last executing test programs:

4m45.637052034s ago: executing program 3 (id=104):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
socket(0x2, 0x80002, 0x73) (async)
socket(0xa, 0x5, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xae00, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) (async)
socketpair$auto(0x1, 0x3, 0x5, 0x0) (async)
ioctl$auto(0x3, 0xc048aec8, r0) (async)
mmap$auto(0x0, 0x9a, 0x4, 0xeb1, 0x401, 0x8000) (async)
socket(0x10, 0x80000, 0x2) (async)
symlink$auto(&(0x7f0000000140)='./file0/file0\x00', &(0x7f0000001200)='./file0\x00') (async)
lseek$auto(0x3, 0x7ffffffffffffffd, 0x2)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
madvise$auto(0x0, 0xffffffffffff0005, 0x19) (async)
mremap$auto(0x0, 0x7, 0x3fd6, 0x3, 0x20000000)
mmap$auto(0x0, 0x2020009, 0x2, 0xf8, 0xfffffffffffffffa, 0x8000) (async)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0xb8, 0x100000000, 0x5, 0x1b, 0x93c, 0x1ffdc, 0x7, 0x2000000000000006, 0x2, 0x9, 0x5, 0x2, 0x8001, 0xae, 0x9, 0x922, 0x7, 0x5, 0x5, 0x3, 0xfffffffe, 0x0, 0x200, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000000000, 0x0, 0x8000000000000000, 0x0, 0x10]}, 0x1fe, 0x81)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xdc5e}, 0x800}, 0x7, 0x4008) (async)
pread64$auto(0xffffffffffffffff, 0x0, 0x3, 0x5) (async)
mmap$auto(0x0, 0xe, 0xdf, 0xeb1, 0xffffffffffffffff, 0x0)
open(0x0, 0x60842, 0x208) (async)
mount$auto(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='\xf6@\xdb\x18\x0f', 0x200, &(0x7f0000000000)="2aaea12a15a8ebc702717c5d7d") (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8) (async)
madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async)
prctl$auto(0x5, 0x1, 0x4, 0x3, 0x9) (async)
sendmsg$auto_BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x9800) (async)
statmount$auto(0x0, &(0x7f0000000180)={0x770, 0x1, 0x201, 0x1, 0x5, 0x3, 0x3ffde, 0x400, 0x3, 0x9, 0x6, 0x80004, 0x4, 0x11ffffffffffd, 0xb2, 0x2, 0x9, 0x10, 0x80, 0x80000002a0, 0x0, 0x1, 0x1, 0x202, 0x9, 0xbca7, 0x4, 0x0, 0x0, 0x0, 0x0, [0x0, 0x6, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x2, 0x0, 0x0, 0x0, 0x7fffffff, 0xffffffffffffffff, 0x0, 0x9, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000000000, 0x0, 0x200, 0x0, 0x10000, 0x0, 0x9, 0x4, 0xe17, 0x0, 0x6]}, 0x1fe, 0x1)

4m44.738467958s ago: executing program 3 (id=107):
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000)
r0 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/pcmC0D0c\x00', 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x20000000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL802154_CMD_SET_PAN_ID(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)={0x14, 0x0, 0x1, 0x70bd27, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x4088}, 0x20000050)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c00000014"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
ioctl$auto_SNDRV_PCM_IOCTL_FORWARD2(r0, 0x40084149, 0x0)

4m44.45284724s ago: executing program 3 (id=110):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_clone(0x9a5ee3f5dc33a052, &(0x7f0000000040)="b588a4c7de06568944529fe1ae9dfcc26cde0ce172ead2ee214ca5ea2db5000d7c60ab850891986ae5912197a146045665ead4cbec3f4da09507e503090b5eb3a03d56b25c6d28cafb2c51745d6d242cab5c64da934ad4354c96b7eaa71cd4bb3514db4daf986a45fd4476d00d68861c355262a871b377be87976e40e849c2fbec1be28fd2fa7bf60c0155afb778537a86d55b792446983c01b4c652149454bb83535f6773948f0d2354d2c72c55da392664ad8b3bd478db189181be4437566a54ecd0d53c3b841f1dacd570af35016bec8659d6a814818a66e7eab3251f525c48cc681185774d1a0e915c27", 0xec, &(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)="062b9c02643f6935c1b43e681989b0175bc9e35bd8d041f071b81e3c170bfae568cac287378fc8dcdff21976eaa29e5b700bdb8b")
fcntl$auto(r0, 0x200006, r1)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x13, &(0x7f0000000000)="a927e67b7227e73034da517b810d2d399ef4923e06aa2344b2901b60dae003fe7424106b21932a67", 0x200)

4m44.215378525s ago: executing program 3 (id=113):
ioperm$auto(0x3b, 0xf99b, 0x6)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/ptp/ptp0/n_vclocks\x00', 0x8502, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/pci0000:00/0000:00:04.0/enable\x00', 0xa001, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/neigh/wlan1/mcast_solicit\x00', 0x2000, 0x0)
setrlimit$auto(0x0, &(0x7f0000000000)={0x0, 0x3ff})
read$auto(r0, 0x0, 0x1ff)
io_uring_register$auto_IORING_UNREGISTER_NAPI(r0, 0x1c, &(0x7f0000000180)="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", 0x5)
write$auto(0x3, 0x0, 0xfdef)
mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4)
r1 = getpid()
r2 = getpgid(r1)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_MODULE_FW_FLASH_ACT(r3, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x388}, 0x1, 0x0, 0x0, 0x4}, 0x400c080)
open(0x0, 0x161342, 0x100)
fcntl$auto(0x3, 0x4, 0xa553)
bpf$auto(0x0, &(0x7f0000000780)=@link_update={<r4=>0xa, @new_map_fd=<r5=>0x5, 0x4007, @old_prog_fd=<r6=>0x13b}, 0xa3)
syz_clone3(&(0x7f0000000640)={0x20100, 0x0, &(0x7f0000000480), &(0x7f00000004c0)=<r7=>0x0, {0x2b}, &(0x7f0000000300)=""/107, 0x6b, &(0x7f0000000bc0)=""/250, 0x0, 0x0, {r6}}, 0x58)
waitid$auto(0x2, r5, &(0x7f0000000280)={@_si_pad}, 0x8, 0x0)
shmctl$auto_IPC_INFO(0x0, 0x3, &(0x7f0000000700)={{0x7, 0x0, 0x0, 0x1, 0x1ff, 0x5, 0x8001}, 0xd8, 0x0, 0x0, 0x0, @inferred, @inferred=r7, 0x8, 0x0, &(0x7f0000001180)="7c97008adbe1014b61a56afe636edb780f9a132c7d127ec857a8c7b88b18e5529c3845a61a18187e60ca45bc1feda72615ac677819e9f963eb3ed94b69c99f94e264d0920a842f1dc312dafafbdee3fa0113cb2b0f8ced0d61eb64ce64fe04a17fa520315d38a71d3278f37c5b1afe5cb5a29b3e947fd05f3ee238fdeb7a26c841a761b034f19bb7c3aa94595a8e0224372de6b0ab0092ea3a24a2747db1359ad794faf5f48d19291524b835fc37031d8cfa0c239314d34b4380f801cab271b053615fcfcbaf89f4fc756c924623c854864cb24cdf3dc1b19308039dbe4c1b3e37e5350161bd3c70d10a843ab498081f41bb7bb63310eed3d1c2084f40b9c46feb0c94da8b422b858767210d878c1bfd5899eed806585bac37b2480100000000000000b1b7cd5bea16bad2ac855367881e2254537c67b3f6328c845df5490527f5facd4d27bcb9a7ed6b5a18e1f5f10d8a436f70ce1dd77bde8d3dc6722d0272ea5ec475be59ebf0dbee694c96dda0c4d6e24c9df471642f8740149e99db9f975e62e0b766dd69f8c226ef0a82603ef38a8cd6f4127c73aa391fe1c7985391e3231e41dfad7c2d39e1033b023848a7f741f9ef2f660891fde49e3404a6de88564a12d10bf4b312654835004a61a13c9a1906b2ada6889440ffb5bf33e46dbeaaad8f44ea72e84588fd", 0x0})
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, r4, 0x8000)
migrate_pages$auto(0x0, 0xa, &(0x7f0000000100)=0x5, &(0x7f0000000140)=0x2)
move_pages$auto(0x0, 0x1002, 0x0, &(0x7f0000001140), 0x0, 0x2)
rt_tgsigqueueinfo$auto(r2, r2, 0xe, &(0x7f0000000100)={@siginfo_0_0={0x2a, 0x5, 0xb2, @_rt={r2, 0x0, @sival_ptr=&(0x7f0000000380)}}})
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/block/loop15/queue/rotational\x00', 0xa081, 0x0)

4m43.035551351s ago: executing program 3 (id=118):
r0 = socket(0x10, 0x2, 0x4)
mmap$auto(0x0, 0x2000d, 0x4000000200df, 0xeb1, 0x404, 0x8000)
landlock_create_ruleset$auto(0x0, 0x0, 0x1)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x21}, 0x1, 0x0, 0x0, 0x28044810}, 0x800)
sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="149c1400", @ANYRES16=r0, @ANYBLOB="01eb"], 0x14}, 0x1, 0x0, 0x0, 0x20040800}, 0x4000)
r1 = getpid()
ioprio_get$auto_IOPRIO_WHO_PGRP(0x2, r1)
bpf$auto(0x3, &(0x7f00000001c0)=@task_fd_query={r1, 0xffffffffffffffff, 0x7fffffff, 0x10014, 0x10001, 0x6, 0x5f, 0x20000000000803, 0x2000000000000006}, 0x2)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="12"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x4, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
pipe2$auto(0x0, 0x80)
ioctl$auto(0x1, 0x5761, 0x4)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sysfs$auto(0x2, 0x3d, 0x0)
fsopen$auto(0x0, 0x1)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f00000000c0)=""/17, 0x11)
r2 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0)
ioctl$auto_USBDEVFS_CONTROL(r2, 0xc0185500, &(0x7f0000000180)={0x2, 0x2, 0x4a47, 0x81, 0x9f, 0x8, 0x0})
mbind$auto(0x0, 0xfffffffffffffff8, 0xc7, &(0x7f0000000040)=0x2, 0x7db4, 0x3)
openat$auto_trace_fops_debugfs(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)

4m42.720658136s ago: executing program 3 (id=119):
openat$auto_tun_fops_tun(0xffffffffffffff9c, 0x0, 0x2002, 0x0) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) (async)
r0 = openat$auto_tun_fops_tun(0xffffffffffffff9c, 0x0, 0x2002, 0x0) (async)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async)
select$auto(0xd, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x6, 0x62, 0x80000000, 0x9, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) (async)
r2 = getpid() (async)
mlockall$auto(0x5)
rt_sigprocmask$auto(0x6, &(0x7f0000000180), 0xffffffffffffffff, 0x8)
connect$auto(r0, &(0x7f0000000140)=@llc={0x1a, 0x336, 0xdd, 0x4, 0x7, 0x5, @broadcast}, 0x2)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0) (async)
mmap$auto(0x0, 0x9, 0x2, 0x40eb2, 0x401, 0x300000000000)
r3 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) (async)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
ioctl$auto(0x3, 0x400454da, r3) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) (async)
unshare$auto(0x4) (async)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) (async)
socket(0x11, 0xa, 0x300) (async)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$auto(0x4, 0x0, 0x400, 0x7) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_7={@link_id=0x1, 0x3, 0x49147292}, 0x10) (async)
r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x0, 0x0) (async)
r5 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/all/forwarding\x00', 0x42a81, 0x0)
sendfile$auto(r5, r4, 0x0, 0x1000202)
migrate_pages$auto(r2, 0x713, &(0x7f00000000c0)=0x5, &(0x7f0000000100)=0x3) (async)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/all/addr_gen_mode\x00', 0xa0202, 0x0)

4m27.573681358s ago: executing program 32 (id=119):
openat$auto_tun_fops_tun(0xffffffffffffff9c, 0x0, 0x2002, 0x0) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) (async)
r0 = openat$auto_tun_fops_tun(0xffffffffffffff9c, 0x0, 0x2002, 0x0) (async)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async)
select$auto(0xd, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x6, 0x62, 0x80000000, 0x9, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) (async)
r2 = getpid() (async)
mlockall$auto(0x5)
rt_sigprocmask$auto(0x6, &(0x7f0000000180), 0xffffffffffffffff, 0x8)
connect$auto(r0, &(0x7f0000000140)=@llc={0x1a, 0x336, 0xdd, 0x4, 0x7, 0x5, @broadcast}, 0x2)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0) (async)
mmap$auto(0x0, 0x9, 0x2, 0x40eb2, 0x401, 0x300000000000)
r3 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) (async)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
ioctl$auto(0x3, 0x400454da, r3) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) (async)
unshare$auto(0x4) (async)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) (async)
socket(0x11, 0xa, 0x300) (async)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$auto(0x4, 0x0, 0x400, 0x7) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_7={@link_id=0x1, 0x3, 0x49147292}, 0x10) (async)
r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x0, 0x0) (async)
r5 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/all/forwarding\x00', 0x42a81, 0x0)
sendfile$auto(r5, r4, 0x0, 0x1000202)
migrate_pages$auto(r2, 0x713, &(0x7f00000000c0)=0x5, &(0x7f0000000100)=0x3) (async)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/all/addr_gen_mode\x00', 0xa0202, 0x0)

3m22.718303393s ago: executing program 0 (id=348):
mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000)
close_range$auto(0x0, 0xfffff004, 0x2) (async)
r0 = socket(0xa, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = socket(0xa, 0x2, 0x88) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r2 = openat$auto_nsim_dev_health_break_fops_health(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim2/health/break_health\x00', 0x48081, 0x0)
write$auto(r2, 0x0, 0x1ff) (async)
r3 = socket$nl_generic(0x10, 0x3, 0x10) (async)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'bond0\x00', <r4=>0x0})
bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r4, <r5=>r3, 0x4, 0xf, r1, @relative_id=0x1000, 0xe600}, 0xf)
bpf$auto(0x6, &(0x7f00000001c0)=@bpf_attr_1={r5, 0x5, @value=0x5d, 0x1}, 0x4)

3m22.34240324s ago: executing program 0 (id=350):
mmap$auto(0x0, 0xfffffffffffffffe, 0x3, 0xeb3, 0xfffffffffffffffa, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xb02, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_tracing_iter_fops_trace(0xffffffffffffff9c, 0x0, 0x40000, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
open(0x0, 0x7ffd, 0x12)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
r0 = io_uring_setup$auto(0x406, 0x0)
mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0)
getrandom$auto(0x0, 0x6000000, 0x3)
io_uring_enter$auto(0x3, 0xa84, 0x80000001, 0xa, 0x0, 0x46)
io_uring_enter$auto(r0, 0x7, 0x7ffffffb, 0x3, 0x0, 0x3)
move_pages$auto(0x0, 0xa, 0x0, 0x0, 0x0, 0x2)
io_uring_enter$auto(0x3, 0x5, 0x5f3, 0x3, 0x0, 0x2)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/LNXSYSTM:00/LNXPWRBN:00/input/input0/properties\x00', 0x100, 0x0)
read$auto(r1, 0x0, 0x20)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
capset$auto(&(0x7f0000000180)={0x19980330}, 0x0)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
ioctl$auto(r2, 0x5601, 0x3)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, 0x0, 0xc00, 0x0)
write$auto(0x1, 0x0, 0x80000000)
fcntl$auto(0x0, 0x407, 0x100000)

3m20.084227006s ago: executing program 0 (id=357):
unshare$auto(0x40000080)
unshare$auto(0x3)
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x37}}, 0x6e)
sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x9, 0x20000000)
mknod$auto(&(0x7f0000000080)=':,\x00', 0xcb, 0xfffffffa)
execve$auto(&(0x7f0000000100)=':,\x00', 0x0, 0x0)
mknod$auto(&(0x7f0000000b00)='X))\x00', 0x63c1, 0x7ff)
mknod$auto(&(0x7f0000000340)='\xe1\x9eHU\x00', 0x67c1, 0x7fc)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/ptp/ptp0/n_external_timestamps\x00', 0x8a684, 0x0)
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80502, 0x0)
ioctl$auto_SNDCTL_DSP_CHANNELS(r2, 0xc0045006, &(0x7f00000001c0))
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
r3 = syz_genetlink_get_family_id$auto_nl80211(0x0, r1)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x8000}, 0x8)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
sendto$auto(0x3, 0x0, 0x100000000, 0x8, 0x0, 0x1c)
sendmsg$auto_NL80211_CMD_SET_INTERFACE(r0, 0x0, 0x4000)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000840)='/proc/sys/vm/dirty_background_ratio\x00', 0x80000, 0x0)
r4 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/block/loop12/hctx0/tags\x00', 0x8080, 0x0)
read$auto_blk_mq_debugfs_fops_blk_mq_debugfs(r4, &(0x7f0000000080)=""/229, 0xe5)
statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x5, 0x54f, 0xa, 0x400, 0x1087181, 0x8a0d, 0x7, 0x7, 0x7ff, 0x89, 0x23, 0x4, 0x200003fffffe, 0x384, 0xffffffeffffffffa, 0x0, 0x4000000, 0x30, 0x0, 0x864, 0xe, 0x22000, 0x200, 0x67aa4df3, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb]}, 0xb, 0x3)

3m18.150314512s ago: executing program 0 (id=362):
r0 = socket(0x2, 0x801, 0x100)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
r1 = clone3$auto(0x0, 0x10001)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000140), 0x2000, 0x0)
socket(0x25, 0x6, 0x1)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x800, 0x0)
fcntl$auto(0x3, 0x4, 0xa553)
sendmmsg$auto(0x3, 0x0, 0x7, 0x2)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @empty}, 0x51)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xf, 0x3, 0x2)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/midiC2D0\x00', 0x2201, 0x0)
prctl$auto(0x1, 0x1, r1, 0x1, 0x0)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, r2, 0x8000)
r3 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x3, 0x8000001f, 0x2, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0)
fsopen$auto(0x0, 0x1)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
mmap$auto(0x100000000, 0x400106, 0xdf, 0x9b72, 0x2, 0x200007ffd)
r4 = fsopen$auto(0x0, 0x1)
fsconfig$auto(r4, 0x8, 0x0, 0x0, 0x0)
close_range$auto(r3, r0, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_smbd_genl(&(0x7f00000000c0), r5)
sendmsg$auto_KSMBD_EVENT_SPNEGO_AUTHEN_REQUEST(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)={0x14, r6, 0x1, 0x70bd25, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
socket(0x2, 0x1, 0x84)
unshare$auto(0x40000080)
r7 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000180)='/dev/binderfs/binder0\x00', 0x0, 0x0)
ioctl$auto_BINDER_GET_FROZEN_INFO(r7, 0xc00c620f, &(0x7f0000000340))

3m16.073209995s ago: executing program 0 (id=367):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/mm/hugepages/hugepages-2048kB/nr_overcommit_hugepages\x00', 0x1c9282, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg1\x00', 0x0, 0x0)
r1 = socket(0xa, 0x1, 0x84)
mmap$auto(0x3, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x41555856, 0xd, 0x2008, 0x0, 0x0)
setsockopt$auto(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x20)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x2, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x23, 0x80805, 0x0)
socket(0x25, 0x1, 0x3)
sendmsg$auto_IOAM6_CMD_NS_SET_SCHEMA(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}, 0x1, 0x0, 0x0, 0x80}, 0x40)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0x80900, 0x0)
r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop6\x00', 0x0, 0x0)
ioctl$auto_SG_GET_RESERVED_SIZE(r3, 0x4c0a, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
r4 = socket(0xa, 0x801, 0x84)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sysinfo$auto(0x0)
setsockopt$auto(r4, 0x10000000084, 0x0, 0x0, 0x10)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
getsockopt$auto(r1, 0x84, 0x6c, 0x0, &(0x7f0000000000)=0x98)
swapon$auto(&(0x7f0000000040)='/dev/sg1\x00', 0x2)
sendfile$auto(r0, r0, 0x0, 0x2)

3m15.745607576s ago: executing program 0 (id=368):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xd4, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='./cgroup/cgroup.type\x00', 0x103042, 0x0)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
syz_clone3(&(0x7f0000000300)={0x28020000, 0x0, 0x0, 0x0, {0x1f}, 0x0, 0x0, 0x0, 0x0}, 0x58) (async)
syz_clone3(&(0x7f0000000300)={0x28020000, 0x0, 0x0, 0x0, {0x1f}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = socket(0x11, 0x80003, 0x300)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
capset$auto(&(0x7f0000000100)={0x20080522}, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty12\x00', 0x101840, 0x0) (async)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty12\x00', 0x101840, 0x0)
ioctl$auto(r1, 0x4b41, 0xffffffffffffffff)
setsockopt$auto(r0, 0x107, 0xf, 0x0, 0x6)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) (async)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_START_NAN(r0, &(0x7f00000000c0)={&(0x7f0000000000), 0xc, &(0x7f0000000080)={&(0x7f0000000380)={0x22c, r2, 0x800, 0x70bd2a, 0x25dfdbfb, {}, [@NL80211_ATTR_MAC_ADDRS={0xb9, 0xa6, 0x0, 0x1, [@typed={0x4, 0xcc}, @generic="ae975a02b697ae404a10a4f87710709cade777d4bf4e", @generic="a1141afede9f4d41b6571430328be5c642c6b64a0ae84759f20ccb9e715bb36c58fa173bb18f00d42b9dad41eac22e172af23524dcf9afc7134de2c9d0900322d79b1b55773503be616439db560ad58333ecf4c0daa2b2d5630a1ff67f527bcc0ca227c3c0701f525b215c10a25e9b46acd29a104c53d52ff1da43c97f2080021646c13e0cc6cb8cc3b8e63c600617", @typed={0xc, 0x10, 0x0, 0x0, @u64=0x7fffffff}]}, @NL80211_ATTR_ADMITTED_TIME={0x6}, @NL80211_ATTR_RADAR_BACKGROUND={0x4}, @NL80211_ATTR_HIDDEN_SSID={0x8, 0x7e, 0x4}, @NL80211_ATTR_PREV_BSSID={0x79, 0x4f, "51c74df9457465e005938e92827eb3192c6d52d4b71df160cfdc61dc54f879a0b3f4bc0a4598467671b07f7b13900f945468bff9e24c3fda0d6b8e45e45df9ecc5ab435c9f55dc6c2ebec02ca7d7167f593fa8f305b56100c6c9f491776d9d88f9aa3741fbce6ddcaf9050bf24ef77ca497e30e96c"}, @NL80211_ATTR_AUTH_DATA={0xcb, 0x9c, "e46150b7d3d6222ee89724621b26790ee50f4b3703d133f119b0011679fa01d2ef15be1ab901235f06d591d8c2c536b4e4227e2688bae36a6026880bfbef98f514e9b7ff6d236c7c85d819e9e8a0d3148038db17f857e6509cbdb7f4776de3c575ceed930942144f8f32718ef04ae553adad86fc2038fe1c2b7e1352af9840577a52497864386e6e035cdbc1a99c74cc3e1d4ce21af2fbf2c742d9ad5606e7dbb2bd34287b083e235c4fd72f5d6ff4f5fa6982b80bb1d26df330387ba8a8a00df53e0da6ed7396"}]}, 0x22c}, 0x1, 0x0, 0x0, 0x8000}, 0x20008000)
madvise$auto(0x0, 0x200007, 0x8)

3m0.473388934s ago: executing program 33 (id=368):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xd4, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='./cgroup/cgroup.type\x00', 0x103042, 0x0)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
syz_clone3(&(0x7f0000000300)={0x28020000, 0x0, 0x0, 0x0, {0x1f}, 0x0, 0x0, 0x0, 0x0}, 0x58) (async)
syz_clone3(&(0x7f0000000300)={0x28020000, 0x0, 0x0, 0x0, {0x1f}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = socket(0x11, 0x80003, 0x300)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
capset$auto(&(0x7f0000000100)={0x20080522}, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty12\x00', 0x101840, 0x0) (async)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty12\x00', 0x101840, 0x0)
ioctl$auto(r1, 0x4b41, 0xffffffffffffffff)
setsockopt$auto(r0, 0x107, 0xf, 0x0, 0x6)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) (async)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_START_NAN(r0, &(0x7f00000000c0)={&(0x7f0000000000), 0xc, &(0x7f0000000080)={&(0x7f0000000380)={0x22c, r2, 0x800, 0x70bd2a, 0x25dfdbfb, {}, [@NL80211_ATTR_MAC_ADDRS={0xb9, 0xa6, 0x0, 0x1, [@typed={0x4, 0xcc}, @generic="ae975a02b697ae404a10a4f87710709cade777d4bf4e", @generic="a1141afede9f4d41b6571430328be5c642c6b64a0ae84759f20ccb9e715bb36c58fa173bb18f00d42b9dad41eac22e172af23524dcf9afc7134de2c9d0900322d79b1b55773503be616439db560ad58333ecf4c0daa2b2d5630a1ff67f527bcc0ca227c3c0701f525b215c10a25e9b46acd29a104c53d52ff1da43c97f2080021646c13e0cc6cb8cc3b8e63c600617", @typed={0xc, 0x10, 0x0, 0x0, @u64=0x7fffffff}]}, @NL80211_ATTR_ADMITTED_TIME={0x6}, @NL80211_ATTR_RADAR_BACKGROUND={0x4}, @NL80211_ATTR_HIDDEN_SSID={0x8, 0x7e, 0x4}, @NL80211_ATTR_PREV_BSSID={0x79, 0x4f, "51c74df9457465e005938e92827eb3192c6d52d4b71df160cfdc61dc54f879a0b3f4bc0a4598467671b07f7b13900f945468bff9e24c3fda0d6b8e45e45df9ecc5ab435c9f55dc6c2ebec02ca7d7167f593fa8f305b56100c6c9f491776d9d88f9aa3741fbce6ddcaf9050bf24ef77ca497e30e96c"}, @NL80211_ATTR_AUTH_DATA={0xcb, 0x9c, "e46150b7d3d6222ee89724621b26790ee50f4b3703d133f119b0011679fa01d2ef15be1ab901235f06d591d8c2c536b4e4227e2688bae36a6026880bfbef98f514e9b7ff6d236c7c85d819e9e8a0d3148038db17f857e6509cbdb7f4776de3c575ceed930942144f8f32718ef04ae553adad86fc2038fe1c2b7e1352af9840577a52497864386e6e035cdbc1a99c74cc3e1d4ce21af2fbf2c742d9ad5606e7dbb2bd34287b083e235c4fd72f5d6ff4f5fa6982b80bb1d26df330387ba8a8a00df53e0da6ed7396"}]}, 0x22c}, 0x1, 0x0, 0x0, 0x8000}, 0x20008000)
madvise$auto(0x0, 0x200007, 0x8)

15.276264004s ago: executing program 5 (id=953):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x129e00, 0x8c)
r1 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000001700), r0)
sendmsg$auto_TIPC_NL_BEARER_DISABLE(r0, &(0x7f0000004080)={0x0, 0x0, &(0x7f0000004040)={&(0x7f0000001740)=ANY=[@ANYBLOB="e5c70e3b", @ANYRES16=r1, @ANYBLOB="010026bd7000ffdbdf2502000000"], 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x80)

14.771930775s ago: executing program 5 (id=956):
openat$auto_cgwb_debug_stats_fops_(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/bdi/43:192/wb_stats\x00', 0x40, 0x0)
openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/set_event_notrace_pid\x00', 0x582, 0x0)
sendmmsg$auto(0x3, 0x0, 0x3, 0x0)
writev$auto(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000180), 0x9}, 0xb)
r0 = prctl$auto(0x43, 0x80000000000000, 0x0, 0x2, 0x0)
r1 = socket(0x18, 0x2, 0x0)
openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/snd/pcmC1D0p\x00', 0x1, 0x0)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), 0xffffffffffffffff)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/usbcore/parameters/quirks\x00', 0xc0202, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000040)="bdcda609d0dd307ad1695e8740fefb7f2c", 0x11)
sendmsg$auto_NL80211_CMD_GET_INTERFACE(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000005c0)={0x14, r2, 0x300, 0x70bd25, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x48c3}, 0x200c0085)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r4, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffd]}, 0x0)
openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, 0x0, 0x40100, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x0, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, 0x0, 0x0)
r5 = openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)
read$auto_rng_chrdev_ops_core(r5, &(0x7f0000000040)=""/4096, 0xfffffe82) (fail_nth: 67)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
write$auto_nvmf_dev_fops_fabrics(r0, &(0x7f0000001040)="63dfbbcfb5a3e0cd26049bf48305526c430299af42fac972e088182bb61f5dd8497a96dc602762b8ce1f4524a030aabbe7c8bbc5c0c3", 0x36)
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x2000, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)

