last executing test programs:

8.936974752s ago: executing program 1 (id=311):
socket(0x2, 0x1, 0x106)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000040), 0xffffffffffffffff)
bind$auto(0x3, 0x0, 0x6c)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x2, 0x8000)
io_uring_setup$auto(0x1, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x4, 0x0)
r0 = openat$auto_force_devcoredump_fops_hci_vhci(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/bluetooth/hci0/force_devcoredump\x00', 0x2, 0x0)
write$auto(r0, 0x0, 0xe)

7.146154536s ago: executing program 0 (id=321):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, 0x0, 0x523240, 0x0)
ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, 0x0)
mmap$auto(0x0, 0x202000d, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
futex$auto(0x0, 0x89, 0x4, 0x0, 0x0, 0x100)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x2200, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x2020010, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000040)='/proc/kmsg\x00', 0x80900, 0x0)
r2 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/nvmet_tcp/parameters/idle_poll_period_usecs\x00', 0x9801, 0x0)
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000)
write$auto(0xffffffffffffffff, 0x0, 0xffd8)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.net/net_prio.ifpriomap\x00', 0x10b142, 0x0)
sendfile$auto(r3, r3, 0x0, 0x2)
ioctl$auto_PPPIOCSMRU(r2, 0xc004743e, 0x0)
ioctl$auto_PPPIOCSPASS(r2, 0x40107447, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x0, 0x100000000008000)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/video25\x00', 0x189a40, 0x0)
ioctl$auto(0x3, 0x4020565a, 0x38)
r4 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0)
setxattrat$auto(0xffffffffffffffff, 0x0, 0x100, 0x0, 0x0, 0x5d8)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x4, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
futimesat$auto(r4, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)={0x10001, 0x6})
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x400000000001ff, 0x7, 0x9, 0x1, 0x4, 0x3, 0x9, 0x5, 0x3, 0x62, 0x8002001f, 0x79d, 0x6d3e, 0xc, 0x6, 0x9]}, 0x0)

7.145681693s ago: executing program 1 (id=314):
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/virt_wifi0/router_solicitations\x00', 0x101202, 0x0)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000013c0)='/proc/sys/net/ipv4/conf/all/proxy_arp\x00', 0x88302, 0x0)
sendfile$auto(r1, r0, 0x0, 0x48)
pwrite64$auto(0xc8, &(0x7f0000000080)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\x00\x06\x00\x06\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\x00\x00\x9f\x1e\xf9\xa4*\x01\x00\x00`^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e#\xae\xa9i8W\xe5Iq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00'/232, 0xfdef, 0x3)
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000)
openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, 0x0, 0x100, 0x0)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/security/tomoyo/manager\x00', 0x200, 0x0)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
mmap$auto(0x0, 0x8, 0x2, 0x9b72, 0x5, 0x3)
socket(0xa, 0x801, 0x106)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x6, 0x0)
r2 = socket(0x2, 0x2, 0x88)
get_robust_list$auto(0x0, &(0x7f0000000680)=&(0x7f0000000640)={{&(0x7f0000000540)={&(0x7f0000000240)}}, 0x81, &(0x7f0000000600)={&(0x7f00000005c0)={&(0x7f0000000580)}}}, &(0x7f0000000280)=0x8)
setsockopt$auto(r2, 0x0, 0x20, 0x0, 0x15)
listen$auto(0x3, 0x83)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D3\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual/block/ram9/queue/write_zeroes_max_bytes\x00', 0x20400, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f00000000c0)=""/255, 0xff)
openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/snd/pcmC1D1p\x00', 0xa00, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r5 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ram4\x00', 0xdd01, 0x0)
r6 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0)
ioctl$auto(r6, 0x41045508, r6)
ioctl$auto_BLKRRPART(r5, 0x125f, 0x700000000000000)
msync$auto(0x1ffff000, 0x1800000ff010000, 0x400000004)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)

5.912713411s ago: executing program 1 (id=318):
mmap$auto(0x0, 0x400008, 0xb, 0x9b72, 0x2, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2, 0x1, 0x106)
bind$auto(0x3, &(0x7f0000000040)=@sco={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}}, 0x6a)
connect$auto(0x3, 0x0, 0x54)
socket(0xa, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$auto(r1, 0xab09, r1)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
getsockopt$auto(r0, 0xff, 0x90, 0x0, &(0x7f0000000140)=0x3)
select$auto(0x11, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da07, 0x7, 0x3, 0x62, 0x8000001f, 0x40007, 0x6d3e, 0x9, 0x1, 0x8]}, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
socket(0x18, 0xa, 0x1)
socket(0xa, 0x2, 0x0)
connect$auto(0x3, &(0x7f00000000c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x8000000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
socket$nl_generic(0x10, 0x3, 0x10)
select$auto(0x7, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x10, 0x400008, 0xdf, 0x40000000009b72, 0x2, 0x8000)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/irq/12/hwirq\x00', 0x2000, 0x0)
read$auto(r3, 0x0, 0x20)
ioctl$auto_RTC_PARAM_GET(0xffffffffffffffff, 0x40187013, 0x0)
getrandom$auto(0x0, 0x6000000, 0x3)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)

5.911642991s ago: executing program 0 (id=327):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000)
socket(0xa, 0x1, 0x100)
ioperm$auto(0x7, 0x5ad2, 0x8)
open(0x0, 0x161342, 0x100)
modify_ldt$auto(0x1, 0x0, 0x10)
socket(0xb497b5eebe3a9d0, 0xa, 0xd7)
r0 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121902, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r2 = socket(0x21, 0x3, 0x6)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
select$auto(0x101, 0x0, 0x0, &(0x7f00000002c0)={[0x2, 0xa, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x7, 0xffffffffffffffff, 0x62, 0x8000201f, 0x7, 0x6d3d, 0x9, 0x2, 0x8000006]}, 0x0)
recvfrom$auto(r0, &(0x7f0000000180)="7c85620f4a263773c8393b9112e834be2372fe4a054f27a66f40f019f571de850e8fdeed6313e42b8b368bae70d418481bac6b420be85d13b6244295e474775d550f281e2febc4a9a6086a43af1bf2fc77c810526c10e9c6e8a6f89c46486ef24c6b9021de5c54", 0x3ff, 0x73, &(0x7f0000000200)=@l2tp={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x39}}, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r3 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x60800, 0x0)
read$auto_vmwgfx_driver_fops_vmwgfx_drv(r3, &(0x7f0000000280)=""/49, 0x31)
r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000240), r2)
sendmsg$auto_NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000880)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000840)={&(0x7f0000000340)={0x4c4, r4, 0x200, 0x70bd2a, 0x25dfdbfb, {}, [@NL80211_ATTR_STA_WME={0x34, 0x81, 0x0, 0x1, [@NL80211_STA_WME_MAX_SP={0x5, 0x2, 0x9}, @NL80211_STA_WME_UAPSD_QUEUES={0x5}, @NL80211_STA_WME_UAPSD_QUEUES={0x5, 0x1, 0x8}, @NL80211_STA_WME_MAX_SP={0x5, 0x2, 0x81}, @NL80211_STA_WME_MAX_SP={0x5}, @NL80211_STA_WME_MAX_SP={0x5, 0x2, 0xf8}]}, @NL80211_ATTR_RECEIVE_MULTICAST={0x4}, @NL80211_ATTR_AP_ISOLATE={0x5}, @NL80211_ATTR_PMK_LIFETIME={0x8, 0x11f, 0xff}, @NL80211_ATTR_PMKR0_NAME={0x5d, 0x102, "1c05567f9f732fb9c8d12b7fe5090aaf9e277d28747860c26b1f70c59a6a9387f7e5459504854d5513e405fb3a0678ff4471a23a30eb94848b0d9f61ea7fa5a7521b63ebe9a9f7ae2e5cbe9da32fe25f9fe9328ccd43a0a4be"}, @NL80211_ATTR_PEER_AID={0x6, 0xb5, 0x8}, @NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0xfc0}, @NL80211_ATTR_IE_ASSOC_RESP={0x3f7, 0x80, "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"}]}, 0x4c4}, 0x1, 0x0, 0x0, 0x404c000}, 0x20040010)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x802, 0x1)
socket(0x2a, 0x5, 0x0)
socketpair$auto(0x1e, 0x1, 0x0, 0x0)
r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0xa200, 0x0)
ioctl$auto_TIOCSETD2(r5, 0x5423, 0x0)
ioctl$auto_TCFLSH2(r5, 0x8924, 0x0)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2, 0x80000000000000e3, 0xfffffffffffffffe, 0xffffffffffffffff, 0xa)

5.058853857s ago: executing program 2 (id=322):
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0xfffffffffffffffe, 0x2020009, 0x1, 0x16, 0xfffffffffffffffa, 0x8000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/system/machinecheck/machinecheck0/bank6\x00', 0x2101, 0x0)
write$auto(r1, &(0x7f0000000240)='802.15.4 MAC\x00', 0x3)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
r2 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sg0\x00', 0xa003, 0x0)
ioctl$auto_SCSI_IOCTL_SEND_COMMAND2(r2, 0x1, &(0x7f0000000140)="f29648d3fcf35b8881a319ad98662624ae17cd10c6e965119c749039c2a662cd6f66e728c546b0c3ba9a9470f4e36dc6d0361c5d14196baeac754395530997397ee4285342cc09f7c7c85491f50da6a894821ab36612c0949b02cb47df05c7720557a8d14706718493db98af5ab8bc5cd82931131ce4f5f2339466c02953d23e6156f68f7533f512426e2f10551961548273c9560fd882c965374fd3473a97e7c257fae01f450478f49f643de30aa10f7a8db576842eefc3371e46a4827e37fdd9a0cc75d83133ed1483d906ba78b50add5a147cab81f16e2603d8f7bcf9ed")
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid$auto(r0, 0x0)
r3 = openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x2400, 0x0)
r4 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/snd/pcmC0D0c\x00', 0x80900, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x10, 0x2, 0xc)
socket(0x10, 0x2, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000)
r5 = gettid()
process_vm_writev$auto(r5, 0x0, 0x3, 0x0, 0x4, 0x0)
clone$auto(0x6, 0x9, 0x0, 0x0, 0xe08)
socket(0x23, 0x80805, 0x0)
bpf$auto(0x10001, &(0x7f0000000140)=@bpf_attr_1={0xffffffffffffffff, 0x4, @value=0x8, 0x2}, 0x800)
writev$auto(0x3, &(0x7f0000000100)={&(0x7f0000000340), 0x7111}, 0x8)
ioctl$auto_SNDRV_PCM_IOCTL_HW_PARAMS2(r4, 0xc2604111, &(0x7f0000000600)={0x10001, [{[0x4, 0x9, 0x1, 0x80000001, 0x1, 0x1, 0x3, 0x5]}, {[0xffffffff, 0x8, 0xffffffff, 0x200, 0xfffffffa, 0xffff8000, 0x3, 0x2]}, {[0x1334000, 0x1, 0x7, 0x1, 0xcb0, 0x4, 0x5, 0x8]}], [{[0x63, 0x8, 0x8, 0x3, 0x3, 0x2, 0x781, 0x6]}, {[0x3, 0x200, 0x514be123, 0x1, 0x1, 0x7, 0x4, 0x81]}, {[0x5, 0x8001, 0x4, 0x7, 0x5, 0x80, 0x1, 0x9]}, {[0x6124, 0x8, 0x0, 0x800, 0x10001, 0x7, 0x3, 0x7fffffff]}, {[0x6, 0x5, 0x5, 0x104, 0x4, 0x0, 0x3]}], [{0x7f, 0x315e, 0x1, 0x0, 0x1}, {0x35b22e9c, 0x4, 0x1, 0x1, 0x1, 0x1}, {0x2, 0x79e2, 0x1, 0x0, 0x0, 0x1}, {0x400, 0x18, 0x1, 0x0, 0x0, 0x1}, {0x2, 0x3, 0x0, 0x0, 0x1}, {0x9, 0x6, 0x0, 0x0, 0x1, 0x1}, {0xa, 0x0, 0x0, 0x1, 0x0, 0x1}, {0xffffffff, 0x4, 0x1, 0x1, 0x1, 0x1}, {0x3, 0x8, 0x0, 0x1}, {0x1, 0x3, 0x0, 0x1, 0x1, 0x1}, {0x9, 0xfcfa, 0x0, 0x1, 0x1, 0x1}, {0x401, 0x401, 0x0, 0x1, 0x0, 0x1}], [{0x0, 0x4, 0x1, 0x1, 0x1, 0x1}, {0x3}, {0x0, 0x81, 0x0, 0x1, 0x1, 0x1}, {0x1df, 0x3, 0x0, 0x1, 0x1, 0x1}, {0x2, 0x5, 0x0, 0x1, 0x1}, {0x0, 0x0, 0x1, 0x1, 0x1, 0x1}, {0xffff0001, 0x8, 0x1, 0x1, 0x1}, {0x2, 0xdad4, 0x1, 0x0, 0x1}, {0x0, 0x7, 0x0, 0x1, 0x0, 0x1}], 0x101, 0x9, 0x7, 0x2, 0x6, 0x7, 0x1000, "4053c497e8da8420f7601310f6ca3464", "ebd82fd2742103b4779e2c8334ab7ecfd1c4fc6197b76b5cf37ed3776f42a82b829c87af8c19d402cbf98aa045e1f364"})
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
r6 = syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/mnt\x00')
ioctl$auto(r6, 0x4020940c, r6)
accept$auto(r3, &(0x7f0000000040)=@ax25={0x3, @default, 0x3}, &(0x7f00000000c0)=0xfff)
wait4$auto(0x0, 0x0, 0x8, 0x0)

4.352373868s ago: executing program 0 (id=323):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$auto(0x3, 0x4020ae46, 0x38)
r1 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
ioctl$auto_FBIOPUT_VSCREENINFO(r1, 0x4601, 0x0)
mmap$auto(0x0, 0x40, 0x2, 0xeb1, r1, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x6, 0x0)
r2 = socket(0x11, 0x3, 0x9)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0xceb)
mremap$auto(0x0, 0x4, 0x4, 0x7, 0x100000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket(0x11, 0x80003, 0x300)
io_uring_setup$auto(0x6, 0x0)
setsockopt$auto(r3, 0x107, 0x14, 0x0, 0xc)
sendmmsg$auto(0x3, 0x0, 0x7, 0x0)
bpf$auto(0x0, &(0x7f0000000000)=@iter_create={0xffffffffffffffff, 0x8}, 0xa3)
sendmmsg$auto(r2, &(0x7f0000000400)={{&(0x7f0000000000), 0x5aa, &(0x7f0000000100)={0x0, 0x49}, 0x1, 0x0, 0x5, 0x3}, 0x5}, 0x2, 0x100)
write$auto(0x1, 0x0, 0x80000000)
madvise$auto(0x0, 0x2003f0, 0x15)
r4 = openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/dri/vkms/internal_clients\x00', 0x101402, 0x0)
read$auto_drm_debugfs_entry_fops_drm_debugfs(r4, &(0x7f0000000240)=""/194, 0xc2)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xfffffffffffefffd, 0x17)
madvise$auto(0x0, 0x200007, 0x19)

4.352257374s ago: executing program 3 (id=324):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000001040)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)={0x5c, r1, 0x1, 0x70bd2d, 0x25dfdc00, {0x1, 0x0, 0x3f00}, [@L2TP_ATTR_ENCAP_TYPE={0x6, 0x2, 0x1}, @L2TP_ATTR_PROTO_VERSION={0x5, 0x7, 0x59}, @L2TP_ATTR_CONN_ID={0x8, 0x9, 0x5}, @L2TP_ATTR_PEER_CONN_ID={0x8, 0xa, 0x9}, @L2TP_ATTR_IP6_SADDR={0x14, 0x1f, @loopback}, @L2TP_ATTR_IP6_DADDR={0x14, 0x20, @private0}]}, 0x5c}, 0x1, 0x0, 0xfe80, 0x44000}, 0x90)

4.112118927s ago: executing program 3 (id=325):
r0 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x468401, 0x0) (async)
write$auto(0xffffffffffffffff, &(0x7f0000000000)='-\x00', 0xfdef) (async)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) (async)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/mnt\x00')
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async)
r2 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$auto_VHOST_SET_OWNER(r2, 0xaf01, 0x5) (async)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, r1, 0x28000) (async)
ioctl$auto(r0, 0x8, r0)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
fstatfs$auto(0x3, 0x0) (async)
ioctl$auto(r3, 0x4b67, 0x1)

3.810930635s ago: executing program 3 (id=326):
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xca481, 0x0)
setsockopt$auto(0x3, 0x81, 0x1, 0x0, 0x83)
r0 = open(&(0x7f0000000140)='./file0\x00', 0x220c0, 0x4)
ioctl$auto_SNAPSHOT_ALLOC_SWAP_PAGE(r0, 0x80083314, 0x0)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x1892, 0x0, 0x2, 0x0, 0xb, 0xa505}, 0x800}, 0x7, 0x4008)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x101000, 0x0)
mmap$auto(0x0, 0x2020009, 0x2, 0xf8, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
memfd_create$auto(0x0, 0xe)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
write$auto(r1, &(0x7f0000000000)='//\xf2\x00', 0x80000000)
mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0)
r2 = socket(0xa, 0x801, 0x84)
getsockopt$auto(r2, 0x84, 0x8, 0x0, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000100)='%\x00', 0x38f)
socket(0x9, 0x80000, 0x6)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x12d280, 0x0)
prctl$auto_PR_TIMER_CREATE_RESTORE_IDS_GET(0x9, 0x2, 0x0, 0x9, 0x10001)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14f602, 0x0)
socket(0xa, 0x3, 0x3a)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
madvise$auto(0x0, 0x454, 0x9)
syz_clone3(&(0x7f0000000300)={0x12a004080, 0x0, 0x0, 0x0, {0x3b}, 0x0, 0x0, 0x0, &(0x7f00000002c0)=[0x0], 0x1}, 0x58)
read$auto_hsr_node_table_fops_(r0, &(0x7f0000000380)=""/222, 0xde)

3.042003965s ago: executing program 2 (id=328):
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x8000001, 0x4, 0x9, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
openat$auto_proc_projid_map_operations_base(0xffffffffffffff9c, 0x0, 0x981082, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/net/rose7/queues/rx-0/rps_cpus\x00', 0x32bcc2, 0x0)
r0 = socket(0x10, 0x3, 0x6)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r1 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, 0x0, 0x20201, 0x0)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001900)=ANY=[], 0xec}, 0x1, 0x0, 0x0, 0x40000}, 0x2404c810)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/virtual/block/loop10/queue/logical_block_size\x00', 0x509000, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000280)=""/94, 0x5e)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x40009, 0xdf, 0x1f, 0x7, 0x28000)
r3 = socket(0x2, 0x2, 0x88)
setsockopt$auto(r3, 0x8, 0x20, 0x0, 0x4)
socketpair$auto(0x1e, 0x5, 0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x155)
mmap$auto(0x0, 0x400, 0x4, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x8000}, 0x4000804)
mmap$auto(0x0, 0x2020009, 0xaa, 0xeb1, 0xffffffffffffffff, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x9, 0x21e9, 0x7ff, 0x6, 0x2, 0xb, 0x2e, 0x0, 0x3}, 0x6f4)
bpf$auto(0x1, &(0x7f00000001c0)=@raw_tracepoint={0x800000000000005, r1, 0x0, 0x3}, 0xf)
bpf$auto(0x3, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xc)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x44, 0x80000000fffffff9, 0xfbc, 0x0, 0x0, 0x0, 0x6, 0x6, 0x7, 0x5, 0x7fffffff, 0x0, 0xffffffff80000000, 0x5, 0x61, 0x9})
socket$nl_generic(0x10, 0x3, 0x10)

2.686843687s ago: executing program 2 (id=329):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
rt_sigprocmask$auto(0x0, &(0x7f0000000000)={0xfffffffffffffe01}, 0x0, 0x8)
r0 = gettid()
r1 = getpid()
rt_tgsigqueueinfo$auto(r1, r0, 0x21, &(0x7f0000000600)={@_si_pad})
r2 = open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r4, &(0x7f0000000580)={0x0, 0x2120, &(0x7f0000000540)={&(0x7f0000000400)={0x14, r3, 0x1, 0x70bd2d, 0x25dfdbfc}, 0x14}, 0x1, 0x68, 0x0, 0x4000000}, 0x0)
sendmsg$auto_ETHTOOL_MSG_PLCA_SET_CFG(r4, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x34, 0x0, 0x1, 0x70bd26, 0x25dfdbfc, {}, [@ETHTOOL_A_PLCA_BURST_CNT={0x8, 0x8, 0x8}, @ETHTOOL_A_PLCA_TO_TMR={0x8, 0x7, 0x9}, @ETHTOOL_A_PLCA_NODE_ID={0x8, 0x6, 0x6}, @ETHTOOL_A_PLCA_NODE_ID={0x8, 0x6, 0x6}]}, 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x8000)
read$auto(0xc8, 0x0, 0x0)
ioctl$auto_TUNSETOWNER(r2, 0x400454cc, &(0x7f00000000c0)=0x8)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sg0\x00', 0x8001, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xa083, 0x0)
ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r6)
ioctl$auto_KVM_CREATE_VM(r5, 0x4048aecb, 0x0)

