last executing test programs:

24.010038833s ago: executing program 0 (id=1955):
ioprio_set$auto(0x3, 0x0, 0x4b34)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x0)
mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x1000, 0x2)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/extra\x00', 0xa142, 0x0)
r0 = open(&(0x7f0000000040)='./cgroup.cpu/cgroup.procs\x00', 0x101840, 0x33903f3ada88772b)
msgctl$auto_MSG_STAT(0x91b, 0xb, &(0x7f0000000140)={{0x8, <r1=>0x0, 0xee01, 0x8, 0x38a2, 0x40, 0x7}, &(0x7f0000000080)=0x7f, &(0x7f00000001c0)=0x8, 0x0, 0x0, 0x80000000, 0x8, 0x7fffffff, 0xd, 0x400, 0x3, @raw=0x2})
setuid$auto(r1)
openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000200), 0x221400, 0x0)
read$auto(r0, 0x0, 0x1)
write$auto(0x3, 0x0, 0xffd8)
close_range$auto(0x2, 0xa, 0x0)
socket(0x2, 0x1, 0x106)
set_tid_address$auto(&(0x7f0000000300)=0x3)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/module/kvm/parameters/nx_huge_pages\x00', 0x80302, 0x0)
mmap$auto(0x0, 0x6, 0x100000004000de, 0x9b72, 0x2, 0x9)
r2 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x40802, 0x0)
read$auto(r2, 0x0, 0xb4d3)
openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000340), 0x4180, 0x0)
write$auto(0x3, 0x0, 0xffd8)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/bus/input/handlers\x00', 0x200, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
clone$auto(0x9001, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x6)
capget$auto(0x0, 0xfffffffffffffffe)
mmap$auto(0x0, 0x400008, 0x200, 0x9b72, 0x2, 0x8000)
r3 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC1\x00', 0x692081, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r3, 0xc0045516, &(0x7f0000000040)=0x5)

18.370944753s ago: executing program 0 (id=1966):
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
socket(0x2, 0x801, 0x100)
preadv$auto(0xffffffffffffffff, 0x0, 0x7, 0xbbf, 0x69bf)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
r0 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cec8\x00', 0x101901, 0x0)
ioctl$auto_CEC_ADAP_S_LOG_ADDRS(r0, 0xc05c6104, &(0x7f0000000100)={'\x00', 0xffff, 0x6, 0x2, 0x9b4, 0x9, "ce7009002ce100", '\x00', "0201ccb7", '\x00', ["00000f0008b330ac007abfc1", "70d900001100", "0800000000000000000000ec", "00deff1000"]})
connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x3, @empty}, 0x51)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r1, &(0x7f0000000300)='/d\x00'/12, 0x100000a3d9)
sysfs$auto(0x2, 0x10000000000000e, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001080)='/sys/module/i915/parameters/mitigations\x00', 0x80302, 0x0)
sendfile$auto(r3, r3, 0x0, 0x7ffff000)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x28, 0x801, 0x0)
connect$auto(0x3, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2711}, 0x51)
socket(0xf, 0x3, 0x2)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8003)
mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0)
chdir$auto(&(0x7f0000000000)='}[,&*}\x00')
mkdir$auto(&(0x7f00000003c0)='}[,&*}\x00', 0x6)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$auto_VDPA_CMD_MGMTDEV_GET(r2, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x20, 0x0, 0x4, 0x70bd25, 0x25dfdbff, {}, [@VDPA_ATTR_DEV_FEATURES={0xc, 0x14, 0xff}]}, 0x20}, 0x1, 0x0, 0x0, 0x240400c1}, 0x8041)
open(0x0, 0x14d27e, 0x72)
socket(0x1e, 0x1, 0x0)
fanotify_init$auto(0x5, 0x2000000000002)

18.150031336s ago: executing program 2 (id=1968):
fanotify_init$auto(0x200, 0x5)
sendfile$auto(0x1, 0x3, 0x0, 0xc01)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
recvmmsg$auto(0x4, 0x0, 0x7, 0xe, 0x0)
recvfrom$auto(0x4, 0x0, 0x101d0, 0x3ffffd, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x2c201, 0x0)
futex$auto(0xfffffffffffffffe, 0xb, 0x47, 0x0, 0x0, 0x2)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
pipe$auto(0x0)
dup2$auto(0x5, 0x4)
splice$auto(0x4, 0x0, 0x2, 0x0, 0x80004001, 0x9)
write$auto(0x6, 0x0, 0x100000001)
prctl$auto(0x43, 0x17, 0x0, 0x400000000000000, 0x0)

16.733134969s ago: executing program 2 (id=1973):
r0 = socket(0x28, 0x1, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/ipv6/conf/tunl0/max_desync_factor\x00', 0x40200, 0x0)
write$auto(0x3, 0x0, 0xfdef)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = open(0x0, 0x22240, 0x155)
getsockopt$auto(r0, 0x0, 0x6, 0x0, 0x0)
r2 = getsid$auto(0x0)
socket(0x29, 0x5, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000340)='/dev/v4l-subdev2\x00', 0x80000, 0x0)
r3 = socket(0xa, 0x2, 0x3a)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x2, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/devices/virtual/bdi/43:320/uevent\x00', 0x0, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
socket(0x11, 0x80003, 0x300)
socket(0xa, 0x801, 0x106)
setsockopt$auto(r3, 0x29, 0x4b, 0x0, 0x10000110)
msgctl$auto_IPC_SET(0x8, 0x1, &(0x7f0000000440)={{0x6, <r4=>0x0, 0xee00, 0x101, 0x4}, &(0x7f0000000100)=0x8, &(0x7f0000000180)=0xc0, 0xfc75, 0xffffffffffffff01, 0x5, 0x4, 0x7, 0x1, 0x0, 0x1, @inferred, @raw=0x4})
waitid$auto_P_PIDFD(0x3, r1, &(0x7f00000004c0)={@siginfo_0_0={0x5, 0xfffffff7, 0x401, @_rt={r2, r4, @sival_int=0x7}}}, 0x40, &(0x7f0000000540)={{0x5, 0x2}, {0x6, 0x8}, 0x1, 0x8, 0xe, 0x9, 0x6, 0x4, 0x6, 0xe, 0x7, 0xb4b, 0x0, 0xf20, 0x101, 0x3})
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/block2mtd/parameters/block2mtd\x00', 0x601, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f0000000140)="e7696e5891a9bccbf2a814c2b1c2da6a4642e71e423e55bb3bdfb80fb3496c6bac2c4769", 0x24)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000000), 0x400, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0xc7f16bff2a10ba01, 0x0)
write$auto(0x3, 0x0, 0xfffffdef)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000040), 0x200000, 0x0)

15.248187065s ago: executing program 0 (id=1975):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x1, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
socket(0xa, 0x3, 0x6)
ioctl$auto(0x3, 0x8936, 0x91) (async)
ioctl$auto(0x3, 0x8936, 0x91)
unshare$auto(0x8000400) (async)
unshare$auto(0x8000400)
syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000002500), 0xffffffffffffffff)
syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000080), r0) (async)
r1 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000080), r0)
msgctl$auto_MSG_INFO(0x8, 0xc, &(0x7f0000000140)={{0x8, <r2=>0xee00, 0xee00, 0x9, 0x2, 0xffffffff, 0x8001}, &(0x7f00000000c0)=0x4, &(0x7f0000000100)=0x1, 0x7, 0x1, 0x5, 0x101, 0x9, 0x1, 0x1000, 0x3, @raw=0x6})
ioctl$auto_XFS_IOC_ALLOCSP(0xffffffffffffffff, 0x4030580a, &(0x7f0000000200)={0xe3, 0x7, 0xf, 0x8, 0x1, <r3=>0xffffffffffffffff})
shmctl$auto_SHM_UNLOCK(0x1, 0xc, &(0x7f00000002c0)={{0xcf, <r4=>0x0, 0xee01, 0x9, 0x8, 0x3, 0xff}, 0x5, 0x5, 0x1, 0x3, @inferred=0xffffffffffffffff, @raw=0x101, 0x3, 0x0, &(0x7f0000000280)="191e9c20bfc8d30d30ad91c93c6e9bbd0f3d9e05ebcc646f140f3a8b0c89ce0ceec713c0fb876fba501180376281e181f6da1dfeff90844c", &(0x7f00000003c0)="9a7d7fca1fb677181eab30ee69040bf1e470d443c710f3105ddfb23eaca554d31e7a32c26e0ff31b58c4c61894f0cd309cc6c79e0da2e1e96ebe497a2329dba0b4db598dc8fee4bb6f55dfbf67bea1f21dfccde0b7c75d2b421bb5c3a1674ffba33f59363cb00e668765c2be66e0a563cb35f82987d0f74d795c62076ef3bd69b7b0940baf9bf7413d4b6989718d4c854995c3389f9d4abc0a87c3eb101a63848c2eddaa92cf2ae67f06042966e8bf514d2902b68f1214fef07c94118b41f74fffe5d274e613efc08693308fef54121a73a261877a9439a2b24dac648fbd54da4a287538fd"})
sendmsg$auto_OVS_CT_LIMIT_CMD_GET(r0, &(0x7f00000004c0)={&(0x7f0000000040), 0xc, &(0x7f0000000340)={&(0x7f0000002640)={0x1bb8, r1, 0x10, 0x70bd2a, 0x25dfdbfc, {}, [@OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x4b5, 0x1, 0x0, 0x1, [@typed={0xc, 0xca, 0x0, 0x0, @u64=0x9}, @typed={0x4, 0x15}, @nested={0xc1, 0x5, 0x0, 0x1, [@generic="91cdc50af2dce46e1ff9280f7210600f33daf97d47f5d36eadbc59b0995c48e119f08e37a966ae87f959617cebd0a0ea46104bb111e9647da52d1e4ef73f19ca02a894fc4eb59c152209", @nested={0x4, 0x142}, @generic="6fe11c39f62ea5a62afcf698e77b8af86e830b829e056c6a3b2f26c81640841862bb5b6e978f80ad09b5da483aae5e73f00f0e24f7123637df9aa8", @typed={0x7, 0x14f, 0x0, 0x0, @str='\\-\x00'}, @generic="50c01555421a3b398292893651f9654a82782d6add1621ecf14c68480edbd08e9892b5bdecb0d89b653c4aa1"]}, @nested={0x9e, 0x99, 0x0, 0x1, [@generic="88bde044af00be98b3d007e12788684f0d46896c6c3b76f1b678928d1d2af06e1faaaf68654fb0b54f169da115ef706cda36463d21164dfc9c06290cd57002076d9f88c9fa61bae874c5c52f46f8e1b02b28eeb7048c8e58dea1abf26074f989f7e7f57d7a3d6be50eb3eee8d0ec2e015eb6c8222ae06ff3e8224f8737825534539546c24d2c", @typed={0x14, 0x5b, 0x0, 0x0, @ipv6=@loopback}]}, @nested={0x4a, 0x69, 0x0, 0x1, [@generic="eaae1f04403e94fb48be79dcfaa94862f049e4aeee0853b46ca62b605031b8e49409a74c6b93075850d90316236d0bcb9bb9348a977304b5476f", @typed={0x9, 0x63, 0x0, 0x0, @str='#/+\\\x00'}]}, @nested={0x1f3, 0x0, 0x0, 0x1, [@nested={0x4, 0x40}, @generic="3af4da993bc76e87482429f6a8ada20fc0c6ab72ae42dbc5b0cb16ceaee992a482a660b465c183295f9102e96720f90c8be4762d81f7093827b062fe3babd477149dbcdb434fd0e8fcfb56df461dd2782ee3b3997e2add3f70ad962c43ae087794e29f28a17ad23b4be2b35944bbaedbdf0ae5ccd6c24a39527f53f8562981b5ca4a07c143031cfdc6480d14f28eec68a5b4227ccc0e586ecded6a2d47a281721f9ec817e018cc6efc7f585ffef153762bb0465d85f91bafa277c19d3e0298fc09e36d27c5b0439d7a103a32554671eb91ad65794ea73cd29003de3fe46d379fcf3ae5c2bb6ebbc8af4d7655d4113d35c2c8f0446688fd", @generic="e2d81c061cba0bdb9c9182cfa04716ff44aac38735eb17388cc10e1df3be475e7a6c10e3e624a249fdfc6c138d5d3ede35f3e4d0d583f1eaef6e8f364f1cbc154fee9a40bc5f49d5867513ec405a569935c2f3528568fd9d5b9c20f2508e80afcb5dc16da63bc73c293d05eb665430262628ba61d9f9e6b38c4e9106ca82f19bf950fb5aab1f47ba402b09f7d99836ee867d052c9a84bc37e9908b3e64d6e53b0dd2433886ce18d1dc1133d09be7c7ac8e151fa7177bfb1786bd945b5538530a334747cedd817789660e7fafda8aa28a9a10257584ed305c79b4ea12dd2f61ade9d8908542bf5f86811b704089599cd3", @nested={0x4, 0x30b1}]}, @generic="0b2be08e4a37eb59dea44f7e48666cecc4c0309a291c0cda1e579584c79d58582203287b43a88b324c13c1db99729cf102490f499d345b268afd6de8dfe43f0045416946e9ae09c8b597ac4a50dc3d4b7b4adf592e14c1258ce4854e2f4ac05cd83697648e7999b3aaa5740a637d670172afd780e0b0162046f5d5124c055ba04668f20f14302914f3856071f5673704bde7c2231330004899edc129d9a3ae2278132ddf5c2660d23c1a54ef16b0b5b1cb6a5a3c110f0b945dd8d2c4281fab5d9b3f27386696a01b06647802f6aabc8c5d563cd0cae82c0af683f13aa72b4f", @generic="bcb70610a4786fc2dc677dede87382034e2ac8af574706004b12f8199b8b"]}, @OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x127, 0x1, 0x0, 0x1, [@typed={0x8, 0x91, 0x0, 0x0, @uid=r2}, @typed={0x8, 0x127, 0x0, 0x0, @ipv4=@private=0xa010101}, @generic="f7468fb4f8285e31ec3e63e21fa02d54b10d8a33fbaf636e87997d5be014af42a14c7e15331f30eba70f9e9adbc2965178f1da087046a3664032ba8692339d21055feae9d02d02e9883b14575fd3ae15f277cc895f34aa621f1b9073881ed42be78622c8aafa1bddf6df86410614ee4b05ba5094371fc5af7604d61c1ff32a7315b2118915b13d769c79afa6eb168ee93ca24f34e960b4339d64fe2aa159d60474ccc90ed599be0d284406eee1321eb512b588d90c925910b20c9381019eaaff3cab4da636e0ef006d28f25cf3206c5e", @generic="d117f32a2f92169efa0cfb19d3f6acd918a7f6cb05504918ffbb6fa9dc7385fc1215885de3800d0aeff14eca8d7822fa0db8b9", @typed={0x8, 0xe1, 0x0, 0x0, @ipv4=@remote}, @typed={0x4, 0xb9}, @typed={0x4, 0xa1}]}, @OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x150a, 0x1, 0x0, 0x1, [@nested={0x2b8, 0x65, 0x0, 0x1, [@generic="a1b28850f7b98687278f98df39f9c24bc8ddf8e55d2bfd7bc074c8543be519af5e8fac7365aaabb809519d62c2834e609a4fa706217bb032f9da311cc5a3fdd124aad1492fd044d3dca8e04813d6d1b0f138c17c48dd91a3dd27a9e2c14b7599f88c05b349e13e93e8ef654884263dacea86c6dba962859807e2555e20072995b8d604d542b158b90cde94fab7458a072ca38e73295e7bcdcb3a0d5be485471a1be4abc1ed0492ac92814c2340892351985ff985bd6222659ac4dbb122d8e231224ee2cc9f95729199021e04870c654fe7ff8bbc1f02110259c44149cf302fc2c631eb3f1b0f61a42f89c3", @generic="8388392419869feee5fe4b260f2d2ac1688813c8cad10f5ac0cd686a6b96c55fae505abd9d968fe5aedcc1023580af30405100c00657174a6a615ee015f6a9ecf2a4e2593e0fe1ec442914e9664ca463d0cc76cd6ed8f1c88b4eccd49cc76e3e95d8da94f174", @nested={0x4, 0x72}, @nested={0x4, 0x39}, @generic="2258c1af1668fdce07710e3a746bac5f749480e1b99f410bd90df743aa26c17929f0f5c985b8b52ed52cd2be6dcdf89b914254cceac6d72b74b7519b442028974f04", @generic="8a6990d733da2328b456ed5f6ef8b893e6a729537bf7fa67348d6b0b2fe13cdd51a105129ba1c904c3b8b2f61ddf7abc8d2a045f4ce4aea8c4e36393de24166eae26ff9f3c85dd6671125da0e11ae58bf037fdfe0795b90a9e46649a295127b58f68cbbc59b936233e81a85e1376bcfef55fa19fe4bbbfa8806dc94afca2ddbe11ec40718b4f926149194a0e6f8301347501c22cbef9c4bb43dd53e1ef8f07a18f1940617112dcc4c129368a63e5e82e35f62b8ff24f16772c64fe9992a7c3f0634bda1ac391363e116320d1cfcc2659c1200620a4d4d1bec2cc47af1c9ba25d69d13be60a29bde6a8f8e524fa39249ac98c92d6b5", @typed={0x8, 0xc4, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x1, 0x0}}, @typed={0x8, 0x5e, 0x0, 0x0, @pid=r3}, @nested={0x4, 0xb7}, @typed={0xd, 0x54, 0x0, 0x0, @str='ovs_flow\x00'}]}, @typed={0x1004, 0xd9, 0x0, 0x0, @binary="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"}, @generic="867f281c15b73afdced88c32609456f1cca924909f28ea5a8b9ad747293efede647fdaf0f4834f8dc34e8c362b90eef0a1e72ed67c36deafb5bc0ca18d89552a725c1765e5b1a47385dc8a96a40683c2fad5189a1b03241ab594f7870c014648cd9c5c86dbc1e42cb1991ccede52e8914bd8796c0f85dafec19b49bba840ee4e69d033cce37ddf3a08c60cdc7cf1547bd34d6b6a25528a5ee4cd318810f93f56a67e67aad0a3feee606c4f6b71cafe891b994faef6caeaf1478fcc08a153fd35ce72011e01fda909d9876e44e7d9f04d3550d9d6287efe414e7a573b", @generic="6495f5f601266376727368c45f4cb1c8e6a717962ed844c65e8c20874bfacc4007889f60c21ae827a0781fc060fadb3d86c4847395abc461954c1937781d146b0546653857844430d03b465981033264dde0", @typed={0x4, 0x87}, @nested={0x118, 0x103, 0x0, 0x1, [@generic="bd0234667875d5f5963d7db2b9156ba407930316ad71ec9f92e38a6fae24971a8df8083e8056931b477f82dbffec9fabaf9f561bd09f8f0dec0a018994b18ba5c7e946aa9d96acfb8f526b", @generic="afb6b8ddbc40fe6213856a27a168ff763cedca37c2a2fc18b9ab005bf5f7c770d76a1711b7fa00217ab23e20db85760c2acd415e28f909a1b8403003953edeefe87dc094663da11fa9ba64692ff3c9ff5ec010bbd9b8fad710def8ecbc91b0251282235b7ee3301c29ec8c26d71b64e5c7b00ebb16fdd224c5124a07835744f9c4cc6386e82a59eb4691f5da094a6eddc4bb7bcb06d0d19ce73e6a76fb55841ad77812b90dc4c35ef0ba1e5de33457746df260eb945c6c1e9ddf368acafcf462a78b1175debae5a191"]}]}, @OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0xc, 0x1, 0x0, 0x1, [@typed={0x8, 0xff, 0x0, 0x0, @u32=0x7}]}, @OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0xac, 0x1, 0x0, 0x1, [@typed={0x8, 0xa1, 0x0, 0x0, @uid=r4}, @typed={0x5, 0x43, 0x0, 0x0, @str='\x00'}, @nested={0x10, 0xd1, 0x0, 0x1, [@typed={0xa, 0xea, 0x0, 0x0, @str='-\x1c!\\\x8e\x00'}]}, @typed={0x14, 0x20, 0x0, 0x0, @ipv6=@empty}, @generic="3d23ec26d83fe6e5572287284fca862b74d7a596fa5e729994d1cb9d7fa8bed1d0044619eed6ff20551c90ce23d59fc542c1e02bbe4bb5703ce08126275079548f86ea2c17b958d564297d3932e77634681d3794fdcb4dd19433db1a2800822d16a14f290c7f2b99b2b85cea5d22a8f16833a26f"]}]}, 0x1bb8}, 0x1, 0x0, 0x0, 0x80}, 0x0)
sendmsg$auto_OVS_FLOW_CMD_SET(r0, &(0x7f00000025c0)={0x0, 0x0, &(0x7f0000002580)={&(0x7f0000002600)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010628bd7000fe018015001f0400000000000040bda82b9039d5e60f757f00000004000800"], 0x34}, 0x1, 0x0, 0x0, 0x4}, 0x4010)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio1\x00', 0x20b42, 0x0) (async)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio1\x00', 0x20b42, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/graphics/fbcon/cursor_blink\x00', 0x0, 0x0)
r5 = open(0x0, 0x149443, 0x14)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
write$auto(0x3, 0x0, 0x100082) (async)
write$auto(0x3, 0x0, 0x100082)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0) (async)
io_uring_setup$auto(0x6, 0x0)
migrate_pages$auto(0x0, 0x8, 0x0, &(0x7f00000001c0)=0x7b)
r6 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80502, 0x0)
ioctl$auto_SNDCTL_DSP_CHANNELS(r6, 0xc0045006, &(0x7f00000001c0)) (async)
ioctl$auto_SNDCTL_DSP_CHANNELS(r6, 0xc0045006, &(0x7f00000001c0))
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
move_pages$auto(0x0, 0x1002, 0x0, &(0x7f0000001140), 0x0, 0x2)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000006240)=ANY=[@ANYBLOB="10000000", @ANYRES16=r8, @ANYBLOB="1b0026bd7000fddbdf2503000000200003801c00018015002d800800b500", @ANYRES32=0x0, @ANYBLOB="894f844ea904ebea190000000400038004000280"], 0x3c}, 0x1, 0x0, 0x0, 0x4004040}, 0x4844) (async)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000006240)=ANY=[@ANYBLOB="10000000", @ANYRES16=r8, @ANYBLOB="1b0026bd7000fddbdf2503000000200003801c00018015002d800800b500", @ANYRES32=0x0, @ANYBLOB="894f844ea904ebea190000000400038004000280"], 0x3c}, 0x1, 0x0, 0x0, 0x4004040}, 0x4844)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000000), 0xffffffffffffffff)

15.122361712s ago: executing program 2 (id=1976):
unshare$auto(0xa26e)
r0 = openat$auto_ftrace_event_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/events/vmalloc/alloc_vmap_area/filter\x00', 0x400000, 0x0)
openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fb0\x00', 0x2, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
getrandom$auto(0x0, 0x6000000, 0x3)
mmap$auto(0x0, 0x20100003, 0x4000000000df, 0x91, r0, 0x300000000003)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/net/bond0/bonding/primary_reselect\x00', 0x1e2142, 0x0)
sendfile$auto(r1, r1, 0x0, 0x7fff)
openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/numa_maps\x00', 0x500000, 0x0)

13.397530402s ago: executing program 0 (id=1979):
r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/rt_acct\x00', 0x840, 0x0)
read$auto_proc_iter_file_ops_compat_inode(r0, &(0x7f0000000180)=""/138, 0x8a)
unshare$auto(0x40000080)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, 0x0, 0x100000a3d9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
msgsnd$auto(0x1, &(0x7f0000000040)={0xfffffffffffffff8, 0x2}, 0xbde, 0x5)

12.87943688s ago: executing program 2 (id=1981):
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='./cgroup/pids.peak\x00', 0x8000, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000040)=""/194, 0xc2)
write$auto(0xffffffffffffffff, 0x0, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000e3d9)
mmap$auto(0x0, 0x9644, 0xdf, 0x9b72, 0x2, 0x2d4a29c0)
pivot_root$auto(0x0, 0x0)
open(0x0, 0x7ffd, 0x12)
kexec_load$auto(0x9, 0x0, 0x0, 0x1003e0000)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0x2000040080000000, 0xe)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
mmap$auto(0x7f, 0x82020009, 0x3, 0xeb1, 0xffffffffffffffff, 0xfff)
connect$auto(0x3, 0x0, 0x10)
unshare$auto(0x40000080)
r3 = socket(0x2, 0x2, 0x1)
getsockopt$auto(r3, 0x1, 0x4, &(0x7f0000000040)='/dev/cec27\x00', &(0x7f0000000080)=0x9)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x180b01, 0x0)
msgctl$auto_MSG_STAT_ANY(0x3, 0xd, &(0x7f00000003c0)={{0x7fff, 0xee00, 0xffffffffffffffff, 0xffff, 0xa8, 0x80, 0x9}, &(0x7f0000000340)=0xb, &(0x7f0000000380)=0x2, 0x5, 0x1, 0x3, 0x0, 0x8, 0x5, 0xfffc, 0x8c2, @inferred=0xffffffffffffffff, @raw=0x1})
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x3, 0x3)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
mq_notify$auto(0x4, 0x0)
syz_clone3(&(0x7f00000006c0)={0x20820ff7f, &(0x7f0000000440), &(0x7f0000000480), &(0x7f00000004c0), {0x2c}, &(0x7f0000000500)=""/84, 0x54, &(0x7f0000000580)=""/248, &(0x7f0000000680)=[0x0, 0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0], 0x6, {r2}}, 0x58)
msgctl$auto_MSG_STAT(0x3, 0xb, 0x0)
sendmsg$auto_NL80211_CMD_START_SCHED_SCAN(r3, &(0x7f0000011200)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, 0x0}, 0x4020004)
setresuid$auto(0x2, 0x7, 0x8080)

8.632227453s ago: executing program 2 (id=1997):
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
io_uring_setup$auto(0x59, 0x0)
socket(0xf, 0x3, 0x2)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000440), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000002c0)={'veth1_to_bond\x00', <r2=>0x0})
sendmsg$auto_NETDEV_CMD_QUEUE_GET(r0, &(0x7f0000001640)={0x0, 0x0, &(0x7f0000001600)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000116564fa71000020000095fed341", @ANYRES16=r1, @ANYBLOB="010026bd7000fedbdf250a000000080003000000000008000200", @ANYRES32=r2, @ANYBLOB="0800010000000000"], 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x810)
bpf$auto(0x0, &(0x7f0000000100)=@link_create={@prog_fd=0x1, @target_fd=0xa, 0x3, 0x8, @tracing={0x4, 0xffffffff}}, 0xfbf)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000001440)='/dev/ptywd\x00', 0x82402, 0x0)
ioctl$auto_TCSBRK2(r3, 0x5409, &(0x7f0000001480))
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xc)
bpf$auto(0x1, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xc)

