reclaim_acquire+0xae/0x150
[ 1839.806922][T30439]  ? tomoyo_init_log+0x1385/0x2140
[ 1839.806960][T30439]  should_failslab+0xc2/0x120
[ 1839.806987][T30439]  __kmalloc_noprof+0xd2/0x510
[ 1839.807035][T30439]  tomoyo_init_log+0x1385/0x2140
[ 1839.807090][T30439]  ? __pfx_tomoyo_init_log+0x10/0x10
[ 1839.807140][T30439]  tomoyo_write_log2+0x2f7/0xc10
[ 1839.807185][T30439]  tomoyo_supervisor+0x15e/0x13b0
[ 1839.807236][T30439]  ? __pfx_tomoyo_supervisor+0x10/0x10
[ 1839.807296][T30439]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1839.807346][T30439]  ? tomoyo_check_path_acl+0xad/0x210
[ 1839.807380][T30439]  ? tomoyo_check_acl+0x1f7/0x410
[ 1839.807433][T30439]  tomoyo_path_permission+0x270/0x3b0
[ 1839.807473][T30439]  tomoyo_check_open_permission+0x37b/0x3c0
[ 1839.807512][T30439]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[ 1839.807588][T30439]  ? do_raw_spin_lock+0x12c/0x2b0
[ 1839.807647][T30439]  tomoyo_file_open+0x6b/0x90
[ 1839.807698][T30439]  security_file_open+0x84/0x1e0
[ 1839.807740][T30439]  do_dentry_open+0x596/0x1c10
[ 1839.807797][T30439]  vfs_open+0x82/0x3f0
[ 1839.807834][T30439]  path_openat+0x1de4/0x2cb0
[ 1839.807900][T30439]  ? __pfx_path_openat+0x10/0x10
[ 1839.807945][T30439]  ? __lock_acquire+0xb8a/0x1c90
[ 1839.807990][T30439]  do_filp_open+0x20b/0x470
[ 1839.808035][T30439]  ? __pfx_do_filp_open+0x10/0x10
[ 1839.808107][T30439]  ? alloc_fd+0x471/0x7d0
[ 1839.808160][T30439]  do_sys_openat2+0x11b/0x1d0
[ 1839.808194][T30439]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1839.808243][T30439]  __x64_sys_openat+0x174/0x210
[ 1839.808277][T30439]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1839.808330][T30439]  do_syscall_64+0xcd/0x490
[ 1839.808362][T30439]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1839.808393][T30439] RIP: 0033:0x7fbb6738e929
[ 1839.808418][T30439] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1839.808450][T30439] RSP: 002b:00007fbb6817c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1839.808478][T30439] RAX: ffffffffffffffda RBX: 00007fbb675b5fa0 RCX: 00007fbb6738e929
[ 1839.808499][T30439] RDX: 0000000000000800 RSI: 00002000000000c0 RDI: ffffffffffffff9c
[ 1839.808519][T30439] RBP: 00007fbb67410b39 R08: 0000000000000000 R09: 0000000000000000
[ 1839.808537][T30439] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1839.808555][T30439] R13: 0000000000000000 R14: 00007fbb675b5fa0 R15: 00007ffeab4e94b8
[ 1839.808594][T30439]  </TASK>
[ 1840.398437][T30448] FAULT_INJECTION: forcing a failure.
[ 1840.398437][T30448] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1840.500936][T30448] CPU: 1 UID: 0 PID: 30448 Comm: syz.3.5197 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(full) 
[ 1840.500971][T30448] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1840.500987][T30448] Call Trace:
[ 1840.500996][T30448]  <TASK>
[ 1840.501005][T30448]  dump_stack_lvl+0x16c/0x1f0
[ 1840.501050][T30448]  should_fail_ex+0x512/0x640
[ 1840.501092][T30448]  _copy_to_iter+0x463/0x16f0
[ 1840.501127][T30448]  ? __pfx__copy_to_iter+0x10/0x10
[ 1840.501156][T30448]  ? traverse.part.0.constprop.0+0x2c5/0x640
[ 1840.501202][T30448]  seq_read_iter+0x719/0x12c0
[ 1840.501239][T30448]  ? aa_file_perm+0x4d6/0xfb0
[ 1840.501287][T30448]  seq_read+0x39e/0x4e0
[ 1840.501320][T30448]  ? __pfx_seq_read+0x10/0x10
[ 1840.501359][T30448]  ? get_pid_task+0xfc/0x250
[ 1840.501406][T30448]  ? __pfx_seq_read+0x10/0x10
[ 1840.501438][T30448]  proc_reg_read+0x23d/0x330
[ 1840.501494][T30448]  ? __pfx_proc_reg_read+0x10/0x10
[ 1840.501537][T30448]  vfs_read+0x1e4/0xc60
[ 1840.501583][T30448]  ? __pfx_vfs_read+0x10/0x10
[ 1840.501619][T30448]  ? find_held_lock+0x2b/0x80
[ 1840.501648][T30448]  ? __fget_files+0x204/0x3c0
[ 1840.501692][T30448]  ? __fget_files+0x20e/0x3c0
[ 1840.501726][T30448]  ? __fget_files+0x1f0/0x3c0
[ 1840.501798][T30448]  __x64_sys_pread64+0x1eb/0x250
[ 1840.501842][T30448]  ? __pfx___x64_sys_pread64+0x10/0x10
[ 1840.501895][T30448]  do_syscall_64+0xcd/0x490
[ 1840.501926][T30448]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1840.501955][T30448] RIP: 0033:0x7f14ec58e929
[ 1840.501978][T30448] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1840.502007][T30448] RSP: 002b:00007f14ed346038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011
[ 1840.502034][T30448] RAX: ffffffffffffffda RBX: 00007f14ec7b5fa0 RCX: 00007f14ec58e929
[ 1840.502053][T30448] RDX: 000020000000003f RSI: 0000200000000540 RDI: 0000000000000003
[ 1840.502070][T30448] RBP: 00007f14ed346090 R08: 0000000000000000 R09: 0000000000000000
[ 1840.502087][T30448] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000001
[ 1840.502103][T30448] R13: 0000000000000000 R14: 00007f14ec7b5fa0 R15: 00007ffc8da11388
[ 1840.502139][T30448]  </TASK>
[ 1840.783990][T30433] Bluetooth: hci0: command 0x0406 tx timeout
[ 1840.843984][T30453] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1174
[ 1841.322948][T30454] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1175
[ 1842.298441][T26447] Bluetooth: hci2: unexpected subevent 0x01 length: 122 > 18
[ 1842.489372][T30471] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1176
[ 1842.941240][T30473] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1177
[ 1843.643100][T30490] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1178
[ 1844.840788][T30505] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1179
[ 1845.680370][T30508] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1180
[ 1845.846612][T30520] FAULT_INJECTION: forcing a failure.
[ 1845.846612][T30520] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1846.027633][T30520] CPU: 0 UID: 0 PID: 30520 Comm: syz.1.5209 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(full) 
[ 1846.027673][T30520] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1846.027691][T30520] Call Trace:
[ 1846.027701][T30520]  <TASK>
[ 1846.027710][T30520]  dump_stack_lvl+0x16c/0x1f0
[ 1846.027749][T30520]  should_fail_ex+0x512/0x640
[ 1846.027785][T30520]  _copy_from_user+0x2e/0xd0
[ 1846.027819][T30520]  copy_msghdr_from_user+0x98/0x160
[ 1846.027853][T30520]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 1846.027891][T30520]  ? kfree+0x24f/0x4d0
[ 1846.027916][T30520]  ? __lock_acquire+0x622/0x1c90
[ 1846.027948][T30520]  ___sys_recvmsg+0xdb/0x1a0
[ 1846.027982][T30520]  ? __pfx____sys_recvmsg+0x10/0x10
[ 1846.028029][T30520]  ? __pfx___might_resched+0x10/0x10
[ 1846.028057][T30520]  do_recvmmsg+0x2fe/0x750
[ 1846.028079][T30520]  ? __pfx_do_recvmmsg+0x10/0x10
[ 1846.028118][T30520]  ? __mutex_unlock_slowpath+0x161/0x6a0
[ 1846.028146][T30520]  ? __fget_files+0x20e/0x3c0
[ 1846.028181][T30520]  __x64_sys_recvmmsg+0x22a/0x280
[ 1846.028203][T30520]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[ 1846.028243][T30520]  do_syscall_64+0xcd/0x490
[ 1846.028283][T30520]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1846.028306][T30520] RIP: 0033:0x7f26a0f8e929
[ 1846.028325][T30520] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1846.028347][T30520] RSP: 002b:00007f26a1d2a038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1846.028369][T30520] RAX: ffffffffffffffda RBX: 00007f26a11b5fa0 RCX: 00007f26a0f8e929
[ 1846.028386][T30520] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1846.028401][T30520] RBP: 00007f26a1d2a090 R08: 0000000000000000 R09: 0000000000000000
[ 1846.028415][T30520] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[ 1846.028429][T30520] R13: 0000000000000000 R14: 00007f26a11b5fa0 R15: 00007ffccad754a8
[ 1846.028458][T30520]  </TASK>
[ 1846.321054][T30518] Invalid ELF header magic: != ELF
[ 1846.864505][T30511] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1181
[ 1847.474445][T30536] FAULT_INJECTION: forcing a failure.
[ 1847.474445][T30536] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1847.542277][T30536] CPU: 0 UID: 0 PID: 30536 Comm: syz.1.5212 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(full) 
[ 1847.542316][T30536] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1847.542333][T30536] Call Trace:
[ 1847.542342][T30536]  <TASK>
[ 1847.542353][T30536]  dump_stack_lvl+0x16c/0x1f0
[ 1847.542402][T30536]  should_fail_ex+0x512/0x640
[ 1847.542448][T30536]  should_fail_alloc_page+0xe7/0x130
[ 1847.542478][T30536]  prepare_alloc_pages+0x3c2/0x610
[ 1847.542517][T30536]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[ 1847.542574][T30536]  ? find_held_lock+0x2b/0x80
[ 1847.542603][T30536]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1847.542670][T30536]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1847.542715][T30536]  ? policy_nodemask+0xea/0x4e0
[ 1847.542744][T30536]  alloc_pages_mpol+0x1fb/0x550
[ 1847.542772][T30536]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1847.542800][T30536]  ? find_held_lock+0x2b/0x80
[ 1847.542832][T30536]  folio_alloc_mpol_noprof+0x36/0x2f0
[ 1847.542866][T30536]  shmem_alloc_folio+0x135/0x160
[ 1847.542902][T30536]  shmem_alloc_and_add_folio+0x499/0xc20
[ 1847.542950][T30536]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[ 1847.542994][T30536]  ? shmem_allowable_huge_orders+0xcb/0x2f0
[ 1847.543042][T30536]  shmem_get_folio_gfp+0x67f/0x1600
[ 1847.543090][T30536]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[ 1847.543139][T30536]  ? __lock_acquire+0x622/0x1c90
[ 1847.543196][T30536]  shmem_fault+0x1fe/0xa30
[ 1847.543237][T30536]  ? __pfx_shmem_fault+0x10/0x10
[ 1847.543316][T30536]  __do_fault+0x10a/0x490
[ 1847.543371][T30536]  ? __pfx_filemap_map_pages+0x10/0x10
[ 1847.543415][T30536]  __handle_mm_fault+0x374c/0x5490
[ 1847.543461][T30536]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1847.543514][T30536]  ? __pfx_mt_find+0x10/0x10
[ 1847.543565][T30536]  ? find_vma+0xbf/0x140
[ 1847.543595][T30536]  ? __pfx_find_vma+0x10/0x10
[ 1847.543628][T30536]  handle_mm_fault+0x589/0xd10
[ 1847.543667][T30536]  ? __pkru_allows_pkey+0x21/0xb0
[ 1847.543710][T30536]  do_user_addr_fault+0x7a6/0x1370
[ 1847.543754][T30536]  ? rcu_is_watching+0x12/0xc0
[ 1847.543788][T30536]  exc_page_fault+0x5c/0xb0
[ 1847.543834][T30536]  asm_exc_page_fault+0x26/0x30
[ 1847.543863][T30536] RIP: 0010:__put_user_4+0xd/0x20
[ 1847.543909][T30536] Code: 66 89 01 31 c9 0f 01 ca e9 d0 5a 03 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca c3 cc cc cc cc 0f 1f 80 00 00 00 00 90 90 90
[ 1847.543936][T30536] RSP: 0018:ffffc9000d487d50 EFLAGS: 00050206
[ 1847.543958][T30536] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00000000000032e8
[ 1847.543976][T30536] RDX: ffff8880324abc00 RSI: ffffffff8222f331 RDI: ffffffff8bf55a60
[ 1847.543996][T30536] RBP: 0000000000000000 R08: a23edf14cf8df726 R09: 0000000000000000
[ 1847.544014][T30536] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000000
[ 1847.544032][T30536] R13: 0000000000000000 R14: 0000000000000000 R15: dffffc0000000000
[ 1847.544063][T30536]  ? kernel_move_pages+0xbe1/0x13b0
[ 1847.544102][T30536]  kernel_move_pages+0xbf6/0x13b0
[ 1847.544155][T30536]  ? __pfx_kernel_move_pages+0x10/0x10
[ 1847.544201][T30536]  ? fput+0x70/0xf0
[ 1847.544235][T30536]  ? ksys_write+0x1ac/0x250
[ 1847.544274][T30536]  ? __pfx_ksys_write+0x10/0x10
[ 1847.544320][T30536]  __x64_sys_move_pages+0xe0/0x1c0
[ 1847.544352][T30536]  ? do_syscall_64+0x91/0x490
[ 1847.544379][T30536]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1847.544419][T30536]  do_syscall_64+0xcd/0x490
[ 1847.544449][T30536]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1847.544478][T30536] RIP: 0033:0x7f26a0f8e929
[ 1847.544500][T30536] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1847.544534][T30536] RSP: 002b:00007f26a1d2a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000117
[ 1847.544561][T30536] RAX: ffffffffffffffda RBX: 00007f26a11b5fa0 RCX: 00007f26a0f8e929
[ 1847.544579][T30536] RDX: 0000000000000000 RSI: 0000000000001002 RDI: 0000000000000000
[ 1847.544595][T30536] RBP: 00007f26a1d2a090 R08: 0000000000000000 R09: 0000000000000002
[ 1847.544612][T30536] R10: 0000200000001140 R11: 0000000000000246 R12: 0000000000000001
[ 1847.544630][T30536] R13: 0000000000000000 R14: 00007f26a11b5fa0 R15: 00007ffccad754a8
[ 1847.544667][T30536]  </TASK>
[ 1848.472578][T30554] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1182
[ 1850.935170][T30585] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1183
[ 1853.632155][T30608] FAULT_INJECTION: forcing a failure.
