last executing test programs:

27.895827296s ago: executing program 0 (id=2372):
r0 = openat$auto_proc_pid_smaps_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/smaps\x00', 0x0, 0x0)
r1 = bpf$auto_BPF_OBJ_GET(0x7, &(0x7f0000000040)=@iter_create={r0, 0x4}, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$auto_split_huge_pages_fops_huge_memory(0xffffffffffffff9c, &(0x7f0000000040), 0x12a382, 0x0)
write$auto_split_huge_pages_fops_huge_memory(r2, &(0x7f0000000100)='1', 0x1)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x100000a, 0x40010, r1, 0x0)
r3 = ioctl$auto_TUNSETVNETLE2(0xffffffffffffffff, 0x400454dc, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_L2TP_CMD_SESSION_CREATE(r4, 0x0, 0x40)
sendmsg$auto_L2TP_CMD_SESSION_DELETE(r3, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="02000000080019e30372affc70e25917da02c1ae64ffafe53e00000006001c000000000014001f"], 0x38}, 0x1, 0x0, 0x0, 0x20004000}, 0x20000000)
pread64$auto(0xffffffffffffffff, 0x0, 0x2, 0x100000005)
ioctl$auto_SW_SYNC_GET_DEADLINE(0xffffffffffffffff, 0xc0105702, 0x0)
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, 0x0, 0x121900, 0x0)
r6 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
ioctl$auto(0xffffffffffffffff, 0x5410, 0xffffffffffffffff)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x40001, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x10000, 0x7, 0xf, 0x40000000008fd6, 0x948b, 0x7, 0x15f4da0a, 0x3, 0x3, 0x62, 0x4, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000001100)=""/192, 0xc0)
write$auto(r6, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
madvise$auto(0x0, 0x2000040080000004, 0xe)
mmap$auto(0x0, 0x2, 0xffffffffffffffff, 0x40eb1, 0x602, 0x300000000000)
move_pages$auto(0x0, 0x1002, 0x0, &(0x7f0000001140), 0x0, 0x2)

22.318774304s ago: executing program 0 (id=2383):
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000380)='/dev/snd/controlC2\x00', 0x400, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x400004, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r2)
sendmsg$auto_NL80211_CMD_GET_WIPHY(r2, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000140)=ANY=[@ANYBLOB="180000", @ANYRES16=r3, @ANYBLOB="810b25bd7080fbdbdf250100"], 0x18}, 0x1, 0x0, 0x0, 0x20000000}, 0xc004)
recvmmsg$auto(r2, &(0x7f0000000180)={{0x0, 0x5, 0x0, 0x0, 0x0, 0x2, 0x6}, 0x803}, 0x10a, 0x6, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r4 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0)
ioctl$auto_PAGEMAP_SCAN(r4, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0x7fffffffefff, 0xfffffffffffffffe, 0x1, 0x8, 0xc00, 0x2c, 0x2c, 0x3, 0x2})
openat$auto_aoe_fops_aoechr(0xffffffffffffff9c, &(0x7f0000000040)='/dev/etherd/flush\x00', 0x1, 0x0)
r5 = openat$auto_nsim_dev_health_break_fops_health(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/netdevsim/netdevsim2/health/break_health\x00', 0x101000, 0x0)
listen$auto(r5, 0x5)
recvmmsg$auto(r1, &(0x7f0000000500)={{0x0, 0x4, 0x0, 0x5, 0x0, 0x2, 0x8}, 0xd1}, 0x10a, 0x8, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/virtual/misc/userfaultfd/power/control\x00', 0x668000, 0x0)
socket(0x2, 0x1, 0x106)
socket(0x2, 0x1, 0x0)
shutdown$auto(0xffffffffffffffff, 0x2)
read$auto_rng_chrdev_ops_core(r1, 0x0, 0x0)
mmap$auto(0xfffffffffffffffc, 0x8, 0x8, 0x7fffffffffffffff, 0xffffffffffffffff, 0xfffffffffffffffd)
ioctl$auto_SOUND_MIXER_READ_DEVMASK2(0xffffffffffffffff, 0x80044dfe, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x3ff, 0x0)
mmap$auto(0x0, 0x40009, 0xe1, 0x1de, 0x7, 0x27fff)
setfsgid$auto(0xee00)
listen$auto(0x3, 0x3)

21.153819952s ago: executing program 0 (id=2386):
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
r0 = io_uring_setup$auto(0x6, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x28641, 0x0)
ioctl$auto(0x3, 0x80000541b, 0x38)
r1 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0)
write$auto_ftrace_subsystem_filter_fops_trace_events(r0, &(0x7f0000000180)="e5cf378ab18ec2b4bef0cf9e555cf86319315ef54b15903575dccb1d0ec2ae69df909f138b274856d6c64e2e317dfe6c", 0x30)
ioctl$auto_IOCTL_VMCI_VERSION2(r1, 0x7a7, 0x0)
ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, 0x6)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/kcore\x00', 0x10b402, 0x0)
socket(0xf, 0x3, 0x2)
madvise$auto_MADV_PAGEOUT(0xd, 0x8000, 0x15)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r3 = openat$auto_lowpan_enable_fops_(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
getdents$auto(r3, &(0x7f0000000340)={0x4, 0x5, 0xd, "fe4ee184ce43a695aaacd3dedf92aeb2a93adbf61b42d5fa5e6f681a6bb818f081882e784f17adf85be0a2cc0c36a3bbd0ae2c9c2a44173eb25c8d5f1e50dc9cc6e30d3bfc1d9270e6aa2c91427e36b5d72919aaca6db178507f403fb04edefe96e9c11d5ac2e98505f06b"}, 0x5de9)
r4 = open(&(0x7f0000000000)='./cgroup\x00', 0x400, 0x64)
fchdir$auto(r4)
mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f00000001c0)='nfsd\x00\xee\x1a\x8f\xa2~?\xe2\x82fg\xb3G\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\tI\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd_\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95xx\xaf\xa9~m\x05\xe1\xa8\xda\x80\xc5\x8f\xb41\x81\xf0\xa3\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14', 0x5, 0x0)
umount2$auto(&(0x7f0000000040)='.\x00', 0x4)
r5 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
write$auto(r2, &(0x7f0000000100)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xf, 0x1, 0x948b, 0x4, 0x15f4da0a, 0x3, 0x3, 0x80d, 0x8000001f, 0x2, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0)
symlinkat$auto(0x0, r5, 0x0)
r6 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, 0x0, 0x125200, 0x0)
close_range$auto(r1, r6, 0x0)
bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_fd, 0xffffffffffffffff, 0x4, 0x1ff, 0xffffffffffffffff, @relative_fd, 0xe600}, 0xf)

20.072574517s ago: executing program 0 (id=2389):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101002, 0x0)
bpf$auto(0xa, &(0x7f00000000c0)=@query={@target_ifindex, 0x4, 0x0, 0x2, 0x3, @prog_cnt=0xc, 0x0, 0xd8, 0x0, 0x56a, 0x1}, 0x91)
r1 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/kcore\x00', 0x101000, 0x0)
read$auto_proc_iter_file_ops_compat_inode(r1, 0x0, 0x0)
r2 = socketcall$auto(0x8000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
futex_waitv$auto(&(0x7f0000000000)={0xb, 0x1c380, 0x82}, 0x1, 0x0, 0x0, 0x623d)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/bus/usb/drivers/dvb_usb_anysee/unbind\x00', 0x50b280, 0x0)
sendfile$auto(r4, r4, 0x0, 0x71)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$auto(0x3, 0xae60, 0x10000000000402)
ioctl$auto(0x3, 0xae41, r2)
ioctl$auto_KVM_CREATE_VM(r0, 0xae80, 0x0)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x82040, 0x0)
socket(0xa, 0x1, 0x100)
ioperm$auto(0x7, 0x5ad2, 0xc)
r5 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
pread64$auto(r5, 0x0, 0x7ff, 0x400)
r6 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0x12, 0x0, 0x0, &(0x7f0000000240)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x400000000000948f, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x3, 0x1, 0x9, 0x1]}, 0x0)
write$auto(r6, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0xa, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x20000003, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)

10.969031755s ago: executing program 2 (id=2409):
socket(0xa, 0x1, 0x100)
pread64$auto(0xffffffffffffffff, 0x0, 0x7ff, 0x400)
socketcall$auto_SYS_SOCKET(0x1, &(0x7f0000000280)=0xfffffffffffffffd)
socket(0x2, 0x80002, 0x73)
read$auto_proc_iter_file_ops_compat_inode(0xffffffffffffffff, &(0x7f0000000180)=""/248, 0xf8)
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000001140)='/proc/self/oom_adj\x00', 0x8042, 0x0)
openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, 0x0, 0x1, 0x0)
write$auto(0xffffffffffffffff, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
select$auto(0xfffffff7, 0x0, 0x0, &(0x7f00000002c0)={[0x3fdafc8, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x64, 0x8000001f, 0x7, 0x46d3e, 0xc, 0x10000, 0x6]}, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0xc)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
mmap$auto(0x0, 0x810004, 0xfff, 0x8000000008012, 0x3, 0x8000)
write$auto(0x3, 0x0, 0xfffffdef)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000001380)=""/134, 0x86)
open_tree_attr$auto(r0, &(0x7f0000000040)='./file0\x00', 0x8c02, &(0x7f0000000080)={0x1, 0x3, 0x7, @raw=0x5}, 0xfffffffffffffc0f)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS0\x00', 0x1, 0x0)
ioctl$auto(r1, 0x5459, 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
read$auto_l2cap_debugfs_fops_(r0, &(0x7f0000000340)=""/104, 0x68)
open(&(0x7f0000000100)='.\x00', 0x40000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8000, 0x0)

9.894345142s ago: executing program 2 (id=2412):
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000380)='/dev/snd/controlC2\x00', 0x400, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x400004, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r2)
recvmmsg$auto(r2, &(0x7f0000000180)={{0x0, 0x5, 0x0, 0x0, 0x0, 0x2, 0x6}, 0x803}, 0x10a, 0x6, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r3 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0)
ioctl$auto_PAGEMAP_SCAN(r3, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0x7fffffffefff, 0xfffffffffffffffe, 0x1, 0x8, 0xc00, 0x2c, 0x2c, 0x3, 0x2})
openat$auto_aoe_fops_aoechr(0xffffffffffffff9c, &(0x7f0000000040)='/dev/etherd/flush\x00', 0x1, 0x0)
r4 = openat$auto_nsim_dev_health_break_fops_health(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/netdevsim/netdevsim2/health/break_health\x00', 0x101000, 0x0)
listen$auto(r4, 0x5)
recvmmsg$auto(r1, &(0x7f0000000500)={{0x0, 0x4, 0x0, 0x5, 0x0, 0x2, 0x8}, 0xd1}, 0x10a, 0x8, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/virtual/misc/userfaultfd/power/control\x00', 0x668000, 0x0)
socket(0x2, 0x1, 0x106)
socket(0x2, 0x1, 0x0)
shutdown$auto(0xffffffffffffffff, 0x2)
read$auto_rng_chrdev_ops_core(r1, 0x0, 0x0)
mmap$auto(0xfffffffffffffffc, 0x8, 0x8, 0x7fffffffffffffff, 0xffffffffffffffff, 0xfffffffffffffffd)
ioctl$auto_SOUND_MIXER_READ_DEVMASK2(0xffffffffffffffff, 0x80044dfe, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x3ff, 0x0)
mmap$auto(0x0, 0x40009, 0xe1, 0x1de, 0x7, 0x27fff)
setfsgid$auto(0xee00)
listen$auto(0x3, 0x3)

8.501832801s ago: executing program 2 (id=2413):
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/vm/mmap_min_addr\x00', 0x101302, 0x0)
r0 = signalfd$auto(0xffffffff, 0x0, 0x8)
r1 = socket(0x1d, 0x2, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = io_uring_setup$auto(0x6, 0x0)
r3 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0xa101, 0x0)
close_range$auto(r3, r0, 0xc09f)
r4 = io_uring_setup$auto(0x4079, 0x0)
syz_clone3(&(0x7f00000008c0)={0x0, &(0x7f0000000680)=<r5=>0xffffffffffffffff, &(0x7f00000006c0), &(0x7f0000000700), {0x8}, &(0x7f0000000740)=""/50, 0x32, &(0x7f0000000780)=""/193, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2, {r2}}, 0x58)
r6 = waitid$auto_P_PIDFD(0x3, r5, &(0x7f00000004c0)={@siginfo_0_0={0x0, 0x9, 0xa, @_timer={0x0, 0x6, @sival_ptr=&(0x7f0000000440)="746fab4233801e1b5a7ef37f6533bb10f252b027b880e0bb84e9a1d9623b33acca82062bd0745d401070ea7cd9f88572bc45b46315eb358fd12ecdb8b9c6677c1f6e5f6ad35e275f199ced2f1758bd6b5990119bf09ec2", 0x2}}}, 0x7, &(0x7f0000000540)={{0xffffffffffffff81, 0x3}, {0x1, 0x8}, 0x5, 0x5, 0x4, 0x8, 0xdd, 0xf, 0x4, 0x9, 0x1, 0x0, 0xb, 0x1, 0x8, 0x6})
syz_clone3(&(0x7f0000000600)={0x49004000, &(0x7f0000000140), &(0x7f0000000180)=<r7=>0x0, &(0x7f00000001c0), {0x3}, &(0x7f0000000200)=""/213, 0xd5, &(0x7f0000000300)=""/176, &(0x7f00000003c0)=[0xffffffffffffffff, r6], 0x2, {r0}}, 0x58)
socket$nl_generic(0x10, 0x3, 0x10)
r8 = setfsuid$auto(0xee00)
setreuid$auto(r8, 0x0)
sendmsg$auto_NBD_CMD_RECONFIGURE(r1, &(0x7f0000000a00)={&(0x7f0000000940)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000009c0)={&(0x7f0000001200)={0x17f0, 0x0, 0x10, 0x70bd28, 0x25dfdbfd, {}, [@NBD_ATTR_BACKEND_IDENTIFIER={0x19, 0xa, '/dev/bus/usb/009/001\x00'}, @NBD_ATTR_DEVICE_LIST={0x157c, 0x9, 0x0, 0x1, [@nested={0x108f, 0x9b, 0x0, 0x1, [@nested={0x4, 0x54}, @generic="accccecf133dd82ba22ac11e99c47535dd6a0fb659c6fe3bc3e67112efce0cb7a0937f7ddb29bf5513c63c2c5189fe7875495b274f1a000bf49f947d3ef3986389bf2e090c465ac8096766328d13cf8dcf4b6335a79f650b60", @typed={0x8, 0xa9, 0x0, 0x0, @pid=r7}, @generic="1c3c811b5783034ae6f32c8a28fa372e28a798462e4acd4dd586ca804d47", @generic="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", @nested={0x4, 0x4b}, @nested={0x4, 0x79}]}, @generic="4dca59c874cdd3fb0db162913c67a57c9885ab80789447b337f98d5ccab4369bf2e62a03760a2054acad5dfa6163356164bccffc9439943a68ce90f894b89ccd19671d63ca8b0599d2eb3448ef49fdc555650ed3c74deffd2ae4c72fbf6ffea4c06da89e2d65c6df8562d68ef9fa5b014aa5dbf605be65eff0bbc434221c9a7c6488b52f7bc6231f4cfe5211f36730b01e71df4bf8e8c3afc4568661a2549e3d193c8ef970bd31fa2954496e3e5ed8b999cf37c97c2f1b889956b25d00c992d23f4873fe842d91ab42", @nested={0xd0, 0x4c, 0x0, 0x1, [@generic="8c5b3a1b8d03aa20acc92e74f7704a1c7efe7a82d69e5fd2056ebfe3f499e2d4dd6c020bec5f62662c9f64365c3323f081f07513b056bc22bb916c70fdeea334559063954461983fb505cb407df8ce4d51316eef2187b6a53ce28be935bb39a8d402787243f4ccaa5fd80e21f0a25ec4697b4b999553c64257f152e59574bbbcb17f942abbdaab8cc157239f403ed1369fcd979c7b8d5acd658a53adbe815bdd40405811443bff328774535ea68d90540ea15faac2666d45722da705a8dfdbbc95103f9c44de17503ef05fc9"]}, @typed={0xcb, 0x146, 0x0, 0x0, @binary="503de4a512438c9edbb30342c85067b5cdda512d386b1cb2be5aa4f24a37411785d7c5f89c369891a0ea8430e7838e9cb6b375cc9443e976d5e1c86b532b666743d4012206046aaa3a731afa27b05505ab8567ab43fd47e0856b211a77e116f8269905a9b1f4742f544014a1a5055d6b9ff44bfc0a7966ad3b4d152180900857936a577f5fbb87fee9427d5d0f7e5f27d4830df9f33ca2de3b323f2f9a85e76e341849f7d0368523b5de5fadc1ba0c1fdcbba0b0ee3d2f8a847aa1db1e6ee7f366d3bb25ebbe49"}, @nested={0x4d, 0xd7, 0x0, 0x1, [@nested={0x4, 0x29}, @typed={0x8, 0xf5, 0x0, 0x0, @fd=r0}, @generic="fe", @typed={0x14, 0x1a, 0x0, 0x0, @ipv6=@private1}, @typed={0x1c, 0x9d, 0x0, 0x0, @str='/proc/thread-self/smaps\x00'}, @typed={0xc, 0x101, 0x0, 0x0, @u64=0x3}]}, @generic="b67f5a5db1023c4daeccb25fb5c0368283f877f6cd67d2e7acdf3bd23a84a51ff2b4cdba0680ed3db1007527dc359d6e4495efb4dd641f37e20c7a76fc0e0577ccd5e2e08af9d94d1db078a1c1ff8343238b884eeba528fb2ad605c1e857db18", @typed={0x8, 0x6, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}, @generic="78a6dbc71a0ee0461e9f9100b186d36a757c1bc0b77699c88fb569e4769d8c4db98e542392c0ee1abf02745e23edbfa751b4f338107a38d6a3564daf25080d845a01cd9258d461d2d8f98b4b9539a4ddc65a7839f2a0d93c721c3f94b5f351f491352982f426dcc566ec3305e85ebddbf6f200ddd475748a3670fe44f70d8773b37eac2bf1b14a76ff75644bddbfb67074b2875d3d113ac270b1cdfcf18705b7aa1b296a61c39f51051599d4376855960032c73bddf88a", @nested={0x10f, 0xf5, 0x0, 0x1, [@generic="9f50dbdf7765bfac4bbc8e2e9257a2febf39d0a10150af0dec68b74ff17684b641198c45306ac7b1273e026172bc3f144ddaa3b0c22e4332087fa6872a", @generic="2774f893663fcc12e72f544e63bba423a8a07a01609680a8f8d820d814267190f00cb6ad6a34bac64f1592d74ac407bad0ce0d03", @generic="7cb5b6581726b0707a37f9bcb634b2d4add7fa8c1a7e4e3e6f709406a102727e72bac952edd59790fe5da87e38ea33d64bb492aff1a48073590c79a17da0845a1af94f327900e1b149a8bbf642213f5923c69332cd089d027e1352464e34a0abc5e19a956d8aea3cacece0ee033bc310cffb0083c624705ed0b3fc6db0d97e3ca16e731d09c5a7676f18cab36c9cac9a65ec", @typed={0x8, 0x108, 0x0, 0x0, @u32=0xe3}]}, @typed={0x4, 0xc}]}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x9}, @NBD_ATTR_SOCKETS={0x1f4, 0x7, 0x0, 0x1, [@nested={0x1ee, 0x2c, 0x0, 0x1, [@nested={0x4, 0x47}, @generic="9602aad5bcc6c494738545c81f99a4af80792c6b628883d1fa2631d7e931b10c39f18dbf42143abbbbd3759b0d7cb925e81b08e1cf4e3abebadef12dabffb065d5d3f195587cbeb204c15916587e51da254094732ff98e34c76af0574874f6710eee54174de941e06980f9a30519fb93608014e27d08b8f6832ef31ac1c3e19299996eef7f2cd3188dcfd6305b5274251f48bfec41fe86775bc803242e4cc61c601f7b57c6c24cf514", @typed={0x8, 0x1c, 0x0, 0x0, @uid=r8}, @typed={0x14, 0x75, 0x0, 0x0, @ipv6=@private1={0xfc, 0x1, '\x00', 0x1}}, @nested={0x4, 0x53}, @nested={0x4, 0x13}, @generic="be24d9b55d6a138adad807033cc5d84f17ff02394228f3d61ce71f9b24e2dbe3e34d6451926013e9a13469ace4b9aeb17726303315f8dc7f7ba56d3ba0530eef369cc2d1329158461207bd2e84aed0313cc415d3ae4a403c85db5ae6195642f2ee4acaeefa92748e56d5e6afa9cf6368254b4522a70e2933e613e744086dbbd1dba720397841564bb6f1546ae8f6726d7b6377524c7a1e4fae2456efc6139ce5085ee90f3ef27249e59ee0", @typed={0xc, 0x112, 0x0, 0x0, @u64=0x6}, @generic="89c280e629b1391be5819dc63f27f0e2d34a9e9f97009740ac9d1448ae1e878ff284904116dbb24e2bed90f802f6dd73dd20aa5b01440c4782c33471b376480e74de654d70cc23689452618014c7dd812999b3e1477f59d639d5c2e9ca53f8229be2"]}]}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0xe}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x1}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x8}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x3c1}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x2}, @NBD_ATTR_BACKEND_IDENTIFIER={0x7, 0xa, '\x82{-'}]}, 0x17f0}, 0x1, 0x0, 0x0, 0x80}, 0x0)
r9 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
ioctl$auto(r9, 0x5606, 0x7)
r10 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x4004, 0xf, 0x4, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
r11 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptye6\x00', 0x24200, 0x0)
mq_notify$auto(r11, &(0x7f00000000c0)={@sival_int=0x151a6000, @raw=0xf3c6, 0x3})
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptya7\x00', 0x400041, 0x0)
ioctl$auto_TIOCSETD2(r4, 0x5423, 0x0)
ioctl$auto_TCFLSH2(r10, 0x540b, 0x0)