2.552669065s ago: executing program 1 (id=330):
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/bus/spi/drivers_autoprobe\x00', 0xca481, 0x0)
write$auto(r0, &(0x7f00000000c0)='\x14\xf4\xb6\xc6\x97\xdb\x18B\f\xef\x1dQZ\xa66\xe7\x06\\\xe0)+\x86\xa7\x9bv\xe1\x18\xf5\x83\b\x11\x19\xdd\x1c', 0x8)
setsockopt$auto(0x3, 0x81, 0x1, 0x0, 0x83)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x8, 0x1ff, 0x7c9, 0x25, 0x4909b6f5, 0x1ffde, 0x7, 0x3, 0x20000009, 0xa, 0x3, 0x4, 0x1, 0xb4, 0x9, 0x8, 0x10003, 0x80, 0x3, 0x0, 0xa, 0x22000, 0x200, 0xffffff28, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffd, 0x0, 0xffff, 0x10, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0xfffffffffffffffe]}, 0x1fe, 0x9)
r1 = open(&(0x7f0000000140)='./file0\x00', 0x220c0, 0x4)
ioctl$auto_SNAPSHOT_ALLOC_SWAP_PAGE(r1, 0x80083314, &(0x7f0000000040)=0xce)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000380)=ANY=[@ANYRESHEX=r0], 0x1ac}, 0x1, 0x0, 0x0, 0xc0}, 0x20040001)
mmap$auto(0x0, 0xe983, 0xdb, 0xeb1, 0x401, 0x8000)
r2 = openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000040), 0x481, 0x0)
pwrite64$auto(r2, 0x0, 0x400000, 0xc)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
r3 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r3, &(0x7f0000000200)={{0x0, 0x1892, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f0000000140), 0xb, 0xa505}, 0x800}, 0x7, 0x4008)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/netfilter/nfnetlink_queue\x00', 0x101000, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/block/nbd6/queue/iosched/writes_starved\x00', 0xa001, 0x0)
write$auto(r4, &(0x7f0000000100)='%\x00', 0x38f)
socket(0x10, 0x2, 0x0)
socketpair$auto(0x0, 0x1, 0x8000000000000000, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x12d280, 0x0)
r5 = clone$auto(0x7fff, 0x200, 0x0, 0x0, 0xf)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
prctl$auto_PR_TIMER_CREATE_RESTORE_IDS_GET(0x9, 0x2, r5, 0x9, 0x10001)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x14f602, 0x0)
r6 = socket(0x1, 0x3, 0x3a)
getsockopt$auto(r6, 0x29, 0xd1, 0x0, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
madvise$auto(0x0, 0x454, 0x9)

1.876669241s ago: executing program 2 (id=331):
r0 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100) (async)
rseq$auto(&(0x7f0000000080)={0x9, 0x8, 0xfffffffffffffffc, 0x7, 0xffffffff, 0x2, "24229ba6405fe4fc8b79b54d7e17"}, 0x7ffd, 0xfffffff4, 0x6)
msync$auto(0x1fffeffd, 0x2, 0x400000004)
open(0x0, 0xeee00, 0x31)
mmap$auto(0x0, 0x5, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
mmap$auto(0x2, 0x82020009, 0x1, 0x80eb2, r0, 0x8000) (async)
open(0x0, 0x1e1401, 0xe5) (async, rerun: 32)
r1 = gettid() (rerun: 32)
rt_sigtimedwait$auto(&(0x7f0000000000)={0x86e}, 0x0, 0x0, 0x8) (async, rerun: 64)
tkill$auto(r1, 0x7) (async, rerun: 64)
write$auto(0x3, 0x0, 0x100082)
open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100) (async)
mmap$auto(0x0, 0xc, 0xbc5, 0x13, 0x3, 0x8000)
lseek$auto(0x3, 0x7fffffffffffffff, 0x1) (async)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) (async)
clone$auto(0x8001, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x6)
writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1) (async)
r2 = socket(0xa, 0x2, 0x73)
getsockname$auto(r2, 0x0, &(0x7f0000000280)=0xaea)
mlockall$auto(0x7) (async)
mmap$auto(0x0, 0x200004, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
memfd_create$auto(&(0x7f0000000000)='A\x00\x00\x00\x00\xef\x97\x8aY\x00\x00\xd2\x8c\xb05\x03\\\xb2\xbf247{\xde\f\x00\x00\v\x00E\xdb\x81\xd9\xd8\xe640\xc6\xa4Sr\x82\xcc\"K\xe1IIT\x00\x00\x00', 0xe)
rseq$auto(0x0, 0x8000, 0x0, 0x6) (async)
finit_module$auto(0xffffffffffffffff, 0xfffffffffffffffe, 0x5) (async)
mmap$auto(0x2, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
rseq$auto(0x0, 0x8000, 0x0, 0x6)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2b, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a)

1.451953459s ago: executing program 0 (id=332):
r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
r1 = memfd_secret$auto(0x0)
mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, r1, 0x0)
process_mrelease$auto(r1, 0x4)
ioctl$auto_SNDRV_CTL_IOCTL_PVERSION(r1, 0x80045500, &(0x7f00000001c0)=0x9)
write$auto(r0, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
clock_gettime$auto(0x1, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(0xffffffffffffffff, 0xc0045516, &(0x7f00000001c0)=0x6)
r2 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$auto_PPPIOCSMRU(r2, 0xc004743e, 0x0)
ioctl$auto_PPPIOCSPASS(r2, 0x40107447, &(0x7f00000000c0)={0x9, &(0x7f0000000180)={0x15, 0x3, 0x1, @raw=0xaa}})
r3 = socket(0x2, 0x5, 0x0)
epoll_pwait2$auto(r0, &(0x7f0000000100)={0x2, 0xffffffff}, 0x2, &(0x7f0000000140)={0x9, 0x1ff}, &(0x7f0000000180)={0xffffffffffffff80}, 0x8)
shmctl$auto_SHM_STAT_ANY(0x8000, 0xf, &(0x7f0000000380)={{0x9, 0xee00, 0x0, 0x80000001, 0x7ff, 0x4, 0x400}, 0x7, 0x0, 0x100, 0x8, @inferred=0xffffffffffffffff, @inferred=0xffffffffffffffff, 0x5, 0x0, 0x0, &(0x7f00000002c0)})
sendmmsg$auto(r3, &(0x7f0000000080)={{&(0x7f0000000040), 0x1c, &(0x7f00000000c0)={0x0, 0x1a004}, 0x7, 0x0, 0x0, 0xb}, 0xfff}, 0x5, 0x8)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000080), r3)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000240)='/proc/fs/lockd/nlm_end_grace\x00', 0x8282, 0x0)
lseek$auto(0x3, 0x2, 0x4)
setresuid$auto(0x2, 0x7, 0x8080)

1.451501007s ago: executing program 2 (id=333):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x4000000000eb1, 0x6, 0x8000)
mmap$auto(0x0, 0x2020007, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0x900, 0x0)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
preadv$auto(0x40000000000003, 0x0, 0x6, 0x8, 0x5)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/loop0\x00', 0x60742, 0x0)
lseek$auto(0x3, 0x0, 0x1)
munmap$auto(0x8000, 0xffffffff)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/firmware/acpi/interrupts/gpe02\x00', 0x2, 0x0)
mmap$auto(0x9, 0x400009, 0x3ff, 0x9b72, r0, 0x2)
write$auto(0x1, 0x0, 0x80000000)
setrlimit$auto(0xb, 0x0)
timer_create$auto(0x0, 0x0, 0x0)

1.366059735s ago: executing program 1 (id=334):
socket(0x2, 0x1, 0x106)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000040), 0xffffffffffffffff)
bind$auto(0x3, 0x0, 0x6c)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x2, 0x8000)
io_uring_setup$auto(0x1, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x4, 0x0)
r0 = openat$auto_force_devcoredump_fops_hci_vhci(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/bluetooth/hci0/force_devcoredump\x00', 0x2, 0x0)
write$auto(r0, 0x0, 0xe)

858.037137ms ago: executing program 3 (id=335):
setdomainname$auto(&(0x7f0000000000)='\',(\x00', 0x1) (async)
setdomainname$auto(&(0x7f0000000040)='\',(\x00', 0x3)
setdomainname$auto(&(0x7f0000000080)='*$(}\x03\x00', 0x7)
setdomainname$auto(&(0x7f00000000c0)='*$(}\x03\x00', 0x9) (async)
setdomainname$auto(&(0x7f0000000100)='+\\\x00', 0x6) (async, rerun: 32)
setdomainname$auto(&(0x7f0000000140)='*$(}\x03\x00', 0x0) (async, rerun: 32)
setdomainname$auto(&(0x7f0000000180)='\',(\x00', 0xf5a) (async, rerun: 64)
setdomainname$auto(&(0x7f00000001c0)='\',(\x00', 0x5) (async, rerun: 64)
setdomainname$auto(&(0x7f0000000200)='*$(}\x03\x00', 0x5)
setdomainname$auto(&(0x7f0000000240)='*$(}\x03\x00', 0x5) (async)
setdomainname$auto(&(0x7f0000000280)='#[${&&#:{\x00', 0xe0) (async)
setdomainname$auto(&(0x7f00000002c0)='+\\\x00', 0x5) (async, rerun: 64)
setdomainname$auto(&(0x7f0000000300)='#[${&&#:{\x00', 0x5) (rerun: 64)
setdomainname$auto(&(0x7f0000000340)='\x00', 0x4)
setdomainname$auto(&(0x7f0000000380)='($[\x00', 0xac) (async)
setdomainname$auto(&(0x7f00000003c0)=',[*\x00', 0xfffffffa) (async, rerun: 32)
setdomainname$auto(&(0x7f0000000400)=',[*\x00', 0x4) (rerun: 32)
setdomainname$auto(&(0x7f0000000440)='}\x00', 0x5)
setdomainname$auto(&(0x7f0000000480)='\x00', 0x9) (async, rerun: 32)
setdomainname$auto(&(0x7f00000004c0)='%}\x00', 0x9392) (rerun: 32)
setdomainname$auto(&(0x7f0000000500)='+\\\x00', 0x1) (async)
setdomainname$auto(&(0x7f0000000540)='%}\x00', 0xfffffff3) (async)
setdomainname$auto(&(0x7f0000000580)='\x00', 0x400)
setdomainname$auto(&(0x7f00000005c0)='\x00', 0x3)
setdomainname$auto(&(0x7f0000000600)='*$(}\x03\x00', 0x7f) (async, rerun: 32)
setdomainname$auto(&(0x7f0000000640)='*$(}\x03\x00', 0xc29c) (async, rerun: 32)
setdomainname$auto(&(0x7f0000000680)='^)\x00', 0x8)
setdomainname$auto(&(0x7f00000006c0)='\x87-I!\x00', 0x9) (async)
setdomainname$auto(&(0x7f0000000700)='*$(}\x03\x00', 0x0) (async)
setdomainname$auto(&(0x7f0000000740)='\x00', 0x4)

610.836717ms ago: executing program 3 (id=336):
r0 = socket(0x2, 0x3, 0xa) (async)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) (async)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) (async, rerun: 64)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb5, 0x401, 0x300000000000) (async, rerun: 64)
prctl$auto(0x16, 0x2, 0x2, 0x4000000d, 0x100)
socket$nl_generic(0x10, 0x3, 0x10) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
openat$auto_proc_setgroups_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/setgroups\x00', 0x28001, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async, rerun: 64)
getpid() (rerun: 64)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x24040004}, 0x800) (async)
process_vm_readv$auto(0x0, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000180)="eeaf13e7cabf57dde9dc1d3d396fd020949dc562b082aa753f68f69d00bb419ba01f458e5c64fd019920dc67bf61903ca07ca971", 0xffffffff}, 0x6, 0x1)
openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000000200), 0x103001, 0x0) (async)
r1 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@hci={0x1f, 0x6, 0x2}, 0x400) (async, rerun: 32)
sendmmsg$auto(r1, &(0x7f0000000240)={{&(0x7f0000000240), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x9, 0x20000000) (async, rerun: 32)
io_uring_setup$auto(0x1, 0x0) (async)
r2 = socketpair$auto(0x1e, 0x70000001, 0x8000000000000000, 0x0) (async)
ioctl$auto_SNDRV_PCM_IOCTL_STATUS322(0xffffffffffffffff, 0x806c4120, &(0x7f0000000100)={0x0, 0x6, 0x95d7, 0x7f, 0x3, 0x1, 0x9, 0x2, 0x0, 0x7, 0xb, 0x8, 0x100, 0x2, 0x3, 0x3ff, 0x400, 0x80000000, "0c1056e3480805f935e214e44f620fa9eba8238cacc3d9e6fc45cf541e509fc2457ae4ae"})
sendmsg$auto_IEEE802154_LIST_IFACE(r0, &(0x7f00000000c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000380)={&(0x7f0000000300)=ANY=[@ANYRES64=r2], 0x24}, 0x1, 0x0, 0x0, 0x60000}, 0x2400c890) (async, rerun: 32)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) (async, rerun: 32)
syz_genetlink_get_family_id$auto_ncsi(&(0x7f0000000080), r2) (async)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/net/rose8/address\x00', 0x752502, 0x0) (async, rerun: 64)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nbd0\x00', 0xc0c00, 0x0) (rerun: 64)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)

466.469501ms ago: executing program 1 (id=337):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/ip6gre0/netdev_group\x00', 0x102, 0x0)
sendfile$auto(r0, r0, 0x0, 0xb)
io_uring_setup$auto(0x6, 0x0)
select$auto(0x3, 0x0, 0x0, 0x0, 0x0)
madvise$auto(0x0, 0x3, 0x66)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mlock$auto(0xfbe8, 0x4)
syz_clone(0x20000, 0x0, 0x0, 0x0, 0x0, 0x0)
munlock$auto(0xffff, 0x1)
madvise$auto(0x0, 0x2003f0, 0x15)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/events/vmalloc/filter\x00', 0x80, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000800), 0xffffffffffffffff)
sendmsg$auto_MACSEC_CMD_DEL_RXSA(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01002abd7000fcdbdf250800000004f0fb800410038008000100", @ANYRES32=0x0], 0x24}, 0x1, 0x500, 0x0, 0x80}, 0x20004010)

453.230216ms ago: executing program 3 (id=338):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
io_uring_setup$auto(0x6, 0x0)
select$auto(0x3, 0x0, &(0x7f0000000100)={[0x8, 0xb, 0x0, 0x9, 0xfffffffffffffffc, 0x83, 0x6, 0x2, 0x9, 0xffff, 0x4000000000000002, 0xd, 0x3, 0xfffffffffffffffe, 0x7, 0x1000000006]}, 0x0, 0x0)
syslog$auto(0x2, &(0x7f0000000000)='-#:\x00[\xda\xe2\xc3L\xd30{Q\xecvP\x93\x87\x1e\xdd\x95\x1b\x19qI\vv\xacO*X0V\x93\x85\xff\xb2\xdd\xd8\xd5Kh\xfa\xa3\xc7\x9b}\xec\x1e\xdc\x80\x1fR\xc30\x9a\xae\\\'\x14\x98\x98\xc3iDv\x97\xdfTMt\xe5?\xd0\xcc\xb8\xfa\a\x7f\x7f\x00\x00\x00\x00\x00\x00\x00n_\xb1\x1c\x7f\xb0y\xec\xe2\xcc\x1a/\xfa{d\xe4BN\x9c\xb9\x87.\xfe\xe7&1j\xe6]\xc3\x9anE6\x81\xe4\xec\xfa\xefE\xf7\x17h\xf4pumR\xd55Dd(\x0f(b\x1aD\xf4\x03\xc3\\\xdf\x8f\xa8\x82\xab\x102\xd1\xaf\xcaT\x86\x171\x11Q4\x94\x9d\xf5\x9c\xe3\xaa\xf3\xd26i\xf9\xb2\xd9T\xc9\xfd\xba\x91^\x19\x95\xde\xbc \xa8\x98\xc3\xed\xe9,{\xd4\xa1\xe4p\xcf\b\f\xb4\xbe_\xf2\xbe\xef\v\xf1d\xdd\x0e\xfc\xc3\xeaqt\x94\xe7\xce\xf1\xc5\x94~\xf6Cx\x0e\x98\xc7gE>*\x9c%\xa0\\\x14\t\tv.\x1c\x1a\xf1\xba\xc0>\xf4Hc\xc3\xfa\x033\x8f\xb9(\n/\xcdo\xc2', 0xcf) (async)
syslog$auto(0x2, &(0x7f0000000000)='-#:\x00[\xda\xe2\xc3L\xd30{Q\xecvP\x93\x87\x1e\xdd\x95\x1b\x19qI\vv\xacO*X0V\x93\x85\xff\xb2\xdd\xd8\xd5Kh\xfa\xa3\xc7\x9b}\xec\x1e\xdc\x80\x1fR\xc30\x9a\xae\\\'\x14\x98\x98\xc3iDv\x97\xdfTMt\xe5?\xd0\xcc\xb8\xfa\a\x7f\x7f\x00\x00\x00\x00\x00\x00\x00n_\xb1\x1c\x7f\xb0y\xec\xe2\xcc\x1a/\xfa{d\xe4BN\x9c\xb9\x87.\xfe\xe7&1j\xe6]\xc3\x9anE6\x81\xe4\xec\xfa\xefE\xf7\x17h\xf4pumR\xd55Dd(\x0f(b\x1aD\xf4\x03\xc3\\\xdf\x8f\xa8\x82\xab\x102\xd1\xaf\xcaT\x86\x171\x11Q4\x94\x9d\xf5\x9c\xe3\xaa\xf3\xd26i\xf9\xb2\xd9T\xc9\xfd\xba\x91^\x19\x95\xde\xbc \xa8\x98\xc3\xed\xe9,{\xd4\xa1\xe4p\xcf\b\f\xb4\xbe_\xf2\xbe\xef\v\xf1d\xdd\x0e\xfc\xc3\xeaqt\x94\xe7\xce\xf1\xc5\x94~\xf6Cx\x0e\x98\xc7gE>*\x9c%\xa0\\\x14\t\tv.\x1c\x1a\xf1\xba\xc0>\xf4Hc\xc3\xfa\x033\x8f\xb9(\n/\xcdo\xc2', 0xcf)
clone$auto(0x1002, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x9) (async)
clone$auto(0x1002, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x9)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x3, 0x66) (async)
madvise$auto(0x0, 0x3, 0x66)
madvise$auto(0x0, 0x2003f0, 0x15)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) (async)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
madvise$auto(0x6, 0x4, 0xfffffff7) (async)
madvise$auto(0x6, 0x4, 0xfffffff7)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000240), 0x40, 0x0)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mlockall$auto(0x800000000000005)
r1 = mq_open$auto(&(0x7f00000000c0)='\x12\xe6D\b\x9e\x00\x80\x8d\f\xb9w-\xbd!\x9eb\xed\xfb\x0f\xe5\x9dZ\xc2\xd1\x01wBV\x91\x8f_\xc0.\x84\xfe\x84\xd1se\x01\x06\x00\xb3\x13_Y&\xa9\x88\xe4\xa2\xb0V\x85\x92<\xb6\xdcT \\\xf2\v\xb1\xe2\xd8\xfa\xd8V\xe5\x00\xfa\xe9!\xc5<\xce\x18=\x06\xdagq\xb5\r\t\xb2\xde\x99\xd50\xbb\x192\x1c4\x86\xc0\xc1-\xd5\x10\xc3\xfc*[8\x89h\xc5\xba\xff\xc8u5<y\xa5\x97\x13\xef\xc4g\xc3\xa4&\x81I6\v\xcc\x00\x00', 0x62, 0xfffc, 0x0)
mq_timedsend$auto(r1, 0x0, 0x80, 0x9, 0x0) (async)
mq_timedsend$auto(r1, 0x0, 0x80, 0x9, 0x0)
mq_timedreceive$auto(r1, &(0x7f00000004c0)=' \x00;\xcc\xc7\x0f\xce\x8b|\xc0+I?\x8d+c\x82\x18\xec\xc5S\x19\xd7Vd\xecT\xf8\xaby\x82e\xb7\x1dz\xf5:\x80\x00\x00\x00\xf1\thR\x01N\xe6J\xfb\xc1\xd8J\xd6\xc0\xd2&\xa4\xdc\xe7}\xd5\xbb\xa9\x19\xaev9\xadP\x17Wh$\xb4\xfb\x1a:\xe8%\r\x11\xf8\xb7', 0x4dcd, &(0x7f0000000180)=0x7, &(0x7f0000000080)={0x4, 0xd})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000002ec0), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000002f80)={&(0x7f0000000080)={0x34, r3, 0x1, 0x70bd29, 0x25dfdbff, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_LINKMODES_LANES={0x8, 0x9, 0x3}]}, 0x34}, 0x1, 0x0, 0x0, 0x11}, 0x24000802)
openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/events/vmalloc/filter\x00', 0x80, 0x0)
openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/set_event_notrace_pid\x00', 0x141f02, 0x0)
madvise$auto(0x0, 0x200007, 0x19)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_NLBL_CALIPSO_C_LIST(r1, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x2c, 0x0, 0x10, 0x70bd2c, 0x25dfdbff, {}, [@NLBL_CALIPSO_A_MTYPE={0x8, 0x2, 0x5}, @NLBL_CALIPSO_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x3895109967bb3fe0}, 0x50) (async)
sendmsg$auto_NLBL_CALIPSO_C_LIST(r1, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x2c, 0x0, 0x10, 0x70bd2c, 0x25dfdbff, {}, [@NLBL_CALIPSO_A_MTYPE={0x8, 0x2, 0x5}, @NLBL_CALIPSO_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x3895109967bb3fe0}, 0x50)