[ 1853.632155][T30608] name failslab, interval 1, probability 0, space 0, times 0
[ 1853.645092][T30608] CPU: 0 UID: 0 PID: 30608 Comm: syz.3.5222 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(full) 
[ 1853.645130][T30608] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1853.645147][T30608] Call Trace:
[ 1853.645157][T30608]  <TASK>
[ 1853.645168][T30608]  dump_stack_lvl+0x16c/0x1f0
[ 1853.645218][T30608]  should_fail_ex+0x512/0x640
[ 1853.645261][T30608]  ? __kvmalloc_node_noprof+0x124/0x620
[ 1853.645308][T30608]  should_failslab+0xc2/0x120
[ 1853.645336][T30608]  __kvmalloc_node_noprof+0x137/0x620
[ 1853.645378][T30608]  ? __pfx___mutex_lock+0x10/0x10
[ 1853.645406][T30608]  ? traverse.part.0.constprop.0+0x392/0x640
[ 1853.645454][T30608]  ? traverse.part.0.constprop.0+0x392/0x640
[ 1853.645490][T30608]  traverse.part.0.constprop.0+0x392/0x640
[ 1853.645549][T30608]  seq_read_iter+0x932/0x12c0
[ 1853.645589][T30608]  ? aa_file_perm+0x4d6/0xfb0
[ 1853.645640][T30608]  seq_read+0x39e/0x4e0
[ 1853.645678][T30608]  ? __pfx_seq_read+0x10/0x10
[ 1853.645721][T30608]  ? get_pid_task+0xfc/0x250
[ 1853.645775][T30608]  ? __pfx_seq_read+0x10/0x10
[ 1853.645811][T30608]  proc_reg_read+0x23d/0x330
[ 1853.645854][T30608]  ? __pfx_proc_reg_read+0x10/0x10
[ 1853.645899][T30608]  vfs_read+0x1e4/0xc60
[ 1853.645949][T30608]  ? __pfx_vfs_read+0x10/0x10
[ 1853.645998][T30608]  ? find_held_lock+0x2b/0x80
[ 1853.646027][T30608]  ? __fget_files+0x204/0x3c0
[ 1853.646069][T30608]  ? __fget_files+0x20e/0x3c0
[ 1853.646104][T30608]  ? __fget_files+0x1f0/0x3c0
[ 1853.646154][T30608]  __x64_sys_pread64+0x1eb/0x250
[ 1853.646198][T30608]  ? __pfx___x64_sys_pread64+0x10/0x10
[ 1853.646252][T30608]  do_syscall_64+0xcd/0x490
[ 1853.646278][T30608]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1853.646305][T30608] RIP: 0033:0x7f14ec58e929
[ 1853.646327][T30608] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1853.646354][T30608] RSP: 002b:00007f14ed325038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011
[ 1853.646379][T30608] RAX: ffffffffffffffda RBX: 00007f14ec7b6080 RCX: 00007f14ec58e929
[ 1853.646396][T30608] RDX: 0000000000000008 RSI: 0000000000000000 RDI: 0000000000000009
[ 1853.646412][T30608] RBP: 00007f14ed325090 R08: 0000000000000000 R09: 0000000000000000
[ 1853.646429][T30608] R10: 000000000000ffff R11: 0000000000000246 R12: 0000000000000001
[ 1853.646445][T30608] R13: 0000000000000000 R14: 00007f14ec7b6080 R15: 00007ffc8da11388
[ 1853.646480][T30608]  </TASK>
[ 1853.917387][T30433] Bluetooth: hci2: unexpected subevent 0x01 length: 122 > 18
[ 1853.924947][T30433] Bluetooth: hci2: Ignoring HCI_Connection_Complete for existing connection
[ 1854.563878][T30621] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1184
[ 1855.027186][T30628] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1185
[ 1856.259469][T30645] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1186
[ 1856.977007][T30647] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1187
[ 1857.916388][   T31] audit: type=1800 audit(4294970029.860:17): pid=30664 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.5230" name="discovery_nqn" dev="configfs" ino=118226 res=0 errno=0
[ 1858.166173][T30664] FAULT_INJECTION: forcing a failure.
[ 1858.166173][T30664] name failslab, interval 1, probability 0, space 0, times 0
[ 1858.187691][T30664] CPU: 0 UID: 0 PID: 30664 Comm: syz.1.5230 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(full) 
[ 1858.187725][T30664] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1858.187739][T30664] Call Trace:
[ 1858.187747][T30664]  <TASK>
[ 1858.187756][T30664]  dump_stack_lvl+0x16c/0x1f0
[ 1858.187797][T30664]  should_fail_ex+0x512/0x640
[ 1858.187831][T30664]  ? fs_reclaim_acquire+0xae/0x150
[ 1858.187860][T30664]  ? tomoyo_init_log+0x1385/0x2140
[ 1858.187889][T30664]  should_failslab+0xc2/0x120
[ 1858.187910][T30664]  __kmalloc_noprof+0xd2/0x510
[ 1858.187949][T30664]  tomoyo_init_log+0x1385/0x2140
[ 1858.187994][T30664]  ? __pfx_tomoyo_init_log+0x10/0x10
[ 1858.188032][T30664]  tomoyo_write_log2+0x2f7/0xc10
[ 1858.188069][T30664]  tomoyo_supervisor+0x15e/0x13b0
[ 1858.188110][T30664]  ? __pfx_tomoyo_supervisor+0x10/0x10
[ 1858.188158][T30664]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1858.188208][T30664]  ? tomoyo_check_path_acl+0xad/0x210
[ 1858.188234][T30664]  ? tomoyo_check_acl+0x1f7/0x410
[ 1858.188259][T30664]  tomoyo_path_permission+0x270/0x3b0
[ 1858.188293][T30664]  tomoyo_check_open_permission+0x37b/0x3c0
[ 1858.188321][T30664]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[ 1858.188374][T30664]  ? do_raw_spin_lock+0x12c/0x2b0
[ 1858.188414][T30664]  tomoyo_file_open+0x6b/0x90
[ 1858.188449][T30664]  security_file_open+0x84/0x1e0
[ 1858.188477][T30664]  do_dentry_open+0x596/0x1c10
[ 1858.188517][T30664]  vfs_open+0x82/0x3f0
[ 1858.188542][T30664]  path_openat+0x1de4/0x2cb0
[ 1858.188581][T30664]  ? __pfx_path_openat+0x10/0x10
[ 1858.188617][T30664]  ? __lock_acquire+0xb8a/0x1c90
[ 1858.188656][T30664]  do_filp_open+0x20b/0x470
[ 1858.188697][T30664]  ? __pfx_do_filp_open+0x10/0x10
[ 1858.188755][T30664]  ? alloc_fd+0x471/0x7d0
[ 1858.188791][T30664]  do_sys_openat2+0x11b/0x1d0
[ 1858.188832][T30664]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1858.188868][T30664]  __x64_sys_openat+0x174/0x210
[ 1858.188894][T30664]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1858.188932][T30664]  do_syscall_64+0xcd/0x490
[ 1858.188954][T30664]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1858.188978][T30664] RIP: 0033:0x7f26a0f8e929
[ 1858.188996][T30664] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1858.189020][T30664] RSP: 002b:00007f26a1d2a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1858.189042][T30664] RAX: ffffffffffffffda RBX: 00007f26a11b5fa0 RCX: 00007f26a0f8e929
[ 1858.189057][T30664] RDX: 0000000000000800 RSI: 00002000000000c0 RDI: ffffffffffffff9c
[ 1858.189072][T30664] RBP: 00007f26a1010b39 R08: 0000000000000000 R09: 0000000000000000
[ 1858.189086][T30664] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1858.189099][T30664] R13: 0000000000000000 R14: 00007f26a11b5fa0 R15: 00007ffccad754a8
[ 1858.189127][T30664]  </TASK>
[ 1858.715868][T30662] Invalid ELF header magic: != ELF
[ 1860.002583][T30685] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1188
[ 1860.785054][T30688] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1189
[ 1861.336911][T30689] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1190
[ 1862.076391][T30693] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1191
[ 1862.456222][T30717] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1192
[ 1863.660570][T30720] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1193
[ 1864.081836][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[ 1864.088911][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[ 1865.827106][T30761] nbd: must specify a size in bytes for the device
[ 1866.220777][T30766] mkiss: ax0: crc mode is auto.
[ 1867.078071][T26447] Bluetooth: hci2: unexpected subevent 0x01 length: 122 > 18
[ 1867.085562][T26447] Bluetooth: hci2: Ignoring HCI_Connection_Complete for existing connection
[ 1867.166806][T30783] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1194
[ 1867.681564][T30788] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1195
[ 1868.875588][T30804] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1196
[ 1869.690997][T30806] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1197
[ 1870.349600][T30811] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1198
[ 1871.258875][T30812] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1199
[ 1872.452243][T30848] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1200
[ 1872.728938][T30851] Invalid ELF header magic: != ELF
[ 1873.251734][T30850] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1201
[ 1873.837113][T30433] Bluetooth: hci0: unexpected subevent 0x01 length: 122 > 18
[ 1873.844921][T30433] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection
[ 1873.980330][T30862] random: crng reseeded on system resumption
[ 1874.056073][T30862] FAULT_INJECTION: forcing a failure.
[ 1874.056073][T30862] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1874.196133][T30862] CPU: 0 UID: 0 PID: 30862 Comm: syz.2.5259 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(full) 
[ 1874.196181][T30862] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1874.196201][T30862] Call Trace:
[ 1874.196212][T30862]  <TASK>
[ 1874.196225][T30862]  dump_stack_lvl+0x16c/0x1f0
[ 1874.196278][T30862]  should_fail_ex+0x512/0x640
[ 1874.196330][T30862]  should_fail_alloc_page+0xe7/0x130
[ 1874.196363][T30862]  prepare_alloc_pages+0x3c2/0x610
[ 1874.196400][T30862]  ? rcu_is_watching+0x12/0xc0
[ 1874.196436][T30862]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[ 1874.196503][T30862]  ? stack_trace_save+0x8e/0xc0
[ 1874.196537][T30862]  ? __pfx_stack_trace_save+0x10/0x10
[ 1874.196570][T30862]  ? stack_depot_save_flags+0x28/0xa40
[ 1874.196620][T30862]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1874.196679][T30862]  ? kasan_save_stack+0x42/0x60
[ 1874.196712][T30862]  ? kasan_save_stack+0x33/0x60
[ 1874.196746][T30862]  ? do_dentry_open+0x744/0x1c10
[ 1874.196776][T30862]  ? vfs_open+0x82/0x3f0
[ 1874.196796][T30862]  ? path_openat+0x1de4/0x2cb0
[ 1874.196825][T30862]  ? do_filp_open+0x20b/0x470
[ 1874.196853][T30862]  ? do_sys_openat2+0x11b/0x1d0
[ 1874.196874][T30862]  ? __x64_sys_openat+0x174/0x210
[ 1874.196897][T30862]  ? do_syscall_64+0xcd/0x490
[ 1874.196915][T30862]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1874.196938][T30862]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1874.196970][T30862]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1874.197022][T30862]  ? policy_nodemask+0xea/0x4e0
[ 1874.197045][T30862]  alloc_pages_mpol+0x1fb/0x550
[ 1874.197068][T30862]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1874.197108][T30862]  alloc_pages_noprof+0x131/0x390
[ 1874.197129][T30862]  get_zeroed_page_noprof+0x18/0xb0
[ 1874.197153][T30862]  get_image_page+0x18/0x190
[ 1874.197174][T30862]  alloc_rtree_node+0x3c/0xb0
[ 1874.197194][T30862]  memory_bm_create+0x519/0x810
[ 1874.197244][T30862]  create_basic_memory_bitmaps+0xbd/0x320
[ 1874.197273][T30862]  snapshot_open+0x235/0x2b0
[ 1874.197299][T30862]  ? __pfx_snapshot_open+0x10/0x10
[ 1874.197336][T30862]  misc_open+0x35d/0x420
[ 1874.197381][T30862]  ? __pfx_misc_open+0x10/0x10
[ 1874.197408][T30862]  chrdev_open+0x231/0x6a0
[ 1874.197440][T30862]  ? __pfx_apparmor_file_open+0x10/0x10
[ 1874.197473][T30862]  ? __pfx_chrdev_open+0x10/0x10
[ 1874.197533][T30862]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[ 1874.197571][T30862]  do_dentry_open+0x744/0x1c10
[ 1874.197605][T30862]  ? __pfx_chrdev_open+0x10/0x10
[ 1874.197647][T30862]  vfs_open+0x82/0x3f0
[ 1874.197674][T30862]  path_openat+0x1de4/0x2cb0
[ 1874.197715][T30862]  ? __pfx_path_openat+0x10/0x10
[ 1874.197749][T30862]  ? __lock_acquire+0xb8a/0x1c90
[ 1874.197782][T30862]  do_filp_open+0x20b/0x470
[ 1874.197815][T30862]  ? __pfx_do_filp_open+0x10/0x10
[ 1874.197869][T30862]  ? alloc_fd+0x471/0x7d0
[ 1874.197906][T30862]  do_sys_openat2+0x11b/0x1d0
[ 1874.197931][T30862]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1874.197967][T30862]  __x64_sys_openat+0x174/0x210
[ 1874.197993][T30862]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1874.198030][T30862]  do_syscall_64+0xcd/0x490
[ 1874.198053][T30862]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1874.198076][T30862] RIP: 0033:0x7f915938e929
[ 1874.198095][T30862] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1874.198117][T30862] RSP: 002b:00007f915a1f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1874.198138][T30862] RAX: ffffffffffffffda RBX: 00007f91595b6160 RCX: 00007f915938e929
[ 1874.198154][T30862] RDX: 0000000000184b01 RSI: 0000200000000000 RDI: ffffffffffffff9c
[ 1874.198169][T30862] RBP: 00007f9159410b39 R08: 0000000000000000 R09: 0000000000000000
[ 1874.198183][T30862] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1874.198197][T30862] R13: 0000000000000000 R14: 00007f91595b6160 R15: 00007ffe8bb45b48
[ 1874.198225][T30862]  </TASK>
[ 1876.027221][T30877] Invalid ELF header magic: != ELF
[ 1877.223995][T30888] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1202
[ 1877.653824][T30891] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1203
[ 1878.229779][T30893] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1204
[ 1878.819195][T30903] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[ 1879.135939][T30897] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1205
[ 1879.915477][T30916] ptp ptp0: only physical clock in use now
[ 1879.990013][T30915] ima: policy update failed
[ 1880.050455][   T31] audit: type=1802 audit(4294970051.940:18): pid=30915 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.5269" res=0 errno=0
[ 1880.924624][T30933] Invalid ELF header magic: != ELF
[ 1881.136990][T30942] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1206

syzkaller
syzkaller login: [ 1881.754474][T30945] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1207
[ 1882.850802][T30957] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1208
[ 1883.903320][T30958] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1209
[ 1885.614409][T30987] FAULT_INJECTION: forcing a failure.