8.494891928s ago: executing program 3 (id=2420):
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000380)='/dev/snd/controlC2\x00', 0x400, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x400004, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r2)
sendmsg$auto_NL80211_CMD_GET_WIPHY(r2, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000140)=ANY=[@ANYBLOB="18000000", @ANYRES16=r3, @ANYBLOB="810b25bd7080fbdbdf250100"], 0x18}, 0x1, 0x0, 0x0, 0x20000000}, 0xc004)
recvmmsg$auto(r2, &(0x7f0000000180)={{0x0, 0x5, 0x0, 0x0, 0x0, 0x2, 0x6}, 0x803}, 0x10a, 0x6, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r4 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0)
ioctl$auto_PAGEMAP_SCAN(r4, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0x7fffffffefff, 0xfffffffffffffffe, 0x1, 0x8, 0xc00, 0x2c, 0x2c, 0x3, 0x2})
openat$auto_aoe_fops_aoechr(0xffffffffffffff9c, &(0x7f0000000040)='/dev/etherd/flush\x00', 0x1, 0x0)
r5 = openat$auto_nsim_dev_health_break_fops_health(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/netdevsim/netdevsim2/health/break_health\x00', 0x101000, 0x0)
listen$auto(r5, 0x5)
recvmmsg$auto(r1, &(0x7f0000000500)={{0x0, 0x4, 0x0, 0x5, 0x0, 0x2, 0x8}, 0xd1}, 0x10a, 0x8, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/virtual/misc/userfaultfd/power/control\x00', 0x668000, 0x0)
socket(0x2, 0x1, 0x106)
socket(0x2, 0x1, 0x0)
shutdown$auto(0xffffffffffffffff, 0x2)
read$auto_rng_chrdev_ops_core(r1, 0x0, 0x0)
mmap$auto(0xfffffffffffffffc, 0x8, 0x8, 0x7fffffffffffffff, 0xffffffffffffffff, 0xfffffffffffffffd)
ioctl$auto_SOUND_MIXER_READ_DEVMASK2(0xffffffffffffffff, 0x80044dfe, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x3ff, 0x0)
mmap$auto(0x0, 0x40009, 0xe1, 0x1de, 0x7, 0x27fff)
setfsgid$auto(0xee00)

6.971742573s ago: executing program 3 (id=2415):
socket(0xa, 0x1, 0x100)
pread64$auto(0xffffffffffffffff, 0x0, 0x7ff, 0x400)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
socketcall$auto_SYS_SOCKET(0x1, &(0x7f0000000280)=0xfffffffffffffffd)
socket(0x2, 0x80002, 0x73)
read$auto_proc_iter_file_ops_compat_inode(0xffffffffffffffff, &(0x7f0000000180)=""/248, 0xf8)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000001140)='/proc/self/oom_adj\x00', 0x8042, 0x0)
openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
select$auto(0xfffffff7, 0x0, 0x0, &(0x7f00000002c0)={[0x3fdafc8, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x64, 0x8000001f, 0x7, 0x46d3e, 0xc, 0x10000, 0x6]}, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0xc)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0)
mmap$auto(0x0, 0x810004, 0xfff, 0x8000000008012, 0x3, 0x8000)
write$auto(0x3, 0x0, 0xfffffdef)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000001380)=""/134, 0x86)
open_tree_attr$auto(r1, &(0x7f0000000040)='./file0\x00', 0x8c02, &(0x7f0000000080)={0x1, 0x3, 0x7, @raw=0x5}, 0xfffffffffffffc0f)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x403, 0x8000)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS0\x00', 0x1, 0x0)
ioctl$auto(r2, 0x5459, 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
read$auto_l2cap_debugfs_fops_(r1, &(0x7f0000000340)=""/104, 0x68)
open(&(0x7f0000000100)='.\x00', 0x40000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8000, 0x0)

6.476291792s ago: executing program 2 (id=2416):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101002, 0x0)
r1 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/kcore\x00', 0x101000, 0x0)
read$auto_proc_iter_file_ops_compat_inode(r1, 0x0, 0x0)
r2 = socketcall$auto(0x8000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
futex_waitv$auto(&(0x7f0000000000)={0xb, 0x1c380, 0x82}, 0x1, 0x0, 0x0, 0x623d)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/bus/usb/drivers/dvb_usb_anysee/unbind\x00', 0x50b280, 0x0)
sendfile$auto(r4, r4, 0x0, 0x71)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$auto(0x3, 0xae60, 0x10000000000402)
ioctl$auto(0x3, 0xae41, r2)
ioctl$auto_KVM_CREATE_VM(r0, 0xae80, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000100)='\x00\x00\x00\x00\x00\x00\x00x \xec(\x1d\x98\xe9\xc4\xe8\xfc@6=\xab\xf4\x89\x01\x93\xdc\x19\xffv\'\xa1\xd5\x14\x06S\xae\xadB}\xdf]\x99\xc9\x9f4\xbb\xc5\x81\x9d\x8ak\xdeB\xcbd\xd3\x05\xe4P\x84\xcb\xb8#\x13\nYU\'\x95R\xc8\x9d\xb7*\xe0.\xd2\xdf\x1b\x88D\x8c{k\xcec\xe1\xa2j\xec\xc9\xd2\x98\x94I\x102h\x06\x8c\xa2\xc8\x8a7\xb7t', 0x7ef)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x82040, 0x0)
socket(0xa, 0x1, 0x100)
ioperm$auto(0x7, 0x5ad2, 0xc)
r5 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
pread64$auto(r5, 0x0, 0x7ff, 0x400)
socket(0x2, 0x1, 0x0)
r6 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0x12, 0x0, 0x0, &(0x7f0000000240)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x400000000000948f, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x3, 0x1, 0x9, 0x1]}, 0x0)
write$auto(r6, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0xa, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x20000003, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)

6.323604059s ago: executing program 1 (id=2417):
socket(0xa, 0x1, 0x100)
pread64$auto(0xffffffffffffffff, 0x0, 0x7ff, 0x400)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
socketcall$auto_SYS_SOCKET(0x1, &(0x7f0000000280)=0xfffffffffffffffd)
socket(0x2, 0x80002, 0x73)
read$auto_proc_iter_file_ops_compat_inode(0xffffffffffffffff, &(0x7f0000000180)=""/248, 0xf8)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000001140)='/proc/self/oom_adj\x00', 0x8042, 0x0)
openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
select$auto(0xfffffff7, 0x0, 0x0, &(0x7f00000002c0)={[0x3fdafc8, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x64, 0x8000001f, 0x7, 0x46d3e, 0xc, 0x10000, 0x6]}, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0xc)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0)
mmap$auto(0x0, 0x810004, 0xfff, 0x8000000008012, 0x3, 0x8000)
write$auto(0x3, 0x0, 0xfffffdef)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000001380)=""/134, 0x86)
open_tree_attr$auto(r1, &(0x7f0000000040)='./file0\x00', 0x8c02, &(0x7f0000000080)={0x1, 0x3, 0x7, @raw=0x5}, 0xfffffffffffffc0f)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x403, 0x8000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS0\x00', 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
read$auto_l2cap_debugfs_fops_(r1, &(0x7f0000000340)=""/104, 0x68)
open(&(0x7f0000000100)='.\x00', 0x40000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8000, 0x0)

5.175135148s ago: executing program 2 (id=2418):
socket(0xa, 0x1, 0x100)
pread64$auto(0xffffffffffffffff, 0x0, 0x7ff, 0x400)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
socketcall$auto_SYS_SOCKET(0x1, &(0x7f0000000280)=0xfffffffffffffffd)
socket(0x2, 0x80002, 0x73)
read$auto_proc_iter_file_ops_compat_inode(0xffffffffffffffff, &(0x7f0000000180)=""/248, 0xf8)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000001140)='/proc/self/oom_adj\x00', 0x8042, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
select$auto(0xfffffff7, 0x0, 0x0, &(0x7f00000002c0)={[0x3fdafc8, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x64, 0x8000001f, 0x7, 0x46d3e, 0xc, 0x10000, 0x6]}, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0xc)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0)
mmap$auto(0x0, 0x810004, 0xfff, 0x8000000008012, 0x3, 0x8000)
write$auto(0x3, 0x0, 0xfffffdef)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000001380)=""/134, 0x86)
open_tree_attr$auto(r1, &(0x7f0000000040)='./file0\x00', 0x8c02, &(0x7f0000000080)={0x1, 0x3, 0x7, @raw=0x5}, 0xfffffffffffffc0f)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x403, 0x8000)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS0\x00', 0x1, 0x0)
ioctl$auto(r2, 0x5459, 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
read$auto_l2cap_debugfs_fops_(r1, &(0x7f0000000340)=""/104, 0x68)
open(&(0x7f0000000100)='.\x00', 0x40000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8000, 0x0)

5.174648828s ago: executing program 3 (id=2419):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/ram10/queue/max_sectors_kb\x00', 0xe3102, 0x0)
sendfile$auto(r0, r0, 0x0, 0x3)
unshare$auto(0x40000080)
openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/pcmC1D0p\x00', 0x4000, 0x0)
ioctl$auto_FBIO_CURSOR(0xffffffffffffffff, 0xc0684608, &(0x7f00000001c0)={0x10, 0x1, 0x600, 0x0, {0x1003, 0x9b72}, {0x5, 0x3, 0x2, 0x9, 0x4, 0x7f, 0x9, 0x0, {0xb4, 0xffffff81, 0x0, 0x0, 0x0, 0x0}}})
write$auto(0xca, &(0x7f0000000040)='\x04>\x01\r\xfb\xff\xf6OL\xc8\xbe\x94\xf2\xa2\x00\x00', 0x2d9)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
ioctl$auto_UBI_IOCDET(0xffffffffffffffff, 0x40046f41, 0x0)
unshare$auto(0x40000080)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, &(0x7f0000000500)='/dev/cpu/0/cpuid\x00', 0xad00, 0x0)
r1 = prctl$auto_PR_SET_MM_START_DATA(0x6, 0x3, 0xffffffffffffffff, 0x5, 0x7)
mount_setattr$auto(r1, 0x0, 0x0, &(0x7f0000000640)={0x8, 0x14000b, 0x0, @inferred=<r2=>0xffffffffffffffff}, 0x283)
mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000)
futex$auto(&(0x7f0000000080)=0x1, 0xb, 0x1, 0x0, 0x0, 0xfffffffa)
futex$auto(&(0x7f0000000080)=0x100002, 0x1, 0x8, 0x0, 0x0, 0x440a4cd3)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/pts/ptmx\x00', 0xa0540, 0x0)
ioctl$auto_PPPIOCGDEBUG(r2, 0x80047441, &(0x7f00000000c0)=0x7)
lstat$auto(0x0, 0x0)
ioctl$auto(r3, 0x5419, 0x38)
openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/pcmC1D0p\x00', 0x4000, 0x0)
ioctl$auto_FBIO_CURSOR(0xffffffffffffffff, 0xc0684608, &(0x7f00000001c0)={0x6, 0x1, 0x600, &(0x7f0000000240)='!\x00', {0x1003, 0x9b72}, {0x5, 0x3, 0x2, 0x9, 0xffff2f03, 0x7fff, 0x9, 0x0, {0x1fe, 0xffffff81, 0x0, 0x0, 0x0, 0x0}}})
write$auto(0xca, &(0x7f0000000040)='\x04>\x01\r\xfb\xff\xf6OL\xc8\xbe\x94\xf2\xa2\x00\x00', 0x2d9)

4.980074832s ago: executing program 1 (id=2421):
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/vm/mmap_min_addr\x00', 0x101302, 0x0)
r0 = signalfd$auto(0xffffffff, 0x0, 0x8)
r1 = socket(0x1d, 0x2, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = io_uring_setup$auto(0x6, 0x0)
r3 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0xa101, 0x0)
close_range$auto(r3, r0, 0xc09f)
r4 = io_uring_setup$auto(0x4079, 0x0)
syz_clone3(&(0x7f00000008c0)={0x0, &(0x7f0000000680)=<r5=>0xffffffffffffffff, &(0x7f00000006c0), &(0x7f0000000700), {0x8}, &(0x7f0000000740)=""/50, 0x32, &(0x7f0000000780)=""/193, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2, {r2}}, 0x58)
r6 = waitid$auto_P_PIDFD(0x3, r5, &(0x7f00000004c0)={@siginfo_0_0={0x0, 0x9, 0xa, @_timer={0x0, 0x6, @sival_ptr=&(0x7f0000000440)="746fab4233801e1b5a7ef37f6533bb10f252b027b880e0bb84e9a1d9623b33acca82062bd0745d401070ea7cd9f88572bc45b46315eb358fd12ecdb8b9c6677c1f6e5f6ad35e275f199ced2f1758bd6b5990119bf09ec2", 0x2}}}, 0x7, &(0x7f0000000540)={{0xffffffffffffff81, 0x3}, {0x1, 0x8}, 0x5, 0x5, 0x4, 0x8, 0xdd, 0xf, 0x4, 0x9, 0x1, 0x0, 0xb, 0x1, 0x8, 0x6})
syz_clone3(&(0x7f0000000600)={0x49004000, &(0x7f0000000140), &(0x7f0000000180)=<r7=>0x0, &(0x7f00000001c0), {0x3}, &(0x7f0000000200)=""/213, 0xd5, &(0x7f0000000300)=""/176, &(0x7f00000003c0)=[0xffffffffffffffff, r6], 0x2, {r0}}, 0x58)
socket$nl_generic(0x10, 0x3, 0x10)
r8 = setfsuid$auto(0xee00)
setreuid$auto(r8, 0x0)
sendmsg$auto_NBD_CMD_RECONFIGURE(r1, &(0x7f0000000a00)={&(0x7f0000000940)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000009c0)={&(0x7f0000001200)={0x17b8, 0x0, 0x10, 0x70bd28, 0x25dfdbfd, {}, [@NBD_ATTR_BACKEND_IDENTIFIER={0x19, 0xa, '/dev/bus/usb/009/001\x00'}, @NBD_ATTR_DEVICE_LIST={0x1540, 0x9, 0x0, 0x1, [@nested={0x108f, 0x9b, 0x0, 0x1, [@nested={0x4, 0x54}, @generic="accccecf133dd82ba22ac11e99c47535dd6a0fb659c6fe3bc3e67112efce0cb7a0937f7ddb29bf5513c63c2c5189fe7875495b274f1a000bf49f947d3ef3986389bf2e090c465ac8096766328d13cf8dcf4b6335a79f650b60", @typed={0x8, 0xa9, 0x0, 0x0, @pid=r7}, @generic="1c3c811b5783034ae6f32c8a28fa372e28a798462e4acd4dd586ca804d47", @generic="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", @nested={0x4, 0x4b}, @nested={0x4, 0x79}]}, @generic="4dca59c874cdd3fb0db162913c67a57c9885ab80789447b337f98d5ccab4369bf2e62a03760a2054acad5dfa6163356164bccffc9439943a68ce90f894b89ccd19671d63ca8b0599d2eb3448ef49fdc555650ed3c74deffd2ae4c72fbf6ffea4c06da89e2d65c6df8562d68ef9fa5b014aa5dbf605be65eff0bbc434221c9a7c6488b52f7bc6231f4cfe5211f36730b01e71df4bf8e8c3afc4568661a2549e3d193c8ef970bd31fa2954496e3e5ed8b999cf37c97c2f1b889956b25d00c992d23f4873fe842d91ab42", @nested={0xd0, 0x4c, 0x0, 0x1, [@generic="8c5b3a1b8d03aa20acc92e74f7704a1c7efe7a82d69e5fd2056ebfe3f499e2d4dd6c020bec5f62662c9f64365c3323f081f07513b056bc22bb916c70fdeea334559063954461983fb505cb407df8ce4d51316eef2187b6a53ce28be935bb39a8d402787243f4ccaa5fd80e21f0a25ec4697b4b999553c64257f152e59574bbbcb17f942abbdaab8cc157239f403ed1369fcd979c7b8d5acd658a53adbe815bdd40405811443bff328774535ea68d90540ea15faac2666d45722da705a8dfdbbc95103f9c44de17503ef05fc9"]}, @typed={0xcb, 0x146, 0x0, 0x0, @binary="503de4a512438c9edbb30342c85067b5cdda512d386b1cb2be5aa4f24a37411785d7c5f89c369891a0ea8430e7838e9cb6b375cc9443e976d5e1c86b532b666743d4012206046aaa3a731afa27b05505ab8567ab43fd47e0856b211a77e116f8269905a9b1f4742f544014a1a5055d6b9ff44bfc0a7966ad3b4d152180900857936a577f5fbb87fee9427d5d0f7e5f27d4830df9f33ca2de3b323f2f9a85e76e341849f7d0368523b5de5fadc1ba0c1fdcbba0b0ee3d2f8a847aa1db1e6ee7f366d3bb25ebbe49"}, @nested={0x4d, 0xd7, 0x0, 0x1, [@nested={0x4, 0x29}, @typed={0x8, 0xf5, 0x0, 0x0, @fd=r0}, @generic="fe", @typed={0x14, 0x1a, 0x0, 0x0, @ipv6=@private1}, @typed={0x1c, 0x9d, 0x0, 0x0, @str='/proc/thread-self/smaps\x00'}, @typed={0xc, 0x101, 0x0, 0x0, @u64=0x3}]}, @generic="b67f5a5db1023c4daeccb25fb5c0368283f877f6cd67d2e7acdf3bd23a84a51ff2b4cdba0680ed3db1007527dc359d6e4495efb4dd641f37e20c7a76fc0e0577ccd5e2e08af9d94d1db078a1c1ff8343238b884eeba528fb2ad605c1e857db18", @typed={0x8, 0x6, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}, @generic="78a6dbc71a0ee0461e9f9100b186d36a757c1bc0b77699c88fb569e4769d8c4db98e542392c0ee1abf02745e23edbfa751b4f338107a38d6a3564daf25080d845a01cd9258d461d2d8f98b4b9539a4ddc65a7839f2a0d93c721c3f94b5f351f491352982f426dcc566ec3305e85ebddbf6f200ddd475748a3670fe44f70d8773b37eac2bf1b14a76ff75644bddbfb67074b2875d3d113ac270b1cdfcf18705b7aa1b296a61c39f51051599d4376855960032c73bddf88a", @nested={0xd2, 0xf5, 0x0, 0x1, [@generic="2774f893663fcc12e72f544e63bba423a8a07a01609680a8f8d820d814267190f00cb6ad6a34bac64f1592d74ac407bad0ce0d03", @generic="7cb5b6581726b0707a37f9bcb634b2d4add7fa8c1a7e4e3e6f709406a102727e72bac952edd59790fe5da87e38ea33d64bb492aff1a48073590c79a17da0845a1af94f327900e1b149a8bbf642213f5923c69332cd089d027e1352464e34a0abc5e19a956d8aea3cacece0ee033bc310cffb0083c624705ed0b3fc6db0d97e3ca16e731d09c5a7676f18cab36c9cac9a65ec", @typed={0x8, 0x108, 0x0, 0x0, @u32=0xe3}]}, @typed={0x4, 0xc}]}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x9}, @NBD_ATTR_SOCKETS={0x1f8, 0x7, 0x0, 0x1, [@nested={0x1f1, 0x2c, 0x0, 0x1, [@nested={0x4, 0x47}, @generic="9602aad5bcc6c494738545c81f99a4af80792c6b628883d1fa2631d7e931b10c39f18dbf42143abbbbd3759b0d7cb925e81b08e1cf4e3abebadef12dabffb065d5d3f195587cbeb204c15916587e51da254094732ff98e34c76af0574874f6710eee54174de941e06980f9a30519fb93608014e27d08b8f6832ef31ac1c3e19299996eef7f2cd3188dcfd6305b5274251f48bfec41fe86775bc803242e4cc61c601f7b57c6c24cf514", @typed={0x8, 0x1c, 0x0, 0x0, @uid=r8}, @typed={0x14, 0x75, 0x0, 0x0, @ipv6=@private1={0xfc, 0x1, '\x00', 0x1}}, @nested={0x4, 0x53}, @nested={0x4, 0x13}, @generic="be24d9b55d6a138adad807033cc5d84f17ff02394228f3d61ce71f9b24e2dbe3e34d6451926013e9a13469ace4b9aeb17726303315f8dc7f7ba56d3ba0530eef369cc2d1329158461207bd2e84aed0313cc415d3ae4a403c85db5ae6195642f2ee4acaeefa92748e56d5e6afa9cf6368254b4522a70e2933e613e744086dbbd1dba720397841564bb6f1546ae8f6726d7b6377524c7a1e4fae2456efc6139ce5085ee90f3ef27249e59ee0", @typed={0xc, 0x112, 0x0, 0x0, @u64=0x6}, @generic="89c280e629b1391be5819dc63f27f0e2d34a9e9f97009740ac9d1448ae1e878ff284904116dbb24e2bed90f802f6dd73dd20aa5b01440c4782c33471b376480e74de654d70cc23689452618014c7dd812999b3e1477f59d639d5c2e9ca53f8229be27a6b22"]}]}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0xe}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x1}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x8}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x3c1}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x2}, @NBD_ATTR_BACKEND_IDENTIFIER={0x7, 0xa, '\x82{-'}]}, 0x17b8}, 0x1, 0x0, 0x0, 0x80}, 0x0)
r9 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
ioctl$auto(r9, 0x5606, 0x7)
r10 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
openat$auto_proc_pid_smaps_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/smaps\x00', 0xc0000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x4004, 0xf, 0x4, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
r11 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptye6\x00', 0x24200, 0x0)
mq_notify$auto(r11, &(0x7f00000000c0)={@sival_int=0x151a6000, @raw=0xf3c6, 0x3})
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptya7\x00', 0x400041, 0x0)
ioctl$auto_TIOCSETD2(r4, 0x5423, 0x0)
ioctl$auto_TCFLSH2(r10, 0x540b, 0x0)