8.628064774s ago: executing program 0 (id=1998):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0)
write$auto(r0, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
write$auto(r0, &(0x7f0000000340)='0\x00\xa6\xcc\r\x91UU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\x1c\xd2\xb9t\x1e\x1b\x9b \xdd\x83\xbd\x8d\x82g\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xa4\xa9z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1kk\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xac\x7f\x00\x00\x00\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeUV\x11\xcb\x84\xce\xa9K[\x04\n\xdb\'\x1f\f\xac\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd10!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15r\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\x04d\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbbt\x0f\x18\x1d\xc0\xce|Et\xb1\xa6\xd3\xfc\x06\xfb\xdf\xf2X\xaaz\a\x1b\xb8\xa9IC\x90h\x82G\x1f\xcd\x8eR\xc1\xa4!\x19\x01\x96\xfe\x15\xa1-[}G5\xf1\t\xc0\xeb\xa9\x86\x8d\xde\xadz\x8e\xee\x97\xb4\x80\xe5\x03\'\xba#\xe3n\xdc\xd9\x03\v\x10\a\t\xad\xe7\x9e7\xca\xd1 \x8fer\xf2&K\n\xc5\xccm\xe87r\x80\xa3xC\x1e\x9c U\xf3\x83L\x01\xbe\x97\x1c\x86=\xc2\x15}\xcf\x16\x1f\xe7\x1fTR\b\xc4\xe3\bR\xcb\xc48\xf4\bY\x85\xff[jB\xdc\xe0D\x0e\xfc|\x89\x03<n!\xcb\ag\n\xb3X\x14\xe9}<^\xa3M\xf1hn\xfe\xb1W\v\x98Tt\xcc\x82L\x95\xfd\xcc\xfe\x86!\x00\xebKS\x19/\xddKi\x85\xd5\x7f^r\x8f\xcb\x19C\x11\xd4', 0xae7)
mmap$auto(0x3, 0x2020009, 0x1fffffffff, 0x19, r0, 0x8000)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
close_range$auto(0x2, 0xa, 0x0)
socket(0x18, 0xa, 0x1)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r1 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x82000, 0x0)
r2 = socket(0x28, 0x1, 0x100)
mmap$auto(0x0, 0x400008, 0xdf, 0x8b72, 0x2, 0x8000)
r3 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f00000011c0)='/dev/snd/pcmC1D1c\x00', 0x0, 0x0)
ioctl$auto_SNDRV_PCM_IOCTL_HW_PARAMS_OLD2(r3, 0xc1004111, 0x0)
getsockopt$auto_SO_RCVPRIORITY(r2, 0x2, 0x52, &(0x7f00000001c0)='/dev/virtual_nci\x00', &(0x7f0000000200)=0x7)
pread64$auto(r1, 0x0, 0x7fb, 0x400)
socket(0x1e, 0x1, 0x0)
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket(0x2, 0x1, 0x106)
accept$auto(0x3, 0xffffffffffffffff, 0xffffffffffffffff)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xa, 0x8fd6, 0x400000000000948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x5, 0x3, 0x87, 0x9, 0x1, 0x2032]}, 0x0)
write$auto(r4, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x5f, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x1000]}, 0x0)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
inotify_init1$auto(0x403)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0x10ffff}, 0x2)

8.479340173s ago: executing program 2 (id=1999):
ioprio_set$auto(0x3, 0xee00, 0x4b34)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_trace_options_core_fops_trace(0xffffffffffffff9c, 0x0, 0x121082, 0x0)
openat$auto_urandom_fops_random(0xffffffffffffff9c, 0x0, 0x40, 0x0)
socket(0x10, 0x2, 0xc)
write$auto(0xffffffffffffffff, 0x0, 0xfdef)
ioctl$auto_I2C_SLAVE_FORCE(0xffffffffffffffff, 0x706, &(0x7f0000001a80)="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")
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty45\x00', 0x201, 0x0)
write$auto_tty_fops_tty_io(r0, &(0x7f0000000580)="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", 0xfdef)
mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x1000, 0x2)
r1 = clone$auto(0x9001, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x6)
capget$auto(0x0, 0xfffffffffffffffe)
mmap$auto(0x0, 0x400007, 0x200, 0x16, 0x2, 0x7ffe)
r2 = openat$auto_ctl_device_fops_user(0xffffffffffffff9c, &(0x7f0000000100), 0x20082, 0x0)
write$auto_ctl_device_fops_user(r2, &(0x7f0000000340)="a504ff4c280e43904055ceb3bc98cf2af453126b06d1f8b678ad4700b35e33bf24e0c6269dd4fcfeafaacd781a0ee63a0f9cf51e53d742c6cd3e1a4531a69c151e3714d2418d3a55d79a314e8309e48778a229eef16577bd021ce7b48a29a4e1c32f5f0c3393287d", 0x68)
madvise$auto(0x0, 0x2000040080000004, 0xe)
r3 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000001640)='/proc/self/mem\x00', 0x401, 0x0)
write$auto_proc_mem_operations_base(r3, &(0x7f0000001680)="a7", 0x80000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
newfstatat$auto(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0xffffffffffffff00, 0xf, 0x1, 0x0, <r4=>0xffffffffffffffff, 0xee01, 0x0, 0x7, 0x4, 0x3, 0xffffffffffffffff, 0x4, 0x0, 0x4, 0x3, 0x5, 0x7}, 0x80)
shmctl$auto_SHM_UNLOCK(0xfa7, 0xc, &(0x7f0000001180)={{0x101, r4, 0x0, 0x8, 0x7, 0x4, 0x50}, 0x5, 0x6f02, 0xf, 0xff, @inferred=r1, @inferred=r1, 0x8, 0x0, &(0x7f0000000100)="73a50fadd06360d5f152ae93e1a98051343e12fe66f45ad6cf204f1de6c093fc0eb62fff1c611b457109dee1087e9aa87234dab124a0dafc907cf698fcc06bf2e71d7a5a1c62d40902d3d39647cac7c708a4458e0bc0502a48416aa94e80ad1614b3735e2c0be6cfe70fdce1d16bee4a49e350309283b6af72f55dede9edec1595bd017df866ffa4ef208ace290e4dfd83b5a3c15ad439d7aacbd325640ea0249c72f468b105d5351d39e46eecd22c7a955c295d518c540db6117107c3fbbed6eecb99482944e49e8829fd8a1f9952e734ff714e6bc1e870d79ebf18b600635cebb1cc4e6f6ba906f5a3493c9dfbb71872e8fc3ba81b1766f2eab711cf871d3baa423ba56f8bc9afa4f0019ca5c5630e9c0408f910723aa4ec71879a64a35fd22d5d19133881c61416ce3a2e23ff7febb1eac4d1c4297b24e2c2d255d0b0b899a6e564c16d71ff528af04910ee4ddadc4e222c1d8995a3d1a143e7a58a7200e6b040f1720f97af7ca0cb50aec338db65e67cabfaa5406b4099c8cc5ee4b9877037a34af892c7d0b5bb8a53e5d87d1b8bfd18949b04a303107b71b420b77d2bf7547bba61faa4e11ea8ed5a8c8060565c9a8b054ed96d38029e7414f735ad3c3272249b66a62fd009e6ccf1cbd6d5fc9b107c3115bd91d769c79f93ee2d67ddc55315c1ee44a996191b7f5f97bb783b82e8852ae5b20b0a543a43e23862c1f68d849ca7934a39b7d5af647519202ee027f30ca17591e8397d08049c0c84923b3dbb9b17948b31c0fdba0fb95b54f4944e29f7cabe88b9315bc8f39a305e493b3a7b9a6872cda3fe900e9effefd7f8681bfc00075bc6df995d9cf0377b9dad6b4e825dcffd80e96b95244fd7c94e0ac43424c23f58666a6e7e9df0e8366e5634e91c157bc75cc085dc4a78a9d5dd7f61faa512546e986dc36131b12250a5446f02a87872b1fed8ad06e44e07fceb7e45349b990ac6214bcf29601296a90d2d766a0f0de93159c03d20127b55e56324f88515c3542dea5ddf43fe43b9dab9c2ea925911fa2a7bbd35c68a516dbcfd7a65617bf7d71cc37d8041e5efa4c4a65c9dd7f5dceddbeb8740278d1fb1ce0b8f3b8beaadfaf9209f466ee7216b3814de04cef28d54caba7687c2a7068fbba5d779703d2cea835673a2989c7a28705cb85180fff5453a2a31c026ff1130372c1661ad2378d6118ee409f17ac5afcf76f533135d37a576e68f8e3d4e9d8cdc4000bc07528a56e06fbb8d5707acea3c6dadddf1913ed678d92d7e844dd71f0c36ee42e6d4e0e640f0d8e4689f1ccd7a85951908df09d3c2df98c04e517bc1109e8020bd24d595fc47a2aa4e4accf3916feb64f5748d0b195ed0c770f5b1c15ae2e8935de7ba088e72c500d6e8dfd93a9eea9430295fbbe7f5bb129ace52299258d44de8aaeeadfece7eceb0373e71253a2971b9dc3658d2c0a59c292e3f7c2424fcb83763fa2ac748248adf9ca216e77b47c1aeb08514a028f1a82d3ad8ed420d117a154b24a2125c91df4e613af4bc22839dcc86fe1b2e2ced8dbe17fc11e4e8973b390629dbf7453485fb69e14993f823a4e54aca0c204a46bab956efded0fe561d271fffad375f200d9742eaaa116f7c3e78a36a1fe21230b84867c0073e3001fb06e85cfc5e320b894778e7087d557128bd803d53b4e3ef68f3069e0ba573eeb01608e6649aa279f65d3f89f65fbe09cea31bf4d315e5b337ce9e2195419c332089b8b3e57283cc4f6460dee82fb016d2af726281654ff8a14a4f92b4b6ba00e439427ece5455b91c434cf0a3ced6c8d6f6601d9fabd67b85b2ff3e3b5da37f5d0d53e7fc791d90cffd3cc5e989519b67c8454c2c848785449d5af187790b74cdd77205b3fefe0834a771f4b3a604f8a3d327454f1ed091586a9fcff7f13787e518c35e1bdfacad2e72adbbc0b840856f3016f305c77f865c131a1baf552234ae8e9344c42cbf91b4a1dac127f3af03240fb474ca68ade7e2b49dd2a64fe8e9ed7ba58eed7655b4c854c2903163f78282fbfc2e972690f2318859a91f3494b71f4c36574ee198ede0e2b9b66e819aa6020e4eae5d4b2931b644fbcc66375f7b11212d72d442d0730a3e7a885d03ef7924b2c88e2cbf9f02519c3b7fea1e1df3fca69059a3723d346040671c0d394bd309c4431641adec15076ebf0e01414ef786fbccf619e74d81cacf7ff3d0aa480875d19a5f005a4ae400c4aefd1fcb71e5f94e824ddb9f4a885c2d7c342c26649fa4f6372deca8b910a302fa9a870c7a52e14ec2d4441d9d9e428fa811f4311ba941c24f1c30db8449d75cb229e0e5b5f9bdd22b41bb4eeb0a66f8b531022b9ce4e35f13a7e5ed1d68beef7ac803350429186f34578726fa8d3544ef928fc8d285b5747ac0bd1a63e272e050d47419fb32bb8824d826dd5b16ee9a6aa33d1857389d69174277992752a636d197866cd8b7ce210efbe6bd6c37c8f92fa5ddd5b39df3b58b4d54e67389bc72ff82c78e04ea800d0ec4ed5eca2849ca8443fd409046b17de3e30d8661a52766df72c18028fce911aba7b0e326e27347f7b56dbf4b1d9aa1f09f0cff9a844f69f114356cdd69922d857fd184279a4860a2962cd0e244946bb104b22b97ebd3abc030ebe62749d9e77505824261d654eff39d685ed45149426c627f1b98225142cee46e97b178b794a94b954d6b534613229bb232811cc1021f58c642d42fa7c1ea3daa0da06abc5564c6a5e3f551102fe32d6e082ea8fd3fb5837557b852f7d513e684c650b79e79d295a069c89155209c118cb59f6a62d27c2a9fa663b82909b61af8604c06c730aedb6e372adcf481f8f98b356ffdc78396d86493a44eeb66cbd5f4c6bea119984378c3aa9b3bde7f0230e6bf1087e57c3ca6eb7e50fbb1a273a37891f8b093e7d432c5a6744287e01c4ef45b272a0b37c008f3da14dd276e135eeccd3a5c3ec813c5e2dd73a5c2caf24e1724e6021b5abcb13e7187783683df8db54ac4dfea24c55577ef5ff82c3ac8cd6a37ba300d1cfdb6b36e58694414fdf4deb7565a4d15388649cc9c63f1d0359f8eb7a0264a51f3a9a6e0316c18f511426624177a6b4450fbf710cb315c23f516640fad4561f383516f5ff498540bca6b39e95b0ff7bf13f9a013f6fbe2a0e708179f709179ed95037124b29fee07497cf741af5d3d8d1337788ab0c9b0df3ab84694443065dbd893c88ca0e9cb6e49fc2f8f5f886dfcdb1efe5e21da93dbf85a9ec74c741693590093268d0e1c2f537749e1f1cc100a55628347943f961c45b1bbd0ca951aaa294ccbedf81a795978a3bbcc13f64c1933a6c65f11ddd75613f133a06b2e12c91668ac55672f17c14cbadd1c0f660f2a1eaa0f099ad043bac7ddce4590755cce07d2dcd894865e0cad894e9333a342b8c4ae99da51cbb03cc96bb429d4f1fc3db54485e351eccce2e56a0c6c203254cfd1c52ecd7a7accbb8c3d124968abe61d4902268ffb9edd1d54e0fd8b58872cd6f80593d135498847a832ca0d3aa451632193143935483db184569fc817282622392b50dd78f9b210a2fcaf795e705f5ce5d97a4cb9578a9b1ce5c6e6ff0085caa17e76beddb019af9bb8055d385cc7227f5075b7b018afa6c17d21ee7febeee828f96a5bb8e22eb841e02de94c549e8c34f408e7ffbe484c363e1108d691c6c8869884f6c9ec9c725303d82bcada79e3f1973a6aaefd43a22c08b7f24284c65642d912479145af1af13379eea4f4e34bd00a2860044b73b75e406fc6f6235c3101cc78501b1c677b5ba1e575bd3fdb03c1b888aeb77939c49ab638ef8612ba10029721f98814b6be31fd8ef26e3c8c10811037b546b1feac484188d62853d0ab72c0f2868728d9a5eabf18b7bc65a4298dab74eb3a7a5d863c87ea206887ba8ae96b60b09c27187250120d3fef61791accdf0c824991efc3520921c6f3cab5af58dde9457d167b80b281f4732b60f4081b11dd6b5632bbe31ad5a1606c2f1cdb1c20646cb293b897aed81c927ff9d883ec991e1dfaa6e978343922dc4689e2b2c4ad7fb9b1b09e83057cd255383c6d9e5b4e2424df945ae56e829338b337d65401f0f65b4541d83cfdcacf046758172057d5009f56ad7503913b146bbbb4ff38ae5451bda09b67b9681a10395c10ce867eccba716a9476e01e166ef96c0a580fa987189a8b8ecf4db5ce57a31d99dcd078aeed88299fd503790f1a9d587e66abba9119d186896cc58a1787194c8422d87e4f99860de635862f39524b5bfe1d69d82685c5b7ebb626f1f0b0be1164c56fce6f4eb19d6809fedd5c7f2e7243314bdffbad86fc164c7b0165528a72dae8ffb27f6ce5e45a33d061af0c4cfb5737ec0daee213b4df796416e4e3dc04be923e6e315999b4f0443ded4ea134baa61c12af3c769717adb78c75e3b2814da5e6c88b3ff939113c4bbb68cb63d256be060e1cd20c02d5f843f69e73dfcb947b5a56a577a8a673f5e89ab91fb84fef5541401ac231b8828565b7e3be2460bf5a41342cb63b517be8e79ef77922e6cb22d8541f02c2835e0707c9e3f74139d4e5ed4aa7e4f2c697cf31fc556cc19927e3ef1ea98bf67eced8b9c736f2fdbe923bca36b5e3f21d1cfa40ca05f9dd7d3da9b623a5f79fb4a37461902815af108b3701df2160d53d3ef1af51dd29df37d1cb74c707f069d6c553273bfc6b4fed6afe54b35b16b0f337fac395bc8a3c7ade42855bc0a405f30ebd001e8f7967c8b29f81c498829a1d8e1165b6eb00044b64be487ca9cee1f6c0cd62954ffa8e919634c0e9f1bbbfc02806710a9596aaa54b02553ea57585774f8cbcfd3c5d3f8e334ac62120fa3d633491dc5dcc3fd44cfab156767709e35b3a2c8c9772d5b13848c8d92dda39df2b5e6bfd9af0069a6ae9a10c05e1ac70ec011a6bed1acace5b2338c133a34327a217b9ec754c772ff570ab3aee3b9d3f3708700b2ec6257028f23f0446f4a92b4c2b44db4b034b5db8739173788a07a092b984b4a8e41533398d0b2f34f05f690a491a5480a7970e1b1ae447ab6639fa60cc0e3e641f34ccfcd0ad9bed76f57992769b57a04a1609a76cd0a90f4474e8377da4c04dac44a388ff011a04aa592b12d943442f58e2c5c2c7d00859eb1e485108453856a69cbf16b0292e17ebf7807f5fcacc3ff2cf2900d5c87fa0e49f42bbd67481736fe8211c7f340207bd115a69d2835d1ead49aa3be66a37d4d0020ef243aef6f242af1cd80a8defc5a7d1a3984b7e6979e614096cde64da886a51d0f7d915f7737ea287e710d0699744dbe581284cd5d4b97e9d25192947de06b046fd9b5ab08ae92c43c470ca02df65e444b32cf10ac44d7e74607e33801f082561add191fbbf0927ac1d13b4c6a02fc6581c7aa022ac2107fcfe5c65604f37b2e2c71150e43878e9d0e200072fee8f5900922ffd0a94d1e0cef4e0c0cb45786d73486a30638e9348d59ce336075ef236920531bd6ec54689c1e031b524c0fb490ecf873bd46c4407f250fac8af2abac05c8743b896158086d490e224f1360854ce45d28705c8ab41bc93ff297bdab794927ab6990a3efdac62ff5f058fc2acc2056827d2a2ed9714115cda682fcf566b1f9c03a864e2f347fb80975309999489c76366ae14b97475a6a0a09f4dcc442911f8fd4a1f8d092848d3ea660e0f0cc952350ee54a1131f80cd06fe04b67d843147b8f77b87ccabd783d76c74179e9493f7ee0b9897d99ffb7bd2857605a58e851c018cf2becc5a49295be1fbaa74c9fb35a36e68e3d77f0621f371d9903", &(0x7f0000001100)="f980fdc630b0a8de408e3af66b8ccf9009033a2cd1b94209c034e506c0eea3ba9f8d467b66d9f001482e57ae926693c84b89e56553db79c34fec61ea151f655358e9dcbc7b0353220c3541741663b5212895811db6"})
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)

6.657422543s ago: executing program 1 (id=2005):
mmap$auto(0x0, 0x200006, 0x6, 0x40eb1, 0x602, 0x300000000000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x1, 0x84)
shutdown$auto(0x200000003, 0x2)
recvmmsg$auto(0x3, 0x0, 0x5, 0x3, 0x0)
openat$auto_proc_mountstats_operations_mnt_namespace(0xffffffffffffff9c, 0x0, 0x400440, 0x0)
unshare$auto(0x40000080)
setsockopt$auto_SO_BUSY_POLL_BUDGET(0xffffffffffffffff, 0x0, 0x46, 0x0, 0xfff)
openat$auto_tracing_free_buffer_fops_trace(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/free_buffer\x00', 0x20103, 0x0)
r0 = openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x80201, 0x0)
ioctl$auto_SNAPSHOT_AVAIL_SWAP_SIZE(r0, 0x80083313, 0x0)

6.215129747s ago: executing program 3 (id=2006):
mmap$auto(0x6, 0xe1, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020008, 0x7, 0xb9, 0xfffffffffffffffa, 0x9)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
fcntl$auto(0x3, 0x4, 0xa553)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
socket(0x11, 0x80003, 0x300)
mmap$auto(0x0, 0x20009, 0x6, 0xeb1, 0x7f, 0x8000)
sysfs$auto(0x2, 0x100000000000030, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
request_key$auto(&(0x7f0000000080)='/dev/kvm\x00', &(0x7f00000000c0)='#--\x00', &(0x7f0000000100)='\x16\x00', 0x5)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x6ab82, 0x0)
getsockopt$auto(0xffffffffffffffff, 0x84, 0xf, 0x0, 0x0)
ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae89, &(0x7f0000000040)={0x2, 0x0, [{0x400000ff, 0x400, 0x9}]})
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000)
capget$auto(0x0, 0xfffffffffffffffe)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000000), 0x141401, 0x0)
clock_adjtime$auto(0xfffffffffffffffb, 0x0)
r1 = pidfd_open$auto(0x1, 0x0)
setns(r1, 0x60020000)
open(&(0x7f0000000800)='./file0\x00', 0x62340, 0x154)
madvise$auto(0x0, 0x200007, 0x19)

6.146939123s ago: executing program 1 (id=2007):
mknod$auto(&(0x7f0000000040)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00'/263, 0x1, 0x4)
close_range$auto(0x2, 0xa, 0x0)
socket(0xa, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
msync$auto(0x401, 0x0, 0x2)
open(0x0, 0x1e1401, 0xe5)
prctl$auto(0x43, 0x17, 0x0, 0x0, 0x0)
write$auto(0x3, 0x0, 0x100082)
open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100)
mmap$auto(0x0, 0xc, 0xbc5, 0x13, 0x3, 0x8000)
lseek$auto(0x3, 0x7fffffffffffffff, 0x1)
clone$auto(0x4, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x100000000006)
writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1)
open(0x0, 0x40440, 0x40)
mmap$auto(0x9, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket(0xa, 0x3, 0x3a)
r0 = socket(0x2, 0x801, 0x100)
sendmsg$auto_IOAM6_CMD_NS_SET_SCHEMA(r0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x44010}, 0x20000054)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'bridge_slave_0\x00', <r1=>0x0})
bpf$auto(0x0, &(0x7f0000000100)=@bpf_attr_5={@target_ifindex=r1, r0, 0x9c, 0x0, 0x1, @relative_fd, 0x5}, 0x96)
socket(0x2, 0x1, 0x84)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_TIPC_NL_PEER_REMOVE(r2, &(0x7f00000110c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003ac0)={0x70, r3, 0x1, 0x70bd26, 0x25dfdbfe, {}, [@TIPC_NLA_NET={0x5c, 0x7, 0x0, 0x1, [@typed={0x55, 0x2, 0x0, 0x0, @str='\b\x8bJ\xe1\x14\xc2A\x81\x8b\xfd\rQ\xa8a\x02\x033\xb0\x11\xfa\xaf\xeb\xac\xd4\xeb\xe2\xb1)\\\xa8\xce\xe9QJD\x01J\x7f\xa4\xb6gv\xe8\xa96\x02<4\x88\xd7\xec\x1b\xbfR\x00\x80/\x8c\x88\\Z\xd7\xd1q\x17\xfd\xeb\xe7\xf1?\xc8\xcf\x8ak\xad\x18\xaeK\xfbf\t'}]}]}, 0x70}, 0x1, 0x0, 0x0, 0x20008105}, 0x40)

5.897005204s ago: executing program 1 (id=2008):
openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/usb/usbmon/0u\x00', 0x80, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/LNXSYSTM:00/LNXPWRBN:00/power/wakeup_expire_count\x00', 0x80, 0x0)
read$auto(r0, &(0x7f0000000ac0)='vlan1\x00', 0x5)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/snd/controlC2\x00', 0x2100, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/bus/usb/034/001\x00', 0x88002, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
mmap$auto(0x200, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000)
r1 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x28082, 0x0)
mmap$auto(0x400000000000, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}}, 0x40000)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'vlan0\x00'})
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/usbcore/parameters/quirks\x00', 0xc0202, 0x0)
r2 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/ext4/sda1/mb_groups\x00', 0x109180, 0x0)
pread64$auto(r2, 0x0, 0x682c3390, 0xcff)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r3, 0x0, 0xe8)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8)
mmap$auto(0x0, 0x9, 0x2, 0x40eb2, 0x401, 0x300000000000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/nr11/tx_queue_len\x00', 0x2000, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0xc0c00, 0x0)
adjtimex$auto(0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
sendmsg$auto_ILA_CMD_DEL(0xffffffffffffffff, 0x0, 0x88d4)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
mbind$auto(0x2, 0x80, 0x3, &(0x7f0000000200)=0xff, 0x3, 0x3)
prctl$auto(0x3e, 0x28, 0x0, 0x1, 0x0)
write$auto(r4, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, r1, 0x100000000008000)