12.46632478s ago: executing program 5 (id=962):
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, 0x0, 0x82000, 0x0)
socket(0xa, 0x801, 0x84)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
landlock_create_ruleset$auto(&(0x7f0000000000)={0xff, 0x2, 0x9}, 0x9, 0x0)
landlock_restrict_self$auto(r0, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x10, 0x2, 0xc)
socket(0xa, 0x801, 0x84)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x1, 0x0)
connect$auto(0x3, &(0x7f00000000c0)=@generic={0xa, "ab040200ff00f7f500"}, 0x6)
listen$auto(0x3, 0x81)
r1 = accept$auto(0x3, 0x0, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/cifs/Stats\x00', 0x28102, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x200000000, 0xfffdfffffffffffa, 0x1, 0x1, 0x6, 0x0, 0x7, 0x4ec4445, 0x3, {0x100000000, 0x5}, 0x5, 0x1, 0x10000000000009, 0x1008000, 0x0, 0x8, 0x81, 0xdfffffffffff6295, 0x10000000000406, 0x4, 0x808})
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0xa3db)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(r3, r3, 0x2)
landlock_create_ruleset$auto(&(0x7f0000000000)={0xd1d, 0x3, 0x7}, 0x9, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS3\x00', 0x0, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
bpf$auto(0x12, &(0x7f0000000040)=@link_detach, 0x26)
syz_genetlink_get_family_id$auto_ila(&(0x7f0000000100), r1)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4)

10.372269325s ago: executing program 5 (id=970):
mmap$auto(0xffffffffffffffff, 0x20005, 0xc4b, 0xeb1, 0x401, 0xb000)
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a4, 0xffff)
r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0)
r1 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sg0\x00', 0x8ec81, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x202000c, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r2 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_SMC_NETLINK_DISABLE_SEID(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000000", @ANYRES16=r2, @ANYBLOB="013b"], 0x14}, 0x1, 0x0, 0x0, 0x880}, 0x20008800)
close_range$auto(r0, r1, 0x2)
r3 = io_uring_setup$auto(0x59, &(0x7f0000000080)={0x1, 0xd, 0x3000, 0x5, 0x4004, 0x7fffffff, 0xffffffffffffffff, [], {0x6, 0x6, 0x9, 0x0, 0x102, 0x7ffffffb, 0x101, 0x8, 0x3}, {0x100, 0x1, 0x52, 0x405, 0x2, 0x60, 0x76c5, 0x8, 0x100000000}})
io_uring_register$auto_IORING_REGISTER_FILES(r3, 0x2, 0x0, 0x3)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x163340, 0x6a)
connect$auto(0x3, &(0x7f0000000140)=@in={0x2, 0x4, @multicast2}, 0x55)
madvise$auto_MADV_GUARD_INSTALL(0x0, 0x100000000, 0x66)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ttyS0\x00', 0xc80, 0x0)
ioctl$auto(r4, 0x5459, 0x0)

7.808672509s ago: executing program 5 (id=978):
r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x82000, 0x0)
r1 = socket(0x28, 0x1, 0x100)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r2 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f00000011c0)='/dev/snd/pcmC1D1c\x00', 0x0, 0x0)
ioctl$auto_SNDRV_PCM_IOCTL_HW_PARAMS_OLD2(r2, 0xc1004111, 0x0)
getsockopt$auto_SO_RCVPRIORITY(r1, 0x2, 0x52, &(0x7f00000001c0)='/dev/virtual_nci\x00', &(0x7f0000000240)=0x7)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
pread64$auto(r0, 0x0, 0x7fb, 0x400)
socket(0x1e, 0x1, 0x0)
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xa, 0x8fd6, 0x400000000000948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x5, 0x3, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
inotify_init1$auto(0x403)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r4 = socket(0x15, 0x5, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
ustat$auto(0x801, 0x0)
sendmsg$auto(r4, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000400)={{&(0x7f0000000280)="b719da82ce62d3c8348899388edbbc7e8f8e15292333810d3b6d311f24acb903a1afece176ccb76c8ac3ac45bea16c9943fc3e2c0a03", 0xff, &(0x7f0000000380)={&(0x7f0000000340)="db90733be531d4831dcf394f9371d6baee13d619f108cd85a8a53cae37ff4a5a6659d7777c9df1dfe41ac76e"}, 0xfffffffffffffff8, &(0x7f00000003c0)="9bbf44bf0845d741be", 0x4, 0x4}, 0x7}, 0xfffffff7, 0x5)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
socket(0xa, 0x2, 0x3a)
bind$auto(0x3, &(0x7f0000000040)=@generic={0xa, "02d0ac0c00e435826339c7328903"}, 0x6a)

5.662832912s ago: executing program 2 (id=989):
r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
write$auto(r0, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
fanotify_mark$auto(r0, 0x0, 0xfffffffffff8fbfc, 0xffffffffffffffff, 0x0)
close_range$auto(r0, r0, 0x101)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x3, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x130)
r2 = open(&(0x7f0000000080)='./file0\x00', 0xeee00, 0x31)
fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'pim6reg1\x00'})
unlink$auto(&(0x7f0000000280)='./file0\x00')
mmap$auto(0xf000, 0x1, 0x3ff, 0x12, r2, 0x0)
mmap$auto(0x7, 0x7d99e3ae, 0xffffffffb04ecaf0, 0xebd, 0x401, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$auto(0x0, &(0x7f0000000100)=@bpf_attr_5={@target_fd=0x5, 0x7f, 0x9c, 0x7b2, 0x1, @relative_id=0x4, 0x80}, 0x96)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xc)
unshare$auto(0x7)
r3 = bpf$auto(0x1, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x7}, 0xc)
read$auto_ptdump_fops_(r2, &(0x7f00000005c0)=""/4096, 0x143)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f00000000c0), r3)
r4 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/cec30\x00', 0x0, 0x0)
ioctl$auto_CEC_ADAP_S_LOG_ADDRS(r4, 0xc05c6104, 0x0)
ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, 0x0)
socketpair$auto(0x1, 0x5, 0x1, 0x0)
fanotify_init$auto(0x65, 0x2)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2b, 0x3, 0x0)
write$auto(0x6, 0x0, 0x100000001)

5.073235942s ago: executing program 1 (id=982):
mmap$auto(0x0, 0x202000a, 0x5, 0xeb1, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
socketpair$auto(0x6, 0x8000, 0x3, 0x0)
mmap$auto(0x0, 0x402000c, 0xdf, 0x14, 0x401, 0x8000)
socket(0x2d, 0x2, 0x0)
mmap$auto(0x7, 0x9ba, 0x0, 0x100011, 0x40000000000a5, 0x8000)
socket(0xa, 0x1, 0x84)
r0 = socket(0x23, 0x80805, 0x0)
fanotify_init$auto(0x5, 0x2000000000002)
pipe$auto(0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x48140, 0x0)
pipe$auto(&(0x7f0000000040)=r0)
socket(0x2, 0x3, 0xa)
r1 = socket(0x2, 0x3, 0xa)
ioctl$auto(0x3, 0x89e0, r1)

4.787952558s ago: executing program 1 (id=983):
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x13, 0x940, 0x1ffe0, 0x3, 0x6, 0x2, 0x9, 0x5, 0x2, 0x7, 0xb0, 0x9, 0x5, 0x3, 0x5, 0x7}, 0x1fe, 0x81)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
socket(0x2, 0x5, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x11, 0x800, 0x0)
socket(0x2, 0x80002, 0x73)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
write$auto(0x1, 0x0, 0x80000000)
close_range$auto(0x2, 0xa, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
fanotify_init$auto(0x65, 0x2)
bpf$auto_BPF_LINK_GET_NEXT_ID(0x1f, 0x0, 0xd2)
r0 = pipe$auto(0x0)
dup2$auto(0x5, 0x4)
write$auto(0x6, 0x0, 0x100000001)
splice$auto(0x4, 0x0, r0, 0x0, 0x80000001, 0x9)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0xa, 0x801, 0x84)
setsockopt$auto(0x3, 0x10000000084, 0x14, 0x0, 0x8)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
r1 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008)

3.65789809s ago: executing program 2 (id=985):
r0 = openat$auto_fragmentation_threshold_ops_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/ieee80211/phy0/fragmentation_threshold\x00', 0x400, 0x0)
read$auto_fragmentation_threshold_ops_(r0, 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0x1000000000df, 0x9b72, 0x2, 0x8000)
keyctl$auto(0x5, 0xffffffffffffffff, 0x5, 0x5, 0x8)
mmap$auto(0x4, 0x400203, 0xdb, 0x16, 0x2, 0x8000)
mmap$auto(0x0, 0x2020009, 0xffffffffffffffff, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
setgroups$auto(0xe32, 0x0)
madvise$auto(0x0, 0x200007, 0x19)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0xc)
mmap$auto(0x0, 0x7, 0x7ffffffb, 0x112, r0, 0x7fffffffffffffff)
close_range$auto(0x2, 0x8, 0x0)
mremap$auto(0x0, 0x7, 0x3fd6, 0x0, 0x1ffffffe)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
ioctl$auto_SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045002, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/user\x00')

3.373083861s ago: executing program 1 (id=986):
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0xa, 0x8)
r0 = socket(0x2c, 0x5, 0x0)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/neigh/virt_wifi0/interval_probe_time_ms\x00', 0x382, 0x0)
sendfile$auto(r1, r1, 0x0, 0x2)
ioctl$auto_IOCTL_VMCI_VERSION2(0xffffffffffffffff, 0x7a7, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, 0x0, 0x9, 0x0, 0x1f, 0x9}, 0x800009}, 0x7, 0x20000000)
setsockopt$auto(0x3, 0x1, 0x2f, 0x0, 0x9)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
clock_adjtime$auto(0xfffffffd, &(0x7f0000000240)={0xdbd, 0x0, 0x7, 0x7, 0x600, 0xf4, 0xb, 0x0, 0x100000000, 0x6, 0x3, {0x403, 0xd05}, 0xfffffffffffffff8, 0xa5, 0x9, 0xb87f, 0x0, 0xc7, 0x80, 0xb, 0x5, 0x1339, 0xfffffff5})
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/tty/ptyt7/power/runtime_status\x00', 0xa001, 0x0)
write$auto(0x3, 0x0, 0xfffffdef)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
socket(0x2, 0x5, 0x0)
bind$auto(0x3, 0x0, 0x6a)
shutdown$auto(0x200000003, 0x2)
listen$auto(0x3, 0x83)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x100, 0x0)
socket(0x1e, 0x1, 0xfffffffd)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$auto(0x3, 0x4010ae68, 0x38)

2.814196138s ago: executing program 4 (id=988):
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty61\x00', 0x10240, 0x0)
sendmsg$auto_SMC_NETLINK_REMOVE_UEID(0xffffffffffffffff, 0x0, 0x20000000)
socket(0x2, 0x3, 0xa)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
ioctl$auto_HDIO_GETGEO(0xffffffffffffffff, 0x301, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7001400)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb5, 0x401, 0x300000000000)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto_SNDCTL_DSP_GETODELAY(0xffffffffffffffff, 0x80045017, 0x0)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8001)
r0 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x20800, 0x0)
ioctl$auto(r0, 0xb21064d1, 0x20000a)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[], 0x1ac}}, 0x40000)
sendmsg$auto_IEEE802154_LLSEC_ADD_KEY(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x800}, 0x8001)
sendmmsg$auto(0xffffffffffffffff, &(0x7f00000000c0)={{&(0x7f0000000000), 0x5aa, 0x0, 0x9, 0x0, 0x4, 0x1000}, 0x100000}, 0x2, 0x100)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x40000008000)
sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc000}, 0x2404c800)
kexec_load$auto(0x5, 0x2, &(0x7f0000000040)={@kbuf=0x0, 0x800c000, 0x4800c000, 0x800c000}, 0x4)

2.687287384s ago: executing program 5 (id=990):
openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, 0x0, 0x0, 0x0)
io_uring_setup$auto(0x7ff, &(0x7f0000000080)={0x7efffffc, 0x8, 0x3002, 0x7, 0x7, 0x4006, <r0=>0xffffffffffffffff, [0x0, 0x0, 0x4000000], {0x6, 0x6, 0x8c48, 0x29b, 0x3, 0x7f, 0x69cb, 0x6, 0x3}, {0x5, 0x8001, 0x2052, 0x85, 0x2, 0x1a7b870a, 0x76c5, 0x8, 0x100000000}})
r1 = openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000d00), 0x60100, 0x0)
read$auto_vhci_fops_hci_vhci(r1, &(0x7f0000000040)=""/15, 0xf)
mmap$auto(0x1, 0x20006, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0xc)
unshare$auto(0x40000080)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x9)
r2 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video42\x00', 0x169000, 0x0)
ioctl$auto(r2, 0xc0845658, r2)
socket(0xa, 0x800, 0x401)
getpeername$auto(r0, 0x0, 0x0)
r3 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000140), 0x8040, 0x0)
ioctl$auto_dvb_demux_fops_dmxdev(r3, 0x7fffffffffffffff, 0x0)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
execve$auto(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r4 = socket(0xa, 0x5, 0x0)
setsockopt$auto(r4, 0x0, 0x24, 0x0, 0x9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x4, 0x300000000000)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3)
mbind$auto(0x2000, 0x100000004, 0x102000000, 0x0, 0x6, 0x2)
openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fb0\x00', 0x292001, 0x0)
unshare$auto(0x40000080)
socket(0x2, 0x1, 0x0)
pkey_free$auto(0x1)

1.806510103s ago: executing program 2 (id=991):
r0 = openat$auto_cgwb_debug_stats_fops_(0xffffffffffffff9c, &(0x7f0000001100)='/sys/kernel/debug/bdi/7:12/wb_stats\x00', 0x40, 0x0)
openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/set_event_notrace_pid\x00', 0x582, 0x0)
sendmmsg$auto(0x3, 0x0, 0x3, 0x0)
writev$auto(r0, &(0x7f0000000240)={&(0x7f0000000180), 0x9}, 0xb)
r1 = prctl$auto(0x43, 0x80000000000000, 0x0, 0x2, 0x0)
mmap$auto(0x0, 0x400000, 0x7, 0x19b72, 0x5, 0x9000)
r2 = socket(0x18, 0x2, 0x0)
openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/snd/pcmC1D0p\x00', 0x1, 0x0)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), 0xffffffffffffffff)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/usbcore/parameters/quirks\x00', 0xc0202, 0x0)
pread64$auto(r0, &(0x7f0000001080)='#\x00', 0x6, 0x9)
write$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000040)="bdcda609d0dd307ad1695e8740fefb7f2c", 0x11)
sendmsg$auto_NL80211_CMD_GET_INTERFACE(r2, &(0x7f00000010c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001140)=ANY=[@ANYBLOB="1400000037f815cd9f8ff881a30c63a8cc17a711c635aec21c72ada7d919afbc8a84769003", @ANYRESHEX, @ANYRESDEC=r1], 0x14}, 0x1, 0x0, 0x0, 0x48c3}, 0x200c0085)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r4, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffd]}, 0x0)
openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, 0x0, 0x40100, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x0, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, 0x0, 0x0)
r5 = openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)
read$auto_rng_chrdev_ops_core(r5, &(0x7f0000000040)=""/4096, 0xfffffe82)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
write$auto_nvmf_dev_fops_fabrics(r1, &(0x7f0000001040)="63dfbbcfb5a3e0cd26049bf48305526c430299af42fac972e088182bb61f5dd8497a96dc602762b8ce1f4524a030aabbe7c8bbc5c0c3", 0x36)
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x2000, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)

1.805188796s ago: executing program 1 (id=999):
r0 = socket(0x26, 0x5, 0x6)
madvise$auto(0x0, 0x2000040080000004, 0xe)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x60742, 0x0)
ioctl$auto_BLKZEROOUT(r1, 0x127f, 0x0)
getsockopt$auto_SO_RCVPRIORITY(r0, 0x2, 0x52, 0x0, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x81, 0x0)
r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000340)='/proc/irq/9/affinity_hint\x00', 0x40, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r4 = socket(0xa, 0x3, 0x3a)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
setsockopt$auto(0x400000000000003, 0x29, 0xd3, 0x0, 0x567)
r5 = syz_genetlink_get_family_id$auto_nfc(&(0x7f0000000180), r3)
sendmsg$auto_NFC_CMD_LLC_SDREQ(r4, &(0x7f0000000300)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f00000010c0)=ANY=[@ANYBLOB="e0000000", @ANYRES16=r5, @ANYBLOB="20002cbd7000ffdbdf2513000000080001000300000005000c000100000005000b000500000005000b006bb8e8ab08001d00ff0100009b001f0039e45b3e4d2afe1af83a289da30fe9b18d144d6af02d6b7c5509585772fa94ff1ed7c62a859c260a2ba3bb9b6b31cdd3393e0beb10ce06b3e9ef34f6534a23f92a4df31e84b147d645ff98b9077c1b879049f1e48ec62de4ebd49be1af982d05669fada483cc9fe84f39556be2f6a76ec2a2f933148f062d52fb49257960cef83476c9d1828b1aa5e88badab7ce62b1467e59297da9c05661d1c00050010006a000000aa22937cf3c3dcff8f341596ed2a1e2255"], 0xe0}, 0x1, 0x0, 0x0, 0x801}, 0x20000000)
syz_clone(0x4040400, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
io_uring_setup$auto(0x20000000, 0x0)
mmap$auto(0x0, 0x5, 0xfffffffffffffe01, 0x8011, 0x3, 0x8000)
r6 = openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/numa_maps\x00', 0x20000, 0x0)
read$auto_proc_sessionid_operations_base(r6, &(0x7f00000000c0)=""/4096, 0x1000)
mmap$auto(0x0, 0x2020009, 0x1, 0xff, r4, 0x80fe)
r7 = socket(0x15, 0x5, 0x0)
setsockopt$auto(r7, 0x114, 0x8, 0x0, 0x4)
r8 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000001a80)='/dev/bus/usb/001/001\x00', 0x29202, 0x0)
mmap$auto(0x2000, 0x6, 0xb, 0x8000000008011, r8, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x20300, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)

1.592584105s ago: executing program 4 (id=992):
mmap$auto(0x0, 0x202000a, 0x5, 0xeb1, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
socketpair$auto(0x6, 0x8000, 0x3, 0x0)
mmap$auto(0x0, 0x402000c, 0xdf, 0x14, 0x401, 0x8000)
socket(0x2d, 0x2, 0x0)
mmap$auto(0x7, 0x9ba, 0x0, 0x100011, 0x40000000000a5, 0x8000)
socket(0xa, 0x1, 0x84)
r0 = socket(0x23, 0x80805, 0x0)
fanotify_init$auto(0x5, 0x2000000000002)
pipe$auto(0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x48140, 0x0)
pipe$auto(&(0x7f0000000040)=r0)
socket(0x2, 0x3, 0xa)
r1 = socket(0x2, 0x3, 0xa)
ioctl$auto(0x3, 0x89e0, r1)

1.435293995s ago: executing program 4 (id=993):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/LNXSYSTM:00/LNXPWRBN:00/input/input0/capabilities/abs\x00', 0x0, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) (async)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000040), 0x2a540, 0x0) (async)
io_uring_setup$auto(0xa, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) (async)
close_range$auto(0x2, 0xa, 0x0) (async)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x40, 0x0)
mq_open$auto(0x0, 0x7e, 0x9, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f00000000c0)=""/187, 0xbb) (async)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0)
ioctl$auto_SNDRV_RAWMIDI_IOCTL_USER_PVERSION(r1, 0x40045702, &(0x7f0000000040)=0x7fffffff)
ioctl$auto_SNDRV_RAWMIDI_IOCTL_PARAMS(r1, 0xc0305710, &(0x7f00000000c0)={0x1, 0xaa, 0xb, 0x1, 0x80000001, "e7227115127a1e877000"}) (async)
setsockopt$auto(r0, 0x2b0b, 0x3, &(0x7f0000000080)='\\\x00', 0x6)

1.260568755s ago: executing program 2 (id=994):
r0 = openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000400)='/sys/kernel/debug/dri/vkms/internal_clients\x00', 0xa8201, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
capget$auto(0x0, 0xfffffffffffffffe)
capset$auto(0x0, &(0x7f0000000100)={0x3, 0x7, 0x8})
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1a, 0x3, 0x200000b)
bind$auto(0x3, &(0x7f0000000040)=@nl=@proc={0x10, 0x0, 0x25dfdbfc, 0x10000000}, 0x64)
lseek$auto(r0, 0x9, 0x0)
r1 = openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x190b81, 0x0)
ioctl$auto_SNAPSHOT_SET_SWAP_AREA(r1, 0x400c330d, 0x0)

1.042401725s ago: executing program 4 (id=995):
socket(0x2, 0x5, 0x0) (async)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/block/parameters/events_dfl_poll_msecs\x00', 0x80002, 0x0)
mmap$auto(0x0, 0x4000b, 0x7, 0x9b72, 0x7, 0x28000)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
inotify_init1$auto(0x3000000000000)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/fs/jbd2/sda1-8/info\x00', 0x2, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f00000000c0)=""/10, 0xa)
socket(0x25, 0x1, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket(0x15, 0x5, 0x0) (async)
openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/cgroup\x00', 0x100382, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket(0x10, 0x2, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32)
socket(0xa, 0x2, 0x0) (rerun: 32)
inotify_init1$auto(0x3000000000000) (async)
socket(0xa, 0x2, 0x3a) (async)
r1 = io_uring_setup$auto(0x4, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) (async)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) (async)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) (async)
close_range$auto(0x2, r1, 0x0)
open(0x0, 0x22240, 0x55) (async)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) (async, rerun: 64)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0) (rerun: 64)
ioctl$auto(0x3, 0x40106f52, r2) (async)
accept$auto(0x3, 0xffffffffffffffff, 0xffffffffffffffff)

854.25509ms ago: executing program 1 (id=996):
openat$auto_cgwb_debug_stats_fops_(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/bdi/43:192/wb_stats\x00', 0x40, 0x0)
openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/set_event_notrace_pid\x00', 0x582, 0x0)
sendmmsg$auto(0x3, 0x0, 0x3, 0x0)
writev$auto(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000180), 0x9}, 0xb)
r0 = prctl$auto(0x43, 0x80000000000000, 0x0, 0x2, 0x0)
r1 = socket(0x18, 0x2, 0x0)
openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/snd/pcmC1D0p\x00', 0x1, 0x0)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), 0xffffffffffffffff)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/usbcore/parameters/quirks\x00', 0xc0202, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000040)="bdcda609d0dd307ad1695e8740fefb7f2c", 0x11)
sendmsg$auto_NL80211_CMD_GET_INTERFACE(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000005c0)={0x14, r2, 0x300, 0x70bd25, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x48c3}, 0x200c0085)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r4, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffd]}, 0x0)
openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, 0x0, 0x40100, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x0, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, 0x0, 0x0)
r5 = openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)
read$auto_rng_chrdev_ops_core(r5, &(0x7f0000000040)=""/4096, 0xfffffe82) (fail_nth: 70)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
write$auto_nvmf_dev_fops_fabrics(r0, &(0x7f0000001040)="63dfbbcfb5a3e0cd26049bf48305526c430299af42fac972e088182bb61f5dd8497a96dc602762b8ce1f4524a030aabbe7c8bbc5c0c3", 0x36)
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x2000, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)

370.992922ms ago: executing program 2 (id=997):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zram0\x00', 0x0, 0x0) (async)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) (async)
socket(0x15, 0x5, 0x0)
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, 0x0, 0x2, 0x0) (async)
madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x20342, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptybd\x00', 0x6202, 0x0) (async)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/midiC2D0\x00', 0x109302, 0x0) (async)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0) (async)
select$auto(0x7, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x3, 0x1, 0x2, 0x3, 0x95f4da0a, 0xefffffffffffffff, 0x3, 0x62, 0x80000001, 0x10000000000004, 0x6d40, 0xffffffffffffffff, 0x4, 0xfffffffffffffffe]}, 0x0) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
socket(0x10, 0x2, 0xc)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0) (async)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x43ad02, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) (async)
ioctl$auto(0x3, 0xae41, r2)
ioctl$auto_KVM_GET_MSRS(r1, 0xc008ae88, &(0x7f0000000080)={0x2, 0x0, [{0x10a, 0x400, 0x9}]})
socket(0x2b, 0x5, 0x1)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000140)={[0x1ff, 0x7, 0xc45d, 0x80, 0x6, 0x3, 0x2, 0x3, 0xffffffffffffffff, 0x62, 0x80000022, 0x7, 0x6d3e, 0x2000000004000009, 0x2, 0x6]}, 0x0) (async)
mmap$auto(0xf87f, 0x400108, 0xdf, 0x9b72, 0x2, 0x8000)
ioctl$auto_USBDEVFS_DISCSIGNAL(0xffffffffffffffff, 0x8010550e, &(0x7f0000000040)={0x6, 0x0}) (async)
sendmsg$auto_ETHTOOL_MSG_DEBUG_SET(0xffffffffffffffff, 0x0, 0x4) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
socket(0x2, 0x80002, 0x73)

86.383554ms ago: executing program 1 (id=998):
set_mempolicy$auto(0x20006, &(0x7f0000000100)=0x83, 0x4)
mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000001700), r0)
r1 = socket(0xa, 0x2, 0x73)
socket(0x23, 0x2, 0x0)
sendto$auto(0xffffffffffffffff, 0x0, 0x8000, 0x0, 0x0, 0x80)
mmap$auto(0x0, 0x20009, 0x9, 0xeb1, r1, 0x8000)
r2 = io_uring_setup$auto(0x1, 0x0)
mmap$auto(0x0, 0x20008, 0x4000000000df, 0xeb1, r2, 0x8000)
unshare$auto(0x40000080)
r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000200)='/dev/tty53\x00', 0x200, 0x0)
r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/midiC2D0\x00', 0x109302, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0x7, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x0, 0x1, 0x2, 0x3, 0x95f4da0a, 0xefffffffffffffff, 0x3, 0x62, 0x80000001, 0x10000000000004, 0x6d40, 0x1, 0x2, 0xfffffffffffffffe]}, 0x0)
mmap$auto(0x400, 0xfffffffffffffffd, 0xdf, 0x9b72, r4, 0x200000008000)
r6 = socket(0x2b, 0x1, 0x1)
setsockopt$auto(r6, 0x0, 0x1, 0x0, 0x1e)
write$auto(r5, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
mmap$auto(0x0, 0x8, 0xdf, 0xeb1, 0x0, 0x8000)
ioctl$auto_SNDCTL_DSP_SPEED(r2, 0xc0045002, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
ioctl$auto_IOCTL_VMCI_GET_CONTEXT_ID(r2, 0x7b3, 0x0)
r7 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/033/001\x00', 0x3a3980, 0x0)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$auto(r7, 0x80045519, 0xf15)
ioctl$auto(r7, 0x5523, r3)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0x0, 0x0)