311.619839ms ago: executing program 0 (id=339):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x3, 0x6)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r3=>0x0})
sendmsg$auto_NL80211_CMD_GET_INTERFACE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000700)={0x1c, r1, 0xb01, 0x70bd27, 0x25dfdbfc, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r3}]}, 0x1c}, 0x1, 0x0, 0x700000000000000, 0x4000001}, 0x4000084)

1.195968ms ago: executing program 2 (id=340):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$auto(0x3, 0x4020ae46, 0x38)
r1 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
ioctl$auto_FBIOPUT_VSCREENINFO(r1, 0x4601, 0x0)
mmap$auto(0x0, 0x40, 0x2, 0xeb1, r1, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x6, 0x0)
r2 = socket(0x11, 0x3, 0x9)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0xceb)
mremap$auto(0x0, 0x4, 0x4, 0x7, 0x100000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket(0x11, 0x80003, 0x300)
io_uring_setup$auto(0x6, 0x0)
setsockopt$auto(r3, 0x107, 0x14, 0x0, 0xc)
sendmmsg$auto(0x3, 0x0, 0x7, 0x0)
bpf$auto(0x0, &(0x7f0000000000)=@iter_create={0xffffffffffffffff, 0x8}, 0xa3)
sendmmsg$auto(r2, &(0x7f0000000400)={{&(0x7f0000000000), 0x5aa, &(0x7f0000000100)={0x0, 0x49}, 0x1, 0x0, 0x5, 0x3}, 0x5}, 0x2, 0x100)
write$auto(0x1, 0x0, 0x80000000)
madvise$auto(0x0, 0x2003f0, 0x15)
r4 = openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/dri/vkms/internal_clients\x00', 0x101402, 0x0)
read$auto_drm_debugfs_entry_fops_drm_debugfs(r4, &(0x7f0000000240)=""/194, 0xc2)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xfffffffffffefffd, 0x17)
madvise$auto(0x0, 0x200007, 0x19)