5.258316972s ago: executing program 3 (id=2009):
r0 = openat$auto_proc_pid_attr_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/attr/apparmor/current\x00', 0x0, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x48000, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000002500), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000040)=""/247, 0xf7)
r4 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_OVS_DP_CMD_NEW(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000480)={0x128, r4, 0x1, 0x2070bd26, 0x25dfdbf8, {}, [@OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x4}, @OVS_DP_ATTR_NAME={0x104, 0x1, '^\x88\x02\xeb\x06\xb7\xe0\xb9\x830\f?c<\x979@V\v\x15E\x872\x8bJ\xcd\xa1\x80\x7f2|\x89\xe9SO\xdb\xf7\xae\x9a}5\x86i\xedal?\x01\xbd\xc6p\x1c\xc3\x92\x14\x9a\x14\x9f\x9c6_\noA\xb9`\xdc\x7f\x9c_n%J?|\xd1\xec\xca\xef\x10;qXow\xd8\xafO5v\xf0\xd5\x14\x18D\x03\x00\x00\x00\x812\x9b\x99k\xd5\xbe\x85\x10.|%N\xff\x98\x03\xd2rkOh\xff{\x90v\xef\xc3\f\xb8\xf9\x93*\xd7\x0e\xce\xd4j[\x11\x7f#\xa9\xb1\xcfrw1\xcd\xd9Y\x1a\x15r\x0f\xf5\x1e\x9e\x12\t\xd3\bVq\xe9\xd3Y\x92*`\xfb\xbbO\x8dp\x88d>\x82\xd5\xb9\xe4\xb1d\x9b\xe84\xaf\xc1C\awj\xe2\xf3\xa19y\xb5sQ\x19=\x9a\x9c\xef\xc2\x01_\v-\x88\xc0\xe2}\xc7\xd9\xd1\xe0\x0fp\xfcJh\b\xeeu\xc8\x13\x17n\xa0\x8a\xa7\r\xd5i\xd6u\xb9\xeaH \x83\xda[\xb9f\xd6u\xbc=\fZ\xc6\xe6\x99A'}, @OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x9}]}, 0x128}, 0x1, 0x0, 0x0, 0x801}, 0x40000)
r5 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000080), 0xffffffffffffffff)
socket(0x2, 0x3, 0x1)
setsockopt$auto(0x3, 0x0, 0x3, 0xffffffffffffffff, 0x0)
r6 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000300), r1)
sendmsg$auto_NL802154_CMD_DEL_SEC_KEY(r1, &(0x7f0000000440)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x1c, r6, 0x800, 0x70bd2c, 0x25dfdbfe, {}, [@NL802154_ATTR_ACKREQ_DEFAULT={0x5, 0x1a, 0x6}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40040045}, 0x820)
semctl$auto_IPC_INFO(0x576d, 0x3, 0x3, 0xfffffffffffffffe)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/mm/transparent_hugepage/hugepages-64kB/stats/nr_anon\x00', 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000)
bpf$auto(0x2, 0x0, 0xb)
futex$auto(0x0, 0x88, 0x901, 0x0, 0x0, 0x7ffffffc)
sendmsg$auto_OVS_DP_CMD_SET(r3, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000180)={&(0x7f00000000c0)={0x2c, r2, 0x300, 0x70bd2e, 0x25dfdbfd, {}, [@OVS_DP_ATTR_UPCALL_PID={0x8}, @OVS_DP_ATTR_MASKS_CACHE_SIZE={0x8}, @OVS_DP_ATTR_UPCALL_PID={0x8}]}, 0x2c}}, 0x24000895)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_DP_CMD_DEL(r7, &(0x7f0000000400)={0x0, 0x1f00, &(0x7f00000003c0)={&(0x7f0000000200)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="01002abd7000fedbdf2502"], 0x38}, 0x1, 0x0, 0x0, 0x20040011}, 0x20000000)
socket$nl_generic(0x10, 0x3, 0x10)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_OVS_DP_CMD_NEW(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="010026bd7020f8dbdf250100000008000200", @ANYRES32=0x4, @ANYBLOB="080001004866520008000200", @ANYRES32=0x9, @ANYBLOB="68901800a9371f6967ba8a13904138e4ff78643590eeb6219f78afef98bda45a59333d76416b2806581e921b635b4425bd8467"], 0x2c}, 0x1, 0x0, 0x0, 0x801}, 0x0)
exit$auto(0x6)
read$auto_proc_pid_attr_operations_base(r0, 0x0, 0x0)
sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, 0x0, 0x20000084)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)

4.627978895s ago: executing program 1 (id=2010):
ioprio_set$auto(0x3, 0x0, 0x4b34)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x0)
mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x1000, 0x2)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/extra\x00', 0xa142, 0x0)
r0 = open(&(0x7f0000000040)='./cgroup.cpu/cgroup.procs\x00', 0x101840, 0x33903f3ada88772b)
msgctl$auto_MSG_STAT(0x91b, 0xb, &(0x7f0000000140)={{0x8, <r1=>0x0, 0xee01, 0x8, 0x38a2, 0x40, 0x7}, &(0x7f0000000080)=0x7f, &(0x7f00000001c0)=0x8, 0x0, 0x0, 0x80000000, 0x8, 0x7fffffff, 0xd, 0x400, 0x3, @raw=0x2})
setuid$auto(r1)
openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000200), 0x221400, 0x0)
read$auto(r0, 0x0, 0x1)
write$auto(0x3, 0x0, 0xffd8)
close_range$auto(0x2, 0xa, 0x0)
socket(0x2, 0x1, 0x106)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/module/kvm/parameters/nx_huge_pages\x00', 0x80302, 0x0)
mmap$auto(0x0, 0x6, 0x100000004000de, 0x9b72, 0x2, 0x9)
madvise$auto(0x0, 0x2003f0, 0x15)
r2 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x40802, 0x0)
read$auto(r2, 0x0, 0xb4d3)
openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000340), 0x4180, 0x0)
write$auto(0x3, 0x0, 0xffd8)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/bus/input/handlers\x00', 0x200, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
clone$auto(0x9001, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x6)
capget$auto(0x0, 0xfffffffffffffffe)
mmap$auto(0x0, 0x400008, 0x200, 0x9b72, 0x2, 0x8000)
r3 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC1\x00', 0x692081, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r3, 0xc0045516, &(0x7f0000000040)=0x5)

4.371800706s ago: executing program 3 (id=2011):
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88)
mmap$auto(0x7, 0x10, 0x400a, 0xee93, 0xffffffffffffffff, 0x7ffd)
openat$auto_iommufd_fops_main(0xffffffffffffff9c, 0x0, 0x80001, 0x0)
r0 = socket(0x2, 0x1, 0x0)
io_uring_setup$auto(0x1, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r1 = syz_genetlink_get_family_id$auto_ila(&(0x7f0000000340), 0xffffffffffffffff)
sendmsg$auto_ILA_CMD_ADD(r0, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="040027bd7000fddbdf25010000000c000300060000000000000005000800050000000c", @ANYRES32=0x0, @ANYBLOB="0cdc9c78340df7a4714000"], 0x5c}, 0x1, 0x0, 0x0, 0xc80}, 0x40088c4)
openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000280), 0x2000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000040)='/proc/kmsg\x00', 0x80900, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/netdevsim0/del_port\x00', 0xa001, 0x0)
write$auto(r3, &(0x7f0000000380)='0\x81=\"\xad/\x8d\b\x00\x18\xa4\xb0\xb4\xd9\x82=~\x17\xfb&L\xeb=j\a\xf1y\xb3\"\xeb\a\xdd\xf4\xf4Ry\xee\xd7\x1e\x1c\x86\x0f\xcf\x7f\xbf\xab\x12{\xc2\xc2*\xc1M+6/v8\xea\xe9\x85s4\xfe\xe5\t\x7fc\xfb7^\xb86J_\x1d1s!\x01\xff\xff\xff\xff\xff\xff\xff\x1dF\xe6\xf6\x17\x10+\xc0\xb0\xafc\x99\xd4\x150Y~\x1e\xe2\xd6x4fW\x13\xc4U`\x9e-X\xd7\xe2H^\fLS`\xfc\xbb\r\f\x00\xeaN\xa5\xd2\x82;\x7f\xa0.\x9a\xfb\x8d\xf3l\xf2\xd3\x95\xc1M5\xcb\xa6I\x067\xe36\xea\xe9\xe3\xf44oT_`8\xb3\xef\x04 \x05K\xf9\x87pl\xac\x86\nE\xc7e\xc5Q\x89\xcd@\x1c\x92\x00\x87\x976\x9f>\xa2\xcfm\xec\r\x11\x7f\x00\x00\x00\xb1\xde@\x02\xce\x03\xb7\xb1\xfb\x9fr\v\xb2\xe3\xc7\b\x85K /zm\x7f\x8fg,p\a\xc8\x7f\xa5\x87\x02\x87\xbbR=A\x00\x1f\x8a\xa7/Q\"J\xbb\xb0m\xf2SP\x84\x84S\xf0\xba\x9a\xf6\xb6`WI\xba\xba*8\x9f\xea\xe8K/\x98\xbc7~>\x12\x9buB\xcb\xe4\x8aKf\xba\x8c\x19m\xe6I\x02\xde\x80\x9d\x87}\xf4\xbd9\xaa\xd6\xdb1]\xde\xa0r\x14\xca56^\x94\xd2\xd8\xe6}9\x91\xb6\xf7\xa1=\x96\x11\xf1\\\xa91\x0e\xd1\xe4z\xc1;Pw!\x8b\xf5{\xc7Xd\xf1\xf2}\x96EVf\xc9\xa8\xcd\xe4\xc9\x8d\x1d7\xd5\x94\\\xb5\r\xd2\xaa\xe6H\xfe)\xb3a\x04\x1eRMl\xa3F\xa8W0\x90\xc9Ky#\x03\xf5~\xd2Z\xe9(\x99\b\x00M\xde\x01]\r\xd09k\xc2\x84\xc1\xabN\x96\x8a6\x98@\xd3\xab\xa8m\xdf\x8d\x1d\b\x82\xfcP\x87\x93\x80\x97Q\x86\x8a\x9c\xf8L\x0f\xa8@VE2\x9d\x1e`#\xd8\xd7M\xd4k1\xe6\x13Y\\\x83E\xd0e\x0eM\xa9Q\xac\x0e\x1d]\a\x19H\x81\xd2\xccF\xc6\xd4\xe2R$\xfa\xd6}\xbdsN\x18\xdf\xf5\xffP\xf5\f\xccL\xef\x83\xb3$\xd4\xf4\xb5\xe6\xd0 \xb9\xa7\x8e6\t\x83q\xef\b\xd2\xdb', 0x1)
openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x4b8483, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1fc, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x4, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r4 = socket(0x2b, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a)
sendmmsg$auto(r4, &(0x7f0000000140)={{&(0x7f0000000040), 0x2012, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
ioctl$auto_IMDELTIMER(0xffffffffffffffff, 0x80044941, &(0x7f0000000100))
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/pci/00/01.3\x00', 0x100, 0x0)

3.946609242s ago: executing program 0 (id=2012):
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x802, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x1a0642, 0x0)
ioctl$auto_SNDCTL_DSP_SYNC(r1, 0x5001, 0x0)
ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r1, 0xc004500a, &(0x7f0000000000))
mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0)
openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000340)='/dev/ttyS2\x00', 0x101e81, 0x0)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop12\x00', 0x24040, 0x0)
ioctl$auto_BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000240)={"ef65ce7cb454168d6c0000000000002713df81000000ffffffffffffff2900", 0x3ff, 0x408, 0xffc, 0x400004, 0x200000000040000d})
ioctl$auto_BLKTRACETEARDOWN(r2, 0x1276, 0x0)
ioctl$auto_BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = openat$auto_drm_edid_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/dri/vkms/Writeback-1/edid_override\x00', 0x40901, 0x0)
write$auto(r3, &(0x7f0000000040)='/sys/kernel/debug/drS/vkms/Wri1/edid_override\x00', 0x20004)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
r4 = signalfd4$auto(0xffffffff, 0x0, 0x8, 0x0)
signalfd$auto(r4, 0x0, 0x8)
r5 = socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
r6 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0)
ioctl$auto(r6, 0x2284, r5)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, &(0x7f0000000140)={{@inferred, 0x0, 0x4, 0x8, "3112d585005a614d19e22af9ffb683dbede3d0bf828bbfba40f035f4be6b7fe5e2f94bd90484b0755015e48d"}, 0x3, 0x5, 0x4, @inferred, @enumerated={0x3, 0x800, "c832bcbae48ab01ec23457b7fd2dd3547c4e2eeba79edd0d1599ded9cbfaf517162fbe6a6f50f1aaa18fb20cabb4f176263bb0e781e3d0a2f992e8fcdcec86d9", 0x400, 0xc278}, "7a9fc199a16a2311eacf2fc7ae1da978dc3e8090334fdd73340238d212b6debe0ada55bdd70925450e24e87212f0bcab84a16f7ce8cbce0bb32777702b8d7c2d"})

3.882806398s ago: executing program 1 (id=2013):
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='./cgroup/pids.peak\x00', 0x8000, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000040)=""/194, 0xc2)
write$auto(0xffffffffffffffff, 0x0, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000e3d9)
mmap$auto(0x0, 0x9644, 0xdf, 0x9b72, 0x2, 0x2d4a29c0)
pivot_root$auto(0x0, 0x0)
open(0x0, 0x7ffd, 0x12)
kexec_load$auto(0x9, 0x0, 0x0, 0x1003e0000)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0x2000040080000000, 0xe)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
mmap$auto(0x10007e, 0x82020009, 0x4, 0x16, 0xffffffffffffffff, 0x5)
connect$auto(0x3, 0x0, 0x10)
unshare$auto(0x40000080)
r3 = socket(0x2, 0x2, 0x1)
getsockopt$auto(r3, 0x1, 0x8, &(0x7f0000000740)='z\x14\x92\x83_4\xfdi,C\x01\xab\xd5D\x1c\xeb\xa7Y\xc5M\xef\x83*\t\xa0c\xec&\xbdt\xa8\x7f\xda\x1f=\x81j\x11\x11<Oj\xcb\x05)\xea\x1a\x16\xd6\x85\x1f\xed~\x88W\x17(\xf9\xab\xea\xf6\xe2\xa9\"@\x8c\x86\xe9o\xf3x\t\xe3\x8b\xa9\xc1\xee\xc8\x9eG\xc9\xb8\xb3\x9cR\xda\xb6\x8dH#\x8b\x8c4uc\xcdq\xc0\x8b\xb2\\\x17\x1b\x87\xa6S<\x7f\xfe\xddTn\xd3?\x98\x97a\xb1\x19\x86\xf3\x0e\xc0\xf4f\x10\xc6\xa9\x94\xa2\xc4\xb6\xbf%\xafFi\xce\xa7\x81\xd5:\xed\vE\xec\x89\xf2e\x1f\xc2\xd6\xe4\x05&\x04\xdd\xf1\x86\x1d\xc5\xd4\x91\x8e\x88\x0e\xd4*Q\x0fk\xce\xe5e\xfb5\xa4\x8b\xfa\xac?\xe9O\xf3d\xc1\x97~\x19=q&\xc2DL#P\x98\x83\xe8\xd8\x19\xef\x9e\xe3\x00', &(0x7f00000001c0)=0x9)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x180b01, 0x0)
msgctl$auto_MSG_STAT_ANY(0x3, 0xd, &(0x7f00000003c0)={{0x7fff, 0xee00, 0xffffffffffffffff, 0xffff, 0xa8, 0x80, 0x9}, &(0x7f0000000340)=0xb, &(0x7f0000000380)=0x2, 0x5, 0x1, 0x3, 0x0, 0x8, 0x5, 0xfffc, 0x2, @inferred=0xffffffffffffffff, @raw=0x1})
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
prctl$auto(0x5, 0x1, 0x4, 0x3, 0x3)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
mq_notify$auto(0x4, 0x0)
syz_clone3(&(0x7f00000006c0)={0x208200700, &(0x7f0000000440), &(0x7f0000000480), &(0x7f00000004c0), {0x2c}, &(0x7f0000000500)=""/84, 0x54, &(0x7f0000000580)=""/248, &(0x7f0000000680)=[0x0, 0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0], 0x6, {r2}}, 0x58)
msgctl$auto_MSG_STAT(0x3, 0xb, 0x0)
sendmsg$auto_NL80211_CMD_START_SCHED_SCAN(r3, &(0x7f0000011200)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, 0x0}, 0x4020004)
setresuid$auto(0x2, 0x7, 0x8080)

3.367506513s ago: executing program 3 (id=2014):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
mmap$auto(0x21000, 0x7ffffffff000, 0x8004, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0xe983, 0x7f, 0xeb1, 0x401, 0x8000)
socketpair$auto(0xa, 0xfffffffe, 0x8000000000000000, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x103040, 0x0)
r2 = ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r1, 0xc0285700, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x2200, 0x0)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x4, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x400000000001ff, 0x7, 0xa, 0x1, 0x4, 0x3, 0x9, 0x5, 0x3, 0x48, 0x8002001f, 0x79d, 0x6d3e, 0x4, 0x6, 0x8]}, 0x0)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
get_robust_list$auto(0x0, 0x0, 0x0)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
open(0x0, 0x22240, 0x45)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
ioctl$auto(0x3, 0x80a86f3d, 0xffffffffffffffff)
write$auto(r2, 0x0, 0x100000a3d9)
r4 = socket(0x10, 0x2, 0xc)
sendmsg$auto_CTRL_CMD_GETPOLICY(r4, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x24050803}, 0x10004010)
close_range$auto(r0, 0x8, 0x4)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/sys/net/ipv6/conf/dummy0/accept_ra_pinfo\x00', 0x795900, 0x0)
timer_settime$auto(0x3, 0x368, &(0x7f00000003c0)={{0x0, 0xfffffffffffffffe}, {0x9, 0x97}}, 0x0)
mmap$auto(0x0, 0x5, 0xfff, 0x44eb2, 0xffffffffffffffff, 0x300000000000)

2.917974531s ago: executing program 1 (id=2015):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000e40)='/sys/devices/pci0000:00/0000:00:01.3/config\x00', 0x2, 0x0)
pwritev$auto(r0, &(0x7f0000000100)={&(0x7f0000000000), 0x2}, 0x3, 0x11, 0x3)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000001040)='/proc/asound/card1/pcm1c/sub7/info\x00', 0x28102, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0x40000, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x1, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS3\x00', 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
r2 = socket(0x10, 0x2, 0x4)
close_range$auto(0x2, 0x8, 0x0)
r3 = socket(0x10, 0x2, 0xc)
sendmsg$auto_TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000003780)={0x0, 0x0, &(0x7f0000003740)={&(0x7f0000000000)=ANY=[@ANYBLOB="b1000000", @ANYRES16, @ANYBLOB="01002dbd7000fddbdf25030000000c0001"], 0x20}, 0x1, 0x0, 0x0, 0x41}, 0x40080)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYRES8=r3, @ANYRES8=r1], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x4000050)
write$auto(r2, &(0x7f0000000000)='-\x00', 0xfdef)
mmap$auto(0x0, 0x40000a, 0xdf, 0x9b72, 0x2, 0x8000)
r4 = socket(0x1e, 0x1, 0x0)
getsockname$auto(r4, &(0x7f0000000000), &(0x7f0000000040)=0x3)
close_range$auto(0x2, 0xa, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1e, 0x4, 0x0)
r5 = socket(0x1e, 0x4, 0x0)
get_robust_list$auto(0x0, 0x0, 0x0)
setsockopt$auto(r5, 0x10f, 0x87, 0x0, 0x14)
setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

2.225765433s ago: executing program 3 (id=2016):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14f602, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, r1, 0x8000)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r2, 0x0, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100400e3d9)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48})
mmap$auto(0xf0ffffffffffff, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/adsp1\x00', 0x101142, 0x0)
write$auto(0x3, 0x0, 0xfdef)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio1\x00', 0x8000, 0x0)
read$auto(r3, 0x0, 0x9)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000280)={{&(0x7f0000000280), 0x1, &(0x7f0000000100)={&(0x7f0000000780)="4c0300000000000000a3677337f9ecba075f6bba", 0xfffffffffffffff7}, 0x5, 0x0, 0x5, 0x1}, 0x8}, 0xfffffffe, 0x100)
pivot_root$auto(0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x2, 0x80000000, 0x4020086)
mmap$auto(0x7f, 0x82020009, 0x3, 0xeb1, 0xffffffffffffffff, 0xfff)
madvise$auto(0x8001, 0x9, 0x138)
unshare$auto(0x40000080)
socket(0x2, 0x2, 0x1)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x180b01, 0x0)
r4 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000002640), 0x20000, 0x0)
ioctl$auto_USB_RAW_IOCTL_INIT(r4, 0x41015500, &(0x7f00000002c0)={"a7a018b09bb196a05739a38a73473b93f5452886bc599ef976c54a71a5ce72a9af15390e93a8760df83859e16320e8d0b1161f13d12afae66b1d900a49586aa98d3504ca431aabab1964249251e57fa70517cc19b0e3974dc2a89e90c932b8859c767780d65e849700", "e600d778e82f8b8db7e27a036e39a8ac08de7e036d650e2184857e6b64f6a2c7fb08c6f5ce3828fb4e9498c076bef49c99c9cd91332e12b53664dc20fa879020fbd184c0d300c13be6047a70685ce029fb2385ae6e132c1c6adbcfbd3a3b925d397a08e8733e19ef5ec4f40b0b473c72efd18b8a9e9f3d12c5e44468922beb00", 0x3})
ioctl$auto_USB_RAW_IOCTL_RUN(r4, 0x5501, 0x3f)
ioctl$auto(0xffffffffffffffff, 0x9210640c, r0)

0s ago: executing program 3 (id=2017):
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000001040)='/proc/asound/card1/pcm1c/sub7/info\x00', 0x28102, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0x40000, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x1, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS3\x00', 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0x4)
r1 = socket(0x10, 0x2, 0xc)
sendmsg$auto_TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000003780)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x41}, 0x40080)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYRES8=r1, @ANYRES8=r0], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x4000050)

kernel console output (not intermixed with test programs):