86.048154ms ago: executing program 4 (id=1000):
mmap$auto(0x0, 0x20009, 0x4, 0xeb1, 0xffffffffffffffff, 0x8000000000000001)
sendmsg$auto_TIPC_NL_NET_SET(0xffffffffffffffff, &(0x7f00000017c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000001780)={&(0x7f0000003340)=ANY=[@ANYRES64=0x0, @ANYRES16=0x0, @ANYRESDEC, @ANYRES32=0x0, @ANYBLOB="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", @ANYRES32, @ANYBLOB="4a0175b90b0c0092000700000000000000004102038008004d00", @ANYRES32=0x0, @ANYBLOB="1b97f5d196ee1ad17f7410297078ba54c0f11f59aac7fd475156f9d9d6e912ffe91fb88f04f0ad232484c70e0fb49b1175fda2a364ec2e961403800eab511e2589e4cd7e943ccba7022f07617eacbe3a48a7cd817d7487cf61fbaa75b6a75ab41c14014489ce3953608fff964b47b8dcf1955aa193b7dd9077d10a5acb8fb389df830605a7d5691d239651d374583d28e2dddf39683068c45bd98ae75c8e3b6ad21897cc3efc1ba28ee4b76cca9bd672341a21c7bdfde005a1f6b574f9b011651dd71000ba800800eb00", @ANYRES32=0x0, @ANYBLOB="0400078000100000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="08001200ac1e01010000591305804d0cb5bf2dc33ea3fe826390e5ac666968e6f48a62fa06e9d1cfc9f232e14fc5a09de644d1b9fbcc0db2cd6d7a89c01b7b61e6389fe56909f140c7bd575bf21eb4bb8f006cf0e8bb361752f8e75f897c09c3fb957b0d36cfd0eccbe6c7f9108f7a1d238f19238a9f387604d5bcab6dd3a6aff524708a5443c72a59aa9bb8b2aa556bb38c2c003c497b76d37f034b0d1664007bb8d57a4679f74b8bdfcc846afb88c2e4d64db80c417c99d9e3ada2b6f986d9003b80040030800400ea80080036000200000004008a803533a5a62951fb286937e29a0f4f162d42faef185a55e26144367e3e1970663b28d0a11a441b189204b22c1870286bf6c89d7f3cbd2da9e1811e55595adf49551639f48d67e803fba7677ceb3dedc98f9a29affc2e38455c007528438211028651842b54e96759deae01cec1e9e3d54f96883be66c84eb052c1df9f1f901e4c6123b3eb1fb3c837ae95cc9fc551813bef5ed98101b27da21a0a7ca17038a620edc6b4a7c5fa58ffd27325bd4e6ad3b5c5d9fbef2e7040072000800d90007000000000000c5113b800400288085742ab7c9b407c1d97be05133e3f9461fecf71a093fcc7e075ce3a47105b35321353c80e51b3120f8b42860bf8a754d77a4cb780c4a4b9831e3df2376c76ff35ac8f4cf91be9530bdc4cf56531bc81ed556a2cea67b6f6f0e1d55ba2ee8cc48c3572b2b8fc25c2eaed0047bfbfa085612db7d3d8f9897ad1a984dc8d18709339cf40eb4d45e39ea81aca6fcdd31655ea796493eb87c7cc649668bd5d7fbe6ec24db50aa66af218282b43850889c293676dfd92f3956d4d0b00190e312e16e886f5e7d80c297fb4ae9508e4a333f8454bc4637b765219a536df49df2daec08008500ac1414aa97fa09358a692895e94ca62642424832b7d92b5d4940b35fd258c74543d7747ae1d081411cca2fc09654c15a487f6fd813a457f3a2cc23a2ccbf6925200bdf9601c3ec360744d84e12347e52477dcf8b440813e2c603588bfa976890f330a2b3bd6e5a2dc624eef1c5519002c175e913e86b9900f29384b701704b221e94a2d756480c615e35698580aaf96db3de9518a62909bf387eb0f202fcfa92ff50c623a30330368475787e06993faaaf094ad587138c12db38b93af3f2480cf42c5541cb6d3166e35b3c886b86b0e0b7048766233f6e7358e8520208f55d91593a24f09972e4ce05eeece4b2422f3d4c02016e379195cd3fa10707d859faca0fd4de35f13608260e9ab0ac43fd8855d000eccdf6aab8fe23227944bcc36e46cd0d5a4cbc1ae807c993bd12056155ee779fac5b271c2ddfe0dbbd1728b85ec1ca5209b8dc57853980192c0e84a0bfe29828e52d3263a7a56877bd9aa1f5b09641cf99f104f7fce9e199a8af16f65fc931ed0e2827e82624e1cee6c86ca6a2c4e6bbbb0800e085a340be128b14e515bd27d1e7c40d93c9f27c8f56613aa80ab8f8282b0dbc71a1160a8316e2d6e22071596e4321eb98d2c2f41aa63643d5f092c577281f2c2ae1338d4ba8c75749ad77f4c0741898f799c1284089ea596f01abdbc05a9942a07dfd0cef956c9b56bd2f19626ec1e5a726b82c3fd86d90583e0c6eb160a80481cf4d49bc67506d632fd1c6f6c1021141e06fd5301d33607c4d10f1f93662accfdaf155f7f32a454ca780273b95c9aa3a9aab9fc4dea66394ab882dfcf368a15ed492017b2f2b0cc5ab39ad06425afaef2ae2393220a51cf114f6d310057c283c98320f910da7e7471bf2d88a0151cb2f55452994f87a07dd3ba3a1a667f0f9a92943ee118f7c1c2e00eb445693cfad58d328706361de4b7e0b35c80667e988f9c9d03655de6896b9fa5236c8b37015d0536719620f117a3e7213a2fc22019046c599e6e30b6b88d4d8b107af8a118bc62bd4c61103a938a26bcb0b9798cb61a459f8f692c6099452ddb58970d801c24c60b67cbde2986996e9bd7fdf8511c416ddab2ea5bdde07cf02ed16b887e8bb9193ab8603f75b43b66f23fe1b378c7042a8c4ca12b988b9105c041479605aa21b4232daa7f9fc1fa3de00bb4c2b2e3b8f08a0998ba891e892d1f78b2f6b2bfa362b1434098207850790ba0e8c3b34900316397ce9de64a3a447e4f7bfdefb27e03abc5589d5c96b558ee80032d7be6bb4371ed9e6a7fedb5dccb3424d018f0d26890a1eac29b7357befcb3e4d0e6f26339154429c72e67e0a61a45dad349a4c2f9f3248f4ef7f5d46503c21d0b9b76811b93401c1112507da08a301b02549eab66aa768cdab77122b98be6dc3b78bf1106a6b92d99d178f4d5f929df35ba55f2a96d6884cf300b29f0bd5ddb57e957264626a39939fb87a8907432bc30171aa97d8d1c5d5db00b4f762c8653ed8b3129dc420f62ecb4ea4f02d64e47333d0840a03d00454fc12f7bbbc38c46f12a3fa20194f2270149453ddd3f763290e11d6624835df72f939e9279f3fa8ecd770acc98475d19c59f06ab4d857b1cf8e4c757172eb69991d3ee0f0b538de2d228aca01d290b348b31b1612d6b62495fc81f80660d6e3b88c0a9286e5faaf35b6a2ede2b98a854dd7357de1b59dd281a8095f5115ca8662418fd7930134b4632a5cd6e562aec4569bd7c7783928c7222185e7bd57e2c9fa3c1903427da94968a11ff313fa59b8f849c8a61317dc15009265e3c539dacff3b7e9969a83279804dce39f29fbcd2b66b58abaacf1429d90259365c6cc7bcc49a41af6ed9ca93f4dc591b87030bfb5d04164d58ca96a77f05063793d728b32f9d803f10fbb39fb7d3f9475de02fa63ca5d9165d47045a89d70d5ef5ad6950c04087e2b3c9a52d7e93bd227b30d77da9c500009ec15b5f82fd4930140750a79c8f89da6d9d7d672e85cff8f1e353cfd2221d64f3df5c9b23f87c4a50d34ac37ad44d2bff413910350c4381101a6fa628c49759d637e71291b61b0d919f7ee9308555c3d0e9bc4290eb5380c758a91b464c7e5341e77f8f3935e513c11a1b737991f072c5661395b9ee18c391edb31c970f81776cff6c0f74bf8af467d1e1905e2af7f4495de552a2370b99875197b7641da36f4f73ee1d5cd9e29133e5b44c11be612d00ae9131257488ea51ffbcd3dde6facf5ff919d5a6597af482217998c6148538f6e4b162e2f7b4174e4a90464d011675150a2592d56229ebf0cb48a4756cb103171aa4dfb2732e23a51c51029acbc8307327fc516d85ae6690085d24cb69d04f86cb47af4d0e3e731c5616b3844179c8dd43dbc49a6b9e10993ef3a90fa3519920b75ba39c5e282e4be5c561c4c4297af92ec76bb11619b9a5936856c5bc5329c3ca3275d018b0d7a5e8fc88aedf8bf1015654c94b85b2baa7e61f42bd1a3a8d5e9575626151d28530fa155ffeab53619030c86cf5820da9399f5bfea557b8b9e5cc9a5f5adede5920007a367dc172d60fa33b1d6d22cd00aad40a0deb8d1b1caf52bf344ff29750f75ec1f9a5df2ad8b0a33b03633dc304bfd02c4c779f872ef72a9db06fc848ac3427cd091d629ee66a64b6017c1945f06adbe78f81cb9a702d5783b5e0a3ac1c7bbd9dff1fce185bc23b347de21ba98a907cd9159cdc6b370a4dcbf13db6912569abf3ba28d1a7291a2d72b6b44345d25a3519365104708ac490e3939883b2fbf0b8d5204ee8c9aee03511e57a99bd2ddbb54695b25ca6dd449e4c35ff7e4894fa7d01122bc5ccf1eb1f19b5731958c4eef690891828a9e98e8ecd835f1b7ea49e0bb5e164da8f2e5cab30995addac33587bbd90244bc742b2d9410d6949031db3993574b34cb18ef1dcdf2c0575ec7ff89ee9babbc39553bfcbf5dbf8b0b3846953ff405a59d05cf41ee1f87a2516686b02d23b9ba641f03ed438e4f17c0154f272fcb34c0906f41e532a026feabca07e15b82b240566e8445fc7583877a2dd4202835b9d253ad9f41b64e08fc334e0023ff9bfbd70fb18fa636c59f27af60b7a4d50a70c97abcb301423724aa8bb1356d334c9ceae0aae0dcb8055be686a841cea8b563767899594fa23b8f5c27fb3b7496d5a8d0febe0c98504c458a8cd523a2cb7d1518a8d29f530ffa9cbade4d89d47a1cc7bfc1553bd32ce66c3a19c752af5aa24ca81f1873d6a4367fefd2c17d381a4c594c663bfe5a84ecce7730bf8292ded82544dc6c0617a35022382f2a8a12beffb31066675492442bf34c65d8268e517889a37b496aa04953151ab7b5b7a7896ac6a94d73ee27981435a5cba57527052c0d6ff07e22107312e770f154af44e61921b04b2fcb0b8b284e14e43dcb0f85c25fca6db769b7f6d247b05885da14c107ed8a831da3cb35fb4d327242c3ec429af9ed849abcc3576cf97b57fa5eb9689c83683b692e5cdc4933a9354ef4b23ec422c5d947512b3dd0c6f0458c560046a1d21d1e7b6ed28a0045ca1eeeb6155387d28a56bbe1bfe02f6e002235ddf134254bdccb19767c1322d605cd34e8490f1ca9e23252f712ff972aa0983e6aa342c0b394b0cc618110debfba1e92cc0b8a1f3ae5e7553e4f79dc956a490d7ad7fb39fef0b1b1b5ebdb034806c17ed25b23e0bc10e08518462d9b5d88d9b3c78f96e3fb1442143257797f45cd0400957206a0b76f9c333da1302dc20f68012d31000871cae41cabb72149a677a1cc8d439c314decc83a4c99fd4c7faddbe3c7b9ab317e981fa9b32814b65e53e99e1a1a09c7ac8b90535f91ebbc9e9f98f8f3f00ffc545e0d8887ff52a783ba91a7228d859d5d14d77d4e61fd0348df743d304f34f00579345d8c4da1c158411d1aad7f35007326cbbebc252092fd79181e11b6b14e5ee13ce66117857f571d61dad9b2fba4eec5987f1bb9b337cd61b702a21b95ac078a8d122fb0185a7db049d90c1359a6362b2d0a1b04bc9f3ae6b65a0663e133ef39a3f3ed8f9cbe66213f6db046541152a7c25104c5e677bd26544b534c78eba07e651b59442c99d6764f2b622231e38b1b2db6ebd78ef86e178e8238b0bf5fec1eaa9a8dc28dffa4f2cfeb930b09264c4e36ea344f074382d6a12cdf4c424f42b4531dcc90c5f198e5860172193235d5fae28a49fd7c2ad01508a045a485cf70fafe7e7af7a6206169440d1ff91d1d6b45dd2f99fa123917750e40eb08a6a64da844a388d98a4c172c1d3f4db61294ba73309d15831fe971b0c7f82e6e86238bf7446e8af1206ec46fbcdc0a5450ab3ce37cf8a9b9847ffbaf18bf93414f7f0c2a2ec7dbf703e7e103b0acb5e0e0b871e1d1de3e6c80df4bc33d9fda53b42cc355a69cdca605026a58d56c6f5aeab3bd45f585b3cebf0abf88571d5ee46ca0ed1dc039cd17e8bd7d8b5a3c94636922ced2d15c2e58db573a6eb4bacfa5e2e4783ce78e37fbb54db28daa5b8dc3cff945d473e8ea079e2369ee004ac28f450716fdffecd60f52504943547487022dff5f223a6c63fa2c227a71984d9109fc2e4a170e15e1c37cc1f8d5159e134c453c3e0c2d3c20ab246830ca6b723f20018fe84f6288e6ba44b9b0b8429c838839f39316e3903d86260af9f310e4f8f9e7912dd91ce4c62a397e3c5a4ee212373533ae1b4ba30075aebe0d5d68afcd1a51a509496c04f7fb60083a8c563a4c19dfac94e4a87d29d9fa4bc75540e1fbead0e631a63e5e2be02dd92068ddeb1f0f5428528f1463c2fc39027b8276e72221a94995f92b579d394e1627206330cf5a885b65869ddbf2814fb51e358dfd58290f71ac5be5000c46b359088348c1ce294c1910a6460393f49bf03469e7b1be6ef6bf33e9c7617886c60545a95cb09117a097afd84e04b1bd8710769e8fa7c0ffeece7ec53e93b190940298ca9dfa70c2ed874977cef9ec70bbebd986574e4ed2ac315be9a7bbffaeabc95bffb5fe7d48464ddd1e3a96d8eefec78f52e421e9c6d77ca8e733b0210278beef7ff583fe2b2fbc8b0f6366e143540a9345fb94869707a62dad9ac69ba6950f28526b87a8ea37bcebe77906fe0a34777d49cc4242f2c02c55d8883057b3251278e5948e970e7e8b59624453e24bc99f89e7600c59a532df1f96fd9e55e26afe72375e813c73cce62d11f1d51021b849c63fdff7721eda9585944d79d3f66930b8cfe142dd38e181527e39246d8d25fe1d4623221583550f6fb74223a998f605480ad5570ca922b405286f7b2f3790858e9cc6bb94fdb88eb56f111c1c9a7a059cd1da230b2921bca04f216cec8de7ce714d856ca053a765c4300605f5a2bd6e7884e1e5121eccf106ced291c29ed115b85b4a788ec3505d4bdc0b11a62b3f480ae4c66c2416c6379ee25496ab4d24f22f87cd868cfa5979d49a2545295e044cdfa9e30fe0cbd445b25be9ba71bf0ec6d993c4aaa8aa7a1f0c4d7060c143c3e52fbfe550ca7ce653423869c5b77dbe1f0589ca8d877f9fab6476460b7e1cc905f9d8ca73448fd9e1fb6a3afe1303a1785bdae62c9b8d18d62f9a15e9d0702af3d61c7a2b1051ca6e792d127652ce413185f9b0dd2dad1f132790dd65049a664667fb31423269aba89f831a0420e29b7188bff2f878b5f3b7ad317f0cb47e4eb8a5f1cd96151c581e14534b049e6b4f983b29ce334c1a9ace1786502eb39fe7f052b90f5395ec6cb80b0b3399fa9092f2d76035a05408dd00dbcd304a1788a316be140bdb902e5b00359ae1bdce2e3cb5e69a8b876c12e444fddd7505273f50bdbdcc823e0400808036f832e28cfd302f5a16e8681d8969c68f9242f3eff7573e47e3484fbf0a533714e1ce17a2f98e3b76e98ac8303cad9ffa0cc8b8b63b2bbbc8dd274ed2265d4af56d500b4b35068e9530d5a4a912cacac7628f16d34a03bda9a014f304e8a73ca35fbd1ed07e1f46015e6a2a78e1b9161a8748ecab3878756ce4c0b0ce3af02ec7078be86549ca3f9c2170e78be00ea9e7402e6b459c21c99f068f2e6dc814f885e83fb4efb2ddb261cc1ffa079c08681c6cab6c2e9bed4d51abbdbcd89e043675dc24d7ebfcdc6f4d2edd32f096dbfdacb741000000000000"], 0x1bc8}}, 0x0)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
mmap$auto(0x8, 0x3a02, 0xdf, 0xffff, 0xffffffffffffffff, 0x8000)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000180)={{0x0, 0x0, 0x0, 0x9, 0x0, 0x4000000000007, 0xa505}, 0x800}, 0x4, 0x4008)
r0 = socket(0x3, 0x4, 0x400000)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000580)=ANY=[], 0x1ac}}, 0x4c041)
setsockopt$auto(r0, 0x10006, 0xc, 0x0, 0x80000003)
mmap$auto(0x0, 0x20009, 0xdf, 0xebf, 0x401, 0x5)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
mmap$auto(0x0, 0xffffffffffffff01, 0xdf, 0xeb1, 0x401, 0x8003)
getcwd$auto(0x0, 0xffffffffffffffff)
openat2$dir(0xffffffffffffff9c, 0x0, &(0x7f0000000240)={0x8040, 0xc9, 0xa}, 0x18)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
symlink$auto(&(0x7f0000000140)='./file0/file0\x00', &(0x7f0000000040)='./file0\x00')
r1 = open$dir(&(0x7f0000000000)='./file0\x00', 0x42, 0x20)
socketpair$auto(0x5, 0x6, 0xfffffffd, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x0, 0x17d)
socket(0xa, 0x3, 0x3b)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
connect$auto(0x3, &(0x7f00000018c0)=@xdp={0x2c, 0x3, 0x0, 0x40}, 0x1b)
syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000340), 0xffffffffffffffff)
close_range$auto(r1, 0xfffffffffffff000, 0x2)
openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000080), 0x8802, 0x0)
mmap$auto(0x8000000000000000, 0x6, 0xdf, 0x410, 0x2, 0x8000)
socket(0xa, 0x3, 0x3a)

85.746224ms ago: executing program 2 (id=1001):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) (async)
socketcall$auto(0x8000, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$auto(0x3, 0xae60, 0x10000000000402) (async, rerun: 64)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd10/queue/nr_requests\x00', 0x82942, 0x0) (rerun: 64)
sendfile$auto(r1, r1, 0x0, 0x200) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event0\x00', 0x3498c2, 0x0) (async)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0) (async, rerun: 32)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x40402, 0x0) (rerun: 32)
r4 = ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) (async)
ioctl$auto(0x3, 0xae41, r3) (async)
ioctl$auto_KVM_GET_MSRS(r2, 0x4008ae89, &(0x7f0000000080)={0x2, 0x0, [{0x4b564d06, 0xe3, 0x100000007f}]})
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/audit\x00', 0x40, 0x0) (async)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_seg6(&(0x7f0000002e40), 0xffffffffffffffff)
sendmsg$auto_SEG6_CMD_SET_TUNSRC(r5, &(0x7f0000002f00)={0x0, 0x0, &(0x7f0000002ec0)={&(0x7f0000000480)=ANY=[@ANYBLOB="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", @ANYRES16=r6, @ANYBLOB="010028bd7000fcdbdf2503000000"], 0x14}, 0x1, 0x0, 0x0, 0x4048c40}, 0x4)
sendmsg$auto_SEG6_CMD_DUMPHMAC(r4, &(0x7f0000000240)={&(0x7f0000000180), 0xc, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="015695", @ANYRES16=r6, @ANYBLOB="01002dbd7000fcdbdf25020000000800030006000000050006007f0000000500060001000000"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x4000040) (async, rerun: 32)
pselect6$auto(0x5, &(0x7f0000000400)={[0x8, 0x5, 0x4, 0x5, 0x8001, 0x6, 0xac, 0x2000009, 0x3, 0xffffffff, 0x7fffffffffffffff, 0x0, 0x1000, 0x2, 0x8, 0x3ff]}, 0x0, 0x0, 0x0, 0x0) (async, rerun: 32)
r7 = socket$nl_generic(0x10, 0x3, 0x10) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async)
landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x400, 0x7}, 0x9, 0x0)
landlock_restrict_self$auto(r7, 0x0)
execve$auto(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)=&(0x7f0000000080)=',{\x00', &(0x7f0000000140)=&(0x7f0000000100)='}.\x00')
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)

0s ago: executing program 4 (id=1002):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/fs/orangefs/perf_history_size\x00', 0x1182, 0x0)
mmap$auto(0x0, 0x4, 0xc00000072, 0x8b72, 0x1000000002, 0x8000)
io_uring_setup$auto(0x86, 0x0)
r0 = prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x6)
openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/self/cgroup\x00', 0x400, 0x0)
socket(0x10, 0x4, 0xffffffc0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x120e2, 0x0)
write$auto(r2, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$auto_CTRL_CMD_GETPOLICY(r3, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010325bd7040ffdbdf250a0000000c0002006e6c383032313100"], 0x28}, 0x1, 0x0, 0x0, 0x30000881}, 0xc040810)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
openat$auto_nsim_dev_max_vfs_fops_dev(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim2/max_vfs\x00', 0x48002, 0x0)
socketpair$auto(0x9, 0x2, 0xb, 0x0)
r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptyd9\x00', 0x100000, 0x0)
ioctl$auto_TIOCSETD2(r5, 0x5423, 0x0)
ioctl$auto(r1, 0x5, r0)
write$auto(r2, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff)
setgroups$auto(0xe32, 0x0)
madvise$auto(0x0, 0x200007, 0x19)
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/smaps_rollup\x00', 0x40000, 0x0)

kernel console output (not intermixed with test programs):