0s ago: executing program 0 (id=348):
sendmsg$auto_SMC_NETLINK_REMOVE_UEID(0xffffffffffffffff, 0x0, 0x20000000)
r0 = socket(0x2, 0x3, 0xa)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
r1 = openat$auto__dev_ioctl_fops_dev_ioctl(0xffffffffffffff9c, &(0x7f00000000c0), 0x400840, 0x0)
sendfile$auto(r0, r1, 0x0, 0x7fffeffe)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb5, 0x401, 0x300000000000)
prctl$auto(0x16, 0x2, 0x2, 0x4000000d, 0x100)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/adsp1\x00', 0x1, 0x0)
ioctl$auto_SNDCTL_DSP_GETODELAY(r2, 0x80045017, &(0x7f0000000c00))
io_uring_setup$auto(0x6, 0x0)
openat$auto_split_huge_pages_fops_huge_memory(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x40000008000)
sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc000}, 0x2404c800)
kexec_load$auto(0x5, 0x2, &(0x7f0000000040)={@kbuf=0x0, 0x800c000, 0x9, 0x800c000}, 0x4)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x2000, 0x0)
ioctl$auto_EVIOCGMASK(r3, 0x80104592, &(0x7f0000000000)={0x2000, 0x800004, 0x105})
ioctl$auto(0x3, 0x80004509, 0x10000000000402)
ioctl$auto(0x3, 0x800005411, 0x38)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.0.135' (ED25519) to the list of known hosts.
[   89.022058][ T5838] cgroup: Unknown subsys name 'net'
[   89.197662][ T5838] cgroup: Unknown subsys name 'cpuset'
[   89.206877][ T5838] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   90.948330][ T5838] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   93.239592][ T5851] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   93.262610][ T5861] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   93.270422][ T5861] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   93.278716][ T5862] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   93.287542][ T5862] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   93.295665][ T5862] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   93.304374][ T5862] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   93.322775][ T5862] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   93.328008][ T5861] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   93.339304][ T5861] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   93.342987][ T5862] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   93.347571][ T5861] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   93.362843][ T5862] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   93.362975][ T5861] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   93.378088][ T5861] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   93.396226][ T5863] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   93.409811][ T5863] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   93.418074][ T5863] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   93.435896][ T5863] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   93.453572][ T5863] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   93.897534][ T5852] chnl_net:caif_netlink_parms(): no params data found
[   94.100685][ T5848] chnl_net:caif_netlink_parms(): no params data found
[   94.114139][ T5853] chnl_net:caif_netlink_parms(): no params data found
[   94.172915][ T5852] bridge0: port 1(bridge_slave_0) entered blocking state
[   94.180666][ T5852] bridge0: port 1(bridge_slave_0) entered disabled state
[   94.188589][ T5852] bridge_slave_0: entered allmulticast mode
[   94.197399][ T5852] bridge_slave_0: entered promiscuous mode
[   94.216095][ T5859] chnl_net:caif_netlink_parms(): no params data found
[   94.264238][ T5852] bridge0: port 2(bridge_slave_1) entered blocking state
[   94.271495][ T5852] bridge0: port 2(bridge_slave_1) entered disabled state
[   94.278665][ T5852] bridge_slave_1: entered allmulticast mode
[   94.286857][ T5852] bridge_slave_1: entered promiscuous mode
[   94.415948][ T5852] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   94.428778][ T5852] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   94.489343][ T5848] bridge0: port 1(bridge_slave_0) entered blocking state
[   94.497500][ T5848] bridge0: port 1(bridge_slave_0) entered disabled state
[   94.504791][ T5848] bridge_slave_0: entered allmulticast mode
[   94.512810][ T5848] bridge_slave_0: entered promiscuous mode
[   94.520780][ T5853] bridge0: port 1(bridge_slave_0) entered blocking state
[   94.528358][ T5853] bridge0: port 1(bridge_slave_0) entered disabled state
[   94.536007][ T5853] bridge_slave_0: entered allmulticast mode
[   94.543558][ T5853] bridge_slave_0: entered promiscuous mode
[   94.552745][ T5853] bridge0: port 2(bridge_slave_1) entered blocking state
[   94.559902][ T5853] bridge0: port 2(bridge_slave_1) entered disabled state
[   94.567366][ T5853] bridge_slave_1: entered allmulticast mode
[   94.575095][ T5853] bridge_slave_1: entered promiscuous mode
[   94.615455][ T5848] bridge0: port 2(bridge_slave_1) entered blocking state
[   94.622646][ T5848] bridge0: port 2(bridge_slave_1) entered disabled state
[   94.629826][ T5848] bridge_slave_1: entered allmulticast mode
[   94.637824][ T5848] bridge_slave_1: entered promiscuous mode
[   94.673539][ T5852] team0: Port device team_slave_0 added
[   94.720822][ T5852] team0: Port device team_slave_1 added
[   94.743109][ T5859] bridge0: port 1(bridge_slave_0) entered blocking state
[   94.750362][ T5859] bridge0: port 1(bridge_slave_0) entered disabled state
[   94.757998][ T5859] bridge_slave_0: entered allmulticast mode
[   94.766057][ T5859] bridge_slave_0: entered promiscuous mode
[   94.776365][ T5848] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   94.788995][ T5848] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   94.800852][ T5853] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   94.813619][ T5853] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   94.835757][ T5859] bridge0: port 2(bridge_slave_1) entered blocking state
[   94.843117][ T5859] bridge0: port 2(bridge_slave_1) entered disabled state
[   94.850264][ T5859] bridge_slave_1: entered allmulticast mode
[   94.858472][ T5859] bridge_slave_1: entered promiscuous mode
[   94.892163][ T5852] batman_adv: batadv0: Adding interface: batadv_slave_0
[   94.899188][ T5852] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   94.925512][ T5852] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   94.981931][ T5852] batman_adv: batadv0: Adding interface: batadv_slave_1
[   94.988923][ T5852] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   95.015367][ T5852] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   95.042662][ T5848] team0: Port device team_slave_0 added
[   95.053131][ T5853] team0: Port device team_slave_0 added
[   95.069285][ T5859] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   95.084241][ T5859] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   95.095847][ T5848] team0: Port device team_slave_1 added
[   95.104129][ T5853] team0: Port device team_slave_1 added
[   95.203749][ T5848] batman_adv: batadv0: Adding interface: batadv_slave_0
[   95.210825][ T5848] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   95.238117][ T5848] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   95.250228][ T5853] batman_adv: batadv0: Adding interface: batadv_slave_0
[   95.257799][ T5853] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   95.283779][ T5853] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   95.298702][ T5859] team0: Port device team_slave_0 added
[   95.307935][ T5859] team0: Port device team_slave_1 added
[   95.326981][ T5848] batman_adv: batadv0: Adding interface: batadv_slave_1
[   95.334026][ T5848] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   95.360173][ T5848] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   95.378414][ T5853] batman_adv: batadv0: Adding interface: batadv_slave_1
[   95.385457][ T5853] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   95.411821][ T5853] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   95.440496][ T5852] hsr_slave_0: entered promiscuous mode
[   95.447682][ T5852] hsr_slave_1: entered promiscuous mode
[   95.452594][ T5858] Bluetooth: hci2: command tx timeout
[   95.458828][ T5851] Bluetooth: hci0: command tx timeout
[   95.464523][ T5863] Bluetooth: hci1: command tx timeout
[   95.508918][ T5859] batman_adv: batadv0: Adding interface: batadv_slave_0
[   95.516087][ T5859] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   95.542137][ T5851] Bluetooth: hci3: command tx timeout
[   95.547703][ T5859] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   95.598002][ T5859] batman_adv: batadv0: Adding interface: batadv_slave_1
[   95.605037][ T5859] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   95.631169][ T5859] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   95.691626][ T5853] hsr_slave_0: entered promiscuous mode
[   95.698117][ T5853] hsr_slave_1: entered promiscuous mode
[   95.705461][ T5853] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   95.713333][ T5853] Cannot create hsr debugfs directory
[   95.725672][ T5848] hsr_slave_0: entered promiscuous mode
[   95.732224][ T5848] hsr_slave_1: entered promiscuous mode
[   95.738316][ T5848] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   95.746228][ T5848] Cannot create hsr debugfs directory
[   95.794408][ T5859] hsr_slave_0: entered promiscuous mode
[   95.800930][ T5859] hsr_slave_1: entered promiscuous mode
[   95.807319][ T5859] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   95.815384][ T5859] Cannot create hsr debugfs directory
[   96.251867][ T5852] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   96.266677][ T5852] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   96.278318][ T5852] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   96.297991][ T5852] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   96.348158][ T5848] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   96.372427][ T5848] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   96.385120][ T5848] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   96.404614][ T5848] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   96.473254][ T5859] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   96.497225][ T5859] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   96.509813][ T5859] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   96.521085][ T5859] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   96.632157][ T5853] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   96.643888][ T5853] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   96.656724][ T5853] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   96.668894][ T5853] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   96.773641][ T5852] 8021q: adding VLAN 0 to HW filter on device bond0
[   96.862574][ T5852] 8021q: adding VLAN 0 to HW filter on device team0
[   96.886319][ T5859] 8021q: adding VLAN 0 to HW filter on device bond0
[   96.905089][ T3517] bridge0: port 1(bridge_slave_0) entered blocking state
[   96.912474][ T3517] bridge0: port 1(bridge_slave_0) entered forwarding state
[   96.928228][ T5848] 8021q: adding VLAN 0 to HW filter on device bond0
[   96.954839][ T3517] bridge0: port 2(bridge_slave_1) entered blocking state
[   96.962129][ T3517] bridge0: port 2(bridge_slave_1) entered forwarding state
[   96.974058][  T979] cfg80211: failed to load regulatory.db
[   97.024330][ T5859] 8021q: adding VLAN 0 to HW filter on device team0
[   97.044365][ T5848] 8021q: adding VLAN 0 to HW filter on device team0
[   97.066488][ T1150] bridge0: port 1(bridge_slave_0) entered blocking state
[   97.073694][ T1150] bridge0: port 1(bridge_slave_0) entered forwarding state
[   97.085824][ T1150] bridge0: port 1(bridge_slave_0) entered blocking state
[   97.093014][ T1150] bridge0: port 1(bridge_slave_0) entered forwarding state
[   97.124716][ T1325] bridge0: port 2(bridge_slave_1) entered blocking state
[   97.131966][ T1325] bridge0: port 2(bridge_slave_1) entered forwarding state
[   97.155806][ T5853] 8021q: adding VLAN 0 to HW filter on device bond0
[   97.193220][ T1150] bridge0: port 2(bridge_slave_1) entered blocking state
[   97.200405][ T1150] bridge0: port 2(bridge_slave_1) entered forwarding state
[   97.268103][ T5853] 8021q: adding VLAN 0 to HW filter on device team0
[   97.300624][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[   97.307864][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[   97.344232][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[   97.351471][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[   97.535654][ T5851] Bluetooth: hci0: command tx timeout
[   97.541663][ T5858] Bluetooth: hci2: command tx timeout
[   97.545315][ T5863] Bluetooth: hci1: command tx timeout
[   97.616053][ T5863] Bluetooth: hci3: command tx timeout
[   97.863865][ T5852] 8021q: adding VLAN 0 to HW filter on device batadv0
[   98.015162][ T5852] veth0_vlan: entered promiscuous mode
[   98.034916][ T5848] 8021q: adding VLAN 0 to HW filter on device batadv0
[   98.058754][ T5852] veth1_vlan: entered promiscuous mode
[   98.123610][ T5859] 8021q: adding VLAN 0 to HW filter on device batadv0
[   98.148225][ T5853] 8021q: adding VLAN 0 to HW filter on device batadv0
[   98.164288][ T5852] veth0_macvtap: entered promiscuous mode
[   98.178009][ T5852] veth1_macvtap: entered promiscuous mode
[   98.235265][ T5852] batman_adv: batadv0: Interface activated: batadv_slave_0
[   98.245836][ T5848] veth0_vlan: entered promiscuous mode
[   98.270999][ T5852] batman_adv: batadv0: Interface activated: batadv_slave_1
[   98.294705][ T5852] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   98.304979][ T5852] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   98.314626][ T5852] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   98.323458][ T5852] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   98.338105][ T5848] veth1_vlan: entered promiscuous mode
[   98.367010][ T5859] veth0_vlan: entered promiscuous mode
[   98.403195][ T5859] veth1_vlan: entered promiscuous mode
[   98.427320][ T5853] veth0_vlan: entered promiscuous mode
[   98.474154][ T5853] veth1_vlan: entered promiscuous mode
[   98.530807][ T5848] veth0_macvtap: entered promiscuous mode
[   98.587705][   T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   98.587832][ T5848] veth1_macvtap: entered promiscuous mode
[   98.601185][   T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   98.634161][ T5859] veth0_macvtap: entered promiscuous mode
[   98.670649][ T5859] veth1_macvtap: entered promiscuous mode
[   98.686470][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   98.689478][ T5853] veth0_macvtap: entered promiscuous mode
[   98.697393][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   98.718392][ T5848] batman_adv: batadv0: Interface activated: batadv_slave_0
[   98.736210][ T5848] batman_adv: batadv0: Interface activated: batadv_slave_1
[   98.750573][ T5859] batman_adv: batadv0: Interface activated: batadv_slave_0
[   98.760165][ T5853] veth1_macvtap: entered promiscuous mode
[   98.783595][ T5848] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   98.794913][ T5848] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   98.804923][ T5848] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   98.816234][ T5848] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   98.846636][ T5859] batman_adv: batadv0: Interface activated: batadv_slave_1
[   98.863824][ T5859] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   98.869950][ T5852] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   98.872763][ T5859] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   98.898167][ T5859] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   98.907247][ T5859] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   98.970704][ T5853] batman_adv: batadv0: Interface activated: batadv_slave_0
[   99.025785][ T5853] batman_adv: batadv0: Interface activated: batadv_slave_1
[   99.116752][ T5853] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   99.132561][ T5853] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   99.143511][ T5853] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   99.154578][ T5853] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   99.237577][ T1150] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   99.246487][ T1150] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   99.269167][ T5945] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   99.345745][ T1150] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   99.372746][ T1150] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   99.421370][ T3019] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   99.434487][ T3019] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   99.496449][ T1325] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   99.523116][ T1325] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   99.612884][ T5863] Bluetooth: hci1: command tx timeout
[   99.618502][ T5863] Bluetooth: hci0: command tx timeout
[   99.621763][ T5851] Bluetooth: hci2: command tx timeout
[   99.656535][ T3019] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   99.691341][ T5858] Bluetooth: hci3: command tx timeout
[   99.700629][ T3019] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   99.755709][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   99.770680][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   99.988524][ T5953] FAULT_INJECTION: forcing a failure.
[   99.988524][ T5953] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  100.005626][ T5953] CPU: 1 UID: 0 PID: 5953 Comm: syz.3.6 Not tainted 6.16.0-rc4-syzkaller-00123-g4c06e63b9203 #0 PREEMPT(full) 
[  100.005671][ T5953] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  100.005694][ T5953] Call Trace:
[  100.005704][ T5953]  <TASK>
[  100.005721][ T5953]  dump_stack_lvl+0x16c/0x1f0
[  100.005781][ T5953]  should_fail_ex+0x512/0x640
[  100.005836][ T5953]  should_fail_alloc_page+0xe7/0x130
[  100.005873][ T5953]  prepare_alloc_pages+0x3c2/0x610
[  100.005913][ T5953]  ? rcu_is_watching+0x12/0xc0
[  100.005952][ T5953]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  100.006011][ T5953]  ? rcu_is_watching+0x12/0xc0
[  100.006045][ T5953]  ? trace_mm_page_alloc+0x11f/0x1a0
[  100.006085][ T5953]  ? __alloc_frozen_pages_noprof+0x294/0x23f0
[  100.006134][ T5953]  ? lockdep_hardirqs_on+0x7c/0x110
[  100.006180][ T5953]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  100.006227][ T5953]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  100.006301][ T5953]  ? alloc_vmap_area+0x645/0x29c0
[  100.006341][ T5953]  ? __vmalloc_node_range_noprof+0x271/0x14b0
[  100.006400][ T5953]  ? __do_sys_listmount+0x1c2/0xec0
[  100.006441][ T5953]  ? do_syscall_64+0xcd/0x490
[  100.006489][ T5953]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.006540][ T5953]  alloc_pages_bulk_noprof+0x71c/0x1410
[  100.006608][ T5953]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  100.006663][ T5953]  ? policy_nodemask+0xea/0x4e0
[  100.006701][ T5953]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[  100.006788][ T5953]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  100.006840][ T5953]  kasan_populate_vmalloc+0xf1/0x1f0
[  100.006916][ T5953]  alloc_vmap_area+0x959/0x29c0
[  100.006983][ T5953]  ? __pfx_alloc_vmap_area+0x10/0x10
[  100.007031][ T5953]  __get_vm_area_node+0x1ca/0x330
[  100.007080][ T5953]  __vmalloc_node_range_noprof+0x271/0x14b0
[  100.007125][ T5953]  ? __do_sys_listmount+0x1c2/0xec0
[  100.007177][ T5953]  ? __lock_acquire+0xb8a/0x1c90
[  100.007220][ T5953]  ? __do_sys_listmount+0x1c2/0xec0
[  100.007272][ T5953]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  100.007317][ T5953]  ? __alloc_pages_noprof+0xb/0x1b0
[  100.007375][ T5953]  ? ___kmalloc_large_node+0x84/0x1e0
[  100.007433][ T5953]  ? find_held_lock+0x2b/0x80
[  100.007476][ T5953]  __kvmalloc_node_noprof+0x30a/0x620
[  100.007527][ T5953]  ? __do_sys_listmount+0x1c2/0xec0
[  100.007572][ T5953]  ? __do_sys_listmount+0x1c2/0xec0
[  100.007624][ T5953]  ? __do_sys_listmount+0x1c2/0xec0
[  100.007665][ T5953]  __do_sys_listmount+0x1c2/0xec0
[  100.007717][ T5953]  ? __x64_sys_futex+0x1e0/0x4c0
[  100.007759][ T5953]  ? __x64_sys_futex+0x1e9/0x4c0
[  100.007803][ T5953]  ? __pfx___do_sys_listmount+0x10/0x10
[  100.007868][ T5953]  do_syscall_64+0xcd/0x490
[  100.007923][ T5953]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.007957][ T5953] RIP: 0033:0x7f0c1938e929
[  100.007990][ T5953] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  100.008022][ T5953] RSP: 002b:00007f0c1a2c0038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[  100.008054][ T5953] RAX: ffffffffffffffda RBX: 00007f0c195b6080 RCX: 00007f0c1938e929
[  100.008076][ T5953] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100
[  100.008096][ T5953] RBP: 00007f0c19410b39 R08: 0000000000000000 R09: 0000000000000000
[  100.008115][ T5953] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[  100.008134][ T5953] R13: 0000000000000000 R14: 00007f0c195b6080 R15: 00007ffe5763f968
[  100.008176][ T5953]  </TASK>
[  100.009763][ T5953] syz.3.6: vmalloc error: size 8000000, vm_struct allocation failed, mode:0x400cc0(GFP_KERNEL_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1
[  100.390734][ T5953] CPU: 1 UID: 0 PID: 5953 Comm: syz.3.6 Not tainted 6.16.0-rc4-syzkaller-00123-g4c06e63b9203 #0 PREEMPT(full) 
[  100.390770][ T5953] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  100.390787][ T5953] Call Trace:
[  100.390795][ T5953]  <TASK>
[  100.390805][ T5953]  dump_stack_lvl+0x16c/0x1f0
[  100.390854][ T5953]  warn_alloc+0x248/0x3a0
[  100.390899][ T5953]  ? __pfx_warn_alloc+0x10/0x10
[  100.390943][ T5953]  ? kfree+0x2b4/0x4d0
[  100.390989][ T5953]  ? __get_vm_area_node+0x208/0x330
[  100.391049][ T5953]  __vmalloc_node_range_noprof+0xb2d/0x14b0
[  100.391104][ T5953]  ? __lock_acquire+0xb8a/0x1c90
[  100.391145][ T5953]  ? __do_sys_listmount+0x1c2/0xec0