4.096301591s ago: executing program 3 (id=2422):
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/vm/mmap_min_addr\x00', 0x101302, 0x0)
r0 = signalfd$auto(0xffffffff, 0x0, 0x8)
r1 = socket(0x1d, 0x2, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = io_uring_setup$auto(0x6, 0x0)
r3 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0xa101, 0x0)
close_range$auto(r3, r0, 0xc09f)
r4 = io_uring_setup$auto(0x4079, 0x0)
syz_clone3(&(0x7f00000008c0)={0x0, &(0x7f0000000680)=<r5=>0xffffffffffffffff, &(0x7f00000006c0), &(0x7f0000000700), {0x8}, &(0x7f0000000740)=""/50, 0x32, &(0x7f0000000780)=""/193, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2, {r2}}, 0x58)
r6 = waitid$auto_P_PIDFD(0x3, r5, &(0x7f00000004c0)={@siginfo_0_0={0x0, 0x9, 0xa, @_timer={0x0, 0x6, @sival_ptr=&(0x7f0000000440)="746fab4233801e1b5a7ef37f6533bb10f252b027b880e0bb84e9a1d9623b33acca82062bd0745d401070ea7cd9f88572bc45b46315eb358fd12ecdb8b9c6677c1f6e5f6ad35e275f199ced2f1758bd6b5990119bf09ec2", 0x2}}}, 0x7, &(0x7f0000000540)={{0xffffffffffffff81, 0x3}, {0x1, 0x8}, 0x5, 0x5, 0x4, 0x8, 0xdd, 0xf, 0x4, 0x9, 0x1, 0x0, 0xb, 0x1, 0x8, 0x6})
syz_clone3(&(0x7f0000000600)={0x49004000, &(0x7f0000000140), &(0x7f0000000180)=<r7=>0x0, &(0x7f00000001c0), {0x3}, &(0x7f0000000200)=""/213, 0xd5, &(0x7f0000000300)=""/176, &(0x7f00000003c0)=[0xffffffffffffffff, r6], 0x2, {r0}}, 0x58)
socket$nl_generic(0x10, 0x3, 0x10)
r8 = setfsuid$auto(0xee00)
setreuid$auto(r8, 0x0)
sendmsg$auto_NBD_CMD_RECONFIGURE(r1, &(0x7f0000000a00)={&(0x7f0000000940)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000009c0)={&(0x7f0000001200)={0x17ec, 0x0, 0x10, 0x70bd28, 0x25dfdbfd, {}, [@NBD_ATTR_BACKEND_IDENTIFIER={0x19, 0xa, '/dev/bus/usb/009/001\x00'}, @NBD_ATTR_DEVICE_LIST={0x157c, 0x9, 0x0, 0x1, [@nested={0x108f, 0x9b, 0x0, 0x1, [@nested={0x4, 0x54}, @generic="accccecf133dd82ba22ac11e99c47535dd6a0fb659c6fe3bc3e67112efce0cb7a0937f7ddb29bf5513c63c2c5189fe7875495b274f1a000bf49f947d3ef3986389bf2e090c465ac8096766328d13cf8dcf4b6335a79f650b60", @typed={0x8, 0xa9, 0x0, 0x0, @pid=r7}, @generic="1c3c811b5783034ae6f32c8a28fa372e28a798462e4acd4dd586ca804d47", @generic="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", @nested={0x4, 0x4b}, @nested={0x4, 0x79}]}, @generic="4dca59c874cdd3fb0db162913c67a57c9885ab80789447b337f98d5ccab4369bf2e62a03760a2054acad5dfa6163356164bccffc9439943a68ce90f894b89ccd19671d63ca8b0599d2eb3448ef49fdc555650ed3c74deffd2ae4c72fbf6ffea4c06da89e2d65c6df8562d68ef9fa5b014aa5dbf605be65eff0bbc434221c9a7c6488b52f7bc6231f4cfe5211f36730b01e71df4bf8e8c3afc4568661a2549e3d193c8ef970bd31fa2954496e3e5ed8b999cf37c97c2f1b889956b25d00c992d23f4873fe842d91ab42", @nested={0xd0, 0x4c, 0x0, 0x1, [@generic="8c5b3a1b8d03aa20acc92e74f7704a1c7efe7a82d69e5fd2056ebfe3f499e2d4dd6c020bec5f62662c9f64365c3323f081f07513b056bc22bb916c70fdeea334559063954461983fb505cb407df8ce4d51316eef2187b6a53ce28be935bb39a8d402787243f4ccaa5fd80e21f0a25ec4697b4b999553c64257f152e59574bbbcb17f942abbdaab8cc157239f403ed1369fcd979c7b8d5acd658a53adbe815bdd40405811443bff328774535ea68d90540ea15faac2666d45722da705a8dfdbbc95103f9c44de17503ef05fc9"]}, @typed={0xcb, 0x146, 0x0, 0x0, @binary="503de4a512438c9edbb30342c85067b5cdda512d386b1cb2be5aa4f24a37411785d7c5f89c369891a0ea8430e7838e9cb6b375cc9443e976d5e1c86b532b666743d4012206046aaa3a731afa27b05505ab8567ab43fd47e0856b211a77e116f8269905a9b1f4742f544014a1a5055d6b9ff44bfc0a7966ad3b4d152180900857936a577f5fbb87fee9427d5d0f7e5f27d4830df9f33ca2de3b323f2f9a85e76e341849f7d0368523b5de5fadc1ba0c1fdcbba0b0ee3d2f8a847aa1db1e6ee7f366d3bb25ebbe49"}, @nested={0x4d, 0xd7, 0x0, 0x1, [@nested={0x4, 0x29}, @typed={0x8, 0xf5, 0x0, 0x0, @fd=r0}, @generic="fe", @typed={0x14, 0x1a, 0x0, 0x0, @ipv6=@private1}, @typed={0x1c, 0x9d, 0x0, 0x0, @str='/proc/thread-self/smaps\x00'}, @typed={0xc, 0x101, 0x0, 0x0, @u64=0x3}]}, @generic="b67f5a5db1023c4daeccb25fb5c0368283f877f6cd67d2e7acdf3bd23a84a51ff2b4cdba0680ed3db1007527dc359d6e4495efb4dd641f37e20c7a76fc0e0577ccd5e2e08af9d94d1db078a1c1ff8343238b884eeba528fb2ad605c1e857db18", @typed={0x8, 0x6, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}, @generic="78a6dbc71a0ee0461e9f9100b186d36a757c1bc0b77699c88fb569e4769d8c4db98e542392c0ee1abf02745e23edbfa751b4f338107a38d6a3564daf25080d845a01cd9258d461d2d8f98b4b9539a4ddc65a7839f2a0d93c721c3f94b5f351f491352982f426dcc566ec3305e85ebddbf6f200ddd475748a3670fe44f70d8773b37eac2bf1b14a76ff75644bddbfb67074b2875d3d113ac270b1cdfcf18705b7aa1b296a61c39f51051599d4376855960032c73bddf88a", @nested={0x10f, 0xf5, 0x0, 0x1, [@generic="9f50dbdf7765bfac4bbc8e2e9257a2febf39d0a10150af0dec68b74ff17684b641198c45306ac7b1273e026172bc3f144ddaa3b0c22e4332087fa6872a", @generic="2774f893663fcc12e72f544e63bba423a8a07a01609680a8f8d820d814267190f00cb6ad6a34bac64f1592d74ac407bad0ce0d03", @generic="7cb5b6581726b0707a37f9bcb634b2d4add7fa8c1a7e4e3e6f709406a102727e72bac952edd59790fe5da87e38ea33d64bb492aff1a48073590c79a17da0845a1af94f327900e1b149a8bbf642213f5923c69332cd089d027e1352464e34a0abc5e19a956d8aea3cacece0ee033bc310cffb0083c624705ed0b3fc6db0d97e3ca16e731d09c5a7676f18cab36c9cac9a65ec", @typed={0x8, 0x108, 0x0, 0x0, @u32=0xe3}]}, @typed={0x4, 0xc}]}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x9}, @NBD_ATTR_SOCKETS={0x1f0, 0x7, 0x0, 0x1, [@nested={0x1ec, 0x2c, 0x0, 0x1, [@nested={0x4, 0x47}, @generic="9602aad5bcc6c494738545c81f99a4af80792c6b628883d1fa2631d7e931b10c39f18dbf42143abbbbd3759b0d7cb925e81b08e1cf4e3abebadef12dabffb065d5d3f195587cbeb204c15916587e51da254094732ff98e34c76af0574874f6710eee54174de941e06980f9a30519fb93608014e27d08b8f6832ef31ac1c3e19299996eef7f2cd3188dcfd6305b5274251f48bfec41fe86775bc803242e4cc61c601f7b57", @typed={0x8, 0x1c, 0x0, 0x0, @uid=r8}, @typed={0x14, 0x75, 0x0, 0x0, @ipv6=@private1={0xfc, 0x1, '\x00', 0x1}}, @nested={0x4, 0x53}, @nested={0x4, 0x13}, @generic="be24d9b55d6a138adad807033cc5d84f17ff02394228f3d61ce71f9b24e2dbe3e34d6451926013e9a13469ace4b9aeb17726303315f8dc7f7ba56d3ba0530eef369cc2d1329158461207bd2e84aed0313cc415d3ae4a403c85db5ae6195642f2ee4acaeefa92748e56d5e6afa9cf6368254b4522a70e2933e613e744086dbbd1dba720397841564bb6f1546ae8f6726d7b6377524c7a1e4fae2456efc6139ce5085ee90f3ef27249e59ee0", @typed={0xc, 0x112, 0x0, 0x0, @u64=0x6}, @generic="89c280e629b1391be5819dc63f27f0e2d34a9e9f97009740ac9d1448ae1e878ff284904116dbb24e2bed90f802f6dd73dd20aa5b01440c4782c33471b376480e74de654d70cc23689452618014c7dd812999b3e1477f59d639d5c2e9ca53f8229be27a6b22"]}]}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0xe}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x1}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x8}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x3c1}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x2}, @NBD_ATTR_BACKEND_IDENTIFIER={0x7, 0xa, '\x82{-'}]}, 0x17ec}, 0x1, 0x0, 0x0, 0x80}, 0x0)
r9 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
ioctl$auto(r9, 0x5606, 0x7)
r10 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x4004, 0xf, 0x4, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
r11 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptye6\x00', 0x24200, 0x0)
mq_notify$auto(r11, &(0x7f00000000c0)={@sival_int=0x151a6000, @raw=0xf3c6, 0x3})
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptya7\x00', 0x400041, 0x0)
ioctl$auto_TIOCSETD2(r4, 0x5423, 0x0)
ioctl$auto_TCFLSH2(r10, 0x540b, 0x0)

4.003153927s ago: executing program 1 (id=2423):
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000380)='/dev/snd/controlC2\x00', 0x400, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x400004, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r2)
sendmsg$auto_NL80211_CMD_GET_WIPHY(r2, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000140)=ANY=[@ANYBLOB="18000000", @ANYRES16=r3, @ANYBLOB="810b25bd7080fbdbdf250100"], 0x18}, 0x1, 0x0, 0x0, 0x20000000}, 0xc004)
recvmmsg$auto(r2, &(0x7f0000000180)={{0x0, 0x5, 0x0, 0x0, 0x0, 0x2, 0x6}, 0x803}, 0x10a, 0x6, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r4 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0)
ioctl$auto_PAGEMAP_SCAN(r4, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0x7fffffffefff, 0xfffffffffffffffe, 0x1, 0x8, 0xc00, 0x2c, 0x2c, 0x3, 0x2})
openat$auto_aoe_fops_aoechr(0xffffffffffffff9c, &(0x7f0000000040)='/dev/etherd/flush\x00', 0x1, 0x0)
r5 = openat$auto_nsim_dev_health_break_fops_health(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/netdevsim/netdevsim2/health/break_health\x00', 0x101000, 0x0)
listen$auto(r5, 0x5)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/virtual/misc/userfaultfd/power/control\x00', 0x668000, 0x0)
socket(0x2, 0x1, 0x106)
socket(0x2, 0x1, 0x0)
shutdown$auto(0xffffffffffffffff, 0x2)
read$auto_rng_chrdev_ops_core(r1, 0x0, 0x0)
mmap$auto(0xfffffffffffffffc, 0x8, 0x8, 0x7fffffffffffffff, 0xffffffffffffffff, 0xfffffffffffffffd)
ioctl$auto_SOUND_MIXER_READ_DEVMASK2(0xffffffffffffffff, 0x80044dfe, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x3ff, 0x0)
mmap$auto(0x0, 0x40009, 0xe1, 0x1de, 0x7, 0x27fff)
setfsgid$auto(0xee00)
listen$auto(0x3, 0x3)

2.267336811s ago: executing program 1 (id=2424):
socket(0xa, 0x1, 0x100)
pread64$auto(0xffffffffffffffff, 0x0, 0x7ff, 0x400)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
socketcall$auto_SYS_SOCKET(0x1, &(0x7f0000000280)=0xfffffffffffffffd)
socket(0x2, 0x80002, 0x73)
read$auto_proc_iter_file_ops_compat_inode(0xffffffffffffffff, &(0x7f0000000180)=""/248, 0xf8)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000001140)='/proc/self/oom_adj\x00', 0x8042, 0x0)
openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
select$auto(0xfffffff7, 0x0, 0x0, &(0x7f00000002c0)={[0x3fdafc8, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x64, 0x8000001f, 0x7, 0x46d3e, 0xc, 0x10000, 0x6]}, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0xc)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
mmap$auto(0x0, 0x810004, 0xfff, 0x8000000008012, 0x3, 0x8000)
write$auto(0x3, 0x0, 0xfffffdef)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000001380)=""/134, 0x86)
open_tree_attr$auto(r1, &(0x7f0000000040)='./file0\x00', 0x8c02, &(0x7f0000000080)={0x1, 0x3, 0x7, @raw=0x5}, 0xfffffffffffffc0f)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x403, 0x8000)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS0\x00', 0x1, 0x0)
ioctl$auto(r2, 0x5459, 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
read$auto_l2cap_debugfs_fops_(r1, &(0x7f0000000340)=""/104, 0x68)
open(0x0, 0x40000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8000, 0x0)

2.267061398s ago: executing program 3 (id=2425):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101002, 0x0)
bpf$auto(0xa, &(0x7f00000000c0)=@query={@target_ifindex, 0x4, 0x0, 0x2, 0x3, @prog_cnt=0xc, 0x0, 0xd8, 0x0, 0x56a, 0x1}, 0x91)
r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/kcore\x00', 0x101000, 0x0)
read$auto_proc_iter_file_ops_compat_inode(r0, 0x0, 0x0)
r1 = socketcall$auto(0x8000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
futex_waitv$auto(&(0x7f0000000000)={0xb, 0x1c380, 0x82}, 0x1, 0x0, 0x0, 0x623d)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/bus/usb/drivers/dvb_usb_anysee/unbind\x00', 0x50b280, 0x0)
sendfile$auto(r3, r3, 0x0, 0x71)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$auto(0x3, 0xae60, 0x10000000000402)
ioctl$auto(0x3, 0xae41, r1)
write$auto(0xffffffffffffffff, &(0x7f0000000100)='\x00\x00\x00\x00\x00\x00\x00x \xec(\x1d\x98\xe9\xc4\xe8\xfc@6=\xab\xf4\x89\x01\x93\xdc\x19\xffv\'\xa1\xd5\x14\x06S\xae\xadB}\xdf]\x99\xc9\x9f4\xbb\xc5\x81\x9d\x8ak\xdeB\xcbd\xd3\x05\xe4P\x84\xcb\xb8#\x13\nYU\'\x95R\xc8\x9d\xb7*\xe0.\xd2\xdf\x1b\x88D\x8c{k\xcec\xe1\xa2j\xec\xc9\xd2\x98\x94I\x102h\x06\x8c\xa2\xc8\x8a7\xb7t', 0x7ef)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x82040, 0x0)
socket(0xa, 0x1, 0x100)
ioperm$auto(0x7, 0x5ad2, 0xc)
r4 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
pread64$auto(r4, 0x0, 0x7ff, 0x400)
socket(0x2, 0x1, 0x0)
r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0x12, 0x0, 0x0, &(0x7f0000000240)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x400000000000948f, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x3, 0x1, 0x9, 0x1]}, 0x0)
write$auto(r5, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0xa, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x20000003, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)

2.265212553s ago: executing program 2 (id=2431):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, 0x0, 0x34d802, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101002, 0x0)
bpf$auto(0xa, &(0x7f00000000c0)=@query={@target_ifindex, 0x4, 0x0, 0x2, 0x3, @prog_cnt=0xc, 0x0, 0xd8, 0x0, 0x56a, 0x1}, 0x91)
r1 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/kcore\x00', 0x101000, 0x0)
read$auto_proc_iter_file_ops_compat_inode(r1, 0x0, 0x0)
r2 = socketcall$auto(0x8000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
futex_waitv$auto(&(0x7f0000000000)={0xb, 0x1c380, 0x82}, 0x1, 0x0, 0x0, 0x623d)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/bus/usb/drivers/dvb_usb_anysee/unbind\x00', 0x50b280, 0x0)
sendfile$auto(r4, r4, 0x0, 0x71)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$auto(0x3, 0xae60, 0x10000000000402)
ioctl$auto(0x3, 0xae41, r2)
ioctl$auto_KVM_CREATE_VM(r0, 0xae80, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000100)='\x00\x00\x00\x00\x00\x00\x00x \xec(\x1d\x98\xe9\xc4\xe8\xfc@6=\xab\xf4\x89\x01\x93\xdc\x19\xffv\'\xa1\xd5\x14\x06S\xae\xadB}\xdf]\x99\xc9\x9f4\xbb\xc5\x81\x9d\x8ak\xdeB\xcbd\xd3\x05\xe4P\x84\xcb\xb8#\x13\nYU\'\x95R\xc8\x9d\xb7*\xe0.\xd2\xdf\x1b\x88D\x8c{k\xcec\xe1\xa2j\xec\xc9\xd2\x98\x94I\x102h\x06\x8c\xa2\xc8\x8a7\xb7t', 0x7ef)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x82040, 0x0)
socket(0xa, 0x1, 0x100)
ioperm$auto(0x7, 0x5ad2, 0xc)
r5 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
pread64$auto(r5, 0x0, 0x7ff, 0x400)
socket(0x2, 0x1, 0x0)
r6 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0x12, 0x0, 0x0, &(0x7f0000000240)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x400000000000948f, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x3, 0x1, 0x9, 0x1]}, 0x0)
write$auto(r6, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0xa, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x20000003, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)

1.628282225s ago: executing program 0 (id=2393):
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000380)='/dev/snd/controlC2\x00', 0x400, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x400004, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r2)
sendmsg$auto_NL80211_CMD_GET_WIPHY(r2, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000140)=ANY=[@ANYBLOB="180000", @ANYRES16=r3, @ANYBLOB="810b25bd7080fbdbdf250100"], 0x18}, 0x1, 0x0, 0x0, 0x20000000}, 0xc004)
recvmmsg$auto(r2, &(0x7f0000000180)={{0x0, 0x5, 0x0, 0x0, 0x0, 0x2, 0x6}, 0x803}, 0x10a, 0x6, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r4 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0)
ioctl$auto_PAGEMAP_SCAN(r4, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0x7fffffffefff, 0xfffffffffffffffe, 0x1, 0x8, 0xc00, 0x2c, 0x2c, 0x3, 0x2})
openat$auto_aoe_fops_aoechr(0xffffffffffffff9c, &(0x7f0000000040)='/dev/etherd/flush\x00', 0x1, 0x0)
r5 = openat$auto_nsim_dev_health_break_fops_health(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/netdevsim/netdevsim2/health/break_health\x00', 0x101000, 0x0)
listen$auto(r5, 0x5)
recvmmsg$auto(r1, &(0x7f0000000500)={{0x0, 0x4, 0x0, 0x5, 0x0, 0x2, 0x8}, 0xd1}, 0x10a, 0x8, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/virtual/misc/userfaultfd/power/control\x00', 0x668000, 0x0)
socket(0x2, 0x1, 0x106)
socket(0x2, 0x1, 0x0)
shutdown$auto(0xffffffffffffffff, 0x2)
read$auto_rng_chrdev_ops_core(r1, 0x0, 0x0)
mmap$auto(0xfffffffffffffffc, 0x8, 0x8, 0x7fffffffffffffff, 0xffffffffffffffff, 0xfffffffffffffffd)
ioctl$auto_SOUND_MIXER_READ_DEVMASK2(0xffffffffffffffff, 0x80044dfe, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x3ff, 0x0)
mmap$auto(0x0, 0x40009, 0xe1, 0x1de, 0x7, 0x27fff)
setfsgid$auto(0xee00)
listen$auto(0x3, 0x3)