? bus_to_subsys+0x131/0x160
[  310.581496][ T9660]  device_add+0x10dd/0x1a70
[  310.581531][ T9660]  ? __pfx_device_add+0x10/0x10
[  310.581563][ T9660]  ? lockdep_init_map_type+0x5c/0x280
[  310.581608][ T9660]  ? __init_waitqueue_head+0xca/0x150
[  310.581664][ T9660]  netdev_register_kobject+0x182/0x3a0
[  310.581704][ T9660]  register_netdevice+0x13dc/0x2270
[  310.581744][ T9660]  ? __pfx_register_netdevice+0x10/0x10
[  310.581788][ T9660]  slip_open+0xb86/0x1150
[  310.581839][ T9660]  ? __pfx_slip_open+0x10/0x10
[  310.581878][ T9660]  ? down_write+0x14d/0x200
[  310.581911][ T9660]  ? __pfx_slip_open+0x10/0x10
[  310.581951][ T9660]  tty_ldisc_open+0x9c/0x120
[  310.581997][ T9660]  tty_set_ldisc+0x32b/0x780
[  310.582050][ T9660]  tty_ioctl+0xc2e/0x1640
[  310.582104][ T9660]  ? __pfx_tty_ioctl+0x10/0x10
[  310.582168][ T9660]  ? find_held_lock+0x2b/0x80
[  310.582201][ T9660]  ? hook_file_ioctl_common+0x145/0x410
[  310.582246][ T9660]  ? __fget_files+0x20e/0x3c0
[  310.582298][ T9660]  ? __pfx_tty_ioctl+0x10/0x10
[  310.582381][ T9660]  __x64_sys_ioctl+0x18e/0x210
[  310.582421][ T9660]  do_syscall_64+0xcd/0x490
[  310.582473][ T9660]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  310.582505][ T9660] RIP: 0033:0x7f8d2158e929
[  310.582529][ T9660] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  310.582560][ T9660] RSP: 002b:00007f8d22493038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  310.582590][ T9660] RAX: ffffffffffffffda RBX: 00007f8d217b5fa0 RCX: 00007f8d2158e929
[  310.582611][ T9660] RDX: 0000000000000000 RSI: 0000000000005423 RDI: 0000000000000005
[  310.582629][ T9660] RBP: 00007f8d21610b39 R08: 0000000000000000 R09: 0000000000000000
[  310.582648][ T9660] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  310.582666][ T9660] R13: 0000000000000000 R14: 00007f8d217b5fa0 R15: 00007ffc1af1dbb8
[  310.582709][ T9660]  </TASK>
[  311.073448][ T9663] program syz.4.597 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  312.576776][ T9709] FAULT_INJECTION: forcing a failure.
[  312.576776][ T9709] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  312.603053][ T9709] CPU: 0 UID: 0 PID: 9709 Comm: syz.1.604 Tainted: G     U              6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  312.603105][ T9709] Tainted: [U]=USER
[  312.603115][ T9709] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  312.603134][ T9709] Call Trace:
[  312.603155][ T9709]  <TASK>
[  312.603166][ T9709]  dump_stack_lvl+0x16c/0x1f0
[  312.603220][ T9709]  should_fail_ex+0x512/0x640
[  312.603273][ T9709]  _copy_to_user+0x32/0xd0
[  312.603328][ T9709]  rng_dev_read+0x1ea/0x810
[  312.603363][ T9709]  ? __pfx_virtio_read+0x10/0x10
[  312.603399][ T9709]  ? __pfx_rng_dev_read+0x10/0x10
[  312.603439][ T9709]  ? bpf_lsm_file_permission+0x9/0x10
[  312.603474][ T9709]  ? security_file_permission+0x71/0x210
[  312.603518][ T9709]  ? rw_verify_area+0xcf/0x680
[  312.603560][ T9709]  ? __pfx_rng_dev_read+0x10/0x10
[  312.603595][ T9709]  vfs_read+0x1e1/0xc60
[  312.603649][ T9709]  ? __pfx_vfs_read+0x10/0x10
[  312.603691][ T9709]  ? find_held_lock+0x2b/0x80
[  312.603727][ T9709]  ? __fget_files+0x204/0x3c0
[  312.603779][ T9709]  ? __fget_files+0x20e/0x3c0
[  312.603836][ T9709]  ksys_read+0x12a/0x250
[  312.603882][ T9709]  ? __pfx_ksys_read+0x10/0x10
[  312.603940][ T9709]  do_syscall_64+0xcd/0x490
[  312.603994][ T9709]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  312.604027][ T9709] RIP: 0033:0x7f621738e929
[  312.604053][ T9709] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  312.604085][ T9709] RSP: 002b:00007f62151d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  312.604114][ T9709] RAX: ffffffffffffffda RBX: 00007f62175b6080 RCX: 00007f621738e929
[  312.604135][ T9709] RDX: 00000000fffffe82 RSI: 0000200000000040 RDI: 0000000000000003
[  312.604163][ T9709] RBP: 00007f62151d5090 R08: 0000000000000000 R09: 0000000000000000
[  312.604181][ T9709] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  312.604200][ T9709] R13: 0000000000000000 R14: 00007f62175b6080 R15: 00007fff75d49478
[  312.604241][ T9709]  </TASK>
[  315.201082][ T9759] perf: Dynamic interrupt throttling disabled, can hang your system!
[  315.658807][ T9771] FAULT_INJECTION: forcing a failure.
[  315.658807][ T9771] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  315.717997][ T9771] CPU: 0 UID: 0 PID: 9771 Comm: syz.5.616 Tainted: G     U              6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  315.718044][ T9771] Tainted: [U]=USER
[  315.718054][ T9771] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  315.718071][ T9771] Call Trace:
[  315.718081][ T9771]  <TASK>
[  315.718092][ T9771]  dump_stack_lvl+0x16c/0x1f0
[  315.718138][ T9771]  should_fail_ex+0x512/0x640
[  315.718185][ T9771]  _copy_to_user+0x32/0xd0
[  315.718233][ T9771]  rng_dev_read+0x1ea/0x810
[  315.718264][ T9771]  ? __pfx_virtio_read+0x10/0x10
[  315.718296][ T9771]  ? __pfx_rng_dev_read+0x10/0x10
[  315.718331][ T9771]  ? bpf_lsm_file_permission+0x9/0x10
[  315.718362][ T9771]  ? security_file_permission+0x71/0x210
[  315.718400][ T9771]  ? rw_verify_area+0xcf/0x680
[  315.718435][ T9771]  ? __pfx_rng_dev_read+0x10/0x10
[  315.718465][ T9771]  vfs_read+0x1e1/0xc60
[  315.718512][ T9771]  ? __pfx_vfs_read+0x10/0x10
[  315.718549][ T9771]  ? find_held_lock+0x2b/0x80
[  315.718580][ T9771]  ? __fget_files+0x204/0x3c0
[  315.718625][ T9771]  ? __fget_files+0x20e/0x3c0
[  315.718670][ T9771]  ? rcu_watching_snap_stopped_since+0xa0/0x110
[  315.718715][ T9771]  ksys_read+0x12a/0x250
[  315.718753][ T9771]  ? __pfx_ksys_read+0x10/0x10
[  315.718803][ T9771]  do_syscall_64+0xcd/0x490
[  315.718848][ T9771]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  315.718877][ T9771] RIP: 0033:0x7ff56478e929
[  315.718899][ T9771] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  315.718927][ T9771] RSP: 002b:00007ff5656ae038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  315.718953][ T9771] RAX: ffffffffffffffda RBX: 00007ff5649b6080 RCX: 00007ff56478e929
[  315.718971][ T9771] RDX: 00000000fffffe82 RSI: 0000200000000040 RDI: 0000000000000003
[  315.718987][ T9771] RBP: 00007ff5656ae090 R08: 0000000000000000 R09: 0000000000000000
[  315.719004][ T9771] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  315.719019][ T9771] R13: 0000000000000000 R14: 00007ff5649b6080 R15: 00007ffedb395f48
[  315.719055][ T9771]  </TASK>
[  317.107832][ T6757] Bluetooth: hci4: unexpected event 0x14 length: 11 > 6
[  317.803344][ T9811] FAULT_INJECTION: forcing a failure.
[  317.803344][ T9811] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  317.817351][ T9811] CPU: 1 UID: 0 PID: 9811 Comm: syz.1.627 Tainted: G     U              6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  317.817397][ T9811] Tainted: [U]=USER
[  317.817406][ T9811] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  317.817423][ T9811] Call Trace:
[  317.817433][ T9811]  <TASK>
[  317.817444][ T9811]  dump_stack_lvl+0x16c/0x1f0
[  317.817498][ T9811]  should_fail_ex+0x512/0x640
[  317.817548][ T9811]  _copy_to_user+0x32/0xd0
[  317.817598][ T9811]  rng_dev_read+0x1ea/0x810
[  317.817632][ T9811]  ? __pfx_virtio_read+0x10/0x10
[  317.817665][ T9811]  ? __pfx_rng_dev_read+0x10/0x10
[  317.817709][ T9811]  ? bpf_lsm_file_permission+0x9/0x10
[  317.817741][ T9811]  ? security_file_permission+0x71/0x210
[  317.817787][ T9811]  ? rw_verify_area+0xcf/0x680
[  317.817825][ T9811]  ? __pfx_rng_dev_read+0x10/0x10
[  317.817857][ T9811]  vfs_read+0x1e1/0xc60
[  317.817907][ T9811]  ? __pfx_vfs_read+0x10/0x10
[  317.817951][ T9811]  ? find_held_lock+0x2b/0x80
[  317.817984][ T9811]  ? __fget_files+0x204/0x3c0
[  317.818031][ T9811]  ? __fget_files+0x20e/0x3c0
[  317.818083][ T9811]  ksys_read+0x12a/0x250
[  317.818123][ T9811]  ? __pfx_ksys_read+0x10/0x10
[  317.818178][ T9811]  do_syscall_64+0xcd/0x490
[  317.818227][ T9811]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  317.818257][ T9811] RIP: 0033:0x7f621738e929
[  317.818279][ T9811] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  317.818308][ T9811] RSP: 002b:00007f62151d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  317.818335][ T9811] RAX: ffffffffffffffda RBX: 00007f62175b6080 RCX: 00007f621738e929
[  317.818354][ T9811] RDX: 00000000fffffe82 RSI: 0000200000000040 RDI: 0000000000000003
[  317.818372][ T9811] RBP: 00007f62151d5090 R08: 0000000000000000 R09: 0000000000000000
[  317.818389][ T9811] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  317.818406][ T9811] R13: 0000000000000000 R14: 00007f62175b6080 R15: 00007fff75d49478
[  317.818444][ T9811]  </TASK>
[  319.600257][ T9828] FAULT_INJECTION: forcing a failure.
[  319.600257][ T9828] name failslab, interval 1, probability 0, space 0, times 0
[  320.017956][ T9828] CPU: 0 UID: 0 PID: 9828 Comm: syz.2.630 Tainted: G     U              6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  320.018012][ T9828] Tainted: [U]=USER
[  320.018022][ T9828] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  320.018042][ T9828] Call Trace:
[  320.018052][ T9828]  <TASK>
[  320.018065][ T9828]  dump_stack_lvl+0x16c/0x1f0
[  320.018120][ T9828]  should_fail_ex+0x512/0x640
[  320.018171][ T9828]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  320.018228][ T9828]  should_failslab+0xc2/0x120
[  320.018260][ T9828]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  320.018312][ T9828]  ? d_instantiate+0x77/0x90
[  320.018340][ T9828]  ? alloc_empty_file+0x55/0x1e0
[  320.018383][ T9828]  alloc_empty_file+0x55/0x1e0
[  320.018419][ T9828]  alloc_file_pseudo+0x13a/0x230
[  320.018456][ T9828]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  320.018496][ T9828]  ? __pfx_unix_socketpair+0x10/0x10
[  320.018560][ T9828]  sock_alloc_file+0x50/0x210
[  320.018617][ T9828]  __sys_socketpair+0x31c/0x5a0
[  320.018662][ T9828]  ? __pfx___sys_socketpair+0x10/0x10
[  320.018709][ T9828]  ? xfd_validate_state+0x61/0x180
[  320.018753][ T9828]  ? do_execveat_common.isra.0+0x4c6/0x610
[  320.018810][ T9828]  __x64_sys_socketpair+0x96/0x100
[  320.018850][ T9828]  ? lockdep_hardirqs_on+0x7c/0x110
[  320.018900][ T9828]  do_syscall_64+0xcd/0x490
[  320.018964][ T9828]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  320.018995][ T9828] RIP: 0033:0x7f9a6578e929
[  320.019030][ T9828] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  320.019058][ T9828] RSP: 002b:00007f9a635f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[  320.019085][ T9828] RAX: ffffffffffffffda RBX: 00007f9a659b5fa0 RCX: 00007f9a6578e929
[  320.019104][ T9828] RDX: 8000000000000000 RSI: 0000000000000001 RDI: 0000000000000001
[  320.019122][ T9828] RBP: 00007f9a65810b39 R08: 0000000000000000 R09: 0000000000000000
[  320.019139][ T9828] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  320.019155][ T9828] R13: 0000000000000000 R14: 00007f9a659b5fa0 R15: 00007fffa6f76f48
[  320.019192][ T9828]  </TASK>
[  321.425561][ T9873] FAULT_INJECTION: forcing a failure.
[  321.425561][ T9873] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  321.534355][ T9873] CPU: 0 UID: 0 PID: 9873 Comm: syz.5.639 Tainted: G     U              6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  321.534400][ T9873] Tainted: [U]=USER
[  321.534410][ T9873] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  321.534425][ T9873] Call Trace:
[  321.534434][ T9873]  <TASK>
[  321.534444][ T9873]  dump_stack_lvl+0x16c/0x1f0
[  321.534491][ T9873]  should_fail_ex+0x512/0x640
[  321.534537][ T9873]  _copy_to_user+0x32/0xd0
[  321.534585][ T9873]  rng_dev_read+0x1ea/0x810
[  321.534617][ T9873]  ? __pfx_virtio_read+0x10/0x10
[  321.534648][ T9873]  ? __pfx_rng_dev_read+0x10/0x10
[  321.534684][ T9873]  ? bpf_lsm_file_permission+0x9/0x10
[  321.534715][ T9873]  ? security_file_permission+0x71/0x210
[  321.534754][ T9873]  ? rw_verify_area+0xcf/0x680
[  321.534790][ T9873]  ? __pfx_rng_dev_read+0x10/0x10
[  321.534821][ T9873]  vfs_read+0x1e1/0xc60
[  321.534868][ T9873]  ? __pfx_vfs_read+0x10/0x10
[  321.534906][ T9873]  ? find_held_lock+0x2b/0x80
[  321.534936][ T9873]  ? __fget_files+0x204/0x3c0
[  321.534981][ T9873]  ? __fget_files+0x20e/0x3c0
[  321.535030][ T9873]  ksys_read+0x12a/0x250
[  321.535070][ T9873]  ? __pfx_ksys_read+0x10/0x10
[  321.535127][ T9873]  do_syscall_64+0xcd/0x490
[  321.535175][ T9873]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  321.535204][ T9873] RIP: 0033:0x7ff56478e929
[  321.535225][ T9873] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  321.535253][ T9873] RSP: 002b:00007ff5656ae038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  321.535278][ T9873] RAX: ffffffffffffffda RBX: 00007ff5649b6080 RCX: 00007ff56478e929
[  321.535296][ T9873] RDX: 00000000fffffe82 RSI: 0000200000000040 RDI: 0000000000000003
[  321.535313][ T9873] RBP: 00007ff5656ae090 R08: 0000000000000000 R09: 0000000000000000
[  321.535330][ T9873] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  321.535350][ T9873] R13: 0000000000000000 R14: 00007ff5649b6080 R15: 00007ffedb395f48
[  321.535403][ T9873]  </TASK>
[  322.104527][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  322.110922][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  322.290059][ T9885] netlink: 28 bytes leftover after parsing attributes in process `syz.1.641'.
[  325.177048][ T9924] random: crng reseeded on system resumption
[  325.793292][ T9937] ptp ptp0: guarantee physical clock free running
[  327.362490][ T9974] FAULT_INJECTION: forcing a failure.
[  327.362490][ T9974] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  327.534342][ T9974] CPU: 1 UID: 0 PID: 9974 Comm: syz.4.651 Tainted: G     U              6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  327.534387][ T9974] Tainted: [U]=USER
[  327.534396][ T9974] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  327.534412][ T9974] Call Trace:
[  327.534422][ T9974]  <TASK>
[  327.534432][ T9974]  dump_stack_lvl+0x16c/0x1f0
[  327.534480][ T9974]  should_fail_ex+0x512/0x640
[  327.534526][ T9974]  _copy_to_user+0x32/0xd0
[  327.534574][ T9974]  rng_dev_read+0x1ea/0x810
[  327.534605][ T9974]  ? __pfx_virtio_read+0x10/0x10
[  327.534636][ T9974]  ? __pfx_rng_dev_read+0x10/0x10
[  327.534672][ T9974]  ? bpf_lsm_file_permission+0x9/0x10
[  327.534702][ T9974]  ? security_file_permission+0x71/0x210
[  327.534740][ T9974]  ? rw_verify_area+0xcf/0x680
[  327.534776][ T9974]  ? __pfx_rng_dev_read+0x10/0x10
[  327.534807][ T9974]  vfs_read+0x1e1/0xc60
[  327.534860][ T9974]  ? __pfx_vfs_read+0x10/0x10
[  327.534898][ T9974]  ? find_held_lock+0x2b/0x80
[  327.534929][ T9974]  ? __fget_files+0x204/0x3c0
[  327.534973][ T9974]  ? __fget_files+0x20e/0x3c0
[  327.535022][ T9974]  ksys_read+0x12a/0x250
[  327.535062][ T9974]  ? __pfx_ksys_read+0x10/0x10
[  327.535112][ T9974]  do_syscall_64+0xcd/0x490
[  327.535158][ T9974]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  327.535186][ T9974] RIP: 0033:0x7f8d2158e929
[  327.535207][ T9974] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  327.535235][ T9974] RSP: 002b:00007f8d22493038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  327.535279][ T9974] RAX: ffffffffffffffda RBX: 00007f8d217b5fa0 RCX: 00007f8d2158e929
[  327.535298][ T9974] RDX: 00000000fffffe82 RSI: 0000200000000040 RDI: 0000000000000003
[  327.535317][ T9974] RBP: 00007f8d22493090 R08: 0000000000000000 R09: 0000000000000000
[  327.535334][ T9974] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  327.535351][ T9974] R13: 0000000000000000 R14: 00007f8d217b5fa0 R15: 00007ffc1af1dbb8
[  327.535390][ T9974]  </TASK>
[  329.390403][T10008] ptp ptp0: guarantee physical clock free running
[  331.034937][T10063] FAULT_INJECTION: forcing a failure.
[  331.034937][T10063] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  331.091892][T10063] CPU: 0 UID: 0 PID: 10063 Comm: syz.2.667 Tainted: G     U              6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  331.091937][T10063] Tainted: [U]=USER
[  331.091947][T10063] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  331.091962][T10063] Call Trace:
[  331.091971][T10063]  <TASK>
[  331.091981][T10063]  dump_stack_lvl+0x16c/0x1f0
[  331.092028][T10063]  should_fail_ex+0x512/0x640
[  331.092075][T10063]  _copy_to_user+0x32/0xd0
[  331.092122][T10063]  rng_dev_read+0x1ea/0x810
[  331.092154][T10063]  ? __pfx_virtio_read+0x10/0x10
[  331.092185][T10063]  ? __pfx_rng_dev_read+0x10/0x10
[  331.092220][T10063]  ? bpf_lsm_file_permission+0x9/0x10
[  331.092251][T10063]  ? security_file_permission+0x71/0x210
[  331.092290][T10063]  ? rw_verify_area+0xcf/0x680
[  331.092331][T10063]  ? __pfx_rng_dev_read+0x10/0x10
[  331.092361][T10063]  vfs_read+0x1e1/0xc60
[  331.092408][T10063]  ? __pfx_vfs_read+0x10/0x10
[  331.092444][T10063]  ? find_held_lock+0x2b/0x80
[  331.092475][T10063]  ? __fget_files+0x204/0x3c0
[  331.092519][T10063]  ? __fget_files+0x20e/0x3c0
[  331.092568][T10063]  ksys_read+0x12a/0x250
[  331.092607][T10063]  ? __pfx_ksys_read+0x10/0x10
[  331.092658][T10063]  do_syscall_64+0xcd/0x490
[  331.092703][T10063]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  331.092732][T10063] RIP: 0033:0x7f9a6578e929
[  331.092753][T10063] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  331.092779][T10063] RSP: 002b:00007f9a635d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  331.092804][T10063] RAX: ffffffffffffffda RBX: 00007f9a659b6080 RCX: 00007f9a6578e929
[  331.092821][T10063] RDX: 00000000fffffe82 RSI: 0000200000000040 RDI: 0000000000000003
[  331.092837][T10063] RBP: 00007f9a635d5090 R08: 0000000000000000 R09: 0000000000000000
[  331.092854][T10063] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  331.092870][T10063] R13: 0000000000000000 R14: 00007f9a659b6080 R15: 00007fffa6f76f48
[  331.092906][T10063]  </TASK>
[  332.347804][T10082] could not allocate digest TFM handle 
[  332.559959][T10074] random: crng reseeded on system resumption
[  332.650442][T10095] netlink: 28 bytes leftover after parsing attributes in process `syz.2.670'.
[  332.814459][T10082] could not allocate digest TFM handle 
[  333.205252][T10082] could not allocate digest TFM handle 
[  333.524461][T10082] could not allocate digest TFM handle 
[  334.262946][T10082] could not allocate digest TFM handle 
/[  334.680782][T10144] netlink: 28 bytes leftover after parsing attributes in process `syz.2.675'.
[  334.746927][T10144] ipvlan0: entered allmulticast mode
[  334.777375][T10144] veth0_vlan: entered allmulticast mode
[  334.934780][T10082] could not allocate digest TFM handle 
[  335.035706][T10082] could not allocate digest TFM handle 
[  335.184024][T10082] could not allocate digest TFM handle 
[  335.879165][T10161] FAULT_INJECTION: forcing a failure.
[  335.879165][T10161] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  335.978458][T10161] CPU: 0 UID: 0 PID: 10161 Comm: syz.4.677 Tainted: G     U              6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  335.978504][T10161] Tainted: [U]=USER
[  335.978513][T10161] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  335.978529][T10161] Call Trace:
[  335.978537][T10161]  <TASK>
[  335.978547][T10161]  dump_stack_lvl+0x16c/0x1f0
[  335.978594][T10161]  should_fail_ex+0x512/0x640
[  335.978639][T10161]  _copy_to_user+0x32/0xd0
[  335.978686][T10161]  rng_dev_read+0x1ea/0x810
[  335.978714][T10161]  ? __pfx_virtio_read+0x10/0x10
[  335.978745][T10161]  ? __pfx_rng_dev_read+0x10/0x10
[  335.978778][T10161]  ? bpf_lsm_file_permission+0x9/0x10
[  335.978807][T10161]  ? security_file_permission+0x71/0x210
[  335.978845][T10161]  ? rw_verify_area+0xcf/0x680
[  335.978880][T10161]  ? __pfx_rng_dev_read+0x10/0x10
[  335.978910][T10161]  vfs_read+0x1e1/0xc60
[  335.978956][T10161]  ? __pfx_vfs_read+0x10/0x10
[  335.978991][T10161]  ? find_held_lock+0x2b/0x80
[  335.979021][T10161]  ? __fget_files+0x204/0x3c0
[  335.979065][T10161]  ? __fget_files+0x20e/0x3c0
[  335.979114][T10161]  ksys_read+0x12a/0x250
[  335.979153][T10161]  ? __pfx_ksys_read+0x10/0x10
[  335.979213][T10161]  do_syscall_64+0xcd/0x490
[  335.979259][T10161]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  335.979288][T10161] RIP: 0033:0x7f8d2158e929
[  335.979309][T10161] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  335.979337][T10161] RSP: 002b:00007f8d22493038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  335.979361][T10161] RAX: ffffffffffffffda RBX: 00007f8d217b5fa0 RCX: 00007f8d2158e929
[  335.979379][T10161] RDX: 00000000fffffe82 RSI: 0000200000000040 RDI: 0000000000000003
[  335.979395][T10161] RBP: 00007f8d22493090 R08: 0000000000000000 R09: 0000000000000000
[  335.979412][T10161] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  335.979428][T10161] R13: 0000000000000000 R14: 00007f8d217b5fa0 R15: 00007ffc1af1dbb8
[  335.979463][T10161]  </TASK>
[  336.920144][T10196] vhci_hcd: invalid port number 16
[  336.960417][T10196] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[  338.594690][T10243] [U] 
[  338.597751][T10243] [U] 
[  338.600506][T10243] [U] 
[  338.603259][T10243] [U] 
[  339.043893][T10253] FAULT_INJECTION: forcing a failure.
[  339.043893][T10253] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  339.071091][T10253] CPU: 0 UID: 0 PID: 10253 Comm: syz.5.691 Tainted: G     U              6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  339.071156][T10253] Tainted: [U]=USER
[  339.071166][T10253] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  339.071184][T10253] Call Trace:
[  339.071194][T10253]  <TASK>
[  339.071206][T10253]  dump_stack_lvl+0x16c/0x1f0
[  339.071259][T10253]  should_fail_ex+0x512/0x640
[  339.071312][T10253]  _copy_from_user+0x2e/0xd0
[  339.071364][T10253]  copy_msghdr_from_user+0x98/0x160
[  339.071418][T10253]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  339.071488][T10253]  ___sys_sendmsg+0xfe/0x1d0
[  339.071539][T10253]  ? __pfx____sys_sendmsg+0x10/0x10
[  339.071584][T10253]  ? __lock_acquire+0x622/0x1c90
[  339.071680][T10253]  __sys_sendmsg+0x16d/0x220
[  339.071730][T10253]  ? __pfx___sys_sendmsg+0x10/0x10
[  339.071807][T10253]  do_syscall_64+0xcd/0x490
[  339.071868][T10253]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  339.071902][T10253] RIP: 0033:0x7ff56478e929
[  339.071925][T10253] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  339.071956][T10253] RSP: 002b:00007ff5656cf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  339.071985][T10253] RAX: ffffffffffffffda RBX: 00007ff5649b5fa0 RCX: 00007ff56478e929
[  339.072004][T10253] RDX: 0000000000000080 RSI: 0000200000004080 RDI: 0000000000000003
[  339.072023][T10253] RBP: 00007ff5656cf090 R08: 0000000000000000 R09: 0000000000000000
[  339.072041][T10253] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  339.072058][T10253] R13: 0000000000000000 R14: 00007ff5649b5fa0 R15: 00007ffedb395f48
[  339.072115][T10253]  </TASK>
[  339.258692][T10233] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  339.264874][T10233] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  339.271593][T10233] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  339.279193][T10233] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  339.285295][T10233] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  339.316433][T10233] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  339.751540][T10274] FAULT_INJECTION: forcing a failure.
[  339.751540][T10274] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  339.764877][T10274] CPU: 0 UID: 0 PID: 10274 Comm: syz.1.694 Tainted: G     U              6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  339.764921][T10274] Tainted: [U]=USER