[  100.391194][ T5953]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  100.391237][ T5953]  ? __alloc_pages_noprof+0xb/0x1b0
[  100.391284][ T5953]  ? ___kmalloc_large_node+0x84/0x1e0
[  100.391327][ T5953]  ? find_held_lock+0x2b/0x80
[  100.391364][ T5953]  __kvmalloc_node_noprof+0x30a/0x620
[  100.391407][ T5953]  ? __do_sys_listmount+0x1c2/0xec0
[  100.391447][ T5953]  ? __do_sys_listmount+0x1c2/0xec0
[  100.391494][ T5953]  ? __do_sys_listmount+0x1c2/0xec0
[  100.391532][ T5953]  __do_sys_listmount+0x1c2/0xec0
[  100.391579][ T5953]  ? __x64_sys_futex+0x1e0/0x4c0
[  100.391617][ T5953]  ? __x64_sys_futex+0x1e9/0x4c0
[  100.391656][ T5953]  ? __pfx___do_sys_listmount+0x10/0x10
[  100.391714][ T5953]  do_syscall_64+0xcd/0x490
[  100.391764][ T5953]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.391794][ T5953] RIP: 0033:0x7f0c1938e929
[  100.391818][ T5953] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  100.391843][ T5953] RSP: 002b:00007f0c1a2c0038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[  100.391869][ T5953] RAX: ffffffffffffffda RBX: 00007f0c195b6080 RCX: 00007f0c1938e929
[  100.391889][ T5953] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100
[  100.391907][ T5953] RBP: 00007f0c19410b39 R08: 0000000000000000 R09: 0000000000000000
[  100.391925][ T5953] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[  100.391943][ T5953] R13: 0000000000000000 R14: 00007f0c195b6080 R15: 00007ffe5763f968
[  100.391980][ T5953]  </TASK>
[  100.658543][ T5962] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[  100.678654][ T5962] FAULT_INJECTION: forcing a failure.
[  100.678654][ T5962] name failslab, interval 1, probability 0, space 0, times 1
[  100.691487][ T5962] CPU: 1 UID: 0 PID: 5962 Comm: syz.2.8 Not tainted 6.16.0-rc4-syzkaller-00123-g4c06e63b9203 #0 PREEMPT(full) 
[  100.691528][ T5962] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  100.691546][ T5962] Call Trace:
[  100.691564][ T5962]  <TASK>
[  100.691575][ T5962]  dump_stack_lvl+0x16c/0x1f0
[  100.691627][ T5962]  should_fail_ex+0x512/0x640
[  100.691672][ T5962]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  100.691743][ T5962]  should_failslab+0xc2/0x120
[  100.691776][ T5962]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  100.691829][ T5962]  ? alloc_inode+0x64/0x240
[  100.691869][ T5962]  ? __pfx_debugfs_alloc_inode+0x10/0x10
[  100.691909][ T5962]  alloc_inode+0x64/0x240
[  100.691944][ T5962]  new_inode+0x22/0x1c0
[  100.691982][ T5962]  __debugfs_create_file+0x11c/0x6b0
[  100.692040][ T5962]  debugfs_create_file_full+0x41/0x60
[  100.692086][ T5962]  kvm_dev_ioctl+0x14ff/0x1ad0
[  100.692146][ T5962]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  100.692192][ T5962]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  100.692225][ T5962]  __x64_sys_ioctl+0x18b/0x210
[  100.692269][ T5962]  do_syscall_64+0xcd/0x490
[  100.692321][ T5962]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.692353][ T5962] RIP: 0033:0x7fc17d98e929
[  100.692378][ T5962] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  100.692408][ T5962] RSP: 002b:00007fc17e7c6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  100.692438][ T5962] RAX: ffffffffffffffda RBX: 00007fc17dbb5fa0 RCX: 00007fc17d98e929
[  100.692457][ T5962] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000002
[  100.692475][ T5962] RBP: 00007fc17da10b39 R08: 0000000000000000 R09: 0000000000000000
[  100.692492][ T5962] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  100.692510][ T5962] R13: 0000000000000000 R14: 00007fc17dbb5fa0 R15: 00007ffd7cb7cab8
[  100.692549][ T5962]  </TASK>
[  100.692567][ T5962] debugfs: out of free dentries, can not create file 'mmu_flooded'
[  100.729075][ T5953] Mem-Info:
[  100.919642][ T5953] active_anon:5133 inactive_anon:0 isolated_anon:0
[  100.919642][ T5953]  active_file:1017 inactive_file:39820 isolated_file:0
[  100.919642][ T5953]  unevictable:768 dirty:1528 writeback:0
[  100.919642][ T5953]  slab_reclaimable:9961 slab_unreclaimable:91922
[  100.919642][ T5953]  mapped:24080 shmem:1491 pagetables:1058
[  100.919642][ T5953]  sec_pagetables:0 bounce:0
[  100.919642][ T5953]  kernel_misc_reclaimable:0
[  100.919642][ T5953]  free:1346798 free_pcp:16124 free_cma:0
[  100.998007][ T5953] Node 0 active_anon:20932kB inactive_anon:0kB active_file:4068kB inactive_file:159080kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:96720kB dirty:6096kB writeback:0kB shmem:4828kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11532kB pagetables:4096kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  101.033108][ T5953] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:16kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:136kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  101.095505][ T5953] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  101.140609][ T5953] lowmem_reserve[]: 0 2480 2482 2482 2482
[  101.170222][ T5953] Node 0 DMA32 free:1474316kB boost:0kB min:34076kB low:42592kB high:51108kB reserved_highatomic:0KB free_highatomic:0KB active_anon:22488kB inactive_anon:0kB active_file:4068kB inactive_file:157752kB unevictable:1536kB writepending:6092kB present:3129332kB managed:2540344kB mlocked:0kB bounce:0kB free_pcp:40592kB local_pcp:7904kB free_cma:0kB
[  101.237072][ T5953] lowmem_reserve[]: 0 0 1 1 1
[  101.248588][ T5953] Node 0 Normal free:8kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:0kB inactive_file:1328kB unevictable:0kB writepending:4kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB
[  101.300430][ T5953] lowmem_reserve[]: 0 0 0 0 0
[  101.315462][ T5953] Node 1 Normal free:3896260kB boost:0kB min:55804kB low:69752kB high:83700kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB writepending:16kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:21856kB local_pcp:9984kB free_cma:0kB
[  101.426138][ T5953] lowmem_reserve[]: 0 0 0 0 0
[  101.447157][ T5953] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  101.480591][ T5953] Node 0 DMA32: 1*4kB (E) 1*8kB (E) 1*16kB (E) 0*32kB 2*64kB (UE) 4*128kB (UM) 3*256kB (M) 4*512kB (UME) 4*1024kB (UM) 1*2048kB (M) 357*4096kB (M) = 1471900kB
[  101.590488][ T5975] mkiss: ax0: crc mode is auto.
[  101.595968][ T5953] Node 0 Normal: 0*4kB 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB
[  101.611661][ T5953] Node 1 Normal: 211*4kB (UE) 53*8kB (UME) 41*16kB (UME) 58*32kB (UM) 34*64kB (UME) 7*128kB (UME) 3*256kB (ME) 3*512kB (ME) 2*1024kB (UM) 1*2048kB (E) 948*4096kB (M) = 3896260kB
[  101.666851][ T5953] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  101.689346][ T5953] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  101.699347][ T5858] Bluetooth: hci0: command tx timeout
[  101.699418][ T5858] Bluetooth: hci1: command tx timeout
[  101.702883][ T5851] Bluetooth: hci2: command tx timeout
[  101.731502][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  101.740108][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  101.750297][ T5953] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  101.762762][ T5953] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  101.772336][ T5851] Bluetooth: hci3: command tx timeout
[  101.787935][ T5953] 45507 total pagecache pages
[  101.806429][ T5953] 0 pages in swap cache
[  101.810638][ T5953] Free swap  = 124996kB
[  101.924851][ T5953] Total swap = 124996kB
[  101.929152][ T5953] 2097051 pages RAM
[  102.004137][ T5953] 0 pages HighMem/MovableOnly
[  102.081199][ T5953] 429987 pages reserved
[  102.143922][ T5953] 0 pages cma reserved
[  102.350265][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  102.359006][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  102.367534][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  102.376090][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  102.384678][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  102.393201][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  102.402033][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  102.410348][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  103.077378][ T5986] mmap: syz.3.11 (5986) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  104.737335][ T6004] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input5
[  105.312120][ T6015] process 'syz.3.18' launched './file0' with NULL argv: empty string added
[  106.139030][ T6004] Zero length message leads to an empty skb
[  107.615655][ T6020] can: request_module (can-proto-3) failed.
[  108.476709][ T6060] Invalid ELF header magic: != ELF
[  108.706681][ T6060] could not allocate digest TFM handle 
[  109.130822][ T6074] cifs: Unknown parameter 'no+ 1����`��r�sFn)��a�H��ā��h`����9k�A}���1\D@��.��Z�Cg^�'
[  109.391486][   T30] audit: type=1800 audit(1751618156.228:2): pid=6069 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.28" name="discovery_nqn" dev="configfs" ino=7028 res=0 errno=0
[  109.448236][ T6078] warning: `syz.0.31' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  110.585372][ T6092] mkiss: ax0: crc mode is auto.
[  112.898468][ T6127] program syz.3.39 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  114.416783][ T6144] netlink: 28 bytes leftover after parsing attributes in process `syz.2.44'.
[  114.643192][ T6144] team0: Port device team_slave_0 removed
[  115.533319][ T6165] syz.1.48 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  116.075533][ T6153] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  116.100514][ T6153] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  116.142706][ T6153] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  116.156110][ T6153] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  116.203344][ T6153] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  116.232060][ T6153] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  116.283390][ T6153] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  116.289493][ T6153] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  116.350824][ T6153] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  116.387410][ T6153] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  116.394173][ T6153] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  116.406600][ T6153] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  117.213264][ T5851] Bluetooth: hci0: command 0x0c1a tx timeout
[  118.171218][ T5851] Bluetooth: hci2: command 0x0c1a tx timeout
[  118.221448][ T6220] netlink: 322 bytes leftover after parsing attributes in process `syz.2.58'.
[  118.331252][ T5851] Bluetooth: hci1: command 0x0c1a tx timeout
[  118.411224][ T5851] Bluetooth: hci3: command 0x0c1a tx timeout
[  118.662376][ T6220] veth1_macvtap: left promiscuous mode
[  119.292417][ T5851] Bluetooth: hci0: command 0x0c1a tx timeout
[  119.667186][ T6235] syz.3.62 uses obsolete (PF_INET,SOCK_PACKET)
[  120.251769][ T5851] Bluetooth: hci2: command 0x0c1a tx timeout
[  120.384269][ T6244] program syz.1.64 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  120.423228][ T5851] Bluetooth: hci1: command 0x0c1a tx timeout
[  120.491554][ T5851] Bluetooth: hci3: command 0x0c1a tx timeout
[  121.313676][ T6270] FAULT_INJECTION: forcing a failure.
[  121.313676][ T6270] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  121.337609][ T6270] CPU: 1 UID: 0 PID: 6270 Comm: syz.1.70 Not tainted 6.16.0-rc4-syzkaller-00123-g4c06e63b9203 #0 PREEMPT(full) 
[  121.337649][ T6270] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  121.337665][ T6270] Call Trace:
[  121.337675][ T6270]  <TASK>
[  121.337685][ T6270]  dump_stack_lvl+0x16c/0x1f0
[  121.337736][ T6270]  should_fail_ex+0x512/0x640
[  121.337786][ T6270]  _copy_from_user+0x2e/0xd0
[  121.337814][ T6270]  copy_msghdr_from_user+0x98/0x160
[  121.337859][ T6270]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  121.337909][ T6270]  ? kfree+0x24f/0x4d0
[  121.337946][ T6270]  ? __pfx__kstrtoull+0x10/0x10
[  121.337989][ T6270]  ___sys_sendmsg+0xfe/0x1d0
[  121.338036][ T6270]  ? __pfx____sys_sendmsg+0x10/0x10
[  121.338118][ T6270]  ? __pfx___might_resched+0x10/0x10
[  121.338157][ T6270]  __sys_sendmmsg+0x200/0x420
[  121.338205][ T6270]  ? __pfx___sys_sendmmsg+0x10/0x10
[  121.338261][ T6270]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  121.338322][ T6270]  ? fput+0x70/0xf0
[  121.338351][ T6270]  ? ksys_write+0x1ac/0x250
[  121.338394][ T6270]  ? __pfx_ksys_write+0x10/0x10
[  121.338457][ T6270]  __x64_sys_sendmmsg+0x9c/0x100
[  121.338520][ T6270]  ? lockdep_hardirqs_on+0x7c/0x110
[  121.338566][ T6270]  do_syscall_64+0xcd/0x490
[  121.338617][ T6270]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.338649][ T6270] RIP: 0033:0x7ff42738e929
[  121.338674][ T6270] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  121.338709][ T6270] RSP: 002b:00007ff42824c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  121.338737][ T6270] RAX: ffffffffffffffda RBX: 00007ff4275b6080 RCX: 00007ff42738e929
[  121.338755][ T6270] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000003
[  121.338771][ T6270] RBP: 00007ff42824c090 R08: 0000000000000000 R09: 0000000000000000
[  121.338788][ T6270] R10: 0000000000003ec0 R11: 0000000000000246 R12: 0000000000000002
[  121.338805][ T6270] R13: 0000000000000000 R14: 00007ff4275b6080 R15: 00007fff7af8a898
[  121.338844][ T6270]  </TASK>
[  121.594085][ T5851] Bluetooth: hci0: command 0x0c1a tx timeout
[  122.331735][ T5851] Bluetooth: hci2: command 0x0c1a tx timeout
[  122.363966][ T6280] program syz.2.75 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  122.491922][ T5851] Bluetooth: hci1: command 0x0c1a tx timeout
[  122.513360][ T6263] delete_channel: no stack
[  122.571516][ T5851] Bluetooth: hci3: command 0x0c1a tx timeout
[  124.543896][ T6320] program syz.2.85 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  125.903734][ T6354] ptrace attach of "./syz-executor exec"[5848] was attempted by ""[6354]
[  126.866812][ T6367] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  127.576964][ T6387] FAULT_INJECTION: forcing a failure.
[  127.576964][ T6387] name failslab, interval 1, probability 0, space 0, times 0
[  127.624036][ T6387] CPU: 0 UID: 0 PID: 6387 Comm: syz.2.102 Not tainted 6.16.0-rc4-syzkaller-00123-g4c06e63b9203 #0 PREEMPT(full) 
[  127.624077][ T6387] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  127.624092][ T6387] Call Trace:
[  127.624101][ T6387]  <TASK>
[  127.624111][ T6387]  dump_stack_lvl+0x16c/0x1f0
[  127.624160][ T6387]  should_fail_ex+0x512/0x640
[  127.624204][ T6387]  ? fs_reclaim_acquire+0xae/0x150
[  127.624241][ T6387]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  127.624284][ T6387]  should_failslab+0xc2/0x120
[  127.624314][ T6387]  __kmalloc_noprof+0xd2/0x510
[  127.624367][ T6387]  tomoyo_realpath_from_path+0xc2/0x6e0
[  127.624414][ T6387]  ? tomoyo_profile+0x47/0x60
[  127.624443][ T6387]  tomoyo_path_number_perm+0x245/0x580
[  127.624478][ T6387]  ? tomoyo_path_number_perm+0x237/0x580
[  127.624517][ T6387]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  127.624553][ T6387]  ? find_held_lock+0x2b/0x80
[  127.624612][ T6387]  ? find_held_lock+0x2b/0x80
[  127.624641][ T6387]  ? hook_file_ioctl_common+0x145/0x410
[  127.624682][ T6387]  ? __fget_files+0x20e/0x3c0
[  127.624730][ T6387]  security_file_ioctl+0x9b/0x240
[  127.624769][ T6387]  __x64_sys_ioctl+0xb7/0x210
[  127.624809][ T6387]  do_syscall_64+0xcd/0x490
[  127.624865][ T6387]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  127.624894][ T6387] RIP: 0033:0x7fc17d98e929
[  127.624917][ T6387] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  127.624943][ T6387] RSP: 002b:00007fc17e7c6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  127.624969][ T6387] RAX: ffffffffffffffda RBX: 00007fc17dbb5fa0 RCX: 00007fc17d98e929
[  127.624987][ T6387] RDX: 00002000000014c0 RSI: 0000000080044dfd RDI: 0000000000000003
[  127.625004][ T6387] RBP: 00007fc17e7c6090 R08: 0000000000000000 R09: 0000000000000000
[  127.625020][ T6387] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  127.625036][ T6387] R13: 0000000000000000 R14: 00007fc17dbb5fa0 R15: 00007ffd7cb7cab8
[  127.625073][ T6387]  </TASK>
[  127.625083][ T6387] ERROR: Out of memory at tomoyo_realpath_from_path.
[  127.868131][ T6391] FAULT_INJECTION: forcing a failure.
[  127.868131][ T6391] name failslab, interval 1, probability 0, space 0, times 0
[  127.937096][ T6391] CPU: 1 UID: 0 PID: 6391 Comm: syz.2.102 Not tainted 6.16.0-rc4-syzkaller-00123-g4c06e63b9203 #0 PREEMPT(full) 
[  127.937132][ T6391] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  127.937144][ T6391] Call Trace:
[  127.937150][ T6391]  <TASK>
[  127.937158][ T6391]  dump_stack_lvl+0x16c/0x1f0
[  127.937194][ T6391]  should_fail_ex+0x512/0x640
[  127.937232][ T6391]  ? fs_reclaim_acquire+0xae/0x150
[  127.937260][ T6391]  ? tomoyo_encode2+0x100/0x3e0
[  127.937289][ T6391]  should_failslab+0xc2/0x120
[  127.937310][ T6391]  __kmalloc_noprof+0xd2/0x510
[  127.937342][ T6391]  ? d_absolute_path+0x136/0x1a0
[  127.937369][ T6391]  tomoyo_encode2+0x100/0x3e0
[  127.937402][ T6391]  tomoyo_encode+0x29/0x50
[  127.937435][ T6391]  tomoyo_realpath_from_path+0x18f/0x6e0
[  127.937489][ T6391]  tomoyo_path_number_perm+0x245/0x580
[  127.937524][ T6391]  ? tomoyo_path_number_perm+0x237/0x580
[  127.937553][ T6391]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  127.937604][ T6391]  ? _raw_spin_unlock+0x28/0x50
[  127.937631][ T6391]  ? d_add+0x47a/0x780
[  127.937652][ T6391]  ? current_check_access_path+0x33c/0x460
[  127.937681][ T6391]  ? __pfx_current_check_access_path+0x10/0x10
[  127.937706][ T6391]  ? simple_lookup+0x12c/0x180
[  127.937734][ T6391]  ? lookup_one_qstr_excl_raw.part.0+0xf9/0x160
[  127.937758][ T6391]  ? lookup_dcache+0x66/0x170
[  127.937792][ T6391]  tomoyo_path_mknod+0x10c/0x190
[  127.937813][ T6391]  ? __pfx_tomoyo_path_mknod+0x10/0x10
[  127.937834][ T6391]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  127.937874][ T6391]  security_path_mknod+0x161/0x310
[  127.937902][ T6391]  do_mknodat+0x239/0x5d0
[  127.937935][ T6391]  ? __pfx_do_mknodat+0x10/0x10
[  127.937964][ T6391]  ? getname_flags.part.0+0x1c5/0x550
[  127.937994][ T6391]  __x64_sys_mknod+0x87/0xb0
[  127.938026][ T6391]  do_syscall_64+0xcd/0x490
[  127.938062][ T6391]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  127.938083][ T6391] RIP: 0033:0x7fc17d98e929
[  127.938100][ T6391] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  127.938119][ T6391] RSP: 002b:00007fc17e7a5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000085
[  127.938138][ T6391] RAX: ffffffffffffffda RBX: 00007fc17dbb6080 RCX: 00007fc17d98e929
[  127.938152][ T6391] RDX: 000000000000010b RSI: 0000000000000006 RDI: 0000200000000280
[  127.938164][ T6391] RBP: 00007fc17da10b39 R08: 0000000000000000 R09: 0000000000000000
[  127.938177][ T6391] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  127.938188][ T6391] R13: 0000000000000000 R14: 00007fc17dbb6080 R15: 00007ffd7cb7cab8
[  127.938215][ T6391]  </TASK>
[  128.205376][ T6391] ERROR: Out of memory at tomoyo_realpath_from_path.
[  128.502066][ T6383] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  128.509422][ T6383] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  128.515720][ T6383] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  128.521897][ T6383] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  128.667788][ T6400] can: request_module (can-proto-0) failed.
[  129.694232][ T5851] Bluetooth: hci0: command 0x0c1a tx timeout
[  130.573824][ T5851] Bluetooth: hci3: command 0x0c1a tx timeout
[  130.579941][ T5851] Bluetooth: hci1: command 0x0c1a tx timeout
[  130.586174][ T5858] Bluetooth: hci2: command 0x0c1a tx timeout
[  130.860757][ T6435] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  131.341685][ T6416] syz.1.105 (6416) used greatest stack depth: 19800 bytes left
[  133.331582][ T6462] random: crng reseeded on system resumption
[  133.753415][ T6470] mkiss: ax0: crc mode is auto.
[  135.092325][ T6489] FAULT_INJECTION: forcing a failure.
[  135.092325][ T6489] name failslab, interval 1, probability 0, space 0, times 0
[  135.128695][ T6489] CPU: 0 UID: 0 PID: 6489 Comm: syz.1.118 Not tainted 6.16.0-rc4-syzkaller-00123-g4c06e63b9203 #0 PREEMPT(full) 
[  135.128728][ T6489] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  135.128741][ T6489] Call Trace:
[  135.128748][ T6489]  <TASK>
[  135.128757][ T6489]  dump_stack_lvl+0x16c/0x1f0
[  135.128816][ T6489]  should_fail_ex+0x512/0x640
[  135.128870][ T6489]  ? __kmalloc_noprof+0xbf/0x510
[  135.128910][ T6489]  ? lsm_blob_alloc+0x68/0x90
[  135.128930][ T6489]  should_failslab+0xc2/0x120
[  135.128954][ T6489]  __kmalloc_noprof+0xd2/0x510
[  135.128997][ T6489]  lsm_blob_alloc+0x68/0x90
[  135.129019][ T6489]  security_prepare_creds+0x30/0x270
[  135.129057][ T6489]  prepare_creds+0x56f/0x7d0
[  135.129096][ T6489]  __sys_setresuid+0x46d/0x1160
[  135.129128][ T6489]  do_syscall_64+0xcd/0x490
[  135.129168][ T6489]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  135.129192][ T6489] RIP: 0033:0x7ff42738e929
[  135.129210][ T6489] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  135.129232][ T6489] RSP: 002b:00007ff42826d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000075
[  135.129253][ T6489] RAX: ffffffffffffffda RBX: 00007ff4275b5fa0 RCX: 00007ff42738e929
[  135.129269][ T6489] RDX: 0000000000008080 RSI: 0000000000000007 RDI: 0000000000000002
[  135.129282][ T6489] RBP: 00007ff427410b39 R08: 0000000000000000 R09: 0000000000000000
[  135.129296][ T6489] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  135.129310][ T6489] R13: 0000000000000000 R14: 00007ff4275b5fa0 R15: 00007fff7af8a898
[  135.129339][ T6489]  </TASK>
[  135.724298][ T6494] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  137.275373][ T6509] netlink: 28 bytes leftover after parsing attributes in process `syz.1.124'.
[  137.529858][ T6509] team0: Port device team_slave_0 removed