[ 1885.614409][T30987] name failslab, interval 1, probability 0, space 0, times 0
[ 1885.684131][T30990] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1210
[ 1885.696709][T30987] CPU: 0 UID: 0 PID: 30987 Comm: syz.1.5285 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(full) 
[ 1885.696747][T30987] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1885.696764][T30987] Call Trace:
[ 1885.696773][T30987]  <TASK>
[ 1885.696784][T30987]  dump_stack_lvl+0x16c/0x1f0
[ 1885.696835][T30987]  should_fail_ex+0x512/0x640
[ 1885.696875][T30987]  ? __kmalloc_cache_noprof+0x57/0x3e0
[ 1885.696915][T30987]  should_failslab+0xc2/0x120
[ 1885.696941][T30987]  __kmalloc_cache_noprof+0x6a/0x3e0
[ 1885.696979][T30987]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[ 1885.697019][T30987]  ? genl_start+0x1e8/0x980
[ 1885.697057][T30987]  genl_start+0x1e8/0x980
[ 1885.697097][T30987]  __netlink_dump_start+0x60e/0x990
[ 1885.697133][T30987]  genl_family_rcv_msg_dumpit+0x1e2/0x2e0
[ 1885.697175][T30987]  ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10
[ 1885.697216][T30987]  ? find_held_lock+0x2b/0x80
[ 1885.697249][T30987]  ? __pfx_genl_get_cmd+0x10/0x10
[ 1885.697281][T30987]  ? __pfx_genl_start+0x10/0x10
[ 1885.697313][T30987]  ? __pfx_genl_dumpit+0x10/0x10
[ 1885.697347][T30987]  ? __pfx_genl_done+0x10/0x10
[ 1885.697399][T30987]  ? __radix_tree_lookup+0x21f/0x2c0
[ 1885.697444][T30987]  genl_rcv_msg+0x46e/0x800
[ 1885.697488][T30987]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1885.697525][T30987]  ? __pfx_nfsd_nl_rpc_status_get_dumpit+0x10/0x10
[ 1885.697576][T30987]  netlink_rcv_skb+0x155/0x420
[ 1885.697609][T30987]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1885.697647][T30987]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1885.697697][T30987]  ? netlink_deliver_tap+0x1ae/0xd30
[ 1885.697732][T30987]  genl_rcv+0x28/0x40
[ 1885.697765][T30987]  netlink_unicast+0x53d/0x7f0
[ 1885.697802][T30987]  ? __pfx_netlink_unicast+0x10/0x10
[ 1885.697844][T30987]  netlink_sendmsg+0x8d1/0xdd0
[ 1885.697881][T30987]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1885.697929][T30987]  ____sys_sendmsg+0xa95/0xc70
[ 1885.697965][T30987]  ? copy_msghdr_from_user+0x10a/0x160
[ 1885.698009][T30987]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1885.698062][T30987]  ___sys_sendmsg+0x134/0x1d0
[ 1885.698106][T30987]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1885.698146][T30987]  ? __lock_acquire+0x622/0x1c90
[ 1885.698226][T30987]  __sys_sendmsg+0x16d/0x220
[ 1885.698251][T30987]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1885.698286][T30987]  ? syscall_user_dispatch+0x78/0x140
[ 1885.698334][T30987]  do_syscall_64+0xcd/0x490
[ 1885.698370][T30987]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1885.698397][T30987] RIP: 0033:0x7f26a0f8e929
[ 1885.698420][T30987] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1885.698445][T30987] RSP: 002b:00007f26a1d2a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1885.698469][T30987] RAX: ffffffffffffffda RBX: 00007f26a11b5fa0 RCX: 00007f26a0f8e929
[ 1885.698486][T30987] RDX: 0000000000000000 RSI: 0000200000000140 RDI: 0000000000000003
[ 1885.698500][T30987] RBP: 00007f26a1d2a090 R08: 0000000000000000 R09: 0000000000000000
[ 1885.698515][T30987] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1885.698529][T30987] R13: 0000000000000000 R14: 00007f26a11b5fa0 R15: 00007ffccad754a8
[ 1885.698563][T30987]  </TASK>
[ 1886.005956][    C0] vkms_vblank_simulate: vblank timer overrun

syzkaller
syzkaller login: [ 1886.799810][T31006] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[ 1887.175811][T30992] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1211
[ 1887.810040][T31012] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1212
[ 1888.615846][T31013] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1213
[ 1889.069714][T31024] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1214
[ 1889.619137][T31041] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[ 1889.662876][T31025] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1215

syzkaller
syzkaller login: [ 1891.600716][T31060] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[ 1892.735394][T31076] device-mapper: ioctl: Invalid ioctl structure: name ¢, dev 7f00010002
[ 1892.835700][T31082] Invalid ELF header magic: != ELF

syzkaller
syzkaller login: [ 1893.118696][T31086] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1216
[ 1893.500734][T26447] Bluetooth: hci4: unexpected subevent 0x01 length: 122 > 18
[ 1893.508234][T26447] Bluetooth: hci4: Ignoring HCI_Connection_Complete for existing connection
[ 1893.798883][T31087] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1217
[ 1894.852140][T31097] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1218
[ 1895.589183][T31099] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1219
[ 1896.107851][T31126] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1220
[ 1896.547835][T31121] could not allocate digest TFM handle 
[ 1896.896484][T31127] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1221

syzkaller
syzkaller login: [ 1897.303723][T31141] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[ 1899.192310][T31160] Invalid ELF header magic: != ELF
[ 1899.330415][T31164] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1222

syzkaller
syzkaller login: [ 1900.755532][T31181] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1223
[ 1902.283340][T31197] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1224
[ 1903.794244][T31199] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1225
[ 1905.288625][T31224] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1226
[ 1905.900592][T31239] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1227
[ 1906.091746][T31241] vivid-007: =================  START STATUS  =================
[ 1906.138799][T31241] vivid-007: Generate PTS: true
[ 1906.143736][T31241] vivid-007: Generate SCR: true
[ 1906.186255][T31250] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(2)
[ 1906.207538][T31241] tpg source WxH: 320x240 (Y'CbCr)
[ 1906.218601][T31241] tpg field: 1
[ 1906.248010][T31241] tpg crop: (0,0)/320x240
[ 1906.277912][T31241] tpg compose: (0,0)/320x240
[ 1906.325652][T31241] tpg colorspace: 8
[ 1906.377704][T31241] tpg transfer function: 0/0
[ 1906.407614][T31241] tpg Y'CbCr encoding: 0/0
[ 1906.437739][T31241] tpg quantization: 0/0
[ 1906.441971][T31241] tpg RGB range: 0/2
[ 1906.445979][T31241] vivid-007: ==================  END STATUS  ==================
[ 1907.123989][T26447] Bluetooth: hci2: command 0x0406 tx timeout
[ 1907.190218][T31267] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1228
[ 1908.065198][T31268] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1229
[ 1908.882921][T31275] Invalid ELF header magic: != ELF
[ 1910.293230][T31293] could not allocate digest TFM handle 
[ 1910.896830][T31307] device-mapper: ioctl: Invalid ioctl structure: name ¢, dev 7f00010002
[ 1912.209153][T31317] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1230
[ 1913.163954][T31328] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[ 1913.344923][T31337] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1231
[ 1913.645185][T31266] Bluetooth: hci2: unexpected subevent 0x01 length: 122 > 18
[ 1913.652786][T31266] Bluetooth: hci2: Ignoring HCI_Connection_Complete for existing connection

syzkaller
syzkaller login: [ 1914.415594][T31340] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1232
[ 1914.979156][T31352] Invalid ELF header magic: != ELF
[ 1915.078052][T30317] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1915.109004][T30317] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1915.124216][T30317] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1915.147998][T30317] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1915.157161][T30317] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1915.631096][T31344] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1233
[ 1916.255122][T31368] FAULT_INJECTION: forcing a failure.
[ 1916.255122][T31368] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1916.280222][T31368] CPU: 1 UID: 0 PID: 31368 Comm: syz.3.5356 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(full) 
[ 1916.280264][T31368] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1916.280282][T31368] Call Trace:
[ 1916.280293][T31368]  <TASK>
[ 1916.280306][T31368]  dump_stack_lvl+0x16c/0x1f0
[ 1916.280360][T31368]  should_fail_ex+0x512/0x640
[ 1916.280416][T31368]  _copy_to_iter+0x463/0x16f0
[ 1916.280453][T31368]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1916.280499][T31368]  ? __pfx__copy_to_iter+0x10/0x10
[ 1916.280527][T31368]  ? rcu_preempt_deferred_qs_irqrestore+0x4f5/0xbc0
[ 1916.280622][T31368]  seq_read_iter+0xcf8/0x12c0
[ 1916.280677][T31368]  seq_read+0x39e/0x4e0
[ 1916.280716][T31368]  ? __pfx_seq_read+0x10/0x10
[ 1916.280762][T31368]  ? get_pid_task+0xfc/0x250
[ 1916.280818][T31368]  ? __pfx_seq_read+0x10/0x10
[ 1916.280855][T31368]  proc_reg_read+0x23d/0x330
[ 1916.280899][T31368]  ? __pfx_proc_reg_read+0x10/0x10
[ 1916.280945][T31368]  vfs_read+0x1e4/0xc60
[ 1916.280996][T31368]  ? __pfx_vfs_read+0x10/0x10
[ 1916.281035][T31368]  ? find_held_lock+0x2b/0x80
[ 1916.281065][T31368]  ? __fget_files+0x204/0x3c0
[ 1916.281111][T31368]  ? __fget_files+0x20e/0x3c0
[ 1916.281148][T31368]  ? __fget_files+0x1f0/0x3c0
[ 1916.281199][T31368]  __x64_sys_pread64+0x1eb/0x250
[ 1916.281245][T31368]  ? __pfx___x64_sys_pread64+0x10/0x10
[ 1916.281303][T31368]  do_syscall_64+0xcd/0x490
[ 1916.281335][T31368]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1916.281382][T31368] RIP: 0033:0x7f14ec58e929
[ 1916.281408][T31368] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1916.281437][T31368] RSP: 002b:00007f14ed346038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011
[ 1916.281463][T31368] RAX: ffffffffffffffda RBX: 00007f14ec7b5fa0 RCX: 00007f14ec58e929
[ 1916.281482][T31368] RDX: 000020000000003f RSI: 0000200000000540 RDI: 0000000000000003
[ 1916.281500][T31368] RBP: 00007f14ed346090 R08: 0000000000000000 R09: 0000000000000000
[ 1916.281517][T31368] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000001
[ 1916.281534][T31368] R13: 0000000000000000 R14: 00007f14ec7b5fa0 R15: 00007ffc8da11388
[ 1916.281572][T31368]  </TASK>
[ 1916.593087][T31369] Invalid ELF header magic: != ELF
[ 1916.986293][T31353] chnl_net:caif_netlink_parms(): no params data found
[ 1917.050660][T31377] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1234
[ 1917.307663][T31266] Bluetooth: hci3: command tx timeout
[ 1917.480888][T31378] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1235
[ 1917.691718][T31266] Bluetooth: hci1: unexpected subevent 0x01 length: 122 > 18
[ 1917.699628][T31266] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection
[ 1917.815272][T31353] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1917.897876][T31353] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1917.905342][T31353] bridge_slave_0: entered allmulticast mode
[ 1918.012892][T31353] bridge_slave_0: entered promiscuous mode
[ 1918.028661][T31353] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1918.036180][T31353] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1918.069404][T31353] bridge_slave_1: entered allmulticast mode
[ 1918.096745][T31353] bridge_slave_1: entered promiscuous mode
[ 1918.323119][T31353] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1918.372849][T31353] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link

syzkaller
syzk[ 1918.583874][T31353] team0: Port device team_slave_0 added
aller login: [ 1918.619436][T31353] team0: Port device team_slave_1 added
[ 1918.689317][T31398] Invalid ELF header magic: != ELF
[ 1918.777166][T31353] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1918.784609][T31353] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1918.863297][T31353] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1918.901414][T31353] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1918.917031][T31353] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1919.055567][T31353] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1919.158808][T31402] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1236
[ 1919.357940][T30317] Bluetooth: hci3: command tx timeout
[ 1919.591981][T31353] hsr_slave_0: entered promiscuous mode
[ 1919.627072][T31403] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1237
[ 1919.654623][T31353] hsr_slave_1: entered promiscuous mode
[ 1919.692216][T31353] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1919.707909][T31353] Cannot create hsr debugfs directory
[ 1920.811019][T31353] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1920.933598][T31423] FAULT_INJECTION: forcing a failure.
[ 1920.933598][T31423] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1920.954744][T31423] CPU: 1 UID: 0 PID: 31423 Comm: syz.4.5373 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(full) 
[ 1920.954775][T31423] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1920.954789][T31423] Call Trace:
[ 1920.954796][T31423]  <TASK>
[ 1920.954804][T31423]  dump_stack_lvl+0x16c/0x1f0
[ 1920.954845][T31423]  should_fail_ex+0x512/0x640
[ 1920.954899][T31423]  _copy_from_user+0x2e/0xd0
[ 1920.954937][T31423]  copy_msghdr_from_user+0x98/0x160
[ 1920.954976][T31423]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 1920.955020][T31423]  ? kfree+0x24f/0x4d0
[ 1920.955047][T31423]  ? __lock_acquire+0x622/0x1c90
[ 1920.955082][T31423]  ___sys_recvmsg+0xdb/0x1a0
[ 1920.955120][T31423]  ? __pfx____sys_recvmsg+0x10/0x10
[ 1920.955173][T31423]  ? __pfx___might_resched+0x10/0x10
[ 1920.955203][T31423]  do_recvmmsg+0x2fe/0x750
[ 1920.955235][T31423]  ? __pfx_do_recvmmsg+0x10/0x10
[ 1920.955278][T31423]  ? __mutex_unlock_slowpath+0x161/0x6a0
[ 1920.955310][T31423]  ? __fget_files+0x20e/0x3c0
[ 1920.955348][T31423]  __x64_sys_recvmmsg+0x22a/0x280
[ 1920.955373][T31423]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[ 1920.955405][T31423]  do_syscall_64+0xcd/0x490
[ 1920.955428][T31423]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1920.955452][T31423] RIP: 0033:0x7fbb6738e929
[ 1920.955470][T31423] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1920.955492][T31423] RSP: 002b:00007fbb6817c038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1920.955514][T31423] RAX: ffffffffffffffda RBX: 00007fbb675b5fa0 RCX: 00007fbb6738e929
[ 1920.955530][T31423] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1920.955544][T31423] RBP: 00007fbb6817c090 R08: 0000000000000000 R09: 0000000000000000
[ 1920.955559][T31423] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[ 1920.955574][T31423] R13: 0000000000000000 R14: 00007fbb675b5fa0 R15: 00007ffeab4e94b8
[ 1920.955603][T31423]  </TASK>
[ 1921.166914][T31419] Invalid ELF header magic: != ELF
[ 1921.214161][T31353] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1921.395377][T31353] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1921.438584][T30317] Bluetooth: hci3: command tx timeout
[ 1921.890950][T31353] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1922.541467][T31353] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1922.574846][T31353] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1922.658316][T31353] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1922.776669][T31353] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1922.984028][T31462] Invalid ELF header magic: != ELF
[ 1923.519949][T30317] Bluetooth: hci3: command tx timeout

syzkaller
syzkaller login: [ 1924.094184][T31353] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1924.152894][T31353] 8021q: adding VLAN 0 to HW filter on device team0
[ 1924.186870][T27531] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1924.194046][T27531] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1924.345536][   T59] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1924.352784][   T59] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1925.385839][T31353] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1925.521806][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[ 1925.528487][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[ 1925.583075][T31353] veth0_vlan: entered promiscuous mode
[ 1925.608387][T31353] veth1_vlan: entered promiscuous mode
[ 1925.696343][T31353] veth0_macvtap: entered promiscuous mode
[ 1925.837299][T31505] FAULT_INJECTION: forcing a failure.