[  339.764930][T10274] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  339.764946][T10274] Call Trace:
[  339.764955][T10274]  <TASK>
[  339.764965][T10274]  dump_stack_lvl+0x16c/0x1f0
[  339.765011][T10274]  should_fail_ex+0x512/0x640
[  339.765050][T10274]  _copy_to_user+0x32/0xd0
[  339.765091][T10274]  rng_dev_read+0x1ea/0x810
[  339.765123][T10274]  ? __pfx_virtio_read+0x10/0x10
[  339.765154][T10274]  ? __pfx_rng_dev_read+0x10/0x10
[  339.765190][T10274]  ? bpf_lsm_file_permission+0x9/0x10
[  339.765238][T10274]  ? security_file_permission+0x71/0x210
[  339.765275][T10274]  ? rw_verify_area+0xcf/0x680
[  339.765306][T10274]  ? __pfx_rng_dev_read+0x10/0x10
[  339.765333][T10274]  vfs_read+0x1e1/0xc60
[  339.765384][T10274]  ? __pfx_vfs_read+0x10/0x10
[  339.765435][T10274]  ? find_held_lock+0x2b/0x80
[  339.765465][T10274]  ? __fget_files+0x204/0x3c0
[  339.765508][T10274]  ? __fget_files+0x20e/0x3c0
[  339.765555][T10274]  ksys_read+0x12a/0x250
[  339.765604][T10274]  ? __pfx_ksys_read+0x10/0x10
[  339.765652][T10274]  do_syscall_64+0xcd/0x490
[  339.765700][T10274]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  339.765733][T10274] RIP: 0033:0x7f621738e929
[  339.765757][T10274] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  339.765788][T10274] RSP: 002b:00007f62151d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  339.765818][T10274] RAX: ffffffffffffffda RBX: 00007f62175b6080 RCX: 00007f621738e929
[  339.765840][T10274] RDX: 00000000fffffe82 RSI: 0000200000000040 RDI: 0000000000000003
[  339.765860][T10274] RBP: 00007f62151d5090 R08: 0000000000000000 R09: 0000000000000000
[  339.765879][T10274] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  339.765898][T10274] R13: 0000000000000000 R14: 00007f62175b6080 R15: 00007fff75d49478
[  339.765940][T10274]  </TASK>
[  340.272929][T10227] [U] 
[  340.819325][ T6434] Bluetooth: hci2: command 0x0406 tx timeout
[  341.387805][ T6757] Bluetooth: hci4: command 0x0c1a tx timeout
[  341.393869][ T6442] Bluetooth: hci3: command 0x0406 tx timeout
[  341.399954][ T6434] Bluetooth: hci1: command 0x0c1a tx timeout
[  342.023447][T10314] FAULT_INJECTION: forcing a failure.
[  342.023447][T10314] name failslab, interval 1, probability 0, space 0, times 0
[  342.057125][T10314] CPU: 1 UID: 0 PID: 10314 Comm: syz.1.702 Tainted: G     U              6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  342.057186][T10314] Tainted: [U]=USER
[  342.057196][T10314] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  342.057220][T10314] Call Trace:
[  342.057229][T10314]  <TASK>
[  342.057239][T10314]  dump_stack_lvl+0x16c/0x1f0
[  342.057286][T10314]  should_fail_ex+0x512/0x640
[  342.057329][T10314]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  342.057387][T10314]  should_failslab+0xc2/0x120
[  342.057416][T10314]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  342.057462][T10314]  ? __alloc_skb+0x2b2/0x380
[  342.057510][T10314]  __alloc_skb+0x2b2/0x380
[  342.057551][T10314]  ? __pfx___alloc_skb+0x10/0x10
[  342.057599][T10314]  ? __lock_acquire+0xb8a/0x1c90
[  342.057645][T10314]  netlink_alloc_large_skb+0x69/0x130
[  342.057679][T10314]  netlink_sendmsg+0x6a1/0xdd0
[  342.057717][T10314]  ? __pfx_netlink_sendmsg+0x10/0x10
[  342.057763][T10314]  ____sys_sendmsg+0xa95/0xc70
[  342.057798][T10314]  ? copy_msghdr_from_user+0x10a/0x160
[  342.057842][T10314]  ? __pfx_____sys_sendmsg+0x10/0x10
[  342.057893][T10314]  ___sys_sendmsg+0x134/0x1d0
[  342.057940][T10314]  ? __pfx____sys_sendmsg+0x10/0x10
[  342.057982][T10314]  ? __lock_acquire+0x622/0x1c90
[  342.058071][T10314]  __sys_sendmsg+0x16d/0x220
[  342.058117][T10314]  ? __pfx___sys_sendmsg+0x10/0x10
[  342.058189][T10314]  do_syscall_64+0xcd/0x490
[  342.058238][T10314]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  342.058268][T10314] RIP: 0033:0x7f621738e929
[  342.058291][T10314] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  342.058319][T10314] RSP: 002b:00007f62151f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  342.058346][T10314] RAX: ffffffffffffffda RBX: 00007f62175b5fa0 RCX: 00007f621738e929
[  342.058374][T10314] RDX: 0000000000000080 RSI: 0000200000004080 RDI: 0000000000000003
[  342.058391][T10314] RBP: 00007f62151f6090 R08: 0000000000000000 R09: 0000000000000000
[  342.058409][T10314] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  342.058435][T10314] R13: 0000000000000000 R14: 00007f62175b5fa0 R15: 00007fff75d49478
[  342.058474][T10314]  </TASK>
[  342.332654][T10316] FAULT_INJECTION: forcing a failure.
[  342.332654][T10316] name failslab, interval 1, probability 0, space 0, times 0
[  342.346310][T10316] CPU: 1 UID: 0 PID: 10316 Comm: syz.2.703 Tainted: G     U              6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  342.346366][T10316] Tainted: [U]=USER
[  342.346379][T10316] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  342.346400][T10316] Call Trace:
[  342.346410][T10316]  <TASK>
[  342.346423][T10316]  dump_stack_lvl+0x16c/0x1f0
[  342.346483][T10316]  should_fail_ex+0x512/0x640
[  342.346532][T10316]  ? __kmalloc_noprof+0xbf/0x510
[  342.346587][T10316]  ? lsm_blob_alloc+0x68/0x90
[  342.346636][T10316]  should_failslab+0xc2/0x120
[  342.346687][T10316]  __kmalloc_noprof+0xd2/0x510
[  342.346748][T10316]  lsm_blob_alloc+0x68/0x90
[  342.346799][T10316]  security_sk_alloc+0x30/0x270
[  342.346837][T10316]  sk_prot_alloc+0xfb/0x2a0
[  342.346875][T10316]  sk_alloc+0x36/0xc20
[  342.346921][T10316]  inet6_create+0x381/0x1300
[  342.346978][T10316]  ? inet6_create+0x7f/0x1300
[  342.347034][T10316]  __sock_create+0x338/0x8d0
[  342.347079][T10316]  smc_create_clcsk+0x37/0xd0
[  342.347120][T10316]  ? __pfx_smc_inet_init_sock+0x10/0x10
[  342.347174][T10316]  inet6_create+0xb2d/0x1300
[  342.347229][T10316]  ? inet6_create+0x7f/0x1300
[  342.347286][T10316]  __sock_create+0x338/0x8d0
[  342.347331][T10316]  __sys_socket+0x14d/0x260
[  342.347370][T10316]  ? __pfx___sys_socket+0x10/0x10
[  342.347409][T10316]  ? xfd_validate_state+0x61/0x180
[  342.347453][T10316]  ? __pfx_do_writev+0x10/0x10
[  342.347510][T10316]  __x64_sys_socket+0x72/0xb0
[  342.347547][T10316]  ? lockdep_hardirqs_on+0x7c/0x110
[  342.347594][T10316]  do_syscall_64+0xcd/0x490
[  342.347648][T10316]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  342.347688][T10316] RIP: 0033:0x7f9a6578e929
[  342.347715][T10316] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  342.347750][T10316] RSP: 002b:00007f9a635f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  342.347782][T10316] RAX: ffffffffffffffda RBX: 00007f9a659b5fa0 RCX: 00007f9a6578e929
[  342.347804][T10316] RDX: 0000000000000100 RSI: 0000000000000001 RDI: 000000000000000a
[  342.347824][T10316] RBP: 00007f9a65810b39 R08: 0000000000000000 R09: 0000000000000000
[  342.347844][T10316] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  342.347864][T10316] R13: 0000000000000000 R14: 00007f9a659b5fa0 R15: 00007fffa6f76f48
[  342.347906][T10316]  </TASK>
[  342.829153][T10322] FAULT_INJECTION: forcing a failure.
[  342.829153][T10322] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  342.887396][T10322] CPU: 0 UID: 0 PID: 10322 Comm: syz.4.705 Tainted: G     U              6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  342.887440][T10322] Tainted: [U]=USER
[  342.887449][T10322] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  342.887465][T10322] Call Trace:
[  342.887474][T10322]  <TASK>
[  342.887487][T10322]  dump_stack_lvl+0x16c/0x1f0
[  342.887533][T10322]  should_fail_ex+0x512/0x640
[  342.887579][T10322]  _copy_to_user+0x32/0xd0
[  342.887634][T10322]  rng_dev_read+0x1ea/0x810
[  342.887667][T10322]  ? __pfx_virtio_read+0x10/0x10
[  342.887698][T10322]  ? __pfx_rng_dev_read+0x10/0x10
[  342.887733][T10322]  ? bpf_lsm_file_permission+0x9/0x10
[  342.887765][T10322]  ? security_file_permission+0x71/0x210
[  342.887803][T10322]  ? rw_verify_area+0xcf/0x680
[  342.887838][T10322]  ? __pfx_rng_dev_read+0x10/0x10
[  342.887868][T10322]  vfs_read+0x1e1/0xc60
[  342.887915][T10322]  ? __pfx_vfs_read+0x10/0x10
[  342.887952][T10322]  ? find_held_lock+0x2b/0x80
[  342.887983][T10322]  ? __fget_files+0x204/0x3c0
[  342.888027][T10322]  ? __fget_files+0x20e/0x3c0
[  342.888076][T10322]  ksys_read+0x12a/0x250
[  342.888115][T10322]  ? __pfx_ksys_read+0x10/0x10
[  342.888184][T10322]  do_syscall_64+0xcd/0x490
[  342.888253][T10322]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  342.888285][T10322] RIP: 0033:0x7f8d2158e929
[  342.888310][T10322] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  342.888340][T10322] RSP: 002b:00007f8d22472038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  342.888369][T10322] RAX: ffffffffffffffda RBX: 00007f8d217b6080 RCX: 00007f8d2158e929
[  342.888390][T10322] RDX: 00000000fffffe82 RSI: 0000200000000040 RDI: 0000000000000003
[  342.888409][T10322] RBP: 00007f8d22472090 R08: 0000000000000000 R09: 0000000000000000
[  342.888427][T10322] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  342.888446][T10322] R13: 0000000000000000 R14: 00007f8d217b6080 R15: 00007ffc1af1dbb8
[  342.888487][T10322]  </TASK>
[  343.440049][   T30] audit: type=1800 audit(4294967479.150:11): pid=10329 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.707" name="lu_gp_id" dev="configfs" ino=25564 res=0 errno=0
[  343.467458][ T6434] Bluetooth: hci1: command 0x0c1a tx timeout
[  343.755609][T10333] mkiss: ax0: crc mode is auto.
[  344.096376][T10335] random: crng reseeded on system resumption
[  344.371958][T10327] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  344.438598][T10327] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  345.237341][T10358] netlink: 334 bytes leftover after parsing attributes in process `syz.4.713'.
[  345.260849][T10358] FAULT_INJECTION: forcing a failure.
[  345.260849][T10358] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  345.274392][T10358] CPU: 1 UID: 0 PID: 10358 Comm: syz.4.713 Tainted: G     U              6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  345.274438][T10358] Tainted: [U]=USER
[  345.274467][T10358] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  345.274485][T10358] Call Trace:
[  345.274495][T10358]  <TASK>
[  345.274506][T10358]  dump_stack_lvl+0x16c/0x1f0
[  345.274583][T10358]  should_fail_ex+0x512/0x640
[  345.274632][T10358]  should_fail_alloc_page+0xe7/0x130
[  345.274665][T10358]  prepare_alloc_pages+0x3c2/0x610
[  345.274707][T10358]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  345.274758][T10358]  ? stack_trace_save+0x8e/0xc0
[  345.274791][T10358]  ? __pfx_stack_trace_save+0x10/0x10
[  345.274824][T10358]  ? stack_depot_save_flags+0x28/0xa40
[  345.274876][T10358]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  345.274919][T10358]  ? kasan_save_stack+0x42/0x60
[  345.274961][T10358]  ? kasan_save_track+0x14/0x30
[  345.275002][T10358]  ? snd_pcm_attach_substream+0x441/0xd60
[  345.275039][T10358]  ? snd_pcm_open_substream+0x8d/0x17f0
[  345.275075][T10358]  ? snd_pcm_open+0x29e/0x730
[  345.275107][T10358]  ? snd_pcm_playback_open+0x86/0xe0
[  345.275140][T10358]  ? snd_open+0x201/0x450
[  345.275181][T10358]  ? chrdev_open+0x234/0x6a0
[  345.275223][T10358]  ? do_dentry_open+0x741/0x1c10
[  345.275268][T10358]  ? do_syscall_64+0xcd/0x490
[  345.275310][T10358]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  345.275349][T10358]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  345.275427][T10358]  ? policy_nodemask+0xea/0x4e0
[  345.275464][T10358]  alloc_pages_mpol+0x1fb/0x550
[  345.275500][T10358]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  345.275548][T10358]  alloc_pages_noprof+0x131/0x390
[  345.275582][T10358]  alloc_pages_exact_noprof+0x37/0xe0
[  345.275630][T10358]  snd_pcm_attach_substream+0x468/0xd60
[  345.275686][T10358]  snd_pcm_open_substream+0x8d/0x17f0
[  345.275733][T10358]  ? __pfx_snd_pcm_open_substream+0x10/0x10
[  345.275781][T10358]  ? rcu_is_watching+0x12/0xc0
[  345.275825][T10358]  snd_pcm_open+0x29e/0x730
[  345.275874][T10358]  ? __pfx_snd_pcm_open+0x10/0x10
[  345.275923][T10358]  ? __pfx_default_wake_function+0x10/0x10
[  345.275974][T10358]  ? __pfx_snd_pcm_playback_open+0x10/0x10
[  345.276019][T10358]  snd_pcm_playback_open+0x86/0xe0
[  345.276064][T10358]  snd_open+0x201/0x450
[  345.276118][T10358]  ? __pfx_snd_open+0x10/0x10
[  345.276172][T10358]  chrdev_open+0x234/0x6a0
[  345.276223][T10358]  ? __pfx_apparmor_file_open+0x10/0x10
[  345.276269][T10358]  ? __pfx_chrdev_open+0x10/0x10
[  345.276327][T10358]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  345.276389][T10358]  do_dentry_open+0x741/0x1c10
[  345.276441][T10358]  ? __pfx_chrdev_open+0x10/0x10
[  345.276503][T10358]  vfs_open+0x82/0x3f0
[  345.276544][T10358]  path_openat+0x1de4/0x2cb0
[  345.276621][T10358]  ? __pfx_path_openat+0x10/0x10
[  345.276681][T10358]  ? __lock_acquire+0xb8a/0x1c90
[  345.276744][T10358]  do_filp_open+0x20b/0x470
[  345.276789][T10358]  ? __pfx_do_filp_open+0x10/0x10
[  345.276863][T10358]  ? alloc_fd+0x471/0x7d0
[  345.276924][T10358]  do_sys_openat2+0x11b/0x1d0
[  345.276957][T10358]  ? __pfx_do_sys_openat2+0x10/0x10
[  345.277023][T10358]  __x64_sys_openat+0x174/0x210
[  345.277060][T10358]  ? __pfx___x64_sys_openat+0x10/0x10
[  345.277113][T10358]  do_syscall_64+0xcd/0x490
[  345.277164][T10358]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  345.277196][T10358] RIP: 0033:0x7f8d2158e929
[  345.277219][T10358] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  345.277250][T10358] RSP: 002b:00007f8d22493038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  345.277279][T10358] RAX: ffffffffffffffda RBX: 00007f8d217b5fa0 RCX: 00007f8d2158e929
[  345.277299][T10358] RDX: 0000000000040100 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  345.277319][T10358] RBP: 00007f8d21610b39 R08: 0000000000000000 R09: 0000000000000000
[  345.277338][T10358] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  345.277361][T10358] R13: 0000000000000000 R14: 00007f8d217b5fa0 R15: 00007ffc1af1dbb8
[  345.277403][T10358]  </TASK>
[  345.672375][    C1] vkms_vblank_simulate: vblank timer overrun
[  345.721817][ T6434] Bluetooth: hci1: command 0x0c1a tx timeout
[  346.254940][T10372] FAULT_INJECTION: forcing a failure.
[  346.254940][T10372] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  346.293597][T10372] CPU: 1 UID: 0 PID: 10372 Comm: syz.1.716 Tainted: G     U              6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  346.293642][T10372] Tainted: [U]=USER
[  346.293651][T10372] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  346.293666][T10372] Call Trace:
[  346.293675][T10372]  <TASK>
[  346.293684][T10372]  dump_stack_lvl+0x16c/0x1f0
[  346.293731][T10372]  should_fail_ex+0x512/0x640
[  346.293776][T10372]  _copy_to_user+0x32/0xd0
[  346.293823][T10372]  rng_dev_read+0x1ea/0x810
[  346.293855][T10372]  ? __pfx_virtio_read+0x10/0x10
[  346.293885][T10372]  ? __pfx_rng_dev_read+0x10/0x10
[  346.293919][T10372]  ? bpf_lsm_file_permission+0x9/0x10
[  346.293948][T10372]  ? security_file_permission+0x71/0x210
[  346.293984][T10372]  ? rw_verify_area+0xcf/0x680
[  346.294022][T10372]  ? __pfx_rng_dev_read+0x10/0x10
[  346.294048][T10372]  vfs_read+0x1e1/0xc60
[  346.294106][T10372]  ? __pfx_vfs_read+0x10/0x10
[  346.294139][T10372]  ? find_held_lock+0x2b/0x80
[  346.294167][T10372]  ? __fget_files+0x204/0x3c0
[  346.294207][T10372]  ? __fget_files+0x20e/0x3c0
[  346.294251][T10372]  ksys_read+0x12a/0x250
[  346.294288][T10372]  ? __pfx_ksys_read+0x10/0x10
[  346.294333][T10372]  do_syscall_64+0xcd/0x490
[  346.294375][T10372]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  346.294401][T10372] RIP: 0033:0x7f621738e929
[  346.294422][T10372] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  346.294447][T10372] RSP: 002b:00007f62151f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  346.294472][T10372] RAX: ffffffffffffffda RBX: 00007f62175b5fa0 RCX: 00007f621738e929
[  346.294489][T10372] RDX: 00000000fffffe82 RSI: 0000200000000040 RDI: 0000000000000003
[  346.294505][T10372] RBP: 00007f62151f6090 R08: 0000000000000000 R09: 0000000000000000
[  346.294521][T10372] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  346.294535][T10372] R13: 0000000000000000 R14: 00007f62175b5fa0 R15: 00007fff75d49478
[  346.294568][T10372]  </TASK>
[  346.498048][    C1] vkms_vblank_simulate: vblank timer overrun
[  347.093112][T10386] netlink: 28 bytes leftover after parsing attributes in process `syz.1.719'.
[  347.123833][T10387] netlink: 28 bytes leftover after parsing attributes in process `syz.1.719'.
[  347.634490][T10402] FAULT_INJECTION: forcing a failure.
[  347.634490][T10402] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  347.692553][T10402] CPU: 1 UID: 0 PID: 10402 Comm: syz.1.725 Tainted: G     U              6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  347.692601][T10402] Tainted: [U]=USER
[  347.692610][T10402] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  347.692627][T10402] Call Trace:
[  347.692637][T10402]  <TASK>
[  347.692647][T10402]  dump_stack_lvl+0x16c/0x1f0
[  347.692697][T10402]  should_fail_ex+0x512/0x640
[  347.692745][T10402]  _copy_from_iter+0x29f/0x16f0
[  347.692804][T10402]  ? __alloc_skb+0x200/0x380
[  347.692845][T10402]  ? __pfx__copy_from_iter+0x10/0x10
[  347.692894][T10402]  ? __lock_acquire+0xb8a/0x1c90
[  347.692943][T10402]  netlink_sendmsg+0x829/0xdd0
[  347.692979][T10402]  ? __pfx_netlink_sendmsg+0x10/0x10
[  347.693023][T10402]  ____sys_sendmsg+0xa95/0xc70
[  347.693055][T10402]  ? copy_msghdr_from_user+0x10a/0x160
[  347.693097][T10402]  ? __pfx_____sys_sendmsg+0x10/0x10
[  347.693146][T10402]  ___sys_sendmsg+0x134/0x1d0
[  347.693189][T10402]  ? __pfx____sys_sendmsg+0x10/0x10
[  347.693233][T10402]  ? __lock_acquire+0x622/0x1c90
[  347.693334][T10402]  __sys_sendmsg+0x16d/0x220
[  347.693381][T10402]  ? __pfx___sys_sendmsg+0x10/0x10
[  347.693463][T10402]  do_syscall_64+0xcd/0x490
[  347.693527][T10402]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  347.693557][T10402] RIP: 0033:0x7f621738e929
[  347.693579][T10402] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  347.693609][T10402] RSP: 002b:00007f62151f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  347.693639][T10402] RAX: ffffffffffffffda RBX: 00007f62175b5fa0 RCX: 00007f621738e929
[  347.693658][T10402] RDX: 0000000000000080 RSI: 0000200000004080 RDI: 0000000000000003
[  347.693676][T10402] RBP: 00007f62151f6090 R08: 0000000000000000 R09: 0000000000000000
[  347.693692][T10402] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  347.693709][T10402] R13: 0000000000000000 R14: 00007f62175b5fa0 R15: 00007fff75d49478
[  347.693747][T10402]  </TASK>
[  347.896989][    C1] vkms_vblank_simulate: vblank timer overrun
[  348.171595][T10408] FAULT_INJECTION: forcing a failure.
[  348.171595][T10408] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  348.187921][T10408] CPU: 0 UID: 0 PID: 10408 Comm: syz.2.728 Tainted: G     U              6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  348.187973][T10408] Tainted: [U]=USER
[  348.187984][T10408] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  348.188003][T10408] Call Trace:
[  348.188014][T10408]  <TASK>
[  348.188026][T10408]  dump_stack_lvl+0x16c/0x1f0
[  348.188080][T10408]  should_fail_ex+0x512/0x640
[  348.188136][T10408]  _copy_to_user+0x32/0xd0
[  348.188192][T10408]  rng_dev_read+0x1ea/0x810
[  348.188230][T10408]  ? __pfx_virtio_read+0x10/0x10
[  348.188267][T10408]  ? __pfx_rng_dev_read+0x10/0x10
[  348.188309][T10408]  ? bpf_lsm_file_permission+0x9/0x10
[  348.188346][T10408]  ? security_file_permission+0x71/0x210
[  348.188392][T10408]  ? rw_verify_area+0xcf/0x680
[  348.188434][T10408]  ? __pfx_rng_dev_read+0x10/0x10
[  348.188470][T10408]  vfs_read+0x1e1/0xc60
[  348.188527][T10408]  ? __pfx_vfs_read+0x10/0x10
[  348.188570][T10408]  ? find_held_lock+0x2b/0x80
[  348.188607][T10408]  ? __fget_files+0x204/0x3c0
[  348.188660][T10408]  ? __fget_files+0x20e/0x3c0
[  348.188719][T10408]  ksys_read+0x12a/0x250
[  348.188766][T10408]  ? __pfx_ksys_read+0x10/0x10
[  348.188832][T10408]  do_syscall_64+0xcd/0x490
[  348.188908][T10408]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  348.188939][T10408] RIP: 0033:0x7f9a6578e929
[  348.188962][T10408] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  348.188991][T10408] RSP: 002b:00007f9a635f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  348.189018][T10408] RAX: ffffffffffffffda RBX: 00007f9a659b5fa0 RCX: 00007f9a6578e929
[  348.189047][T10408] RDX: 00000000fffffe82 RSI: 0000200000000040 RDI: 0000000000000003
[  348.189064][T10408] RBP: 00007f9a635f6090 R08: 0000000000000000 R09: 0000000000000000
[  348.189081][T10408] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  348.189097][T10408] R13: 0000000000000000 R14: 00007f9a659b5fa0 R15: 00007fffa6f76f48
[  348.189133][T10408]  </TASK>
[  350.572386][T10456] FAULT_INJECTION: forcing a failure.
[  350.572386][T10456] name failslab, interval 1, probability 0, space 0, times 0
[  350.614618][T10454] virtio-pci 0000:00:04.0: [Firmware Bug]: Overriding NUMA node to 0.  Contact your vendor for updates.
[  350.627369][T10456] CPU: 1 UID: 0 PID: 10456 Comm: syz.4.735 Tainted: G     U    I         6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  350.627419][T10456] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  350.627431][T10456] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  350.627449][T10456] Call Trace:
[  350.627458][T10456]  <TASK>
[  350.627468][T10456]  dump_stack_lvl+0x16c/0x1f0
[  350.627565][T10456]  should_fail_ex+0x512/0x640
[  350.627620][T10456]  should_failslab+0xc2/0x120
[  350.627651][T10456]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  350.627702][T10456]  ? skb_clone+0x190/0x3f0
[  350.627758][T10456]  skb_clone+0x190/0x3f0
[  350.627810][T10456]  netlink_deliver_tap+0xabd/0xd30
[  350.627873][T10456]  netlink_unicast+0x62f/0x850
[  350.627923][T10456]  ? __pfx_netlink_unicast+0x10/0x10
[  350.627969][T10456]  netlink_sendmsg+0x8d1/0xdd0
[  350.628011][T10456]  ? __pfx_netlink_sendmsg+0x10/0x10
[  350.628061][T10456]  ____sys_sendmsg+0xa95/0xc70
[  350.628099][T10456]  ? copy_msghdr_from_user+0x10a/0x160
[  350.628148][T10456]  ? __pfx_____sys_sendmsg+0x10/0x10
[  350.628205][T10456]  ___sys_sendmsg+0x134/0x1d0
[  350.628258][T10456]  ? __pfx____sys_sendmsg+0x10/0x10
[  350.628303][T10456]  ? __lock_acquire+0x622/0x1c90
[  350.628404][T10456]  __sys_sendmsg+0x16d/0x220
[  350.628456][T10456]  ? __pfx___sys_sendmsg+0x10/0x10
[  350.628536][T10456]  do_syscall_64+0xcd/0x490
[  350.628589][T10456]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  350.628622][T10456] RIP: 0033:0x7f8d2158e929
[  350.628648][T10456] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  350.628680][T10456] RSP: 002b:00007f8d22493038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  350.628721][T10456] RAX: ffffffffffffffda RBX: 00007f8d217b5fa0 RCX: 00007f8d2158e929
[  350.628753][T10456] RDX: 0000000000000080 RSI: 0000200000004080 RDI: 0000000000000003
[  350.628770][T10456] RBP: 00007f8d22493090 R08: 0000000000000000 R09: 0000000000000000
[  350.628788][T10456] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  350.628804][T10456] R13: 0000000000000000 R14: 00007f8d217b5fa0 R15: 00007ffc1af1dbb8
[  350.628843][T10456]  </TASK>
[  350.969743][T10460] netlink: get zone limit has 8 unknown bytes
[  351.419606][T10478] FAULT_INJECTION: forcing a failure.