[  489.496795][T11645]  __x64_sys_getrandom+0x183/0x290
[  489.496814][T11645]  ? __pfx___x64_sys_getrandom+0x10/0x10
[  489.496843][T11645]  do_syscall_64+0xcd/0x490
[  489.496868][T11645]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  489.496887][T11645] RIP: 0033:0x7f382e78ebe9
[  489.496901][T11645] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  489.496919][T11645] RSP: 002b:00007f382f5cf038 EFLAGS: 00000246 ORIG_RAX: 000000000000013e
[  489.496937][T11645] RAX: ffffffffffffffda RBX: 00007f382e9b6090 RCX: 00007f382e78ebe9
[  489.496949][T11645] RDX: 0000000000000003 RSI: 0000000006000000 RDI: 0000000000000000
[  489.496959][T11645] RBP: 00007f382f5cf090 R08: 0000000000000000 R09: 0000000000000000
[  489.496970][T11645] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  489.496981][T11645] R13: 00007f382e9b6128 R14: 00007f382e9b6090 R15: 00007fff4e103cd8
[  489.497003][T11645]  </TASK>
[  490.822249][T11653] random: crng reseeded on system resumption
[  492.095554][T11671] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input92
[  492.479196][T11682] FAULT_INJECTION: forcing a failure.
[  492.479196][T11682] name failslab, interval 1, probability 0, space 0, times 0
[  492.511203][T11682] CPU: 0 UID: 0 PID: 11682 Comm: syz.1.1299 Tainted: G     U              6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  492.511235][T11682] Tainted: [U]=USER
[  492.511241][T11682] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  492.511252][T11682] Call Trace:
[  492.511258][T11682]  <TASK>
[  492.511265][T11682]  dump_stack_lvl+0x16c/0x1f0
[  492.511292][T11682]  should_fail_ex+0x512/0x640
[  492.511317][T11682]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[  492.511345][T11682]  should_failslab+0xc2/0x120
[  492.511370][T11682]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  492.511394][T11682]  ? virtual_ncidev_open+0x6f/0x220
[  492.511447][T11682]  ? kvasprintf_const+0x66/0x1a0
[  492.511468][T11682]  kvasprintf+0xbc/0x160
[  492.511485][T11682]  ? __pfx_kvasprintf+0x10/0x10
[  492.511502][T11682]  ? rcu_is_watching+0x12/0xc0
[  492.511521][T11682]  ? kfree+0x24f/0x4d0
[  492.511537][T11682]  ? mark_held_locks+0x49/0x80
[  492.511564][T11682]  kvasprintf_const+0x66/0x1a0
[  492.511582][T11682]  kobject_set_name_vargs+0x5a/0x140
[  492.511609][T11682]  dev_set_name+0xc7/0x100
[  492.511627][T11682]  ? __pfx_dev_set_name+0x10/0x10
[  492.511652][T11682]  ? nfc_allocate_device+0x190/0x5e0
[  492.511679][T11682]  nfc_allocate_device+0x206/0x5e0
[  492.511706][T11682]  nci_allocate_device+0x23b/0x430
[  492.511725][T11682]  virtual_ncidev_open+0x6f/0x220
[  492.511745][T11682]  ? __pfx_virtual_ncidev_open+0x10/0x10
[  492.511765][T11682]  misc_open+0x35a/0x420
[  492.511784][T11682]  ? __pfx_misc_open+0x10/0x10
[  492.511802][T11682]  chrdev_open+0x231/0x6a0
[  492.511825][T11682]  ? __pfx_apparmor_file_open+0x10/0x10
[  492.511845][T11682]  ? __pfx_chrdev_open+0x10/0x10
[  492.511870][T11682]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  492.511895][T11682]  do_dentry_open+0x97f/0x1530
[  492.511919][T11682]  ? __pfx_chrdev_open+0x10/0x10
[  492.511947][T11682]  vfs_open+0x82/0x3f0
[  492.511976][T11682]  path_openat+0x1de4/0x2cb0
[  492.512005][T11682]  ? __pfx_path_openat+0x10/0x10
[  492.512033][T11682]  do_filp_open+0x20b/0x470
[  492.512055][T11682]  ? __pfx_do_filp_open+0x10/0x10
[  492.512092][T11682]  ? alloc_fd+0x471/0x7d0
[  492.512118][T11682]  do_sys_openat2+0x11b/0x1d0
[  492.512146][T11682]  ? __pfx_do_sys_openat2+0x10/0x10
[  492.512177][T11682]  ? __fget_files+0x20e/0x3c0
[  492.512200][T11682]  __x64_sys_openat+0x174/0x210
[  492.512229][T11682]  ? __pfx___x64_sys_openat+0x10/0x10
[  492.512257][T11682]  ? ksys_write+0x1ac/0x250
[  492.512285][T11682]  do_syscall_64+0xcd/0x490
[  492.512311][T11682]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  492.512330][T11682] RIP: 0033:0x7f358d78ebe9
[  492.512344][T11682] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  492.512362][T11682] RSP: 002b:00007f358b9d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  492.512380][T11682] RAX: ffffffffffffffda RBX: 00007f358d9b6540 RCX: 00007f358d78ebe9
[  492.512392][T11682] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  492.512403][T11682] RBP: 00007f358b9d5090 R08: 0000000000000000 R09: 0000000000000000
[  492.512419][T11682] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  492.512430][T11682] R13: 00007f358d9b65d8 R14: 00007f358d9b6540 R15: 00007ffe74892498
[  492.512452][T11682]  </TASK>
[  493.379685][T11687] openvswitch: HfR: Dropping previously announced user features
[  493.425102][T11673] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input93
[  493.914649][T11703] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input94
[  494.799769][T11701] zswap: compressor  not available
[  495.271987][T11704] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input95
[  496.548761][T11750] random: crng reseeded on system resumption
[  496.701048][T11752] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1312'.
[  496.822576][T11752] HfR: entered promiscuous mode
[  497.256189][T11762] random: crng reseeded on system resumption
[  498.922285][T11778] netlink: 25 bytes leftover after parsing attributes in process `syz.0.1319'.
[  500.666947][T11810] random: crng reseeded on system resumption
[  503.044973][T11843] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1334'.
[  503.838527][T11852] FAULT_INJECTION: forcing a failure.
[  503.838527][T11852] name failslab, interval 1, probability 0, space 0, times 0
[  503.857236][T11852] CPU: 0 UID: 0 PID: 11852 Comm: syz.1.1336 Tainted: G     U              6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  503.857267][T11852] Tainted: [U]=USER
[  503.857273][T11852] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  503.857284][T11852] Call Trace:
[  503.857298][T11852]  <TASK>
[  503.857305][T11852]  dump_stack_lvl+0x16c/0x1f0
[  503.857333][T11852]  should_fail_ex+0x512/0x640
[  503.857359][T11852]  ? fs_reclaim_acquire+0xae/0x150
[  503.857388][T11852]  ? tomoyo_encode2+0x100/0x3e0
[  503.857413][T11852]  should_failslab+0xc2/0x120
[  503.857438][T11852]  __kmalloc_noprof+0xd2/0x510
[  503.857459][T11852]  ? d_absolute_path+0x136/0x1a0
[  503.857489][T11852]  tomoyo_encode2+0x100/0x3e0
[  503.857518][T11852]  tomoyo_encode+0x29/0x50
[  503.857543][T11852]  tomoyo_realpath_from_path+0x18f/0x6e0
[  503.857576][T11852]  tomoyo_path_number_perm+0x245/0x580
[  503.857597][T11852]  ? tomoyo_path_number_perm+0x237/0x580
[  503.857621][T11852]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  503.857645][T11852]  ? find_held_lock+0x2b/0x80
[  503.857683][T11852]  ? find_held_lock+0x2b/0x80
[  503.857700][T11852]  ? hook_file_ioctl_common+0x145/0x410
[  503.857728][T11852]  ? __fget_files+0x20e/0x3c0
[  503.857752][T11852]  security_file_ioctl+0x9b/0x240
[  503.857777][T11852]  __x64_sys_ioctl+0xb7/0x210
[  503.857807][T11852]  do_syscall_64+0xcd/0x490
[  503.857832][T11852]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  503.857851][T11852] RIP: 0033:0x7f358d78ebe9
[  503.857866][T11852] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  503.857884][T11852] RSP: 002b:00007f358e5a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  503.857902][T11852] RAX: ffffffffffffffda RBX: 00007f358d9b5fa0 RCX: 00007f358d78ebe9
[  503.857914][T11852] RDX: 0000200000001040 RSI: 00000000c0185500 RDI: 0000000000000003
[  503.857926][T11852] RBP: 00007f358e5a7090 R08: 0000000000000000 R09: 0000000000000000
[  503.857936][T11852] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  503.857947][T11852] R13: 00007f358d9b6038 R14: 00007f358d9b5fa0 R15: 00007ffe74892498
[  503.857970][T11852]  </TASK>
[  503.857986][T11852] ERROR: Out of memory at tomoyo_realpath_from_path.
[  504.235066][T11852] vhci_hcd: invalid port number 23
[  505.620929][T11875] netlink: 'syz.1.1341': attribute type 2 has an invalid length.
[  505.975036][T11878] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  506.068579][T11878] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  506.239652][T11878] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  506.412872][T11878] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  506.790760][T11898] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1342'.
[  507.024870][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[  507.031220][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[  508.053925][ T5869] Bluetooth: hci0: command 0x0406 tx timeout
[  508.068005][T11916] net_ratelimit: 713 callbacks suppressed
[  508.068021][T11916] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes.
[  508.145079][ T5869] Bluetooth: hci3: command 0x0406 tx timeout
[  508.299897][ T5869] Bluetooth: hci2: command 0x0406 tx timeout
[  508.453730][ T5874] Bluetooth: hci1: command 0x0406 tx timeout
[  509.174022][T11932] FAULT_INJECTION: forcing a failure.
[  509.174022][T11932] name failslab, interval 1, probability 0, space 0, times 0
[  509.485222][T11932] CPU: 0 UID: 0 PID: 11932 Comm: syz.2.1352 Tainted: G     U              6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  509.485254][T11932] Tainted: [U]=USER
[  509.485260][T11932] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  509.485270][T11932] Call Trace:
[  509.485277][T11932]  <TASK>
[  509.485284][T11932]  dump_stack_lvl+0x16c/0x1f0
[  509.485311][T11932]  should_fail_ex+0x512/0x640
[  509.485336][T11932]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  509.485361][T11932]  should_failslab+0xc2/0x120
[  509.485385][T11932]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  509.485409][T11932]  ? shmem_alloc_inode+0x25/0x50
[  509.485446][T11932]  ? __pfx_shmem_alloc_inode+0x10/0x10
[  509.485471][T11932]  shmem_alloc_inode+0x25/0x50
[  509.485496][T11932]  alloc_inode+0x61/0x240
[  509.485523][T11932]  new_inode+0x22/0x1c0
[  509.485547][T11932]  ? trace_cap_capable+0x18d/0x200
[  509.485568][T11932]  shmem_get_inode+0x19a/0xfb0
[  509.485597][T11932]  ? __vm_enough_memory+0x184/0x3f0
[  509.485626][T11932]  __shmem_file_setup+0x279/0x330
[  509.485647][T11932]  shmem_zero_setup+0x93/0x1a0
[  509.485670][T11932]  __mmap_region+0x2081/0x27b0
[  509.485695][T11932]  ? __pfx___mmap_region+0x10/0x10
[  509.485723][T11932]  ? is_bpf_text_address+0x8a/0x1a0
[  509.485746][T11932]  ? bpf_ksym_find+0x124/0x1c0
[  509.485763][T11932]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  509.485786][T11932]  ? is_bpf_text_address+0x94/0x1a0
[  509.485808][T11932]  ? kernel_text_address+0x8d/0x100
[  509.485838][T11932]  ? __kernel_text_address+0xd/0x40
[  509.485890][T11932]  ? trace_cap_capable+0x18d/0x200
[  509.485915][T11932]  mmap_region+0x1ab/0x3f0
[  509.485937][T11932]  ? __get_unmapped_area+0x267/0x440
[  509.485966][T11932]  do_mmap+0xa3e/0x1210
[  509.485996][T11932]  ? __pfx_do_mmap+0x10/0x10
[  509.486023][T11932]  ? __pfx_down_write_killable+0x10/0x10
[  509.486054][T11932]  vm_mmap_pgoff+0x29e/0x470
[  509.486083][T11932]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  509.486112][T11932]  ? __fget_files+0x20e/0x3c0
[  509.486137][T11932]  ksys_mmap_pgoff+0x7d/0x5c0
[  509.486163][T11932]  ? __pfx_ksys_write+0x10/0x10
[  509.486187][T11932]  __x64_sys_mmap+0x125/0x190
[  509.486219][T11932]  do_syscall_64+0xcd/0x490
[  509.486244][T11932]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  509.486267][T11932] RIP: 0033:0x7f0c4698ebe9
[  509.486282][T11932] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  509.486300][T11932] RSP: 002b:00007f0c44bee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  509.486318][T11932] RAX: ffffffffffffffda RBX: 00007f0c46bb5fa0 RCX: 00007f0c4698ebe9
[  509.486329][T11932] RDX: 0000000000000003 RSI: 0000000002020009 RDI: 0000000000000000
[  509.486340][T11932] RBP: 00007f0c44bee090 R08: fffffffffffffffa R09: 0000000000008000
[  509.486351][T11932] R10: 0000009000000eb1 R11: 0000000000000246 R12: 0000000000000001
[  509.486362][T11932] R13: 00007f0c46bb6038 R14: 00007f0c46bb5fa0 R15: 00007ffc6a6abf18
[  509.486385][T11932]  </TASK>
[  509.785470][    C0] vkms_vblank_simulate: vblank timer overrun
[  510.893663][T10455] Process accounting resumed
[  511.139810][   T30] audit: type=1800 audit(6138079950.243:15): pid=11946 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1357" name="features" dev="configfs" ino=39277 res=0 errno=0
[  514.072600][T11987] FAULT_INJECTION: forcing a failure.
[  514.072600][T11987] name fail_futex, interval 1, probability 0, space 0, times 0
[  514.093640][T11987] CPU: 0 UID: 0 PID: 11987 Comm: syz.1.1365 Tainted: G     U              6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  514.093672][T11987] Tainted: [U]=USER
[  514.093678][T11987] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  514.093688][T11987] Call Trace:
[  514.093694][T11987]  <TASK>
[  514.093701][T11987]  dump_stack_lvl+0x16c/0x1f0
[  514.093729][T11987]  should_fail_ex+0x512/0x640
[  514.093758][T11987]  get_futex_key+0x293/0x1560
[  514.093783][T11987]  ? __pfx_get_futex_key+0x10/0x10
[  514.093812][T11987]  futex_wake_op+0x167/0xe40
[  514.093843][T11987]  ? get_pid_task+0x106/0x250
[  514.093869][T11987]  ? __pfx_futex_wake_op+0x10/0x10
[  514.093903][T11987]  ? ksys_write+0x190/0x250
[  514.093929][T11987]  do_futex+0x2e9/0x350
[  514.093953][T11987]  ? __pfx_do_futex+0x10/0x10
[  514.093981][T11987]  __x64_sys_futex+0x1e0/0x4c0
[  514.094006][T11987]  ? fput+0x9b/0xd0
[  514.094031][T11987]  ? __pfx___x64_sys_futex+0x10/0x10
[  514.094053][T11987]  ? ksys_write+0x1ac/0x250
[  514.094074][T11987]  ? __pfx_ksys_write+0x10/0x10
[  514.094101][T11987]  do_syscall_64+0xcd/0x490
[  514.094126][T11987]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  514.094144][T11987] RIP: 0033:0x7f358d78ebe9
[  514.094159][T11987] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  514.094188][T11987] RSP: 002b:00007f358e586038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  514.094206][T11987] RAX: ffffffffffffffda RBX: 00007f358d9b6090 RCX: 00007f358d78ebe9
[  514.094218][T11987] RDX: 0000000000000004 RSI: 0000000000000005 RDI: 0000000000000000
[  514.094228][T11987] RBP: 00007f358e586090 R08: 0000200000000080 R09: 0000000004000000
[  514.094239][T11987] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  514.094250][T11987] R13: 00007f358d9b6128 R14: 00007f358d9b6090 R15: 00007ffe74892498
[  514.094271][T11987]  </TASK>
[  514.289047][    C0] vkms_vblank_simulate: vblank timer overrun
[  514.907039][T12007] FAULT_INJECTION: forcing a failure.
[  514.907039][T12007] name failslab, interval 1, probability 0, space 0, times 0
[  514.931775][T12007] CPU: 0 UID: 0 PID: 12007 Comm: syz.1.1373 Tainted: G     U              6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  514.931807][T12007] Tainted: [U]=USER
[  514.931813][T12007] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  514.931823][T12007] Call Trace:
[  514.931830][T12007]  <TASK>
[  514.931837][T12007]  dump_stack_lvl+0x16c/0x1f0
[  514.931863][T12007]  should_fail_ex+0x512/0x640
[  514.931888][T12007]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  514.931914][T12007]  should_failslab+0xc2/0x120
[  514.931939][T12007]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  514.931962][T12007]  ? __alloc_skb+0x2b2/0x380
[  514.931983][T12007]  ? __pfx_idr_get_next_ul+0x10/0x10
[  514.932006][T12007]  __alloc_skb+0x2b2/0x380
[  514.932035][T12007]  ? __pfx___alloc_skb+0x10/0x10
[  514.932058][T12007]  ? idr_get_next+0xec/0x150
[  514.932078][T12007]  ? __pfx_idr_get_next+0x10/0x10
[  514.932102][T12007]  ctrl_build_family_msg+0x36/0xa0
[  514.932140][T12007]  ctrl_getfamily+0x354/0x540
[  514.932169][T12007]  ? __pfx_ctrl_getfamily+0x10/0x10
[  514.932198][T12007]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  514.932228][T12007]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  514.932262][T12007]  genl_family_rcv_msg_doit+0x209/0x2f0
[  514.932292][T12007]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  514.932320][T12007]  ? genl_get_cmd+0x194/0x580
[  514.932358][T12007]  ? __alloc_skb+0x166/0x380
[  514.932382][T12007]  ? netlink_alloc_large_skb+0x69/0x130
[  514.932405][T12007]  ? __radix_tree_lookup+0x21f/0x2c0
[  514.932429][T12007]  genl_rcv_msg+0x55c/0x800
[  514.932459][T12007]  ? __pfx_genl_rcv_msg+0x10/0x10
[  514.932487][T12007]  ? __pfx_ctrl_getfamily+0x10/0x10
[  514.932518][T12007]  ? __lock_acquire+0x62e/0x1ce0
[  514.932546][T12007]  netlink_rcv_skb+0x158/0x420
[  514.932570][T12007]  ? __pfx_genl_rcv_msg+0x10/0x10
[  514.932599][T12007]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  514.932633][T12007]  ? netlink_deliver_tap+0x1ae/0xd30
[  514.932655][T12007]  ? is_vmalloc_addr+0x86/0xa0
[  514.932679][T12007]  genl_rcv+0x28/0x40
[  514.932702][T12007]  netlink_unicast+0x5a7/0x870
[  514.932731][T12007]  ? __pfx_netlink_unicast+0x10/0x10
[  514.932755][T12007]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  514.932786][T12007]  netlink_sendmsg+0x8d1/0xdd0
[  514.932814][T12007]  ? __pfx_netlink_sendmsg+0x10/0x10
[  514.932841][T12007]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  514.932864][T12007]  __sys_sendto+0x4a0/0x520
[  514.932885][T12007]  ? __pfx___sys_sendto+0x10/0x10
[  514.932913][T12007]  ? find_held_lock+0x2b/0x80
[  514.932948][T12007]  __x64_sys_sendto+0xe0/0x1c0
[  514.932968][T12007]  ? do_syscall_64+0x91/0x490
[  514.932990][T12007]  ? lockdep_hardirqs_on+0x7c/0x110
[  514.933012][T12007]  do_syscall_64+0xcd/0x490
[  514.933043][T12007]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  514.933062][T12007] RIP: 0033:0x7f358d790a7c
[  514.933095][T12007] Code: 2a 5f 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 70 5f 02 00 48 8b
[  514.933119][T12007] RSP: 002b:00007f358e5a5ec0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  514.933137][T12007] RAX: ffffffffffffffda RBX: 00007f358e5a5fc0 RCX: 00007f358d790a7c
[  514.933148][T12007] RDX: 0000000000000020 RSI: 00007f358e5a6010 RDI: 0000000000000006
[  514.933159][T12007] RBP: 0000000000000000 R08: 00007f358e5a5f14 R09: 000000000000000c
[  514.933169][T12007] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000006
[  514.933180][T12007] R13: 00007f358e5a5f68 R14: 00007f358e5a6010 R15: 0000000000000000
[  514.933203][T12007]  </TASK>
[  515.278931][    C0] vkms_vblank_simulate: vblank timer overrun
[  515.904795][T12012] random: crng reseeded on system resumption
[  518.029916][T12049] random: crng reseeded on system resumption
[  519.438453][T12072] netlink: 186 bytes leftover after parsing attributes in process `syz.1.1387'.
[  519.468889][T12072] FAULT_INJECTION: forcing a failure.
[  519.468889][T12072] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  519.491181][T12072] CPU: 0 UID: 0 PID: 12072 Comm: syz.1.1387 Tainted: G     U              6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  519.491213][T12072] Tainted: [U]=USER
[  519.491218][T12072] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  519.491229][T12072] Call Trace:
[  519.491235][T12072]  <TASK>
[  519.491242][T12072]  dump_stack_lvl+0x16c/0x1f0
[  519.491269][T12072]  should_fail_ex+0x512/0x640
[  519.491298][T12072]  _copy_to_user+0x32/0xd0
[  519.491329][T12072]  simple_read_from_buffer+0xcb/0x170
[  519.491362][T12072]  proc_fail_nth_read+0x197/0x240
[  519.491384][T12072]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  519.491405][T12072]  ? rw_verify_area+0xcf/0x6c0
[  519.491422][T12072]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  519.491442][T12072]  vfs_read+0x1e4/0xcf0
[  519.491465][T12072]  ? __pfx___mutex_lock+0x10/0x10
[  519.491489][T12072]  ? __pfx_vfs_read+0x10/0x10
[  519.491516][T12072]  ? __fget_files+0x20e/0x3c0
[  519.491542][T12072]  ksys_read+0x12a/0x250
[  519.491562][T12072]  ? __pfx_ksys_read+0x10/0x10
[  519.491589][T12072]  do_syscall_64+0xcd/0x490
[  519.491614][T12072]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  519.491632][T12072] RIP: 0033:0x7f358d78d5fc
[  519.491647][T12072] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  519.491665][T12072] RSP: 002b:00007f358e5a7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  519.491683][T12072] RAX: ffffffffffffffda RBX: 00007f358d9b5fa0 RCX: 00007f358d78d5fc
[  519.491695][T12072] RDX: 000000000000000f RSI: 00007f358e5a70a0 RDI: 0000000000000004
[  519.491705][T12072] RBP: 00007f358e5a7090 R08: 0000000000000000 R09: 0000000000000000
[  519.491716][T12072] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  519.491726][T12072] R13: 00007f358d9b6038 R14: 00007f358d9b5fa0 R15: 00007ffe74892498
[  519.491749][T12072]  </TASK>
[  519.680571][    C0] vkms_vblank_simulate: vblank timer overrun
[  519.710882][T12063] random: crng reseeded on system resumption
[  521.915825][T12113] netlink: 'syz.2.1400': attribute type 15 has an invalid length.
[  522.018955][T12113] netlink: 252 bytes leftover after parsing attributes in process `syz.2.1400'.
[  522.173738][T12120] netlink: 186 bytes leftover after parsing attributes in process `syz.2.1400'.
[  522.300736][T12123] netlink: 186 bytes leftover after parsing attributes in process `syz.2.1400'.
[  523.033007][T12140] FAULT_INJECTION: forcing a failure.
[  523.033007][T12140] name failslab, interval 1, probability 0, space 0, times 0
[  523.073804][T12140] CPU: 0 UID: 0 PID: 12140 Comm: syz.1.1409 Tainted: G     U              6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  523.073836][T12140] Tainted: [U]=USER
[  523.073842][T12140] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  523.073853][T12140] Call Trace:
[  523.073859][T12140]  <TASK>
[  523.073866][T12140]  dump_stack_lvl+0x16c/0x1f0
[  523.073893][T12140]  should_fail_ex+0x512/0x640
[  523.073917][T12140]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  523.073942][T12140]  should_failslab+0xc2/0x120
[  523.073966][T12140]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  523.073989][T12140]  ? security_file_alloc+0x34/0x2b0
[  523.074017][T12140]  security_file_alloc+0x34/0x2b0
[  523.074048][T12140]  init_file+0x93/0x4c0
[  523.074074][T12140]  alloc_empty_file+0x73/0x1e0
[  523.074103][T12140]  path_openat+0xda/0x2cb0
[  523.074122][T12140]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  523.074149][T12140]  ? __pfx_path_openat+0x10/0x10
[  523.074176][T12140]  do_filp_open+0x20b/0x470
[  523.074199][T12140]  ? __pfx_do_filp_open+0x10/0x10
[  523.074235][T12140]  ? alloc_fd+0x471/0x7d0
[  523.074260][T12140]  do_sys_openat2+0x11b/0x1d0
[  523.074288][T12140]  ? __pfx_do_sys_openat2+0x10/0x10
[  523.074324][T12140]  __x64_sys_openat+0x174/0x210
[  523.074353][T12140]  ? __pfx___x64_sys_openat+0x10/0x10
[  523.074391][T12140]  do_syscall_64+0xcd/0x490
[  523.074415][T12140]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  523.074434][T12140] RIP: 0033:0x7f358d78d550
[  523.074449][T12140] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[  523.074467][T12140] RSP: 002b:00007f358e5a6fe0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  523.074485][T12140] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f358d78d550
[  523.074496][T12140] RDX: 0000000000000002 RSI: 00007f358d8120d3 RDI: 00000000ffffff9c
[  523.074507][T12140] RBP: 00007f358d8120d3 R08: 0000000000000000 R09: 00007f358e5a8000
[  523.074518][T12140] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  523.074529][T12140] R13: 00007f358d9b6038 R14: 00007f358d9b5fa0 R15: 00007ffe74892498
[  523.074550][T12140]  </TASK>
[  523.295931][    C0] vkms_vblank_simulate: vblank timer overrun
[  523.537897][T12142] FAULT_INJECTION: forcing a failure.
[  523.537897][T12142] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  523.561603][T12117] random: crng reseeded on system resumption
[  523.619134][T12142] CPU: 0 UID: 0 PID: 12142 Comm: syz.3.1410 Tainted: G     U              6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  523.619167][T12142] Tainted: [U]=USER
[  523.619173][T12142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  523.619183][T12142] Call Trace:
[  523.619190][T12142]  <TASK>
[  523.619198][T12142]  dump_stack_lvl+0x16c/0x1f0
[  523.619225][T12142]  should_fail_ex+0x512/0x640
[  523.619253][T12142]  _copy_from_iter+0x463/0x16f0
[  523.619286][T12142]  ? rcu_is_watching+0x12/0xc0
[  523.619306][T12142]  ? __pfx__copy_from_iter+0x10/0x10
[  523.619332][T12142]  ? kmem_cache_alloc_noprof+0x21e/0x3b0
[  523.619355][T12142]  ? __asan_memset+0x23/0x50
[  523.619374][T12142]  ? __build_skb_around+0x278/0x3b0
[  523.619393][T12142]  ? is_vmalloc_addr+0x86/0xa0
[  523.619415][T12142]  netlink_sendmsg+0x829/0xdd0
[  523.619443][T12142]  ? __pfx_netlink_sendmsg+0x10/0x10
[  523.619469][T12142]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  523.619491][T12142]  ____sys_sendmsg+0xa95/0xc70
[  523.619521][T12142]  ? __pfx_____sys_sendmsg+0x10/0x10
[  523.619559][T12142]  ___sys_sendmsg+0x134/0x1d0
[  523.619583][T12142]  ? __pfx____sys_sendmsg+0x10/0x10
[  523.619615][T12142]  ? find_held_lock+0x2b/0x80
[  523.619646][T12142]  __sys_sendmmsg+0x200/0x420
[  523.619671][T12142]  ? __pfx___sys_sendmmsg+0x10/0x10
[  523.619701][T12142]  ? __pfx_do_futex+0x10/0x10
[  523.619732][T12142]  ? __sys_socket+0xac/0x260
[  523.619750][T12142]  ? xfd_validate_state+0x61/0x180
[  523.619775][T12142]  ? __pfx_do_writev+0x10/0x10
[  523.619799][T12142]  __x64_sys_sendmmsg+0x9c/0x100
[  523.619821][T12142]  ? lockdep_hardirqs_on+0x7c/0x110
[  523.619842][T12142]  do_syscall_64+0xcd/0x490
[  523.619867][T12142]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  523.619885][T12142] RIP: 0033:0x7f382e78ebe9
[  523.619899][T12142] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  523.619917][T12142] RSP: 002b:00007f382f5f0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  523.619935][T12142] RAX: ffffffffffffffda RBX: 00007f382e9b5fa0 RCX: 00007f382e78ebe9
[  523.619946][T12142] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000006
[  523.619957][T12142] RBP: 00007f382e811e19 R08: 0000000000000000 R09: 0000000000000000
[  523.619967][T12142] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000000
[  523.619977][T12142] R13: 00007f382e9b6038 R14: 00007f382e9b5fa0 R15: 00007fff4e103cd8
[  523.619998][T12142]  </TASK>
[  523.866743][    C0] vkms_vblank_simulate: vblank timer overrun
[  524.688008][T12163] ICMPv6: process `syz.1.1417' is using deprecated sysctl (syscall) net.ipv6.neigh.ipvlan1.retrans_time - use net.ipv6.neigh.ipvlan1.retrans_time_ms instead
[  525.999909][T12184] FAULT_INJECTION: forcing a failure.
[  525.999909][T12184] name fail_futex, interval 1, probability 0, space 0, times 0
[  526.065339][T12187] random: crng reseeded on system resumption
[  526.191834][T12184] CPU: 0 UID: 0 PID: 12184 Comm: syz.3.1422 Tainted: G     U              6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  526.191866][T12184] Tainted: [U]=USER
[  526.191872][T12184] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  526.191882][T12184] Call Trace:
[  526.191889][T12184]  <TASK>
[  526.191896][T12184]  dump_stack_lvl+0x16c/0x1f0
[  526.191922][T12184]  should_fail_ex+0x512/0x640
[  526.191951][T12184]  get_futex_key+0x1d0/0x1560
[  526.191976][T12184]  ? __pfx_get_futex_key+0x10/0x10
[  526.192005][T12184]  futex_wake+0xea/0x530
[  526.192031][T12184]  ? rcu_is_watching+0x12/0xc0
[  526.192059][T12184]  ? __pfx_futex_wake+0x10/0x10
[  526.192087][T12184]  ? kmem_cache_free+0x2d1/0x4d0
[  526.192108][T12184]  ? fd_install+0x225/0x750
[  526.192125][T12184]  ? putname+0x154/0x1a0
[  526.192153][T12184]  do_futex+0x1e3/0x350
[  526.192177][T12184]  ? __pfx_do_futex+0x10/0x10
[  526.192205][T12184]  __x64_sys_futex+0x1e0/0x4c0
[  526.192230][T12184]  ? __x64_sys_openat+0x174/0x210
[  526.192259][T12184]  ? __pfx___x64_sys_futex+0x10/0x10
[  526.192291][T12184]  do_syscall_64+0xcd/0x490
[  526.192315][T12184]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  526.192333][T12184] RIP: 0033:0x7f382e78ebe9