[ 1925.837299][T31505] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1925.842290][T31353] veth1_macvtap: entered promiscuous mode
[ 1925.863657][T31510] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1238
[ 1925.890661][T31505] CPU: 1 UID: 0 PID: 31505 Comm: syz.4.5381 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(full) 
[ 1925.890706][T31505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1925.890722][T31505] Call Trace:
[ 1925.890730][T31505]  <TASK>
[ 1925.890741][T31505]  dump_stack_lvl+0x16c/0x1f0
[ 1925.890788][T31505]  should_fail_ex+0x512/0x640
[ 1925.890834][T31505]  _copy_to_user+0x32/0xd0
[ 1925.890863][T31505]  simple_read_from_buffer+0xcb/0x170
[ 1925.890902][T31505]  proc_fail_nth_read+0x197/0x270
[ 1925.890952][T31505]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1925.890991][T31505]  ? rw_verify_area+0xcf/0x680
[ 1925.891028][T31505]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1925.891062][T31505]  vfs_read+0x1e4/0xc60
[ 1925.891106][T31505]  ? __pfx___mutex_lock+0x10/0x10
[ 1925.891134][T31505]  ? __pfx_vfs_read+0x10/0x10
[ 1925.891185][T31505]  ? __fget_files+0x20e/0x3c0
[ 1925.891222][T31505]  ? rcu_watching_snap_stopped_since+0x80/0x110
[ 1925.891267][T31505]  ksys_read+0x12a/0x250
[ 1925.891307][T31505]  ? __pfx_ksys_read+0x10/0x10
[ 1925.891380][T31505]  do_syscall_64+0xcd/0x490
[ 1925.891410][T31505]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1925.891441][T31505] RIP: 0033:0x7fbb6738d33c
[ 1925.891467][T31505] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1925.891497][T31505] RSP: 002b:00007fbb6817c030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1925.891525][T31505] RAX: ffffffffffffffda RBX: 00007fbb675b5fa0 RCX: 00007fbb6738d33c
[ 1925.891545][T31505] RDX: 000000000000000f RSI: 00007fbb6817c0a0 RDI: 0000000000000003
[ 1925.891563][T31505] RBP: 00007fbb6817c090 R08: 0000000000000000 R09: 0000000000000002
[ 1925.891592][T31505] R10: 0000200000001140 R11: 0000000000000246 R12: 0000000000000002
[ 1925.891609][T31505] R13: 0000000000000000 R14: 00007fbb675b5fa0 R15: 00007ffeab4e94b8
[ 1925.891648][T31505]  </TASK>
[ 1926.103488][T31353] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1926.115461][T31353] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1926.132761][T31353] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1926.141557][T31353] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1926.151035][T31353] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1926.160125][T31353] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1926.308871][T31513] syz.3.5382 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[ 1927.194783][T27539] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1927.203721][T27539] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1927.618962][T27529] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1927.672715][T27529] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1929.154750][T31557] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)

syzkaller
syzkaller login: [ 1931.693643][T31602] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1239
[ 1932.517299][T31612] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[ 1932.952524][T31616] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1240

syzkaller
syzkaller login: [ 1933.764770][T31628] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1241
[ 1935.238946][T31651] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1242
[ 1935.969335][T31652] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1243
[ 1936.975585][T31661] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1244
[ 1937.435151][T31674] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1245
[ 1937.780479][T31681] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[ 1940.001937][T31717] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1246
[ 1940.573669][T31718] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1247
[ 1942.258855][T31732] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1248
[ 1942.493388][T31737] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1249
[ 1942.566430][T30317] Bluetooth: hci2: unexpected subevent 0x01 length: 122 > 18
[ 1942.574235][T30317] Bluetooth: hci2: Ignoring HCI_Connection_Complete for existing connection
[ 1943.197897][T31266] Bluetooth: hci3: unexpected subevent 0x01 length: 122 > 18
[ 1943.410209][T31748] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1250
[ 1943.999563][T31749] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1251
[ 1944.214978][T31757] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[ 1945.113356][T31771] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1252
[ 1946.099675][T31772] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1253
[ 1946.838303][T31790] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1254
[ 1947.750677][T31800] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[ 1948.236660][T31806] input: isc as /devices/virtual/input/input1255
[ 1948.286098][T31806] FAULT_INJECTION: forcing a failure.
[ 1948.286098][T31806] name failslab, interval 1, probability 0, space 0, times 0
[ 1948.326249][T31806] CPU: 0 UID: 0 PID: 31806 Comm: syz.3.5430 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(full) 
[ 1948.326304][T31806] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1948.326323][T31806] Call Trace:
[ 1948.326334][T31806]  <TASK>
[ 1948.326347][T31806]  dump_stack_lvl+0x16c/0x1f0
[ 1948.326399][T31806]  should_fail_ex+0x512/0x640
[ 1948.326444][T31806]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1948.326491][T31806]  should_failslab+0xc2/0x120
[ 1948.326520][T31806]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1948.326562][T31806]  ? wake_up_q+0xb0/0x160
[ 1948.326586][T31806]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1948.326626][T31806]  ? __kernfs_new_node+0xd2/0x8e0
[ 1948.326668][T31806]  __kernfs_new_node+0xd2/0x8e0
[ 1948.326707][T31806]  ? kernfs_add_one+0x37d/0x840
[ 1948.326811][T31806]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1948.326864][T31806]  ? find_held_lock+0x2b/0x80
[ 1948.326894][T31806]  ? kernfs_root+0xee/0x2a0
[ 1948.326944][T31806]  kernfs_new_node+0x13c/0x1e0
[ 1948.326996][T31806]  __kernfs_create_file+0x53/0x350
[ 1948.327035][T31806]  sysfs_add_file_mode_ns+0x207/0x3c0
[ 1948.327085][T31806]  sysfs_create_file_ns+0x13d/0x1d0
[ 1948.327122][T31806]  ? __pfx_sysfs_create_file_ns+0x10/0x10
[ 1948.327159][T31806]  ? down_read+0x13d/0x480
[ 1948.327191][T31806]  ? __pfx___up_read+0x10/0x10
[ 1948.327233][T31806]  ? acpi_device_notify+0x351/0x480
[ 1948.327293][T31806]  device_create_file+0xf2/0x1e0
[ 1948.327332][T31806]  device_add+0x2bf/0x1a70
[ 1948.327366][T31806]  ? __pfx_device_add+0x10/0x10
[ 1948.327405][T31806]  ? __pfx_exact_lock+0x10/0x10
[ 1948.327455][T31806]  ? kobject_get+0xbb/0x150
[ 1948.327484][T31806]  cdev_device_add+0xc2/0x1e0
[ 1948.327530][T31806]  evdev_connect+0x3a4/0x4c0
[ 1948.327576][T31806]  input_attach_handler.isra.0+0x181/0x260
[ 1948.327623][T31806]  input_register_device+0xa84/0x1130
[ 1948.327671][T31806]  uinput_ioctl_handler.isra.0+0x1357/0x1df0
[ 1948.327707][T31806]  ? __pfx_uinput_ioctl_handler.isra.0+0x10/0x10
[ 1948.327748][T31806]  ? find_held_lock+0x2b/0x80
[ 1948.327794][T31806]  ? __pfx_uinput_ioctl+0x10/0x10
[ 1948.327824][T31806]  __x64_sys_ioctl+0x18e/0x210
[ 1948.327858][T31806]  do_syscall_64+0xcd/0x490
[ 1948.327888][T31806]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1948.327918][T31806] RIP: 0033:0x7f14ec58e929
[ 1948.327943][T31806] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1948.327975][T31806] RSP: 002b:00007f14ed346038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1948.328003][T31806] RAX: ffffffffffffffda RBX: 00007f14ec7b5fa0 RCX: 00007f14ec58e929
[ 1948.328022][T31806] RDX: 00000000ffffffe4 RSI: 0000000000005501 RDI: 0000000000000005
[ 1948.328039][T31806] RBP: 00007f14ec610b39 R08: 0000000000000000 R09: 0000000000000000
[ 1948.328056][T31806] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1948.328071][T31806] R13: 0000000000000000 R14: 00007f14ec7b5fa0 R15: 00007ffc8da11388
[ 1948.328104][T31806]  </TASK>
[ 1948.917786][T31806] input: failed to attach handler evdev to device input1255, error: -12
[ 1949.063428][T31817] random: crng reseeded on system resumption
[ 1949.295849][T31809] FAULT_INJECTION: forcing a failure.
[ 1949.295849][T31809] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1949.363442][T31809] CPU: 1 UID: 0 PID: 31809 Comm: syz.2.5432 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(full) 
[ 1949.363483][T31809] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1949.363501][T31809] Call Trace:
[ 1949.363511][T31809]  <TASK>
[ 1949.363523][T31809]  dump_stack_lvl+0x16c/0x1f0
[ 1949.363572][T31809]  should_fail_ex+0x512/0x640
[ 1949.363620][T31809]  _copy_from_user+0x2e/0xd0
[ 1949.363663][T31809]  get_timespec64+0x8b/0x1b0
[ 1949.363696][T31809]  ? __pfx_get_timespec64+0x10/0x10
[ 1949.363732][T31809]  ? common_nsleep+0xa1/0xd0
[ 1949.363769][T31809]  __x64_sys_clock_nanosleep+0x1ce/0x4a0
[ 1949.363818][T31809]  ? __pfx___x64_sys_clock_nanosleep+0x10/0x10
[ 1949.363871][T31809]  do_syscall_64+0xcd/0x490
[ 1949.363899][T31809]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1949.363928][T31809] RIP: 0033:0x7f32bd1c11e5
[ 1949.363951][T31809] Code: 24 0c 89 3c 24 48 89 4c 24 18 e8 f6 54 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 <44> 89 c7 48 89 04 24 e8 4f 55 ff ff 48 8b 04 24 48 83 c4 28 f7 d8
[ 1949.363976][T31809] RSP: 002b:00007ffcc2653410 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6
[ 1949.364000][T31809] RAX: ffffffffffffffda RBX: 00007f32bd3b5fa0 RCX: 00007f32bd1c11e5
[ 1949.364017][T31809] RDX: 00007ffcc2653450 RSI: 0000000000000000 RDI: 0000000000000000
[ 1949.364032][T31809] RBP: 00007f32bd3b7ba0 R08: 0000000000000000 R09: 00007f32bdfd5000
[ 1949.364047][T31809] R10: 0000000000000000 R11: 0000000000000293 R12: 00000000001dbba7
[ 1949.364062][T31809] R13: 00007f32bd3b6240 R14: ffffffffffffffff R15: 00007ffcc2653590
[ 1949.364093][T31809]  </TASK>
[ 1950.198623][T31823] snd_aloop snd_aloop.0: Parsing timer source 'ÿ' failed with -22
[ 1950.383935][T31831] netlink: 338 bytes leftover after parsing attributes in process `syz.3.5435'.
[ 1950.536458][T31839] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1256
[ 1950.792518][T31834] sd 0:0:1:0: PR command failed: 1026
[ 1950.831800][T31834] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[ 1950.838789][T31834] sd 0:0:1:0: Add. Sense: Invalid command operation code
[ 1951.065160][T30317] Bluetooth: hci1: unexpected subevent 0x01 length: 122 > 18
[ 1951.075244][T30317] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection
[ 1951.853528][T31856] snd_aloop snd_aloop.0: Parsing timer source 'ÿ' failed with -22
[ 1951.868980][T31856] snd_aloop snd_aloop.0: Parsing timer source 'ÿ' failed with -22
[ 1952.714929][T31865] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[ 1953.605146][T31882] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1257
[ 1954.140679][T31885] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1258
[ 1954.474382][T31884] sd 0:0:1:0: PR command failed: 1026
[ 1954.480045][T31884] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[ 1954.487067][T31884] sd 0:0:1:0: Add. Sense: Invalid command operation code
[ 1954.996239][T31898] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1259
[ 1955.424425][T31912] netlink: 20 bytes leftover after parsing attributes in process `syz.1.5452'.
[ 1955.536826][T31899] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1260
[ 1956.039851][T31912] hsr_slave_0 (unregistering): left promiscuous mode
[ 1956.704268][T31926] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[ 1957.205862][T31937] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1261
[ 1957.952771][T31939] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1262
[ 1959.116332][T31961] FAULT_INJECTION: forcing a failure.