[  351.419606][T10478] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  351.455803][T10478] CPU: 0 UID: 0 PID: 10478 Comm: syz.1.739 Tainted: G     U    I         6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  351.455870][T10478] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  351.455884][T10478] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  351.455903][T10478] Call Trace:
[  351.455913][T10478]  <TASK>
[  351.455926][T10478]  dump_stack_lvl+0x16c/0x1f0
[  351.455978][T10478]  should_fail_ex+0x512/0x640
[  351.456032][T10478]  _copy_to_user+0x32/0xd0
[  351.456088][T10478]  rng_dev_read+0x1ea/0x810
[  351.456125][T10478]  ? __pfx_virtio_read+0x10/0x10
[  351.456162][T10478]  ? __pfx_rng_dev_read+0x10/0x10
[  351.456205][T10478]  ? bpf_lsm_file_permission+0x9/0x10
[  351.456240][T10478]  ? security_file_permission+0x71/0x210
[  351.456286][T10478]  ? rw_verify_area+0xcf/0x680
[  351.456328][T10478]  ? __pfx_rng_dev_read+0x10/0x10
[  351.456364][T10478]  vfs_read+0x1e1/0xc60
[  351.456425][T10478]  ? __pfx_vfs_read+0x10/0x10
[  351.456472][T10478]  ? find_held_lock+0x2b/0x80
[  351.456508][T10478]  ? __fget_files+0x204/0x3c0
[  351.456560][T10478]  ? __fget_files+0x20e/0x3c0
[  351.456628][T10478]  ksys_read+0x12a/0x250
[  351.456670][T10478]  ? __pfx_ksys_read+0x10/0x10
[  351.456723][T10478]  do_syscall_64+0xcd/0x490
[  351.456772][T10478]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  351.456802][T10478] RIP: 0033:0x7f621738e929
[  351.456830][T10478] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  351.456859][T10478] RSP: 002b:00007f62151d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  351.456886][T10478] RAX: ffffffffffffffda RBX: 00007f62175b6080 RCX: 00007f621738e929
[  351.456906][T10478] RDX: 00000000fffffe82 RSI: 0000200000000040 RDI: 0000000000000003
[  351.456924][T10478] RBP: 00007f62151d5090 R08: 0000000000000000 R09: 0000000000000000
[  351.456941][T10478] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  351.456958][T10478] R13: 0000000000000000 R14: 00007f62175b6080 R15: 00007fff75d49478
[  351.456996][T10478]  </TASK>
[  352.168284][T10497] FAULT_INJECTION: forcing a failure.
[  352.168284][T10497] name failslab, interval 1, probability 0, space 0, times 0
[  352.280858][T10497] CPU: 1 UID: 0 PID: 10497 Comm: syz.4.746 Tainted: G     U    I         6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  352.280915][T10497] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  352.280928][T10497] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  352.280946][T10497] Call Trace:
[  352.280956][T10497]  <TASK>
[  352.280969][T10497]  dump_stack_lvl+0x16c/0x1f0
[  352.281023][T10497]  should_fail_ex+0x512/0x640
[  352.281071][T10497]  ? __kmalloc_noprof+0xbf/0x510
[  352.281124][T10497]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  352.281167][T10497]  should_failslab+0xc2/0x120
[  352.281199][T10497]  __kmalloc_noprof+0xd2/0x510
[  352.281245][T10497]  ? __pfx___mutex_trylock_common+0x10/0x10
[  352.281305][T10497]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  352.281360][T10497]  genl_family_rcv_msg_doit+0xbf/0x2f0
[  352.281404][T10497]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  352.281445][T10497]  ? genl_get_cmd+0x194/0x580
[  352.281497][T10497]  ? __radix_tree_lookup+0x21f/0x2c0
[  352.281552][T10497]  genl_rcv_msg+0x55c/0x800
[  352.281598][T10497]  ? __pfx_genl_rcv_msg+0x10/0x10
[  352.281644][T10497]  ? __pfx_tipc_nl_bearer_disable+0x10/0x10
[  352.281708][T10497]  netlink_rcv_skb+0x155/0x420
[  352.281750][T10497]  ? __pfx_genl_rcv_msg+0x10/0x10
[  352.281792][T10497]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  352.281847][T10497]  ? netlink_deliver_tap+0x1ae/0xd30
[  352.281911][T10497]  genl_rcv+0x28/0x40
[  352.281945][T10497]  netlink_unicast+0x58d/0x850
[  352.281987][T10497]  ? __pfx_netlink_unicast+0x10/0x10
[  352.282035][T10497]  netlink_sendmsg+0x8d1/0xdd0
[  352.282077][T10497]  ? __pfx_netlink_sendmsg+0x10/0x10
[  352.282131][T10497]  ____sys_sendmsg+0xa95/0xc70
[  352.282169][T10497]  ? copy_msghdr_from_user+0x10a/0x160
[  352.282218][T10497]  ? __pfx_____sys_sendmsg+0x10/0x10
[  352.282277][T10497]  ___sys_sendmsg+0x134/0x1d0
[  352.282331][T10497]  ? __pfx____sys_sendmsg+0x10/0x10
[  352.282377][T10497]  ? __lock_acquire+0x622/0x1c90
[  352.282482][T10497]  __sys_sendmsg+0x16d/0x220
[  352.282534][T10497]  ? __pfx___sys_sendmsg+0x10/0x10
[  352.282615][T10497]  do_syscall_64+0xcd/0x490
[  352.282670][T10497]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  352.282704][T10497] RIP: 0033:0x7f8d2158e929
[  352.282730][T10497] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  352.282770][T10497] RSP: 002b:00007f8d22493038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  352.282800][T10497] RAX: ffffffffffffffda RBX: 00007f8d217b5fa0 RCX: 00007f8d2158e929
[  352.282821][T10497] RDX: 0000000000000080 RSI: 0000200000004080 RDI: 0000000000000003
[  352.282841][T10497] RBP: 00007f8d22493090 R08: 0000000000000000 R09: 0000000000000000
[  352.282861][T10497] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  352.282879][T10497] R13: 0000000000000000 R14: 00007f8d217b5fa0 R15: 00007ffc1af1dbb8
[  352.282923][T10497]  </TASK>
[  353.030334][T10512] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  353.756869][T10537] FAULT_INJECTION: forcing a failure.
[  353.756869][T10537] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  353.771402][T10537] CPU: 1 UID: 0 PID: 10537 Comm: syz.5.752 Tainted: G     U    I         6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  353.771448][T10537] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  353.771458][T10537] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  353.771474][T10537] Call Trace:
[  353.771484][T10537]  <TASK>
[  353.771494][T10537]  dump_stack_lvl+0x16c/0x1f0
[  353.771540][T10537]  should_fail_ex+0x512/0x640
[  353.771588][T10537]  _copy_to_user+0x32/0xd0
[  353.771641][T10537]  rng_dev_read+0x1ea/0x810
[  353.771673][T10537]  ? __pfx_virtio_read+0x10/0x10
[  353.771704][T10537]  ? __pfx_rng_dev_read+0x10/0x10
[  353.771740][T10537]  ? bpf_lsm_file_permission+0x9/0x10
[  353.771770][T10537]  ? security_file_permission+0x71/0x210
[  353.771810][T10537]  ? rw_verify_area+0xcf/0x680
[  353.771846][T10537]  ? __pfx_rng_dev_read+0x10/0x10
[  353.771876][T10537]  vfs_read+0x1e1/0xc60
[  353.771923][T10537]  ? __pfx_vfs_read+0x10/0x10
[  353.771959][T10537]  ? find_held_lock+0x2b/0x80
[  353.771990][T10537]  ? __fget_files+0x204/0x3c0
[  353.772034][T10537]  ? __fget_files+0x20e/0x3c0
[  353.772083][T10537]  ksys_read+0x12a/0x250
[  353.772123][T10537]  ? __pfx_ksys_read+0x10/0x10
[  353.772174][T10537]  do_syscall_64+0xcd/0x490
[  353.772222][T10537]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  353.772251][T10537] RIP: 0033:0x7ff56478e929
[  353.772273][T10537] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  353.772299][T10537] RSP: 002b:00007ff5656ae038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  353.772324][T10537] RAX: ffffffffffffffda RBX: 00007ff5649b6080 RCX: 00007ff56478e929
[  353.772342][T10537] RDX: 00000000fffffe82 RSI: 0000200000000040 RDI: 0000000000000003
[  353.772359][T10537] RBP: 00007ff5656ae090 R08: 0000000000000000 R09: 0000000000000000
[  353.772376][T10537] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  353.772392][T10537] R13: 0000000000000000 R14: 00007ff5649b6080 R15: 00007ffedb395f48
[  353.772429][T10537]  </TASK>
[  354.971609][T10552] FAULT_INJECTION: forcing a failure.
[  354.971609][T10552] name failslab, interval 1, probability 0, space 0, times 0
[  354.998827][T10552] CPU: 0 UID: 0 PID: 10552 Comm: syz.5.756 Tainted: G     U    I         6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  354.998879][T10552] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  354.998891][T10552] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  354.998909][T10552] Call Trace:
[  354.998918][T10552]  <TASK>
[  354.998929][T10552]  dump_stack_lvl+0x16c/0x1f0
[  354.998978][T10552]  should_fail_ex+0x512/0x640
[  354.999021][T10552]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  354.999073][T10552]  should_failslab+0xc2/0x120
[  354.999101][T10552]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  354.999148][T10552]  ? __alloc_skb+0x2b2/0x380
[  354.999195][T10552]  __alloc_skb+0x2b2/0x380
[  354.999237][T10552]  ? __pfx___alloc_skb+0x10/0x10
[  354.999353][T10552]  ? genl_rcv_msg+0x4bb/0x800
[  354.999401][T10552]  netlink_ack+0x15d/0xb80
[  354.999444][T10552]  netlink_rcv_skb+0x332/0x420
[  354.999475][T10552]  ? __pfx_genl_rcv_msg+0x10/0x10
[  354.999513][T10552]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  354.999559][T10552]  ? netlink_deliver_tap+0x1ae/0xd30
[  354.999615][T10552]  genl_rcv+0x28/0x40
[  354.999645][T10552]  netlink_unicast+0x58d/0x850
[  354.999682][T10552]  ? __pfx_netlink_unicast+0x10/0x10
[  354.999729][T10552]  netlink_sendmsg+0x8d1/0xdd0
[  354.999766][T10552]  ? __pfx_netlink_sendmsg+0x10/0x10
[  354.999811][T10552]  ____sys_sendmsg+0xa95/0xc70
[  354.999845][T10552]  ? copy_msghdr_from_user+0x10a/0x160
[  354.999888][T10552]  ? __pfx_____sys_sendmsg+0x10/0x10
[  354.999940][T10552]  ___sys_sendmsg+0x134/0x1d0
[  354.999988][T10552]  ? __pfx____sys_sendmsg+0x10/0x10
[  355.000028][T10552]  ? __lock_acquire+0x622/0x1c90
[  355.000119][T10552]  __sys_sendmsg+0x16d/0x220
[  355.000165][T10552]  ? __pfx___sys_sendmsg+0x10/0x10
[  355.000238][T10552]  do_syscall_64+0xcd/0x490
[  355.000348][T10552]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  355.000382][T10552] RIP: 0033:0x7ff56478e929
[  355.000405][T10552] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  355.000433][T10552] RSP: 002b:00007ff5656cf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  355.000461][T10552] RAX: ffffffffffffffda RBX: 00007ff5649b5fa0 RCX: 00007ff56478e929
[  355.000481][T10552] RDX: 0000000000000080 RSI: 0000200000004080 RDI: 0000000000000003
[  355.000499][T10552] RBP: 00007ff5656cf090 R08: 0000000000000000 R09: 0000000000000000
[  355.000517][T10552] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  355.000534][T10552] R13: 0000000000000000 R14: 00007ff5649b5fa0 R15: 00007ffedb395f48
[  355.000581][T10552]  </TASK>
[  355.208743][T10562] netlink: 'syz.2.758': attribute type 11 has an invalid length.
[  355.402303][   T30] audit: type=1804 audit(4294967491.110:12): pid=10564 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.759" name="/newroot/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter" dev="tracefs" ino=19680823 res=1 errno=0
[  355.719646][T10581] FAULT_INJECTION: forcing a failure.
[  355.719646][T10581] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  355.776516][T10581] CPU: 0 UID: 0 PID: 10581 Comm: syz.4.762 Tainted: G     U    I         6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  355.776572][T10581] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  355.776596][T10581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  355.776614][T10581] Call Trace:
[  355.776624][T10581]  <TASK>
[  355.776636][T10581]  dump_stack_lvl+0x16c/0x1f0
[  355.776693][T10581]  should_fail_ex+0x512/0x640
[  355.776738][T10581]  _copy_to_user+0x32/0xd0
[  355.776785][T10581]  rng_dev_read+0x1ea/0x810
[  355.776816][T10581]  ? __pfx_virtio_read+0x10/0x10
[  355.776847][T10581]  ? __pfx_rng_dev_read+0x10/0x10
[  355.776883][T10581]  ? bpf_lsm_file_permission+0x9/0x10
[  355.776914][T10581]  ? security_file_permission+0x71/0x210
[  355.776954][T10581]  ? rw_verify_area+0xcf/0x680
[  355.776989][T10581]  ? __pfx_rng_dev_read+0x10/0x10
[  355.777019][T10581]  vfs_read+0x1e1/0xc60
[  355.777066][T10581]  ? __pfx_vfs_read+0x10/0x10
[  355.777103][T10581]  ? find_held_lock+0x2b/0x80
[  355.777134][T10581]  ? __fget_files+0x204/0x3c0
[  355.777178][T10581]  ? __fget_files+0x20e/0x3c0
[  355.777237][T10581]  ksys_read+0x12a/0x250
[  355.777277][T10581]  ? __pfx_ksys_read+0x10/0x10
[  355.777328][T10581]  do_syscall_64+0xcd/0x490
[  355.777374][T10581]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  355.777407][T10581] RIP: 0033:0x7f8d2158e929
[  355.777429][T10581] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  355.777456][T10581] RSP: 002b:00007f8d22472038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  355.777481][T10581] RAX: ffffffffffffffda RBX: 00007f8d217b6080 RCX: 00007f8d2158e929
[  355.777499][T10581] RDX: 00000000fffffe82 RSI: 0000200000000040 RDI: 0000000000000003
[  355.777516][T10581] RBP: 00007f8d22472090 R08: 0000000000000000 R09: 0000000000000000
[  355.777531][T10581] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  355.777547][T10581] R13: 0000000000000000 R14: 00007f8d217b6080 R15: 00007ffc1af1dbb8
[  355.777581][T10581]  </TASK>
[  356.869142][   T30] audit: type=1400 audit(4294967492.570:13): apparmor="DENIED" operation="setprocattr" info="invalid" error=-22 profile="unconfined" pid=10601 comm="syz.1.768"
[  357.699207][   T30] audit: type=1804 audit(4294967493.410:14): pid=10628 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.5.772" name="/newroot/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter" dev="tracefs" ino=19680823 res=1 errno=0
[  357.955104][T10627] vivid-003: =================  START STATUS  =================
[  358.003179][T10627] vivid-003: Radio HW Seek Mode: Bounded
[  358.023431][T10627] vivid-003: Radio Programmable HW Seek: false
[  358.033649][T10627] vivid-003: RDS Rx I/O Mode: Block I/O
[  358.039699][T10627] vivid-003: Generate RBDS Instead of RDS: false
[  358.054441][T10627] vivid-003: RDS Reception: true
[  358.067607][T10627] vivid-003: RDS Program Type: 0 inactive
[  358.102048][T10627] vivid-003: RDS PS Name:  inactive
[  358.142824][T10627] vivid-003: RDS Radio Text:  inactive
[  358.174354][T10627] vivid-003: RDS Traffic Announcement: false inactive
[  358.191594][T10627] vivid-003: RDS Traffic Program: false inactive
[  358.213534][T10627] vivid-003: RDS Music: false inactive
[  358.239824][T10627] vivid-003: ==================  END STATUS  ==================
[  358.731758][ T6434] Bluetooth: hci3: Unable to find connection for big 0xd2
[  358.815492][T10647] random: crng reseeded on system resumption
[  358.986151][T10655] FAULT_INJECTION: forcing a failure.
[  358.986151][T10655] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  359.006284][T10655] CPU: 1 UID: 0 PID: 10655 Comm: syz.5.777 Tainted: G     U    I         6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  359.006341][T10655] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  359.006354][T10655] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  359.006373][T10655] Call Trace:
[  359.006382][T10655]  <TASK>
[  359.006394][T10655]  dump_stack_lvl+0x16c/0x1f0
[  359.006447][T10655]  should_fail_ex+0x512/0x640
[  359.006502][T10655]  _copy_to_user+0x32/0xd0
[  359.006558][T10655]  rng_dev_read+0x1ea/0x810
[  359.006604][T10655]  ? __pfx_virtio_read+0x10/0x10
[  359.006635][T10655]  ? __pfx_rng_dev_read+0x10/0x10
[  359.006670][T10655]  ? bpf_lsm_file_permission+0x9/0x10
[  359.006699][T10655]  ? security_file_permission+0x71/0x210
[  359.006736][T10655]  ? rw_verify_area+0xcf/0x680
[  359.006771][T10655]  ? __pfx_rng_dev_read+0x10/0x10
[  359.006813][T10655]  vfs_read+0x1e1/0xc60
[  359.006858][T10655]  ? __pfx_vfs_read+0x10/0x10
[  359.006895][T10655]  ? find_held_lock+0x2b/0x80
[  359.006925][T10655]  ? __fget_files+0x204/0x3c0
[  359.006966][T10655]  ? __fget_files+0x20e/0x3c0
[  359.007000][T10655]  ksys_read+0x12a/0x250
[  359.007027][T10655]  ? __pfx_ksys_read+0x10/0x10
[  359.007061][T10655]  do_syscall_64+0xcd/0x490
[  359.007093][T10655]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  359.007113][T10655] RIP: 0033:0x7ff56478e929
[  359.007128][T10655] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  359.007148][T10655] RSP: 002b:00007ff5656ae038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  359.007166][T10655] RAX: ffffffffffffffda RBX: 00007ff5649b6080 RCX: 00007ff56478e929
[  359.007184][T10655] RDX: 00000000fffffe82 RSI: 0000200000000040 RDI: 0000000000000003
[  359.007197][T10655] RBP: 00007ff5656ae090 R08: 0000000000000000 R09: 0000000000000000
[  359.007209][T10655] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  359.007220][T10655] R13: 0000000000000000 R14: 00007ff5649b6080 R15: 00007ffedb395f48
[  359.007245][T10655]  </TASK>
[  359.463061][T10658] FAULT_INJECTION: forcing a failure.
[  359.463061][T10658] name failslab, interval 1, probability 0, space 0, times 0
[  359.477079][T10658] CPU: 0 UID: 0 PID: 10658 Comm: syz.5.778 Tainted: G     U    I         6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  359.477116][T10658] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  359.477125][T10658] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  359.477137][T10658] Call Trace:
[  359.477144][T10658]  <TASK>
[  359.477152][T10658]  dump_stack_lvl+0x16c/0x1f0
[  359.477198][T10658]  should_fail_ex+0x512/0x640
[  359.477238][T10658]  should_failslab+0xc2/0x120
[  359.477257][T10658]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  359.477287][T10658]  ? skb_clone+0x190/0x3f0
[  359.477319][T10658]  skb_clone+0x190/0x3f0
[  359.477348][T10658]  netlink_deliver_tap+0xabd/0xd30
[  359.477385][T10658]  netlink_unicast+0x702/0x850
[  359.477408][T10658]  ? __pfx_netlink_unicast+0x10/0x10
[  359.477426][T10658]  ? genl_rcv_msg+0x4bb/0x800
[  359.477455][T10658]  netlink_ack+0x696/0xb80
[  359.477489][T10658]  netlink_rcv_skb+0x332/0x420
[  359.477517][T10658]  ? __pfx_genl_rcv_msg+0x10/0x10
[  359.477550][T10658]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  359.477592][T10658]  ? netlink_deliver_tap+0x1ae/0xd30
[  359.477629][T10658]  genl_rcv+0x28/0x40
[  359.477649][T10658]  netlink_unicast+0x58d/0x850
[  359.477672][T10658]  ? __pfx_netlink_unicast+0x10/0x10
[  359.477699][T10658]  netlink_sendmsg+0x8d1/0xdd0
[  359.477724][T10658]  ? __pfx_netlink_sendmsg+0x10/0x10
[  359.477753][T10658]  ____sys_sendmsg+0xa95/0xc70
[  359.477776][T10658]  ? copy_msghdr_from_user+0x10a/0x160
[  359.477805][T10658]  ? __pfx_____sys_sendmsg+0x10/0x10
[  359.477839][T10658]  ___sys_sendmsg+0x134/0x1d0
[  359.477869][T10658]  ? __pfx____sys_sendmsg+0x10/0x10
[  359.477896][T10658]  ? __lock_acquire+0x622/0x1c90
[  359.477953][T10658]  __sys_sendmsg+0x16d/0x220
[  359.477986][T10658]  ? __pfx___sys_sendmsg+0x10/0x10
[  359.478022][T10658]  ? xfd_validate_state+0x61/0x180
[  359.478057][T10658]  do_syscall_64+0xcd/0x490
[  359.478089][T10658]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  359.478109][T10658] RIP: 0033:0x7ff56478e929
[  359.478125][T10658] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  359.478144][T10658] RSP: 002b:00007ff5656cf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  359.478162][T10658] RAX: ffffffffffffffda RBX: 00007ff5649b5fa0 RCX: 00007ff56478e929
[  359.478175][T10658] RDX: 0000000000000080 RSI: 0000200000004080 RDI: 0000000000000003
[  359.478187][T10658] RBP: 00007ff5656cf090 R08: 0000000000000000 R09: 0000000000000000
[  359.478199][T10658] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  359.478211][T10658] R13: 0000000000000000 R14: 00007ff5649b5fa0 R15: 00007ffedb395f48
[  359.478241][T10658]  </TASK>
[  362.202616][T10673] random: crng reseeded on system resumption
[  363.610926][T10720] FAULT_INJECTION: forcing a failure.
[  363.610926][T10720] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  363.641306][T10720] CPU: 1 UID: 0 PID: 10720 Comm: syz.1.787 Tainted: G     U    I         6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  363.641355][T10720] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  363.641366][T10720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  363.641382][T10720] Call Trace:
[  363.641390][T10720]  <TASK>
[  363.641401][T10720]  dump_stack_lvl+0x16c/0x1f0
[  363.641448][T10720]  should_fail_ex+0x512/0x640
[  363.641495][T10720]  _copy_to_user+0x32/0xd0
[  363.641542][T10720]  rng_dev_read+0x1ea/0x810
[  363.641573][T10720]  ? __pfx_virtio_read+0x10/0x10
[  363.641603][T10720]  ? __pfx_rng_dev_read+0x10/0x10
[  363.641637][T10720]  ? bpf_lsm_file_permission+0x9/0x10
[  363.641666][T10720]  ? security_file_permission+0x71/0x210
[  363.641702][T10720]  ? rw_verify_area+0xcf/0x680
[  363.641736][T10720]  ? __pfx_rng_dev_read+0x10/0x10
[  363.641772][T10720]  vfs_read+0x1e1/0xc60
[  363.641822][T10720]  ? __pfx_vfs_read+0x10/0x10
[  363.641858][T10720]  ? find_held_lock+0x2b/0x80
[  363.641888][T10720]  ? __fget_files+0x204/0x3c0
[  363.641932][T10720]  ? __fget_files+0x20e/0x3c0
[  363.641980][T10720]  ksys_read+0x12a/0x250
[  363.642020][T10720]  ? __pfx_ksys_read+0x10/0x10
[  363.642071][T10720]  do_syscall_64+0xcd/0x490
[  363.642118][T10720]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  363.642146][T10720] RIP: 0033:0x7f621738e929
[  363.642168][T10720] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  363.642195][T10720] RSP: 002b:00007f62151d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  363.642220][T10720] RAX: ffffffffffffffda RBX: 00007f62175b6080 RCX: 00007f621738e929
[  363.642238][T10720] RDX: 00000000fffffe82 RSI: 0000200000000040 RDI: 0000000000000003
[  363.642255][T10720] RBP: 00007f62151d5090 R08: 0000000000000000 R09: 0000000000000000
[  363.642271][T10720] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  363.642287][T10720] R13: 0000000000000000 R14: 00007f62175b6080 R15: 00007fff75d49478
[  363.642323][T10720]  </TASK>
[  364.818608][T10732] FAULT_INJECTION: forcing a failure.
[  364.818608][T10732] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  364.848894][T10732] CPU: 0 UID: 0 PID: 10732 Comm: syz.4.788 Tainted: G     U    I         6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  364.848944][T10732] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  364.848957][T10732] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  364.848974][T10732] Call Trace:
[  364.848983][T10732]  <TASK>
[  364.848994][T10732]  dump_stack_lvl+0x16c/0x1f0
[  364.849044][T10732]  should_fail_ex+0x512/0x640
[  364.849117][T10732]  _copy_to_user+0x32/0xd0
[  364.849172][T10732]  simple_read_from_buffer+0xcb/0x170
[  364.849218][T10732]  proc_fail_nth_read+0x197/0x270
[  364.849257][T10732]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  364.849299][T10732]  ? rw_verify_area+0xcf/0x680
[  364.849340][T10732]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  364.849378][T10732]  vfs_read+0x1e1/0xc60
[  364.849428][T10732]  ? __pfx___mutex_lock+0x10/0x10
[  364.849477][T10732]  ? __pfx_vfs_read+0x10/0x10
[  364.849535][T10732]  ? __fget_files+0x20e/0x3c0
[  364.849592][T10732]  ksys_read+0x12a/0x250
[  364.849637][T10732]  ? __pfx_ksys_read+0x10/0x10
[  364.849705][T10732]  do_syscall_64+0xcd/0x490
[  364.849759][T10732]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  364.849792][T10732] RIP: 0033:0x7f8d2158d33c
[  364.849817][T10732] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  364.849848][T10732] RSP: 002b:00007f8d22493030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  364.849877][T10732] RAX: ffffffffffffffda RBX: 00007f8d217b5fa0 RCX: 00007f8d2158d33c
[  364.849898][T10732] RDX: 000000000000000f RSI: 00007f8d224930a0 RDI: 0000000000000004
[  364.849920][T10732] RBP: 00007f8d22493090 R08: 0000000000000000 R09: 0000000000000000
[  364.849940][T10732] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  364.849958][T10732] R13: 0000000000000000 R14: 00007f8d217b5fa0 R15: 00007ffc1af1dbb8
[  364.849999][T10732]  </TASK>