1.074246551s ago: executing program 1 (id=2426):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/ram10/queue/max_sectors_kb\x00', 0xe3102, 0x0)
sendfile$auto(r0, r0, 0x0, 0x3)
unshare$auto(0x40000080)
openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/pcmC1D0p\x00', 0x4000, 0x0)
ioctl$auto_FBIO_CURSOR(0xffffffffffffffff, 0xc0684608, &(0x7f00000001c0)={0x10, 0x1, 0x600, 0x0, {0x1003, 0x9b72}, {0x5, 0x3, 0x2, 0x9, 0x4, 0x7f, 0x9, 0x0, {0xb4, 0xffffff81, 0x0, 0x0, 0x0, 0x0}}})
write$auto(0xca, &(0x7f0000000040)='\x04>\x01\r\xfb\xff\xf6OL\xc8\xbe\x94\xf2\xa2\x00\x00', 0x2d9)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
ioctl$auto_UBI_IOCDET(0xffffffffffffffff, 0x40046f41, 0x0)
unshare$auto(0x40000080)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
r1 = openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, &(0x7f0000000500)='/dev/cpu/0/cpuid\x00', 0xad00, 0x0)
r2 = prctl$auto_PR_SET_MM_START_DATA(0x6, 0x3, 0xffffffffffffffff, 0x5, 0x7)
mount_setattr$auto(r2, 0x0, 0x0, &(0x7f0000000640)={0x8, 0x14000b, 0x0, @inferred=<r3=>0xffffffffffffffff}, 0x283)
ioctl$auto(r0, 0x7, r1)
mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000)
futex$auto(&(0x7f0000000080)=0x1, 0xb, 0x1, 0x0, 0x0, 0xfffffffa)
futex$auto(&(0x7f0000000080)=0x100002, 0x1, 0x8, 0x0, 0x0, 0x440a4cd3)
r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/pts/ptmx\x00', 0xa0540, 0x0)
ioctl$auto_PPPIOCGDEBUG(r3, 0x80047441, &(0x7f00000000c0)=0x7)
lstat$auto(0x0, 0x0)
ioctl$auto(r4, 0x5419, 0x38)
ioctl$auto_FBIO_CURSOR(0xffffffffffffffff, 0xc0684608, &(0x7f00000001c0)={0x6, 0x1, 0x600, &(0x7f0000000240)='!\x00', {0x1003, 0x9b72}, {0x5, 0x3, 0x2, 0x9, 0xffff2f03, 0x7fff, 0x9, 0x0, {0x1fe, 0xffffff81, 0x0, 0x0, 0x0, 0x0}}})
write$auto(0xca, &(0x7f0000000040)='\x04>\x01\r\xfb\xff\xf6OL\xc8\xbe\x94\xf2\xa2\x00\x00', 0x2d9)

2.482773ms ago: executing program 1 (id=2428):
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000380)='/dev/snd/controlC2\x00', 0x400, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x400004, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r2)
sendmsg$auto_NL80211_CMD_GET_WIPHY(r2, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000140)=ANY=[@ANYBLOB="18000000", @ANYRES16=r3, @ANYBLOB="810b25bd7080fbdbdf250100"], 0x18}, 0x1, 0x0, 0x0, 0x20000000}, 0xc004)
recvmmsg$auto(r2, &(0x7f0000000180)={{0x0, 0x5, 0x0, 0x0, 0x0, 0x2, 0x6}, 0x803}, 0x10a, 0x6, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r4 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0)
ioctl$auto_PAGEMAP_SCAN(r4, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0x7fffffffefff, 0xfffffffffffffffe, 0x1, 0x8, 0xc00, 0x2c, 0x2c, 0x3, 0x2})
openat$auto_aoe_fops_aoechr(0xffffffffffffff9c, &(0x7f0000000040)='/dev/etherd/flush\x00', 0x1, 0x0)
r5 = openat$auto_nsim_dev_health_break_fops_health(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/netdevsim/netdevsim2/health/break_health\x00', 0x101000, 0x0)
listen$auto(r5, 0x5)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/virtual/misc/userfaultfd/power/control\x00', 0x668000, 0x0)
socket(0x2, 0x1, 0x106)
socket(0x2, 0x1, 0x0)
shutdown$auto(0xffffffffffffffff, 0x2)
read$auto_rng_chrdev_ops_core(r1, 0x0, 0x0)
mmap$auto(0xfffffffffffffffc, 0x8, 0x8, 0x7fffffffffffffff, 0xffffffffffffffff, 0xfffffffffffffffd)
ioctl$auto_SOUND_MIXER_READ_DEVMASK2(0xffffffffffffffff, 0x80044dfe, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x3ff, 0x0)
mmap$auto(0x0, 0x40009, 0xe1, 0x1de, 0x7, 0x27fff)
setfsgid$auto(0xee00)
listen$auto(0x3, 0x3)

736.557µs ago: executing program 3 (id=2436):
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/vm/mmap_min_addr\x00', 0x101302, 0x0)
r0 = signalfd$auto(0xffffffff, 0x0, 0x8)
r1 = socket(0x1d, 0x2, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = io_uring_setup$auto(0x6, 0x0)
r3 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0xa101, 0x0)
close_range$auto(r3, r0, 0xc09f)
r4 = io_uring_setup$auto(0x4079, 0x0)
syz_clone3(&(0x7f00000008c0)={0x0, &(0x7f0000000680)=<r5=>0xffffffffffffffff, &(0x7f00000006c0), &(0x7f0000000700), {0x8}, &(0x7f0000000740)=""/50, 0x32, &(0x7f0000000780)=""/193, &(0x7f0000000880)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2, {r2}}, 0x58)
r6 = waitid$auto_P_PIDFD(0x3, r5, &(0x7f00000004c0)={@siginfo_0_0={0x0, 0x9, 0xa, @_timer={0x0, 0x6, @sival_ptr=&(0x7f0000000440)="746fab4233801e1b5a7ef37f6533bb10f252b027b880e0bb84e9a1d9623b33acca82062bd0745d401070ea7cd9f88572bc45b46315eb358fd12ecdb8b9c6677c1f6e5f6ad35e275f199ced2f1758bd6b5990119bf09ec2", 0x2}}}, 0x7, &(0x7f0000000540)={{0xffffffffffffff81, 0x3}, {0x1, 0x8}, 0x5, 0x5, 0x4, 0x8, 0xdd, 0xf, 0x4, 0x9, 0x1, 0x0, 0xb, 0x1, 0x8, 0x6})
syz_clone3(&(0x7f0000000600)={0x49004000, &(0x7f0000000140), &(0x7f0000000180)=<r7=>0x0, &(0x7f00000001c0), {0x3}, &(0x7f0000000200)=""/213, 0xd5, &(0x7f0000000300)=""/176, &(0x7f00000003c0)=[0xffffffffffffffff, r6], 0x2, {r0}}, 0x58)
socket$nl_generic(0x10, 0x3, 0x10)
r8 = setfsuid$auto(0xee00)
setreuid$auto(r8, 0x0)
sendmsg$auto_NBD_CMD_RECONFIGURE(r1, &(0x7f0000000a00)={&(0x7f0000000940)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000009c0)={&(0x7f0000001200)={0x17ec, 0x0, 0x10, 0x70bd28, 0x25dfdbfd, {}, [@NBD_ATTR_BACKEND_IDENTIFIER={0x19, 0xa, '/dev/bus/usb/009/001\x00'}, @NBD_ATTR_DEVICE_LIST={0x157c, 0x9, 0x0, 0x1, [@nested={0x108f, 0x9b, 0x0, 0x1, [@nested={0x4, 0x54}, @generic="accccecf133dd82ba22ac11e99c47535dd6a0fb659c6fe3bc3e67112efce0cb7a0937f7ddb29bf5513c63c2c5189fe7875495b274f1a000bf49f947d3ef3986389bf2e090c465ac8096766328d13cf8dcf4b6335a79f650b60", @typed={0x8, 0xa9, 0x0, 0x0, @pid=r7}, @generic="1c3c811b5783034ae6f32c8a28fa372e28a798462e4acd4dd586ca804d47", @generic="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", @nested={0x4, 0x4b}, @nested={0x4, 0x79}]}, @generic="4dca59c874cdd3fb0db162913c67a57c9885ab80789447b337f98d5ccab4369bf2e62a03760a2054acad5dfa6163356164bccffc9439943a68ce90f894b89ccd19671d63ca8b0599d2eb3448ef49fdc555650ed3c74deffd2ae4c72fbf6ffea4c06da89e2d65c6df8562d68ef9fa5b014aa5dbf605be65eff0bbc434221c9a7c6488b52f7bc6231f4cfe5211f36730b01e71df4bf8e8c3afc4568661a2549e3d193c8ef970bd31fa2954496e3e5ed8b999cf37c97c2f1b889956b25d00c992d23f4873fe842d91ab42", @nested={0xd0, 0x4c, 0x0, 0x1, [@generic="8c5b3a1b8d03aa20acc92e74f7704a1c7efe7a82d69e5fd2056ebfe3f499e2d4dd6c020bec5f62662c9f64365c3323f081f07513b056bc22bb916c70fdeea334559063954461983fb505cb407df8ce4d51316eef2187b6a53ce28be935bb39a8d402787243f4ccaa5fd80e21f0a25ec4697b4b999553c64257f152e59574bbbcb17f942abbdaab8cc157239f403ed1369fcd979c7b8d5acd658a53adbe815bdd40405811443bff328774535ea68d90540ea15faac2666d45722da705a8dfdbbc95103f9c44de17503ef05fc9"]}, @typed={0xcb, 0x146, 0x0, 0x0, @binary="503de4a512438c9edbb30342c85067b5cdda512d386b1cb2be5aa4f24a37411785d7c5f89c369891a0ea8430e7838e9cb6b375cc9443e976d5e1c86b532b666743d4012206046aaa3a731afa27b05505ab8567ab43fd47e0856b211a77e116f8269905a9b1f4742f544014a1a5055d6b9ff44bfc0a7966ad3b4d152180900857936a577f5fbb87fee9427d5d0f7e5f27d4830df9f33ca2de3b323f2f9a85e76e341849f7d0368523b5de5fadc1ba0c1fdcbba0b0ee3d2f8a847aa1db1e6ee7f366d3bb25ebbe49"}, @nested={0x4d, 0xd7, 0x0, 0x1, [@nested={0x4, 0x29}, @typed={0x8, 0xf5, 0x0, 0x0, @fd=r0}, @generic="fe", @typed={0x14, 0x1a, 0x0, 0x0, @ipv6=@private1}, @typed={0x1c, 0x9d, 0x0, 0x0, @str='/proc/thread-self/smaps\x00'}, @typed={0xc, 0x101, 0x0, 0x0, @u64=0x3}]}, @generic="b67f5a5db1023c4daeccb25fb5c0368283f877f6cd67d2e7acdf3bd23a84a51ff2b4cdba0680ed3db1007527dc359d6e4495efb4dd641f37e20c7a76fc0e0577ccd5e2e08af9d94d1db078a1c1ff8343238b884eeba528fb2ad605c1e857db18", @typed={0x8, 0x6, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}, @generic="78a6dbc71a0ee0461e9f9100b186d36a757c1bc0b77699c88fb569e4769d8c4db98e542392c0ee1abf02745e23edbfa751b4f338107a38d6a3564daf25080d845a01cd9258d461d2d8f98b4b9539a4ddc65a7839f2a0d93c721c3f94b5f351f491352982f426dcc566ec3305e85ebddbf6f200ddd475748a3670fe44f70d8773b37eac2bf1b14a76ff75644bddbfb67074b2875d3d113ac270b1cdfcf18705b7aa1b296a61c39f51051599d4376855960032c73bddf88a", @nested={0x10f, 0xf5, 0x0, 0x1, [@generic="9f50dbdf7765bfac4bbc8e2e9257a2febf39d0a10150af0dec68b74ff17684b641198c45306ac7b1273e026172bc3f144ddaa3b0c22e4332087fa6872a", @generic="2774f893663fcc12e72f544e63bba423a8a07a01609680a8f8d820d814267190f00cb6ad6a34bac64f1592d74ac407bad0ce0d03", @generic="7cb5b6581726b0707a37f9bcb634b2d4add7fa8c1a7e4e3e6f709406a102727e72bac952edd59790fe5da87e38ea33d64bb492aff1a48073590c79a17da0845a1af94f327900e1b149a8bbf642213f5923c69332cd089d027e1352464e34a0abc5e19a956d8aea3cacece0ee033bc310cffb0083c624705ed0b3fc6db0d97e3ca16e731d09c5a7676f18cab36c9cac9a65ec", @typed={0x8, 0x108, 0x0, 0x0, @u32=0xe3}]}, @typed={0x4, 0xc}]}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x9}, @NBD_ATTR_SOCKETS={0x1f8, 0x7, 0x0, 0x1, [@nested={0x1f1, 0x2c, 0x0, 0x1, [@nested={0x4, 0x47}, @generic="9602aad5bcc6c494738545c81f99a4af80792c6b628883d1fa2631d7e931b10c39f18dbf42143abbbbd3759b0d7cb925e81b08e1cf4e3abebadef12dabffb065d5d3f195587cbeb204c15916587e51da254094732ff98e34c76af0574874f6710eee54174de941e06980f9a30519fb93608014e27d08b8f6832ef31ac1c3e19299996eef7f2cd3188dcfd6305b5274251f48bfec41fe86775bc803242e4cc61c601f7b57c6c24cf514", @typed={0x8, 0x1c, 0x0, 0x0, @uid=r8}, @typed={0x14, 0x75, 0x0, 0x0, @ipv6=@private1={0xfc, 0x1, '\x00', 0x1}}, @nested={0x4, 0x53}, @nested={0x4, 0x13}, @generic="be24d9b55d6a138adad807033cc5d84f17ff02394228f3d61ce71f9b24e2dbe3e34d6451926013e9a13469ace4b9aeb17726303315f8dc7f7ba56d3ba0530eef369cc2d1329158461207bd2e84aed0313cc415d3ae4a403c85db5ae6195642f2ee4acaeefa92748e56d5e6afa9cf6368254b4522a70e2933e613e744086dbbd1dba720397841564bb6f1546ae8f6726d7b6377524c7a1e4fae2456efc6139ce5085ee90f3ef27249e59ee0", @typed={0xc, 0x112, 0x0, 0x0, @u64=0x6}, @generic="89c280e629b1391be5819dc63f27f0e2d34a9e9f97009740ac9d1448ae1e878ff284904116dbb24e2bed90f802f6dd73dd20aa5b01440c4782c33471b376480e74de654d70cc23689452618014c7dd812999b3e1477f59d639d5c2e9ca53f8229be27a6b22"]}]}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0xe}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x1}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x8}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x3c1}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x2}]}, 0x17ec}, 0x1, 0x0, 0x0, 0x80}, 0x0)
r9 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
ioctl$auto(r9, 0x5606, 0x7)
r10 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x4004, 0xf, 0x4, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
r11 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptye6\x00', 0x24200, 0x0)
mq_notify$auto(r11, &(0x7f00000000c0)={@sival_int=0x151a6000, @raw=0xf3c6, 0x3})
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptya7\x00', 0x400041, 0x0)
ioctl$auto_TIOCSETD2(r4, 0x5423, 0x0)
ioctl$auto_TCFLSH2(r10, 0x540b, 0x0)

0s ago: executing program 0 (id=2429):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/ram10/queue/max_sectors_kb\x00', 0xe3102, 0x0)
sendfile$auto(r0, r0, 0x0, 0x3)
unshare$auto(0x40000080)
openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/pcmC1D0p\x00', 0x4000, 0x0)
ioctl$auto_FBIO_CURSOR(0xffffffffffffffff, 0xc0684608, &(0x7f00000001c0)={0x10, 0x1, 0x600, 0x0, {0x1003, 0x9b72}, {0x5, 0x3, 0x2, 0x9, 0x4, 0x7f, 0x9, 0x0, {0xb4, 0xffffff81, 0x0, 0x0, 0x0, 0x0}}})
write$auto(0xca, &(0x7f0000000040)='\x04>\x01\r\xfb\xff\xf6OL\xc8\xbe\x94\xf2\xa2\x00\x00', 0x2d9)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
ioctl$auto_UBI_IOCDET(0xffffffffffffffff, 0x40046f41, 0x0)
unshare$auto(0x40000080)
r1 = openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, &(0x7f0000000500)='/dev/cpu/0/cpuid\x00', 0xad00, 0x0)
r2 = prctl$auto_PR_SET_MM_START_DATA(0x6, 0x3, 0xffffffffffffffff, 0x5, 0x7)
mount_setattr$auto(r2, 0x0, 0x0, &(0x7f0000000640)={0x8, 0x14000b, 0x0, @inferred=<r3=>0xffffffffffffffff}, 0x283)
ioctl$auto(r0, 0x7, r1)
mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000)
futex$auto(&(0x7f0000000080)=0x1, 0xb, 0x1, 0x0, 0x0, 0xfffffffa)
futex$auto(&(0x7f0000000080)=0x100002, 0x1, 0x8, 0x0, 0x0, 0x440a4cd3)
r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/pts/ptmx\x00', 0xa0540, 0x0)
ioctl$auto_PPPIOCGDEBUG(r3, 0x80047441, &(0x7f00000000c0)=0x7)
lstat$auto(0x0, 0x0)
ioctl$auto(r4, 0x5419, 0x38)
openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/pcmC1D0p\x00', 0x4000, 0x0)
ioctl$auto_FBIO_CURSOR(0xffffffffffffffff, 0xc0684608, &(0x7f00000001c0)={0x6, 0x1, 0x600, &(0x7f0000000240)='!\x00', {0x1003, 0x9b72}, {0x5, 0x3, 0x2, 0x9, 0xffff2f03, 0x7fff, 0x9, 0x0, {0x1fe, 0xffffff81, 0x0, 0x0, 0x0, 0x0}}})
write$auto(0xca, &(0x7f0000000040)='\x04>\x01\r\xfb\xff\xf6OL\xc8\xbe\x94\xf2\xa2\x00\x00', 0x2d9)

kernel console output (not intermixed with test programs):