[  526.192348][T12184] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  526.192365][T12184] RSP: 002b:00007f382f5f00e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  526.192383][T12184] RAX: ffffffffffffffda RBX: 00007f382e9b5fa8 RCX: 00007f382e78ebe9
[  526.192394][T12184] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f382e9b5fac
[  526.192405][T12184] RBP: 00007f382e9b5fa0 R08: 00007f382f5f1000 R09: 0000000000000000
[  526.192415][T12184] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000000
[  526.192426][T12184] R13: 00007f382e9b6038 R14: 00007fff4e103bf0 R15: 00007fff4e103cd8
[  526.192447][T12184]  </TASK>
[  527.287667][T12200] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1425'.
[  529.544636][T12223] random: crng reseeded on system resumption
[  529.746163][T12226] netlink: 74 bytes leftover after parsing attributes in process `syz.1.1432'.
[  532.016642][ T5874] Bluetooth: hci3: SCO packet for unknown connection handle 0
[  533.941690][T12275] random: crng reseeded on system resumption
[  535.751871][T12287] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  535.821428][T12287] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  535.914565][T12287] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  535.997265][T12287] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  536.060186][T12302] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_rx_wq": -EINTR
[  536.685017][T12322] netlink: 25 bytes leftover after parsing attributes in process `syz.2.1452'.
[  536.758311][T12324] FAULT_INJECTION: forcing a failure.
[  536.758311][T12324] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  536.842586][T12324] CPU: 0 UID: 0 PID: 12324 Comm: syz.1.1453 Tainted: G     U              6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  536.842616][T12324] Tainted: [U]=USER
[  536.842622][T12324] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  536.842632][T12324] Call Trace:
[  536.842638][T12324]  <TASK>
[  536.842645][T12324]  dump_stack_lvl+0x16c/0x1f0
[  536.842672][T12324]  should_fail_ex+0x512/0x640
[  536.842701][T12324]  _copy_from_iter+0x29f/0x16f0
[  536.842733][T12324]  ? rcu_is_watching+0x12/0xc0
[  536.842753][T12324]  ? __pfx__copy_from_iter+0x10/0x10
[  536.842780][T12324]  ? kmem_cache_alloc_noprof+0x21e/0x3b0
[  536.842803][T12324]  ? __asan_memset+0x23/0x50
[  536.842821][T12324]  ? __build_skb_around+0x278/0x3b0
[  536.842840][T12324]  ? is_vmalloc_addr+0x86/0xa0
[  536.842865][T12324]  netlink_sendmsg+0x829/0xdd0
[  536.842893][T12324]  ? __pfx_netlink_sendmsg+0x10/0x10
[  536.842927][T12324]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  536.842950][T12324]  ____sys_sendmsg+0xa95/0xc70
[  536.842979][T12324]  ? copy_msghdr_from_user+0x10a/0x160
[  536.843002][T12324]  ? __pfx_____sys_sendmsg+0x10/0x10
[  536.843040][T12324]  ___sys_sendmsg+0x134/0x1d0
[  536.843064][T12324]  ? __pfx____sys_sendmsg+0x10/0x10
[  536.843106][T12324]  ? __mutex_unlock_slowpath+0x140/0x800
[  536.843136][T12324]  __sys_sendmsg+0x16d/0x220
[  536.843161][T12324]  ? __pfx___sys_sendmsg+0x10/0x10
[  536.843198][T12324]  do_syscall_64+0xcd/0x490
[  536.843223][T12324]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  536.843242][T12324] RIP: 0033:0x7f358d78ebe9
[  536.843256][T12324] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  536.843274][T12324] RSP: 002b:00007f358e5a7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  536.843291][T12324] RAX: ffffffffffffffda RBX: 00007f358d9b5fa0 RCX: 00007f358d78ebe9
[  536.843303][T12324] RDX: 0000000000000004 RSI: 0000200000000100 RDI: 0000000000000003
[  536.843314][T12324] RBP: 00007f358e5a7090 R08: 0000000000000000 R09: 0000000000000000
[  536.843325][T12324] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  536.843335][T12324] R13: 00007f358d9b6038 R14: 00007f358d9b5fa0 R15: 00007ffe74892498
[  536.843357][T12324]  </TASK>
[  537.064932][    C0] vkms_vblank_simulate: vblank timer overrun
[  537.348437][ T5874] Bluetooth: hci0: command 0x0406 tx timeout
[  537.708335][T12336] random: crng reseeded on system resumption
[  537.893790][ T5869] Bluetooth: hci3: command 0x0406 tx timeout
[  537.966134][T12340] FAULT_INJECTION: forcing a failure.
[  537.966134][T12340] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  537.983588][ T5869] Bluetooth: hci2: command 0x0406 tx timeout
[  538.048179][T12340] CPU: 0 UID: 0 PID: 12340 Comm: syz.1.1456 Tainted: G     U              6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  538.048212][T12340] Tainted: [U]=USER
[  538.048218][T12340] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  538.048228][T12340] Call Trace:
[  538.048234][T12340]  <TASK>
[  538.048241][T12340]  dump_stack_lvl+0x16c/0x1f0
[  538.048268][T12340]  should_fail_ex+0x512/0x640
[  538.048297][T12340]  should_fail_alloc_page+0xe7/0x130
[  538.048324][T12340]  prepare_alloc_pages+0x3c2/0x610
[  538.048355][T12340]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  538.048382][T12340]  ? rcu_is_watching+0x12/0xc0
[  538.048401][T12340]  ? trace_mm_page_alloc+0x11f/0x1a0
[  538.048429][T12340]  ? __alloc_frozen_pages_noprof+0x294/0x23f0
[  538.048454][T12340]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  538.048490][T12340]  ? get_il_weight+0xea/0x290
[  538.048516][T12340]  ? get_il_weight+0xf4/0x290
[  538.048541][T12340]  alloc_pages_bulk_noprof+0x71c/0x1410
[  538.048566][T12340]  ? policy_nodemask+0xea/0x4e0
[  538.048591][T12340]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[  538.048614][T12340]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  538.048648][T12340]  kasan_populate_vmalloc+0xf1/0x1f0
[  538.048673][T12340]  alloc_vmap_area+0x959/0x29c0
[  538.048709][T12340]  ? __pfx_alloc_vmap_area+0x10/0x10
[  538.048741][T12340]  __get_vm_area_node+0x1ca/0x330
[  538.048773][T12340]  __vmalloc_node_range_noprof+0x271/0x14b0
[  538.048803][T12340]  ? n_tty_open+0x1a/0x170
[  538.048833][T12340]  ? __lock_acquire+0xb97/0x1ce0
[  538.048857][T12340]  ? n_tty_open+0x1a/0x170
[  538.048896][T12340]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  538.048928][T12340]  ? find_held_lock+0x2b/0x80
[  538.048946][T12340]  ? n_tty_open+0x12b/0x170
[  538.048973][T12340]  ? n_tty_open+0x1a/0x170
[  538.048999][T12340]  __vmalloc_node_noprof+0xad/0xf0
[  538.049027][T12340]  ? n_tty_open+0x1a/0x170
[  538.049054][T12340]  ? __pfx_n_tty_open+0x10/0x10
[  538.049083][T12340]  n_tty_open+0x1a/0x170
[  538.049108][T12340]  ? __pfx_n_tty_open+0x10/0x10
[  538.049134][T12340]  tty_ldisc_open+0x9c/0x120
[  538.049156][T12340]  tty_ldisc_setup+0x87/0x100
[  538.049178][T12340]  tty_init_dev.part.0+0x1ec/0x500
[  538.049211][T12340]  tty_open+0xa50/0xf90
[  538.049239][T12340]  ? __pfx_tty_open+0x10/0x10
[  538.049265][T12340]  ? chrdev_open+0x58c/0x6a0
[  538.049291][T12340]  ? __pfx_tty_open+0x10/0x10
[  538.049314][T12340]  chrdev_open+0x231/0x6a0
[  538.049338][T12340]  ? __pfx_chrdev_open+0x10/0x10
[  538.049363][T12340]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  538.049387][T12340]  do_dentry_open+0x97f/0x1530
[  538.049410][T12340]  ? __pfx_chrdev_open+0x10/0x10
[  538.049438][T12340]  vfs_open+0x82/0x3f0
[  538.049468][T12340]  path_openat+0x1de4/0x2cb0
[  538.049497][T12340]  ? __pfx_path_openat+0x10/0x10
[  538.049524][T12340]  do_filp_open+0x20b/0x470
[  538.049546][T12340]  ? __pfx_do_filp_open+0x10/0x10
[  538.049584][T12340]  ? alloc_fd+0x471/0x7d0
[  538.049610][T12340]  do_sys_openat2+0x11b/0x1d0
[  538.049637][T12340]  ? __pfx_do_sys_openat2+0x10/0x10
[  538.049673][T12340]  __x64_sys_openat+0x174/0x210
[  538.049701][T12340]  ? __pfx___x64_sys_openat+0x10/0x10
[  538.049739][T12340]  do_syscall_64+0xcd/0x490
[  538.049763][T12340]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  538.049782][T12340] RIP: 0033:0x7f358d78ebe9
[  538.049796][T12340] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  538.049814][T12340] RSP: 002b:00007f358e5a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  538.049832][T12340] RAX: ffffffffffffffda RBX: 00007f358d9b5fa0 RCX: 00007f358d78ebe9
[  538.049843][T12340] RDX: 0000000000040001 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  538.049854][T12340] RBP: 00007f358d811e19 R08: 0000000000000000 R09: 0000000000000000
[  538.049865][T12340] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  538.049884][T12340] R13: 00007f358d9b6038 R14: 00007f358d9b5fa0 R15: 00007ffe74892498
[  538.049907][T12340]  </TASK>
[  538.440742][    C0] vkms_vblank_simulate: vblank timer overrun
[  538.859310][T12340] syz.1.1456: vmalloc error: size 9128, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  538.933684][T12340] CPU: 0 UID: 0 PID: 12340 Comm: syz.1.1456 Tainted: G     U              6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  538.933716][T12340] Tainted: [U]=USER
[  538.933723][T12340] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  538.933734][T12340] Call Trace:
[  538.933740][T12340]  <TASK>
[  538.933747][T12340]  dump_stack_lvl+0x16c/0x1f0
[  538.933774][T12340]  warn_alloc+0x248/0x3a0
[  538.933798][T12340]  ? __pfx_warn_alloc+0x10/0x10
[  538.933822][T12340]  ? kfree+0x2b4/0x4d0
[  538.933852][T12340]  ? __get_vm_area_node+0x208/0x330
[  538.933886][T12340]  __vmalloc_node_range_noprof+0xb2d/0x14b0
[  538.933921][T12340]  ? __lock_acquire+0xb97/0x1ce0
[  538.933945][T12340]  ? n_tty_open+0x1a/0x170
[  538.933979][T12340]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  538.934012][T12340]  ? find_held_lock+0x2b/0x80
[  538.934031][T12340]  ? n_tty_open+0x12b/0x170
[  538.934059][T12340]  ? n_tty_open+0x1a/0x170
[  538.934085][T12340]  __vmalloc_node_noprof+0xad/0xf0
[  538.934114][T12340]  ? n_tty_open+0x1a/0x170
[  538.934141][T12340]  ? __pfx_n_tty_open+0x10/0x10
[  538.934169][T12340]  n_tty_open+0x1a/0x170
[  538.934195][T12340]  ? __pfx_n_tty_open+0x10/0x10
[  538.934221][T12340]  tty_ldisc_open+0x9c/0x120
[  538.934242][T12340]  tty_ldisc_setup+0x87/0x100
[  538.934265][T12340]  tty_init_dev.part.0+0x1ec/0x500
[  538.934292][T12340]  tty_open+0xa50/0xf90
[  538.934321][T12340]  ? __pfx_tty_open+0x10/0x10
[  538.934346][T12340]  ? chrdev_open+0x58c/0x6a0
[  538.934372][T12340]  ? __pfx_tty_open+0x10/0x10
[  538.934396][T12340]  chrdev_open+0x231/0x6a0
[  538.934420][T12340]  ? __pfx_chrdev_open+0x10/0x10
[  538.934452][T12340]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  538.934477][T12340]  do_dentry_open+0x97f/0x1530
[  538.934499][T12340]  ? __pfx_chrdev_open+0x10/0x10
[  538.934527][T12340]  vfs_open+0x82/0x3f0
[  538.934557][T12340]  path_openat+0x1de4/0x2cb0
[  538.934587][T12340]  ? __pfx_path_openat+0x10/0x10
[  538.934615][T12340]  do_filp_open+0x20b/0x470
[  538.934637][T12340]  ? __pfx_do_filp_open+0x10/0x10
[  538.934675][T12340]  ? alloc_fd+0x471/0x7d0
[  538.934699][T12340]  do_sys_openat2+0x11b/0x1d0
[  538.934727][T12340]  ? __pfx_do_sys_openat2+0x10/0x10
[  538.934763][T12340]  __x64_sys_openat+0x174/0x210
[  538.934791][T12340]  ? __pfx___x64_sys_openat+0x10/0x10
[  538.934828][T12340]  do_syscall_64+0xcd/0x490
[  538.934861][T12340]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  538.934880][T12340] RIP: 0033:0x7f358d78ebe9
[  538.934895][T12340] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  538.934914][T12340] RSP: 002b:00007f358e5a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  538.934932][T12340] RAX: ffffffffffffffda RBX: 00007f358d9b5fa0 RCX: 00007f358d78ebe9
[  538.934944][T12340] RDX: 0000000000040001 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  538.934956][T12340] RBP: 00007f358d811e19 R08: 0000000000000000 R09: 0000000000000000
[  538.934967][T12340] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  538.934978][T12340] R13: 00007f358d9b6038 R14: 00007f358d9b5fa0 R15: 00007ffe74892498
[  538.935001][T12340]  </TASK>
[  538.935008][T12340] Mem-Info:
[  539.311391][ T5869] Bluetooth: hci1: command 0x0406 tx timeout
[  539.983636][T12340] active_anon:32238 inactive_anon:0 isolated_anon:0
[  539.983636][T12340]  active_file:8029 inactive_file:49721 isolated_file:0
[  539.983636][T12340]  unevictable:768 dirty:740 writeback:0
[  539.983636][T12340]  slab_reclaimable:11068 slab_unreclaimable:95050
[  539.983636][T12340]  mapped:27188 shmem:27136 pagetables:1255
[  539.983636][T12340]  sec_pagetables:0 bounce:0
[  539.983636][T12340]  kernel_misc_reclaimable:0
[  539.983636][T12340]  free:1280914 free_pcp:30719 free_cma:0
[  540.029687][    C0] vkms_vblank_simulate: vblank timer overrun
[  540.155579][T12340] Node 0 active_anon:102328kB inactive_anon:0kB active_file:32116kB inactive_file:198684kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:108752kB dirty:2960kB writeback:0kB shmem:80332kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:11216kB pagetables:4836kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  540.188167][    C0] vkms_vblank_simulate: vblank timer overrun
[  540.278242][T12340] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:184kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  540.384012][T12340] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  540.453632][T12340] lowmem_reserve[]: 0 2480 2481 2481 2481
[  540.463744][T12340] Node 0 DMA32 free:1287076kB boost:0kB min:34076kB low:42592kB high:51108kB reserved_highatomic:0KB free_highatomic:0KB active_anon:59396kB inactive_anon:0kB active_file:32116kB inactive_file:197356kB unevictable:1536kB writepending:2960kB present:3129332kB managed:2539616kB mlocked:0kB bounce:0kB free_pcp:108660kB local_pcp:108660kB free_cma:0kB
[  540.543581][T12340] lowmem_reserve[]: 0 0 1 1 1
[  540.548428][T12340] Node 0 Normal free:8kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:0kB inactive_file:1328kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB
[  540.613443][T12340] lowmem_reserve[]: 0 0 0 0 0
[  540.618413][T12340] Node 1 Normal free:3898832kB boost:0kB min:55804kB low:69752kB high:83700kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:6264kB local_pcp:6264kB free_cma:0kB
[  540.695009][T12340] lowmem_reserve[]: 0 0 0 0 0
[  540.699910][T12340] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  540.737642][T12340] Node 0 DMA32: 12862*4kB (UME) 1662*8kB (UME) 377*16kB (UME) 191*32kB (UME) 176*64kB (UME) 70*128kB (UME) 78*256kB (UME) 37*512kB (UME) 30*1024kB (UM) 7*2048kB (UM) 278*4096kB (UM) = 1319768kB
[  540.767677][T12340] Node 0 Normal: 0*4kB 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB
[  540.781671][T12340] Node 1 Normal: 138*4kB (UME) 49*8kB (UME) 36*16kB (UME) 241*32kB (UME) 103*64kB (UME) 22*128kB (UME) 5*256kB (UME) 2*512kB (ME) 1*1024kB (M) 3*2048kB (UE) 945*4096kB (M) = 3898832kB
[  540.800468][T12340] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  540.811547][T12340] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  540.821141][T12340] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  540.832563][T12340] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  540.842259][T12340] 59122 total pagecache pages
[  540.847562][T12340] 10 pages in swap cache
[  540.852926][T12340] Free swap  = 124956kB
[  540.861264][T12340] Total swap = 124996kB
[  540.865695][T12340] 2097051 pages RAM
[  540.869582][T12340] 0 pages HighMem/MovableOnly
[  540.876091][T12340] 430185 pages reserved
[  540.880270][T12340] 0 pages cma reserved
[  540.885183][T12340] pty pty228: ldisc open failed (-12), clearing slot 228
[  542.071251][T12349] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  542.078660][T12349] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  542.087051][T12349] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  542.096990][T12349] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  542.532919][T12378] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet.
[  542.607374][T12379] netlink: 'syz.1.1468': attribute type 2 has an invalid length.
[  542.834177][T12386] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  542.866869][T12386] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  542.883262][T12386] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  542.909295][T12386] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  543.566314][T12365] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input100
[  544.853673][ T5874] Bluetooth: hci3: command 0x0406 tx timeout
[  544.860538][T12404] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  544.884207][T12404] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  544.904991][T12404] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  544.923818][T12404] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  545.600809][   T30] audit: type=1804 audit(6138079984.733:16): pid=12423 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1475" name="/newroot/412/file0" dev="tmpfs" ino=2167 res=1 errno=0
[  546.294641][ T5874] Bluetooth: hci0: command 0x0406 tx timeout
[  546.921154][T12442] FAULT_INJECTION: forcing a failure.
[  546.921154][T12442] name fail_futex, interval 1, probability 0, space 0, times 0
[  546.934531][ T5874] Bluetooth: hci1: command 0x0406 tx timeout
[  546.940668][ T5874] Bluetooth: hci2: command 0x0406 tx timeout
[  546.946773][ T5869] Bluetooth: hci3: command 0x0406 tx timeout
[  547.358876][T12446] random: crng reseeded on system resumption
[  547.415022][T12442] CPU: 0 UID: 0 PID: 12442 Comm: syz.0.1480 Tainted: G     U              6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  547.415056][T12442] Tainted: [U]=USER
[  547.415071][T12442] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  547.415081][T12442] Call Trace:
[  547.415087][T12442]  <TASK>
[  547.415094][T12442]  dump_stack_lvl+0x16c/0x1f0
[  547.415122][T12442]  should_fail_ex+0x512/0x640
[  547.415151][T12442]  get_futex_key+0x1d0/0x1560
[  547.415177][T12442]  ? __pfx_get_futex_key+0x10/0x10
[  547.415198][T12442]  ? irqentry_exit+0x3b/0x90
[  547.415219][T12442]  ? lockdep_hardirqs_on+0x7c/0x110
[  547.415245][T12442]  futex_wait_setup+0x9d/0x550
[  547.415278][T12442]  __futex_wait+0x194/0x2f0
[  547.415306][T12442]  ? __pfx___futex_wait+0x10/0x10
[  547.415336][T12442]  ? __pfx_futex_wake_mark+0x10/0x10
[  547.415365][T12442]  ? futex_private_hash_put+0x176/0x300
[  547.415389][T12442]  ? futex_private_hash_put+0x18a/0x300
[  547.415413][T12442]  futex_wait+0xe8/0x380
[  547.415438][T12442]  ? __pfx_futex_wait+0x10/0x10
[  547.415469][T12442]  ? bpf_lsm_file_permission+0x9/0x10
[  547.415495][T12442]  ? security_file_permission+0x71/0x210
[  547.415525][T12442]  do_futex+0x229/0x350
[  547.415547][T12442]  ? __pfx_do_futex+0x10/0x10
[  547.415570][T12442]  ? __pfx_do_sendfile+0x10/0x10
[  547.415593][T12442]  __x64_sys_futex+0x1e0/0x4c0
[  547.415619][T12442]  ? __pfx___x64_sys_futex+0x10/0x10
[  547.415649][T12442]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  547.415680][T12442]  do_syscall_64+0xcd/0x490
[  547.415705][T12442]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  547.415723][T12442] RIP: 0033:0x7f554c38ebe9
[  547.415746][T12442] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  547.415764][T12442] RSP: 002b:00007f554d1150e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  547.415782][T12442] RAX: ffffffffffffffda RBX: 00007f554c5b6188 RCX: 00007f554c38ebe9
[  547.415794][T12442] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f554c5b6188
[  547.415805][T12442] RBP: 00007f554c5b6180 R08: 0000000000000000 R09: 0000000000000000
[  547.415816][T12442] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  547.415827][T12442] R13: 00007f554c5b6218 R14: 00007ffc7f42e1c0 R15: 00007ffc7f42e2a8
[  547.415849][T12442]  </TASK>
[  550.046042][T12456] random: crng reseeded on system resumption
[  550.738614][T12457] ALSA: mixer_oss: invalid OSS volume ''
[  551.694577][T12485] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  551.715873][T12485] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  551.745870][T12485] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  551.780430][T12485] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  552.076762][T12497] FAULT_INJECTION: forcing a failure.
[  552.076762][T12497] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  552.152143][T12497] CPU: 0 UID: 0 PID: 12497 Comm: syz.3.1489 Tainted: G     U              6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  552.152176][T12497] Tainted: [U]=USER
[  552.152182][T12497] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  552.152193][T12497] Call Trace:
[  552.152199][T12497]  <TASK>
[  552.152206][T12497]  dump_stack_lvl+0x16c/0x1f0
[  552.152234][T12497]  should_fail_ex+0x512/0x640
[  552.152264][T12497]  _copy_from_user+0x2e/0xd0
[  552.152293][T12497]  usbdev_ioctl+0x22d3/0x4070
[  552.152320][T12497]  ? __pfx_usbdev_ioctl+0x10/0x10
[  552.152346][T12497]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  552.152376][T12497]  ? do_vfs_ioctl+0x128/0x14f0
[  552.152414][T12497]  ? find_held_lock+0x2b/0x80
[  552.152432][T12497]  ? hook_file_ioctl_common+0x145/0x410
[  552.152461][T12497]  ? __fget_files+0x20e/0x3c0
[  552.152484][T12497]  ? __pfx_usbdev_ioctl+0x10/0x10
[  552.152507][T12497]  __x64_sys_ioctl+0x18e/0x210
[  552.152537][T12497]  do_syscall_64+0xcd/0x490
[  552.152562][T12497]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  552.152581][T12497] RIP: 0033:0x7f382e78ebe9
[  552.152595][T12497] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  552.152614][T12497] RSP: 002b:00007f382f5f0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  552.152631][T12497] RAX: ffffffffffffffda RBX: 00007f382e9b5fa0 RCX: 00007f382e78ebe9
[  552.152643][T12497] RDX: 0000200000001040 RSI: 00000000c0185500 RDI: 0000000000000003
[  552.152654][T12497] RBP: 00007f382f5f0090 R08: 0000000000000000 R09: 0000000000000000
[  552.152665][T12497] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  552.152695][T12497] R13: 00007f382e9b6038 R14: 00007f382e9b5fa0 R15: 00007fff4e103cd8
[  552.152718][T12497]  </TASK>
[  553.733705][ T5874] Bluetooth: hci3: command 0x0406 tx timeout
[  553.739831][ T5875] Bluetooth: hci0: command 0x0406 tx timeout
[  553.813895][ T5874] Bluetooth: hci1: command 0x0406 tx timeout
[  553.820044][ T5875] Bluetooth: hci2: command 0x0406 tx timeout
[  554.097190][T12502] random: crng reseeded on system resumption
[  557.515019][T12571] random: crng reseeded on system resumption
[  559.734079][T12595] random: crng reseeded on system resumption
[  561.915780][T12626] random: crng reseeded on system resumption
[  562.308520][T12631] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes.
[  562.760351][T12636] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes.
[  562.883731][T12633] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1515'.
[  566.442886][T12681] random: crng reseeded on system resumption
[  568.457810][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[  568.464272][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[  569.320276][T12709] random: crng reseeded on system resumption
[  570.012163][T12713] ALSA: mixer_oss: invalid OSS volume ''
[  570.705046][T12728] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  570.729424][T12728] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  570.755817][T12728] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  570.784490][T12728] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  570.963319][T12724] netlink: 'syz.2.1536': attribute type 2 has an invalid length.
[  571.414137][T12747] FAULT_INJECTION: forcing a failure.
[  571.414137][T12747] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  571.597114][T12747] CPU: 0 UID: 0 PID: 12747 Comm: syz.0.1541 Tainted: G     U              6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  571.597147][T12747] Tainted: [U]=USER
[  571.597152][T12747] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  571.597163][T12747] Call Trace:
[  571.597169][T12747]  <TASK>
[  571.597175][T12747]  dump_stack_lvl+0x16c/0x1f0
[  571.597203][T12747]  should_fail_ex+0x512/0x640
[  571.597232][T12747]  _copy_from_user+0x2e/0xd0
[  571.597261][T12747]  snd_seq_oss_write+0x397/0x7d0
[  571.597285][T12747]  ? __pfx_snd_seq_oss_write+0x10/0x10
[  571.597305][T12747]  ? common_file_perm+0x1a9/0x340
[  571.597329][T12747]  ? bpf_lsm_file_permission+0x9/0x10
[  571.597358][T12747]  ? __pfx_odev_write+0x10/0x10
[  571.597383][T12747]  odev_write+0x51/0xa0
[  571.597409][T12747]  vfs_write+0x29d/0x11d0
[  571.597434][T12747]  ? __pfx_vfs_write+0x10/0x10
[  571.597453][T12747]  ? find_held_lock+0x2b/0x80
[  571.597471][T12747]  ? __fget_files+0x204/0x3c0
[  571.597494][T12747]  ? __fget_files+0x20e/0x3c0
[  571.597519][T12747]  ksys_write+0x12a/0x250
[  571.597540][T12747]  ? __pfx_ksys_write+0x10/0x10
[  571.597567][T12747]  do_syscall_64+0xcd/0x490
[  571.597600][T12747]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  571.597619][T12747] RIP: 0033:0x7f554c38ebe9
[  571.597634][T12747] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  571.597652][T12747] RSP: 002b:00007f554d157038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  571.597670][T12747] RAX: ffffffffffffffda RBX: 00007f554c5b5fa0 RCX: 00007f554c38ebe9
[  571.597682][T12747] RDX: 000000000000fe04 RSI: 0000200000000040 RDI: 0000000000000003
[  571.597692][T12747] RBP: 00007f554d157090 R08: 0000000000000000 R09: 0000000000000000
[  571.597703][T12747] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  571.597713][T12747] R13: 00007f554c5b6038 R14: 00007f554c5b5fa0 R15: 00007ffc7f42e2a8
[  571.597735][T12747]  </TASK>
[  571.798003][    C0] vkms_vblank_simulate: vblank timer overrun
[  572.428051][T12758] netlink: 'syz.3.1545': attribute type 1 has an invalid length.
[  572.442369][T12759] random: crng reseeded on system resumption
[  572.515493][T12762] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes.
[  572.774081][ T5874] Bluetooth: hci2: command 0x0406 tx timeout
[  572.780179][ T5875] Bluetooth: hci3: command 0x0406 tx timeout
[  572.786358][ T5869] Bluetooth: hci0: command 0x0406 tx timeout
[  572.855310][ T5874] Bluetooth: hci1: command 0x0406 tx timeout
[  573.447345][T12775] random: crng reseeded on system resumption
[  574.200883][T12784] random: crng reseeded on system resumption
[  575.711148][T12791] random: crng reseeded on system resumption
[  575.874269][T12798] netlink: 'syz.0.1552': attribute type 2 has an invalid length.
[  576.223994][T12805] netlink: 'syz.1.1553': attribute type 2 has an invalid length.
[  582.917038][T12854] netlink: 'syz.1.1563': attribute type 2 has an invalid length.
[  583.353694][T12859] FAULT_INJECTION: forcing a failure.
[  583.353694][T12859] name failslab, interval 1, probability 0, space 0, times 0
[  583.405806][T12859] CPU: 0 UID: 0 PID: 12859 Comm: syz.1.1564 Tainted: G     U              6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  583.405839][T12859] Tainted: [U]=USER
[  583.405845][T12859] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  583.405856][T12859] Call Trace:
[  583.405862][T12859]  <TASK>
[  583.405869][T12859]  dump_stack_lvl+0x16c/0x1f0
[  583.405896][T12859]  should_fail_ex+0x512/0x640
[  583.405926][T12859]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  583.405951][T12859]  should_failslab+0xc2/0x120
[  583.405975][T12859]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  583.405998][T12859]  ? alloc_inode+0xc3/0x240
[  583.406027][T12859]  alloc_inode+0xc3/0x240
[  583.406053][T12859]  path_from_stashed+0x25b/0x750
[  583.406079][T12859]  open_namespace+0x8d/0x190
[  583.406099][T12859]  ? __pfx_open_namespace+0x10/0x10
[  583.406120][T12859]  ? bpf_lsm_capable+0x9/0x10
[  583.406141][T12859]  open_related_ns+0x41/0x70
[  583.406160][T12859]  __tun_chr_ioctl+0x1fd1/0x48b0
[  583.406188][T12859]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  583.406220][T12859]  ? __pfx___tun_chr_ioctl+0x10/0x10
[  583.406252][T12859]  ? hook_file_ioctl_common+0x145/0x410
[  583.406280][T12859]  ? __fget_files+0x20e/0x3c0
[  583.406303][T12859]  ? __pfx_tun_chr_ioctl+0x10/0x10