syzkaller
syzkaller login: [  367.030355][T10793] FAULT_INJECTION: forcing a failure.
[  367.030355][T10793] name failslab, interval 1, probability 0, space 0, times 0
[  367.065979][T10793] CPU: 1 UID: 0 PID: 10793 Comm: syz.2.800 Tainted: G     U    I         6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  367.066020][T10793] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  367.066029][T10793] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  367.066043][T10793] Call Trace:
[  367.066050][T10793]  <TASK>
[  367.066059][T10793]  dump_stack_lvl+0x16c/0x1f0
[  367.066110][T10793]  should_fail_ex+0x512/0x640
[  367.066143][T10793]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  367.066181][T10793]  should_failslab+0xc2/0x120
[  367.066203][T10793]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  367.066244][T10793]  ? __alloc_skb+0x2b2/0x380
[  367.066281][T10793]  __alloc_skb+0x2b2/0x380
[  367.066312][T10793]  ? __pfx___alloc_skb+0x10/0x10
[  367.066345][T10793]  ? find_held_lock+0x2b/0x80
[  367.066371][T10793]  ? lockdep_init_map_type+0x5c/0x280
[  367.066409][T10793]  tipc_buf_acquire+0x26/0xe0
[  367.066437][T10793]  tipc_msg_build+0x112/0x1150
[  367.066472][T10793]  ? __pfx_tipc_msg_build+0x10/0x10
[  367.066508][T10793]  ? register_lock_class+0x41/0x4c0
[  367.066548][T10793]  __tipc_sendstream+0x6f9/0x1170
[  367.066587][T10793]  ? __pfx___tipc_sendstream+0x10/0x10
[  367.066613][T10793]  ? do_raw_spin_lock+0x12c/0x2b0
[  367.066661][T10793]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  367.066697][T10793]  ? __pfx_woken_wake_function+0x10/0x10
[  367.066724][T10793]  ? __local_bh_enable_ip+0xa4/0x120
[  367.066753][T10793]  tipc_send_packet+0x6c/0xa0
[  367.066778][T10793]  ____sys_sendmsg+0xa95/0xc70
[  367.066803][T10793]  ? copy_msghdr_from_user+0x10a/0x160
[  367.066836][T10793]  ? __pfx_____sys_sendmsg+0x10/0x10
[  367.066857][T10793]  ? __pfx___schedule+0x10/0x10
[  367.066890][T10793]  ? kfree+0x24f/0x4d0
[  367.066916][T10793]  ? trace_ignore_this_task+0x6b/0x100
[  367.066955][T10793]  ___sys_sendmsg+0x134/0x1d0
[  367.067005][T10793]  ? __pfx____sys_sendmsg+0x10/0x10
[  367.067060][T10793]  ? __pfx___might_resched+0x10/0x10
[  367.067090][T10793]  __sys_sendmmsg+0x200/0x420
[  367.067124][T10793]  ? __pfx___sys_sendmmsg+0x10/0x10
[  367.067163][T10793]  ? __pfx_do_futex+0x10/0x10
[  367.067204][T10793]  ? xfd_validate_state+0x61/0x180
[  367.067244][T10793]  __x64_sys_sendmmsg+0x9c/0x100
[  367.067287][T10793]  ? lockdep_hardirqs_on+0x7c/0x110
[  367.067316][T10793]  do_syscall_64+0xcd/0x490
[  367.067348][T10793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  367.067368][T10793] RIP: 0033:0x7f9a6578e929
[  367.067384][T10793] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  367.067403][T10793] RSP: 002b:00007f9a635f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  367.067421][T10793] RAX: ffffffffffffffda RBX: 00007f9a659b5fa0 RCX: 00007f9a6578e929
[  367.067434][T10793] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000003
[  367.067447][T10793] RBP: 00007f9a65810b39 R08: 0000000000000000 R09: 0000000000000000
[  367.067459][T10793] R10: 0000000007000000 R11: 0000000000000246 R12: 0000000000000000
[  367.067472][T10793] R13: 0000000000000000 R14: 00007f9a659b5fa0 R15: 00007fffa6f76f48
[  367.067511][T10793]  </TASK>
[  368.333004][T10810] netlink: 17 bytes leftover after parsing attributes in process `syz.5.804'.
[  369.440463][T10830] FAULT_INJECTION: forcing a failure.
[  369.440463][T10830] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  369.487864][T10830] CPU: 1 UID: 0 PID: 10830 Comm: syz.2.806 Tainted: G     U    I         6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  369.487918][T10830] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  369.487929][T10830] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  369.487947][T10830] Call Trace:
[  369.487956][T10830]  <TASK>
[  369.487967][T10830]  dump_stack_lvl+0x16c/0x1f0
[  369.488017][T10830]  should_fail_ex+0x512/0x640
[  369.488066][T10830]  _copy_to_user+0x32/0xd0
[  369.488126][T10830]  rng_dev_read+0x1ea/0x810
[  369.488161][T10830]  ? __pfx_virtio_read+0x10/0x10
[  369.488194][T10830]  ? __pfx_rng_dev_read+0x10/0x10
[  369.488231][T10830]  ? bpf_lsm_file_permission+0x9/0x10
[  369.488264][T10830]  ? security_file_permission+0x71/0x210
[  369.488306][T10830]  ? rw_verify_area+0xcf/0x680
[  369.488344][T10830]  ? __pfx_rng_dev_read+0x10/0x10
[  369.488375][T10830]  vfs_read+0x1e1/0xc60
[  369.488425][T10830]  ? __pfx_vfs_read+0x10/0x10
[  369.488463][T10830]  ? find_held_lock+0x2b/0x80
[  369.488518][T10830]  ? __fget_files+0x204/0x3c0
[  369.488562][T10830]  ? __fget_files+0x20e/0x3c0
[  369.488611][T10830]  ksys_read+0x12a/0x250
[  369.488650][T10830]  ? __pfx_ksys_read+0x10/0x10
[  369.488692][T10830]  ? trace_irq_enable.constprop.0+0x2f/0x120
[  369.488743][T10830]  do_syscall_64+0xcd/0x490
[  369.488789][T10830]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  369.488817][T10830] RIP: 0033:0x7f9a6578e929
[  369.488840][T10830] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  369.488867][T10830] RSP: 002b:00007f9a635d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  369.488892][T10830] RAX: ffffffffffffffda RBX: 00007f9a659b6080 RCX: 00007f9a6578e929
[  369.488910][T10830] RDX: 00000000fffffe82 RSI: 0000200000000040 RDI: 0000000000000003
[  369.488926][T10830] RBP: 00007f9a635d5090 R08: 0000000000000000 R09: 0000000000000000
[  369.488942][T10830] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  369.488957][T10830] R13: 0000000000000000 R14: 00007f9a659b6080 R15: 00007fffa6f76f48
[  369.488993][T10830]  </TASK>
[  370.152434][T10834] bridge0: port 3(vlan1) entered blocking state
[  370.158953][T10834] bridge0: port 3(vlan1) entered disabled state
[  370.165340][T10834] vlan1: entered allmulticast mode
[  370.171399][T10834] veth0_vlan: entered allmulticast mode
[  370.264277][T10834] vlan1: entered promiscuous mode
[  370.270299][T10834] bridge0: port 3(vlan1) entered blocking state
[  370.276705][T10834] bridge0: port 3(vlan1) entered forwarding state
[  370.806261][T10834] zswap: compressor  not available
[  371.088675][T10845] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  373.550839][T10889] bridge0: port 3(vlan1) entered blocking state
[  373.557348][T10889] bridge0: port 3(vlan1) entered disabled state
[  373.564250][T10889] vlan1: entered allmulticast mode
[  373.580912][T10889] vlan1: entered promiscuous mode
[  373.588261][T10889] bridge0: port 3(vlan1) entered blocking state
[  373.594734][T10889] bridge0: port 3(vlan1) entered forwarding state
[  374.071983][T10892] FAULT_INJECTION: forcing a failure.
[  374.071983][T10892] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  374.098993][T10889] zswap: compressor  not available
[  374.218005][T10892] CPU: 0 UID: 0 PID: 10892 Comm: syz.4.818 Tainted: G     U    I         6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  374.218061][T10892] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  374.218074][T10892] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  374.218092][T10892] Call Trace:
[  374.218103][T10892]  <TASK>
[  374.218115][T10892]  dump_stack_lvl+0x16c/0x1f0
[  374.218168][T10892]  should_fail_ex+0x512/0x640
[  374.218221][T10892]  _copy_to_user+0x32/0xd0
[  374.218276][T10892]  rng_dev_read+0x1ea/0x810
[  374.218311][T10892]  ? __pfx_virtio_read+0x10/0x10
[  374.218345][T10892]  ? __pfx_rng_dev_read+0x10/0x10
[  374.218385][T10892]  ? bpf_lsm_file_permission+0x9/0x10
[  374.218419][T10892]  ? security_file_permission+0x71/0x210
[  374.218464][T10892]  ? rw_verify_area+0xcf/0x680
[  374.218505][T10892]  ? __pfx_rng_dev_read+0x10/0x10
[  374.218539][T10892]  vfs_read+0x1e1/0xc60
[  374.218593][T10892]  ? __pfx_vfs_read+0x10/0x10
[  374.218635][T10892]  ? find_held_lock+0x2b/0x80
[  374.218670][T10892]  ? __fget_files+0x204/0x3c0
[  374.218721][T10892]  ? __fget_files+0x20e/0x3c0
[  374.218777][T10892]  ksys_read+0x12a/0x250
[  374.218822][T10892]  ? __pfx_ksys_read+0x10/0x10
[  374.218877][T10892]  do_syscall_64+0xcd/0x490
[  374.218928][T10892]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  374.218968][T10892] RIP: 0033:0x7f8d2158e929
[  374.218993][T10892] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  374.219024][T10892] RSP: 002b:00007f8d22472038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  374.219053][T10892] RAX: ffffffffffffffda RBX: 00007f8d217b6080 RCX: 00007f8d2158e929
[  374.219074][T10892] RDX: 00000000fffffe82 RSI: 0000200000000040 RDI: 0000000000000003
[  374.219093][T10892] RBP: 00007f8d22472090 R08: 0000000000000000 R09: 0000000000000000
[  374.219111][T10892] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  374.219142][T10892] R13: 0000000000000000 R14: 00007f8d217b6080 R15: 00007ffc1af1dbb8
[  374.219180][T10892]  </TASK>
[  379.914487][T10991] device-mapper: ioctl: Invalid data size in the ioctl structure: 0
[  381.253615][T10994] kexec: Could not allocate control_code_buffer
[  381.830631][T11019] i2c i2c-0: new_device: Missing parameters
[  381.879843][T11019] netlink: 4 bytes leftover after parsing attributes in process `syz.1.850'.
[  382.016131][T11025] device-mapper: ioctl: Invalid ioctl structure: name , dev b00010007
[  383.221733][   T30] audit: type=1804 audit(4294967518.930:15): pid=11047 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.854" name="/newroot/112/file0" dev="tmpfs" ino=609 res=1 errno=0
[  383.412421][   T30] audit: type=1800 audit(4294967518.930:16): pid=11047 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.854" name="file0" dev="tmpfs" ino=609 res=0 errno=0
[  383.562744][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  383.569747][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  386.307656][T10699] syz.4.783 (10699) used greatest stack depth: 19544 bytes left
[  388.322106][T11099] random: crng reseeded on system resumption
[  389.677349][   T30] audit: type=1800 audit(4294967525.380:17): pid=11113 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.865" name="members" dev="configfs" ino=30124 res=0 errno=0
[  389.858147][ T6434] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  390.124339][T11116] FAULT_INJECTION: forcing a failure.
[  390.124339][T11116] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  390.159334][T11116] CPU: 1 UID: 0 PID: 11116 Comm: syz.2.866 Tainted: G     U    I         6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  390.159382][T11116] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  390.159394][T11116] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  390.159410][T11116] Call Trace:
[  390.159419][T11116]  <TASK>
[  390.159433][T11116]  dump_stack_lvl+0x16c/0x1f0
[  390.159480][T11116]  should_fail_ex+0x512/0x640
[  390.159536][T11116]  _copy_to_user+0x32/0xd0
[  390.159583][T11116]  rng_dev_read+0x1ea/0x810
[  390.159615][T11116]  ? __pfx_virtio_read+0x10/0x10
[  390.159645][T11116]  ? __pfx_rng_dev_read+0x10/0x10
[  390.159681][T11116]  ? bpf_lsm_file_permission+0x9/0x10
[  390.159711][T11116]  ? security_file_permission+0x71/0x210
[  390.159749][T11116]  ? rw_verify_area+0xcf/0x680
[  390.159785][T11116]  ? __pfx_rng_dev_read+0x10/0x10
[  390.159815][T11116]  vfs_read+0x1e1/0xc60
[  390.159863][T11116]  ? __pfx_vfs_read+0x10/0x10
[  390.159900][T11116]  ? find_held_lock+0x2b/0x80
[  390.159929][T11116]  ? __fget_files+0x204/0x3c0
[  390.159971][T11116]  ? __fget_files+0x20e/0x3c0
[  390.160020][T11116]  ksys_read+0x12a/0x250
[  390.160058][T11116]  ? __pfx_ksys_read+0x10/0x10
[  390.160107][T11116]  do_syscall_64+0xcd/0x490
[  390.160151][T11116]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  390.160179][T11116] RIP: 0033:0x7f9a6578e929
[  390.160200][T11116] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  390.160228][T11116] RSP: 002b:00007f9a635d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  390.160254][T11116] RAX: ffffffffffffffda RBX: 00007f9a659b6080 RCX: 00007f9a6578e929
[  390.160271][T11116] RDX: 00000000fffffe82 RSI: 0000200000000040 RDI: 0000000000000003
[  390.160288][T11116] RBP: 00007f9a635d5090 R08: 0000000000000000 R09: 0000000000000000
[  390.160304][T11116] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  390.160320][T11116] R13: 0000000000000000 R14: 00007f9a659b6080 R15: 00007fffa6f76f48
[  390.160356][T11116]  </TASK>
[  390.652527][T11120] netlink: 20 bytes leftover after parsing attributes in process `syz.2.868'.
[  391.081384][ T6434] Bluetooth: hci2: Unable to find connection for big 0xd2
[  391.194796][T11120] hsr_slave_0 (unregistering): left promiscuous mode
[  391.818920][T11141] netlink: 52 bytes leftover after parsing attributes in process `syz.2.873'.
[  392.248726][T11138] delete_channel: no stack
[  392.531400][T11168] FAULT_INJECTION: forcing a failure.
[  392.531400][T11168] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  392.553461][T11168] CPU: 0 UID: 0 PID: 11168 Comm: syz.2.877 Tainted: G     U    I         6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  392.553510][T11168] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  392.553521][T11168] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  392.553537][T11168] Call Trace:
[  392.553546][T11168]  <TASK>
[  392.553556][T11168]  dump_stack_lvl+0x16c/0x1f0
[  392.553603][T11168]  should_fail_ex+0x512/0x640
[  392.553650][T11168]  _copy_to_user+0x32/0xd0
[  392.553697][T11168]  rng_dev_read+0x1ea/0x810
[  392.553729][T11168]  ? __pfx_virtio_read+0x10/0x10
[  392.553761][T11168]  ? __pfx_rng_dev_read+0x10/0x10
[  392.553796][T11168]  ? bpf_lsm_file_permission+0x9/0x10
[  392.553827][T11168]  ? security_file_permission+0x71/0x210
[  392.553866][T11168]  ? rw_verify_area+0xcf/0x680
[  392.553902][T11168]  ? __pfx_rng_dev_read+0x10/0x10
[  392.553932][T11168]  vfs_read+0x1e1/0xc60
[  392.553979][T11168]  ? __pfx_vfs_read+0x10/0x10
[  392.554016][T11168]  ? find_held_lock+0x2b/0x80
[  392.554046][T11168]  ? __fget_files+0x204/0x3c0
[  392.554092][T11168]  ? __fget_files+0x20e/0x3c0
[  392.554141][T11168]  ksys_read+0x12a/0x250
[  392.554181][T11168]  ? __pfx_ksys_read+0x10/0x10
[  392.554232][T11168]  do_syscall_64+0xcd/0x490
[  392.554278][T11168]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  392.554319][T11168] RIP: 0033:0x7f9a6578e929
[  392.554340][T11168] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  392.554367][T11168] RSP: 002b:00007f9a635d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  392.554392][T11168] RAX: ffffffffffffffda RBX: 00007f9a659b6080 RCX: 00007f9a6578e929
[  392.554410][T11168] RDX: 00000000fffffe82 RSI: 0000200000000040 RDI: 0000000000000003
[  392.554427][T11168] RBP: 00007f9a635d5090 R08: 0000000000000000 R09: 0000000000000000
[  392.554443][T11168] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  392.554459][T11168] R13: 0000000000000000 R14: 00007f9a659b6080 R15: 00007fffa6f76f48
[  392.554495][T11168]  </TASK>
[  393.011356][T11175] ecryptfs_parse_packet_length: Five-byte packet length not supported
[  393.037897][T11175] ecryptfs_miscdev_write: Error parsing packet length; rc = [-22]
[  395.075740][T11212] random: crng reseeded on system resumption
[  395.674219][T11223] FAULT_INJECTION: forcing a failure.
[  395.674219][T11223] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  395.687613][T11223] CPU: 1 UID: 0 PID: 11223 Comm: syz.5.888 Tainted: G     U    I         6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  395.687662][T11223] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  395.687674][T11223] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  395.687691][T11223] Call Trace:
[  395.687700][T11223]  <TASK>
[  395.687710][T11223]  dump_stack_lvl+0x16c/0x1f0
[  395.687760][T11223]  should_fail_ex+0x512/0x640
[  395.687810][T11223]  _copy_to_user+0x32/0xd0
[  395.687878][T11223]  rng_dev_read+0x1ea/0x810
[  395.687912][T11223]  ? __pfx_virtio_read+0x10/0x10
[  395.687944][T11223]  ? __pfx_rng_dev_read+0x10/0x10
[  395.687990][T11223]  ? bpf_lsm_file_permission+0x9/0x10
[  395.688021][T11223]  ? security_file_permission+0x71/0x210
[  395.688066][T11223]  ? rw_verify_area+0xcf/0x680
[  395.688101][T11223]  ? __pfx_rng_dev_read+0x10/0x10
[  395.688131][T11223]  vfs_read+0x1e1/0xc60
[  395.688177][T11223]  ? __pfx_vfs_read+0x10/0x10
[  395.688213][T11223]  ? find_held_lock+0x2b/0x80
[  395.688243][T11223]  ? __fget_files+0x204/0x3c0
[  395.688286][T11223]  ? __fget_files+0x20e/0x3c0
[  395.688332][T11223]  ksys_read+0x12a/0x250
[  395.688371][T11223]  ? __pfx_ksys_read+0x10/0x10
[  395.688421][T11223]  do_syscall_64+0xcd/0x490
[  395.688462][T11223]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  395.688486][T11223] RIP: 0033:0x7ff56478e929
[  395.688504][T11223] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  395.688526][T11223] RSP: 002b:00007ff56568d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  395.688548][T11223] RAX: ffffffffffffffda RBX: 00007ff5649b6160 RCX: 00007ff56478e929
[  395.688564][T11223] RDX: 00000000fffffe82 RSI: 0000200000000040 RDI: 0000000000000003
[  395.688577][T11223] RBP: 00007ff56568d090 R08: 0000000000000000 R09: 0000000000000000
[  395.688592][T11223] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  395.688606][T11223] R13: 0000000000000000 R14: 00007ff5649b6160 R15: 00007ffedb395f48
[  395.688635][T11223]  </TASK>
[  398.070347][T11266] netlink: 25 bytes leftover after parsing attributes in process `syz.5.898'.
[  398.362744][T11274] FAULT_INJECTION: forcing a failure.
[  398.362744][T11274] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  398.419361][T11274] CPU: 0 UID: 0 PID: 11274 Comm: syz.4.899 Tainted: G     U    I         6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  398.419411][T11274] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  398.419422][T11274] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  398.419438][T11274] Call Trace:
[  398.419447][T11274]  <TASK>
[  398.419456][T11274]  dump_stack_lvl+0x16c/0x1f0
[  398.419502][T11274]  should_fail_ex+0x512/0x640
[  398.419547][T11274]  _copy_to_user+0x32/0xd0
[  398.419593][T11274]  rng_dev_read+0x1ea/0x810
[  398.419624][T11274]  ? __pfx_virtio_read+0x10/0x10
[  398.419655][T11274]  ? __pfx_rng_dev_read+0x10/0x10
[  398.419690][T11274]  ? bpf_lsm_file_permission+0x9/0x10
[  398.419720][T11274]  ? security_file_permission+0x71/0x210
[  398.419759][T11274]  ? rw_verify_area+0xcf/0x680
[  398.419794][T11274]  ? __pfx_rng_dev_read+0x10/0x10
[  398.419832][T11274]  vfs_read+0x1e1/0xc60
[  398.419880][T11274]  ? __pfx_vfs_read+0x10/0x10
[  398.419917][T11274]  ? find_held_lock+0x2b/0x80
[  398.419947][T11274]  ? __fget_files+0x204/0x3c0
[  398.419992][T11274]  ? __fget_files+0x20e/0x3c0
[  398.420040][T11274]  ksys_read+0x12a/0x250
[  398.420078][T11274]  ? __pfx_ksys_read+0x10/0x10
[  398.420128][T11274]  do_syscall_64+0xcd/0x490
[  398.420174][T11274]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  398.420203][T11274] RIP: 0033:0x7f8d2158e929
[  398.420225][T11274] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  398.420252][T11274] RSP: 002b:00007f8d22472038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  398.420277][T11274] RAX: ffffffffffffffda RBX: 00007f8d217b6080 RCX: 00007f8d2158e929
[  398.420295][T11274] RDX: 00000000fffffe82 RSI: 0000200000000040 RDI: 0000000000000003
[  398.420312][T11274] RBP: 00007f8d22472090 R08: 0000000000000000 R09: 0000000000000000
[  398.420328][T11274] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  398.420344][T11274] R13: 0000000000000000 R14: 00007f8d217b6080 R15: 00007ffc1af1dbb8
[  398.420379][T11274]  </TASK>
[  399.025956][T11285] random: crng reseeded on system resumption
[  399.747667][T11304] vhci_hcd: invalid port number 255
[  400.508477][T11314] ubi: mtd0 is already attached to ubi0
[  400.724992][T11327] FAULT_INJECTION: forcing a failure.
[  400.724992][T11327] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  400.749153][T11327] CPU: 1 UID: 0 PID: 11327 Comm: syz.4.912 Tainted: G     U    I         6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  400.749200][T11327] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  400.749212][T11327] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  400.749228][T11327] Call Trace:
[  400.749237][T11327]  <TASK>
[  400.749246][T11327]  dump_stack_lvl+0x16c/0x1f0
[  400.749292][T11327]  should_fail_ex+0x512/0x640
[  400.749337][T11327]  _copy_to_user+0x32/0xd0
[  400.749390][T11327]  rng_dev_read+0x1ea/0x810
[  400.749428][T11327]  ? __pfx_virtio_read+0x10/0x10
[  400.749458][T11327]  ? __pfx_rng_dev_read+0x10/0x10
[  400.749511][T11327]  ? bpf_lsm_file_permission+0x9/0x10
[  400.749544][T11327]  ? security_file_permission+0x71/0x210
[  400.749585][T11327]  ? rw_verify_area+0xcf/0x680
[  400.749633][T11327]  ? __pfx_rng_dev_read+0x10/0x10
[  400.749681][T11327]  vfs_read+0x1e1/0xc60
[  400.749731][T11327]  ? __pfx_vfs_read+0x10/0x10
[  400.749770][T11327]  ? find_held_lock+0x2b/0x80
[  400.749804][T11327]  ? __fget_files+0x204/0x3c0
[  400.749851][T11327]  ? __fget_files+0x20e/0x3c0
[  400.749904][T11327]  ksys_read+0x12a/0x250
[  400.749946][T11327]  ? __pfx_ksys_read+0x10/0x10
[  400.750001][T11327]  do_syscall_64+0xcd/0x490
[  400.750049][T11327]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  400.750080][T11327] RIP: 0033:0x7f8d2158e929
[  400.750103][T11327] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  400.750132][T11327] RSP: 002b:00007f8d22493038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  400.750159][T11327] RAX: ffffffffffffffda RBX: 00007f8d217b5fa0 RCX: 00007f8d2158e929
[  400.750178][T11327] RDX: 00000000fffffe82 RSI: 0000200000000040 RDI: 0000000000000003
[  400.750196][T11327] RBP: 00007f8d22493090 R08: 0000000000000000 R09: 0000000000000000
[  400.750218][T11327] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  400.750235][T11327] R13: 0000000000000000 R14: 00007f8d217b5fa0 R15: 00007ffc1af1dbb8
[  400.750274][T11327]  </TASK>
[  403.205809][T11376] FAULT_INJECTION: forcing a failure.
[  403.205809][T11376] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  403.277925][T11376] CPU: 1 UID: 0 PID: 11376 Comm: syz.5.923 Tainted: G     U    I         6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  403.277978][T11376] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  403.277989][T11376] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  403.278025][T11376] Call Trace:
[  403.278035][T11376]  <TASK>
[  403.278047][T11376]  dump_stack_lvl+0x16c/0x1f0
[  403.278100][T11376]  should_fail_ex+0x512/0x640
[  403.278154][T11376]  _copy_to_user+0x32/0xd0
[  403.278208][T11376]  rng_dev_read+0x1ea/0x810
[  403.278244][T11376]  ? __pfx_virtio_read+0x10/0x10
[  403.278280][T11376]  ? __pfx_rng_dev_read+0x10/0x10
[  403.278321][T11376]  ? bpf_lsm_file_permission+0x9/0x10
[  403.278356][T11376]  ? security_file_permission+0x71/0x210
[  403.278400][T11376]  ? rw_verify_area+0xcf/0x680
[  403.278442][T11376]  ? __pfx_rng_dev_read+0x10/0x10
[  403.278483][T11376]  vfs_read+0x1e1/0xc60
[  403.278538][T11376]  ? __pfx_vfs_read+0x10/0x10
[  403.278580][T11376]  ? find_held_lock+0x2b/0x80
[  403.278615][T11376]  ? __fget_files+0x204/0x3c0
[  403.278666][T11376]  ? __fget_files+0x20e/0x3c0
[  403.278734][T11376]  ksys_read+0x12a/0x250
[  403.278780][T11376]  ? __pfx_ksys_read+0x10/0x10
[  403.278835][T11376]  do_syscall_64+0xcd/0x490
[  403.278884][T11376]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  403.278915][T11376] RIP: 0033:0x7ff56478e929
[  403.278938][T11376] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  403.278967][T11376] RSP: 002b:00007ff5656ae038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  403.278995][T11376] RAX: ffffffffffffffda RBX: 00007ff5649b6080 RCX: 00007ff56478e929
[  403.279014][T11376] RDX: 00000000fffffe82 RSI: 0000200000000040 RDI: 0000000000000003
[  403.279032][T11376] RBP: 00007ff5656ae090 R08: 0000000000000000 R09: 0000000000000000
[  403.279050][T11376] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  403.279067][T11376] R13: 0000000000000000 R14: 00007ff5649b6080 R15: 00007ffedb395f48
[  403.279105][T11376]  </TASK>
[  403.490204][    C1] vkms_vblank_simulate: vblank timer overrun
[  404.922668][T11399] netlink: 252 bytes leftover after parsing attributes in process `syz.2.925'.
[  405.858220][T11416] ubi: mtd0 is already attached to ubi0
[  405.899939][T11423] FAULT_INJECTION: forcing a failure.
[  405.899939][T11423] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  405.951487][T11423] CPU: 1 UID: 0 PID: 11423 Comm: syz.2.932 Tainted: G     U    I         6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  405.951523][T11423] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  405.951530][T11423] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  405.951542][T11423] Call Trace:
[  405.951548][T11423]  <TASK>
[  405.951556][T11423]  dump_stack_lvl+0x16c/0x1f0
[  405.951590][T11423]  should_fail_ex+0x512/0x640
[  405.951623][T11423]  should_fail_alloc_page+0xe7/0x130
[  405.951645][T11423]  prepare_alloc_pages+0x3c2/0x610
[  405.951675][T11423]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  405.951707][T11423]  ? unwind_get_return_address+0x59/0xa0
[  405.951740][T11423]  ? arch_stack_walk+0xa6/0x100
[  405.951765][T11423]  ? __lock_acquire+0x622/0x1c90
[  405.951792][T11423]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  405.951825][T11423]  ? __pfx_stack_trace_save+0x10/0x10
[  405.951848][T11423]  ? stack_depot_save_flags+0x28/0xa40
[  405.951883][T11423]  ? register_lock_class+0x41/0x4c0
[  405.951916][T11423]  ? find_held_lock+0x2b/0x80
[  405.951937][T11423]  ? ima_match_policy+0x7f9/0x22e0
[  405.951959][T11423]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  405.951991][T11423]  ? policy_nodemask+0xea/0x4e0
[  405.952012][T11423]  alloc_pages_mpol+0x1fb/0x550
[  405.952031][T11423]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  405.952057][T11423]  folio_alloc_mpol_noprof+0x36/0x2f0
[  405.952082][T11423]  vma_alloc_folio_noprof+0xed/0x1e0
[  405.952105][T11423]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  405.952128][T11423]  ? rcu_read_unlock+0x2d/0xb0
[  405.952161][T11423]  do_wp_page+0x1136/0x4f20
[  405.952190][T11423]  ? __pfx_do_wp_page+0x10/0x10
[  405.952214][T11423]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  405.952252][T11423]  __handle_mm_fault+0x2223/0x5490
[  405.952286][T11423]  ? __pfx___handle_mm_fault+0x10/0x10
[  405.952310][T11423]  ? __pfx_mt_find+0x10/0x10
[  405.952341][T11423]  ? find_vma+0xbf/0x140
[  405.952360][T11423]  ? __pfx_find_vma+0x10/0x10
[  405.952382][T11423]  handle_mm_fault+0x589/0xd10
[  405.952408][T11423]  ? __pkru_allows_pkey+0x51/0xb0
[  405.952436][T11423]  do_user_addr_fault+0x7a6/0x1370
[  405.952466][T11423]  ? rcu_is_watching+0x12/0xc0
[  405.952489][T11423]  exc_page_fault+0x5c/0xb0
[  405.952517][T11423]  asm_exc_page_fault+0x26/0x30
[  405.952535][T11423] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  405.952558][T11423] Code: 11 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 e9 0f 11 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  405.952576][T11423] RSP: 0018:ffffc9000c1f7be0 EFLAGS: 00050246
[  405.952591][T11423] RAX: 0000000000000001 RBX: 0000000000000040 RCX: 0000000000000001
[  405.952603][T11423] RDX: fffff5200183ef96 RSI: ffffc9000c1f7caf RDI: 0000200000001000
[  405.952615][T11423] RBP: 0000200000000fc1 R08: 0000000000000000 R09: fffff5200183ef95
[  405.952627][T11423] R10: ffffc9000c1f7caf R11: 0000000000000001 R12: ffffc9000c1f7c70
[  405.952639][T11423] R13: 0000200000001001 R14: 00007ffffffff000 R15: 0000000000000000
[  405.952663][T11423]  _copy_to_user+0xbb/0xd0
[  405.952695][T11423]  rng_dev_read+0x1ea/0x810
[  405.952717][T11423]  ? __pfx_virtio_read+0x10/0x10
[  405.952737][T11423]  ? __pfx_rng_dev_read+0x10/0x10
[  405.952761][T11423]  ? bpf_lsm_file_permission+0x9/0x10
[  405.952782][T11423]  ? security_file_permission+0x71/0x210
[  405.952808][T11423]  ? rw_verify_area+0xcf/0x680
[  405.952832][T11423]  ? __pfx_rng_dev_read+0x10/0x10
[  405.952852][T11423]  vfs_read+0x1e1/0xc60
[  405.952884][T11423]  ? __pfx_vfs_read+0x10/0x10
[  405.952913][T11423]  ? find_held_lock+0x2b/0x80
[  405.952934][T11423]  ? __fget_files+0x204/0x3c0
[  405.952965][T11423]  ? __fget_files+0x20e/0x3c0
[  405.952998][T11423]  ksys_read+0x12a/0x250
[  405.953025][T11423]  ? __pfx_ksys_read+0x10/0x10
[  405.953060][T11423]  do_syscall_64+0xcd/0x490
[  405.953092][T11423]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  405.953111][T11423] RIP: 0033:0x7f9a6578e929
[  405.953126][T11423] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  405.953145][T11423] RSP: 002b:00007f9a635d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  405.953162][T11423] RAX: ffffffffffffffda RBX: 00007f9a659b6080 RCX: 00007f9a6578e929
[  405.953175][T11423] RDX: 00000000fffffe82 RSI: 0000200000000040 RDI: 0000000000000003
[  405.953187][T11423] RBP: 00007f9a635d5090 R08: 0000000000000000 R09: 0000000000000000
[  405.953198][T11423] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  405.953210][T11423] R13: 0000000000000000 R14: 00007f9a659b6080 R15: 00007fffa6f76f48
[  405.953235][T11423]  </TASK>
[  406.405122][    C1] vkms_vblank_simulate: vblank timer overrun
[  408.303643][T11458] sd 0:0:1:0: PR command failed: 1026
[  408.309249][T11458] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  408.316247][T11458] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  408.618266][T11467] can: request_module (can-proto-4) failed.
[  408.753737][T11474] FAULT_INJECTION: forcing a failure.
[  408.753737][T11474] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  408.797704][T11474] CPU: 1 UID: 0 PID: 11474 Comm: syz.4.944 Tainted: G     U    I         6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  408.797753][T11474] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  408.797765][T11474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  408.797782][T11474] Call Trace:
[  408.797790][T11474]  <TASK>
[  408.797801][T11474]  dump_stack_lvl+0x16c/0x1f0
[  408.797849][T11474]  should_fail_ex+0x512/0x640
[  408.797898][T11474]  _copy_to_user+0x32/0xd0
[  408.797958][T11474]  rng_dev_read+0x1ea/0x810
[  408.797994][T11474]  ? __pfx_virtio_read+0x10/0x10
[  408.798027][T11474]  ? __pfx_rng_dev_read+0x10/0x10
[  408.798064][T11474]  ? bpf_lsm_file_permission+0x9/0x10
[  408.798096][T11474]  ? security_file_permission+0x71/0x210
[  408.798135][T11474]  ? rw_verify_area+0xcf/0x680
[  408.798173][T11474]  ? __pfx_rng_dev_read+0x10/0x10
[  408.798214][T11474]  vfs_read+0x1e1/0xc60
[  408.798269][T11474]  ? __pfx_vfs_read+0x10/0x10
[  408.798325][T11474]  ? find_held_lock+0x2b/0x80
[  408.798360][T11474]  ? __fget_files+0x204/0x3c0
[  408.798410][T11474]  ? __fget_files+0x20e/0x3c0
[  408.798466][T11474]  ksys_read+0x12a/0x250