 779.048866][T16142]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  779.048887][T16142] RIP: 0033:0x7efd6c38e9a9
[  779.048905][T16142] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  779.048930][T16142] RSP: 002b:00007efd6d128038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  779.048958][T16142] RAX: ffffffffffffffda RBX: 00007efd6c5b5fa0 RCX: 00007efd6c38e9a9
[  779.048978][T16142] RDX: 0000000000000100 RSI: 00002000000000c0 RDI: ffffffffffffff9c
[  779.048994][T16142] RBP: 00007efd6c410d69 R08: 0000000000000000 R09: 0000000000000000
[  779.049009][T16142] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  779.049022][T16142] R13: 0000000000000000 R14: 00007efd6c5b5fa0 R15: 00007ffd35c85568
[  779.049053][T16142]  </TASK>
[  779.873093][T16156] FAULT_INJECTION: forcing a failure.
[  779.873093][T16156] name fail_futex, interval 1, probability 0, space 0, times 0
[  779.917342][T16156] CPU: 1 UID: 0 PID: 16156 Comm: syz.2.2131 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[  779.917367][T16156] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  779.917376][T16156] Call Trace:
[  779.917383][T16156]  <TASK>
[  779.917390][T16156]  dump_stack_lvl+0x16c/0x1f0
[  779.917415][T16156]  should_fail_ex+0x512/0x640
[  779.917438][T16156]  get_futex_key+0x1d0/0x1540
[  779.917460][T16156]  ? __pfx_get_futex_key+0x10/0x10
[  779.917484][T16156]  futex_wake+0xe7/0x4e0
[  779.917507][T16156]  ? __pfx_futex_wake+0x10/0x10
[  779.917530][T16156]  ? kmem_cache_free+0x2d1/0x4d0
[  779.917545][T16156]  ? fd_install+0x225/0x750
[  779.917558][T16156]  ? putname+0x154/0x1a0
[  779.917578][T16156]  do_futex+0x1e3/0x350
[  779.917597][T16156]  ? __pfx_do_futex+0x10/0x10
[  779.917617][T16156]  ? __sys_sendmsg+0x18c/0x220
[  779.917639][T16156]  __x64_sys_futex+0x1e0/0x4c0
[  779.917659][T16156]  ? __x64_sys_openat+0x174/0x210
[  779.917679][T16156]  ? __pfx___x64_sys_futex+0x10/0x10
[  779.917705][T16156]  do_syscall_64+0xcd/0x490
[  779.917726][T16156]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  779.917741][T16156] RIP: 0033:0x7efd6c38e9a9
[  779.917754][T16156] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  779.917768][T16156] RSP: 002b:00007efd6d1280e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  779.917782][T16156] RAX: ffffffffffffffda RBX: 00007efd6c5b5fa8 RCX: 00007efd6c38e9a9
[  779.917792][T16156] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007efd6c5b5fac
[  779.917801][T16156] RBP: 00007efd6c5b5fa0 R08: 00007efd6d129000 R09: 0000000000000000
[  779.917809][T16156] R10: 000000000000000b R11: 0000000000000246 R12: 00007efd6c5b5fac
[  779.917818][T16156] R13: 0000000000000000 R14: 00007ffd35c85480 R15: 00007ffd35c85568
[  779.917837][T16156]  </TASK>
[  781.626011][   T51] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260
[  781.626038][   T51] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260
[  781.643103][   T51] bt_err_ratelimited: 2 callbacks suppressed
[  781.643218][   T51] Bluetooth: hci0: Unknown advertising packet type: 0x7f
[  781.649397][   T51] Bluetooth: hci0: adv larger than maximum supported
[  781.657054][   T51] Bluetooth: hci0: adv larger than maximum supported
[  781.664052][   T51] Bluetooth: hci0: Malformed LE Event: 0x0d
[  781.915974][   T51] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260
[  781.916000][   T51] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260
[  781.930893][   T51] Bluetooth: hci0: Unknown advertising packet type: 0x7f
[  781.930914][   T51] Bluetooth: hci0: adv larger than maximum supported
[  781.937944][   T51] Bluetooth: hci0: adv larger than maximum supported
[  781.945892][   T51] Bluetooth: hci0: Malformed LE Event: 0x0d
[  782.875083][T16210] FAULT_INJECTION: forcing a failure.
[  782.875083][T16210] name failslab, interval 1, probability 0, space 0, times 0
[  782.899094][T16210] CPU: 0 UID: 0 PID: 16210 Comm: syz.0.2143 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[  782.899136][T16210] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  782.899151][T16210] Call Trace:
[  782.899160][T16210]  <TASK>
[  782.899171][T16210]  dump_stack_lvl+0x16c/0x1f0
[  782.899213][T16210]  should_fail_ex+0x512/0x640
[  782.899247][T16210]  ? fs_reclaim_acquire+0xae/0x150
[  782.899290][T16210]  ? tomoyo_encode2+0x100/0x3e0
[  782.899315][T16210]  should_failslab+0xc2/0x120
[  782.899347][T16210]  __kmalloc_noprof+0xd2/0x510
[  782.899386][T16210]  tomoyo_encode2+0x100/0x3e0
[  782.899419][T16210]  tomoyo_encode+0x29/0x50
[  782.899445][T16210]  tomoyo_realpath_from_path+0x18f/0x6e0
[  782.899484][T16210]  tomoyo_check_open_permission+0x2ab/0x3c0
[  782.899524][T16210]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  782.899603][T16210]  ? find_held_lock+0x2b/0x80
[  782.899643][T16210]  tomoyo_file_open+0x6b/0x90
[  782.899677][T16210]  security_file_open+0x84/0x1e0
[  782.899704][T16210]  do_dentry_open+0x596/0x1c10
[  782.899747][T16210]  vfs_open+0x82/0x3f0
[  782.899786][T16210]  path_openat+0x1de4/0x2cb0
[  782.899840][T16210]  ? __pfx_path_openat+0x10/0x10
[  782.899871][T16210]  ? __lock_acquire+0xb8a/0x1c90
[  782.899912][T16210]  do_filp_open+0x20b/0x470
[  782.899942][T16210]  ? __pfx_do_filp_open+0x10/0x10
[  782.899998][T16210]  ? alloc_fd+0x471/0x7d0
[  782.900036][T16210]  do_sys_openat2+0x11b/0x1d0
[  782.900071][T16210]  ? __pfx_do_sys_openat2+0x10/0x10
[  782.900109][T16210]  ? __sys_sendmsg+0x18c/0x220
[  782.900154][T16210]  __x64_sys_openat+0x174/0x210
[  782.900191][T16210]  ? __pfx___x64_sys_openat+0x10/0x10
[  782.900244][T16210]  do_syscall_64+0xcd/0x490
[  782.900281][T16210]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  782.900307][T16210] RIP: 0033:0x7f659ab8e9a9
[  782.900329][T16210] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  782.900353][T16210] RSP: 002b:00007f659b9a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  782.900379][T16210] RAX: ffffffffffffffda RBX: 00007f659adb5fa0 RCX: 00007f659ab8e9a9
[  782.900397][T16210] RDX: 0000000000101202 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  782.900414][T16210] RBP: 00007f659ac10d69 R08: 0000000000000000 R09: 0000000000000000
[  782.900430][T16210] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  782.900447][T16210] R13: 0000000000000000 R14: 00007f659adb5fa0 R15: 00007ffc091de0f8
[  782.900485][T16210]  </TASK>
[  782.900517][T16210] ERROR: Out of memory at tomoyo_realpath_from_path.
[  783.919109][T16222] FAULT_INJECTION: forcing a failure.
[  783.919109][T16222] name failslab, interval 1, probability 0, space 0, times 0
[  784.005360][T16222] CPU: 1 UID: 0 PID: 16222 Comm: syz.2.2146 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[  784.005396][T16222] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  784.005406][T16222] Call Trace:
[  784.005412][T16222]  <TASK>
[  784.005419][T16222]  dump_stack_lvl+0x16c/0x1f0
[  784.005443][T16222]  should_fail_ex+0x512/0x640
[  784.005463][T16222]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  784.005482][T16222]  should_failslab+0xc2/0x120
[  784.005501][T16222]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  784.005518][T16222]  ? __d_alloc+0x32/0xae0
[  784.005537][T16222]  __d_alloc+0x32/0xae0
[  784.005555][T16222]  d_alloc_pseudo+0x1c/0xc0
[  784.005575][T16222]  alloc_file_pseudo+0xcf/0x230
[  784.005595][T16222]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  784.005616][T16222]  ? _raw_spin_unlock+0x28/0x50
[  784.005631][T16222]  ? alloc_fd+0x471/0x7d0
[  784.005646][T16222]  __anon_inode_getfile+0xe8/0x280
[  784.005666][T16222]  anon_inode_getfd+0x52/0xb0
[  784.005683][T16222]  __x64_sys_fsopen+0x18b/0x240
[  784.005702][T16222]  do_syscall_64+0xcd/0x490
[  784.005722][T16222]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  784.005737][T16222] RIP: 0033:0x7efd6c38e9a9
[  784.005750][T16222] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  784.005767][T16222] RSP: 002b:00007efd6d128038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ae
[  784.005782][T16222] RAX: ffffffffffffffda RBX: 00007efd6c5b5fa0 RCX: 00007efd6c38e9a9
[  784.005792][T16222] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[  784.005801][T16222] RBP: 00007efd6c410d69 R08: 0000000000000000 R09: 0000000000000000
[  784.005811][T16222] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  784.005820][T16222] R13: 0000000000000000 R14: 00007efd6c5b5fa0 R15: 00007ffd35c85568
[  784.005838][T16222]  </TASK>
[  784.498429][T16228] FAULT_INJECTION: forcing a failure.
[  784.498429][T16228] name failslab, interval 1, probability 0, space 0, times 0
[  784.533903][T16228] CPU: 0 UID: 0 PID: 16228 Comm: syz.2.2147 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[  784.533938][T16228] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  784.533953][T16228] Call Trace:
[  784.533962][T16228]  <TASK>
[  784.533973][T16228]  dump_stack_lvl+0x16c/0x1f0
[  784.534011][T16228]  should_fail_ex+0x512/0x640
[  784.534056][T16228]  ? fs_reclaim_acquire+0xae/0x150
[  784.534096][T16228]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  784.534125][T16228]  should_failslab+0xc2/0x120
[  784.534154][T16228]  __kmalloc_noprof+0xd2/0x510
[  784.534190][T16228]  tomoyo_realpath_from_path+0xc2/0x6e0
[  784.534248][T16228]  tomoyo_check_open_permission+0x2ab/0x3c0
[  784.534289][T16228]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  784.534361][T16228]  ? find_held_lock+0x2b/0x80
[  784.534399][T16228]  tomoyo_file_open+0x6b/0x90
[  784.534433][T16228]  security_file_open+0x84/0x1e0
[  784.534460][T16228]  do_dentry_open+0x596/0x1c10
[  784.534499][T16228]  vfs_open+0x82/0x3f0
[  784.534539][T16228]  path_openat+0x1de4/0x2cb0
[  784.534581][T16228]  ? __pfx_path_openat+0x10/0x10
[  784.534613][T16228]  ? __lock_acquire+0xb8a/0x1c90
[  784.534659][T16228]  do_filp_open+0x20b/0x470
[  784.534690][T16228]  ? __pfx_do_filp_open+0x10/0x10
[  784.534748][T16228]  ? alloc_fd+0x471/0x7d0
[  784.534787][T16228]  do_sys_openat2+0x11b/0x1d0
[  784.534824][T16228]  ? __pfx_do_sys_openat2+0x10/0x10
[  784.534862][T16228]  ? __sys_sendmsg+0x18c/0x220
[  784.534919][T16228]  __x64_sys_openat+0x174/0x210
[  784.534957][T16228]  ? __pfx___x64_sys_openat+0x10/0x10
[  784.535009][T16228]  do_syscall_64+0xcd/0x490
[  784.535046][T16228]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  784.535072][T16228] RIP: 0033:0x7efd6c38e9a9
[  784.535095][T16228] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  784.535121][T16228] RSP: 002b:00007efd6d128038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  784.535147][T16228] RAX: ffffffffffffffda RBX: 00007efd6c5b5fa0 RCX: 00007efd6c38e9a9
[  784.535165][T16228] RDX: 0000000000101202 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  784.535183][T16228] RBP: 00007efd6c410d69 R08: 0000000000000000 R09: 0000000000000000
[  784.535199][T16228] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  784.535215][T16228] R13: 0000000000000000 R14: 00007efd6c5b5fa0 R15: 00007ffd35c85568
[  784.535251][T16228]  </TASK>
[  784.535263][T16228] ERROR: Out of memory at tomoyo_realpath_from_path.
[  787.459824][   T51] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260
[  787.459849][   T51] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260
[  787.474926][   T51] Bluetooth: hci2: Unknown advertising packet type: 0x7f
[  787.474947][   T51] Bluetooth: hci2: adv larger than maximum supported
[  787.482571][   T51] Bluetooth: hci2: adv larger than maximum supported
[  787.490737][   T51] Bluetooth: hci2: Malformed LE Event: 0x0d
[  787.631701][T16274] FAULT_INJECTION: forcing a failure.
[  787.631701][T16274] name failslab, interval 1, probability 0, space 0, times 0
[  787.718847][T16274] CPU: 0 UID: 0 PID: 16274 Comm: syz.0.2159 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[  787.718873][T16274] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  787.718883][T16274] Call Trace:
[  787.718890][T16274]  <TASK>
[  787.718898][T16274]  dump_stack_lvl+0x16c/0x1f0
[  787.718923][T16274]  should_fail_ex+0x512/0x640
[  787.718943][T16274]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  787.718960][T16274]  should_failslab+0xc2/0x120
[  787.718980][T16274]  __kmalloc_cache_noprof+0x6a/0x3e0
[  787.718994][T16274]  ? lockdep_hardirqs_on+0x7c/0x110
[  787.719012][T16274]  ? snd_seq_fifo_new+0x42/0x260
[  787.719028][T16274]  ? seq_create_client1+0x420/0x5e0
[  787.719048][T16274]  ? __pfx_snd_seq_open+0x10/0x10
[  787.719069][T16274]  snd_seq_fifo_new+0x42/0x260
[  787.719085][T16274]  snd_seq_open+0x15c/0x550
[  787.719106][T16274]  ? __pfx_snd_seq_open+0x10/0x10
[  787.719125][T16274]  snd_open+0x201/0x450
[  787.719146][T16274]  ? __pfx_snd_open+0x10/0x10
[  787.719165][T16274]  chrdev_open+0x234/0x6a0
[  787.719182][T16274]  ? __pfx_apparmor_file_open+0x10/0x10
[  787.719206][T16274]  ? __pfx_chrdev_open+0x10/0x10
[  787.719224][T16274]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  787.719243][T16274]  do_dentry_open+0x744/0x1c10
[  787.719260][T16274]  ? __pfx_chrdev_open+0x10/0x10
[  787.719281][T16274]  vfs_open+0x82/0x3f0
[  787.719303][T16274]  path_openat+0x1de4/0x2cb0
[  787.719326][T16274]  ? __pfx_path_openat+0x10/0x10
[  787.719342][T16274]  ? __lock_acquire+0xb8a/0x1c90
[  787.719365][T16274]  do_filp_open+0x20b/0x470
[  787.719381][T16274]  ? __pfx_do_filp_open+0x10/0x10
[  787.719410][T16274]  ? alloc_fd+0x471/0x7d0
[  787.719430][T16274]  do_sys_openat2+0x11b/0x1d0
[  787.719449][T16274]  ? __pfx_do_sys_openat2+0x10/0x10
[  787.719477][T16274]  __x64_sys_openat+0x174/0x210
[  787.719497][T16274]  ? __pfx___x64_sys_openat+0x10/0x10
[  787.719525][T16274]  do_syscall_64+0xcd/0x490
[  787.719546][T16274]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  787.719561][T16274] RIP: 0033:0x7f659ab8e9a9
[  787.719575][T16274] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  787.719590][T16274] RSP: 002b:00007f659b9a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  787.719604][T16274] RAX: ffffffffffffffda RBX: 00007f659adb5fa0 RCX: 00007f659ab8e9a9
[  787.719614][T16274] RDX: 0000000000000100 RSI: 00002000000000c0 RDI: ffffffffffffff9c
[  787.719624][T16274] RBP: 00007f659ac10d69 R08: 0000000000000000 R09: 0000000000000000
[  787.719633][T16274] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  787.719651][T16274] R13: 0000000000000000 R14: 00007f659adb5fa0 R15: 00007ffc091de0f8
[  787.719671][T16274]  </TASK>
[  788.050312][   T51] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260
[  788.050349][   T51] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260
[  788.065483][   T51] Bluetooth: hci2: Unknown advertising packet type: 0x7f
[  788.065514][   T51] Bluetooth: hci2: adv larger than maximum supported
[  788.072849][   T51] Bluetooth: hci2: adv larger than maximum supported
[  788.079774][   T51] Bluetooth: hci2: Malformed LE Event: 0x0d
[  791.666700][T16328] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2169'.
[  791.763515][   T51] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260
[  791.763554][   T51] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260
[  791.778417][   T51] Bluetooth: hci2: Unknown advertising packet type: 0x7f
[  791.778437][   T51] Bluetooth: hci2: adv larger than maximum supported
[  791.785569][   T51] Bluetooth: hci2: adv larger than maximum supported
[  791.792860][   T51] Bluetooth: hci2: Malformed LE Event: 0x0d
[  792.154116][   T51] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260
[  792.154156][   T51] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260
[  792.169244][   T51] Bluetooth: hci2: Unknown advertising packet type: 0x7f
[  792.169492][   T51] Bluetooth: hci2: Malformed LE Event: 0x0d
[  792.573030][T16352] FAULT_INJECTION: forcing a failure.
[  792.573030][T16352] name failslab, interval 1, probability 0, space 0, times 0
[  792.592122][T16352] CPU: 1 UID: 0 PID: 16352 Comm: syz.0.2176 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[  792.592160][T16352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  792.592176][T16352] Call Trace:
[  792.592193][T16352]  <TASK>
[  792.592205][T16352]  dump_stack_lvl+0x16c/0x1f0
[  792.592244][T16352]  should_fail_ex+0x512/0x640
[  792.592277][T16352]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  792.592307][T16352]  should_failslab+0xc2/0x120
[  792.592340][T16352]  __kmalloc_cache_noprof+0x6a/0x3e0
[  792.592363][T16352]  ? lockdep_hardirqs_on+0x7c/0x110
[  792.592393][T16352]  ? snd_seq_fifo_new+0x42/0x260
[  792.592421][T16352]  ? seq_create_client1+0x420/0x5e0
[  792.592455][T16352]  ? __pfx_snd_seq_open+0x10/0x10
[  792.592486][T16352]  snd_seq_fifo_new+0x42/0x260
[  792.592513][T16352]  snd_seq_open+0x15c/0x550
[  792.592546][T16352]  ? __pfx_snd_seq_open+0x10/0x10
[  792.592578][T16352]  snd_open+0x201/0x450
[  792.592615][T16352]  ? __pfx_snd_open+0x10/0x10
[  792.592650][T16352]  chrdev_open+0x234/0x6a0
[  792.592681][T16352]  ? __pfx_apparmor_file_open+0x10/0x10
[  792.592721][T16352]  ? __pfx_chrdev_open+0x10/0x10
[  792.592754][T16352]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  792.592798][T16352]  do_dentry_open+0x744/0x1c10
[  792.592824][T16352]  ? __pfx_chrdev_open+0x10/0x10
[  792.592861][T16352]  vfs_open+0x82/0x3f0
[  792.592899][T16352]  path_openat+0x1de4/0x2cb0
[  792.592939][T16352]  ? __pfx_path_openat+0x10/0x10
[  792.592968][T16352]  ? __lock_acquire+0xb8a/0x1c90
[  792.593018][T16352]  do_filp_open+0x20b/0x470
[  792.593047][T16352]  ? __pfx_do_filp_open+0x10/0x10
[  792.593102][T16352]  ? alloc_fd+0x471/0x7d0
[  792.593139][T16352]  do_sys_openat2+0x11b/0x1d0
[  792.593174][T16352]  ? __pfx_do_sys_openat2+0x10/0x10
[  792.593221][T16352]  __x64_sys_openat+0x174/0x210
[  792.593252][T16352]  ? __pfx___x64_sys_openat+0x10/0x10
[  792.593293][T16352]  do_syscall_64+0xcd/0x490
[  792.593330][T16352]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  792.593356][T16352] RIP: 0033:0x7f659ab8e9a9
[  792.593378][T16352] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  792.593402][T16352] RSP: 002b:00007f659b9a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  792.593427][T16352] RAX: ffffffffffffffda RBX: 00007f659adb5fa0 RCX: 00007f659ab8e9a9
[  792.593443][T16352] RDX: 0000000000000100 RSI: 00002000000000c0 RDI: ffffffffffffff9c
[  792.593460][T16352] RBP: 00007f659ac10d69 R08: 0000000000000000 R09: 0000000000000000
[  792.593475][T16352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  792.593490][T16352] R13: 0000000000000000 R14: 00007f659adb5fa0 R15: 00007ffc091de0f8
[  792.593522][T16352]  </TASK>
[  793.606378][T16364] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2178'.
[  796.179916][   T51] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260
[  796.179942][   T51] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260
[  796.195689][   T51] bt_err_ratelimited: 2 callbacks suppressed
[  796.195704][   T51] Bluetooth: hci0: Unknown advertising packet type: 0x7f
[  796.201881][   T51] Bluetooth: hci0: adv larger than maximum supported
[  796.209092][   T51] Bluetooth: hci0: adv larger than maximum supported
[  796.215845][   T51] Bluetooth: hci0: Malformed LE Event: 0x0d
[  796.380958][   T51] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260
[  796.380995][   T51] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260
[  796.396470][   T51] Bluetooth: hci0: Unknown advertising packet type: 0x7f
[  796.396507][   T51] Bluetooth: hci0: adv larger than maximum supported
[  796.405666][   T51] Bluetooth: hci0: adv larger than maximum supported
[  796.413563][   T51] Bluetooth: hci0: Malformed LE Event: 0x0d
[  796.695459][T16411] FAULT_INJECTION: forcing a failure.
[  796.695459][T16411] name fail_futex, interval 1, probability 0, space 0, times 0