[  583.406332][T12859]  __x64_sys_ioctl+0x18e/0x210
[  583.406362][T12859]  do_syscall_64+0xcd/0x490
[  583.406387][T12859]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  583.406405][T12859] RIP: 0033:0x7f358d78ebe9
[  583.406419][T12859] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  583.406437][T12859] RSP: 002b:00007f358e586038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  583.406461][T12859] RAX: ffffffffffffffda RBX: 00007f358d9b6090 RCX: 00007f358d78ebe9
[  583.406473][T12859] RDX: 0000000000005c8d RSI: 00000000000054e3 RDI: 00000000000000c8
[  583.406484][T12859] RBP: 00007f358d811e19 R08: 0000000000000000 R09: 0000000000000000
[  583.406495][T12859] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  583.406505][T12859] R13: 00007f358d9b6128 R14: 00007f358d9b6090 R15: 00007ffe74892498
[  583.406528][T12859]  </TASK>
[  586.625853][T12886] netlink: 29 bytes leftover after parsing attributes in process `syz.1.1571'.
[  586.687070][T12876] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  586.803792][T12876] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  586.973309][T12876] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  587.164229][T12876] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  587.996057][T12895] netlink: 'syz.1.1572': attribute type 1 has an invalid length.
[  588.698623][ T5874] Bluetooth: hci0: command 0x0406 tx timeout
[  588.855191][ T5874] Bluetooth: hci3: command 0x0406 tx timeout
[  589.014745][ T5874] Bluetooth: hci2: command 0x0406 tx timeout
[  589.110006][T12906] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  589.117441][T12906] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  589.133829][T12906] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  589.157162][T12906] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  589.647566][T12918] __vm_enough_memory: pid: 12918, comm: syz.1.1578, bytes: 4398046511104 not enough memory for the allocation
[  590.781833][T12932] FAULT_INJECTION: forcing a failure.
[  590.781833][T12932] name failslab, interval 1, probability 0, space 0, times 0
[  590.794737][T12932] CPU: 0 UID: 0 PID: 12932 Comm: syz.1.1582 Tainted: G     U              6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  590.794767][T12932] Tainted: [U]=USER
[  590.794773][T12932] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  590.794784][T12932] Call Trace:
[  590.794790][T12932]  <TASK>
[  590.794797][T12932]  dump_stack_lvl+0x16c/0x1f0
[  590.794825][T12932]  should_fail_ex+0x512/0x640
[  590.794850][T12932]  ? fs_reclaim_acquire+0xae/0x150
[  590.794879][T12932]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  590.794904][T12932]  should_failslab+0xc2/0x120
[  590.794930][T12932]  __kmalloc_noprof+0xd2/0x510
[  590.794957][T12932]  tomoyo_realpath_from_path+0xc2/0x6e0
[  590.794990][T12932]  tomoyo_check_open_permission+0x2ab/0x3c0
[  590.795012][T12932]  ? __d_add+0x403/0xa50
[  590.795035][T12932]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  590.795079][T12932]  ? do_raw_spin_lock+0x12c/0x2b0
[  590.795112][T12932]  tomoyo_file_open+0x6b/0x90
[  590.795130][T12932]  security_file_open+0x84/0x1e0
[  590.795154][T12932]  do_dentry_open+0x596/0x1530
[  590.795183][T12932]  vfs_open+0x82/0x3f0
[  590.795211][T12932]  path_openat+0x1de4/0x2cb0
[  590.795239][T12932]  ? __pfx_path_openat+0x10/0x10
[  590.795266][T12932]  do_filp_open+0x20b/0x470
[  590.795325][T12932]  ? __pfx_do_filp_open+0x10/0x10
[  590.795354][T12932]  ? __pfx_kfree_link+0x10/0x10
[  590.795388][T12932]  ? alloc_fd+0x471/0x7d0
[  590.795414][T12932]  do_sys_openat2+0x11b/0x1d0
[  590.795442][T12932]  ? __pfx_do_sys_openat2+0x10/0x10
[  590.795478][T12932]  __x64_sys_openat+0x174/0x210
[  590.795507][T12932]  ? __pfx___x64_sys_openat+0x10/0x10
[  590.795543][T12932]  do_syscall_64+0xcd/0x490
[  590.795568][T12932]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  590.795586][T12932] RIP: 0033:0x7f358d78ebe9
[  590.795601][T12932] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  590.795618][T12932] RSP: 002b:00007f358e5a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  590.795636][T12932] RAX: ffffffffffffffda RBX: 00007f358d9b5fa0 RCX: 00007f358d78ebe9
[  590.795647][T12932] RDX: 0000000000000080 RSI: 0000200000000300 RDI: ffffffffffffff9c
[  590.795658][T12932] RBP: 00007f358d811e19 R08: 0000000000000000 R09: 0000000000000000
[  590.795668][T12932] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  590.795678][T12932] R13: 00007f358d9b6038 R14: 00007f358d9b5fa0 R15: 00007ffe74892498
[  590.795700][T12932]  </TASK>
[  590.795707][T12932] ERROR: Out of memory at tomoyo_realpath_from_path.
[  591.182765][ T5874] Bluetooth: hci1: command 0x0406 tx timeout
[  591.188951][ T5875] Bluetooth: hci2: command 0x0406 tx timeout
[  591.196716][ T5869] Bluetooth: hci3: command 0x0406 tx timeout
[  591.203049][ T5875] Bluetooth: hci0: command 0x0406 tx timeout
[  591.819201][T12939] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1583'.
[  592.922331][T12921] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input101
[  593.235826][T12961] netlink: 'syz.1.1590': attribute type 2 has an invalid length.
[  594.205874][T12965] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  594.232467][T12965] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  594.250772][T12965] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  594.274595][T12965] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  594.920794][T12942] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input102
[  596.215372][T12934] Bluetooth: hci0: command 0x0406 tx timeout
[  596.293772][T12934] Bluetooth: hci1: command 0x0406 tx timeout
[  596.299837][   T51] Bluetooth: hci2: command 0x0406 tx timeout
[  596.305952][ T5875] Bluetooth: hci3: command 0x0406 tx timeout
[  598.760604][T13004] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1600'.
[  599.972237][T13023] random: crng reseeded on system resumption
[  600.308595][T13026] FAULT_INJECTION: forcing a failure.
[  600.308595][T13026] name failslab, interval 1, probability 0, space 0, times 0
[  600.331823][T13026] CPU: 0 UID: 0 PID: 13026 Comm: syz.1.1606 Tainted: G     U              6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  600.331854][T13026] Tainted: [U]=USER
[  600.331860][T13026] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  600.331871][T13026] Call Trace:
[  600.331877][T13026]  <TASK>
[  600.331884][T13026]  dump_stack_lvl+0x16c/0x1f0
[  600.331911][T13026]  should_fail_ex+0x512/0x640
[  600.331936][T13026]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  600.331958][T13026]  should_failslab+0xc2/0x120
[  600.331983][T13026]  __kmalloc_cache_noprof+0x6a/0x3e0
[  600.332002][T13026]  ? find_held_lock+0x2b/0x80
[  600.332019][T13026]  ? alloc_pipe_info+0x10e/0x590
[  600.332045][T13026]  alloc_pipe_info+0x10e/0x590
[  600.332071][T13026]  splice_direct_to_actor+0x77d/0xa30
[  600.332092][T13026]  ? __lock_acquire+0x62e/0x1ce0
[  600.332115][T13026]  ? __pfx_direct_splice_actor+0x10/0x10
[  600.332135][T13026]  ? __pfx_aa_file_perm+0x10/0x10
[  600.332161][T13026]  ? find_held_lock+0x2b/0x80
[  600.332205][T13026]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  600.332223][T13026]  ? get_pid_task+0xfc/0x250
[  600.332253][T13026]  do_splice_direct+0x174/0x240
[  600.332279][T13026]  ? __pfx_do_splice_direct+0x10/0x10
[  600.332298][T13026]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  600.332320][T13026]  ? rw_verify_area+0xcf/0x6c0
[  600.332340][T13026]  do_sendfile+0xb06/0xe50
[  600.332364][T13026]  ? __pfx_do_sendfile+0x10/0x10
[  600.332384][T13026]  ? __fget_files+0x20e/0x3c0
[  600.332409][T13026]  __x64_sys_sendfile64+0x1d8/0x220
[  600.332434][T13026]  ? ksys_write+0x1ac/0x250
[  600.332454][T13026]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  600.332486][T13026]  do_syscall_64+0xcd/0x490
[  600.332511][T13026]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  600.332530][T13026] RIP: 0033:0x7f358d78ebe9
[  600.332545][T13026] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  600.332564][T13026] RSP: 002b:00007f358e5a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  600.332581][T13026] RAX: ffffffffffffffda RBX: 00007f358d9b5fa0 RCX: 00007f358d78ebe9
[  600.332593][T13026] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000008
[  600.332604][T13026] RBP: 00007f358e5a7090 R08: 0000000000000000 R09: 0000000000000000
[  600.332614][T13026] R10: 0000000000000048 R11: 0000000000000246 R12: 0000000000000001
[  600.332625][T13026] R13: 00007f358d9b6038 R14: 00007f358d9b5fa0 R15: 00007ffe74892498
[  600.332646][T13026]  </TASK>
[  601.051584][T13031] random: crng reseeded on system resumption
[  603.250960][T13041] netlink: 'syz.2.1610': attribute type 2 has an invalid length.
[  603.815437][T13055] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input103
[  604.522190][T13068] FAULT_INJECTION: forcing a failure.
[  604.522190][T13068] name fail_futex, interval 1, probability 0, space 0, times 0
[  604.568830][T13068] CPU: 0 UID: 0 PID: 13068 Comm: syz.3.1617 Tainted: G     U              6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  604.568864][T13068] Tainted: [U]=USER
[  604.568869][T13068] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  604.568880][T13068] Call Trace:
[  604.568886][T13068]  <TASK>
[  604.568893][T13068]  dump_stack_lvl+0x16c/0x1f0
[  604.568919][T13068]  should_fail_ex+0x512/0x640
[  604.568947][T13068]  get_futex_key+0x1d0/0x1560
[  604.568970][T13068]  ? __lock_acquire+0x62e/0x1ce0
[  604.568994][T13068]  ? __pfx_get_futex_key+0x10/0x10
[  604.569014][T13068]  ? __lock_acquire+0xb97/0x1ce0
[  604.569044][T13068]  futex_wait_setup+0x9d/0x550
[  604.569078][T13068]  __futex_wait+0x194/0x2f0
[  604.569106][T13068]  ? __pfx___futex_wait+0x10/0x10
[  604.569136][T13068]  ? __pfx_futex_wake_mark+0x10/0x10
[  604.569176][T13068]  ? futex_private_hash_put+0x176/0x300
[  604.569200][T13068]  ? futex_private_hash_put+0x18a/0x300
[  604.569222][T13068]  futex_wait+0xe8/0x380
[  604.569249][T13068]  ? __pfx_futex_wait+0x10/0x10
[  604.569280][T13068]  ? group_send_sig_info+0x11f/0x300
[  604.569304][T13068]  ? __pfx_group_send_sig_info+0x10/0x10
[  604.569325][T13068]  ? lock_acquire+0x179/0x350
[  604.569350][T13068]  do_futex+0x229/0x350
[  604.569373][T13068]  ? __pfx_do_futex+0x10/0x10
[  604.569396][T13068]  ? do_raw_read_unlock+0x44/0xe0
[  604.569424][T13068]  ? _raw_read_unlock+0x28/0x50
[  604.569447][T13068]  __x64_sys_futex+0x1e0/0x4c0
[  604.569473][T13068]  ? __pfx___x64_sys_futex+0x10/0x10
[  604.569504][T13068]  do_syscall_64+0xcd/0x490
[  604.569528][T13068]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  604.569547][T13068] RIP: 0033:0x7f382e78ebe9
[  604.569561][T13068] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  604.569579][T13068] RSP: 002b:00007f382f5f00e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  604.569597][T13068] RAX: ffffffffffffffda RBX: 00007f382e9b5fa8 RCX: 00007f382e78ebe9
[  604.569608][T13068] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f382e9b5fa8
[  604.569618][T13068] RBP: 00007f382e9b5fa0 R08: 0000000000000000 R09: 0000000000000000
[  604.569629][T13068] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  604.569639][T13068] R13: 00007f382e9b6038 R14: 00007fff4e103bf0 R15: 00007fff4e103cd8
[  604.569660][T13068]  </TASK>
[  604.805080][    C0] vkms_vblank_simulate: vblank timer overrun
[  605.442478][T13071] netlink: set zone limit has 8 unknown bytes
[  605.861172][T13089] random: crng reseeded on system resumption
[  608.087925][T13109] random: crng reseeded on system resumption
[  608.186197][T13091] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1622'.
[  610.404049][T13127] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input104
[  612.270880][T13151] blktrace: Concurrent blktraces are not allowed on loop2
[  613.464064][T13177] random: crng reseeded on system resumption
[  614.209098][T13184] netlink: 'syz.1.1642': attribute type 2 has an invalid length.
[  615.120943][T13192] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input105
[  617.612074][T13191] random: crng reseeded on system resumption
[  618.708495][T13224] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1650'.
[  618.734696][T13224] netlink: 13 bytes leftover after parsing attributes in process `syz.3.1650'.
[  621.257696][T13244] random: crng reseeded on system resumption
[  622.894373][T13256] random: crng reseeded on system resumption
[  624.174607][T13264] random: crng reseeded on system resumption
[  624.291629][T13273] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input106
[  626.331969][T13299] vhci_hcd: invalid port number 23
[  627.565562][T13297] random: crng reseeded on system resumption
[  629.258984][T13326] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes.
[  629.897718][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[  629.915250][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[  630.583600][   T30] audit: type=1804 audit(6138080069.711:17): pid=13333 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1672" name="/newroot/419/file0" dev="tmpfs" ino=2189 res=1 errno=0
[  630.631783][T13332] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input107
[  631.341840][T13340] FAULT_INJECTION: forcing a failure.
[  631.341840][T13340] name failslab, interval 1, probability 0, space 0, times 0
[  631.384493][T13340] CPU: 0 UID: 0 PID: 13340 Comm: syz.1.1674 Tainted: G     U              6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  631.384526][T13340] Tainted: [U]=USER
[  631.384532][T13340] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  631.384543][T13340] Call Trace:
[  631.384549][T13340]  <TASK>
[  631.384556][T13340]  dump_stack_lvl+0x16c/0x1f0
[  631.384584][T13340]  should_fail_ex+0x512/0x640
[  631.384608][T13340]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  631.384630][T13340]  should_failslab+0xc2/0x120
[  631.384655][T13340]  __kmalloc_cache_noprof+0x6a/0x3e0
[  631.384674][T13340]  ? __pfx_pipe_lock_cmp_fn+0x10/0x10
[  631.384694][T13340]  ? watch_queue_init+0x45/0x170
[  631.384722][T13340]  watch_queue_init+0x45/0x170
[  631.384747][T13340]  create_pipe_files+0x676/0x9a0
[  631.384774][T13340]  do_pipe2+0xaf/0x1c0
[  631.384797][T13340]  ? __pfx_do_pipe2+0x10/0x10
[  631.384821][T13340]  ? xfd_validate_state+0x61/0x180
[  631.384853][T13340]  __x64_sys_pipe2+0x54/0x80
[  631.384876][T13340]  do_syscall_64+0xcd/0x490
[  631.384901][T13340]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  631.384919][T13340] RIP: 0033:0x7f358d78ebe9
[  631.384933][T13340] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  631.384960][T13340] RSP: 002b:00007f358e5a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000125
[  631.384978][T13340] RAX: ffffffffffffffda RBX: 00007f358d9b5fa0 RCX: 00007f358d78ebe9
[  631.384990][T13340] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 0000000000000000
[  631.385000][T13340] RBP: 00007f358d811e19 R08: 0000000000000000 R09: 0000000000000000
[  631.385011][T13340] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  631.385021][T13340] R13: 00007f358d9b6038 R14: 00007f358d9b5fa0 R15: 00007ffe74892498
[  631.385042][T13340]  </TASK>
[  632.014644][T13352] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input108
[  633.161537][T13353] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input109
[  634.124697][T13373] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  634.124851][T13373] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  634.124974][T13373] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  634.125086][T13373] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  636.065548][T13393] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  636.084996][T13393] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  636.104050][T13393] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  636.110140][T13393] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  636.721546][T13409] ubi0: attaching mtd0
[  636.780959][T13409] ubi0: scanning is finished
[  636.795387][T13409] ubi0: empty MTD device detected
[  636.818706][T13406] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1686'.
[  637.446016][T13409] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB)
[  637.543657][T13409] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[  637.593570][T13409] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1
[  637.693707][T13409] ubi0: VID header offset: 64 (aligned 64), data offset: 128
[  637.821751][T13409] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[  637.875428][T13409] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23
[  637.883432][T13409] ubi0: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 2951030709
[  638.051813][T13409] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[  638.133620][T12934] Bluetooth: hci1: command 0x0406 tx timeout
[  638.139710][   T51] Bluetooth: hci2: command 0x0406 tx timeout
[  638.145971][ T5875] Bluetooth: hci3: command 0x0406 tx timeout
[  638.151999][ T5875] Bluetooth: hci0: command 0x0406 tx timeout
[  638.165005][T13410] ubi0: detaching mtd0
[  638.200454][T13415] ubi0: background thread "ubi_bgt0d" started, PID 13415
[  638.380323][T13410] ubi0: mtd0 is detached
[  639.905494][T13444] device-mapper: ioctl: Invalid ioctl structure: name �, dev 7f00010002
[  640.499160][T13450] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input110
[  641.082911][T13458] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  641.094375][T13458] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  641.115280][T13458] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  641.144816][T13458] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  641.911300][T13451] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input111
[  642.781775][T13482] random: crng reseeded on system resumption
[  643.093620][T12934] Bluetooth: hci0: command 0x0406 tx timeout
[  643.175232][T12934] Bluetooth: hci1: command 0x0406 tx timeout
[  643.181400][ T5875] Bluetooth: hci2: command 0x0406 tx timeout
[  643.187774][   T51] Bluetooth: hci3: command 0x0406 tx timeout
[  643.482454][T13491] random: crng reseeded on system resumption
[  644.323088][T13506] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1705'.
[  644.444310][T13506] netlink: 'syz.3.1705': attribute type 1 has an invalid length.
[  644.485925][T13506] netlink: 13 bytes leftover after parsing attributes in process `syz.3.1705'.
[  647.254810][T13543] FAULT_INJECTION: forcing a failure.
[  647.254810][T13543] name failslab, interval 1, probability 0, space 0, times 0
[  647.547128][   T30] audit: type=1800 audit(6138080086.661:18): pid=13544 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1712" name="members" dev="configfs" ino=47055 res=0 errno=0
[  647.567587][    C0] vkms_vblank_simulate: vblank timer overrun
[  647.799523][T13543] CPU: 0 UID: 0 PID: 13543 Comm: syz.0.1710 Tainted: G     U              6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  647.799556][T13543] Tainted: [U]=USER
[  647.799562][T13543] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  647.799573][T13543] Call Trace:
[  647.799579][T13543]  <TASK>
[  647.799587][T13543]  dump_stack_lvl+0x16c/0x1f0
[  647.799614][T13543]  should_fail_ex+0x512/0x640
[  647.799640][T13543]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  647.799665][T13543]  should_failslab+0xc2/0x120
[  647.799697][T13543]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  647.799720][T13543]  ? __d_alloc+0x32/0xae0
[  647.799745][T13543]  __d_alloc+0x32/0xae0
[  647.799770][T13543]  d_alloc_pseudo+0x1c/0xc0
[  647.799798][T13543]  alloc_file_pseudo+0xcf/0x230
[  647.799828][T13543]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  647.799862][T13543]  __shmem_file_setup+0x1a3/0x330
[  647.799883][T13543]  shmem_zero_setup+0x93/0x1a0
[  647.799908][T13543]  __mmap_region+0x2081/0x27b0
[  647.799934][T13543]  ? __pfx___mmap_region+0x10/0x10
[  647.799961][T13543]  ? is_bpf_text_address+0x8a/0x1a0
[  647.799985][T13543]  ? bpf_ksym_find+0x124/0x1c0
[  647.800002][T13543]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  647.800025][T13543]  ? is_bpf_text_address+0x94/0x1a0
[  647.800047][T13543]  ? kernel_text_address+0x8d/0x100
[  647.800078][T13543]  ? __kernel_text_address+0xd/0x40
[  647.800129][T13543]  ? trace_cap_capable+0x18d/0x200
[  647.800156][T13543]  mmap_region+0x1ab/0x3f0
[  647.800178][T13543]  ? __get_unmapped_area+0x267/0x440
[  647.800208][T13543]  do_mmap+0xa3e/0x1210
[  647.800238][T13543]  ? __pfx_do_mmap+0x10/0x10
[  647.800265][T13543]  ? __pfx_down_write_killable+0x10/0x10
[  647.800296][T13543]  vm_mmap_pgoff+0x29e/0x470
[  647.800327][T13543]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  647.800355][T13543]  ? __fget_files+0x20e/0x3c0
[  647.800382][T13543]  ksys_mmap_pgoff+0x7d/0x5c0
[  647.800408][T13543]  ? __pfx_ksys_write+0x10/0x10
[  647.800432][T13543]  __x64_sys_mmap+0x125/0x190
[  647.800463][T13543]  do_syscall_64+0xcd/0x490
[  647.800489][T13543]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  647.800512][T13543] RIP: 0033:0x7f554c38ebe9
[  647.800527][T13543] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  647.800545][T13543] RSP: 002b:00007f554d157038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  647.800564][T13543] RAX: ffffffffffffffda RBX: 00007f554c5b5fa0 RCX: 00007f554c38ebe9
[  647.800576][T13543] RDX: 0000000000000003 RSI: 0000000002020009 RDI: 0000000000000000
[  647.800587][T13543] RBP: 00007f554d157090 R08: fffffffffffffffa R09: 0000000000008000
[  647.800598][T13543] R10: 0000009000000eb1 R11: 0000000000000246 R12: 0000000000000001
[  647.800609][T13543] R13: 00007f554c5b6038 R14: 00007f554c5b5fa0 R15: 00007ffc7f42e2a8
[  647.800632][T13543]  </TASK>
[  648.080566][    C0] vkms_vblank_simulate: vblank timer overrun
[  648.786592][T12934] Bluetooth: hci0: command 0x0406 tx timeout
[  648.795280][T13524] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  648.839599][T13524] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  648.846071][T13524] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  648.856054][T13524] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  648.867505][T13533] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_cmd_wq": -EINTR
[  649.194975][T13559] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input112
[  649.749216][T13567] ptp ptp0: delete virtual clock ptp3
[  649.871433][T13567] ptp ptp0: delete virtual clock ptp2
[  650.023087][T13567] ptp ptp0: delete virtual clock ptp1
[  650.106394][T13567] ptp ptp0: only physical clock in use now
[  650.853611][T12934] Bluetooth: hci2: command 0x0406 tx timeout
[  650.859672][T12934] Bluetooth: hci3: command 0x0406 tx timeout
[  650.939562][T12934] Bluetooth: hci1: command 0x0406 tx timeout
[  652.540292][T13606] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes.
[  654.792754][T13630] FAULT_INJECTION: forcing a failure.
[  654.792754][T13630] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  654.827460][T13607] netlink: 'syz.0.1723': attribute type 2 has an invalid length.
[  654.897015][T13630] CPU: 0 UID: 0 PID: 13630 Comm: syz.3.1728 Tainted: G     U              6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  654.897047][T13630] Tainted: [U]=USER
[  654.897053][T13630] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  654.897063][T13630] Call Trace:
[  654.897069][T13630]  <TASK>
[  654.897076][T13630]  dump_stack_lvl+0x16c/0x1f0
[  654.897103][T13630]  should_fail_ex+0x512/0x640
[  654.897133][T13630]  _copy_from_user+0x2e/0xd0
[  654.897162][T13630]  snd_seq_oss_write+0x397/0x7d0
[  654.897186][T13630]  ? __pfx_snd_seq_oss_write+0x10/0x10
[  654.897207][T13630]  ? common_file_perm+0x1a9/0x340
[  654.897231][T13630]  ? bpf_lsm_file_permission+0x9/0x10
[  654.897261][T13630]  ? __pfx_odev_write+0x10/0x10
[  654.897286][T13630]  odev_write+0x51/0xa0
[  654.897312][T13630]  vfs_write+0x29d/0x11d0
[  654.897338][T13630]  ? __pfx_vfs_write+0x10/0x10
[  654.897357][T13630]  ? find_held_lock+0x2b/0x80
[  654.897376][T13630]  ? __fget_files+0x204/0x3c0
[  654.897399][T13630]  ? __fget_files+0x20e/0x3c0
[  654.897425][T13630]  ksys_write+0x12a/0x250
[  654.897445][T13630]  ? __pfx_ksys_write+0x10/0x10
[  654.897473][T13630]  do_syscall_64+0xcd/0x490
[  654.897502][T13630]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  654.897525][T13630] RIP: 0033:0x7f382e78ebe9
[  654.897539][T13630] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  654.897561][T13630] RSP: 002b:00007f382f5f0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  654.897578][T13630] RAX: ffffffffffffffda RBX: 00007f382e9b5fa0 RCX: 00007f382e78ebe9
[  654.897590][T13630] RDX: 000000000000fe04 RSI: 0000200000000040 RDI: 0000000000000003
[  654.897601][T13630] RBP: 00007f382f5f0090 R08: 0000000000000000 R09: 0000000000000000
[  654.897611][T13630] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  654.897622][T13630] R13: 00007f382e9b6038 R14: 00007f382e9b5fa0 R15: 00007fff4e103cd8
[  654.897643][T13630]  </TASK>
[  655.122303][T13633] block2mtd: device name too long
[  656.705301][T13654] random: crng reseeded on system resumption
[  658.070203][T13660] FAULT_INJECTION: forcing a failure.
[  658.070203][T13660] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  658.113629][T13660] CPU: 0 UID: 0 PID: 13660 Comm: syz.1.1735 Tainted: G     U              6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  658.113672][T13660] Tainted: [U]=USER
[  658.113679][T13660] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  658.113689][T13660] Call Trace:
[  658.113696][T13660]  <TASK>
[  658.113702][T13660]  dump_stack_lvl+0x16c/0x1f0
[  658.113731][T13660]  should_fail_ex+0x512/0x640
[  658.113760][T13660]  _copy_to_user+0x32/0xd0
[  658.113791][T13660]  simple_read_from_buffer+0xcb/0x170
[  658.113825][T13660]  proc_fail_nth_read+0x197/0x240
[  658.113845][T13660]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  658.113867][T13660]  ? rw_verify_area+0xcf/0x6c0
[  658.113885][T13660]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  658.113905][T13660]  vfs_read+0x1e4/0xcf0
[  658.113928][T13660]  ? __pfx___mutex_lock+0x10/0x10
[  658.113951][T13660]  ? __pfx_vfs_read+0x10/0x10
[  658.113978][T13660]  ? __fget_files+0x20e/0x3c0
[  658.114005][T13660]  ksys_read+0x12a/0x250
[  658.114025][T13660]  ? __pfx_ksys_read+0x10/0x10
[  658.114052][T13660]  do_syscall_64+0xcd/0x490
[  658.114077][T13660]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  658.114101][T13660] RIP: 0033:0x7f358d78d5fc
[  658.114116][T13660] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  658.114135][T13660] RSP: 002b:00007f358e586030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  658.114153][T13660] RAX: ffffffffffffffda RBX: 00007f358d9b6090 RCX: 00007f358d78d5fc
[  658.114164][T13660] RDX: 000000000000000f RSI: 00007f358e5860a0 RDI: 0000000000000003
[  658.114175][T13660] RBP: 00007f358e586090 R08: 0000000000000000 R09: 0000000004000000
[  658.114186][T13660] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  658.114196][T13660] R13: 00007f358d9b6128 R14: 00007f358d9b6090 R15: 00007ffe74892498
[  658.114219][T13660]  </TASK>
[  658.308842][    C0] vkms_vblank_simulate: vblank timer overrun
[  659.020543][T13673] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1738'.
[  659.041074][T13669] netlink: 'syz.3.1739': attribute type 2 has an invalid length.
[  659.503741][T13661] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input113
[  660.672591][T13688] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1743'.
[  661.201434][T13697] openvswitch: netlink: Key 0 has unexpected len 16 expected 0
[  662.645950][T13701] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input114
[  663.714739][T13727] random: crng reseeded on system resumption
[  665.701442][T12934] Bluetooth: hci2: unexpected event 0x01 length: 5 > 1
	