[  408.798510][T11474]  ? __pfx_ksys_read+0x10/0x10
[  408.798568][T11474]  do_syscall_64+0xcd/0x490
[  408.798619][T11474]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  408.798652][T11474] RIP: 0033:0x7f8d2158e929
[  408.798677][T11474] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  408.798708][T11474] RSP: 002b:00007f8d22472038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  408.798736][T11474] RAX: ffffffffffffffda RBX: 00007f8d217b6080 RCX: 00007f8d2158e929
[  408.798757][T11474] RDX: 00000000fffffe82 RSI: 0000200000000040 RDI: 0000000000000003
[  408.798776][T11474] RBP: 00007f8d22472090 R08: 0000000000000000 R09: 0000000000000000
[  408.798795][T11474] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  408.798813][T11474] R13: 0000000000000000 R14: 00007f8d217b6080 R15: 00007ffc1af1dbb8
[  408.798853][T11474]  </TASK>
[  409.468004][T11482] input input25: cannot allocate more than FF_MAX_EFFECTS effects
[  409.606926][T11469] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78000
[  409.651928][T11469] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  409.660944][T11469] memcg:ffff888078682401
[  409.665343][T11469] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  409.686302][T11469] page_type: f5(slab)
[  409.717724][T11469] raw: 00fff00000000040 ffff88801b84b000 ffffea0000cb6980 dead000000000004
[  409.727247][T11469] raw: 0000000000000000 0000000000100010 00000000f5000000 ffff888078682401
[  409.738423][T11469] head: 00fff00000000040 ffff88801b84b000 ffffea0000cb6980 dead000000000004
[  409.747357][T11469] head: 0000000000000000 0000000000100010 00000000f5000000 ffff888078682401
[  409.954016][T11469] head: 00fff00000000001 ffffea0001e00001 00000000ffffffff 00000000ffffffff
[  409.966714][T11469] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002
[  409.975813][T11469] page dumped because: unmovable page
[  409.984449][T11469] page_owner tracks the page as allocated
[  409.999976][T11469] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd60c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_RETRY_MAYFAIL|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5983, tgid 5982 (syz.2.13), ts 104926910355, free_ts 104923216186
[  410.139090][T11469]  post_alloc_hook+0x1c0/0x230
[  410.175541][T11469]  get_page_from_freelist+0x1321/0x3890
[  410.257595][T11469]  __alloc_frozen_pages_noprof+0x261/0x23f0
[  410.284172][T11469]  alloc_pages_mpol+0x1fb/0x550
[  410.290643][T11469]  new_slab+0x23b/0x330
[  410.305097][T11469]  ___slab_alloc+0xd9c/0x1940
[  410.317620][T11469]  __slab_alloc.constprop.0+0x56/0xb0
[  410.323033][T11469]  __kvmalloc_node_noprof+0x3b1/0x620
[  410.370071][T11469]  alloc_netdev_mqs+0xcf8/0x1570
[  410.405891][T11469]  vti6_init_net+0xf5/0x490
[  410.417873][T11469]  ops_init+0x1e2/0x5f0
[  410.423222][T11469]  setup_net+0x1ff/0x510
[  410.446958][T11469]  copy_net_ns+0x2a6/0x5f0
[  410.457296][T11469]  create_new_namespaces+0x3ea/0xa90
[  410.472990][T11469]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  410.497554][T11469]  ksys_unshare+0x45b/0xa40
[  410.512308][T11469] page last free pid 5983 tgid 5982 stack trace:
[  410.533865][T11469]  __free_frozen_pages+0x7fe/0x1180
[  410.552834][T11469]  qlist_free_all+0x4d/0x120
[  410.570578][T11469]  kasan_quarantine_reduce+0x195/0x1e0
[  410.576171][T11469]  __kasan_slab_alloc+0x69/0x90
[  410.601502][T11469]  __kmalloc_cache_noprof+0x1f1/0x3e0
[  410.617439][T11469]  ref_tracker_alloc+0x18e/0x5b0
[  410.626720][T11469]  register_netdevice+0x1689/0x2270
[  410.652361][T11469]  __ip_tunnel_create+0x540/0x6e0
[  410.682781][T11469]  ip_tunnel_init_net+0x22f/0x7d0
[  410.697511][T11469]  vti_init_net+0x2e/0x140
[  410.722561][T11469]  ops_init+0x1e2/0x5f0
[  410.746757][T11469]  setup_net+0x1ff/0x510
[  410.792198][T11469]  copy_net_ns+0x2a6/0x5f0
[  410.796708][T11469]  create_new_namespaces+0x3ea/0xa90
[  410.812379][T11469]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  410.827856][T11469]  ksys_unshare+0x45b/0xa40
[  412.780323][T11512] netlink: 206 bytes leftover after parsing attributes in process `syz.1.957'.
[  412.842197][T11520] futex_wake_op: syz.1.957 tries to shift op by -9; fix this program
[  412.917872][T11520] futex_wake_op: syz.1.957 tries to shift op by -9; fix this program
[  412.957694][T11520] futex_wake_op: syz.1.957 tries to shift op by -9; fix this program
[  412.977759][T11520] futex_wake_op: syz.1.957 tries to shift op by -9; fix this program
[  413.032263][T11520] futex_wake_op: syz.1.957 tries to shift op by -9; fix this program
[  413.061089][T11520] futex_wake_op: syz.1.957 tries to shift op by -9; fix this program
[  413.097835][T11520] futex_wake_op: syz.1.957 tries to shift op by -9; fix this program
[  413.143802][T11520] futex_wake_op: syz.1.957 tries to shift op by -9; fix this program
[  414.068949][T11537] FAULT_INJECTION: forcing a failure.
[  414.068949][T11537] name failslab, interval 1, probability 0, space 0, times 0
[  414.103441][T11537] CPU: 0 UID: 0 PID: 11537 Comm: syz.4.955 Tainted: G     U    I         6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  414.103494][T11537] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  414.103506][T11537] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  414.103524][T11537] Call Trace:
[  414.103533][T11537]  <TASK>
[  414.103544][T11537]  dump_stack_lvl+0x16c/0x1f0
[  414.103594][T11537]  should_fail_ex+0x512/0x640
[  414.103636][T11537]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  414.103687][T11537]  should_failslab+0xc2/0x120
[  414.103716][T11537]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  414.103759][T11537]  ? __proc_create+0xc3/0x8c0
[  414.103808][T11537]  ? __proc_create+0x2ce/0x8c0
[  414.103860][T11537]  __proc_create+0x2ce/0x8c0
[  414.103907][T11537]  ? __pfx___proc_create+0x10/0x10
[  414.103960][T11537]  ? _raw_write_unlock+0x28/0x50
[  414.103999][T11537]  ? proc_register+0x314/0x5f0
[  414.104050][T11537]  proc_create_reg+0x7d/0x180
[  414.104078][T11537]  ? __pfx_can_reset_stats_proc_show+0x10/0x10
[  414.104109][T11537]  proc_create_net_single+0x86/0x170
[  414.104138][T11537]  ? __pfx_proc_create_net_single+0x10/0x10
[  414.104179][T11537]  can_init_proc+0x112/0x4d0
[  414.104209][T11537]  can_pernet_init+0x1e4/0x370
[  414.104263][T11537]  ? __pfx_can_pernet_init+0x10/0x10
[  414.104308][T11537]  ops_init+0x1e2/0x5f0
[  414.104359][T11537]  setup_net+0x1ff/0x510
[  414.104403][T11537]  ? lockdep_init_map_type+0x5c/0x280
[  414.104446][T11537]  ? __pfx_setup_net+0x10/0x10
[  414.104495][T11537]  ? debug_mutex_init+0x37/0x70
[  414.104530][T11537]  copy_net_ns+0x2a6/0x5f0
[  414.104564][T11537]  create_new_namespaces+0x3ea/0xa90
[  414.104607][T11537]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  414.104646][T11537]  ksys_unshare+0x45b/0xa40
[  414.104687][T11537]  ? __pfx_ksys_unshare+0x10/0x10
[  414.104730][T11537]  ? xfd_validate_state+0x61/0x180
[  414.104781][T11537]  __x64_sys_unshare+0x31/0x40
[  414.104821][T11537]  do_syscall_64+0xcd/0x490
[  414.104869][T11537]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  414.104899][T11537] RIP: 0033:0x7f8d2158e929
[  414.104922][T11537] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  414.104951][T11537] RSP: 002b:00007f8d22493038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  414.104978][T11537] RAX: ffffffffffffffda RBX: 00007f8d217b5fa0 RCX: 00007f8d2158e929
[  414.104997][T11537] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  414.105015][T11537] RBP: 00007f8d21610b39 R08: 0000000000000000 R09: 0000000000000000
[  414.105033][T11537] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  414.105050][T11537] R13: 0000000000000000 R14: 00007f8d217b5fa0 R15: 00007ffc1af1dbb8
[  414.105088][T11537]  </TASK>
[  414.378110][    C0] vkms_vblank_simulate: vblank timer overrun
[  414.741015][T11539] FAULT_INJECTION: forcing a failure.
[  414.741015][T11539] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  414.967696][T11539] CPU: 1 UID: 0 PID: 11539 Comm: syz.5.956 Tainted: G     U    I         6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  414.967752][T11539] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  414.967765][T11539] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  414.967784][T11539] Call Trace:
[  414.967794][T11539]  <TASK>
[  414.967806][T11539]  dump_stack_lvl+0x16c/0x1f0
[  414.967859][T11539]  should_fail_ex+0x512/0x640
[  414.967914][T11539]  _copy_to_user+0x32/0xd0
[  414.967969][T11539]  rng_dev_read+0x1ea/0x810
[  414.968005][T11539]  ? __pfx_virtio_read+0x10/0x10
[  414.968041][T11539]  ? __pfx_rng_dev_read+0x10/0x10
[  414.968081][T11539]  ? bpf_lsm_file_permission+0x9/0x10
[  414.968117][T11539]  ? security_file_permission+0x71/0x210
[  414.968161][T11539]  ? rw_verify_area+0xcf/0x680
[  414.968202][T11539]  ? __pfx_rng_dev_read+0x10/0x10
[  414.968236][T11539]  vfs_read+0x1e1/0xc60
[  414.968291][T11539]  ? __pfx_vfs_read+0x10/0x10
[  414.968333][T11539]  ? find_held_lock+0x2b/0x80
[  414.968369][T11539]  ? __fget_files+0x204/0x3c0
[  414.968428][T11539]  ? __fget_files+0x20e/0x3c0
[  414.968485][T11539]  ksys_read+0x12a/0x250
[  414.968531][T11539]  ? __pfx_ksys_read+0x10/0x10
[  414.968589][T11539]  do_syscall_64+0xcd/0x490
[  414.968642][T11539]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  414.968676][T11539] RIP: 0033:0x7ff56478e929
[  414.968700][T11539] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  414.968731][T11539] RSP: 002b:00007ff5656cf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  414.968761][T11539] RAX: ffffffffffffffda RBX: 00007ff5649b5fa0 RCX: 00007ff56478e929
[  414.968782][T11539] RDX: 00000000fffffe82 RSI: 0000200000000040 RDI: 0000000000000003
[  414.968801][T11539] RBP: 00007ff5656cf090 R08: 0000000000000000 R09: 0000000000000000
[  414.968820][T11539] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  414.968838][T11539] R13: 0000000000000000 R14: 00007ff5649b5fa0 R15: 00007ffedb395f48
[  414.968879][T11539]  </TASK>
[  415.794474][T11554] batman_adv: Routing algorithm '' is not supported
[  417.326954][ T6434] Bluetooth: hci3: ISO packet for unknown connection handle 0
[  419.034350][T11599] FAULT_INJECTION: forcing a failure.
[  419.034350][T11599] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  419.089603][T11599] CPU: 0 UID: 0 PID: 11599 Comm: syz.4.971 Tainted: G     U    I         6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  419.089654][T11599] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  419.089666][T11599] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  419.089683][T11599] Call Trace:
[  419.089691][T11599]  <TASK>
[  419.089702][T11599]  dump_stack_lvl+0x16c/0x1f0
[  419.089748][T11599]  should_fail_ex+0x512/0x640
[  419.089804][T11599]  _copy_to_user+0x32/0xd0
[  419.089849][T11599]  rng_dev_read+0x1ea/0x810
[  419.089882][T11599]  ? __pfx_virtio_read+0x10/0x10
[  419.089913][T11599]  ? __pfx_rng_dev_read+0x10/0x10
[  419.089948][T11599]  ? bpf_lsm_file_permission+0x9/0x10
[  419.089978][T11599]  ? security_file_permission+0x71/0x210
[  419.090017][T11599]  ? rw_verify_area+0xcf/0x680
[  419.090053][T11599]  ? __pfx_rng_dev_read+0x10/0x10
[  419.090082][T11599]  vfs_read+0x1e1/0xc60
[  419.090129][T11599]  ? __pfx_vfs_read+0x10/0x10
[  419.090165][T11599]  ? find_held_lock+0x2b/0x80
[  419.090196][T11599]  ? __fget_files+0x204/0x3c0
[  419.090241][T11599]  ? __fget_files+0x20e/0x3c0
[  419.090296][T11599]  ksys_read+0x12a/0x250
[  419.090335][T11599]  ? __pfx_ksys_read+0x10/0x10
[  419.090388][T11599]  do_syscall_64+0xcd/0x490
[  419.090434][T11599]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  419.090463][T11599] RIP: 0033:0x7f8d2158e929
[  419.090485][T11599] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  419.090513][T11599] RSP: 002b:00007f8d22472038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  419.090538][T11599] RAX: ffffffffffffffda RBX: 00007f8d217b6080 RCX: 00007f8d2158e929
[  419.090555][T11599] RDX: 00000000fffffe82 RSI: 0000200000000040 RDI: 0000000000000003
[  419.090571][T11599] RBP: 00007f8d22472090 R08: 0000000000000000 R09: 0000000000000000
[  419.090587][T11599] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  419.090603][T11599] R13: 0000000000000000 R14: 00007f8d217b6080 R15: 00007ffc1af1dbb8
[  419.090639][T11599]  </TASK>
[  422.210454][T11645] netlink: 28 bytes leftover after parsing attributes in process `syz.1.980'.
[  422.838902][T11645] team0 (unregistering): Port device team_slave_0 removed
[  422.873052][T11645] team0 (unregistering): Port device team_slave_1 removed
[  422.980930][T11649] FAULT_INJECTION: forcing a failure.
[  422.980930][T11649] name failslab, interval 1, probability 0, space 0, times 0
[  423.014504][T11649] CPU: 1 UID: 0 PID: 11649 Comm: syz.2.989 Tainted: G     U    I         6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  423.014555][T11649] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  423.014566][T11649] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  423.014583][T11649] Call Trace:
[  423.014592][T11649]  <TASK>
[  423.014602][T11649]  dump_stack_lvl+0x16c/0x1f0
[  423.014649][T11649]  should_fail_ex+0x512/0x640
[  423.014689][T11649]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  423.014747][T11649]  should_failslab+0xc2/0x120
[  423.014775][T11649]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  423.014820][T11649]  ? sock_alloc_inode+0x25/0x1c0
[  423.014854][T11649]  ? __pfx_sock_alloc_inode+0x10/0x10
[  423.014881][T11649]  sock_alloc_inode+0x25/0x1c0
[  423.014908][T11649]  alloc_inode+0x61/0x240
[  423.014939][T11649]  sock_alloc+0x40/0x280
[  423.014966][T11649]  __sock_create+0xc1/0x8d0
[  423.015005][T11649]  __sys_socket+0x14d/0x260
[  423.015038][T11649]  ? __pfx___sys_socket+0x10/0x10
[  423.015071][T11649]  ? __pfx___do_sys_close_range+0x10/0x10
[  423.015138][T11649]  __x64_sys_socket+0x72/0xb0
[  423.015172][T11649]  ? lockdep_hardirqs_on+0x7c/0x110
[  423.015213][T11649]  do_syscall_64+0xcd/0x490
[  423.015279][T11649]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  423.015311][T11649] RIP: 0033:0x7f9a6578e929
[  423.015335][T11649] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  423.015385][T11649] RSP: 002b:00007f9a635f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  423.015417][T11649] RAX: ffffffffffffffda RBX: 00007f9a659b5fa0 RCX: 00007f9a6578e929
[  423.015439][T11649] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010
[  423.015459][T11649] RBP: 00007f9a65810b39 R08: 0000000000000000 R09: 0000000000000000
[  423.015479][T11649] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  423.015498][T11649] R13: 0000000000000000 R14: 00007f9a659b5fa0 R15: 00007fffa6f76f48
[  423.015541][T11649]  </TASK>
[  423.015556][T11649] socket: no more sockets
[  423.317575][   T30] audit: type=1804 audit(4294967559.000:18): pid=11652 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.989" name="/newroot/255/file0" dev="tmpfs" ino=1351 res=1 errno=0
[  423.495520][   T30] audit: type=1800 audit(4294967559.000:19): pid=11652 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.989" name="file0" dev="tmpfs" ino=1351 res=0 errno=0
[  424.383813][T11664] netlink: 28 bytes leftover after parsing attributes in process `syz.1.983'.
[  424.847807][T11669] FAULT_INJECTION: forcing a failure.
[  424.847807][T11669] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  424.917396][T11669] CPU: 1 UID: 0 PID: 11669 Comm: syz.4.984 Tainted: G     U    I         6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  424.917452][T11669] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  424.917463][T11669] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  424.917479][T11669] Call Trace:
[  424.917487][T11669]  <TASK>
[  424.917497][T11669]  dump_stack_lvl+0x16c/0x1f0
[  424.917550][T11669]  should_fail_ex+0x512/0x640
[  424.917596][T11669]  _copy_to_user+0x32/0xd0
[  424.917643][T11669]  rng_dev_read+0x1ea/0x810
[  424.917675][T11669]  ? __pfx_virtio_read+0x10/0x10
[  424.917705][T11669]  ? __pfx_rng_dev_read+0x10/0x10
[  424.917740][T11669]  ? bpf_lsm_file_permission+0x9/0x10
[  424.917771][T11669]  ? security_file_permission+0x71/0x210
[  424.917809][T11669]  ? rw_verify_area+0xcf/0x680
[  424.917862][T11669]  ? __pfx_rng_dev_read+0x10/0x10
[  424.917894][T11669]  vfs_read+0x1e1/0xc60
[  424.917944][T11669]  ? __pfx_vfs_read+0x10/0x10
[  424.917982][T11669]  ? find_held_lock+0x2b/0x80
[  424.918015][T11669]  ? __fget_files+0x204/0x3c0
[  424.918062][T11669]  ? __fget_files+0x20e/0x3c0
[  424.918114][T11669]  ksys_read+0x12a/0x250
[  424.918155][T11669]  ? __pfx_ksys_read+0x10/0x10
[  424.918209][T11669]  do_syscall_64+0xcd/0x490
[  424.918257][T11669]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  424.918287][T11669] RIP: 0033:0x7f8d2158e929
[  424.918310][T11669] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  424.918339][T11669] RSP: 002b:00007f8d22472038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  424.918366][T11669] RAX: ffffffffffffffda RBX: 00007f8d217b6080 RCX: 00007f8d2158e929
[  424.918384][T11669] RDX: 00000000fffffe82 RSI: 0000200000000040 RDI: 0000000000000003
[  424.918402][T11669] RBP: 00007f8d22472090 R08: 0000000000000000 R09: 0000000000000000
[  424.918419][T11669] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  424.918435][T11669] R13: 0000000000000000 R14: 00007f8d217b6080 R15: 00007ffc1af1dbb8
[  424.918473][T11669]  </TASK>
[  425.130327][T11670] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_tx_wq": -EINTR
[  427.922533][T11732] FAULT_INJECTION: forcing a failure.
[  427.922533][T11732] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  427.958933][T11732] CPU: 0 UID: 0 PID: 11732 Comm: syz.1.996 Tainted: G     U    I         6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  427.958981][T11732] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  427.958993][T11732] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  427.959009][T11732] Call Trace:
[  427.959026][T11732]  <TASK>
[  427.959037][T11732]  dump_stack_lvl+0x16c/0x1f0
[  427.959084][T11732]  should_fail_ex+0x512/0x640
[  427.959129][T11732]  _copy_to_user+0x32/0xd0
[  427.959176][T11732]  rng_dev_read+0x1ea/0x810
[  427.959208][T11732]  ? __pfx_virtio_read+0x10/0x10
[  427.959239][T11732]  ? __pfx_rng_dev_read+0x10/0x10
[  427.959293][T11732]  ? bpf_lsm_file_permission+0x9/0x10
[  427.959325][T11732]  ? security_file_permission+0x71/0x210
[  427.959367][T11732]  ? rw_verify_area+0xcf/0x680
[  427.959405][T11732]  ? __pfx_rng_dev_read+0x10/0x10
[  427.959438][T11732]  vfs_read+0x1e1/0xc60
[  427.959488][T11732]  ? __pfx_vfs_read+0x10/0x10
[  427.959527][T11732]  ? find_held_lock+0x2b/0x80
[  427.959560][T11732]  ? __fget_files+0x204/0x3c0
[  427.959618][T11732]  ? __fget_files+0x20e/0x3c0
[  427.959667][T11732]  ksys_read+0x12a/0x250
[  427.959707][T11732]  ? __pfx_ksys_read+0x10/0x10
[  427.959758][T11732]  do_syscall_64+0xcd/0x490
[  427.959803][T11732]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  427.959849][T11732] RIP: 0033:0x7f621738e929
[  427.959871][T11732] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  427.959899][T11732] RSP: 002b:00007f62151d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  427.959926][T11732] RAX: ffffffffffffffda RBX: 00007f62175b6080 RCX: 00007f621738e929
[  427.959945][T11732] RDX: 00000000fffffe82 RSI: 0000200000000040 RDI: 0000000000000003
[  427.959962][T11732] RBP: 00007f62151d5090 R08: 0000000000000000 R09: 0000000000000000
[  427.959979][T11732] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  427.959996][T11732] R13: 0000000000000000 R14: 00007f62175b6080 R15: 00007fff75d49478
[  427.960041][T11732]  </TASK>
[  428.763679][T11745] 
[  428.766054][T11745] ======================================================
[  428.773287][T11745] WARNING: possible circular locking dependency detected
[  428.780347][T11745] 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 Tainted: G     U    I        
[  428.789278][T11745] ------------------------------------------------------
[  428.796327][T11745] syz.2.1001/11745 is trying to acquire lock:
[  428.802405][T11745] ffff8881427136c8 (&q->elevator_lock){+.+.}-{4:4}, at: queue_requests_store+0x1c7/0x310
[  428.812283][T11745] 
[  428.812283][T11745] but task is already holding lock:
[  428.819657][T11745] ffff888142713190 (&q->q_usage_counter(io)#59){++++}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20
[  428.830934][T11745] 
[  428.830934][T11745] which lock already depends on the new lock.
[  428.830934][T11745] 
[  428.841353][T11745] 
[  428.841353][T11745] the existing dependency chain (in reverse order) is:
[  428.850378][T11745] 
[  428.850378][T11745] -> #3 (&q->q_usage_counter(io)#59){++++}-{0:0}:
[  428.859012][T11745]        blk_alloc_queue+0x619/0x760
[  428.864317][T11745]        blk_mq_alloc_queue+0x175/0x290
[  428.869885][T11745]        __blk_mq_alloc_disk+0x29/0x120
[  428.875469][T11745]        nbd_dev_add+0x4a0/0xbc0
[  428.880457][T11745]        nbd_init+0x181/0x320
[  428.885154][T11745]        do_one_initcall+0x120/0x6e0
[  428.890469][T11745]        kernel_init_freeable+0x5c2/0x900
[  428.896221][T11745]        kernel_init+0x1c/0x2b0
[  428.901094][T11745]        ret_from_fork+0x5d7/0x6f0
[  428.906241][T11745]        ret_from_fork_asm+0x1a/0x30
[  428.911551][T11745] 
[  428.911551][T11745] -> #2 (fs_reclaim){+.+.}-{0:0}:
[  428.918874][T11745]        fs_reclaim_acquire+0x102/0x150
[  428.924446][T11745]        prepare_alloc_pages+0x162/0x610
[  428.930099][T11745]        __alloc_frozen_pages_noprof+0x18b/0x23f0
[  428.936537][T11745]        __alloc_pages_noprof+0xb/0x1b0
[  428.942136][T11745]        pcpu_populate_chunk+0x110/0xb00
[  428.947788][T11745]        pcpu_alloc_noprof+0x86a/0x1470
[  428.953357][T11745]        xt_percpu_counter_alloc+0x13e/0x1b0
[  428.959445][T11745]        find_check_entry.constprop.0+0xbf/0xa20
[  428.965806][T11745]        translate_table+0xd0b/0x17b0
[  428.971218][T11745]        ip6t_register_table+0x102/0x430
[  428.976882][T11745]        ip6table_raw_table_init+0x63/0x90
[  428.982806][T11745]        xt_find_table_lock+0x2e1/0x520
[  428.988383][T11745]        xt_request_find_table_lock+0x28/0xf0
[  428.994473][T11745]        get_info+0x190/0x620
[  428.999163][T11745]        do_ip6t_get_ctl+0x169/0xa50
[  429.004468][T11745]        nf_getsockopt+0x7c/0xe0
[  429.009422][T11745]        ipv6_getsockopt+0x1f7/0x280
[  429.014760][T11745]        tcp_getsockopt+0x9e/0x100
[  429.020000][T11745]        do_sock_getsockopt+0x3fc/0x800
[  429.025679][T11745]        __sys_getsockopt+0x123/0x1b0
[  429.031098][T11745]        __x64_sys_getsockopt+0xbd/0x160
[  429.036769][T11745]        do_syscall_64+0xcd/0x490
[  429.041826][T11745]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  429.048265][T11745] 
[  429.048265][T11745] -> #1 (pcpu_alloc_mutex){+.+.}-{4:4}:
[  429.056030][T11745]        __mutex_lock+0x199/0xb90
[  429.061098][T11745]        pcpu_alloc_noprof+0xb4c/0x1470
[  429.066690][T11745]        sbitmap_init_node+0x2fd/0x770
[  429.072160][T11745]        sbitmap_queue_init_node+0x41/0x560
[  429.078070][T11745]        blk_mq_init_tags+0x12d/0x2b0
[  429.083464][T11745]        blk_mq_alloc_map_and_rqs+0x237/0xf60
[  429.089553][T11745]        blk_mq_init_sched+0x30c/0x610
[  429.095027][T11745]        elevator_switch+0x1e1/0x7f0
[  429.100324][T11745]        elevator_change+0x2ac/0x400
[  429.105630][T11745]        elevator_set_default+0x292/0x320
[  429.111376][T11745]        blk_register_queue+0x393/0x4f0
[  429.116927][T11745]        __add_disk+0x74a/0xf00
[  429.121799][T11745]        add_disk_fwnode+0x13f/0x5d0
[  429.127103][T11745]        nbd_dev_add+0x791/0xbc0
[  429.132060][T11745]        nbd_init+0x181/0x320
[  429.136755][T11745]        do_one_initcall+0x120/0x6e0
[  429.142052][T11745]        kernel_init_freeable+0x5c2/0x900
[  429.147803][T11745]        kernel_init+0x1c/0x2b0
[  429.152667][T11745]        ret_from_fork+0x5d7/0x6f0
[  429.157807][T11745]        ret_from_fork_asm+0x1a/0x30
[  429.163109][T11745] 
[  429.163109][T11745] -> #0 (&q->elevator_lock){+.+.}-{4:4}:
[  429.171004][T11745]        __lock_acquire+0x126f/0x1c90
[  429.176529][T11745]        lock_acquire+0x179/0x350
[  429.181678][T11745]        __mutex_lock+0x199/0xb90
[  429.186736][T11745]        queue_requests_store+0x1c7/0x310
[  429.192487][T11745]        queue_attr_store+0x276/0x320
[  429.197883][T11745]        sysfs_kf_write+0xef/0x150
[  429.203010][T11745]        kernfs_fop_write_iter+0x354/0x510
[  429.208831][T11745]        iter_file_splice_write+0x91f/0x1150
[  429.214839][T11745]        direct_splice_actor+0x192/0x6c0
[  429.220501][T11745]        splice_direct_to_actor+0x342/0xa30
[  429.226422][T11745]        do_splice_direct+0x174/0x240
[  429.231819][T11745]        do_sendfile+0xb06/0xe50
[  429.236789][T11745]        __x64_sys_sendfile64+0x1d8/0x220
[  429.242519][T11745]        do_syscall_64+0xcd/0x490
[  429.247590][T11745]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  429.254023][T11745] 
[  429.254023][T11745] other info that might help us debug this:
[  429.254023][T11745] 
[  429.264255][T11745] Chain exists of:
[  429.264255][T11745]   &q->elevator_lock --> fs_reclaim --> &q->q_usage_counter(io)#59
[  429.264255][T11745] 
[  429.278035][T11745]  Possible unsafe locking scenario:
[  429.278035][T11745] 
[  429.285502][T11745]        CPU0                    CPU1
[  429.290875][T11745]        ----                    ----
[  429.296247][T11745]   lock(&q->q_usage_counter(io)#59);
[  429.301910][T11745]                                lock(fs_reclaim);
[  429.308421][T11745]                                lock(&q->q_usage_counter(io)#59);
[  429.316352][T11745]   lock(&q->elevator_lock);
[  429.320963][T11745] 
[  429.320963][T11745]  *** DEADLOCK ***
[  429.320963][T11745] 
[  429.329112][T11745] 5 locks held by syz.2.1001/11745:
[  429.334309][T11745]  #0: ffff888024ec8428 (sb_writers#7){.+.+}-{0:0}, at: splice_direct_to_actor+0x342/0xa30
[  429.344359][T11745]  #1: ffff8880353e3488 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x510
[  429.354135][T11745]  #2: ffff888026ab72d8 (kn->active#218){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2b2/0x510
[  429.364268][T11745]  #3: ffff888142713190 (&q->q_usage_counter(io)#59){++++}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20
[  429.375971][T11745]  #4: ffff8881427131c8 (&q->q_usage_counter(queue)#11){+.+.}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20
[  429.387980][T11745] 
[  429.387980][T11745] stack backtrace:
[  429.393980][T11745] CPU: 1 UID: 0 PID: 11745 Comm: syz.2.1001 Tainted: G     U    I         6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  429.394032][T11745] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  429.394043][T11745] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  429.394059][T11745] Call Trace:
[  429.394068][T11745]  <TASK>
[  429.394077][T11745]  dump_stack_lvl+0x116/0x1f0
[  429.394120][T11745]  print_circular_bug+0x275/0x350
[  429.394158][T11745]  check_noncircular+0x14c/0x170
[  429.394199][T11745]  __lock_acquire+0x126f/0x1c90
[  429.394239][T11745]  ? __lock_acquire+0xb8a/0x1c90
[  429.394279][T11745]  lock_acquire+0x179/0x350
[  429.394315][T11745]  ? queue_requests_store+0x1c7/0x310
[  429.394361][T11745]  ? __pfx___might_resched+0x10/0x10
[  429.394391][T11745]  ? do_raw_spin_lock+0x12c/0x2b0
[  429.394436][T11745]  __mutex_lock+0x199/0xb90
[  429.394475][T11745]  ? queue_requests_store+0x1c7/0x310
[  429.394521][T11745]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  429.394557][T11745]  ? queue_requests_store+0x1c7/0x310
[  429.394600][T11745]  ? lockdep_hardirqs_on+0x7c/0x110
[  429.394639][T11745]  ? __pfx___mutex_lock+0x10/0x10
[  429.394684][T11745]  ? __pfx_autoremove_wake_function+0x10/0x10
[  429.394723][T11745]  ? queue_requests_store+0x1c7/0x310
[  429.394766][T11745]  queue_requests_store+0x1c7/0x310
[  429.394811][T11745]  ? __pfx_queue_requests_store+0x10/0x10
[  429.394858][T11745]  ? __mutex_trylock_common+0xe9/0x250
[  429.394898][T11745]  ? __pfx_queue_requests_store+0x10/0x10
[  429.394942][T11745]  queue_attr_store+0x276/0x320
[  429.394984][T11745]  ? __pfx_queue_attr_store+0x10/0x10
[  429.395032][T11745]  ? __lock_acquire+0x622/0x1c90
[  429.395077][T11745]  ? find_held_lock+0x2b/0x80
[  429.395104][T11745]  ? sysfs_file_kobj+0xe4/0x290
[  429.395149][T11745]  ? __pfx_queue_attr_store+0x10/0x10
[  429.395208][T11745]  sysfs_kf_write+0xef/0x150
[  429.395241][T11745]  kernfs_fop_write_iter+0x354/0x510
[  429.395270][T11745]  ? __pfx_sysfs_kf_write+0x10/0x10
[  429.395304][T11745]  iter_file_splice_write+0x91f/0x1150
[  429.395352][T11745]  ? __pfx_iter_file_splice_write+0x10/0x10
[  429.395393][T11745]  ? __pfx_copy_splice_read+0x10/0x10
[  429.395436][T11745]  ? __pfx_iter_file_splice_write+0x10/0x10
[  429.395475][T11745]  direct_splice_actor+0x192/0x6c0
[  429.395512][T11745]  splice_direct_to_actor+0x342/0xa30
[  429.395548][T11745]  ? __pfx_direct_splice_actor+0x10/0x10
[  429.395588][T11745]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  429.395628][T11745]  do_splice_direct+0x174/0x240
[  429.395663][T11745]  ? __pfx_do_splice_direct+0x10/0x10
[  429.395698][T11745]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  429.395735][T11745]  ? rw_verify_area+0xcf/0x680
[  429.395771][T11745]  do_sendfile+0xb06/0xe50
[  429.395810][T11745]  ? __pfx_do_sendfile+0x10/0x10
[  429.395846][T11745]  ? __pfx___might_resched+0x10/0x10
[  429.395877][T11745]  ? __x64_sys_futex+0x1e0/0x4c0
[  429.395910][T11745]  ? __x64_sys_futex+0x1e9/0x4c0
[  429.395945][T11745]  __x64_sys_sendfile64+0x1d8/0x220
[  429.395971][T11745]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  429.396009][T11745]  do_syscall_64+0xcd/0x490
[  429.396051][T11745]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  429.396078][T11745] RIP: 0033:0x7f9a6578e929
[  429.396099][T11745] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  429.396126][T11745] RSP: 002b:00007f9a635f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  429.396150][T11745] RAX: ffffffffffffffda RBX: 00007f9a659b5fa0 RCX: 00007f9a6578e929
[  429.396168][T11745] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000002
[  429.396183][T11745] RBP: 00007f9a65810b39 R08: 0000000000000000 R09: 0000000000000000
[  429.396200][T11745] R10: 0000000000000200 R11: 0000000000000246 R12: 0000000000000000
[  429.396217][T11745] R13: 0000000000000000 R14: 00007f9a659b5fa0 R15: 00007fffa6f76f48
[  429.396242][T11745]  </TASK>
[  429.783042][ T6434] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  431.555536][T11387] ima: policy update failed
[  431.578046][   T30] audit: type=1802 audit(4294967567.290:20): pid=11387 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.5.924" res=0 errno=0