[  796.709399][T16411] CPU: 1 UID: 0 PID: 16411 Comm: syz.3.2187 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[  796.709439][T16411] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  796.709456][T16411] Call Trace:
[  796.709465][T16411]  <TASK>
[  796.709476][T16411]  dump_stack_lvl+0x16c/0x1f0
[  796.709516][T16411]  should_fail_ex+0x512/0x640
[  796.709554][T16411]  get_futex_key+0x1d0/0x1540
[  796.709588][T16411]  ? __pfx_get_futex_key+0x10/0x10
[  796.709630][T16411]  futex_wake+0xe7/0x4e0
[  796.709675][T16411]  ? __pfx_futex_wake+0x10/0x10
[  796.709710][T16411]  ? kmem_cache_free+0x2d1/0x4d0
[  796.709734][T16411]  ? fd_install+0x225/0x750
[  796.709756][T16411]  ? putname+0x154/0x1a0
[  796.709791][T16411]  do_futex+0x1e3/0x350
[  796.709824][T16411]  ? __pfx_do_futex+0x10/0x10
[  796.709864][T16411]  __x64_sys_futex+0x1e0/0x4c0
[  796.709900][T16411]  ? __x64_sys_openat+0x174/0x210
[  796.709934][T16411]  ? __pfx___x64_sys_futex+0x10/0x10
[  796.709979][T16411]  do_syscall_64+0xcd/0x490
[  796.710013][T16411]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  796.710037][T16411] RIP: 0033:0x7fc212d8e9a9
[  796.710057][T16411] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  796.710081][T16411] RSP: 002b:00007fc213c2d0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  796.710104][T16411] RAX: ffffffffffffffda RBX: 00007fc212fb5fa8 RCX: 00007fc212d8e9a9
[  796.710122][T16411] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fc212fb5fac
[  796.710139][T16411] RBP: 00007fc212fb5fa0 R08: 00007fc213c2e000 R09: 0000000000000000
[  796.710155][T16411] R10: 0000000000000008 R11: 0000000000000246 R12: 00007fc212fb5fac
[  796.710171][T16411] R13: 0000000000000000 R14: 00007ffcbd581fd0 R15: 00007ffcbd5820b8
[  796.710206][T16411]  </TASK>
[  797.495333][T16424] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2190'.
[  799.383065][T16463] FAULT_INJECTION: forcing a failure.
[  799.383065][T16463] name fail_futex, interval 1, probability 0, space 0, times 0
[  799.406598][T16463] CPU: 1 UID: 0 PID: 16463 Comm: syz.1.2198 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[  799.406635][T16463] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  799.406645][T16463] Call Trace:
[  799.406651][T16463]  <TASK>
[  799.406658][T16463]  dump_stack_lvl+0x16c/0x1f0
[  799.406681][T16463]  should_fail_ex+0x512/0x640
[  799.406704][T16463]  get_futex_key+0x1d0/0x1540
[  799.406730][T16463]  ? __pfx_get_futex_key+0x10/0x10
[  799.406755][T16463]  futex_wake+0xe7/0x4e0
[  799.406778][T16463]  ? __pfx_futex_wake+0x10/0x10
[  799.406802][T16463]  ? kmem_cache_free+0x2d1/0x4d0
[  799.406817][T16463]  ? fd_install+0x225/0x750
[  799.406830][T16463]  ? putname+0x154/0x1a0
[  799.406851][T16463]  do_futex+0x1e3/0x350
[  799.406870][T16463]  ? __pfx_do_futex+0x10/0x10
[  799.406893][T16463]  __x64_sys_futex+0x1e0/0x4c0
[  799.406913][T16463]  ? __x64_sys_openat+0x174/0x210
[  799.406933][T16463]  ? __pfx___x64_sys_futex+0x10/0x10
[  799.406959][T16463]  do_syscall_64+0xcd/0x490
[  799.406979][T16463]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  799.406994][T16463] RIP: 0033:0x7f20adb8e9a9
[  799.407007][T16463] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  799.407021][T16463] RSP: 002b:00007f20ae9f00e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  799.407035][T16463] RAX: ffffffffffffffda RBX: 00007f20addb5fa8 RCX: 00007f20adb8e9a9
[  799.407045][T16463] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f20addb5fac
[  799.407053][T16463] RBP: 00007f20addb5fa0 R08: 00007f20ae9f1000 R09: 0000000000000000
[  799.407063][T16463] R10: 0000000000000008 R11: 0000000000000246 R12: 00007f20addb5fac
[  799.407071][T16463] R13: 0000000000000000 R14: 00007ffc398718e0 R15: 00007ffc398719c8
[  799.407089][T16463]  </TASK>
[  800.444027][   T51] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260
[  800.444052][   T51] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260
[  800.461763][   T51] Bluetooth: hci0: Unknown advertising packet type: 0x7f
[  800.461802][   T51] Bluetooth: hci0: Malformed LE Event: 0x0d
[  800.832575][T16491] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2204'.
[  800.868882][   T51] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260
[  800.868909][   T51] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260
[  800.884403][   T51] Bluetooth: hci0: Unknown advertising packet type: 0x7f
[  800.884438][   T51] Bluetooth: hci0: adv larger than maximum supported
[  800.891981][   T51] Bluetooth: hci0: adv larger than maximum supported
[  800.898969][   T51] Bluetooth: hci0: Malformed LE Event: 0x0d
[  802.285213][T16517] FAULT_INJECTION: forcing a failure.
[  802.285213][T16517] name fail_futex, interval 1, probability 0, space 0, times 0
[  802.298386][T16517] CPU: 1 UID: 0 PID: 16517 Comm: syz.3.2208 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[  802.298423][T16517] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  802.298441][T16517] Call Trace:
[  802.298450][T16517]  <TASK>
[  802.298457][T16517]  dump_stack_lvl+0x16c/0x1f0
[  802.298481][T16517]  should_fail_ex+0x512/0x640
[  802.298506][T16517]  get_futex_key+0x1d0/0x1540
[  802.298536][T16517]  ? __pfx_get_futex_key+0x10/0x10
[  802.298561][T16517]  futex_wake+0xe7/0x4e0
[  802.298584][T16517]  ? __pfx_futex_wake+0x10/0x10
[  802.298608][T16517]  ? kmem_cache_free+0x2d1/0x4d0
[  802.298635][T16517]  ? fd_install+0x225/0x750
[  802.298656][T16517]  ? putname+0x154/0x1a0
[  802.298694][T16517]  do_futex+0x1e3/0x350
[  802.298716][T16517]  ? __pfx_do_futex+0x10/0x10
[  802.298740][T16517]  __x64_sys_futex+0x1e0/0x4c0
[  802.298760][T16517]  ? __x64_sys_openat+0x174/0x210
[  802.298781][T16517]  ? __pfx___x64_sys_futex+0x10/0x10
[  802.298807][T16517]  do_syscall_64+0xcd/0x490
[  802.298828][T16517]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  802.298843][T16517] RIP: 0033:0x7fc212d8e9a9
[  802.298856][T16517] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  802.298871][T16517] RSP: 002b:00007fc213c2d0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  802.298886][T16517] RAX: ffffffffffffffda RBX: 00007fc212fb5fa8 RCX: 00007fc212d8e9a9
[  802.298896][T16517] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fc212fb5fac
[  802.298905][T16517] RBP: 00007fc212fb5fa0 R08: 00007fc213c2e000 R09: 0000000000000000
[  802.298914][T16517] R10: 0000000000000008 R11: 0000000000000246 R12: 00007fc212fb5fac
[  802.298923][T16517] R13: 0000000000000000 R14: 00007ffcbd581fd0 R15: 00007ffcbd5820b8
[  802.298941][T16517]  </TASK>
[  804.330884][   T51] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260
[  804.330922][   T51] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260
[  804.346257][   T51] Bluetooth: hci0: Unknown advertising packet type: 0x7f
[  804.346324][   T51] Bluetooth: hci0: Malformed LE Event: 0x0d
[  804.685234][   T51] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260
[  804.685329][   T51] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260
[  804.701472][   T51] Bluetooth: hci0: Unknown advertising packet type: 0x7f
[  804.701502][   T51] Bluetooth: hci0: adv larger than maximum supported
[  804.708575][   T51] Bluetooth: hci0: adv larger than maximum supported
[  804.715434][   T51] Bluetooth: hci0: Malformed LE Event: 0x0d
[  810.758466][T16647] FAULT_INJECTION: forcing a failure.
[  810.758466][T16647] name failslab, interval 1, probability 0, space 0, times 0
[  810.798852][T16647] CPU: 0 UID: 0 PID: 16647 Comm: syz.3.2238 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[  810.798892][T16647] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  810.798918][T16647] Call Trace:
[  810.798927][T16647]  <TASK>
[  810.798938][T16647]  dump_stack_lvl+0x16c/0x1f0
[  810.798977][T16647]  should_fail_ex+0x512/0x640
[  810.799014][T16647]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  810.799045][T16647]  should_failslab+0xc2/0x120
[  810.799075][T16647]  __kmalloc_cache_noprof+0x6a/0x3e0
[  810.799096][T16647]  ? lockdep_hardirqs_on+0x7c/0x110
[  810.799124][T16647]  ? snd_seq_fifo_new+0x42/0x260
[  810.799153][T16647]  ? seq_create_client1+0x420/0x5e0
[  810.799186][T16647]  ? __pfx_snd_seq_open+0x10/0x10
[  810.799217][T16647]  snd_seq_fifo_new+0x42/0x260
[  810.799245][T16647]  snd_seq_open+0x15c/0x550
[  810.799280][T16647]  ? __pfx_snd_seq_open+0x10/0x10
[  810.799311][T16647]  snd_open+0x201/0x450
[  810.799346][T16647]  ? __pfx_snd_open+0x10/0x10
[  810.799380][T16647]  chrdev_open+0x234/0x6a0
[  810.799410][T16647]  ? __pfx_apparmor_file_open+0x10/0x10
[  810.799450][T16647]  ? __pfx_chrdev_open+0x10/0x10
[  810.799485][T16647]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  810.799520][T16647]  do_dentry_open+0x744/0x1c10
[  810.799551][T16647]  ? __pfx_chrdev_open+0x10/0x10
[  810.799588][T16647]  vfs_open+0x82/0x3f0
[  810.799625][T16647]  path_openat+0x1de4/0x2cb0
[  810.799662][T16647]  ? __pfx_path_openat+0x10/0x10
[  810.799691][T16647]  ? __lock_acquire+0xb8a/0x1c90
[  810.799730][T16647]  do_filp_open+0x20b/0x470
[  810.799758][T16647]  ? __pfx_do_filp_open+0x10/0x10
[  810.799811][T16647]  ? alloc_fd+0x471/0x7d0
[  810.799846][T16647]  do_sys_openat2+0x11b/0x1d0
[  810.799880][T16647]  ? __pfx_do_sys_openat2+0x10/0x10
[  810.799936][T16647]  __x64_sys_openat+0x174/0x210
[  810.799974][T16647]  ? __pfx___x64_sys_openat+0x10/0x10
[  810.800025][T16647]  do_syscall_64+0xcd/0x490
[  810.800062][T16647]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  810.800088][T16647] RIP: 0033:0x7fc212d8e9a9
[  810.800111][T16647] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  810.800136][T16647] RSP: 002b:00007fc213c2d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  810.800162][T16647] RAX: ffffffffffffffda RBX: 00007fc212fb5fa0 RCX: 00007fc212d8e9a9
[  810.800179][T16647] RDX: 0000000000000100 RSI: 00002000000000c0 RDI: ffffffffffffff9c
[  810.800196][T16647] RBP: 00007fc212e10d69 R08: 0000000000000000 R09: 0000000000000000
[  810.800212][T16647] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  810.800225][T16647] R13: 0000000000000000 R14: 00007fc212fb5fa0 R15: 00007ffcbd5820b8
[  810.800257][T16647]  </TASK>
[  811.111670][   T51] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260
[  811.111695][   T51] Bluetooth: hci3: unexpected subevent 0x0d length: 725 > 260
[  811.126448][   T51] Bluetooth: hci3: Unknown advertising packet type: 0x7f
[  811.126485][   T51] Bluetooth: hci3: Malformed LE Event: 0x0d
[  811.357814][   T51] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260
[  811.357850][   T51] Bluetooth: hci3: unexpected subevent 0x0d length: 725 > 260
[  811.372650][   T51] Bluetooth: hci3: Unknown advertising packet type: 0x7f
[  811.372669][   T51] Bluetooth: hci3: adv larger than maximum supported
[  811.379770][   T51] Bluetooth: hci3: adv larger than maximum supported
[  811.386469][   T51] Bluetooth: hci3: Malformed LE Event: 0x0d
[  813.273419][T16672] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2242'.
[  813.775386][T16677] FAULT_INJECTION: forcing a failure.
[  813.775386][T16677] name fail_futex, interval 1, probability 0, space 0, times 0
[  813.879324][T16677] CPU: 1 UID: 0 PID: 16677 Comm: syz.0.2252 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[  813.879363][T16677] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  813.879391][T16677] Call Trace:
[  813.879400][T16677]  <TASK>
[  813.879411][T16677]  dump_stack_lvl+0x16c/0x1f0
[  813.879450][T16677]  should_fail_ex+0x512/0x640
[  813.879489][T16677]  get_futex_key+0x1d0/0x1540
[  813.879527][T16677]  ? __pfx_get_futex_key+0x10/0x10
[  813.879558][T16677]  ? __up_read+0x1f8/0x750
[  813.879585][T16677]  ? __pfx___up_read+0x10/0x10
[  813.879609][T16677]  ? inode_to_bdi+0x9e/0x160
[  813.879642][T16677]  futex_wait_setup+0x84/0x510
[  813.879690][T16677]  __futex_wait+0x194/0x2f0
[  813.879728][T16677]  ? __pfx___futex_wait+0x10/0x10
[  813.879771][T16677]  ? __pfx_futex_wake_mark+0x10/0x10
[  813.879816][T16677]  ? css_rstat_updated+0x9d/0xd30
[  813.879848][T16677]  ? __futex_hash.constprop.0+0x1e9/0x440
[  813.879883][T16677]  futex_wait+0xe8/0x380
[  813.879919][T16677]  ? __pfx_futex_wait+0x10/0x10
[  813.879965][T16677]  ? fault_signal_pending+0x28/0x1d0
[  813.880002][T16677]  ? do_user_addr_fault+0x7e2/0x1370
[  813.880043][T16677]  do_futex+0x229/0x350
[  813.880076][T16677]  ? __pfx_do_futex+0x10/0x10
[  813.880105][T16677]  ? lockdep_hardirqs_on+0x7c/0x110
[  813.880146][T16677]  __x64_sys_futex+0x1e0/0x4c0
[  813.880180][T16677]  ? rep_movs_alternative+0x33/0x90
[  813.880206][T16677]  ? __pfx___x64_sys_futex+0x10/0x10
[  813.880238][T16677]  ? _copy_to_user+0x48/0xd0
[  813.880282][T16677]  do_syscall_64+0xcd/0x490
[  813.880317][T16677]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  813.880343][T16677] RIP: 0033:0x7f659ab8e9a9
[  813.880365][T16677] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  813.880401][T16677] RSP: 002b:00007f659b9a70e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  813.880426][T16677] RAX: ffffffffffffffda RBX: 00007f659adb5fa8 RCX: 00007f659ab8e9a9
[  813.880445][T16677] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f659adb5fa8
[  813.880462][T16677] RBP: 00007f659adb5fa0 R08: 0000000000000000 R09: 0000000000000000
[  813.880479][T16677] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f659adb5fac
[  813.880496][T16677] R13: 0000000000000000 R14: 00007ffc091de010 R15: 00007ffc091de0f8
[  813.880532][T16677]  </TASK>
[  813.894571][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  814.138035][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  814.653402][T16687] FAULT_INJECTION: forcing a failure.
[  814.653402][T16687] name fail_futex, interval 1, probability 0, space 0, times 0
[  814.702459][T16687] CPU: 0 UID: 0 PID: 16687 Comm: syz.0.2245 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[  814.702510][T16687] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  814.702528][T16687] Call Trace:
[  814.702538][T16687]  <TASK>
[  814.702549][T16687]  dump_stack_lvl+0x16c/0x1f0
[  814.702590][T16687]  should_fail_ex+0x512/0x640
[  814.702632][T16687]  get_futex_key+0x1d0/0x1540
[  814.702671][T16687]  ? __pfx_get_futex_key+0x10/0x10
[  814.702703][T16687]  ? css_rstat_updated+0x9d/0xd30
[  814.702737][T16687]  futex_wake+0xe7/0x4e0
[  814.702775][T16687]  ? __pfx_futex_wake+0x10/0x10
[  814.702809][T16687]  ? handle_mm_fault+0x61e/0xd10
[  814.702839][T16687]  ? fault_signal_pending+0x28/0x1d0
[  814.702883][T16687]  ? do_user_addr_fault+0x7e2/0x1370
[  814.702927][T16687]  do_futex+0x1e3/0x350
[  814.702961][T16687]  ? __pfx_do_futex+0x10/0x10
[  814.702991][T16687]  ? lockdep_hardirqs_on+0x7c/0x110
[  814.703034][T16687]  __x64_sys_futex+0x1e0/0x4c0
[  814.703071][T16687]  ? rep_movs_alternative+0x33/0x90
[  814.703097][T16687]  ? __pfx___x64_sys_futex+0x10/0x10
[  814.703132][T16687]  ? _copy_to_user+0x48/0xd0
[  814.703178][T16687]  do_syscall_64+0xcd/0x490
[  814.703216][T16687]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  814.703241][T16687] RIP: 0033:0x7f659ab8e9a9
[  814.703264][T16687] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  814.703289][T16687] RSP: 002b:00007f659b9a70e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  814.703315][T16687] RAX: ffffffffffffffda RBX: 00007f659adb5fa8 RCX: 00007f659ab8e9a9
[  814.703333][T16687] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f659adb5fac
[  814.703350][T16687] RBP: 00007f659adb5fa0 R08: 00007f659b9a8000 R09: 0000000000000000
[  814.703367][T16687] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f659adb5fac
[  814.703385][T16687] R13: 0000000000000000 R14: 00007ffc091de010 R15: 00007ffc091de0f8
[  814.703428][T16687]  </TASK>
[  817.522839][T16723] FAULT_INJECTION: forcing a failure.
[  817.522839][T16723] name failslab, interval 1, probability 0, space 0, times 0
[  817.536267][T16723] CPU: 1 UID: 0 PID: 16723 Comm: syz.1.2255 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[  817.536306][T16723] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  817.536316][T16723] Call Trace:
[  817.536323][T16723]  <TASK>
[  817.536330][T16723]  dump_stack_lvl+0x16c/0x1f0
[  817.536354][T16723]  should_fail_ex+0x512/0x640
[  817.536374][T16723]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  817.536394][T16723]  should_failslab+0xc2/0x120
[  817.536412][T16723]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  817.536428][T16723]  ? d_instantiate+0x77/0x90
[  817.536446][T16723]  ? alloc_empty_file+0x55/0x1e0
[  817.536468][T16723]  alloc_empty_file+0x55/0x1e0
[  817.536488][T16723]  alloc_file_pseudo+0x13a/0x230
[  817.536509][T16723]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  817.536529][T16723]  ? _raw_spin_unlock+0x28/0x50
[  817.536545][T16723]  ? alloc_fd+0x471/0x7d0
[  817.536560][T16723]  __anon_inode_getfile+0xe8/0x280
[  817.536579][T16723]  anon_inode_getfd+0x52/0xb0
[  817.536596][T16723]  __x64_sys_fsopen+0x18b/0x240
[  817.536615][T16723]  do_syscall_64+0xcd/0x490
[  817.536635][T16723]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  817.536650][T16723] RIP: 0033:0x7f20adb8e9a9
[  817.536663][T16723] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  817.536677][T16723] RSP: 002b:00007f20ae9f0038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ae
[  817.536691][T16723] RAX: ffffffffffffffda RBX: 00007f20addb5fa0 RCX: 00007f20adb8e9a9
[  817.536701][T16723] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[  817.536709][T16723] RBP: 00007f20adc10d69 R08: 0000000000000000 R09: 0000000000000000
[  817.536717][T16723] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  817.536726][T16723] R13: 0000000000000000 R14: 00007f20addb5fa0 R15: 00007ffc398719c8
[  817.536745][T16723]  </TASK>
[  817.886014][   T51] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260
[  817.886061][   T51] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260
[  817.903520][   T51] Bluetooth: hci2: Unknown advertising packet type: 0x7f
[  817.903555][   T51] Bluetooth: hci2: adv larger than maximum supported
[  817.910715][   T51] Bluetooth: hci2: Malformed LE Event: 0x0d
[  818.074491][T16733] FAULT_INJECTION: forcing a failure.
[  818.074491][T16733] name fail_futex, interval 1, probability 0, space 0, times 0
[  818.087422][T16733] CPU: 1 UID: 0 PID: 16733 Comm: syz.0.2257 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[  818.087462][T16733] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  818.087479][T16733] Call Trace:
[  818.087488][T16733]  <TASK>
[  818.087498][T16733]  dump_stack_lvl+0x16c/0x1f0
[  818.087537][T16733]  should_fail_ex+0x512/0x640
[  818.087576][T16733]  get_futex_key+0x1d0/0x1540
[  818.087611][T16733]  ? __pfx_get_futex_key+0x10/0x10
[  818.087651][T16733]  futex_wake+0xe7/0x4e0
[  818.087686][T16733]  ? __pfx_futex_wake+0x10/0x10
[  818.087721][T16733]  ? kmem_cache_free+0x2d1/0x4d0
[  818.087745][T16733]  ? fd_install+0x225/0x750
[  818.087768][T16733]  ? putname+0x154/0x1a0
[  818.087805][T16733]  do_futex+0x1e3/0x350
[  818.087834][T16733]  ? __pfx_do_futex+0x10/0x10
[  818.087875][T16733]  __x64_sys_futex+0x1e0/0x4c0
[  818.087908][T16733]  ? __x64_sys_openat+0x174/0x210
[  818.087938][T16733]  ? __pfx___x64_sys_futex+0x10/0x10
[  818.087995][T16733]  do_syscall_64+0xcd/0x490
[  818.088034][T16733]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  818.088062][T16733] RIP: 0033:0x7f659ab8e9a9
[  818.088083][T16733] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  818.088107][T16733] RSP: 002b:00007f659b9a70e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  818.088132][T16733] RAX: ffffffffffffffda RBX: 00007f659adb5fa8 RCX: 00007f659ab8e9a9
[  818.088151][T16733] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f659adb5fac
[  818.088167][T16733] RBP: 00007f659adb5fa0 R08: 00007f659b9a8000 R09: 0000000000000000