[  137.937130][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  137.948162][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  138.265635][ T6519] program syz.0.133 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  139.166163][ T6528] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  140.211637][ T6542] netlink: 4 bytes leftover after parsing attributes in process `syz.0.131'.
[  140.287099][ T6542] FAULT_INJECTION: forcing a failure.
[  140.287099][ T6542] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  140.344670][ T6542] CPU: 1 UID: 0 PID: 6542 Comm: syz.0.131 Not tainted 6.16.0-rc4-syzkaller-00123-g4c06e63b9203 #0 PREEMPT(full) 
[  140.344710][ T6542] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  140.344726][ T6542] Call Trace:
[  140.344735][ T6542]  <TASK>
[  140.344746][ T6542]  dump_stack_lvl+0x16c/0x1f0
[  140.344795][ T6542]  should_fail_ex+0x512/0x640
[  140.344844][ T6542]  _copy_from_iter+0x29f/0x16f0
[  140.344894][ T6542]  ? rcu_is_watching+0x12/0xc0
[  140.344933][ T6542]  ? __pfx__copy_from_iter+0x10/0x10
[  140.344977][ T6542]  ? kmem_cache_alloc_noprof+0x21e/0x3b0
[  140.345022][ T6542]  ? __asan_memset+0x23/0x50
[  140.345063][ T6542]  ? __build_skb_around+0x278/0x3b0
[  140.345098][ T6542]  ? is_vmalloc_addr+0x86/0xa0
[  140.345147][ T6542]  netlink_sendmsg+0x829/0xdd0
[  140.345185][ T6542]  ? __pfx_netlink_sendmsg+0x10/0x10
[  140.345232][ T6542]  sock_write_iter+0x4fc/0x5b0
[  140.345266][ T6542]  ? __pfx_sock_write_iter+0x10/0x10
[  140.345313][ T6542]  ? bpf_lsm_file_permission+0x9/0x10
[  140.345344][ T6542]  ? security_file_permission+0x71/0x210
[  140.345385][ T6542]  ? rw_verify_area+0xcf/0x680
[  140.345426][ T6542]  vfs_write+0x6c4/0x1150
[  140.345471][ T6542]  ? __pfx_sock_write_iter+0x10/0x10
[  140.345507][ T6542]  ? __pfx_vfs_write+0x10/0x10
[  140.345546][ T6542]  ? find_held_lock+0x2b/0x80
[  140.345601][ T6542]  ksys_write+0x1f8/0x250
[  140.345644][ T6542]  ? __pfx_ksys_write+0x10/0x10
[  140.345698][ T6542]  do_syscall_64+0xcd/0x490
[  140.345746][ T6542]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  140.345776][ T6542] RIP: 0033:0x7f64c1b8e929
[  140.345799][ T6542] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  140.345825][ T6542] RSP: 002b:00007f64c2a15038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  140.345852][ T6542] RAX: ffffffffffffffda RBX: 00007f64c1db5fa0 RCX: 00007f64c1b8e929
[  140.345869][ T6542] RDX: 000000000000fdef RSI: 0000200000000000 RDI: 0000000000000002
[  140.345884][ T6542] RBP: 00007f64c2a15090 R08: 0000000000000000 R09: 0000000000000000
[  140.345899][ T6542] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  140.345924][ T6542] R13: 0000000000000000 R14: 00007f64c1db5fa0 R15: 00007ffcbdc6ab28
[  140.345961][ T6542]  </TASK>
[  142.424825][ T6577] program syz.2.135 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  142.900066][ T6580] netlink: 4 bytes leftover after parsing attributes in process `syz.3.136'.
[  144.274146][ T6604] FAULT_INJECTION: forcing a failure.
[  144.274146][ T6604] name failslab, interval 1, probability 0, space 0, times 0
[  144.321346][ T6604] CPU: 1 UID: 0 PID: 6604 Comm: syz.1.142 Not tainted 6.16.0-rc4-syzkaller-00123-g4c06e63b9203 #0 PREEMPT(full) 
[  144.321387][ T6604] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  144.321404][ T6604] Call Trace:
[  144.321411][ T6604]  <TASK>
[  144.321419][ T6604]  dump_stack_lvl+0x16c/0x1f0
[  144.321457][ T6604]  should_fail_ex+0x512/0x640
[  144.321488][ T6604]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[  144.321528][ T6604]  should_failslab+0xc2/0x120
[  144.321562][ T6604]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  144.321595][ T6604]  ? rcu_is_watching+0x12/0xc0
[  144.321634][ T6604]  ? hwsim_del_radio_nl+0x65a/0x7f0
[  144.321667][ T6604]  kstrndup+0x6d/0x160
[  144.321700][ T6604]  hwsim_del_radio_nl+0x65a/0x7f0
[  144.321727][ T6604]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  144.321762][ T6604]  genl_family_rcv_msg_doit+0x209/0x2f0
[  144.321790][ T6604]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  144.321816][ T6604]  ? trace_cap_capable+0x18d/0x200
[  144.321844][ T6604]  ? bpf_lsm_capable+0x9/0x10
[  144.321870][ T6604]  ? security_capable+0x7e/0x260
[  144.321891][ T6604]  ? ns_capable+0xd7/0x110
[  144.321915][ T6604]  genl_rcv_msg+0x55c/0x800
[  144.321943][ T6604]  ? __pfx_genl_rcv_msg+0x10/0x10
[  144.321970][ T6604]  ? __pfx_hwsim_del_radio_nl+0x10/0x10
[  144.322009][ T6604]  netlink_rcv_skb+0x158/0x420
[  144.322032][ T6604]  ? __pfx_genl_rcv_msg+0x10/0x10
[  144.322059][ T6604]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  144.322094][ T6604]  ? netlink_deliver_tap+0x1ae/0xd30
[  144.322130][ T6604]  genl_rcv+0x28/0x40
[  144.322150][ T6604]  netlink_unicast+0x53a/0x7f0
[  144.322174][ T6604]  ? __pfx_netlink_unicast+0x10/0x10
[  144.322202][ T6604]  netlink_sendmsg+0x8d1/0xdd0
[  144.322226][ T6604]  ? __pfx_netlink_sendmsg+0x10/0x10
[  144.322257][ T6604]  ____sys_sendmsg+0xa98/0xc70
[  144.322280][ T6604]  ? copy_msghdr_from_user+0x10a/0x160
[  144.322315][ T6604]  ? __pfx_____sys_sendmsg+0x10/0x10
[  144.322340][ T6604]  ? finish_task_switch.isra.0+0x221/0xc10
[  144.322362][ T6604]  ? lockdep_hardirqs_on+0x7c/0x110
[  144.322393][ T6604]  ? finish_task_switch.isra.0+0x221/0xc10
[  144.322419][ T6604]  ___sys_sendmsg+0x134/0x1d0
[  144.322447][ T6604]  ? __schedule+0x1181/0x5de0
[  144.322505][ T6604]  ? __pfx____sys_sendmsg+0x10/0x10
[  144.322540][ T6604]  ? __lock_acquire+0x622/0x1c90
[  144.322603][ T6604]  __sys_sendmsg+0x16d/0x220
[  144.322635][ T6604]  ? __pfx___sys_sendmsg+0x10/0x10
[  144.322684][ T6604]  do_syscall_64+0xcd/0x490
[  144.322719][ T6604]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.322740][ T6604] RIP: 0033:0x7ff42738e929
[  144.322756][ T6604] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  144.322775][ T6604] RSP: 002b:00007ff42826d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  144.322794][ T6604] RAX: ffffffffffffffda RBX: 00007ff4275b5fa0 RCX: 00007ff42738e929
[  144.322807][ T6604] RDX: 000000000000c044 RSI: 0000200000003bc0 RDI: 0000000000000003
[  144.322819][ T6604] RBP: 00007ff42826d090 R08: 0000000000000000 R09: 0000000000000000
[  144.322831][ T6604] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  144.322843][ T6604] R13: 0000000000000000 R14: 00007ff4275b5fa0 R15: 00007fff7af8a898
[  144.322869][ T6604]  </TASK>
[  144.897444][ T6596] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  145.941994][ T6613] FAULT_INJECTION: forcing a failure.
[  145.941994][ T6613] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  146.011248][ T6613] CPU: 0 UID: 0 PID: 6613 Comm: syz.1.144 Not tainted 6.16.0-rc4-syzkaller-00123-g4c06e63b9203 #0 PREEMPT(full) 
[  146.011286][ T6613] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  146.011301][ T6613] Call Trace:
[  146.011310][ T6613]  <TASK>
[  146.011321][ T6613]  dump_stack_lvl+0x16c/0x1f0
[  146.011372][ T6613]  should_fail_ex+0x512/0x640
[  146.011417][ T6613]  _copy_from_user+0x2e/0xd0
[  146.011445][ T6613]  copy_msghdr_from_user+0x98/0x160
[  146.011490][ T6613]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  146.011538][ T6613]  ? kfree+0x24f/0x4d0
[  146.011573][ T6613]  ? __pfx__kstrtoull+0x10/0x10
[  146.011617][ T6613]  ___sys_sendmsg+0xfe/0x1d0
[  146.011663][ T6613]  ? __pfx____sys_sendmsg+0x10/0x10
[  146.011741][ T6613]  ? __pfx___might_resched+0x10/0x10
[  146.011781][ T6613]  __sys_sendmmsg+0x200/0x420
[  146.011828][ T6613]  ? __pfx___sys_sendmmsg+0x10/0x10
[  146.011884][ T6613]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  146.011946][ T6613]  ? fput+0x70/0xf0
[  146.011974][ T6613]  ? ksys_write+0x1ac/0x250
[  146.012014][ T6613]  ? __pfx_ksys_write+0x10/0x10
[  146.012063][ T6613]  __x64_sys_sendmmsg+0x9c/0x100
[  146.012106][ T6613]  ? lockdep_hardirqs_on+0x7c/0x110
[  146.012151][ T6613]  do_syscall_64+0xcd/0x490
[  146.012198][ T6613]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  146.012225][ T6613] RIP: 0033:0x7ff42738e929
[  146.012247][ T6613] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  146.012273][ T6613] RSP: 002b:00007ff42824c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  146.012295][ T6613] RAX: ffffffffffffffda RBX: 00007ff4275b6080 RCX: 00007ff42738e929
[  146.012310][ T6613] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000003
[  146.012324][ T6613] RBP: 00007ff42824c090 R08: 0000000000000000 R09: 0000000000000000
[  146.012339][ T6613] R10: 0000000000003ec0 R11: 0000000000000246 R12: 0000000000000002
[  146.012353][ T6613] R13: 0000000000000000 R14: 00007ff4275b6080 R15: 00007fff7af8a898
[  146.012382][ T6613]  </TASK>
[  146.554468][ T6617] program syz.3.145 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  147.762035][ T6631] vivid-007: =================  START STATUS  =================
[  147.780152][ T6631] vivid-007: Generate PTS: true
[  147.797768][ T6631] vivid-007: Generate SCR: true
[  147.811323][ T6631] tpg source WxH: 320x240 (Y'CbCr)
[  147.841178][ T6631] tpg field: 1
[  147.844719][ T6631] tpg crop: (0,0)/320x240
[  147.849081][ T6631] tpg compose: (0,0)/320x240
[  147.864042][ T6631] tpg colorspace: 8
[  147.867917][ T6631] tpg transfer function: 0/0
[  147.894435][ T6631] tpg Y'CbCr encoding: 0/0
[  147.898944][ T6631] tpg quantization: 0/0
[  147.903464][ T6631] tpg RGB range: 0/2
[  147.916018][ T6631] vivid-007: ==================  END STATUS  ==================
[  148.671059][ T6648] program syz.1.154 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  152.292307][   T30] audit: type=1804 audit(1751618199.158:3): pid=6689 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.162" name="/newroot/39/file0" dev="tmpfs" ino=224 res=1 errno=0
[  152.376484][   T30] audit: type=1800 audit(1751618199.188:4): pid=6689 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.162" name="file0" dev="tmpfs" ino=224 res=0 errno=0
[  153.893380][ T6706] netlink: 28 bytes leftover after parsing attributes in process `syz.3.165'.
[  156.844734][ T6740] netlink: 28 bytes leftover after parsing attributes in process `syz.3.175'.
[  157.139034][ T6740] team0: Port device team_slave_0 removed
[  157.158978][ T6745] syz.0.171 (6745): attempted to duplicate a private mapping with mremap.  This is not supported.
[  162.522256][ T6788] netlink: 4 bytes leftover after parsing attributes in process `syz.1.183'.
[  164.071018][ T6816] capability: warning: `syz.3.188' uses 32-bit capabilities (legacy support in use)
[  164.394024][ T6823] FAULT_INJECTION: forcing a failure.
[  164.394024][ T6823] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  164.558098][ T6823] CPU: 0 UID: 0 PID: 6823 Comm: syz.0.187 Not tainted 6.16.0-rc4-syzkaller-00123-g4c06e63b9203 #0 PREEMPT(full) 
[  164.558136][ T6823] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  164.558152][ T6823] Call Trace:
[  164.558162][ T6823]  <TASK>
[  164.558172][ T6823]  dump_stack_lvl+0x16c/0x1f0
[  164.558219][ T6823]  should_fail_ex+0x512/0x640
[  164.558266][ T6823]  _copy_from_user+0x2e/0xd0
[  164.558294][ T6823]  copy_msghdr_from_user+0x98/0x160
[  164.558337][ T6823]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  164.558385][ T6823]  ? kfree+0x24f/0x4d0
[  164.558429][ T6823]  ? __pfx__kstrtoull+0x10/0x10
[  164.558492][ T6823]  ___sys_sendmsg+0xfe/0x1d0
[  164.558542][ T6823]  ? __pfx____sys_sendmsg+0x10/0x10
[  164.558630][ T6823]  ? __pfx___might_resched+0x10/0x10
[  164.558676][ T6823]  __sys_sendmmsg+0x200/0x420
[  164.558740][ T6823]  ? __pfx___sys_sendmmsg+0x10/0x10
[  164.558804][ T6823]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  164.558874][ T6823]  ? fput+0x70/0xf0
[  164.558908][ T6823]  ? ksys_write+0x1ac/0x250
[  164.558954][ T6823]  ? __pfx_ksys_write+0x10/0x10
[  164.559009][ T6823]  __x64_sys_sendmmsg+0x9c/0x100
[  164.559063][ T6823]  ? lockdep_hardirqs_on+0x7c/0x110
[  164.559110][ T6823]  do_syscall_64+0xcd/0x490
[  164.559173][ T6823]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  164.559204][ T6823] RIP: 0033:0x7f64c1b8e929
[  164.559229][ T6823] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  164.559258][ T6823] RSP: 002b:00007f64c29d3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  164.559286][ T6823] RAX: ffffffffffffffda RBX: 00007f64c1db6160 RCX: 00007f64c1b8e929
[  164.559306][ T6823] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000003
[  164.559322][ T6823] RBP: 00007f64c29d3090 R08: 0000000000000000 R09: 0000000000000000
[  164.559339][ T6823] R10: 0000000000003ec0 R11: 0000000000000246 R12: 0000000000000002
[  164.559356][ T6823] R13: 0000000000000001 R14: 00007f64c1db6160 R15: 00007ffcbdc6ab28
[  164.559394][ T6823]  </TASK>
[  164.763930][    C0] vkms_vblank_simulate: vblank timer overrun
[  164.783609][ T6825] program syz.3.190 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  165.500923][ T6838] FAULT_INJECTION: forcing a failure.
[  165.500923][ T6838] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  165.514789][ T6838] CPU: 0 UID: 0 PID: 6838 Comm: syz.2.194 Not tainted 6.16.0-rc4-syzkaller-00123-g4c06e63b9203 #0 PREEMPT(full) 
[  165.514844][ T6838] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  165.514862][ T6838] Call Trace:
[  165.514872][ T6838]  <TASK>
[  165.514883][ T6838]  dump_stack_lvl+0x16c/0x1f0
[  165.514936][ T6838]  should_fail_ex+0x512/0x640
[  165.514990][ T6838]  should_fail_alloc_page+0xe7/0x130
[  165.515025][ T6838]  prepare_alloc_pages+0x3c2/0x610
[  165.515063][ T6838]  ? rcu_is_watching+0x12/0xc0
[  165.515110][ T6838]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  165.515161][ T6838]  ? rcu_is_watching+0x12/0xc0
[  165.515192][ T6838]  ? trace_mm_page_alloc+0x11f/0x1a0
[  165.515246][ T6838]  ? __alloc_frozen_pages_noprof+0x294/0x23f0
[  165.515313][ T6838]  ? lock_acquire+0x179/0x350
[  165.515356][ T6838]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  165.515411][ T6838]  ? mark_held_locks+0x49/0x80
[  165.515452][ T6838]  ? finish_task_switch.isra.0+0x221/0xc10
[  165.515495][ T6838]  ? trace_sched_exit_tp+0xde/0x130
[  165.515534][ T6838]  ? __schedule+0x1181/0x5de0
[  165.515587][ T6838]  alloc_pages_bulk_noprof+0x71c/0x1410
[  165.515636][ T6838]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  165.515698][ T6838]  ? policy_nodemask+0xea/0x4e0
[  165.515734][ T6838]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[  165.515785][ T6838]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  165.515844][ T6838]  kasan_populate_vmalloc+0xf1/0x1f0
[  165.515895][ T6838]  alloc_vmap_area+0x959/0x29c0
[  165.515944][ T6838]  ? __pfx_alloc_vmap_area+0x10/0x10
[  165.515987][ T6838]  __get_vm_area_node+0x1ca/0x330
[  165.516031][ T6838]  __vmalloc_node_range_noprof+0x271/0x14b0
[  165.516071][ T6838]  ? pcpu_mem_zalloc+0x54/0xb0
[  165.516119][ T6838]  ? pcpu_mem_zalloc+0x54/0xb0
[  165.516165][ T6838]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  165.516219][ T6838]  ? pcpu_mem_zalloc+0x54/0xb0
[  165.516255][ T6838]  __vmalloc_node_noprof+0xad/0xf0
[  165.516292][ T6838]  ? pcpu_mem_zalloc+0x54/0xb0
[  165.516334][ T6838]  pcpu_mem_zalloc+0x54/0xb0
[  165.516371][ T6838]  pcpu_create_chunk+0x432/0x730
[  165.516416][ T6838]  pcpu_alloc_noprof+0x11e3/0x1470
[  165.516475][ T6838]  bpf_map_alloc_percpu+0x9a/0x4b0
[  165.516522][ T6838]  htab_map_alloc+0x10ca/0x1570
[  165.516557][ T6838]  ? ns_capable+0xd7/0x110
[  165.516591][ T6838]  map_create+0x58f/0x1db0
[  165.516637][ T6838]  ? irqentry_exit+0x3b/0x90
[  165.516687][ T6838]  ? lockdep_hardirqs_on+0x7c/0x110
[  165.516735][ T6838]  ? __pfx_map_create+0x10/0x10
[  165.516786][ T6838]  ? __pfx_bpf_lsm_bpf+0x10/0x10
[  165.516830][ T6838]  __sys_bpf+0x47cc/0x4d80
[  165.516862][ T6838]  ? __pfx___sys_bpf+0x10/0x10
[  165.516890][ T6838]  ? do_writev+0x218/0x340
[  165.516937][ T6838]  ? do_futex+0x122/0x350
[  165.516974][ T6838]  ? __pfx_do_futex+0x10/0x10
[  165.517025][ T6838]  ? fput+0x70/0xf0
[  165.517056][ T6838]  ? xfd_validate_state+0x61/0x180
[  165.517094][ T6838]  ? __pfx_do_writev+0x10/0x10
[  165.517140][ T6838]  __x64_sys_bpf+0x78/0xc0
[  165.517167][ T6838]  ? lockdep_hardirqs_on+0x7c/0x110
[  165.517208][ T6838]  do_syscall_64+0xcd/0x490
[  165.517255][ T6838]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  165.517284][ T6838] RIP: 0033:0x7fc17d98e929
[  165.517307][ T6838] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  165.517334][ T6838] RSP: 002b:00007fc17e763038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  165.517360][ T6838] RAX: ffffffffffffffda RBX: 00007fc17dbb6240 RCX: 00007fc17d98e929
[  165.517378][ T6838] RDX: 00000000000000a3 RSI: 0000200000000780 RDI: 0000000000000000
[  165.517394][ T6838] RBP: 00007fc17da10b39 R08: 0000000000000000 R09: 0000000000000000
[  165.517411][ T6838] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  165.517428][ T6838] R13: 0000000000000000 R14: 00007fc17dbb6240 R15: 00007ffd7cb7cab8
[  165.517464][ T6838]  </TASK>
[  165.897089][    C0] vkms_vblank_simulate: vblank timer overrun
[  166.661316][ T6850] program syz.1.199 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  168.257783][ T6886] HfR: entered promiscuous mode
[  168.274759][ T6884] FAULT_INJECTION: forcing a failure.
[  168.274759][ T6884] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  168.288665][ T6884] CPU: 0 UID: 0 PID: 6884 Comm: syz.2.207 Not tainted 6.16.0-rc4-syzkaller-00123-g4c06e63b9203 #0 PREEMPT(full) 
[  168.288707][ T6884] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  168.288725][ T6884] Call Trace:
[  168.288735][ T6884]  <TASK>
[  168.288746][ T6884]  dump_stack_lvl+0x16c/0x1f0
[  168.288799][ T6884]  should_fail_ex+0x512/0x640
[  168.288854][ T6884]  _copy_from_user+0x2e/0xd0
[  168.288885][ T6884]  copy_msghdr_from_user+0x98/0x160
[  168.288935][ T6884]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  168.288992][ T6884]  ? kfree+0x24f/0x4d0
[  168.289033][ T6884]  ? __lock_acquire+0x622/0x1c90
[  168.289086][ T6884]  ___sys_recvmsg+0xdb/0x1a0
[  168.289136][ T6884]  ? __pfx____sys_recvmsg+0x10/0x10
[  168.289209][ T6884]  ? __pfx___might_resched+0x10/0x10
[  168.289255][ T6884]  do_recvmmsg+0x2fe/0x750
[  168.289310][ T6884]  ? __pfx_do_recvmmsg+0x10/0x10
[  168.289376][ T6884]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  168.289441][ T6884]  ? __fget_files+0x20e/0x3c0
[  168.289497][ T6884]  __x64_sys_recvmmsg+0x22a/0x280
[  168.289551][ T6884]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  168.289615][ T6884]  do_syscall_64+0xcd/0x490
[  168.289679][ T6884]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  168.289709][ T6884] RIP: 0033:0x7fc17d98e929
[  168.289732][ T6884] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  168.289759][ T6884] RSP: 002b:00007fc17e7a5038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  168.289784][ T6884] RAX: ffffffffffffffda RBX: 00007fc17dbb6080 RCX: 00007fc17d98e929
[  168.289802][ T6884] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000003
[  168.289817][ T6884] RBP: 00007fc17e7a5090 R08: 0000000000000000 R09: 0000000000000000
[  168.289833][ T6884] R10: 0000000000000700 R11: 0000000000000246 R12: 0000000000000001
[  168.289849][ T6884] R13: 0000000000000000 R14: 00007fc17dbb6080 R15: 00007ffd7cb7cab8
[  168.289885][ T6884]  </TASK>
[  168.484638][    C0] vkms_vblank_simulate: vblank timer overrun
[  168.718919][ T6890] program syz.3.209 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  168.863957][   T30] audit: type=1400 audit(1751618215.728:5): apparmor="DENIED" operation="setprocattr" info="invalid" error=-22 profile="unconfined" pid=6892 comm="syz.0.211"
[  168.940470][ T6898] FAULT_INJECTION: forcing a failure.
[  168.940470][ T6898] name failslab, interval 1, probability 0, space 0, times 0
[  168.961622][ T6898] CPU: 0 UID: 0 PID: 6898 Comm: syz.3.212 Not tainted 6.16.0-rc4-syzkaller-00123-g4c06e63b9203 #0 PREEMPT(full) 
[  168.961661][ T6898] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  168.961678][ T6898] Call Trace:
[  168.961687][ T6898]  <TASK>
[  168.961696][ T6898]  dump_stack_lvl+0x16c/0x1f0
[  168.961745][ T6898]  should_fail_ex+0x512/0x640
[  168.961788][ T6898]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  168.961835][ T6898]  should_failslab+0xc2/0x120
[  168.961865][ T6898]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  168.961910][ T6898]  ? security_file_alloc+0x34/0x2b0
[  168.961953][ T6898]  security_file_alloc+0x34/0x2b0
[  168.961992][ T6898]  init_file+0x93/0x4c0
[  168.962022][ T6898]  alloc_empty_file+0x73/0x1e0
[  168.962055][ T6898]  path_openat+0xda/0x2cb0
[  168.962095][ T6898]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  168.962137][ T6898]  ? __pfx_path_openat+0x10/0x10
[  168.962182][ T6898]  ? __lock_acquire+0xb8a/0x1c90
[  168.962227][ T6898]  do_filp_open+0x20b/0x470
[  168.962271][ T6898]  ? __pfx_do_filp_open+0x10/0x10
[  168.962346][ T6898]  ? alloc_fd+0x471/0x7d0
[  168.962397][ T6898]  do_sys_openat2+0x11b/0x1d0
[  168.962430][ T6898]  ? __pfx_do_sys_openat2+0x10/0x10
[  168.962462][ T6898]  ? _copy_to_user+0x48/0xd0
[  168.962499][ T6898]  __x64_sys_openat+0x174/0x210
[  168.962553][ T6898]  ? __pfx___x64_sys_openat+0x10/0x10
[  168.962616][ T6898]  do_syscall_64+0xcd/0x490
[  168.962680][ T6898]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  168.962711][ T6898] RIP: 0033:0x7f0c1938d290
[  168.962735][ T6898] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[  168.962762][ T6898] RSP: 002b:00007f0c1a2e0fe0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  168.962789][ T6898] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f0c1938d290
[  168.962807][ T6898] RDX: 0000000000000002 RSI: 00007f0c19410e1e RDI: 00000000ffffff9c
[  168.962824][ T6898] RBP: 00007f0c19410e1e R08: 0000000000000000 R09: 00007f0c1a2e2000
[  168.962842][ T6898] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  168.962859][ T6898] R13: 0000000000000000 R14: 00007f0c195b5fa0 R15: 00007ffe5763f968