	

	
		

	
	

	
		
	
	

	
	
	
	

	
	
	

	
		
	

	
		

	
		

	


	
	

		
	
		
	
	

	



			








	




	





	



	



	

		

			
	

		
	

	
		
	

	
		
	






	





	





		







	

	
	
	

	
	
	

	
		
	




	
				

	
	
	

	

	

	
		

	
	
	

	
	





	




	
				
[  685.319632][T14002] random: crng reseeded on system resumption
[  688.764130][T14020] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  688.770720][T14020] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  688.780319][T14020] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  688.799076][T14020] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  689.182288][T14032] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1821'.
[  690.081294][T14049] input: jJǸ���;9�%v����l��Q�	J86�� as /devices/virtual/input/input119
[  690.773746][T12934] Bluetooth: hci0: command 0x0406 tx timeout
[  690.853746][ T5875] Bluetooth: hci2: command 0x0406 tx timeout
[  690.859824][ T5875] Bluetooth: hci3: command 0x0406 tx timeout
[  690.866709][T12934] Bluetooth: hci1: command 0x0406 tx timeout
[  691.164302][T14059] random: crng reseeded on system resumption
[  691.336978][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[  691.343417][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[  693.281941][T14075] FAULT_INJECTION: forcing a failure.
[  693.281941][T14075] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  693.303593][T14075] CPU: 0 UID: 0 PID: 14075 Comm: syz.1.1828 Tainted: G     U              6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  693.303626][T14075] Tainted: [U]=USER
[  693.303632][T14075] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  693.303643][T14075] Call Trace:
[  693.303649][T14075]  <TASK>
[  693.303656][T14075]  dump_stack_lvl+0x16c/0x1f0
[  693.303683][T14075]  should_fail_ex+0x512/0x640
[  693.303711][T14075]  core_sys_select+0x4c5/0xc10
[  693.303737][T14075]  ? __pfx_core_sys_select+0x10/0x10
[  693.303760][T14075]  ? proc_fail_nth_write+0x9f/0x220
[  693.303798][T14075]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  693.303827][T14075]  kern_select+0x15d/0x1e0
[  693.303846][T14075]  ? __pfx_kern_select+0x10/0x10
[  693.303868][T14075]  ? __pfx_ksys_write+0x10/0x10
[  693.303893][T14075]  __x64_sys_select+0xbd/0x160
[  693.303911][T14075]  ? do_syscall_64+0x91/0x490
[  693.303933][T14075]  ? lockdep_hardirqs_on+0x7c/0x110
[  693.303954][T14075]  do_syscall_64+0xcd/0x490
[  693.303979][T14075]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  693.303997][T14075] RIP: 0033:0x7f358d78ebe9
[  693.304013][T14075] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  693.304031][T14075] RSP: 002b:00007f358e5a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017
[  693.304049][T14075] RAX: ffffffffffffffda RBX: 00007f358d9b5fa0 RCX: 00007f358d78ebe9
[  693.304061][T14075] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000e
[  693.304072][T14075] RBP: 00007f358e5a7090 R08: 0000000000000000 R09: 0000000000000000
[  693.304082][T14075] R10: 00002000000002c0 R11: 0000000000000246 R12: 0000000000000001
[  693.304093][T14075] R13: 00007f358d9b6038 R14: 00007f358d9b5fa0 R15: 00007ffe74892498
[  693.304115][T14075]  </TASK>
[  693.491408][    C0] vkms_vblank_simulate: vblank timer overrun
[  693.754514][T14077] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1829'.
[  694.358673][T14085] netlink: 29 bytes leftover after parsing attributes in process `syz.3.1832'.
[  694.460149][T14085] FAULT_INJECTION: forcing a failure.
[  694.460149][T14085] name failslab, interval 1, probability 0, space 0, times 0
[  694.540386][T14085] CPU: 0 UID: 0 PID: 14085 Comm: syz.3.1832 Tainted: G     U              6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  694.540420][T14085] Tainted: [U]=USER
[  694.540426][T14085] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  694.540437][T14085] Call Trace:
[  694.540443][T14085]  <TASK>
[  694.540451][T14085]  dump_stack_lvl+0x16c/0x1f0
[  694.540478][T14085]  should_fail_ex+0x512/0x640
[  694.540503][T14085]  ? fs_reclaim_acquire+0xae/0x150
[  694.540532][T14085]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  694.540559][T14085]  should_failslab+0xc2/0x120
[  694.540583][T14085]  __kmalloc_noprof+0xd2/0x510
[  694.540610][T14085]  tomoyo_realpath_from_path+0xc2/0x6e0
[  694.540639][T14085]  ? tomoyo_profile+0x47/0x60
[  694.540670][T14085]  tomoyo_path_number_perm+0x245/0x580
[  694.540691][T14085]  ? tomoyo_path_number_perm+0x237/0x580
[  694.540715][T14085]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  694.540739][T14085]  ? find_held_lock+0x2b/0x80
[  694.540777][T14085]  ? find_held_lock+0x2b/0x80
[  694.540794][T14085]  ? hook_file_ioctl_common+0x145/0x410
[  694.540824][T14085]  ? __fget_files+0x20e/0x3c0
[  694.540848][T14085]  security_file_ioctl+0x9b/0x240
[  694.540872][T14085]  __x64_sys_ioctl+0xb7/0x210
[  694.540902][T14085]  do_syscall_64+0xcd/0x490
[  694.540928][T14085]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  694.540947][T14085] RIP: 0033:0x7f382e78ebe9
[  694.540963][T14085] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  694.540981][T14085] RSP: 002b:00007f382f5f0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  694.540999][T14085] RAX: ffffffffffffffda RBX: 00007f382e9b5fa0 RCX: 00007f382e78ebe9
[  694.541011][T14085] RDX: 0000000000000000 RSI: 00000000c048aeca RDI: 0000000000000004
[  694.541022][T14085] RBP: 00007f382f5f0090 R08: 0000000000000000 R09: 0000000000000000
[  694.541033][T14085] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  694.541044][T14085] R13: 00007f382e9b6038 R14: 00007f382e9b5fa0 R15: 00007fff4e103cd8
[  694.541066][T14085]  </TASK>
[  694.541074][T14085] ERROR: Out of memory at tomoyo_realpath_from_path.
[  696.589424][T14105] netlink: 'syz.1.1836': attribute type 2 has an invalid length.
[  699.219446][T14116] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  699.245827][T14116] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  699.286251][T14116] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  699.316791][T14116] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  699.326678][T14129] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_cmd_wq": -EINTR
[  699.893668][ T5875] Bluetooth: hci0: command 0x0406 tx timeout
[  700.736929][T14143] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input120
[  701.254999][ T5875] Bluetooth: hci3: command 0x0406 tx timeout
[  701.333761][ T5875] Bluetooth: hci1: command 0x0406 tx timeout
[  701.339899][ T5875] Bluetooth: hci2: command 0x0406 tx timeout
[  702.192229][T14161] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1847'.
[  703.689469][T14180] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input121
[  703.841144][T14180] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input122
[  704.775933][T14199] random: crng reseeded on system resumption
[  706.679249][T14218] random: crng reseeded on system resumption
[  707.867580][T14233] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  707.874110][T14233] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  707.884850][T14233] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  707.895192][T14233] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  707.997912][T14246] FAULT_INJECTION: forcing a failure.
[  707.997912][T14246] name failslab, interval 1, probability 0, space 0, times 0
[  708.031156][T14246] CPU: 0 UID: 0 PID: 14246 Comm: syz.1.1860 Tainted: G     U              6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  708.031192][T14246] Tainted: [U]=USER
[  708.031198][T14246] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  708.031209][T14246] Call Trace:
[  708.031215][T14246]  <TASK>
[  708.031223][T14246]  dump_stack_lvl+0x16c/0x1f0
[  708.031250][T14246]  should_fail_ex+0x512/0x640
[  708.031276][T14246]  ? fs_reclaim_acquire+0xae/0x150
[  708.031305][T14246]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  708.031332][T14246]  should_failslab+0xc2/0x120
[  708.031357][T14246]  __kmalloc_noprof+0xd2/0x510
[  708.031392][T14246]  tomoyo_realpath_from_path+0xc2/0x6e0
[  708.031422][T14246]  ? tomoyo_profile+0x47/0x60
[  708.031452][T14246]  tomoyo_path_number_perm+0x245/0x580
[  708.031474][T14246]  ? tomoyo_path_number_perm+0x237/0x580
[  708.031498][T14246]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  708.031522][T14246]  ? find_held_lock+0x2b/0x80
[  708.031560][T14246]  ? find_held_lock+0x2b/0x80
[  708.031577][T14246]  ? hook_file_ioctl_common+0x145/0x410
[  708.031606][T14246]  ? __fget_files+0x20e/0x3c0
[  708.031630][T14246]  security_file_ioctl+0x9b/0x240
[  708.031654][T14246]  __x64_sys_ioctl+0xb7/0x210
[  708.031685][T14246]  do_syscall_64+0xcd/0x490
[  708.031709][T14246]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  708.031728][T14246] RIP: 0033:0x7f358d78ebe9
[  708.031742][T14246] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  708.031760][T14246] RSP: 002b:00007f358e5a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  708.031778][T14246] RAX: ffffffffffffffda RBX: 00007f358d9b5fa0 RCX: 00007f358d78ebe9
[  708.031790][T14246] RDX: 0000000000000000 RSI: 00000000c0506107 RDI: 0000000000000003
[  708.031801][T14246] RBP: 00007f358e5a7090 R08: 0000000000000000 R09: 0000000000000000
[  708.031812][T14246] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  708.031822][T14246] R13: 00007f358d9b6038 R14: 00007f358d9b5fa0 R15: 00007ffe74892498
[  708.031845][T14246]  </TASK>
[  708.031898][T14246] ERROR: Out of memory at tomoyo_realpath_from_path.
[  708.192257][    C0] vkms_vblank_simulate: vblank timer overrun
[  708.785450][T14254] random: crng reseeded on system resumption
[  709.361986][T14247] netlink: 'syz.0.1859': attribute type 2 has an invalid length.
[  709.446232][T14266] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input123
[  709.893970][ T5875] Bluetooth: hci2: command 0x0406 tx timeout
[  709.900118][T12934] Bluetooth: hci3: command 0x0406 tx timeout
[  709.906312][   T51] Bluetooth: hci0: command 0x0406 tx timeout
[  709.973657][ T5875] Bluetooth: hci1: command 0x0406 tx timeout
[  710.452013][T14278] random: crng reseeded on system resumption
[  711.323383][T14287] Invalid ELF header magic: != ELF
[  713.034293][T14294] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  713.040435][T14294] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  713.046707][T14294] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  713.058234][T14294] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  713.133717][T14310] random: crng reseeded on system resumption
[  714.644276][T14325] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1873'.
[  715.093605][T12934] Bluetooth: hci1: command 0x0406 tx timeout
[  715.099671][ T5875] Bluetooth: hci2: command 0x0406 tx timeout
[  715.105964][   T51] Bluetooth: hci3: command 0x0406 tx timeout
[  715.112050][ T5869] Bluetooth: hci0: command 0x0406 tx timeout
[  718.185080][T14373] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1881'.
[  721.009321][T14401] Invalid ELF header magic: != ELF
[  721.400408][   T49] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  721.694800][T14403] FAULT_INJECTION: forcing a failure.
[  721.694800][T14403] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  721.847209][T14403] CPU: 0 UID: 0 PID: 14403 Comm: syz.2.1891 Tainted: G     U              6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  721.847243][T14403] Tainted: [U]=USER
[  721.847249][T14403] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  721.847259][T14403] Call Trace:
[  721.847266][T14403]  <TASK>
[  721.847273][T14403]  dump_stack_lvl+0x16c/0x1f0
[  721.847301][T14403]  should_fail_ex+0x512/0x640
[  721.847330][T14403]  _copy_from_user+0x2e/0xd0
[  721.847359][T14403]  ____sys_sendmsg+0x607/0xc70
[  721.847391][T14403]  ? __pfx_____sys_sendmsg+0x10/0x10
[  721.847423][T14403]  ? __pfx__kstrtoull+0x10/0x10
[  721.847448][T14403]  ___sys_sendmsg+0x134/0x1d0
[  721.847473][T14403]  ? __pfx____sys_sendmsg+0x10/0x10
[  721.847506][T14403]  ? find_held_lock+0x2b/0x80
[  721.847538][T14403]  __sys_sendmmsg+0x200/0x420
[  721.847564][T14403]  ? __pfx___sys_sendmmsg+0x10/0x10
[  721.847594][T14403]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  721.847626][T14403]  ? fput+0x9b/0xd0
[  721.847651][T14403]  ? ksys_write+0x1ac/0x250
[  721.847672][T14403]  ? __pfx_ksys_write+0x10/0x10
[  721.847697][T14403]  __x64_sys_sendmmsg+0x9c/0x100
[  721.847719][T14403]  ? lockdep_hardirqs_on+0x7c/0x110
[  721.847741][T14403]  do_syscall_64+0xcd/0x490
[  721.847766][T14403]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  721.847784][T14403] RIP: 0033:0x7f0c4698ebe9
[  721.847799][T14403] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  721.847817][T14403] RSP: 002b:00007f0c44bee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  721.847835][T14403] RAX: ffffffffffffffda RBX: 00007f0c46bb5fa0 RCX: 00007f0c4698ebe9
[  721.847847][T14403] RDX: 0000000000000002 RSI: 0000200000000480 RDI: 0000000000000003
[  721.847857][T14403] RBP: 00007f0c44bee090 R08: 0000000000000000 R09: 0000000000000000
[  721.847868][T14403] R10: 00000000000000f5 R11: 0000000000000246 R12: 0000000000000001
[  721.847879][T14403] R13: 00007f0c46bb6038 R14: 00007f0c46bb5fa0 R15: 00007ffc6a6abf18
[  721.847909][T14403]  </TASK>
[  722.296815][   T49] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  722.390837][   T51] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  722.400099][   T51] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  722.408662][   T51] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  722.424252][   T51] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  722.433647][   T51] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  722.801330][T14412] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input124
[  722.844525][T14409] FAULT_INJECTION: forcing a failure.
[  722.844525][T14409] name failslab, interval 1, probability 0, space 0, times 0
[  723.074646][T14409] CPU: 0 UID: 0 PID: 14409 Comm: syz.0.1893 Tainted: G     U              6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  723.074679][T14409] Tainted: [U]=USER
[  723.074685][T14409] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  723.074695][T14409] Call Trace:
[  723.074701][T14409]  <TASK>
[  723.074708][T14409]  dump_stack_lvl+0x16c/0x1f0
[  723.074735][T14409]  should_fail_ex+0x512/0x640
[  723.074760][T14409]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  723.074786][T14409]  should_failslab+0xc2/0x120
[  723.074810][T14409]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  723.074832][T14409]  ? __alloc_skb+0x2b2/0x380
[  723.074857][T14409]  __alloc_skb+0x2b2/0x380
[  723.074878][T14409]  ? __pfx___alloc_skb+0x10/0x10
[  723.074899][T14409]  ? __pfx___mutex_trylock_common+0x10/0x10
[  723.074926][T14409]  ? __pfx___might_resched+0x10/0x10
[  723.074950][T14409]  netlink_dump+0x19b/0xd30
[  723.074982][T14409]  ? __pfx_netlink_dump+0x10/0x10
[  723.075021][T14409]  __netlink_dump_start+0x6d6/0x990
[  723.075047][T14409]  ? __pfx_tc_dump_tclass+0x10/0x10
[  723.075073][T14409]  rtnetlink_rcv_msg+0xb3e/0xe90
[  723.075098][T14409]  ? __pfx_tc_dump_tclass+0x10/0x10
[  723.075127][T14409]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  723.075151][T14409]  ? __pfx_rtnl_dumpit+0x10/0x10
[  723.075169][T14409]  ? __pfx_tc_dump_tclass+0x10/0x10
[  723.075199][T14409]  ? ref_tracker_free+0x37c/0x830
[  723.075228][T14409]  netlink_rcv_skb+0x158/0x420
[  723.075252][T14409]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  723.075279][T14409]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  723.075315][T14409]  ? netlink_deliver_tap+0x1ae/0xd30
[  723.075343][T14409]  netlink_unicast+0x5a7/0x870
[  723.075370][T14409]  ? __pfx_netlink_unicast+0x10/0x10
[  723.075394][T14409]  ? __pfx___might_resched+0x10/0x10
[  723.075411][T14409]  ? __lock_acquire+0xb97/0x1ce0
[  723.075441][T14409]  netlink_sendmsg+0x8d1/0xdd0
[  723.075469][T14409]  ? __pfx_netlink_sendmsg+0x10/0x10
[  723.075496][T14409]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  723.075520][T14409]  ____sys_sendmsg+0xa95/0xc70
[  723.075549][T14409]  ? copy_msghdr_from_user+0x10a/0x160
[  723.075572][T14409]  ? __pfx_____sys_sendmsg+0x10/0x10
[  723.075604][T14409]  ? kfree+0x24f/0x4d0
[  723.075618][T14409]  ? __pfx__kstrtoull+0x10/0x10
[  723.075645][T14409]  ___sys_sendmsg+0x134/0x1d0
[  723.075669][T14409]  ? __pfx____sys_sendmsg+0x10/0x10
[  723.075714][T14409]  ? __pfx___might_resched+0x10/0x10
[  723.075737][T14409]  __sys_sendmmsg+0x200/0x420
[  723.075763][T14409]  ? __pfx___sys_sendmmsg+0x10/0x10
[  723.075794][T14409]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  723.075827][T14409]  ? fput+0x9b/0xd0
[  723.075852][T14409]  ? ksys_write+0x1ac/0x250
[  723.075873][T14409]  ? __pfx_ksys_write+0x10/0x10
[  723.075898][T14409]  __x64_sys_sendmmsg+0x9c/0x100
[  723.075921][T14409]  ? lockdep_hardirqs_on+0x7c/0x110
[  723.075943][T14409]  do_syscall_64+0xcd/0x490
[  723.075974][T14409]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  723.075994][T14409] RIP: 0033:0x7f554c38ebe9
[  723.076008][T14409] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  723.076026][T14409] RSP: 002b:00007f554d157038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  723.076044][T14409] RAX: ffffffffffffffda RBX: 00007f554c5b5fa0 RCX: 00007f554c38ebe9
[  723.076056][T14409] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000003
[  723.076066][T14409] RBP: 00007f554d157090 R08: 0000000000000000 R09: 0000000000000000
[  723.076077][T14409] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000002
[  723.076088][T14409] R13: 00007f554c5b6038 R14: 00007f554c5b5fa0 R15: 00007ffc7f42e2a8
[  723.076111][T14409]  </TASK>
[  724.516594][   T49] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  724.533603][   T51] Bluetooth: hci3: command tx timeout
[  724.595610][T14414] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input125
[  725.226424][   T49] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  725.680001][T14441] random: crng reseeded on system resumption
[  726.552952][T14406] chnl_net:caif_netlink_parms(): no params data found
[  726.613593][   T51] Bluetooth: hci3: command tx timeout
[  726.718900][   T49] bridge_slave_1: left allmulticast mode
[  726.739043][   T49] bridge_slave_1: left promiscuous mode
[  726.757384][   T49] bridge0: port 2(bridge_slave_1) entered disabled state
[  726.792118][   T49] bridge_slave_0: left allmulticast mode
[  726.817648][   T49] bridge_slave_0: left promiscuous mode
[  726.846826][   T49] bridge0: port 1(bridge_slave_0) entered disabled state
[  728.018636][   T49] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  728.046803][   T49] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  728.077574][   T49] bond0 (unregistering): Released all slaves
[  728.359839][   T49] HfR: left promiscuous mode
[  728.693681][   T51] Bluetooth: hci3: command tx timeout
[  729.099007][T14406] bridge0: port 1(bridge_slave_0) entered blocking state
[  729.136571][T14406] bridge0: port 1(bridge_slave_0) entered disabled state
[  729.223938][T14406] bridge_slave_0: entered allmulticast mode
[  729.263854][T14406] bridge_slave_0: entered promiscuous mode
[  729.314585][T14406] bridge0: port 2(bridge_slave_1) entered blocking state
[  729.321719][T14406] bridge0: port 2(bridge_slave_1) entered disabled state
[  729.378873][T14406] bridge_slave_1: entered allmulticast mode
[  729.492264][T14406] bridge_slave_1: entered promiscuous mode
[  729.601385][T14499] random: crng reseeded on system resumption
[  730.773559][   T51] Bluetooth: hci3: command tx timeout
[  730.906098][T14509] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  730.941373][T14406] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  731.002519][T14406] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  731.031295][T14509] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  731.061896][T14509] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  731.168414][T14509] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  731.208779][T14509] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  731.459376][T14509] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  731.476391][T14406] team0: Port device team_slave_0 added
[  731.512612][T14406] team0: Port device team_slave_1 added
[  731.639556][   T49] hsr_slave_0: left promiscuous mode
[  731.716754][T14512] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_rx_wq": -EINTR
[  731.794288][   T49] hsr_slave_1: left promiscuous mode
[  731.840892][   T49] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  731.868669][   T49] batman_adv: batadv0: Removing interface: batadv_slave_0
[  732.008129][   T49] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  732.115887][   T49] batman_adv: batadv0: Removing interface: batadv_slave_1
[  732.510223][   T49] veth1_macvtap: left promiscuous mode
[  732.532105][   T49] veth0_macvtap: left promiscuous mode
[  732.561658][   T49] veth1_vlan: left promiscuous mode
[  732.581725][   T49] veth0_vlan: left promiscuous mode
[  732.933796][   T51] Bluetooth: hci0: command 0x0406 tx timeout
[  733.095471][   T51] Bluetooth: hci1: command 0x0406 tx timeout
[  733.101706][   T51] Bluetooth: hci2: command 0x0406 tx timeout
[  733.181605][   T51] Bluetooth: hci3: command 0x0c1a tx timeout
[  733.779542][T14547] random: crng reseeded on system resumption
[  734.025347][   T49] team0 (unregistering): Port device team_slave_1 removed
[  734.196516][   T49] team0 (unregistering): Port device team_slave_0 removed
[  734.977836][T14406] batman_adv: batadv0: Adding interface: batadv_slave_0
[  734.995696][T14406] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  735.067346][T14406] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  735.220658][T14406] batman_adv: batadv0: Adding interface: batadv_slave_1
[  735.254968][   T51] Bluetooth: hci3: command 0x0c1a tx timeout
[  735.261089][T14406] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  735.345498][T14406] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  735.606033][T14406] hsr_slave_0: entered promiscuous mode
[  735.632669][T14406] hsr_slave_1: entered promiscuous mode
[  735.650052][T14406] debugfs: 'hsr0' already exists in 'hsr'
[  735.674440][T14406] Cannot create hsr debugfs directory
[  737.334407][   T51] Bluetooth: hci3: command 0x0c1a tx timeout
[  737.408015][T14569] netlink: 334 bytes leftover after parsing attributes in process `syz.0.1915'.
[  737.867853][T14593] ptrace attach of "./syz-executor exec"[14594] was attempted by "./syz-executor exec"[14593]
[  739.622725][T14602] FAULT_INJECTION: forcing a failure.
[  739.622725][T14602] name failslab, interval 1, probability 0, space 0, times 0
[  739.821944][T14602] CPU: 0 UID: 0 PID: 14602 Comm: syz.0.1920 Tainted: G     U              6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  739.821976][T14602] Tainted: [U]=USER
[  739.821982][T14602] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  739.821992][T14602] Call Trace:
[  739.821999][T14602]  <TASK>
[  739.822007][T14602]  dump_stack_lvl+0x16c/0x1f0
[  739.822034][T14602]  should_fail_ex+0x512/0x640
[  739.822059][T14602]  ? __kmalloc_noprof+0xbf/0x510
[  739.822081][T14602]  ? __register_sysctl_table+0xea2/0x1900
[  739.822108][T14602]  should_failslab+0xc2/0x120
[  739.822131][T14602]  __kmalloc_noprof+0xd2/0x510
[  739.822151][T14602]  ? __register_sysctl_table+0xe8e/0x1900
[  739.822183][T14602]  __register_sysctl_table+0xea2/0x1900
[  739.822215][T14602]  ? __pfx___register_sysctl_table+0x10/0x10
[  739.822241][T14602]  ? is_module_address+0x69/0xf0
[  739.822266][T14602]  ? register_net_sysctl_sz+0x228/0x3e0
[  739.822292][T14602]  ? __asan_memcpy+0x3c/0x60
[  739.822312][T14602]  sctp_sysctl_net_register+0x15d/0x200
[  739.822335][T14602]  ? __pfx_sctp_defaults_init+0x10/0x10
[  739.822356][T14602]  sctp_defaults_init+0x6c4/0xd80
[  739.822377][T14602]  ? __pfx_sctp_defaults_init+0x10/0x10
[  739.822397][T14602]  ops_init+0x1e2/0x5f0
[  739.822423][T14602]  setup_net+0x10f/0x380
[  739.822445][T14602]  ? lockdep_init_map_type+0x5c/0x280
[  739.822470][T14602]  ? __pfx_setup_net+0x10/0x10
[  739.822495][T14602]  ? debug_mutex_init+0x37/0x70
[  739.822515][T14602]  copy_net_ns+0x2a6/0x5f0
[  739.822543][T14602]  create_new_namespaces+0x3ea/0xa90
[  739.822569][T14602]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  739.822591][T14602]  ksys_unshare+0x45b/0xa40
[  739.822616][T14602]  ? __pfx_ksys_unshare+0x10/0x10