[  818.088183][T16733] R10: 0000000000000007 R11: 0000000000000246 R12: 00007f659adb5fac
[  818.088200][T16733] R13: 0000000000000000 R14: 00007ffc091de010 R15: 00007ffc091de0f8
[  818.088232][T16733]  </TASK>
[  818.285697][   T51] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260
[  818.285736][   T51] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260
[  818.300821][   T51] Bluetooth: hci2: Unknown advertising packet type: 0x7f
[  818.300850][   T51] Bluetooth: hci2: adv larger than maximum supported
[  818.308075][   T51] Bluetooth: hci2: adv larger than maximum supported
[  818.315980][   T51] Bluetooth: hci2: Malformed LE Event: 0x0d
[  820.379855][T16776] FAULT_INJECTION: forcing a failure.
[  820.379855][T16776] name failslab, interval 1, probability 0, space 0, times 0
[  820.398821][T16776] CPU: 1 UID: 0 PID: 16776 Comm: syz.1.2267 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[  820.398862][T16776] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  820.398886][T16776] Call Trace:
[  820.398896][T16776]  <TASK>
[  820.398906][T16776]  dump_stack_lvl+0x16c/0x1f0
[  820.398942][T16776]  should_fail_ex+0x512/0x640
[  820.398964][T16776]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  820.398985][T16776]  should_failslab+0xc2/0x120
[  820.399004][T16776]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  820.399021][T16776]  ? mas_alloc_nodes+0x18b/0x8b0
[  820.399040][T16776]  mas_alloc_nodes+0x18b/0x8b0
[  820.399062][T16776]  mas_node_count_gfp+0x105/0x130
[  820.399080][T16776]  mas_preallocate+0x7e0/0xde0
[  820.399100][T16776]  ? __memcg_slab_post_alloc_hook+0x4a2/0x960
[  820.399124][T16776]  ? __pfx_mas_preallocate+0x10/0x10
[  820.399151][T16776]  ? anon_vma_name+0x75/0x100
[  820.399173][T16776]  __split_vma+0x34a/0x1070
[  820.399191][T16776]  ? __pfx___split_vma+0x10/0x10
[  820.399216][T16776]  vms_gather_munmap_vmas+0x392/0x1310
[  820.399236][T16776]  ? __pfx_vms_gather_munmap_vmas+0x10/0x10
[  820.399253][T16776]  ? mas_walk+0x6a6/0x910
[  820.399277][T16776]  __mmap_region+0x3c7/0x25e0
[  820.399295][T16776]  ? __pfx___mmap_region+0x10/0x10
[  820.399311][T16776]  ? rcu_is_watching+0x12/0xc0
[  820.399332][T16776]  ? rcu_is_watching+0x12/0xc0
[  820.399347][T16776]  ? trace_sched_exit_tp+0xde/0x130
[  820.399366][T16776]  ? __schedule+0x1181/0x5dd0
[  820.399385][T16776]  ? __lock_acquire+0xb41/0x1c90
[  820.399408][T16776]  ? __lock_acquire+0x622/0x1c90
[  820.399430][T16776]  ? __pfx___schedule+0x10/0x10
[  820.399472][T16776]  ? trace_cap_capable+0x18d/0x200
[  820.399498][T16776]  mmap_region+0x1ab/0x3f0
[  820.399514][T16776]  ? __get_unmapped_area+0x267/0x440
[  820.399538][T16776]  do_mmap+0xa3e/0x1210
[  820.399561][T16776]  ? __pfx_do_mmap+0x10/0x10
[  820.399582][T16776]  ? __pfx_down_write_killable+0x10/0x10
[  820.399606][T16776]  vm_mmap_pgoff+0x281/0x450
[  820.399629][T16776]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  820.399648][T16776]  ? lock_acquire+0x179/0x350
[  820.399671][T16776]  ? __x64_sys_futex+0x1e0/0x4c0
[  820.399688][T16776]  ? __x64_sys_futex+0x1e9/0x4c0
[  820.399709][T16776]  ksys_mmap_pgoff+0x7d/0x5c0
[  820.399728][T16776]  ? xfd_validate_state+0x61/0x180
[  820.399752][T16776]  __x64_sys_mmap+0x125/0x190
[  820.399776][T16776]  do_syscall_64+0xcd/0x490
[  820.399796][T16776]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  820.399811][T16776] RIP: 0033:0x7f20adb8e9a9
[  820.399824][T16776] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  820.399839][T16776] RSP: 002b:00007f20ae9f0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  820.399853][T16776] RAX: ffffffffffffffda RBX: 00007f20addb5fa0 RCX: 00007f20adb8e9a9
[  820.399864][T16776] RDX: 00000000000000df RSI: 0000000000000005 RDI: 0000000000000000
[  820.399879][T16776] RBP: 00007f20adc10d69 R08: 0000000000000002 R09: 0000000000008000
[  820.399889][T16776] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  820.399899][T16776] R13: 0000000000000000 R14: 00007f20addb5fa0 R15: 00007ffc398719c8
[  820.399919][T16776]  </TASK>
[  821.326356][T16783] FAULT_INJECTION: forcing a failure.
[  821.326356][T16783] name fail_futex, interval 1, probability 0, space 0, times 0
[  821.339474][T16783] CPU: 1 UID: 0 PID: 16783 Comm: syz.2.2269 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[  821.339512][T16783] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  821.339528][T16783] Call Trace:
[  821.339538][T16783]  <TASK>
[  821.339548][T16783]  dump_stack_lvl+0x16c/0x1f0
[  821.339587][T16783]  should_fail_ex+0x512/0x640
[  821.339626][T16783]  get_futex_key+0x1d0/0x1540
[  821.339665][T16783]  ? __pfx_get_futex_key+0x10/0x10
[  821.339712][T16783]  futex_wake+0xe7/0x4e0
[  821.339752][T16783]  ? __pfx_futex_wake+0x10/0x10
[  821.339792][T16783]  ? kmem_cache_free+0x2d1/0x4d0
[  821.339819][T16783]  ? fd_install+0x225/0x750
[  821.339842][T16783]  ? putname+0x154/0x1a0
[  821.339879][T16783]  do_futex+0x1e3/0x350
[  821.339912][T16783]  ? __pfx_do_futex+0x10/0x10
[  821.339955][T16783]  __x64_sys_futex+0x1e0/0x4c0
[  821.339990][T16783]  ? __x64_sys_openat+0x174/0x210
[  821.340036][T16783]  ? __pfx___x64_sys_futex+0x10/0x10
[  821.340085][T16783]  do_syscall_64+0xcd/0x490
[  821.340123][T16783]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  821.340149][T16783] RIP: 0033:0x7efd6c38e9a9
[  821.340171][T16783] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  821.340196][T16783] RSP: 002b:00007efd6d1280e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  821.340221][T16783] RAX: ffffffffffffffda RBX: 00007efd6c5b5fa8 RCX: 00007efd6c38e9a9
[  821.340238][T16783] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007efd6c5b5fac
[  821.340255][T16783] RBP: 00007efd6c5b5fa0 R08: 00007efd6d129000 R09: 0000000000000000
[  821.340273][T16783] R10: 0000000000000007 R11: 0000000000000246 R12: 00007efd6c5b5fac
[  821.340290][T16783] R13: 0000000000000000 R14: 00007ffd35c85480 R15: 00007ffd35c85568
[  821.340324][T16783]  </TASK>
[  822.339407][   T51] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260
[  822.339444][   T51] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260
[  822.354492][   T51] Bluetooth: hci1: Unknown advertising packet type: 0x7f
[  822.354523][   T51] Bluetooth: hci1: adv larger than maximum supported
[  822.362027][   T51] Bluetooth: hci1: Malformed LE Event: 0x0d
[  822.676398][   T51] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260
[  822.676424][   T51] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260
[  822.691341][   T51] Bluetooth: hci1: Unknown advertising packet type: 0x7f
[  822.691363][   T51] Bluetooth: hci1: adv larger than maximum supported
[  822.698467][   T51] Bluetooth: hci1: adv larger than maximum supported
[  822.705386][   T51] Bluetooth: hci1: Malformed LE Event: 0x0d
[  823.677388][T16827] FAULT_INJECTION: forcing a failure.
[  823.677388][T16827] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  823.719004][T16827] CPU: 0 UID: 0 PID: 16827 Comm: syz.3.2277 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[  823.719044][T16827] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  823.719058][T16827] Call Trace:
[  823.719064][T16827]  <TASK>
[  823.719070][T16827]  dump_stack_lvl+0x16c/0x1f0
[  823.719094][T16827]  should_fail_ex+0x512/0x640
[  823.719117][T16827]  _copy_to_user+0x32/0xd0
[  823.719146][T16827]  fs_name+0x172/0x220
[  823.719165][T16827]  __x64_sys_sysfs+0xbf/0x1a0
[  823.719183][T16827]  do_syscall_64+0xcd/0x490
[  823.719204][T16827]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  823.719219][T16827] RIP: 0033:0x7fc212d8e9a9
[  823.719232][T16827] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  823.719246][T16827] RSP: 002b:00007fc213c2d038 EFLAGS: 00000246 ORIG_RAX: 000000000000008b
[  823.719261][T16827] RAX: ffffffffffffffda RBX: 00007fc212fb5fa0 RCX: 00007fc212d8e9a9
[  823.719271][T16827] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000002
[  823.719280][T16827] RBP: 00007fc212e10d69 R08: 0000000000000000 R09: 0000000000000000
[  823.719289][T16827] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  823.719297][T16827] R13: 0000000000000000 R14: 00007fc212fb5fa0 R15: 00007ffcbd5820b8
[  823.719317][T16827]  </TASK>
[  824.618046][T16844] FAULT_INJECTION: forcing a failure.
[  824.618046][T16844] name failslab, interval 1, probability 0, space 0, times 0
[  824.642847][T16844] CPU: 1 UID: 0 PID: 16844 Comm: syz.0.2281 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[  824.642886][T16844] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  824.642896][T16844] Call Trace:
[  824.642902][T16844]  <TASK>
[  824.642909][T16844]  dump_stack_lvl+0x16c/0x1f0
[  824.642934][T16844]  should_fail_ex+0x512/0x640
[  824.642954][T16844]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  824.642971][T16844]  should_failslab+0xc2/0x120
[  824.642990][T16844]  __kmalloc_cache_noprof+0x6a/0x3e0
[  824.643005][T16844]  ? snd_seq_pool_new+0x44/0x230
[  824.643021][T16844]  ? __pfx_snd_seq_open+0x10/0x10
[  824.643042][T16844]  snd_seq_pool_new+0x44/0x230
[  824.643061][T16844]  snd_seq_fifo_new+0x5a/0x260
[  824.643078][T16844]  snd_seq_open+0x15c/0x550
[  824.643101][T16844]  ? __pfx_snd_seq_open+0x10/0x10
[  824.643119][T16844]  snd_open+0x201/0x450
[  824.643140][T16844]  ? __pfx_snd_open+0x10/0x10
[  824.643164][T16844]  chrdev_open+0x234/0x6a0
[  824.643181][T16844]  ? __pfx_apparmor_file_open+0x10/0x10
[  824.643209][T16844]  ? __pfx_chrdev_open+0x10/0x10
[  824.643230][T16844]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  824.643252][T16844]  do_dentry_open+0x744/0x1c10
[  824.643271][T16844]  ? __pfx_chrdev_open+0x10/0x10
[  824.643293][T16844]  vfs_open+0x82/0x3f0
[  824.643315][T16844]  path_openat+0x1de4/0x2cb0
[  824.643337][T16844]  ? __pfx_path_openat+0x10/0x10
[  824.643353][T16844]  ? __lock_acquire+0xb8a/0x1c90
[  824.643377][T16844]  do_filp_open+0x20b/0x470
[  824.643392][T16844]  ? __pfx_do_filp_open+0x10/0x10
[  824.643422][T16844]  ? alloc_fd+0x471/0x7d0
[  824.643441][T16844]  do_sys_openat2+0x11b/0x1d0
[  824.643461][T16844]  ? __pfx_do_sys_openat2+0x10/0x10
[  824.643482][T16844]  ? __pfx___schedule+0x10/0x10
[  824.643512][T16844]  __x64_sys_openat+0x174/0x210
[  824.643533][T16844]  ? __pfx___x64_sys_openat+0x10/0x10
[  824.643563][T16844]  do_syscall_64+0xcd/0x490
[  824.643584][T16844]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  824.643600][T16844] RIP: 0033:0x7f659ab8e9a9
[  824.643615][T16844] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  824.643630][T16844] RSP: 002b:00007f659b9a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  824.643645][T16844] RAX: ffffffffffffffda RBX: 00007f659adb5fa0 RCX: 00007f659ab8e9a9
[  824.643656][T16844] RDX: 0000000000000100 RSI: 00002000000000c0 RDI: ffffffffffffff9c
[  824.643666][T16844] RBP: 00007f659ac10d69 R08: 0000000000000000 R09: 0000000000000000
[  824.643676][T16844] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  824.643685][T16844] R13: 0000000000000000 R14: 00007f659adb5fa0 R15: 00007ffc091de0f8
[  824.643704][T16844]  </TASK>
[  826.653351][T16885] FAULT_INJECTION: forcing a failure.
[  826.653351][T16885] name fail_futex, interval 1, probability 0, space 0, times 0
[  826.666648][T16885] CPU: 0 UID: 0 PID: 16885 Comm: syz.2.2288 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[  826.666688][T16885] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  826.666706][T16885] Call Trace:
[  826.666716][T16885]  <TASK>
[  826.666728][T16885]  dump_stack_lvl+0x16c/0x1f0
[  826.666767][T16885]  should_fail_ex+0x512/0x640
[  826.666805][T16885]  get_futex_key+0x1d0/0x1540
[  826.666843][T16885]  ? __pfx_get_futex_key+0x10/0x10
[  826.666887][T16885]  futex_wake+0xe7/0x4e0
[  826.666928][T16885]  ? __pfx_futex_wake+0x10/0x10
[  826.666969][T16885]  ? kmem_cache_free+0x2d1/0x4d0
[  826.666996][T16885]  ? fd_install+0x225/0x750
[  826.667018][T16885]  ? putname+0x154/0x1a0
[  826.667056][T16885]  do_futex+0x1e3/0x350
[  826.667089][T16885]  ? __pfx_do_futex+0x10/0x10
[  826.667125][T16885]  ? __sys_sendmsg+0x18c/0x220
[  826.667163][T16885]  __x64_sys_futex+0x1e0/0x4c0
[  826.667198][T16885]  ? __x64_sys_openat+0x174/0x210
[  826.667234][T16885]  ? __pfx___x64_sys_futex+0x10/0x10
[  826.667282][T16885]  do_syscall_64+0xcd/0x490
[  826.667313][T16885]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  826.667337][T16885] RIP: 0033:0x7efd6c38e9a9
[  826.667389][T16885] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  826.667414][T16885] RSP: 002b:00007efd6d1280e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  826.667438][T16885] RAX: ffffffffffffffda RBX: 00007efd6c5b5fa8 RCX: 00007efd6c38e9a9
[  826.667456][T16885] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007efd6c5b5fac
[  826.667472][T16885] RBP: 00007efd6c5b5fa0 R08: 00007efd6d129000 R09: 0000000000000000
[  826.667489][T16885] R10: 000000000000000a R11: 0000000000000246 R12: 00007efd6c5b5fac
[  826.667506][T16885] R13: 0000000000000000 R14: 00007ffd35c85480 R15: 00007ffd35c85568
[  826.667541][T16885]  </TASK>
[  827.419210][   T51] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260
[  827.419249][   T51] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260
[  827.436146][   T51] Bluetooth: hci0: Unknown advertising packet type: 0x7f
[  827.436179][   T51] Bluetooth: hci0: adv larger than maximum supported
[  827.444454][   T51] Bluetooth: hci0: Malformed LE Event: 0x0d
[  827.683194][   T51] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260
[  827.683229][   T51] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260
[  827.698195][   T51] Bluetooth: hci0: Unknown advertising packet type: 0x7f
[  827.698216][   T51] Bluetooth: hci0: adv larger than maximum supported
[  827.705511][   T51] Bluetooth: hci0: adv larger than maximum supported
[  827.712487][   T51] Bluetooth: hci0: Malformed LE Event: 0x0d
[  828.096352][T16900] FAULT_INJECTION: forcing a failure.
[  828.096352][T16900] name failslab, interval 1, probability 0, space 0, times 0
[  828.112431][T16900] CPU: 1 UID: 0 PID: 16900 Comm: syz.1.2292 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[  828.112468][T16900] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  828.112482][T16900] Call Trace:
[  828.112497][T16900]  <TASK>
[  828.112506][T16900]  dump_stack_lvl+0x16c/0x1f0
[  828.112542][T16900]  should_fail_ex+0x512/0x640
[  828.112575][T16900]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  828.112603][T16900]  should_failslab+0xc2/0x120
[  828.112638][T16900]  __kmalloc_cache_noprof+0x6a/0x3e0
[  828.112665][T16900]  ? lockdep_hardirqs_on+0x7c/0x110
[  828.112695][T16900]  ? snd_seq_fifo_new+0x42/0x260
[  828.112726][T16900]  ? seq_create_client1+0x420/0x5e0
[  828.112756][T16900]  ? __pfx_snd_seq_open+0x10/0x10
[  828.112777][T16900]  snd_seq_fifo_new+0x42/0x260
[  828.112793][T16900]  snd_seq_open+0x15c/0x550
[  828.112814][T16900]  ? __pfx_snd_seq_open+0x10/0x10
[  828.112833][T16900]  snd_open+0x201/0x450
[  828.112854][T16900]  ? __pfx_snd_open+0x10/0x10
[  828.112874][T16900]  chrdev_open+0x234/0x6a0
[  828.112891][T16900]  ? __pfx_apparmor_file_open+0x10/0x10
[  828.112914][T16900]  ? __pfx_chrdev_open+0x10/0x10
[  828.112932][T16900]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  828.112951][T16900]  do_dentry_open+0x744/0x1c10
[  828.112968][T16900]  ? __pfx_chrdev_open+0x10/0x10
[  828.112989][T16900]  vfs_open+0x82/0x3f0
[  828.113011][T16900]  path_openat+0x1de4/0x2cb0
[  828.113034][T16900]  ? __pfx_path_openat+0x10/0x10
[  828.113050][T16900]  ? __lock_acquire+0xb8a/0x1c90
[  828.113073][T16900]  do_filp_open+0x20b/0x470
[  828.113089][T16900]  ? __pfx_do_filp_open+0x10/0x10
[  828.113118][T16900]  ? alloc_fd+0x471/0x7d0
[  828.113138][T16900]  do_sys_openat2+0x11b/0x1d0
[  828.113158][T16900]  ? __pfx_do_sys_openat2+0x10/0x10
[  828.113185][T16900]  __x64_sys_openat+0x174/0x210
[  828.113206][T16900]  ? __pfx___x64_sys_openat+0x10/0x10
[  828.113235][T16900]  do_syscall_64+0xcd/0x490
[  828.113258][T16900]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  828.113273][T16900] RIP: 0033:0x7f20adb8e9a9
[  828.113286][T16900] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  828.113307][T16900] RSP: 002b:00007f20ae9f0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  828.113334][T16900] RAX: ffffffffffffffda RBX: 00007f20addb5fa0 RCX: 00007f20adb8e9a9
[  828.113350][T16900] RDX: 0000000000000100 RSI: 00002000000000c0 RDI: ffffffffffffff9c
[  828.113361][T16900] RBP: 00007f20adc10d69 R08: 0000000000000000 R09: 0000000000000000
[  828.113370][T16900] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  828.113378][T16900] R13: 0000000000000000 R14: 00007f20addb5fa0 R15: 00007ffc398719c8
[  828.113397][T16900]  </TASK>
[  829.791084][T16928] FAULT_INJECTION: forcing a failure.
[  829.791084][T16928] name failslab, interval 1, probability 0, space 0, times 0
[  829.807354][T16928] CPU: 1 UID: 0 PID: 16928 Comm: syz.0.2299 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[  829.807394][T16928] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  829.807420][T16928] Call Trace:
[  829.807430][T16928]  <TASK>
[  829.807441][T16928]  dump_stack_lvl+0x16c/0x1f0
[  829.807481][T16928]  should_fail_ex+0x512/0x640
[  829.807514][T16928]  ? __kmalloc_noprof+0xbf/0x510
[  829.807546][T16928]  ? alloc_pipe_info+0x1ec/0x590
[  829.807573][T16928]  should_failslab+0xc2/0x120
[  829.807606][T16928]  __kmalloc_noprof+0xd2/0x510
[  829.807642][T16928]  alloc_pipe_info+0x1ec/0x590
[  829.807677][T16928]  splice_direct_to_actor+0x77d/0xa30
[  829.807720][T16928]  ? __pfx_direct_splice_actor+0x10/0x10
[  829.807748][T16928]  ? __pfx_aa_file_perm+0x10/0x10
[  829.807777][T16928]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  829.807827][T16928]  do_splice_direct+0x174/0x240
[  829.807867][T16928]  ? __pfx_do_splice_direct+0x10/0x10
[  829.807908][T16928]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  829.807953][T16928]  ? rw_verify_area+0xcf/0x680
[  829.807995][T16928]  do_sendfile+0xb06/0xe50
[  829.808040][T16928]  ? __pfx_do_sendfile+0x10/0x10
[  829.808070][T16928]  ? __sys_sendmsg+0x18c/0x220
[  829.808113][T16928]  ? __x64_sys_futex+0x1e0/0x4c0
[  829.808144][T16928]  ? __x64_sys_futex+0x1e9/0x4c0
[  829.808181][T16928]  __x64_sys_sendfile64+0x1d8/0x220
[  829.808214][T16928]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  829.808262][T16928]  do_syscall_64+0xcd/0x490
[  829.808304][T16928]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  829.808331][T16928] RIP: 0033:0x7f659ab8e9a9
[  829.808353][T16928] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  829.808387][T16928] RSP: 002b:00007f659b9a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  829.808417][T16928] RAX: ffffffffffffffda RBX: 00007f659adb5fa0 RCX: 00007f659ab8e9a9
[  829.808435][T16928] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000009
[  829.808452][T16928] RBP: 00007f659ac10d69 R08: 0000000000000000 R09: 0000000000000000
[  829.808469][T16928] R10: 0000000000000048 R11: 0000000000000246 R12: 0000000000000000
[  829.808486][T16928] R13: 0000000000000000 R14: 00007f659adb5fa0 R15: 00007ffc091de0f8
[  829.808522][T16928]  </TASK>
[  830.357544][T16933] FAULT_INJECTION: forcing a failure.
[  830.357544][T16933] name failslab, interval 1, probability 0, space 0, times 0
[  830.379853][T16933] CPU: 0 UID: 0 PID: 16933 Comm: syz.0.2301 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[  830.379893][T16933] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  830.379910][T16933] Call Trace:
[  830.379920][T16933]  <TASK>
[  830.379931][T16933]  dump_stack_lvl+0x16c/0x1f0
[  830.379972][T16933]  should_fail_ex+0x512/0x640
[  830.380016][T16933]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  830.380049][T16933]  should_failslab+0xc2/0x120