[  168.962897][ T6898]  </TASK>
[  169.188397][    C0] vkms_vblank_simulate: vblank timer overrun
[  169.570650][ T6920] mkiss: ax0: crc mode is auto.
[  170.359029][ T6930] netlink: 28 bytes leftover after parsing attributes in process `syz.3.221'.
[  170.589408][ T6935] netlink: 4 bytes leftover after parsing attributes in process `syz.0.223'.
[  170.671926][ T6941] netlink: 5 bytes leftover after parsing attributes in process `syz.0.223'.
[  170.685255][ T6941] netlink: 12 bytes leftover after parsing attributes in process `syz.0.223'.
[  171.482634][ T6954] netlink: 8 bytes leftover after parsing attributes in process `syz.3.227'.
[  171.814923][ T6965] netlink: 4 bytes leftover after parsing attributes in process `syz.3.228'.
[  172.572369][ T6975] cifs: Unknown parameter 'no+ 1����`��r�sFn)��a�H��ā��h`����9k�A}���1\D@��.��Z�Cg^�'
[  173.059898][ T6976] ubi0: attaching mtd0
[  173.083685][ T6976] ubi0: scanning is finished
[  173.088344][ T6976] ubi0: empty MTD device detected
[  173.603616][ T6976] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB)
[  173.636446][ T6976] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[  173.644641][ T6976] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1
[  173.654064][ T6976] ubi0: VID header offset: 64 (aligned 64), data offset: 128
[  173.661559][ T6976] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[  173.669804][ T6976] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23
[  173.678212][ T6976] ubi0: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 44082795
[  173.791152][ T6976] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[  173.823997][ T6990] ubi0: background thread "ubi_bgt0d" started, PID 6990
[  174.152793][ T6991] FAULT_INJECTION: forcing a failure.
[  174.152793][ T6991] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  174.211484][ T6991] CPU: 1 UID: 0 PID: 6991 Comm: syz.3.235 Not tainted 6.16.0-rc4-syzkaller-00123-g4c06e63b9203 #0 PREEMPT(full) 
[  174.211526][ T6991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  174.211543][ T6991] Call Trace:
[  174.211553][ T6991]  <TASK>
[  174.211564][ T6991]  dump_stack_lvl+0x16c/0x1f0
[  174.211618][ T6991]  should_fail_ex+0x512/0x640
[  174.211671][ T6991]  should_fail_alloc_page+0xe7/0x130
[  174.211706][ T6991]  prepare_alloc_pages+0x3c2/0x610
[  174.211743][ T6991]  ? rcu_is_watching+0x12/0xc0
[  174.211780][ T6991]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  174.211842][ T6991]  ? __lock_acquire+0xb8a/0x1c90
[  174.211900][ T6991]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  174.211947][ T6991]  ? do_raw_spin_lock+0x12c/0x2b0
[  174.211996][ T6991]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  174.212045][ T6991]  ? find_held_lock+0x2b/0x80
[  174.212088][ T6991]  ? __lock_acquire+0xb8a/0x1c90
[  174.212128][ T6991]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  174.212178][ T6991]  ? policy_nodemask+0xea/0x4e0
[  174.212212][ T6991]  alloc_pages_mpol+0x1fb/0x550
[  174.212243][ T6991]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  174.212285][ T6991]  folio_alloc_mpol_noprof+0x36/0x2f0
[  174.212324][ T6991]  shmem_alloc_folio+0x135/0x160
[  174.212363][ T6991]  shmem_alloc_and_add_folio+0x499/0xc20
[  174.212418][ T6991]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  174.212468][ T6991]  ? shmem_allowable_huge_orders+0xcb/0x2f0
[  174.212521][ T6991]  shmem_get_folio_gfp+0x67f/0x1600
[  174.212574][ T6991]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  174.212625][ T6991]  ? filemap_map_pages+0xf6f/0x1680
[  174.212697][ T6991]  shmem_fault+0x1fe/0xa30
[  174.212748][ T6991]  ? __pfx_shmem_fault+0x10/0x10
[  174.212814][ T6991]  ? __pfx_filemap_map_pages+0x10/0x10
[  174.212880][ T6991]  __do_fault+0x10a/0x490
[  174.212933][ T6991]  __handle_mm_fault+0x3c2a/0x5490
[  174.212985][ T6991]  ? __pfx___handle_mm_fault+0x10/0x10
[  174.213029][ T6991]  ? __pte_offset_map_lock+0x174/0x310
[  174.213062][ T6991]  ? find_held_lock+0x2b/0x80
[  174.213092][ T6991]  ? find_held_lock+0x2b/0x80
[  174.213132][ T6991]  ? follow_page_pte+0x3af/0x14c0
[  174.213175][ T6991]  handle_mm_fault+0x589/0xd10
[  174.213225][ T6991]  __get_user_pages+0x589/0x3b80
[  174.213278][ T6991]  ? __pfx___get_user_pages+0x10/0x10
[  174.213315][ T6991]  ? __pfx_down_read_killable+0x10/0x10
[  174.213351][ T6991]  ? __lock_acquire+0x622/0x1c90
[  174.213397][ T6991]  __gup_longterm_locked+0x20d/0x1840
[  174.213443][ T6991]  ? try_get_folio+0x1d2/0x730
[  174.213475][ T6991]  ? __pfx___gup_longterm_locked+0x10/0x10
[  174.213517][ T6991]  ? try_get_folio+0x255/0x730
[  174.213547][ T6991]  ? find_held_lock+0x2b/0x80
[  174.213578][ T6991]  ? sanity_check_pinned_pages+0x3bf/0x1200
[  174.213620][ T6991]  gup_fast_fallback+0x1ab3/0x29e0
[  174.213686][ T6991]  ? __pfx_gup_fast_fallback+0x10/0x10
[  174.213732][ T6991]  ? pcpu_block_update+0x278/0x660
[  174.213778][ T6991]  pin_user_pages_fast+0xa7/0xf0
[  174.213816][ T6991]  ? __pfx_pin_user_pages_fast+0x10/0x10
[  174.213861][ T6991]  ? __debug_object_init+0x2de/0x3d0
[  174.213903][ T6991]  iov_iter_extract_pages+0x3a2/0x1ed0
[  174.213941][ T6991]  ? __lock_acquire+0xb8a/0x1c90
[  174.213984][ T6991]  ? __pfx_iov_iter_extract_pages+0x10/0x10
[  174.214019][ T6991]  ? __lock_acquire+0x622/0x1c90
[  174.214063][ T6991]  ? do_raw_spin_lock+0x12c/0x2b0
[  174.214110][ T6991]  ? find_held_lock+0x2b/0x80
[  174.214149][ T6991]  bio_iov_iter_get_pages+0x384/0x10d0
[  174.214183][ T6991]  ? find_held_lock+0x2b/0x80
[  174.214215][ T6991]  ? bio_associate_blkg_from_css+0x394/0x13e0
[  174.214268][ T6991]  ? __pfx_bio_iov_iter_get_pages+0x10/0x10
[  174.214302][ T6991]  ? bio_associate_blkg+0x137/0x2a0
[  174.214351][ T6991]  __blkdev_direct_IO_simple+0x38e/0x850
[  174.214404][ T6991]  ? __pfx___blkdev_direct_IO_simple+0x10/0x10
[  174.214467][ T6991]  ? check_irq_usage+0xcb/0x920
[  174.214577][ T6991]  ? iov_iter_is_aligned+0xf2/0x5a0
[  174.214618][ T6991]  ? iov_iter_npages+0xf0/0x5a0
[  174.214663][ T6991]  blkdev_direct_IO+0xc3e/0x1ff0
[  174.214746][ T6991]  ? __pfx_blkdev_direct_IO+0x10/0x10
[  174.214795][ T6991]  ? rcu_is_watching+0x12/0xc0
[  174.214838][ T6991]  ? filemap_check_errors+0xa9/0x160
[  174.214891][ T6991]  blkdev_write_iter+0x6fd/0xdf0
[  174.214951][ T6991]  vfs_write+0x6c4/0x1150
[  174.215000][ T6991]  ? __pfx_blkdev_write_iter+0x10/0x10
[  174.215054][ T6991]  ? __pfx_vfs_write+0x10/0x10
[  174.215110][ T6991]  ? find_held_lock+0x2b/0x80
[  174.215175][ T6991]  ksys_write+0x12a/0x250
[  174.215223][ T6991]  ? __pfx_ksys_write+0x10/0x10
[  174.215265][ T6991]  ? syscall_user_dispatch+0x78/0x140
[  174.215306][ T6991]  do_syscall_64+0xcd/0x490
[  174.215355][ T6991]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  174.215386][ T6991] RIP: 0033:0x7f0c1938e929
[  174.215411][ T6991] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  174.215440][ T6991] RSP: 002b:00007f0c1a2c0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  174.215468][ T6991] RAX: ffffffffffffffda RBX: 00007f0c195b6080 RCX: 00007f0c1938e929
[  174.215487][ T6991] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003
[  174.215504][ T6991] RBP: 00007f0c19410b39 R08: 0000000000000000 R09: 0000000000000000
[  174.215522][ T6991] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  174.215539][ T6991] R13: 0000000000000000 R14: 00007f0c195b6080 R15: 00007ffe5763f968
[  174.215577][ T6991]  </TASK>
[  176.028266][ T7011] FAULT_INJECTION: forcing a failure.
[  176.028266][ T7011] name failslab, interval 1, probability 0, space 0, times 0
[  176.071440][ T7011] CPU: 1 UID: 0 PID: 7011 Comm: syz.3.240 Not tainted 6.16.0-rc4-syzkaller-00123-g4c06e63b9203 #0 PREEMPT(full) 
[  176.071494][ T7011] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  176.071513][ T7011] Call Trace:
[  176.071524][ T7011]  <TASK>
[  176.071536][ T7011]  dump_stack_lvl+0x16c/0x1f0
[  176.071592][ T7011]  should_fail_ex+0x512/0x640
[  176.071641][ T7011]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  176.071697][ T7011]  should_failslab+0xc2/0x120
[  176.071730][ T7011]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  176.071783][ T7011]  ? __d_alloc+0x31/0xaa0
[  176.071818][ T7011]  __d_alloc+0x31/0xaa0
[  176.071852][ T7011]  d_alloc_pseudo+0x1c/0xc0
[  176.071890][ T7011]  alloc_file_pseudo+0xcf/0x230
[  176.071929][ T7011]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  176.071965][ T7011]  ? alloc_fd+0x471/0x7d0
[  176.072017][ T7011]  sock_alloc_file+0x50/0x210
[  176.072050][ T7011]  __sys_socket+0x1c0/0x260
[  176.072086][ T7011]  ? fput+0x70/0xf0
[  176.072117][ T7011]  ? __pfx___sys_socket+0x10/0x10
[  176.072154][ T7011]  ? ksys_write+0x1ac/0x250
[  176.072201][ T7011]  ? __pfx_ksys_write+0x10/0x10
[  176.072257][ T7011]  __x64_sys_socket+0x72/0xb0
[  176.072294][ T7011]  ? lockdep_hardirqs_on+0x7c/0x110
[  176.072341][ T7011]  do_syscall_64+0xcd/0x490
[  176.072394][ T7011]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  176.072426][ T7011] RIP: 0033:0x7f0c1938e929
[  176.072461][ T7011] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  176.072492][ T7011] RSP: 002b:00007f0c1a2e1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  176.072522][ T7011] RAX: ffffffffffffffda RBX: 00007f0c195b5fa0 RCX: 00007f0c1938e929
[  176.072543][ T7011] RDX: 0000000000000000 RSI: 0000000000080003 RDI: 0000000000000011
[  176.072561][ T7011] RBP: 00007f0c19410b39 R08: 0000000000000000 R09: 0000000000000000
[  176.072579][ T7011] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  176.072596][ T7011] R13: 0000000000000000 R14: 00007f0c195b5fa0 R15: 00007ffe5763f968
[  176.072634][ T7011]  </TASK>
[  178.502196][ T7042] block2mtd: error: cannot open device �inX�����±��jFB�B>U�;߸�Ilk�
[  179.700777][ T7087] FAULT_INJECTION: forcing a failure.
[  179.700777][ T7087] name failslab, interval 1, probability 0, space 0, times 0
[  179.759419][ T7087] CPU: 1 UID: 0 PID: 7087 Comm: syz.3.259 Not tainted 6.16.0-rc4-syzkaller-00123-g4c06e63b9203 #0 PREEMPT(full) 
[  179.759463][ T7087] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  179.759481][ T7087] Call Trace:
[  179.759492][ T7087]  <TASK>
[  179.759505][ T7087]  dump_stack_lvl+0x16c/0x1f0
[  179.759562][ T7087]  should_fail_ex+0x512/0x640
[  179.759611][ T7087]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  179.759667][ T7087]  should_failslab+0xc2/0x120
[  179.759712][ T7087]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  179.759762][ T7087]  ? __kernfs_new_node+0xd2/0x8e0
[  179.759812][ T7087]  __kernfs_new_node+0xd2/0x8e0
[  179.759862][ T7087]  ? __pfx___kernfs_new_node+0x10/0x10
[  179.759917][ T7087]  ? find_held_lock+0x2b/0x80
[  179.759951][ T7087]  ? kernfs_root+0xee/0x2a0
[  179.760004][ T7087]  kernfs_new_node+0x13c/0x1e0
[  179.760040][ T7087]  kernfs_create_link+0xcc/0x240
[  179.760092][ T7087]  sysfs_do_create_link_sd+0x90/0x140
[  179.760140][ T7087]  sysfs_create_link+0x61/0xc0
[  179.760184][ T7087]  device_add+0x62c/0x1a70
[  179.760223][ T7087]  ? __pfx_device_add+0x10/0x10
[  179.760257][ T7087]  ? lockdep_init_map_type+0x5c/0x280
[  179.760300][ T7087]  ? __init_waitqueue_head+0xca/0x150
[  179.760340][ T7087]  netdev_register_kobject+0x182/0x3a0
[  179.760379][ T7087]  register_netdevice+0x13dc/0x2270
[  179.760422][ T7087]  ? __pfx_register_netdevice+0x10/0x10
[  179.760465][ T7087]  internal_dev_create+0x2d3/0x520
[  179.760501][ T7087]  ovs_vport_add+0x147/0x4d0
[  179.760534][ T7087]  new_vport+0x16/0x1d0
[  179.760575][ T7087]  ovs_dp_cmd_new+0x6ba/0xe60
[  179.760630][ T7087]  ? __pfx_ovs_dp_cmd_new+0x10/0x10
[  179.760683][ T7087]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  179.760725][ T7087]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  179.760774][ T7087]  genl_family_rcv_msg_doit+0x209/0x2f0
[  179.760816][ T7087]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  179.760856][ T7087]  ? trace_cap_capable+0x18d/0x200
[  179.760898][ T7087]  ? bpf_lsm_capable+0x9/0x10
[  179.760938][ T7087]  ? security_capable+0x7e/0x260
[  179.760970][ T7087]  ? ns_capable+0xd7/0x110
[  179.761007][ T7087]  genl_rcv_msg+0x55c/0x800
[  179.761057][ T7087]  ? __pfx_genl_rcv_msg+0x10/0x10
[  179.761096][ T7087]  ? __pfx_ovs_dp_cmd_new+0x10/0x10
[  179.761153][ T7087]  netlink_rcv_skb+0x158/0x420
[  179.761186][ T7087]  ? __pfx_genl_rcv_msg+0x10/0x10
[  179.761224][ T7087]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  179.761272][ T7087]  ? netlink_deliver_tap+0x1ae/0xd30
[  179.761304][ T7087]  genl_rcv+0x28/0x40
[  179.761327][ T7087]  netlink_unicast+0x53a/0x7f0
[  179.761353][ T7087]  ? __pfx_netlink_unicast+0x10/0x10
[  179.761383][ T7087]  netlink_sendmsg+0x8d1/0xdd0
[  179.761410][ T7087]  ? __pfx_netlink_sendmsg+0x10/0x10
[  179.761443][ T7087]  ____sys_sendmsg+0xa98/0xc70
[  179.761469][ T7087]  ? copy_msghdr_from_user+0x10a/0x160
[  179.761501][ T7087]  ? __pfx_____sys_sendmsg+0x10/0x10
[  179.761523][ T7087]  ? preempt_schedule_thunk+0x16/0x30
[  179.761556][ T7087]  ? try_to_wake_up+0xa2f/0x1680
[  179.761595][ T7087]  ___sys_sendmsg+0x134/0x1d0
[  179.761628][ T7087]  ? __pfx____sys_sendmsg+0x10/0x10
[  179.761674][ T7087]  ? __lock_acquire+0x622/0x1c90
[  179.761738][ T7087]  __sys_sendmsg+0x16d/0x220
[  179.761771][ T7087]  ? __pfx___sys_sendmsg+0x10/0x10
[  179.761803][ T7087]  ? __x64_sys_futex+0x1e0/0x4c0
[  179.761848][ T7087]  do_syscall_64+0xcd/0x490
[  179.761883][ T7087]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  179.761905][ T7087] RIP: 0033:0x7f0c1938e929
[  179.761922][ T7087] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  179.761942][ T7087] RSP: 002b:00007f0c1a2e1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  179.761961][ T7087] RAX: ffffffffffffffda RBX: 00007f0c195b5fa0 RCX: 00007f0c1938e929
[  179.761975][ T7087] RDX: 0000000000000080 RSI: 0000200000000140 RDI: 0000000000000007
[  179.761987][ T7087] RBP: 00007f0c19410b39 R08: 0000000000000000 R09: 0000000000000000
[  179.762000][ T7087] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  179.762012][ T7087] R13: 0000000000000000 R14: 00007f0c195b5fa0 R15: 00007ffe5763f968
[  179.762039][ T7087]  </TASK>
[  180.495946][ T7091] program syz.1.260 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  180.677477][ T7095] netlink: 29 bytes leftover after parsing attributes in process `syz.1.263'.
[  182.855925][ T7131] netlink: 20 bytes leftover after parsing attributes in process `syz.0.278'.
[  183.025910][ T7140] hsr_slave_0 (unregistering): hsr_addr_subst_dest: Unknown node
[  183.034292][ T7140] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  183.119730][ T7131] hsr_slave_0 (unregistering): left promiscuous mode
[  183.368111][ T7143] FAULT_INJECTION: forcing a failure.
[  183.368111][ T7143] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  183.428960][ T7143] CPU: 0 UID: 0 PID: 7143 Comm: syz.3.271 Not tainted 6.16.0-rc4-syzkaller-00123-g4c06e63b9203 #0 PREEMPT(full) 
[  183.429004][ T7143] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  183.429021][ T7143] Call Trace:
[  183.429031][ T7143]  <TASK>
[  183.429042][ T7143]  dump_stack_lvl+0x16c/0x1f0
[  183.429096][ T7143]  should_fail_ex+0x512/0x640
[  183.429150][ T7143]  _copy_to_user+0x32/0xd0
[  183.429182][ T7143]  simple_read_from_buffer+0xcb/0x170
[  183.429230][ T7143]  proc_fail_nth_read+0x197/0x270
[  183.429272][ T7143]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  183.429316][ T7143]  ? rw_verify_area+0xcf/0x680
[  183.429359][ T7143]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  183.429397][ T7143]  vfs_read+0x1e4/0xc60
[  183.429450][ T7143]  ? __pfx___mutex_lock+0x10/0x10
[  183.429501][ T7143]  ? __pfx_vfs_read+0x10/0x10
[  183.429559][ T7143]  ? __fget_files+0x20e/0x3c0
[  183.429630][ T7143]  ksys_read+0x12a/0x250
[  183.429672][ T7143]  ? __pfx_ksys_read+0x10/0x10
[  183.429725][ T7143]  do_syscall_64+0xcd/0x490
[  183.429785][ T7143]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  183.429814][ T7143] RIP: 0033:0x7f0c1938d33c
[  183.429836][ T7143] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  183.429866][ T7143] RSP: 002b:00007f0c1a2c0030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  183.429899][ T7143] RAX: ffffffffffffffda RBX: 00007f0c195b6080 RCX: 00007f0c1938d33c
[  183.429918][ T7143] RDX: 000000000000000f RSI: 00007f0c1a2c00a0 RDI: 0000000000000006
[  183.429935][ T7143] RBP: 00007f0c1a2c0090 R08: 0000000000000000 R09: 0000000000000000
[  183.429952][ T7143] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  183.429974][ T7143] R13: 0000000000000000 R14: 00007f0c195b6080 R15: 00007ffe5763f968
[  183.430011][ T7143]  </TASK>
[  183.973141][ T7153] rnbd_client L213: map_device: Parameters missing
[  183.988276][ T7152] netlink: 338 bytes leftover after parsing attributes in process `syz.0.274'.
[  184.102215][ T7155] netlink: 338 bytes leftover after parsing attributes in process `syz.0.274'.
[  184.205841][ T7152] netlink: 210 bytes leftover after parsing attributes in process `syz.0.274'.
[  184.337867][ T7163] FAULT_INJECTION: forcing a failure.
[  184.337867][ T7163] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  184.428845][ T7163] CPU: 1 UID: 0 PID: 7163 Comm: syz.2.276 Not tainted 6.16.0-rc4-syzkaller-00123-g4c06e63b9203 #0 PREEMPT(full) 
[  184.428879][ T7163] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  184.428893][ T7163] Call Trace:
[  184.428900][ T7163]  <TASK>
[  184.428909][ T7163]  dump_stack_lvl+0x16c/0x1f0
[  184.428950][ T7163]  should_fail_ex+0x512/0x640
[  184.428992][ T7163]  should_fail_alloc_page+0xe7/0x130
[  184.429020][ T7163]  prepare_alloc_pages+0x3c2/0x610
[  184.429050][ T7163]  ? is_bpf_text_address+0x8a/0x1a0
[  184.429088][ T7163]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  184.429132][ T7163]  ? __lock_acquire+0xb8a/0x1c90
[  184.429173][ T7163]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  184.429213][ T7163]  ? do_raw_spin_lock+0x12c/0x2b0
[  184.429257][ T7163]  ? mark_held_locks+0x49/0x80
[  184.429292][ T7163]  ? __lock_acquire+0x622/0x1c90
[  184.429325][ T7163]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  184.429365][ T7163]  ? policy_nodemask+0xea/0x4e0
[  184.429391][ T7163]  alloc_pages_mpol+0x1fb/0x550
[  184.429416][ T7163]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  184.429438][ T7163]  ? __lock_acquire+0x622/0x1c90
[  184.429477][ T7163]  alloc_pages_noprof+0x131/0x390
[  184.429502][ T7163]  pte_alloc_one+0x1c/0x3a0
[  184.429524][ T7163]  __do_fault+0x320/0x490
[  184.429560][ T7163]  ? find_held_lock+0x2b/0x80
[  184.429586][ T7163]  __handle_mm_fault+0x374c/0x5490
[  184.429638][ T7163]  ? __pfx___handle_mm_fault+0x10/0x10
[  184.429693][ T7163]  ? __pfx_mt_find+0x10/0x10
[  184.429728][ T7163]  ? find_vma+0xbf/0x140
[  184.429754][ T7163]  ? __pfx_find_vma+0x10/0x10
[  184.429779][ T7163]  handle_mm_fault+0x589/0xd10
[  184.429810][ T7163]  ? __pkru_allows_pkey+0x41/0xb0
[  184.429843][ T7163]  do_user_addr_fault+0x7a6/0x1370
[  184.429876][ T7163]  ? rcu_is_watching+0x12/0xc0
[  184.429902][ T7163]  exc_page_fault+0x5c/0xb0
[  184.429933][ T7163]  asm_exc_page_fault+0x26/0x30
[  184.429954][ T7163] RIP: 0010:rep_movs_alternative+0x11/0x90
[  184.429980][ T7163] Code: c3 cc cc cc cc 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 83 f9 40 73 44 83 f9 08 73 25 85 c9 74 0f 8a 06 <88> 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 bd 10 04 00 66 66 2e 0f
[  184.430000][ T7163] RSP: 0018:ffffc9000ac27dd0 EFLAGS: 00050212
[  184.430017][ T7163] RAX: 00000000000000b8 RBX: 0000000000000010 RCX: 0000000000000010
[  184.430030][ T7163] RDX: fffff52001584fc8 RSI: ffffc9000ac27e30 RDI: 0000000000000000
[  184.430043][ T7163] RBP: 0000000000000000 R08: 0000000000000000 R09: fffff52001584fc7
[  184.430056][ T7163] R10: ffffc9000ac27e3f R11: 0000000000000001 R12: ffffc9000ac27e30
[  184.430069][ T7163] R13: 0000000000000010 R14: 00007ffffffff000 R15: 0000000000000000
[  184.430095][ T7163]  _copy_to_user+0xbb/0xd0
[  184.430117][ T7163]  put_timespec64+0xb5/0x120
[  184.430144][ T7163]  ? __pfx_put_timespec64+0x10/0x10
[  184.430183][ T7163]  ? __x64_sys_futex+0x1e9/0x4c0
[  184.430213][ T7163]  __x64_sys_clock_gettime+0x1d3/0x270
[  184.430246][ T7163]  ? __pfx___x64_sys_clock_gettime+0x10/0x10
[  184.430282][ T7163]  ? rcu_is_watching+0x12/0xc0
[  184.430305][ T7163]  do_syscall_64+0xcd/0x490
[  184.430337][ T7163]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  184.430356][ T7163] RIP: 0033:0x7fc17d98e929
[  184.430372][ T7163] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  184.430397][ T7163] RSP: 002b:00007fc17e7c6038 EFLAGS: 00000246 ORIG_RAX: 00000000000000e4
[  184.430414][ T7163] RAX: ffffffffffffffda RBX: 00007fc17dbb5fa0 RCX: 00007fc17d98e929
[  184.430427][ T7163] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001
[  184.430456][ T7163] RBP: 00007fc17da10b39 R08: 0000000000000000 R09: 0000000000000000
[  184.430469][ T7163] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  184.430482][ T7163] R13: 0000000000000000 R14: 00007fc17dbb5fa0 R15: 00007ffd7cb7cab8
[  184.430508][ T7163]  </TASK>
[  185.305446][ T7173] FAULT_INJECTION: forcing a failure.
[  185.305446][ T7173] name failslab, interval 1, probability 0, space 0, times 0
[  185.336501][ T7173] CPU: 0 UID: 0 PID: 7173 Comm: syz.1.281 Not tainted 6.16.0-rc4-syzkaller-00123-g4c06e63b9203 #0 PREEMPT(full) 
[  185.336542][ T7173] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  185.336560][ T7173] Call Trace:
[  185.336569][ T7173]  <TASK>
[  185.336580][ T7173]  dump_stack_lvl+0x16c/0x1f0
[  185.336645][ T7173]  should_fail_ex+0x512/0x640
[  185.336693][ T7173]  ? __kmalloc_noprof+0xbf/0x510
[  185.336754][ T7173]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  185.336794][ T7173]  should_failslab+0xc2/0x120
[  185.336825][ T7173]  __kmalloc_noprof+0xd2/0x510
[  185.336873][ T7173]  ? __pfx___mutex_trylock_common+0x10/0x10