[ 1959.116332][T31961] name failslab, interval 1, probability 0, space 0, times 0
[ 1959.155449][T31964] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1263
[ 1959.210438][T31961] CPU: 0 UID: 0 PID: 31961 Comm: syz.3.5462 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(full) 
[ 1959.210471][T31961] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1959.210484][T31961] Call Trace:
[ 1959.210492][T31961]  <TASK>
[ 1959.210501][T31961]  dump_stack_lvl+0x16c/0x1f0
[ 1959.210550][T31961]  should_fail_ex+0x512/0x640
[ 1959.210581][T31961]  ? fs_reclaim_acquire+0xae/0x150
[ 1959.210608][T31961]  should_failslab+0xc2/0x120
[ 1959.210627][T31961]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1959.210660][T31961]  ? security_inode_alloc+0x3b/0x2b0
[ 1959.210687][T31961]  security_inode_alloc+0x3b/0x2b0
[ 1959.210711][T31961]  inode_init_always_gfp+0xce4/0x1030
[ 1959.210744][T31961]  alloc_inode+0x86/0x240
[ 1959.210766][T31961]  new_inode+0x22/0x1c0
[ 1959.210788][T31961]  __rpc_create_common+0x57/0x2f0
[ 1959.210823][T31961]  rpc_populate.constprop.0+0x153/0x5d0
[ 1959.210861][T31961]  rpc_fill_super+0x2bc/0x840
[ 1959.210891][T31961]  ? sget_fc+0x808/0xc20
[ 1959.210919][T31961]  ? __pfx_set_anon_super_fc+0x10/0x10
[ 1959.210947][T31961]  ? __pfx_rpc_fill_super+0x10/0x10
[ 1959.210977][T31961]  get_tree_keyed+0x10b/0x1d0
[ 1959.211007][T31961]  vfs_get_tree+0x8e/0x340
[ 1959.211031][T31961]  vfs_cmd_create+0xd7/0x2a0
[ 1959.211050][T31961]  __do_sys_fsconfig+0x7b8/0xbe0
[ 1959.211071][T31961]  ? __pfx___do_sys_fsconfig+0x10/0x10
[ 1959.211088][T31961]  ? fput+0x70/0xf0
[ 1959.211118][T31961]  do_syscall_64+0xcd/0x490
[ 1959.211138][T31961]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1959.211159][T31961] RIP: 0033:0x7f14ec58e929
[ 1959.211174][T31961] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1959.211199][T31961] RSP: 002b:00007f14ed346038 EFLAGS: 00000246 ORIG_RAX: 00000000000001af
[ 1959.211218][T31961] RAX: ffffffffffffffda RBX: 00007f14ec7b5fa0 RCX: 00007f14ec58e929
[ 1959.211232][T31961] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000007
[ 1959.211244][T31961] RBP: 00007f14ed346090 R08: 0000000000000000 R09: 0000000000000000
[ 1959.211257][T31961] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1959.211270][T31961] R13: 0000000000000000 R14: 00007f14ec7b5fa0 R15: 00007ffc8da11388
[ 1959.211296][T31961]  </TASK>
[ 1959.211319][T31961] net/sunrpc/rpc_pipe.c: __rpc_create_common failed to allocate inode for dentry statd
[ 1959.561098][T31961] net/sunrpc/rpc_pipe.c: rpc_populate failed to populate directory /
[ 1959.936522][T31959] sd 0:0:1:0: PR command failed: 1026
[ 1959.955379][T31959] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[ 1959.993248][T31959] sd 0:0:1:0: Add. Sense: Invalid command operation code
[ 1960.216874][T31965] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1264
[ 1960.728070][T31982] FAULT_INJECTION: forcing a failure.
[ 1960.728070][T31982] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1960.826052][T31979] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1265
[ 1960.890835][T31984] block nbd8: shutting down sockets
[ 1960.957980][T31982] CPU: 0 UID: 0 PID: 31982 Comm: syz.3.5467 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(full) 
[ 1960.958020][T31982] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1960.958038][T31982] Call Trace:
[ 1960.958056][T31982]  <TASK>
[ 1960.958067][T31982]  dump_stack_lvl+0x16c/0x1f0
[ 1960.958118][T31982]  should_fail_ex+0x512/0x640
[ 1960.958167][T31982]  should_fail_alloc_page+0xe7/0x130
[ 1960.958199][T31982]  prepare_alloc_pages+0x3c2/0x610
[ 1960.958240][T31982]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[ 1960.958286][T31982]  ? __lock_acquire+0x622/0x1c90
[ 1960.958332][T31982]  ? __lock_acquire+0x622/0x1c90
[ 1960.958375][T31982]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1960.958432][T31982]  ? find_held_lock+0x2b/0x80
[ 1960.958460][T31982]  ? is_bpf_text_address+0x8a/0x1a0
[ 1960.958499][T31982]  ? bpf_ksym_find+0x124/0x1c0
[ 1960.958529][T31982]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 1960.958561][T31982]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1960.958608][T31982]  ? policy_nodemask+0xea/0x4e0
[ 1960.958638][T31982]  alloc_pages_mpol+0x1fb/0x550
[ 1960.958668][T31982]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1960.958707][T31982]  folio_alloc_mpol_noprof+0x36/0x2f0
[ 1960.958743][T31982]  shmem_alloc_folio+0x135/0x160
[ 1960.958780][T31982]  shmem_alloc_and_add_folio+0x499/0xc20
[ 1960.958829][T31982]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[ 1960.958875][T31982]  ? shmem_allowable_huge_orders+0xcb/0x2f0
[ 1960.958924][T31982]  shmem_get_folio_gfp+0x67f/0x1600
[ 1960.958975][T31982]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[ 1960.959029][T31982]  shmem_fault+0x1fe/0xa30
[ 1960.959079][T31982]  ? __pfx_shmem_fault+0x10/0x10
[ 1960.959119][T31982]  ? mod_memcg_lruvec_state+0x394/0x610
[ 1960.959159][T31982]  ? find_held_lock+0x2b/0x80
[ 1960.959194][T31982]  ? pte_alloc_one+0x2b6/0x3a0
[ 1960.959243][T31982]  __do_fault+0x10a/0x490
[ 1960.959299][T31982]  ? __pfx_filemap_map_pages+0x10/0x10
[ 1960.959341][T31982]  __handle_mm_fault+0x3c2a/0x5490
[ 1960.959387][T31982]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1960.959421][T31982]  ? __pfx_mt_find+0x10/0x10
[ 1960.959469][T31982]  ? find_vma+0xbf/0x140
[ 1960.959495][T31982]  ? __pfx_find_vma+0x10/0x10
[ 1960.959527][T31982]  handle_mm_fault+0x589/0xd10
[ 1960.959565][T31982]  ? __pkru_allows_pkey+0x21/0xb0
[ 1960.959603][T31982]  do_user_addr_fault+0x7a6/0x1370
[ 1960.959645][T31982]  ? rcu_is_watching+0x12/0xc0
[ 1960.959694][T31982]  exc_page_fault+0x5c/0xb0
[ 1960.959739][T31982]  asm_exc_page_fault+0x26/0x30
[ 1960.959767][T31982] RIP: 0010:rep_movs_alternative+0x4a/0x90
[ 1960.959805][T31982] Code: 10 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 e9 8f 10 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[ 1960.959834][T31982] RSP: 0018:ffffc9000f4e77d0 EFLAGS: 00050206
[ 1960.959857][T31982] RAX: 0000000000000001 RBX: 00000000000000c4 RCX: 00000000000000c4
[ 1960.959875][T31982] RDX: ffffed1010293769 RSI: 0000000000000000 RDI: ffff88808149ba80
[ 1960.959895][T31982] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed1010293768
[ 1960.959913][T31982] R10: ffff88808149bb43 R11: 0000000000000000 R12: ffffc9000f4e7d60
[ 1960.959933][T31982] R13: 00000000000000c4 R14: ffff88808149ba80 R15: 00007ffffffff000
[ 1960.959972][T31982]  _copy_from_iter+0x383/0x16f0
[ 1960.960027][T31982]  ? __alloc_skb+0x200/0x380
[ 1960.960080][T31982]  ? __pfx__copy_from_iter+0x10/0x10
[ 1960.960130][T31982]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[ 1960.960176][T31982]  netlink_sendmsg+0x829/0xdd0
[ 1960.960218][T31982]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1960.960269][T31982]  ____sys_sendmsg+0xa95/0xc70
[ 1960.960307][T31982]  ? copy_msghdr_from_user+0x10a/0x160
[ 1960.960354][T31982]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1960.960397][T31982]  ? __pfx__kstrtoull+0x10/0x10
[ 1960.960440][T31982]  ___sys_sendmsg+0x134/0x1d0
[ 1960.960490][T31982]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1960.960558][T31982]  ? find_held_lock+0x2b/0x80
[ 1960.960611][T31982]  __sys_sendmmsg+0x200/0x420
[ 1960.960663][T31982]  ? __pfx___sys_sendmmsg+0x10/0x10
[ 1960.960706][T31982]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1960.960755][T31982]  ? fput+0x70/0xf0
[ 1960.960795][T31982]  ? ksys_write+0x1ac/0x250
[ 1960.960836][T31982]  ? __pfx_ksys_write+0x10/0x10
[ 1960.960885][T31982]  __x64_sys_sendmmsg+0x9c/0x100
[ 1960.960912][T31982]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1960.960955][T31982]  do_syscall_64+0xcd/0x490
[ 1960.960984][T31982]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1960.961013][T31982] RIP: 0033:0x7f14ec58e929
[ 1960.961036][T31982] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1960.961069][T31982] RSP: 002b:00007f14ed346038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1960.961096][T31982] RAX: ffffffffffffffda RBX: 00007f14ec7b5fa0 RCX: 00007f14ec58e929
[ 1960.961116][T31982] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003
[ 1960.961134][T31982] RBP: 00007f14ed346090 R08: 0000000000000000 R09: 0000000000000000
[ 1960.961152][T31982] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1960.961170][T31982] R13: 0000000000000000 R14: 00007f14ec7b5fa0 R15: 00007ffc8da11388
[ 1960.961210][T31982]  </TASK>
[ 1962.593770][T31981] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1266
[ 1962.652433][T31993] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[ 1963.206676][T31976] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[ 1964.076712][T32008] netlink: 342 bytes leftover after parsing attributes in process `syz.4.5474'.
[ 1964.159122][T32011] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1267
[ 1964.839440][T32012] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1268
[ 1964.850917][T32021] Ignoring unsupported numa_zonelist_order value:  
[ 1964.850917][T32021] 
[ 1964.957977][T32022] FAULT_INJECTION: forcing a failure.
[ 1964.957977][T32022] name failslab, interval 1, probability 0, space 0, times 0
[ 1965.014965][T32022] CPU: 1 UID: 0 PID: 32022 Comm: syz.4.5475 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(full) 
[ 1965.015009][T32022] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1965.015028][T32022] Call Trace:
[ 1965.015039][T32022]  <TASK>
[ 1965.015054][T32022]  dump_stack_lvl+0x16c/0x1f0
[ 1965.015110][T32022]  should_fail_ex+0x512/0x640
[ 1965.015158][T32022]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[ 1965.015215][T32022]  should_failslab+0xc2/0x120
[ 1965.015248][T32022]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[ 1965.015295][T32022]  ? lockdep_init_map_type+0x5c/0x280
[ 1965.015337][T32022]  ? __d_alloc+0x31/0xaa0
[ 1965.015391][T32022]  __d_alloc+0x31/0xaa0
[ 1965.015444][T32022]  d_alloc_pseudo+0x1c/0xc0
[ 1965.015479][T32022]  alloc_file_pseudo+0xcf/0x230
[ 1965.015517][T32022]  ? __pfx_alloc_file_pseudo+0x10/0x10
[ 1965.015551][T32022]  ? alloc_fd+0x471/0x7d0
[ 1965.015598][T32022]  sock_alloc_file+0x50/0x210
[ 1965.015635][T32022]  __sys_socket+0x1c0/0x260
[ 1965.015674][T32022]  ? fput+0x70/0xf0
[ 1965.015699][T32022]  ? __pfx___sys_socket+0x10/0x10
[ 1965.015739][T32022]  ? xfd_validate_state+0x61/0x180
[ 1965.015778][T32022]  ? __pfx_ksys_write+0x10/0x10
[ 1965.015833][T32022]  __x64_sys_socket+0x72/0xb0
[ 1965.015883][T32022]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1965.015935][T32022]  do_syscall_64+0xcd/0x490
[ 1965.015967][T32022]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1965.016001][T32022] RIP: 0033:0x7fbb6738e929
[ 1965.016028][T32022] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1965.016071][T32022] RSP: 002b:00007fbb6815b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 1965.016101][T32022] RAX: ffffffffffffffda RBX: 00007fbb675b6080 RCX: 00007fbb6738e929
[ 1965.016121][T32022] RDX: 0000000000000004 RSI: 0000000000000002 RDI: 0000000000000010
[ 1965.016138][T32022] RBP: 00007fbb67410b39 R08: 0000000000000000 R09: 0000000000000000
[ 1965.016157][T32022] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1965.016174][T32022] R13: 0000000000000000 R14: 00007fbb675b6080 R15: 00007ffeab4e94b8
[ 1965.016211][T32022]  </TASK>
[ 1965.227749][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1965.248793][T32021] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5475'.
[ 1966.242470][T32033] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1269
[ 1966.684032][T32034] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1270
[ 1967.003894][T32039] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1271
[ 1967.643281][T32056] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[ 1967.882402][T32040] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1272
[ 1968.668707][T32070] FAULT_INJECTION: forcing a failure.
[ 1968.668707][T32070] name failslab, interval 1, probability 0, space 0, times 0
[ 1968.687662][T32070] CPU: 0 UID: 0 PID: 32070 Comm: syz.2.5484 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(full) 
[ 1968.687693][T32070] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1968.687707][T32070] Call Trace:
[ 1968.687715][T32070]  <TASK>
[ 1968.687723][T32070]  dump_stack_lvl+0x16c/0x1f0
[ 1968.687762][T32070]  should_fail_ex+0x512/0x640
[ 1968.687795][T32070]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1968.687830][T32070]  should_failslab+0xc2/0x120
[ 1968.687851][T32070]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1968.687882][T32070]  ? __proc_create+0xc3/0x8c0
[ 1968.687915][T32070]  ? __proc_create+0x2ce/0x8c0
[ 1968.687952][T32070]  __proc_create+0x2ce/0x8c0
[ 1968.687986][T32070]  ? __pfx___proc_create+0x10/0x10
[ 1968.688030][T32070]  _proc_mkdir+0xb9/0x200
[ 1968.688050][T32070]  ? __pfx__proc_mkdir+0x10/0x10
[ 1968.688069][T32070]  ? kmem_cache_alloc_noprof+0x21e/0x3b0
[ 1968.688107][T32070]  proc_net_ns_init+0x265/0x410
[ 1968.688128][T32070]  ? __pfx_proc_net_ns_init+0x10/0x10
[ 1968.688147][T32070]  ops_init+0x1df/0x5f0
[ 1968.688173][T32070]  setup_net+0x1ff/0x510
[ 1968.688193][T32070]  ? lockdep_init_map_type+0x5c/0x280
[ 1968.688223][T32070]  ? __pfx_setup_net+0x10/0x10
[ 1968.688247][T32070]  ? debug_mutex_init+0x37/0x70
[ 1968.688272][T32070]  copy_net_ns+0x2a6/0x5f0
[ 1968.688299][T32070]  create_new_namespaces+0x3ea/0xa90
[ 1968.688329][T32070]  unshare_nsproxy_namespaces+0xc0/0x1f0
[ 1968.688355][T32070]  ksys_unshare+0x45b/0xa40
[ 1968.688385][T32070]  ? __pfx_ksys_unshare+0x10/0x10
[ 1968.688413][T32070]  ? ksys_write+0x1ac/0x250
[ 1968.688470][T32070]  __x64_sys_unshare+0x31/0x40
[ 1968.688499][T32070]  do_syscall_64+0xcd/0x490
[ 1968.688528][T32070]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1968.688550][T32070] RIP: 0033:0x7f32bd18e929
[ 1968.688568][T32070] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1968.688589][T32070] RSP: 002b:00007f32bdf92038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1968.688610][T32070] RAX: ffffffffffffffda RBX: 00007f32bd3b6160 RCX: 00007f32bd18e929
[ 1968.688625][T32070] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 1968.688639][T32070] RBP: 00007f32bdf92090 R08: 0000000000000000 R09: 0000000000000000
[ 1968.688652][T32070] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1968.688666][T32070] R13: 0000000000000001 R14: 00007f32bd3b6160 R15: 00007ffcc2653318
[ 1968.688693][T32070]  </TASK>
[ 1970.876683][T32095] ubi: mtd0 is already attached to ubi0
[ 1971.671740][T32090] IPVS: length: 131 != 8
[ 1971.679006][T32090] ubi0: detaching mtd0
[ 1971.717757][T32090] ubi0: mtd0 is detached
[ 1972.312889][T32114] netlink: 342 bytes leftover after parsing attributes in process `syz.3.5494'.