[  739.822641][T14602]  ? xfd_validate_state+0x61/0x180
[  739.822674][T14602]  __x64_sys_unshare+0x31/0x40
[  739.822697][T14602]  do_syscall_64+0xcd/0x490
[  739.822722][T14602]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  739.822740][T14602] RIP: 0033:0x7f554c38ebe9
[  739.822755][T14602] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  739.822780][T14602] RSP: 002b:00007f554d115038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  739.822797][T14602] RAX: ffffffffffffffda RBX: 00007f554c5b6180 RCX: 00007f554c38ebe9
[  739.822809][T14602] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  739.822819][T14602] RBP: 00007f554c411e19 R08: 0000000000000000 R09: 0000000000000000
[  739.822830][T14602] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  739.822840][T14602] R13: 00007f554c5b6218 R14: 00007f554c5b6180 R15: 00007ffc7f42e2a8
[  739.822863][T14602]  </TASK>
[  739.822871][T14602] sysctl could not get directory: /net/sctp -12
[  740.295100][T14406] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  740.309332][T14406] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  740.320832][T14406] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  740.347250][T14406] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  740.496438][T14406] 8021q: adding VLAN 0 to HW filter on device bond0
[  740.533237][T14406] 8021q: adding VLAN 0 to HW filter on device team0
[  740.642445][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  740.650516][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  740.755818][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  740.763056][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  742.768205][T14406] 8021q: adding VLAN 0 to HW filter on device batadv0
[  743.223239][T14406] veth0_vlan: entered promiscuous mode
[  743.398748][T14406] veth1_vlan: entered promiscuous mode
[  743.499948][T14681] random: crng reseeded on system resumption
[  743.872664][T14406] veth0_macvtap: entered promiscuous mode
[  743.925569][T14686] i2c i2c-0: new_device: Missing parameters
[  743.974928][T14406] veth1_macvtap: entered promiscuous mode
[  743.995819][T14686] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  744.003002][T14686] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  744.014393][T14686] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  744.024823][T14686] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  744.139112][T14406] batman_adv: batadv0: Interface activated: batadv_slave_0
[  744.208423][T14406] batman_adv: batadv0: Interface activated: batadv_slave_1
[  744.861728][   T59] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  744.970272][   T59] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  745.225412][   T59] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  745.343911][   T59] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  746.054977][   T51] Bluetooth: hci3: command 0x0c1a tx timeout
[  746.061832][   T51] Bluetooth: hci1: command 0x0406 tx timeout
[  746.069015][T12934] Bluetooth: hci2: command 0x0406 tx timeout
[  746.075212][ T5875] Bluetooth: hci0: command 0x0406 tx timeout
[  746.213044][ T1169] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  746.295987][ T1169] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  746.308713][T14721] random: crng reseeded on system resumption
[  747.254923][ T1116] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  747.262795][ T1116] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  747.408715][T14729] random: crng reseeded on system resumption
[  747.749652][T14743] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1888'.
[  747.791342][T14743] netlink: 'syz.1.1888': attribute type 1 has an invalid length.
[  747.820334][T14743] netlink: 13 bytes leftover after parsing attributes in process `syz.1.1888'.
[  748.242259][T14738] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input127
[  749.362327][T14774] netlink: 'syz.3.1945': attribute type 2 has an invalid length.
[  749.953851][T14782] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  749.959931][T14782] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  750.183731][T14782] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  750.189797][T14782] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  751.554944][T14821] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1953'.
[  751.980030][   T51] Bluetooth: hci2: command 0x0406 tx timeout
[  751.986284][T12934] Bluetooth: hci0: command 0x0406 tx timeout
[  752.225256][   T51] Bluetooth: hci3: command 0x0c1a tx timeout
[  752.231320][   T51] Bluetooth: hci1: command 0x0406 tx timeout
[  752.431268][T14831] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input128
[  752.739928][T14837] random: crng reseeded on system resumption
[  752.783900][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[  752.813536][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[  754.275601][T14850] random: crng reseeded on system resumption
[  756.461609][T14881] futex_wake_op: syz.1.1961 tries to shift op by -2048; fix this program
[  756.548794][T14881] futex_wake_op: syz.1.1961 tries to shift op by -2048; fix this program
[  757.214486][T14887] netlink: 29 bytes leftover after parsing attributes in process `syz.1.1963'.
[  757.423388][T14888] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  757.494633][T14888] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  757.500734][T14888] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  757.555535][T14888] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  758.838834][T14921] vhci_hcd: invalid port number 23
[  759.205248][T14933] Setting dangerous option i915.mitigations - tainting kernel
[  759.493583][T12934] Bluetooth: hci0: command 0x0406 tx timeout
[  759.540221][T14943] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input129
[  759.579577][T12934] Bluetooth: hci3: command 0x0c1a tx timeout
[  759.585836][   T51] Bluetooth: hci1: command 0x0406 tx timeout
[  759.591847][   T51] Bluetooth: hci2: command 0x0406 tx timeout
[  759.770662][T14948] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  759.974348][T14925] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  760.039053][T14925] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  760.104722][T14925] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  760.183769][T14925] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  760.221769][T14939] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_cmd_wq": -EINTR
[  760.546746][T14955] block2mtd: error: cannot open device �inX�����±��jFB�B>U�;߸�Ilk�
[  761.028972][T14944] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input130
[  761.560312][T14974] random: crng reseeded on system resumption
[  762.053598][T12934] Bluetooth: hci2: command 0x0406 tx timeout
[  762.059729][   T51] Bluetooth: hci0: command 0x0406 tx timeout
[  762.139297][T12934] Bluetooth: hci1: command 0x0406 tx timeout
[  762.213607][T12934] Bluetooth: hci3: command 0x0c1a tx timeout
[  764.657193][T15032] Invalid ELF header magic: != ELF
[  764.766018][T15020] random: crng reseeded on system resumption
[  765.077518][T15042] raw_sendmsg: syz.1.1988 forgot to set AF_INET. Fix it!
[  768.085187][T15096] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input131
[  768.622680][T15099] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input132
[  769.593143][T15127] FAULT_INJECTION: forcing a failure.
[  769.593143][T15127] name failslab, interval 1, probability 0, space 0, times 0
[  769.593177][T15127] CPU: 0 UID: 0 PID: 15127 Comm: syz.1.2003 Tainted: G     U              6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  769.593203][T15127] Tainted: [U]=USER
[  769.593209][T15127] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  769.593220][T15127] Call Trace:
[  769.593225][T15127]  <TASK>
[  769.593233][T15127]  dump_stack_lvl+0x16c/0x1f0
[  769.593260][T15127]  should_fail_ex+0x512/0x640
[  769.593285][T15127]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  769.593308][T15127]  should_failslab+0xc2/0x120
[  769.593333][T15127]  __kmalloc_cache_noprof+0x6a/0x3e0
[  769.593351][T15127]  ? refill_pi_state_cache+0x89/0x250
[  769.593381][T15127]  refill_pi_state_cache+0x89/0x250
[  769.593423][T15127]  futex_lock_pi+0x175/0x7c0
[  769.593451][T15127]  ? futex_unqueue+0x13d/0x2c0
[  769.593473][T15127]  ? __pfx_futex_lock_pi+0x10/0x10
[  769.593497][T15127]  ? __futex_wait+0x24c/0x2f0
[  769.593547][T15127]  ? futex_private_hash_put+0x18a/0x300
[  769.593574][T15127]  ? __pfx_futex_wake_mark+0x10/0x10
[  769.593607][T15127]  ? __pfx_child_wait_callback+0x10/0x10
[  769.593639][T15127]  do_futex+0x11a/0x350
[  769.593663][T15127]  ? __pfx_do_futex+0x10/0x10
[  769.593686][T15127]  ? __pfx___do_sys_wait4+0x10/0x10
[  769.593712][T15127]  ? __might_fault+0xe3/0x190
[  769.593732][T15127]  ? __might_fault+0x13b/0x190
[  769.593754][T15127]  __x64_sys_futex+0x1e0/0x4c0
[  769.593780][T15127]  ? __pfx___x64_sys_futex+0x10/0x10
[  769.593803][T15127]  ? xfd_validate_state+0x61/0x180
[  769.593828][T15127]  ? __pfx___do_sys_prctl+0x10/0x10
[  769.593863][T15127]  do_syscall_64+0xcd/0x490
[  769.593887][T15127]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  769.593905][T15127] RIP: 0033:0x7f5feab8ebe9
[  769.593920][T15127] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  769.593937][T15127] RSP: 002b:00007f5febab5038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  769.593954][T15127] RAX: ffffffffffffffda RBX: 00007f5feadb6090 RCX: 00007f5feab8ebe9
[  769.593966][T15127] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000
[  769.593976][T15127] RBP: 00007f5feac11e19 R08: 0000000000000000 R09: 000000008000fff2
[  769.593986][T15127] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  769.593996][T15127] R13: 00007f5feadb6128 R14: 00007f5feadb6090 R15: 00007fffb5c01498
[  769.594019][T15127]  </TASK>
[  769.728945][T15125] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  769.729084][T15125] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  769.729214][T15125] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  769.729327][T15125] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  770.215286][T15139] random: crng reseeded on system resumption
[  770.229250][T15139] PM: hibernation: Marking nosave pages: [mem 0x00000000-0x00000fff]
[  770.229294][T15139] PM: hibernation: Marking nosave pages: [mem 0x0009f000-0x000fffff]
[  770.229317][T15139] PM: hibernation: Marking nosave pages: [mem 0xbfffd000-0xffffffff]
[  770.229334][T15139] PM: hibernation: Basic memory bitmaps created
[  770.340235][T15133] PM: hibernation: Basic memory bitmaps freed
[  770.574037][T15148] 
[  770.574049][T15148] ======================================================
[  770.574056][T15148] WARNING: possible circular locking dependency detected
[  770.574065][T15148] 6.17.0-rc1-syzkaller #0 Tainted: G     U             
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  770.574076][T15148] ------------------------------------------------------
[  770.574083][T15148] syz.3.2006/15148 is trying to acquire lock:
[  770.574093][T15148] ffff88823bf42870 (&ptp->n_vclocks_mux){+.+.}-{4:4}, at: ptp_clock_adjtime+0x527/0x760
[  770.574147][T15148] 
[  770.574147][T15148] but task is already holding lock:
[  770.574153][T15148] ffff88823bf42130 (&clk->rwsem){++++}-{4:4}, at: get_clock_desc+0x125/0x240
[  770.574195][T15148] 
[  770.574195][T15148] which lock already depends on the new lock.
[  770.574195][T15148] 
[  770.574201][T15148] 
[  770.574201][T15148] the existing dependency chain (in reverse order) is:
[  770.574207][T15148] 
[  770.574207][T15148] -> #1 (&clk->rwsem){++++}-{4:4}:
[  770.574230][T15148]        down_write+0x92/0x200
[  770.574254][T15148]        posix_clock_unregister+0x4d/0xd0
[  770.574273][T15148]        ptp_clock_unregister+0x14f/0x250
[  770.574300][T15148]        ptp_vclock_unregister+0x11a/0x160
[  770.574319][T15148]        unregister_vclock+0x108/0x1a0
[  770.574335][T15148]        device_for_each_child_reverse+0x133/0x1a0
[  770.574355][T15148]        n_vclocks_store+0x4b6/0x6d0
[  770.574371][T15148]        dev_attr_store+0x58/0x80
[  770.574403][T15148]        sysfs_kf_write+0xef/0x150
[  770.574421][T15148]        kernfs_fop_write_iter+0x351/0x510
[  770.574436][T15148]        vfs_write+0x7d0/0x11d0
[  770.574455][T15148]        ksys_write+0x12a/0x250
[  770.574473][T15148]        do_syscall_64+0xcd/0x490
[  770.574494][T15148]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  770.574512][T15148] 
[  770.574512][T15148] -> #0 (&ptp->n_vclocks_mux){+.+.}-{4:4}:
[  770.574537][T15148]        __lock_acquire+0x12a6/0x1ce0
[  770.574559][T15148]        lock_acquire+0x179/0x350
[  770.574580][T15148]        __mutex_lock+0x193/0x10b0
[  770.574600][T15148]        ptp_clock_adjtime+0x527/0x760
[  770.574626][T15148]        pc_clock_adjtime+0x118/0x1e0
[  770.574644][T15148]        __do_sys_clock_adjtime+0x175/0x290
[  770.574667][T15148]        do_syscall_64+0xcd/0x490
[  770.574687][T15148]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  770.574704][T15148] 
[  770.574704][T15148] other info that might help us debug this:
[  770.574704][T15148] 
[  770.574710][T15148]  Possible unsafe locking scenario:
[  770.574710][T15148] 
[  770.574716][T15148]        CPU0                    CPU1
[  770.574721][T15148]        ----                    ----
[  770.574726][T15148]   rlock(&clk->rwsem);
[  770.574738][T15148]                                lock(&ptp->n_vclocks_mux);
[  770.574752][T15148]                                lock(&clk->rwsem);
[  770.574765][T15148]   lock(&ptp->n_vclocks_mux);
[  770.574777][T15148] 
[  770.574777][T15148]  *** DEADLOCK ***
[  770.574777][T15148] 
[  770.574781][T15148] 1 lock held by syz.3.2006/15148:
[  770.574792][T15148]  #0: ffff88823bf42130 (&clk->rwsem){++++}-{4:4}, at: get_clock_desc+0x125/0x240
[  770.574835][T15148] 
[  770.574835][T15148] stack backtrace:
[  770.574846][T15148] CPU: 0 UID: 0 PID: 15148 Comm: syz.3.2006 Tainted: G     U              6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  770.574871][T15148] Tainted: [U]=USER
[  770.574877][T15148] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  770.574887][T15148] Call Trace:
[  770.574892][T15148]  <TASK>
[  770.574899][T15148]  dump_stack_lvl+0x116/0x1f0
[  770.574920][T15148]  print_circular_bug+0x275/0x350
[  770.574943][T15148]  check_noncircular+0x14c/0x170
[  770.574966][T15148]  __lock_acquire+0x12a6/0x1ce0
[  770.574993][T15148]  lock_acquire+0x179/0x350
[  770.575015][T15148]  ? ptp_clock_adjtime+0x527/0x760
[  770.575043][T15148]  ? __pfx___might_resched+0x10/0x10
[  770.575061][T15148]  ? ptp_clock_adjtime+0x527/0x760
[  770.575088][T15148]  __mutex_lock+0x193/0x10b0
[  770.575109][T15148]  ? ptp_clock_adjtime+0x527/0x760
[  770.575138][T15148]  ? __pfx___mutex_lock+0x10/0x10
[  770.575159][T15148]  ? __pfx___might_resched+0x10/0x10
[  770.575178][T15148]  ? down_read+0x13d/0x480
[  770.575201][T15148]  ? __pfx_down_read+0x10/0x10
[  770.575226][T15148]  ? __pfx_ptp_clock_adjtime+0x10/0x10
[  770.575254][T15148]  ? ptp_clock_adjtime+0x527/0x760
[  770.575280][T15148]  ptp_clock_adjtime+0x527/0x760
[  770.575308][T15148]  ? __pfx_ptp_clock_adjtime+0x10/0x10
[  770.575335][T15148]  pc_clock_adjtime+0x118/0x1e0
[  770.575355][T15148]  ? __pfx_pc_clock_adjtime+0x10/0x10
[  770.575377][T15148]  ? __pfx_pc_clock_adjtime+0x10/0x10
[  770.575403][T15148]  __do_sys_clock_adjtime+0x175/0x290
[  770.575427][T15148]  ? __pfx___do_sys_clock_adjtime+0x10/0x10
[  770.575451][T15148]  ? __pfx_do_futex+0x10/0x10
[  770.575477][T15148]  ? xfd_validate_state+0x61/0x180
[  770.575504][T15148]  ? rcu_is_watching+0x12/0xc0
[  770.575523][T15148]  do_syscall_64+0xcd/0x490
[  770.575545][T15148]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  770.575563][T15148] RIP: 0033:0x7f382e78ebe9
[  770.575578][T15148] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  770.575595][T15148] RSP: 002b:00007f382f5ae038 EFLAGS: 00000246 ORIG_RAX: 0000000000000131
[  770.575611][T15148] RAX: ffffffffffffffda RBX: 00007f382e9b6180 RCX: 00007f382e78ebe9
[  770.575622][T15148] RDX: 0000000000000000 RSI: 0000000000000000 RDI: fffffffffffffffb
[  770.575633][T15148] RBP: 00007f382e811e19 R08: 0000000000000000 R09: 0000000000000000
[  770.575643][T15148] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  770.575654][T15148] R13: 00007f382e9b6218 R14: 00007f382e9b6180 R15: 00007fff4e103cd8
[  770.575669][T15148]  </TASK>
[  770.646101][T15146] netlink: 'syz.1.2007': attribute type 2 has an invalid length.
[  771.386182][T15160] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2009'.
[  771.390344][T15160] openvswitch: HfR: Dropping previously announced user features
[  771.735784][   T51] Bluetooth: hci3: command 0x0c1a tx timeout
[  771.735817][   T51] Bluetooth: hci1: command 0x0406 tx timeout
[  771.735838][   T51] Bluetooth: hci2: command 0x0406 tx timeout
[  771.735857][   T51] Bluetooth: hci0: command 0x0406 tx timeout
[  772.186894][T15165] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input133
[  772.387904][T15169] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  773.001691][T15184] random: crng reseeded on system resumption
[  773.005982][T15184] PM: hibernation: Marking nosave pages: [mem 0x00000000-0x00000fff]
[  773.006007][T15184] PM: hibernation: Marking nosave pages: [mem 0x0009f000-0x000fffff]
[  773.006028][T15184] PM: hibernation: Marking nosave pages: [mem 0xbfffd000-0xffffffff]
[  773.006042][T15184] PM: hibernation: Basic memory bitmaps created
[  773.596893][T15177] PM: hibernation: Basic memory bitmaps freed
[  773.827882][T15196] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2015'.
[  773.828308][T15196] netlink: 13 bytes leftover after parsing attributes in process `syz.1.2015'.
[  775.467432][T15205] random: crng reseeded on system resumption
[  775.469455][T15205] PM: hibernation: Marking nosave pages: [mem 0x00000000-0x00000fff]
[  775.469477][T15205] PM: hibernation: Marking nosave pages: [mem 0x0009f000-0x000fffff]
[  775.469500][T15205] PM: hibernation: Marking nosave pages: [mem 0xbfffd000-0xffffffff]
[  775.469514][T15205] PM: hibernation: Basic memory bitmaps created
[  776.343182][T15198] PM: hibernation: Basic memory bitmaps freed
[  777.756835][T15193] tty tty12: ldisc open failed (-12), clearing slot 11
[  777.764938][T15194] ttyS ttyS3: ldisc open failed (-12), clearing slot 3
[  777.773250][T15207] tty tty12: ldisc open failed (-12), clearing slot 11
[  777.794441][T15208] ttyS ttyS3: ldisc open failed (-12), clearing slot 3
[  778.029128][ T1169] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  778.111244][ T1169] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  778.256446][ T1169] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  778.411784][ T1169] bridge_slave_1: left allmulticast mode
[  778.420509][ T1169] bridge_slave_1: left promiscuous mode
[  778.451031][ T1169] bridge0: port 2(bridge_slave_1) entered disabled state
[  778.468786][ T1169] bridge_slave_0: left allmulticast mode
[  778.483497][ T1169] bridge_slave_0: left promiscuous mode
[  778.489196][ T1169] bridge0: port 1(bridge_slave_0) entered disabled state
[  778.658050][ T1169] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  778.685659][ T1169] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  778.707558][ T1169] bond0 (unregistering): Released all slaves
[  778.851401][ T1169] hsr_slave_0: left promiscuous mode
[  778.870950][ T1169] hsr_slave_1: left promiscuous mode
[  778.877718][ T1169] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  778.896564][ T1169] batman_adv: batadv0: Removing interface: batadv_slave_0
[  778.915869][ T1169] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  778.923261][ T1169] batman_adv: batadv0: Removing interface: batadv_slave_1
[  778.940358][ T1169] veth1_macvtap: left promiscuous mode
[  778.954650][ T1169] veth1_vlan: left promiscuous mode
[  778.960124][ T1169] veth0_vlan: left promiscuous mode
[  779.187773][ T1169] team0 (unregistering): Port device team_slave_1 removed
[  779.217544][ T1169] team0 (unregistering): Port device team_slave_0 removed
[  779.479324][ T1169] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  779.539828][ T1169] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  779.587730][ T1169] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  779.630630][ T1169] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  779.746024][ T1169] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  779.817016][ T1169] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  779.868009][ T1169] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  779.919151][ T1169] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  780.036734][ T1169] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  780.090259][ T1169] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  780.138512][ T1169] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  780.167249][ T1169] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  780.268038][ T1169] bridge_slave_1: left allmulticast mode
[  780.284105][ T1169] bridge_slave_1: left promiscuous mode
[  780.289780][ T1169] bridge0: port 2(bridge_slave_1) entered disabled state
[  780.313995][ T1169] bridge_slave_0: left allmulticast mode
[  780.319671][ T1169] bridge_slave_0: left promiscuous mode
[  780.334168][ T1169] bridge0: port 1(bridge_slave_0) entered disabled state
[  780.355136][ T1169] bridge_slave_1: left allmulticast mode
[  780.364207][ T1169] bridge_slave_1: left promiscuous mode
[  780.370042][ T1169] bridge0: port 2(bridge_slave_1) entered disabled state
[  780.394368][ T1169] bridge_slave_0: left allmulticast mode
[  780.400057][ T1169] bridge_slave_0: left promiscuous mode
[  780.425057][ T1169] bridge0: port 1(bridge_slave_0) entered disabled state
[  780.637584][ T1169] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  780.655484][ T1169] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  780.670699][ T1169] bond0 (unregistering): Released all slaves
[  780.761510][ T1169] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  780.786217][ T1169] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  780.796848][ T1169] bond0 (unregistering): Released all slaves
[  780.832015][ T1169] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  780.852025][ T1169] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  780.861964][ T1169] bond0 (unregistering): Released all slaves
[  780.958607][ T1169] HfR: left promiscuous mode
[  780.984903][ T1169] HfR: left promiscuous mode
[  781.346730][ T1169] hsr_slave_0: left promiscuous mode
[  781.362404][ T1169] hsr_slave_1: left promiscuous mode
[  781.385056][ T1169] hsr_slave_0: left promiscuous mode
[  781.391017][ T1169] hsr_slave_1: left promiscuous mode
[  781.405248][ T1169] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  781.412725][ T1169] batman_adv: batadv0: Removing interface: batadv_slave_0
[  781.429935][ T1169] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  781.439426][ T1169] batman_adv: batadv0: Removing interface: batadv_slave_1
[  781.450164][ T1169] hsr_slave_0: left promiscuous mode
[  781.456142][ T1169] hsr_slave_1: left promiscuous mode
[  781.461948][ T1169] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  781.472821][ T1169] batman_adv: batadv0: Removing interface: batadv_slave_0
[  781.480882][ T1169] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  781.488859][ T1169] batman_adv: batadv0: Removing interface: batadv_slave_1
[  781.502445][ T1169] veth1_macvtap: left promiscuous mode
[  781.508768][ T1169] veth0_macvtap: left promiscuous mode
[  781.514467][ T1169] veth1_vlan: left promiscuous mode
[  781.519709][ T1169] veth0_vlan: left promiscuous mode
[  781.526314][ T1169] veth1_macvtap: left promiscuous mode
[  781.531804][ T1169] veth0_macvtap: left promiscuous mode
[  781.537817][ T1169] veth1_vlan: left promiscuous mode
[  781.543151][ T1169] veth0_vlan: left promiscuous mode
[  781.550048][ T1169] veth1_macvtap: left promiscuous mode
[  781.557351][ T1169] veth1_vlan: left promiscuous mode
[  781.562594][ T1169] veth0_vlan: left promiscuous mode
[  781.767789][ T1169] team0 (unregistering): Port device team_slave_0 removed
[  781.913097][ T1169] team0 (unregistering): Port device team_slave_1 removed
[  781.928985][ T1169] team0 (unregistering): Port device team_slave_0 removed
[  782.090897][ T1169] team0 (unregistering): Port device team_slave_1 removed
[  782.113919][ T1169] team0 (unregistering): Port device team_slave_0 removed