[  185.336928][ T7173]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  185.336980][ T7173]  genl_family_rcv_msg_doit+0xbf/0x2f0
[  185.337022][ T7173]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  185.337061][ T7173]  ? trace_cap_capable+0x18d/0x200
[  185.337103][ T7173]  ? bpf_lsm_capable+0x9/0x10
[  185.337142][ T7173]  ? security_capable+0x7e/0x260
[  185.337175][ T7173]  ? ns_capable+0xd7/0x110
[  185.337210][ T7173]  genl_rcv_msg+0x55c/0x800
[  185.337254][ T7173]  ? __pfx_genl_rcv_msg+0x10/0x10
[  185.337292][ T7173]  ? __pfx_batadv_pre_doit+0x10/0x10
[  185.337326][ T7173]  ? __pfx_batadv_netlink_tp_meter_start+0x10/0x10
[  185.337362][ T7173]  ? __pfx_batadv_post_doit+0x10/0x10
[  185.337414][ T7173]  netlink_rcv_skb+0x158/0x420
[  185.337448][ T7173]  ? __pfx_genl_rcv_msg+0x10/0x10
[  185.337488][ T7173]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  185.337540][ T7173]  ? netlink_deliver_tap+0x1ae/0xd30
[  185.337577][ T7173]  genl_rcv+0x28/0x40
[  185.337619][ T7173]  netlink_unicast+0x53a/0x7f0
[  185.337658][ T7173]  ? __pfx_netlink_unicast+0x10/0x10
[  185.337702][ T7173]  netlink_sendmsg+0x8d1/0xdd0
[  185.337740][ T7173]  ? __pfx_netlink_sendmsg+0x10/0x10
[  185.337788][ T7173]  ____sys_sendmsg+0xa98/0xc70
[  185.337826][ T7173]  ? copy_msghdr_from_user+0x10a/0x160
[  185.337872][ T7173]  ? __pfx_____sys_sendmsg+0x10/0x10
[  185.337928][ T7173]  ___sys_sendmsg+0x134/0x1d0
[  185.337978][ T7173]  ? __pfx____sys_sendmsg+0x10/0x10
[  185.338021][ T7173]  ? __lock_acquire+0x622/0x1c90
[  185.338147][ T7173]  __sys_sendmsg+0x16d/0x220
[  185.338197][ T7173]  ? __pfx___sys_sendmsg+0x10/0x10
[  185.338272][ T7173]  do_syscall_64+0xcd/0x490
[  185.338326][ T7173]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  185.338357][ T7173] RIP: 0033:0x7ff42738e929
[  185.338383][ T7173] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  185.338412][ T7173] RSP: 002b:00007ff42826d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  185.338440][ T7173] RAX: ffffffffffffffda RBX: 00007ff4275b5fa0 RCX: 00007ff42738e929
[  185.338460][ T7173] RDX: 0000000000008080 RSI: 0000200000000140 RDI: 0000000000000003
[  185.338477][ T7173] RBP: 00007ff42826d090 R08: 0000000000000000 R09: 0000000000000000
[  185.338495][ T7173] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  185.338511][ T7173] R13: 0000000000000000 R14: 00007ff4275b5fa0 R15: 00007fff7af8a898
[  185.338550][ T7173]  </TASK>
[  185.641132][    C0] vkms_vblank_simulate: vblank timer overrun
[  187.720490][ T7197] netlink: 342 bytes leftover after parsing attributes in process `syz.2.287'.
[  188.273465][ T7207] FAULT_INJECTION: forcing a failure.
[  188.273465][ T7207] name failslab, interval 1, probability 0, space 0, times 0
[  188.288283][ T7207] CPU: 1 UID: 0 PID: 7207 Comm: syz.0.288 Not tainted 6.16.0-rc4-syzkaller-00123-g4c06e63b9203 #0 PREEMPT(full) 
[  188.288311][ T7207] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  188.288322][ T7207] Call Trace:
[  188.288329][ T7207]  <TASK>
[  188.288336][ T7207]  dump_stack_lvl+0x16c/0x1f0
[  188.288372][ T7207]  should_fail_ex+0x512/0x640
[  188.288403][ T7207]  ? fs_reclaim_acquire+0xae/0x150
[  188.288430][ T7207]  ? tomoyo_encode2+0x100/0x3e0
[  188.288459][ T7207]  should_failslab+0xc2/0x120
[  188.288497][ T7207]  __kmalloc_noprof+0xd2/0x510
[  188.288549][ T7207]  ? d_absolute_path+0x136/0x1a0
[  188.288587][ T7207]  tomoyo_encode2+0x100/0x3e0
[  188.288624][ T7207]  tomoyo_encode+0x29/0x50
[  188.288655][ T7207]  tomoyo_realpath_from_path+0x18f/0x6e0
[  188.288698][ T7207]  tomoyo_path_number_perm+0x245/0x580
[  188.288726][ T7207]  ? tomoyo_path_number_perm+0x237/0x580
[  188.288757][ T7207]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  188.288813][ T7207]  ? _raw_spin_unlock+0x28/0x50
[  188.288842][ T7207]  ? d_add+0x47a/0x780
[  188.288865][ T7207]  ? current_check_access_path+0x33c/0x460
[  188.288896][ T7207]  ? __pfx_current_check_access_path+0x10/0x10
[  188.288924][ T7207]  ? simple_lookup+0x12c/0x180
[  188.288955][ T7207]  ? lookup_one_qstr_excl_raw.part.0+0xf9/0x160
[  188.288981][ T7207]  ? lookup_dcache+0x66/0x170
[  188.289011][ T7207]  tomoyo_path_mknod+0x10c/0x190
[  188.289033][ T7207]  ? __pfx_tomoyo_path_mknod+0x10/0x10
[  188.289056][ T7207]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  188.289098][ T7207]  security_path_mknod+0x161/0x310
[  188.289128][ T7207]  do_mknodat+0x239/0x5d0
[  188.289165][ T7207]  ? __pfx_do_mknodat+0x10/0x10
[  188.289196][ T7207]  ? getname_flags.part.0+0x1c5/0x550
[  188.289230][ T7207]  __x64_sys_mknod+0x87/0xb0
[  188.289265][ T7207]  do_syscall_64+0xcd/0x490
[  188.289303][ T7207]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  188.289325][ T7207] RIP: 0033:0x7f64c1b8e929
[  188.289343][ T7207] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  188.289365][ T7207] RSP: 002b:00007f64c2a15038 EFLAGS: 00000246 ORIG_RAX: 0000000000000085
[  188.289386][ T7207] RAX: ffffffffffffffda RBX: 00007f64c1db5fa0 RCX: 00007f64c1b8e929
[  188.289400][ T7207] RDX: 000000000000010b RSI: 0000000000000006 RDI: 0000200000000280
[  188.289414][ T7207] RBP: 00007f64c1c10b39 R08: 0000000000000000 R09: 0000000000000000
[  188.289427][ T7207] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  188.289440][ T7207] R13: 0000000000000000 R14: 00007f64c1db5fa0 R15: 00007ffcbdc6ab28
[  188.289469][ T7207]  </TASK>
[  188.289491][ T7207] ERROR: Out of memory at tomoyo_realpath_from_path.
[  188.621780][ T7211] tipc: Started in network mode
[  188.627010][ T7211] tipc: Node identity ee00, cluster identity 4711
[  188.656827][ T7211] tipc: Node number set to 60928
[  188.739906][ T7211] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[  190.375973][ T5858] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260
[  190.376013][ T5858] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260
[  190.394329][ T5858] Bluetooth: hci2: Unknown advertising packet type: 0x7f
[  190.394403][ T5858] Bluetooth: hci2: adv larger than maximum supported
[  190.401785][ T5858] Bluetooth: hci2: Unknown advertising packet type: 0x7f
[  190.408614][ T5858] Bluetooth: hci2: Malformed LE Event: 0x0d
[  194.181498][ T5858] Bluetooth: hci2: unexpected event 0x30 length: 47 > 3
[  194.519505][ T5858] Bluetooth: hci3: unexpected event 0x3e length: 728 > 260
[  194.527683][ T5858] Bluetooth: hci3: unexpected subevent 0x0c length: 727 > 5
[  195.149328][ T7316] FAULT_INJECTION: forcing a failure.
[  195.149328][ T7316] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  195.163267][ T7316] CPU: 0 UID: 0 PID: 7316 Comm: syz.0.310 Not tainted 6.16.0-rc4-syzkaller-00123-g4c06e63b9203 #0 PREEMPT(full) 
[  195.163305][ T7316] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  195.163321][ T7316] Call Trace:
[  195.163331][ T7316]  <TASK>
[  195.163341][ T7316]  dump_stack_lvl+0x16c/0x1f0
[  195.163388][ T7316]  should_fail_ex+0x512/0x640
[  195.163436][ T7316]  should_fail_alloc_page+0xe7/0x130
[  195.163467][ T7316]  prepare_alloc_pages+0x3c2/0x610
[  195.163506][ T7316]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  195.163553][ T7316]  ? mas_next_slot+0x12d3/0x21b0
[  195.163581][ T7316]  ? __up_read+0x1f8/0x750
[  195.163633][ T7316]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  195.163689][ T7316]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  195.163731][ T7316]  ? mas_find+0x2f6/0x530
[  195.163756][ T7316]  ? validate_mm+0x40a/0x570
[  195.163808][ T7316]  ? __lock_acquire+0xb8a/0x1c90
[  195.163850][ T7316]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  195.163896][ T7316]  ? policy_nodemask+0xea/0x4e0
[  195.163929][ T7316]  alloc_pages_mpol+0x1fb/0x550
[  195.163959][ T7316]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  195.163989][ T7316]  ? __pud_alloc+0x521/0x750
[  195.164033][ T7316]  alloc_pages_noprof+0x131/0x390
[  195.164064][ T7316]  __pmd_alloc+0x3b/0x930
[  195.164099][ T7316]  move_page_tables+0x28c8/0x4070
[  195.164147][ T7316]  ? __pfx_copy_vma+0x10/0x10
[  195.164186][ T7316]  ? finish_task_switch.isra.0+0x21c/0xc10
[  195.164224][ T7316]  ? __pfx_move_page_tables+0x10/0x10
[  195.164262][ T7316]  ? register_lock_class+0x41/0x4c0
[  195.164300][ T7316]  ? rcu_is_watching+0x12/0xc0
[  195.164346][ T7316]  ? find_held_lock+0x2b/0x80
[  195.164380][ T7316]  copy_vma_and_data+0x216/0x750
[  195.164428][ T7316]  ? __pfx_copy_vma_and_data+0x10/0x10
[  195.164475][ T7316]  ? __vma_enter_locked+0x163/0x3f0
[  195.164512][ T7316]  ? find_held_lock+0x2b/0x80
[  195.164538][ T7316]  ? move_vma+0x536/0x1740
[  195.164582][ T7316]  move_vma+0x548/0x1740
[  195.164627][ T7316]  ? __pfx_move_vma+0x10/0x10
[  195.164679][ T7316]  ? mm_get_unmapped_area+0x95/0xe0
[  195.164715][ T7316]  ? shmem_get_unmapped_area+0x170/0xa00
[  195.164754][ T7316]  ? cap_mmap_addr+0x4b/0x120
[  195.164778][ T7316]  ? bpf_lsm_mmap_addr+0x9/0x10
[  195.164812][ T7316]  ? security_mmap_addr+0x6c/0x1e0
[  195.164844][ T7316]  ? __get_unmapped_area+0x267/0x440
[  195.164878][ T7316]  ? vrm_set_new_addr+0x208/0x290
[  195.164924][ T7316]  __do_sys_mremap+0xe07/0x1590
[  195.164973][ T7316]  ? __pfx___do_sys_mremap+0x10/0x10
[  195.165028][ T7316]  ? find_held_lock+0x2b/0x80
[  195.165077][ T7316]  ? __x64_sys_futex+0x1e0/0x4c0
[  195.165139][ T7316]  do_syscall_64+0xcd/0x490
[  195.165189][ T7316]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  195.165220][ T7316] RIP: 0033:0x7f64c1b8e929
[  195.165245][ T7316] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  195.165273][ T7316] RSP: 002b:00007f64c29b2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019
[  195.165300][ T7316] RAX: ffffffffffffffda RBX: 00007f64c1db6240 RCX: 00007f64c1b8e929
[  195.165319][ T7316] RDX: 0000000000000008 RSI: 0000000000000002 RDI: 0000000000000000
[  195.165336][ T7316] RBP: 00007f64c1c10b39 R08: 00007effffffb000 R09: 0000000000000000
[  195.165355][ T7316] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000
[  195.165372][ T7316] R13: 0000000000000000 R14: 00007f64c1db6240 R15: 00007ffcbdc6ab28
[  195.165412][ T7316]  </TASK>
[  195.506506][    C0] vkms_vblank_simulate: vblank timer overrun
[  196.821581][ T7335] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  197.495952][ T7347] program syz.2.315 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  198.371149][ T7362] mkiss: ax0: crc mode is auto.
[  198.937572][ T7373] unchecked MSR access error: WRMSR to 0x418 (tried to write 0x0000000000000322) at rIP: 0xffffffff8163eaa9 (__mcheck_cpu_init_clear_banks+0x109/0x1f0)
[  198.953233][ T7373] Call Trace:
[  198.956559][ T7373]  <TASK>
[  198.959564][ T7373]  ? __pfx_mce_cpu_restart+0x10/0x10
[  198.964939][ T7373]  mce_cpu_restart+0x98/0xb0
[  198.969587][ T7373]  smp_call_function_many_cond+0xef9/0x1510
[  198.975511][ T7373]  ? __pfx_mce_cpu_restart+0x10/0x10
[  198.980823][ T7373]  ? lockdep_hardirqs_on+0x7c/0x110
[  198.986045][ T7373]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  198.991875][ T7373]  ? __pfx_smp_call_function_many_cond+0x10/0x10
[  198.998223][ T7373]  ? __pfx___try_to_del_timer_sync+0x10/0x10
[  199.004243][ T7373]  ? __pfx_mce_cpu_restart+0x10/0x10
[  199.009557][ T7373]  on_each_cpu_cond_mask+0x40/0x90
[  199.014734][ T7373]  set_bank+0x240/0x3a0
[  199.018943][ T7373]  ? __pfx_set_bank+0x10/0x10
[  199.023664][ T7373]  ? find_held_lock+0x2b/0x80
[  199.028378][ T7373]  ? __pfx_set_bank+0x10/0x10
[  199.033087][ T7373]  dev_attr_store+0x58/0x80
[  199.037608][ T7373]  ? __pfx_dev_attr_store+0x10/0x10
[  199.042823][ T7373]  sysfs_kf_write+0xf2/0x150
[  199.047529][ T7373]  kernfs_fop_write_iter+0x351/0x510
[  199.052837][ T7373]  ? __pfx_sysfs_kf_write+0x10/0x10
[  199.058065][ T7373]  vfs_write+0x6c4/0x1150
[  199.062433][ T7373]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  199.068260][ T7373]  ? __pfx___mutex_lock+0x10/0x10
[  199.073316][ T7373]  ? __pfx_vfs_write+0x10/0x10
[  199.078145][ T7373]  ksys_write+0x12a/0x250
[  199.082516][ T7373]  ? __pfx_ksys_write+0x10/0x10
[  199.087399][ T7373]  do_syscall_64+0xcd/0x490
[  199.091934][ T7373]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  199.097860][ T7373] RIP: 0033:0x7fc17d98e929
[  199.102371][ T7373] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  199.122000][ T7373] RSP: 002b:00007fc17e7c6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  199.130425][ T7373] RAX: ffffffffffffffda RBX: 00007fc17dbb5fa0 RCX: 00007fc17d98e929
[  199.138416][ T7373] RDX: 0000000000000003 RSI: 0000200000000240 RDI: 0000000000000003
[  199.146405][ T7373] RBP: 00007fc17da10b39 R08: 0000000000000000 R09: 0000000000000000
[  199.154385][ T7373] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  199.162387][ T7373] R13: 0000000000000000 R14: 00007fc17dbb5fa0 R15: 00007ffd7cb7cab8
[  199.170419][ T7373]  </TASK>
[  199.173635][    C0] vkms_vblank_simulate: vblank timer overrun
[  199.373374][ T7373] program syz.2.322 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  199.385767][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  199.392177][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  199.596906][ T7373] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  199.691361][ T7373] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  199.729569][ T7373] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  199.736307][ T7373] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  201.614877][ T5858] Bluetooth: hci0: command 0x0c1a tx timeout
[  201.779091][ T5858] Bluetooth: hci3: command 0x0c1a tx timeout
[  201.779115][ T5851] Bluetooth: hci1: command 0x0c1a tx timeout
[  201.779176][ T5851] Bluetooth: hci2: command 0x0c1a tx timeout
[  202.559613][ T7416] FAULT_INJECTION: forcing a failure.
[  202.559613][ T7416] name failslab, interval 1, probability 0, space 0, times 0
[  202.572768][ T7416] CPU: 1 UID: 0 PID: 7416 Comm: syz.0.332 Not tainted 6.16.0-rc4-syzkaller-00123-g4c06e63b9203 #0 PREEMPT(full) 
[  202.572812][ T7416] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  202.572843][ T7416] Call Trace:
[  202.572852][ T7416]  <TASK>
[  202.572863][ T7416]  dump_stack_lvl+0x16c/0x1f0
[  202.572916][ T7416]  should_fail_ex+0x512/0x640
[  202.572961][ T7416]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  202.573025][ T7416]  should_failslab+0xc2/0x120
[  202.573057][ T7416]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  202.573105][ T7416]  ? do_raw_spin_lock+0x12c/0x2b0
[  202.573200][ T7416]  ? ptlock_alloc+0x1f/0x70
[  202.573246][ T7416]  ptlock_alloc+0x1f/0x70
[  202.573287][ T7416]  pte_alloc_one+0x82/0x3a0
[  202.573316][ T7416]  __do_fault+0x320/0x490
[  202.573365][ T7416]  __handle_mm_fault+0x374c/0x5490
[  202.573418][ T7416]  ? __pfx___handle_mm_fault+0x10/0x10
[  202.573459][ T7416]  ? __pfx_mt_find+0x10/0x10
[  202.573509][ T7416]  ? find_vma+0xbf/0x140
[  202.573540][ T7416]  ? __pfx_find_vma+0x10/0x10
[  202.573577][ T7416]  handle_mm_fault+0x589/0xd10
[  202.573619][ T7416]  ? __pkru_allows_pkey+0x41/0xb0
[  202.573685][ T7416]  do_user_addr_fault+0x7a6/0x1370
[  202.573736][ T7416]  ? rcu_is_watching+0x12/0xc0
[  202.573776][ T7416]  exc_page_fault+0x5c/0xb0
[  202.573823][ T7416]  asm_exc_page_fault+0x26/0x30
[  202.573853][ T7416] RIP: 0010:rep_movs_alternative+0x33/0x90
[  202.573892][ T7416] Code: 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 bd 10 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 <48> 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb
[  202.573933][ T7416] RSP: 0018:ffffc90002ee7dd0 EFLAGS: 00050212
[  202.573957][ T7416] RAX: 00000000000000ca RBX: 0000000000000010 RCX: 0000000000000010
[  202.573974][ T7416] RDX: fffff520005dcfc8 RSI: ffffc90002ee7e30 RDI: 0000000000000000
[  202.574002][ T7416] RBP: 0000000000000000 R08: 0000000000000000 R09: fffff520005dcfc7
[  202.574020][ T7416] R10: ffffc90002ee7e3f R11: 0000000000000001 R12: ffffc90002ee7e30
[  202.574039][ T7416] R13: 0000000000000010 R14: 00007ffffffff000 R15: 0000000000000000
[  202.574077][ T7416]  _copy_to_user+0xbb/0xd0
[  202.574110][ T7416]  put_timespec64+0xb5/0x120
[  202.574149][ T7416]  ? __pfx_put_timespec64+0x10/0x10
[  202.574190][ T7416]  ? __x64_sys_futex+0x1e9/0x4c0
[  202.574235][ T7416]  __x64_sys_clock_gettime+0x1d3/0x270
[  202.574285][ T7416]  ? __pfx___x64_sys_clock_gettime+0x10/0x10
[  202.574351][ T7416]  ? rcu_is_watching+0x12/0xc0
[  202.574384][ T7416]  do_syscall_64+0xcd/0x490
[  202.574430][ T7416]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  202.574458][ T7416] RIP: 0033:0x7f64c1b8e929
[  202.574480][ T7416] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  202.574506][ T7416] RSP: 002b:00007f64c2a15038 EFLAGS: 00000246 ORIG_RAX: 00000000000000e4
[  202.574532][ T7416] RAX: ffffffffffffffda RBX: 00007f64c1db5fa0 RCX: 00007f64c1b8e929
[  202.574550][ T7416] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001
[  202.574566][ T7416] RBP: 00007f64c1c10b39 R08: 0000000000000000 R09: 0000000000000000
[  202.574583][ T7416] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  202.574598][ T7416] R13: 0000000000000000 R14: 00007f64c1db5fa0 R15: 00007ffcbdc6ab28
[  202.574634][ T7416]  </TASK>
[  203.852373][ T5851] ==================================================================
[  203.860516][ T5851] BUG: KASAN: vmalloc-out-of-bounds in hci_devcd_dump+0x142/0x240
[  203.868384][ T5851] Read of size 140 at addr ffffc9000e1b5000 by task kworker/u9:2/5851
[  203.876558][ T5851] 
[  203.878907][ T5851] CPU: 0 UID: 0 PID: 5851 Comm: kworker/u9:2 Not tainted 6.16.0-rc4-syzkaller-00123-g4c06e63b9203 #0 PREEMPT(full) 
[  203.878941][ T5851] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  203.878959][ T5851] Workqueue: hci0 hci_devcd_timeout
[  203.878998][ T5851] Call Trace:
[  203.879007][ T5851]  <TASK>
[  203.879017][ T5851]  dump_stack_lvl+0x116/0x1f0
[  203.879058][ T5851]  print_report+0xcd/0x680
[  203.879083][ T5851]  ? __virt_addr_valid+0x81/0x610
[  203.879122][ T5851]  ? hci_devcd_dump+0x142/0x240
[  203.879155][ T5851]  kasan_report+0xe0/0x110
[  203.879188][ T5851]  ? hci_devcd_dump+0x142/0x240
[  203.879226][ T5851]  kasan_check_range+0x100/0x1b0
[  203.879258][ T5851]  __asan_memcpy+0x23/0x60
[  203.879294][ T5851]  hci_devcd_dump+0x142/0x240
[  203.879329][ T5851]  hci_devcd_timeout+0xb5/0x2e0
[  203.879363][ T5851]  ? rcu_is_watching+0x12/0xc0
[  203.879394][ T5851]  process_one_work+0x9cf/0x1b70
[  203.879442][ T5851]  ? __pfx_process_one_work+0x10/0x10
[  203.879490][ T5851]  ? assign_work+0x1a0/0x250
[  203.879529][ T5851]  worker_thread+0x6c8/0xf10
[  203.879575][ T5851]  ? __kthread_parkme+0x19e/0x250
[  203.879608][ T5851]  ? __pfx_worker_thread+0x10/0x10
[  203.879649][ T5851]  kthread+0x3c5/0x780
[  203.879699][ T5851]  ? __pfx_kthread+0x10/0x10
[  203.879737][ T5851]  ? rcu_is_watching+0x12/0xc0
[  203.879763][ T5851]  ? __pfx_kthread+0x10/0x10
[  203.879801][ T5851]  ret_from_fork+0x5d4/0x6f0
[  203.879836][ T5851]  ? __pfx_kthread+0x10/0x10
[  203.879873][ T5851]  ret_from_fork_asm+0x1a/0x30
[  203.879911][ T5851]  </TASK>
[  203.879920][ T5851] 
[  204.032346][ T5851] The buggy address ffffc9000e1b5000 belongs to a vmalloc virtual mapping
[  204.040873][ T5851] Memory state around the buggy address:
[  204.046526][ T5851]  ffffc9000e1b4f00: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  204.054622][ T5851]  ffffc9000e1b4f80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  204.062706][ T5851] >ffffc9000e1b5000: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  204.070785][ T5851]                    ^
[  204.074877][ T5851]  ffffc9000e1b5080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  204.082961][ T5851]  ffffc9000e1b5100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  204.091053][ T5851] ==================================================================
[  204.099260][    C0] vkms_vblank_simulate: vblank timer overrun
[  204.107228][ T5851] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  204.114480][ T5851] CPU: 0 UID: 0 PID: 5851 Comm: kworker/u9:2 Not tainted 6.16.0-rc4-syzkaller-00123-g4c06e63b9203 #0 PREEMPT(full) 
[  204.126673][ T5851] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  204.136769][ T5851] Workqueue: hci0 hci_devcd_timeout
[  204.142046][ T5851] Call Trace:
[  204.145344][ T5851]  <TASK>
[  204.148292][ T5851]  dump_stack_lvl+0x3d/0x1f0
[  204.152935][ T5851]  panic+0x71c/0x800
[  204.156876][ T5851]  ? __pfx_panic+0x10/0x10
[  204.161324][ T5851]  ? mark_held_locks+0x49/0x80
[  204.166131][ T5851]  ? preempt_schedule_thunk+0x16/0x30
[  204.171539][ T5851]  ? hci_devcd_dump+0x142/0x240
[  204.176445][ T5851]  ? preempt_schedule_common+0x44/0xc0
[  204.181946][ T5851]  ? check_panic_on_warn+0x1f/0xb0
[  204.187106][ T5851]  ? hci_devcd_dump+0x142/0x240
[  204.191988][ T5851]  check_panic_on_warn+0xab/0xb0
[  204.196962][ T5851]  end_report+0x107/0x170
[  204.201314][ T5851]  kasan_report+0xee/0x110
[  204.205748][ T5851]  ? hci_devcd_dump+0x142/0x240
[  204.210627][ T5851]  kasan_check_range+0x100/0x1b0
[  204.215596][ T5851]  __asan_memcpy+0x23/0x60
[  204.220045][ T5851]  hci_devcd_dump+0x142/0x240
[  204.224835][ T5851]  hci_devcd_timeout+0xb5/0x2e0
[  204.229723][ T5851]  ? rcu_is_watching+0x12/0xc0
[  204.234532][ T5851]  process_one_work+0x9cf/0x1b70
[  204.239512][ T5851]  ? __pfx_process_one_work+0x10/0x10
[  204.244931][ T5851]  ? assign_work+0x1a0/0x250
[  204.249565][ T5851]  worker_thread+0x6c8/0xf10
[  204.254214][ T5851]  ? __kthread_parkme+0x19e/0x250
[  204.259265][ T5851]  ? __pfx_worker_thread+0x10/0x10
[  204.264437][ T5851]  kthread+0x3c5/0x780
[  204.268542][ T5851]  ? __pfx_kthread+0x10/0x10
[  204.273171][ T5851]  ? rcu_is_watching+0x12/0xc0
[  204.277971][ T5851]  ? __pfx_kthread+0x10/0x10
[  204.282596][ T5851]  ret_from_fork+0x5d4/0x6f0
[  204.287214][ T5851]  ? __pfx_kthread+0x10/0x10
[  204.291847][ T5851]  ret_from_fork_asm+0x1a/0x30
[  204.296759][ T5851]  </TASK>
[  204.300148][ T5851] Kernel Offset: disabled
[  204.304497][ T5851] Rebooting in 86400 seconds..