[ 1975.724663][T32156] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1273
[ 1976.809239][T32158] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1274
[ 1977.461350][T32155] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1275
[ 1977.816423][T32167] ubi0: attaching mtd0
[ 1977.882733][T32167] ubi0: scanning is finished
[ 1977.953314][T32167] ubi0 error: ubi_read_volume_table: the layout volume was not found
[ 1978.022463][T32157] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1276
[ 1978.338774][T32167] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[ 1978.458957][T32165] IPVS: length: 131 != 8
[ 1978.694118][T32179] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1277
[ 1979.211421][T32186] FAULT_INJECTION: forcing a failure.
[ 1979.211421][T32186] name failslab, interval 1, probability 0, space 0, times 0
[ 1979.224551][T32186] CPU: 1 UID: 0 PID: 32186 Comm: syz.2.5505 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(full) 
[ 1979.224580][T32186] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1979.224594][T32186] Call Trace:
[ 1979.224601][T32186]  <TASK>
[ 1979.224609][T32186]  dump_stack_lvl+0x16c/0x1f0
[ 1979.224648][T32186]  should_fail_ex+0x512/0x640
[ 1979.224680][T32186]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[ 1979.224718][T32186]  should_failslab+0xc2/0x120
[ 1979.224738][T32186]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[ 1979.224771][T32186]  ? __alloc_skb+0x2b2/0x380
[ 1979.224808][T32186]  __alloc_skb+0x2b2/0x380
[ 1979.224840][T32186]  ? __pfx___alloc_skb+0x10/0x10
[ 1979.224894][T32186]  ? pppol2tp_sock_to_session+0x249/0x570
[ 1979.224928][T32186]  ? __pfx_pppol2tp_sock_to_session+0x10/0x10
[ 1979.224987][T32186]  sock_wmalloc+0xd4/0x120
[ 1979.225023][T32186]  pppol2tp_sendmsg+0x1a6/0x5f0
[ 1979.225064][T32186]  ____sys_sendmsg+0xa95/0xc70
[ 1979.225095][T32186]  ? copy_msghdr_from_user+0x10a/0x160
[ 1979.225134][T32186]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1979.225169][T32186]  ? __pfx__kstrtoull+0x10/0x10
[ 1979.225206][T32186]  ___sys_sendmsg+0x134/0x1d0
[ 1979.225253][T32186]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1979.225305][T32186]  ? find_held_lock+0x2b/0x80
[ 1979.225339][T32186]  ? proc_fail_nth_write+0x9f/0x250
[ 1979.225369][T32186]  ? find_held_lock+0x2b/0x80
[ 1979.225395][T32186]  __sys_sendmmsg+0x200/0x420
[ 1979.225421][T32186]  ? __pfx___sys_sendmmsg+0x10/0x10
[ 1979.225454][T32186]  ? find_held_lock+0x2b/0x80
[ 1979.225489][T32186]  ? ksys_write+0x1ac/0x250
[ 1979.225523][T32186]  ? __pfx_ksys_write+0x10/0x10
[ 1979.225562][T32186]  __x64_sys_sendmmsg+0x9c/0x100
[ 1979.225584][T32186]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1979.225621][T32186]  do_syscall_64+0xcd/0x490
[ 1979.225646][T32186]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1979.225671][T32186] RIP: 0033:0x7f32bd18e929
[ 1979.225690][T32186] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1979.225713][T32186] RSP: 002b:00007f32bdfb3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1979.225736][T32186] RAX: ffffffffffffffda RBX: 00007f32bd3b6080 RCX: 00007f32bd18e929
[ 1979.225752][T32186] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000003
[ 1979.225767][T32186] RBP: 00007f32bdfb3090 R08: 0000000000000000 R09: 0000000000000000
[ 1979.225782][T32186] R10: 0000000007000000 R11: 0000000000000246 R12: 0000000000000001
[ 1979.225798][T32186] R13: 0000000000000000 R14: 00007f32bd3b6080 R15: 00007ffcc2653318
[ 1979.225828][T32186]  </TASK>
[ 1979.828876][T32180] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1278
[ 1980.125005][T32174] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[ 1981.675272][T32204] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1279
[ 1982.391647][T32212] Ignoring unsupported numa_zonelist_order value:  
[ 1982.391647][T32212] 
[ 1982.498038][T32212] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5511'.
[ 1982.567711][T32205] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1280
[ 1986.741043][T30317] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1986.769770][T30317] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1986.784324][T30317] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1986.796006][T30317] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1986.807940][T30317] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1986.961548][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[ 1986.968433][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[ 1987.736656][T32244] chnl_net:caif_netlink_parms(): no params data found
[ 1988.278210][T32263] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1281
[ 1988.877975][T30317] Bluetooth: hci4: command tx timeout
[ 1988.977135][T32250] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[ 1989.085176][T32265] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1282
[ 1989.120120][T32244] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1989.173528][T32244] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1989.182069][T32244] bridge_slave_0: entered allmulticast mode
[ 1989.197587][T32244] bridge_slave_0: entered promiscuous mode
[ 1989.356256][T32244] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1989.447632][T32244] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1989.501545][T32244] bridge_slave_1: entered allmulticast mode
[ 1989.551653][T32244] bridge_slave_1: entered promiscuous mode
[ 1989.859203][T32276] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1283
[ 1990.063743][T32244] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1990.144458][T32244] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1990.363823][T32244] team0: Port device team_slave_0 added
[ 1990.393078][T32244] team0: Port device team_slave_1 added
[ 1990.579511][T32277] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input1284
[ 1990.588863][T32244] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1990.642557][T32244] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1990.720670][T32244] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1990.795689][T32244] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1990.845006][T32244] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1990.944518][T32244] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1990.958138][T30317] Bluetooth: hci4: command tx timeout
[ 1991.129274][T32244] hsr_slave_0: entered promiscuous mode
[ 1991.160878][T32244] hsr_slave_1: entered promiscuous mode
[ 1991.209038][T32244] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1991.230487][T32244] Cannot create hsr debugfs directory
[ 1992.031646][T32244] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1992.056255][T32244] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1992.098065][T32244] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1992.121728][T32244] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1992.403603][T32244] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1992.442299][T32244] 8021q: adding VLAN 0 to HW filter on device team0
[ 1992.459923][T27532] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1992.467136][T27532] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1992.519715][T27532] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1992.527012][T27532] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1993.048850][T30317] Bluetooth: hci4: command tx timeout
[ 1993.214824][T32244] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1993.974645][T32244] veth0_vlan: entered promiscuous mode
[ 1994.009614][T32244] veth1_vlan: entered promiscuous mode
[ 1994.078812][T32244] veth0_macvtap: entered promiscuous mode
[ 1994.123666][T32244] veth1_macvtap: entered promiscuous mode
[ 1994.179402][T32244] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1994.207369][T32244] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1994.240148][T32244] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1994.263517][T32244] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1994.281933][T32244] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1994.300342][T32244] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1994.581487][T27531] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1994.606764][T27531] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1994.714735][ T1149] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1994.726533][ T1149] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1995.118224][T30317] Bluetooth: hci4: command tx timeout
[ 2040.237715][T30317] Bluetooth: hci3: command 0x0406 tx timeout
[ 2048.409174][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[ 2048.416205][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[ 2109.842168][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[ 2109.855307][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[ 2111.917686][T30317] Bluetooth: hci4: command 0x0406 tx timeout
[ 2125.846723][   T32] INFO: task syz.1.5488:32089 blocked for more than 143 seconds.
[ 2125.867441][   T32]       Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0
[ 2125.875155][   T32] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2125.888058][   T32] task:syz.1.5488      state:D stack:28808 pid:32089 tgid:32084 ppid:27680  task_flags:0x400640 flags:0x00004004
[ 2125.904144][   T32] Call Trace:
[ 2125.907745][   T32]  <TASK>
[ 2125.912051][   T32]  __schedule+0x116a/0x5de0
[ 2125.916651][   T32]  ? __lock_acquire+0x622/0x1c90
[ 2125.922531][   T32]  ? __pfx___schedule+0x10/0x10
[ 2125.927740][   T32]  ? find_held_lock+0x2b/0x80
[ 2125.933868][   T32]  ? schedule+0x2d7/0x3a0
[ 2125.938715][   T32]  schedule+0xe7/0x3a0
[ 2125.942849][   T32]  schedule_timeout+0x257/0x290
[ 2125.957470][   T32]  ? __pfx_schedule_timeout+0x10/0x10
[ 2125.962937][   T32]  ? rcu_is_watching+0x12/0xc0
[ 2125.970405][   T32]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2125.975691][   T32]  __wait_for_common+0x2ff/0x4e0
[ 2125.981182][   T32]  ? __pfx_schedule_timeout+0x10/0x10
[ 2125.986621][   T32]  ? __pfx___wait_for_common+0x10/0x10
[ 2125.992535][   T32]  ? preempt_schedule_thunk+0x16/0x30
[ 2125.999200][   T32]  wait_for_completion_state+0x1c/0x40
[ 2126.004730][   T32]  do_coredump+0x8fa/0x4f10
[ 2126.009681][   T32]  ? lock_acquire+0x100/0x350
[ 2126.015812][   T32]  ? __pfx_do_coredump+0x10/0x10
[ 2126.021281][   T32]  ? find_held_lock+0x2b/0x80
[ 2126.026018][   T32]  ? is_bpf_text_address+0x8a/0x1a0
[ 2126.033146][   T32]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 2126.039706][   T32]  ? is_bpf_text_address+0x94/0x1a0
[ 2126.044993][   T32]  ? kernel_text_address+0x8d/0x100
[ 2126.056733][   T32]  ? __kernel_text_address+0xd/0x40
[ 2126.066108][   T32]  ? unwind_get_return_address+0x59/0xa0
[ 2126.073295][   T32]  ? arch_stack_walk+0xa6/0x100
[ 2126.079697][   T32]  ? stack_depot_save_flags+0x28/0xa40
[ 2126.085236][   T32]  ? __lock_acquire+0xb8a/0x1c90
[ 2126.091392][   T32]  ? kasan_save_stack+0x42/0x60
[ 2126.096314][   T32]  ? kasan_save_stack+0x33/0x60
[ 2126.102807][   T32]  ? kasan_save_track+0x14/0x30
[ 2126.108007][   T32]  ? kasan_save_free_info+0x3b/0x60
[ 2126.115273][   T32]  ? __kasan_slab_free+0x51/0x70
[ 2126.120712][   T32]  ? kmem_cache_free+0x2d1/0x4d0
[ 2126.125707][   T32]  ? __sigqueue_free+0xba/0x2a0
[ 2126.131001][   T32]  ? get_signal+0xcba/0x26d0
[ 2126.145918][   T32]  ? arch_do_signal_or_restart+0x8f/0x790
[ 2126.155799][   T32]  ? proc_coredump_connector+0x2d1/0x4f0
[ 2126.174666][   T32]  ? __pfx_proc_coredump_connector+0x10/0x10
[ 2126.183780][   T32]  ? rcu_is_watching+0x12/0xc0
[ 2126.190442][   T32]  get_signal+0x22e3/0x26d0
[ 2126.195059][   T32]  ? lockdep_hardirqs_on+0x7c/0x110
[ 2126.200825][   T32]  ? __pfx_get_signal+0x10/0x10
[ 2126.207225][   T32]  ? force_sig_info_to_task+0x3a0/0x660
[ 2126.218665][   T32]  arch_do_signal_or_restart+0x8f/0x790
[ 2126.224293][   T32]  ? __pfx_force_exit_sig+0x10/0x10
[ 2126.230106][   T32]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 2126.238917][   T32]  ? syscall_user_dispatch+0x120/0x140
[ 2126.244508][   T32]  exit_to_user_mode_loop+0x84/0x110
[ 2126.259837][   T32]  do_syscall_64+0x3f6/0x490
[ 2126.264500][   T32]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2126.281708][   T32] RIP: 0033:0x7f26a0f8e929
[ 2126.286201][   T32] RSP: 002b:00007f269edf60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 2126.307437][   T32] RAX: ffffffffffffffda RBX: 00007f26a11b6088 RCX: 00007f26a0f8e929
[ 2126.317101][   T32] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f26a11b608c
[ 2126.327929][   T32] RBP: 00007f26a11b6080 R08: 00007f26a1d2b000 R09: 0000000000000000
[ 2126.335971][   T32] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f26a11b608c
[ 2126.345602][   T32] R13: 0000000000000000 R14: 00007ffccad753c0 R15: 00007ffccad754a8
[ 2126.353763][   T32]  </TASK>
[ 2126.366930][   T32] 
[ 2126.366930][   T32] Showing all locks held in the system:
[ 2126.375041][   T32] 1 lock held by khungtaskd/32:
[ 2126.380350][   T32]  #0: ffffffff8e3c46c0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x36/0x1c0
[ 2126.390724][   T32] 2 locks held by kworker/u9:0/51:
[ 2126.395881][   T32]  #0: ffff888026a42948 ((wq_completion)nbd2-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2126.410618][   T32]  #1: ffffc90000bb7d10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2126.424425][   T32] 5 locks held by kworker/u8:5/1149:
[ 2126.430947][   T32]  #0: ffff8880b843bdd8 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x29/0x130
[ 2126.441990][   T32]  #1: ffffc90003f5fd10 ((work_completion)(&rdev->wiphy_work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2126.461879][   T32]  #2: ffff888025578768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: cfg80211_wiphy_work+0x99/0x550
[ 2126.475452][   T32]  #3: ffffffff8e3c46c0 (rcu_read_lock){....}-{1:3}, at: ieee80211_sta_active_ibss+0xdc/0x420
[ 2126.489437][   T32]  #4: ffffffff9ae44690 (&obj_hash[i].lock){-.-.}-{2:2}, at: debug_object_activate+0x14c/0x4c0
[ 2126.500224][   T32] 2 locks held by kworker/u9:1/5155:
[ 2126.505629][   T32]  #0: ffff8880269df948 ((wq_completion)nbd4-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2126.532662][   T32]  #1: ffffc9000f92fd10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2126.546331][   T32] 2 locks held by kworker/u9:2/5839:
[ 2126.564222][   T32]  #0: ffff8880269d9148 ((wq_completion)nbd1-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2126.585475][   T32]  #1: ffffc9000447fd10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2126.606481][   T32] 2 locks held by kworker/u9:3/5841:
[ 2126.611928][   T32]  #0: ffff888026ace148 ((wq_completion)nbd6-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2126.624014][   T32]  #1: ffffc9000449fd10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2126.638455][   T32] 2 locks held by kworker/u9:4/5848:
[ 2126.643855][   T32]  #0: ffff888026a57948 ((wq_completion)nbd5-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2126.655505][   T32]  #1: ffffc900044efd10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2126.667149][   T32] 2 locks held by kworker/u9:5/5850:
[ 2126.672883][   T32]  #0: ffff888026c1c948 ((wq_completion)nbd7-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2126.684094][   T32]  #1: ffffc9000450fd10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2126.695769][   T32] 2 locks held by kworker/u9:6/5851:
[ 2126.702452][   T32]  #0: ffff888026a51148 ((wq_completion)nbd3-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2126.713655][   T32]  #1: ffffc9000451fd10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2126.725622][   T32] 2 locks held by kworker/u9:7/5852:
[ 2126.732458][   T32]  #0: ffff888026a34148 ((wq_completion)nbd0-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2126.743614][   T32]  #1: ffffc9000493fd10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2126.758145][   T32] 2 locks held by kworker/u9:8/5853:
[ 2126.763564][   T32]  #0: ffff888035ec1948 ((wq_completion)nbd47-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2126.775029][   T32]  #1: ffffc9000494fd10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2126.786625][   T32] 2 locks held by kworker/u9:9/6401:
[ 2126.792301][   T32]  #0: ffff888026e4b148 ((wq_completion)nbd13-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2126.803533][   T32]  #1: ffffc90003d9fd10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2126.816562][   T32] 2 locks held by kworker/u9:10/6424:
[ 2126.823198][   T32]  #0: ffff888026d29948 ((wq_completion)nbd9-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2126.844821][   T32]  #1: ffffc90003cbfd10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2126.860319][   T32] 2 locks held by kworker/u9:11/6438:
[ 2126.865880][   T32]  #0: ffff888026d06148 ((wq_completion)nbd10-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2126.877264][   T32]  #1: ffffc90003d0fd10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2126.888968][   T32] 2 locks held by kworker/u9:12/6466:
[ 2126.894438][   T32]  #0: ffff888026d50148 ((wq_completion)nbd11-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2126.905890][   T32]  #1: ffffc90003807d10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2126.917755][   T32] 2 locks held by kworker/u9:13/6497:
[ 2126.923583][   T32]  #0: ffff888026d24948 ((wq_completion)nbd12-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2126.936354][   T32]  #1: ffffc90003447d10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2126.948056][   T32] 2 locks held by kworker/u9:14/6651:
[ 2126.954668][   T32]  #0: ffff888026e51948 ((wq_completion)nbd14-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2126.966730][   T32]  #1: ffffc9000b987d10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2126.980530][   T32] 2 locks held by kworker/u9:15/6665:
[ 2126.986026][   T32]  #0: ffff888063a86948 ((wq_completion)nbd19-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2127.007277][   T32]  #1: ffffc9000b9d7d10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2127.021430][   T32] 2 locks held by kworker/u9:16/6690:
[ 2127.032882][   T32]  #0: ffff888026f40148 ((wq_completion)nbd15-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2127.057748][   T32]  #1: ffffc9000ba27d10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2127.069727][   T32] 2 locks held by kworker/u9:17/6748:
[ 2127.075186][   T32]  #0: ffff88807d213948 ((wq_completion)nbd16-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2127.086700][   T32]  #1: ffffc9000bc77d10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2127.099428][   T32] 2 locks held by kworker/u9:18/6839:
[ 2127.104847][   T32]  #0: ffff888024d55148 ((wq_completion)nbd17-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2127.116287][   T32]  #1: ffffc9000be47d10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2127.135469][   T32] 2 locks held by kworker/u9:19/6893:
[ 2127.161862][   T32]  #0: ffff8880590bd148 ((wq_completion)nbd18-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2127.177492][   T32]  #1: ffffc9000de8fd10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2127.188880][   T32] 2 locks held by kworker/u9:20/7019:
[ 2127.194369][   T32]  #0: ffff888033a09948 ((wq_completion)nbd27-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2127.205823][   T32]  #1: ffffc90018637d10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2127.217243][   T32] 2 locks held by kworker/u9:21/7022:
[ 2127.222839][   T32]  #0: ffff88807c3cc148 ((wq_completion)nbd20-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2127.234735][   T32]  #1: ffffc900185d7d10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2127.255207][   T32] 2 locks held by kworker/u9:22/7085:
[ 2127.267623][   T32]  #0: ffff8880564aa948 ((wq_completion)nbd21-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2127.288584][   T32]  #1: ffffc9001881fd10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2127.307463][   T32] 2 locks held by kworker/u9:23/7145:
[ 2127.312900][   T32]  #0: ffff888059090948 ((wq_completion)nbd22-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2127.324645][   T32]  #1: ffffc90018b37d10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2127.344354][   T32] 2 locks held by kworker/u9:24/7190:
[ 2127.351395][   T32]  #0: ffff88805bba1148 ((wq_completion)nbd23-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2127.380820][   T32]  #1: ffffc90018a17d10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2127.397424][   T32] 2 locks held by kworker/R-nbd24/7219:
[ 2127.403022][   T32]  #0: ffff888079fb2148 ((wq_completion)nbd24-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2127.424697][   T32]  #1: ffffc90018e1fca8 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2127.446556][   T32] 2 locks held by kworker/u9:25/7224:
[ 2127.453098][   T32]  #0: ffff888036283948 ((wq_completion)nbd25-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2127.468876][   T32]  #1: ffffc90018eb7d10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2127.481408][   T32] 2 locks held by kworker/u9:26/7331:
[ 2127.486830][   T32]  #0: ffff888029b66148 ((wq_completion)nbd30-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2127.497897][   T32]  #1: ffffc90019177d10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2127.526007][   T32] 2 locks held by kworker/u9:27/7397:
[ 2127.535382][   T32]  #0: ffff888026055148 ((wq_completion)nbd32-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2127.546553][   T32]  #1: ffffc900195efd10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2127.559624][   T32] 2 locks held by kworker/u9:28/7419:
[ 2127.565061][   T32]  #0: ffff888058ff0948 ((wq_completion)nbd26-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2127.579037][   T32]  #1: ffffc9001bf37d10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2127.590457][   T32] 2 locks held by kworker/u9:29/7420:
[ 2127.595897][   T32]  #0: ffff88802d632948 ((wq_completion)nbd31-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2127.618254][   T32]  #1: ffffc9001bf47d10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2127.637491][   T32] 2 locks held by kworker/u9:30/7509:
[ 2127.642924][   T32]  #0: ffff8880346f7148 ((wq_completion)nbd29-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2127.664486][   T32]  #1: ffffc9001c2d7d10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2127.679036][   T32] 2 locks held by kworker/u9:31/7510:
[ 2127.684473][   T32]  #0: ffff88807c330148 ((wq_completion)nbd36-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2127.696638][   T32]  #1: ffffc9001c2e7d10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2127.708050][   T32] 2 locks held by kworker/u9:32/7511:
[ 2127.713499][   T32]  #0: ffff888027cce148 ((wq_completion)nbd33-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2127.724478][   T32]  #1: ffffc9001c2f7d10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2127.735807][   T32] 2 locks held by kworker/u9:33/7512:
[ 2127.741791][   T32]  #0: ffff888057956148 ((wq_completion)nbd28-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2127.754654][   T32]  #1: ffffc9001c307d10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2127.766076][   T32] 2 locks held by kworker/u9:34/7548:
[ 2127.773566][   T32]  #0: ffff8880271dc948 ((wq_completion)nbd34-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2127.784572][   T32]  #1: ffffc9001c057d10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2127.795933][   T32] 2 locks held by kworker/u9:35/8128:
[ 2127.809856][   T32]  #0: ffff88807f9cb148 ((wq_completion)nbd35-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2127.832744][   T32]  #1: ffffc900185b7d10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2127.846350][   T32] 2 locks held by kworker/u9:36/8228:
[ 2127.852310][   T32]  #0: ffff88805911f148 ((wq_completion)nbd42-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2127.864919][   T32]  #1: ffffc9000c877d10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2127.877938][   T32] 2 locks held by kworker/u9:37/8438:
[ 2127.883441][   T32]  #0: ffff888052a8d148 ((wq_completion)nbd37-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2127.894936][   T32]  #1: ffffc9000f27fd10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2127.906704][   T32] 2 locks held by kworker/u9:38/8629:
[ 2127.912565][   T32]  #0: ffff888029ca4148 ((wq_completion)nbd38-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2127.924246][   T32]  #1: ffffc90004d57d10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2127.938279][   T32] 2 locks held by kworker/u9:39/8707:
[ 2127.945296][   T32]  #0: ffff88807f910148 ((wq_completion)nbd39-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2127.960825][   T32]  #1: ffffc9000bde7d10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2127.972516][   T32] 2 locks held by kworker/u9:40/8714:
[ 2127.980369][   T32]  #0: ffff888030fa0948 ((wq_completion)nbd41-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2127.991642][   T32]  #1: ffffc9000415fd10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2128.003713][   T32] 2 locks held by kworker/u9:41/8940:
[ 2128.009489][   T32]  #0: ffff888058a38148 ((wq_completion)nbd40-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2128.025384][   T32]  #1: ffffc90003acfd10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2128.052505][   T32] 2 locks held by kworker/u9:42/9304:
[ 2128.068796][   T32]  #0: ffff88807b65e148 ((wq_completion)nbd43-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2128.082748][   T32]  #1: ffffc90003127d10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2128.094475][   T32] 2 locks held by kworker/u9:43/9505:
[ 2128.100332][   T32]  #0: ffff888079c49948 ((wq_completion)nbd56-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2128.111642][   T32]  #1: ffffc9000b107d10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2128.123310][   T32] 2 locks held by kworker/u9:44/9522:
[ 2128.132139][   T32]  #0: ffff888029fbd148 ((wq_completion)nbd44-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2128.143439][   T32]  #1: ffffc9000b967d10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2128.158833][   T32] 2 locks held by kworker/u9:45/10039:
[ 2128.166297][   T32]  #0: ffff88806aa93148 ((wq_completion)nbd45-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2128.190224][   T32]  #1: ffffc90003ddfd10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2128.202117][   T32] 2 locks held by kworker/u9:46/10145:
[ 2128.208076][   T32]  #0: ffff88805fdad148 ((wq_completion)nbd46-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2128.219328][   T32]  #1: ffffc900039ffd10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2128.231811][   T32] 2 locks held by kworker/u9:47/10986:
[ 2128.237634][   T32]  #0: ffff888032cd2148 ((wq_completion)nbd75-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2128.252091][   T32]  #1: ffffc900041efd10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2128.264957][   T32] 2 locks held by kworker/u9:48/11284:
[ 2128.280290][   T32]  #0: ffff8880250ea948 ((wq_completion)nbd48-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2128.295264][   T32]  #1: ffffc9000b197d10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2128.311757][   T32] 2 locks held by kworker/u9:49/11431:
[ 2128.322448][   T32]  #0: ffff8880631e1948 ((wq_completion)nbd49-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2128.339013][   T32]  #1: ffffc9000be77d10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2128.358384][   T32] 2 locks held by kworker/u9:50/11444:
[ 2128.364061][   T32]  #0: ffff888034eda148 ((wq_completion)nbd50-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2128.379559][   T32]  #1: ffffc9000bf77d10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2128.393010][   T32] 2 locks held by kworker/u9:51/12445:
[ 2128.401484][   T32]  #0: ffff888057b8c148 ((wq_completion)nbd51-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2128.412839][   T32]  #1: ffffc90003ccfd10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2128.434112][   T32] 2 locks held by kworker/u9:52/12634:
[ 2128.443657][   T32]  #0: ffff88807b5ce948 ((wq_completion)nbd52-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2128.462897][   T32]  #1: ffffc90011a07d10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2128.484773][   T32] 2 locks held by kworker/u9:53/12652:
[ 2128.494039][   T32]  #0: ffff888029a05948 ((wq_completion)nbd53-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2128.515054][   T32]  #1: ffffc90011a77d10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2128.526758][   T32] 2 locks held by kworker/u9:54/12822:
[ 2128.532710][   T32]  #0: ffff88807f693148 ((wq_completion)nbd54-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2128.543800][   T32]  #1: ffffc900124ffd10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2128.555272][   T32] 2 locks held by kworker/u9:55/12870:
[ 2128.562579][   T32]  #0: ffff888025c25148 ((wq_completion)nbd55-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2128.584036][   T32]  #1: ffffc90012cffd10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2128.605661][   T32] 2 locks held by kworker/u9:56/12921:
[ 2128.624332][   T32]  #0: ffff88807ced6948 ((wq_completion)nbd58-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2128.640999][   T32]  #1: ffffc90013c7fd10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2128.664284][   T32] 2 locks held by kworker/u9:57/12933:
[ 2128.670300][   T32]  #0: ffff88805bb2a148 ((wq_completion)nbd57-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2128.683543][   T32]  #1: ffffc9001136fd10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2128.696434][   T32] 2 locks held by kworker/u9:58/13169:
[ 2128.702072][   T32]  #0: ffff88805911a148 ((wq_completion)nbd59-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2128.713204][   T32]  #1: ffffc9000be37d10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2128.726466][   T32] 2 locks held by kworker/u9:59/13258:
[ 2128.732153][   T32]  #0: ffff888063a7e148 ((wq_completion)nbd63-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2128.743333][   T32]  #1: ffffc9000b907d10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2128.754811][   T32] 2 locks held by kworker/u9:60/13278:
[ 2128.760496][   T32]  #0: ffff888026053148 ((wq_completion)nbd60-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2128.772768][   T32]  #1: ffffc9000bd37d10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2128.785726][   T32] 2 locks held by kworker/u9:61/13306:
[ 2128.791423][   T32]  #0: ffff888063888948 ((wq_completion)nbd62-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2128.822186][   T32]  #1: ffffc9000b047d10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2128.836952][   T32] 2 locks held by kworker/u9:62/13357:
[ 2128.842778][   T32]  #0: ffff88807f202148 ((wq_completion)nbd61-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2128.853934][   T32]  #1: ffffc90004db7d10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2128.866691][   T32] 2 locks held by kworker/u9:63/13556:
[ 2128.872341][   T32]  #0: ffff888052791948 ((wq_completion)nbd69-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2128.885063][   T32]  #1: ffffc90003b1fd10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2128.896457][   T32] 2 locks held by kworker/u9:64/13557:
[ 2128.905864][   T32]  #0: ffff88805991f948 ((wq_completion)nbd64-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2128.917724][   T32]  #1: ffffc90003b2fd10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2128.931558][   T32] 2 locks held by kworker/u9:65/13669:
[ 2128.937139][   T32]  #0: ffff8880314d2148 ((wq_completion)nbd65-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2128.950051][   T32]  #1: ffffc9001122fd10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2128.961891][   T32] 2 locks held by kworker/u9:66/13876:
[ 2128.971128][   T32]  #0: ffff888035978948 ((wq_completion)nbd66-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2128.985336][   T32]  #1: ffffc90011c97d10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2128.997140][   T32] 2 locks held by kworker/u9:67/13882:
[ 2129.005582][   T32]  #0: ffff88805bb5c148 ((wq_completion)nbd67-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2129.019228][   T32]  #1: ffffc90011cd7d10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2129.041571][   T32] 2 locks held by kworker/u9:68/13951:
[ 2129.047180][   T32]  #0: ffff88807f9cb948 ((wq_completion)nbd68-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2129.064121][   T32]  #1: ffffc90012197d10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2129.076857][   T32] 2 locks held by kworker/u9:69/14074:
[ 2129.085738][   T32]  #0: ffff88807d06e948 ((wq_completion)nbd72-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2129.097042][   T32]  #1: ffffc90000107d10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2129.110256][   T32] 2 locks held by kworker/u9:70/14342:
[ 2129.116058][   T32]  #0: ffff88802dc6b948 ((wq_completion)nbd70-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2129.127717][   T32]  #1: ffffc90013d07d10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2129.139350][   T32] 2 locks held by kworker/u9:71/14352:
[ 2129.144932][   T32]  #0: ffff88807ebd2948 ((wq_completion)nbd71-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2129.157283][   T32]  #1: ffffc9001461fd10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2129.183659][   T32] 2 locks held by kworker/u9:72/14416:
[ 2129.204033][   T32]  #0: ffff8880599a4948 ((wq_completion)nbd74-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2129.217741][   T32]  #1: ffffc9001474fd10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2129.230054][   T32] 2 locks held by kworker/u9:73/14952:
[ 2129.235555][   T32]  #0: ffff88805a589148 ((wq_completion)nbd73-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2129.246529][   T32]  #1: ffffc9001239fd10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2129.258086][   T32] 2 locks held by kworker/u9:74/16415:
[ 2129.263584][   T32]  #0: ffff88804f474148 ((wq_completion)nbd80-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2129.277166][   T32]  #1: ffffc9001255fd10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2129.293568][   T32] 2 locks held by kworker/u9:75/21962:
[ 2129.313151][   T32]  #0: ffff888069813148 ((wq_completion)nbd76-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2129.334295][   T32]  #1: ffffc9000b5f7d10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2129.357105][   T32] 2 locks held by kworker/u9:76/22018:
[ 2129.363744][   T32]  #0: ffff888030bbb148 ((wq_completion)nbd77-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2129.378915][   T32]  #1: ffffc90004aafd10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2129.392693][   T32] 2 locks held by kworker/u9:77/22638:
[ 2129.398644][   T32]  #0: ffff888049495148 ((wq_completion)nbd78-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2129.422053][   T32]  #1: ffffc90003f2fd10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2129.446146][   T32] 2 locks held by kworker/u9:78/23123:
[ 2129.452068][   T32]  #0: ffff88803e7e4148 ((wq_completion)nbd79-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2129.474889][   T32]  #1: ffffc900042bfd10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2129.488153][   T32] 2 locks held by kworker/u9:79/23390:
[ 2129.501353][   T32]  #0: ffff888058a56948 ((wq_completion)nbd81-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2129.515270][   T32]  #1: ffffc9000ba17d10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2129.546689][   T32] 2 locks held by kworker/u9:81/24300:
[ 2129.554041][   T32]  #0: ffff888036b26148 ((wq_completion)nbd82-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2129.567500][   T32]  #1: ffffc90003027d10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2129.583248][   T32] 3 locks held by kworker/u8:16/27537:
[ 2129.588847][   T32] 2 locks held by kworker/u9:83/27681:
[ 2129.594343][   T32]  #0: ffff88805823f148 ((wq_completion)nbd84-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2129.607896][   T32]  #1: ffffc9000be97d10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2129.620162][   T32] 2 locks held by kworker/u9:84/29660:
[ 2129.625674][   T32]  #0: ffff888024fe7948 ((wq_completion)nbd83-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 2129.636788][   T32]  #1: ffffc9000c7e7d10 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 2129.648216][   T32] 2 locks held by getty/31619:
[ 2129.653048][   T32]  #0: ffff888036aaa0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80
[ 2129.675473][   T32]  #1: ffffc900025e72f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x41b/0x14f0
[ 2129.688414][   T32] 1 lock held by syz.1.5488/32085:
[ 2129.693642][   T32] 
[ 2129.695998][   T32] =============================================
[ 2129.695998][   T32] 
[ 2129.706511][   T32] NMI backtrace for cpu 1
[ 2129.706532][   T32] CPU: 1 UID: 0 PID: 32 Comm: khungtaskd Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(full) 
[ 2129.706566][   T32] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 2129.706589][   T32] Call Trace:
[ 2129.706598][   T32]  <TASK>
[ 2129.706609][   T32]  dump_stack_lvl+0x116/0x1f0
[ 2129.706657][   T32]  nmi_cpu_backtrace+0x27b/0x390
[ 2129.706694][   T32]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 2129.706732][   T32]  nmi_trigger_cpumask_backtrace+0x29c/0x300
[ 2129.706773][   T32]  watchdog+0xf70/0x12c0
[ 2129.706820][   T32]  ? __pfx_watchdog+0x10/0x10
[ 2129.706859][   T32]  ? lockdep_hardirqs_on+0x7c/0x110
[ 2129.706903][   T32]  ? __kthread_parkme+0x19e/0x250
[ 2129.706938][   T32]  ? __pfx_watchdog+0x10/0x10
[ 2129.706979][   T32]  kthread+0x3c2/0x780
[ 2129.707018][   T32]  ? __pfx_kthread+0x10/0x10
[ 2129.707059][   T32]  ? rcu_is_watching+0x12/0xc0
[ 2129.707087][   T32]  ? __pfx_kthread+0x10/0x10
[ 2129.707127][   T32]  ret_from_fork+0x5d4/0x6f0
[ 2129.707162][   T32]  ? __pfx_kthread+0x10/0x10
[ 2129.707201][   T32]  ret_from_fork_asm+0x1a/0x30
[ 2129.707247][   T32]  </TASK>
[ 2129.707258][   T32] Sending NMI from CPU 1 to CPUs 0:
[ 2129.830177][    C0] NMI backtrace for cpu 0
[ 2129.830202][    C0] CPU: 0 UID: 0 PID: 32085 Comm: syz.1.5488 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(full) 
[ 2129.830237][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 2129.830253][    C0] RIP: 0010:sha256_transform_rorx+0xe5b/0x1120
[ 2129.830296][    C0] Code: 41 21 c4 45 01 ef 44 01 cb 44 09 e6 45 01 f1 44 01 fb 45 01 f9 41 89 cf c4 63 7b f0 eb 19 c4 63 7b f0 f3 0b 45 31 c7 45 31 f5 <c4> 63 7b f0 f3 06 41 21 df 41 01 f1 45 31 f5 c4 43 7b f0 e1 0d 45
[ 2129.830323][    C0] RSP: 0018:ffffc9000e257160 EFLAGS: 00000202
[ 2129.830344][    C0] RAX: 000000004ac1b702 RBX: 00000000507fb0fb RCX: 00000000c5f3b021
[ 2129.830362][    C0] RDX: 00000000e51ed650 RSI: 000000007859bd12 RDI: 0000000000000080
[ 2129.830380][    C0] RBP: ffffc9000e257378 R08: 00000000544a9a07 R09: 000000003ff009fb
[ 2129.830397][    C0] R10: 000000007c39ecb3 R11: 00000000f059bd1a R12: 000000004801a402
[ 2129.830413][    C0] R13: 0000000020b2725e R14: 000000001f6a0ff6 R15: 0000000091b92a26
[ 2129.830431][    C0] FS:  00007f26a1d2a6c0(0000) GS:ffff888124962000(0000) knlGS:0000000000000000
[ 2129.830456][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2129.830474][    C0] CR2: 000055973bd00168 CR3: 000000005f48c000 CR4: 00000000003526f0
[ 2129.830491][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 2129.830507][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 2129.830524][    C0] Call Trace:
[ 2129.830532][    C0]  <TASK>
[ 2129.830577][    C0]  sha256_blocks_simd+0x35/0x60
[ 2129.830613][    C0]  crypto_sha256_update_arch+0x53/0x70
[ 2129.830649][    C0]  crypto_shash_finup+0x459/0x6d0
[ 2129.830686][    C0]  ima_calc_file_hash_tfm+0x294/0x350
[ 2129.830730][    C0]  ? __pfx_ima_calc_file_hash_tfm+0x10/0x10
[ 2129.830795][    C0]  ? stack_trace_save+0x8e/0xc0
[ 2129.830832][    C0]  ? ima_alloc_tfm+0x21a/0x2e0
[ 2129.830870][    C0]  ? generic_fillattr+0x6bf/0x940
[ 2129.830897][    C0]  ima_calc_file_hash+0x1ba/0x490
[ 2129.830924][    C0]  ima_collect_measurement+0x897/0xa40
[ 2129.830955][    C0]  ? __pfx_ima_collect_measurement+0x10/0x10
[ 2129.830995][    C0]  ? __mutex_lock+0x1ca/0xb90
[ 2129.831032][    C0]  ? is_bad_inode+0xd/0x40
[ 2129.831062][    C0]  ? xattr_resolve_name+0x27b/0x3f0
[ 2129.831099][    C0]  ? vfs_getxattr_alloc+0xec/0x340
[ 2129.831138][    C0]  ? ima_get_hash_algo+0x27c/0x400
[ 2129.831175][    C0]  ? __pfx_ima_get_hash_algo+0x10/0x10
[ 2129.831214][    C0]  ? process_measurement+0x11fa/0x23e0
[ 2129.831253][    C0]  process_measurement+0x11fa/0x23e0
[ 2129.831298][    C0]  ? __pfx_process_measurement+0x10/0x10
[ 2129.831341][    C0]  ? alloc_empty_file+0x73/0x1e0
[ 2129.831367][    C0]  ? hugetlb_file_setup+0x4cd/0x620
[ 2129.831395][    C0]  ? ksys_mmap_pgoff+0x189/0x5c0
[ 2129.831421][    C0]  ? __x64_sys_mmap+0x125/0x190
[ 2129.831484][    C0]  ima_file_mmap+0x1b1/0x1d0
[ 2129.831522][    C0]  ? __pfx_ima_file_mmap+0x10/0x10
[ 2129.831567][    C0]  security_mmap_file+0x88c/0x990
[ 2129.831602][    C0]  vm_mmap_pgoff+0xec/0x450
[ 2129.831629][    C0]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 2129.831652][    C0]  ? __pfx_alloc_file_pseudo+0x10/0x10
[ 2129.831681][    C0]  ? hugetlbfs_get_inode+0x31f/0x730
[ 2129.831712][    C0]  ksys_mmap_pgoff+0x1c8/0x5c0
[ 2129.831742][    C0]  __x64_sys_mmap+0x125/0x190
[ 2129.831779][    C0]  do_syscall_64+0xcd/0x490
[ 2129.831805][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2129.831840][    C0] RIP: 0033:0x7f26a0f8e929
[ 2129.831871][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2129.831896][    C0] RSP: 002b:00007f26a1d2a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 2129.831918][    C0] RAX: ffffffffffffffda RBX: 00007f26a11b5fa0 RCX: 00007f26a0f8e929
[ 2129.831935][    C0] RDX: 0000000001000005 RSI: 0080000000004005 RDI: 0000000000000000
[ 2129.831951][    C0] RBP: 00007f26a1010b39 R08: 0000000000000401 R09: 0000300000000000
[ 2129.831967][    C0] R10: 0000000000040eb2 R11: 0000000000000246 R12: 0000000000000000
[ 2129.831983][    C0] R13: 0000000000000001 R14: 00007f26a11b5fa0 R15: 00007ffccad754a8
[ 2129.832008][    C0]  </TASK>
[ 2129.833635][   T32] Kernel panic - not syncing: hung_task: blocked tasks
[ 2130.238361][   T32] CPU: 1 UID: 0 PID: 32 Comm: khungtaskd Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(full) 
[ 2130.250190][   T32] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 2130.260260][   T32] Call Trace:
[ 2130.263555][   T32]  <TASK>
[ 2130.266502][   T32]  dump_stack_lvl+0x3d/0x1f0
[ 2130.271150][   T32]  panic+0x71c/0x800
[ 2130.275071][   T32]  ? __pfx___irq_work_queue_local+0x10/0x10
[ 2130.281039][   T32]  ? __pfx_panic+0x10/0x10
[ 2130.285491][   T32]  ? preempt_schedule_thunk+0x16/0x30
[ 2130.290894][   T32]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 2130.296897][   T32]  ? preempt_schedule_thunk+0x16/0x30
[ 2130.302300][   T32]  ? watchdog+0xdda/0x12c0
[ 2130.306754][   T32]  ? watchdog+0xdcd/0x12c0
[ 2130.311207][   T32]  watchdog+0xdeb/0x12c0
[ 2130.315500][   T32]  ? __pfx_watchdog+0x10/0x10
[ 2130.320220][   T32]  ? lockdep_hardirqs_on+0x7c/0x110
[ 2130.325474][   T32]  ? __kthread_parkme+0x19e/0x250
[ 2130.330545][   T32]  ? __pfx_watchdog+0x10/0x10
[ 2130.335267][   T32]  kthread+0x3c2/0x780
[ 2130.339383][   T32]  ? __pfx_kthread+0x10/0x10
[ 2130.344031][   T32]  ? rcu_is_watching+0x12/0xc0
[ 2130.348858][   T32]  ? __pfx_kthread+0x10/0x10
[ 2130.353506][   T32]  ret_from_fork+0x5d4/0x6f0
[ 2130.358128][   T32]  ? __pfx_kthread+0x10/0x10
[ 2130.362755][   T32]  ret_from_fork_asm+0x1a/0x30
[ 2130.367562][   T32]  </TASK>
[ 2130.370924][   T32] Kernel Offset: disabled
[ 2130.375298][   T32] Rebooting in 86400 seconds..