[  830.380084][T16933]  __kmalloc_cache_noprof+0x6a/0x3e0
[  830.380111][T16933]  ? lockdep_hardirqs_on+0x7c/0x110
[  830.380143][T16933]  ? snd_seq_fifo_new+0x42/0x260
[  830.380173][T16933]  ? seq_create_client1+0x420/0x5e0
[  830.380210][T16933]  ? __pfx_snd_seq_open+0x10/0x10
[  830.380247][T16933]  snd_seq_fifo_new+0x42/0x260
[  830.380276][T16933]  snd_seq_open+0x15c/0x550
[  830.380313][T16933]  ? __pfx_snd_seq_open+0x10/0x10
[  830.380348][T16933]  snd_open+0x201/0x450
[  830.380385][T16933]  ? __pfx_snd_open+0x10/0x10
[  830.380421][T16933]  chrdev_open+0x234/0x6a0
[  830.380451][T16933]  ? __pfx_apparmor_file_open+0x10/0x10
[  830.380491][T16933]  ? __pfx_chrdev_open+0x10/0x10
[  830.380523][T16933]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  830.380554][T16933]  do_dentry_open+0x744/0x1c10
[  830.380581][T16933]  ? __pfx_chrdev_open+0x10/0x10
[  830.380619][T16933]  vfs_open+0x82/0x3f0
[  830.380659][T16933]  path_openat+0x1de4/0x2cb0
[  830.380700][T16933]  ? __pfx_path_openat+0x10/0x10
[  830.380732][T16933]  ? __lock_acquire+0xb8a/0x1c90
[  830.380774][T16933]  do_filp_open+0x20b/0x470
[  830.380803][T16933]  ? __pfx_do_filp_open+0x10/0x10
[  830.380859][T16933]  ? alloc_fd+0x471/0x7d0
[  830.380895][T16933]  do_sys_openat2+0x11b/0x1d0
[  830.380932][T16933]  ? __pfx_do_sys_openat2+0x10/0x10
[  830.380982][T16933]  __x64_sys_openat+0x174/0x210
[  830.381031][T16933]  ? __pfx___x64_sys_openat+0x10/0x10
[  830.381084][T16933]  do_syscall_64+0xcd/0x490
[  830.381123][T16933]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  830.381150][T16933] RIP: 0033:0x7f659ab8e9a9
[  830.381173][T16933] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  830.381198][T16933] RSP: 002b:00007f659b9a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  830.381236][T16933] RAX: ffffffffffffffda RBX: 00007f659adb5fa0 RCX: 00007f659ab8e9a9
[  830.381254][T16933] RDX: 0000000000000100 RSI: 00002000000000c0 RDI: ffffffffffffff9c
[  830.381271][T16933] RBP: 00007f659ac10d69 R08: 0000000000000000 R09: 0000000000000000
[  830.381288][T16933] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  830.381305][T16933] R13: 0000000000000000 R14: 00007f659adb5fa0 R15: 00007ffc091de0f8
[  830.381343][T16933]  </TASK>
[  831.835277][   T51] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260
[  831.835403][   T51] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260
[  831.850332][   T51] Bluetooth: hci1: Unknown advertising packet type: 0x7f
[  831.850484][   T51] Bluetooth: hci1: adv larger than maximum supported
[  831.857668][   T51] Bluetooth: hci1: adv larger than maximum supported
[  831.864499][   T51] Bluetooth: hci1: Malformed LE Event: 0x0d
[  833.074056][T16987] FAULT_INJECTION: forcing a failure.
[  833.074056][T16987] name fail_futex, interval 1, probability 0, space 0, times 0
[  833.091762][T16987] CPU: 1 UID: 0 PID: 16987 Comm: syz.0.2311 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[  833.091787][T16987] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  833.091797][T16987] Call Trace:
[  833.091803][T16987]  <TASK>
[  833.091817][T16987]  dump_stack_lvl+0x16c/0x1f0
[  833.091842][T16987]  should_fail_ex+0x512/0x640
[  833.091865][T16987]  get_futex_key+0x1d0/0x1540
[  833.091889][T16987]  ? __pfx_get_futex_key+0x10/0x10
[  833.091913][T16987]  futex_wake+0xe7/0x4e0
[  833.091935][T16987]  ? __pfx_futex_wake+0x10/0x10
[  833.091958][T16987]  ? kmem_cache_free+0x2d1/0x4d0
[  833.091972][T16987]  ? fd_install+0x225/0x750
[  833.091985][T16987]  ? putname+0x154/0x1a0
[  833.092006][T16987]  do_futex+0x1e3/0x350
[  833.092024][T16987]  ? __pfx_do_futex+0x10/0x10
[  833.092048][T16987]  __x64_sys_futex+0x1e0/0x4c0
[  833.092067][T16987]  ? __x64_sys_openat+0x174/0x210
[  833.092088][T16987]  ? __pfx___x64_sys_futex+0x10/0x10
[  833.092114][T16987]  do_syscall_64+0xcd/0x490
[  833.092134][T16987]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  833.092149][T16987] RIP: 0033:0x7f659ab8e9a9
[  833.092162][T16987] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  833.092177][T16987] RSP: 002b:00007f659b9a70e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  833.092191][T16987] RAX: ffffffffffffffda RBX: 00007f659adb5fa8 RCX: 00007f659ab8e9a9
[  833.092201][T16987] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f659adb5fac
[  833.092209][T16987] RBP: 00007f659adb5fa0 R08: 00007f659b9a8000 R09: 0000000000000000
[  833.092219][T16987] R10: 0000000000000008 R11: 0000000000000246 R12: 00007f659adb5fac
[  833.092229][T16987] R13: 0000000000000000 R14: 00007ffc091de010 R15: 00007ffc091de0f8
[  833.092247][T16987]  </TASK>
[  835.735514][   T51] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260
[  835.735540][   T51] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260
[  835.750585][   T51] Bluetooth: hci2: Unknown advertising packet type: 0x7f
[  835.750607][   T51] Bluetooth: hci2: adv larger than maximum supported
[  835.757844][   T51] Bluetooth: hci2: adv larger than maximum supported
[  835.764778][   T51] Bluetooth: hci2: Malformed LE Event: 0x0d
[  836.726236][T17038] FAULT_INJECTION: forcing a failure.
[  836.726236][T17038] name failslab, interval 1, probability 0, space 0, times 0
[  836.809442][T17038] CPU: 1 UID: 0 PID: 17038 Comm: syz.3.2321 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[  836.809474][T17038] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  836.809486][T17038] Call Trace:
[  836.809492][T17038]  <TASK>
[  836.809499][T17038]  dump_stack_lvl+0x16c/0x1f0
[  836.809523][T17038]  should_fail_ex+0x512/0x640
[  836.809543][T17038]  ? fs_reclaim_acquire+0xae/0x150
[  836.809566][T17038]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  836.809582][T17038]  should_failslab+0xc2/0x120
[  836.809601][T17038]  __kmalloc_noprof+0xd2/0x510
[  836.809623][T17038]  tomoyo_realpath_from_path+0xc2/0x6e0
[  836.809644][T17038]  tomoyo_check_open_permission+0x2ab/0x3c0
[  836.809667][T17038]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  836.809708][T17038]  ? do_raw_spin_lock+0x12c/0x2b0
[  836.809735][T17038]  tomoyo_file_open+0x6b/0x90
[  836.809756][T17038]  security_file_open+0x84/0x1e0
[  836.809772][T17038]  do_dentry_open+0x596/0x1c10
[  836.809799][T17038]  vfs_open+0x82/0x3f0
[  836.809821][T17038]  path_openat+0x1de4/0x2cb0
[  836.809843][T17038]  ? __pfx_path_openat+0x10/0x10
[  836.809861][T17038]  ? __lock_acquire+0xb8a/0x1c90
[  836.809884][T17038]  do_filp_open+0x20b/0x470
[  836.809900][T17038]  ? __pfx_do_filp_open+0x10/0x10
[  836.809929][T17038]  ? alloc_fd+0x471/0x7d0
[  836.809949][T17038]  do_sys_openat2+0x11b/0x1d0
[  836.809968][T17038]  ? __pfx_do_sys_openat2+0x10/0x10
[  836.809989][T17038]  ? __sys_sendmsg+0x18c/0x220
[  836.810014][T17038]  __x64_sys_openat+0x174/0x210
[  836.810034][T17038]  ? __pfx___x64_sys_openat+0x10/0x10
[  836.810062][T17038]  do_syscall_64+0xcd/0x490
[  836.810082][T17038]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  836.810097][T17038] RIP: 0033:0x7fc212d8e9a9
[  836.810110][T17038] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  836.810124][T17038] RSP: 002b:00007fc213c2d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  836.810138][T17038] RAX: ffffffffffffffda RBX: 00007fc212fb5fa0 RCX: 00007fc212d8e9a9
[  836.810148][T17038] RDX: 0000000000002000 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  836.810157][T17038] RBP: 00007fc212e10d69 R08: 0000000000000000 R09: 0000000000000000
[  836.810166][T17038] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  836.810174][T17038] R13: 0000000000000000 R14: 00007fc212fb5fa0 R15: 00007ffcbd5820b8
[  836.810193][T17038]  </TASK>
[  836.810200][T17038] ERROR: Out of memory at tomoyo_realpath_from_path.
[  837.231542][T17044] FAULT_INJECTION: forcing a failure.
[  837.231542][T17044] name failslab, interval 1, probability 0, space 0, times 0
[  837.257948][T17044] CPU: 1 UID: 0 PID: 17044 Comm: syz.2.2322 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[  837.257991][T17044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  837.258008][T17044] Call Trace:
[  837.258018][T17044]  <TASK>
[  837.258028][T17044]  dump_stack_lvl+0x16c/0x1f0
[  837.258069][T17044]  should_fail_ex+0x512/0x640
[  837.258102][T17044]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  837.258131][T17044]  should_failslab+0xc2/0x120
[  837.258163][T17044]  __kmalloc_cache_noprof+0x6a/0x3e0
[  837.258186][T17044]  ? lockdep_hardirqs_on+0x7c/0x110
[  837.258216][T17044]  ? snd_seq_fifo_new+0x42/0x260
[  837.258244][T17044]  ? seq_create_client1+0x420/0x5e0
[  837.258280][T17044]  ? __pfx_snd_seq_open+0x10/0x10
[  837.258316][T17044]  snd_seq_fifo_new+0x42/0x260
[  837.258344][T17044]  snd_seq_open+0x15c/0x550
[  837.258381][T17044]  ? __pfx_snd_seq_open+0x10/0x10
[  837.258412][T17044]  snd_open+0x201/0x450
[  837.258448][T17044]  ? __pfx_snd_open+0x10/0x10
[  837.258501][T17044]  chrdev_open+0x234/0x6a0
[  837.258532][T17044]  ? __pfx_apparmor_file_open+0x10/0x10
[  837.258572][T17044]  ? __pfx_chrdev_open+0x10/0x10
[  837.258605][T17044]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  837.258636][T17044]  do_dentry_open+0x744/0x1c10
[  837.258664][T17044]  ? __pfx_chrdev_open+0x10/0x10
[  837.258695][T17044]  vfs_open+0x82/0x3f0
[  837.258732][T17044]  path_openat+0x1de4/0x2cb0
[  837.258773][T17044]  ? __pfx_path_openat+0x10/0x10
[  837.258802][T17044]  ? __lock_acquire+0xb8a/0x1c90
[  837.258843][T17044]  do_filp_open+0x20b/0x470
[  837.258871][T17044]  ? __pfx_do_filp_open+0x10/0x10
[  837.258927][T17044]  ? alloc_fd+0x471/0x7d0
[  837.258963][T17044]  do_sys_openat2+0x11b/0x1d0
[  837.258998][T17044]  ? __pfx_do_sys_openat2+0x10/0x10
[  837.259048][T17044]  __x64_sys_openat+0x174/0x210
[  837.259083][T17044]  ? __pfx___x64_sys_openat+0x10/0x10
[  837.259135][T17044]  do_syscall_64+0xcd/0x490
[  837.259172][T17044]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  837.259197][T17044] RIP: 0033:0x7efd6c38e9a9
[  837.259217][T17044] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  837.259240][T17044] RSP: 002b:00007efd6d128038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  837.259264][T17044] RAX: ffffffffffffffda RBX: 00007efd6c5b5fa0 RCX: 00007efd6c38e9a9
[  837.259282][T17044] RDX: 0000000000000100 RSI: 00002000000000c0 RDI: ffffffffffffff9c
[  837.259299][T17044] RBP: 00007efd6c410d69 R08: 0000000000000000 R09: 0000000000000000
[  837.259314][T17044] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  837.259328][T17044] R13: 0000000000000000 R14: 00007efd6c5b5fa0 R15: 00007ffd35c85568
[  837.259360][T17044]  </TASK>
[  839.201480][   T51] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260
[  839.201521][   T51] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260
[  839.222082][   T51] Bluetooth: hci2: Unknown advertising packet type: 0x7f
[  839.222118][   T51] Bluetooth: hci2: adv larger than maximum supported
[  839.229412][   T51] Bluetooth: hci2: adv larger than maximum supported
[  839.236325][   T51] Bluetooth: hci2: Malformed LE Event: 0x0d
[  840.320763][T17098] FAULT_INJECTION: forcing a failure.
[  840.320763][T17098] name failslab, interval 1, probability 0, space 0, times 0
[  840.376855][T17098] CPU: 1 UID: 0 PID: 17098 Comm: syz.2.2333 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[  840.376891][T17098] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  840.376908][T17098] Call Trace:
[  840.376917][T17098]  <TASK>
[  840.376927][T17098]  dump_stack_lvl+0x16c/0x1f0
[  840.376967][T17098]  should_fail_ex+0x512/0x640
[  840.376999][T17098]  ? fs_reclaim_acquire+0xae/0x150
[  840.377037][T17098]  ? tomoyo_encode2+0x100/0x3e0
[  840.377061][T17098]  should_failslab+0xc2/0x120
[  840.377091][T17098]  __kmalloc_noprof+0xd2/0x510
[  840.377125][T17098]  tomoyo_encode2+0x100/0x3e0
[  840.377155][T17098]  tomoyo_encode+0x29/0x50
[  840.377181][T17098]  tomoyo_realpath_from_path+0x18f/0x6e0
[  840.377217][T17098]  tomoyo_check_open_permission+0x2ab/0x3c0
[  840.377263][T17098]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  840.377331][T17098]  ? do_raw_spin_lock+0x12c/0x2b0
[  840.377366][T17098]  tomoyo_file_open+0x6b/0x90
[  840.377412][T17098]  security_file_open+0x84/0x1e0
[  840.377439][T17098]  do_dentry_open+0x596/0x1c10
[  840.377486][T17098]  vfs_open+0x82/0x3f0
[  840.377526][T17098]  path_openat+0x1de4/0x2cb0
[  840.377567][T17098]  ? __pfx_path_openat+0x10/0x10
[  840.377597][T17098]  ? __lock_acquire+0xb8a/0x1c90
[  840.377635][T17098]  do_filp_open+0x20b/0x470
[  840.377662][T17098]  ? __pfx_do_filp_open+0x10/0x10
[  840.377715][T17098]  ? alloc_fd+0x471/0x7d0
[  840.377750][T17098]  do_sys_openat2+0x11b/0x1d0
[  840.377782][T17098]  ? __pfx_do_sys_openat2+0x10/0x10
[  840.377816][T17098]  ? __sys_sendmsg+0x18c/0x220
[  840.377856][T17098]  __x64_sys_openat+0x174/0x210
[  840.377893][T17098]  ? __pfx___x64_sys_openat+0x10/0x10
[  840.377944][T17098]  do_syscall_64+0xcd/0x490
[  840.377980][T17098]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  840.378006][T17098] RIP: 0033:0x7efd6c38e9a9
[  840.378031][T17098] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  840.378057][T17098] RSP: 002b:00007efd6d128038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  840.378084][T17098] RAX: ffffffffffffffda RBX: 00007efd6c5b5fa0 RCX: 00007efd6c38e9a9
[  840.378103][T17098] RDX: 0000000000002000 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  840.378120][T17098] RBP: 00007efd6c410d69 R08: 0000000000000000 R09: 0000000000000000
[  840.378137][T17098] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  840.378153][T17098] R13: 0000000000000000 R14: 00007efd6c5b5fa0 R15: 00007ffd35c85568
[  840.378185][T17098]  </TASK>
[  840.378212][T17098] ERROR: Out of memory at tomoyo_realpath_from_path.
[  840.397280][T17100] FAULT_INJECTION: forcing a failure.
[  840.397280][T17100] name fail_futex, interval 1, probability 0, space 0, times 0
[  840.654237][T17100] CPU: 0 UID: 0 PID: 17100 Comm: syz.3.2334 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[  840.654277][T17100] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  840.654293][T17100] Call Trace:
[  840.654302][T17100]  <TASK>
[  840.654313][T17100]  dump_stack_lvl+0x16c/0x1f0
[  840.654353][T17100]  should_fail_ex+0x512/0x640
[  840.654393][T17100]  get_futex_key+0x1d0/0x1540
[  840.654432][T17100]  ? __pfx_get_futex_key+0x10/0x10
[  840.654477][T17100]  futex_wake+0xe7/0x4e0
[  840.654517][T17100]  ? __pfx_futex_wake+0x10/0x10
[  840.654563][T17100]  ? kmem_cache_free+0x2d1/0x4d0
[  840.654591][T17100]  ? fd_install+0x225/0x750
[  840.654615][T17100]  ? putname+0x154/0x1a0
[  840.654655][T17100]  do_futex+0x1e3/0x350
[  840.654687][T17100]  ? __pfx_do_futex+0x10/0x10
[  840.654731][T17100]  __x64_sys_futex+0x1e0/0x4c0
[  840.654766][T17100]  ? __x64_sys_openat+0x174/0x210
[  840.654803][T17100]  ? __pfx___x64_sys_futex+0x10/0x10
[  840.654850][T17100]  do_syscall_64+0xcd/0x490
[  840.654887][T17100]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  840.654912][T17100] RIP: 0033:0x7fc212d8e9a9
[  840.654933][T17100] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  840.654957][T17100] RSP: 002b:00007fc213c2d0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  840.654983][T17100] RAX: ffffffffffffffda RBX: 00007fc212fb5fa8 RCX: 00007fc212d8e9a9
[  840.655001][T17100] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fc212fb5fac
[  840.655018][T17100] RBP: 00007fc212fb5fa0 R08: 00007fc213c2e000 R09: 0000000000000000
[  840.655035][T17100] R10: 0000000000000008 R11: 0000000000000246 R12: 00007fc212fb5fac
[  840.655052][T17100] R13: 0000000000000000 R14: 00007ffcbd581fd0 R15: 00007ffcbd5820b8
[  840.655087][T17100]  </TASK>
[  843.671805][   T51] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260
[  843.671842][   T51] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260
[  843.686996][   T51] Bluetooth: hci2: Unknown advertising packet type: 0x7f
[  843.687028][   T51] Bluetooth: hci2: adv larger than maximum supported
[  843.694370][   T51] Bluetooth: hci2: adv larger than maximum supported
[  843.701286][   T51] Bluetooth: hci2: Malformed LE Event: 0x0d
[  843.883786][   T51] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260
[  843.883824][   T51] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260
[  843.899872][   T51] Bluetooth: hci2: Unknown advertising packet type: 0x7f
[  843.899892][   T51] Bluetooth: hci2: adv larger than maximum supported
[  843.907367][   T51] Bluetooth: hci2: adv larger than maximum supported
[  843.914773][   T51] Bluetooth: hci2: Malformed LE Event: 0x0d
[  844.127894][T17158] FAULT_INJECTION: forcing a failure.
[  844.127894][T17158] name failslab, interval 1, probability 0, space 0, times 0
[  844.140571][T17158] CPU: 1 UID: 0 PID: 17158 Comm: syz.2.2345 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[  844.140593][T17158] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  844.140603][T17158] Call Trace:
[  844.140609][T17158]  <TASK>
[  844.140615][T17158]  dump_stack_lvl+0x16c/0x1f0
[  844.140639][T17158]  should_fail_ex+0x512/0x640
[  844.140658][T17158]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  844.140677][T17158]  should_failslab+0xc2/0x120
[  844.140696][T17158]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  844.140712][T17158]  ? alloc_empty_file+0x55/0x1e0
[  844.140734][T17158]  alloc_empty_file+0x55/0x1e0
[  844.140754][T17158]  path_openat+0xda/0x2cb0
[  844.140769][T17158]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  844.140790][T17158]  ? __pfx_path_openat+0x10/0x10
[  844.140806][T17158]  ? __lock_acquire+0xb8a/0x1c90
[  844.140830][T17158]  do_filp_open+0x20b/0x470
[  844.140845][T17158]  ? __pfx_do_filp_open+0x10/0x10
[  844.140874][T17158]  ? alloc_fd+0x471/0x7d0
[  844.140893][T17158]  do_sys_openat2+0x11b/0x1d0
[  844.140912][T17158]  ? __pfx_do_sys_openat2+0x10/0x10
[  844.140934][T17158]  ? __sys_sendmsg+0x18c/0x220
[  844.140958][T17158]  __x64_sys_openat+0x174/0x210
[  844.140978][T17158]  ? __pfx___x64_sys_openat+0x10/0x10
[  844.141006][T17158]  do_syscall_64+0xcd/0x490
[  844.141026][T17158]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  844.141041][T17158] RIP: 0033:0x7efd6c38e9a9
[  844.141054][T17158] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  844.141069][T17158] RSP: 002b:00007efd6d128038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  844.141083][T17158] RAX: ffffffffffffffda RBX: 00007efd6c5b5fa0 RCX: 00007efd6c38e9a9
[  844.141092][T17158] RDX: 0000000000002000 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  844.141101][T17158] RBP: 00007efd6c410d69 R08: 0000000000000000 R09: 0000000000000000
[  844.141110][T17158] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  844.141119][T17158] R13: 0000000000000000 R14: 00007efd6c5b5fa0 R15: 00007ffd35c85568
[  844.141138][T17158]  </TASK>
[  844.724981][T17160] FAULT_INJECTION: forcing a failure.
[  844.724981][T17160] name fail_futex, interval 1, probability 0, space 0, times 0
[  844.746789][T17160] CPU: 1 UID: 0 PID: 17160 Comm: syz.2.2346 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[  844.746813][T17160] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  844.746823][T17160] Call Trace:
[  844.746828][T17160]  <TASK>
[  844.746835][T17160]  dump_stack_lvl+0x16c/0x1f0
[  844.746860][T17160]  should_fail_ex+0x512/0x640
[  844.746888][T17160]  get_futex_key+0x1d0/0x1540
[  844.746911][T17160]  ? __pfx_get_futex_key+0x10/0x10
[  844.746936][T17160]  futex_wake+0xe7/0x4e0
[  844.746959][T17160]  ? __pfx_futex_wake+0x10/0x10
[  844.746983][T17160]  ? kmem_cache_free+0x2d1/0x4d0
[  844.746998][T17160]  ? fd_install+0x225/0x750
[  844.747010][T17160]  ? putname+0x154/0x1a0
[  844.747032][T17160]  do_futex+0x1e3/0x350
[  844.747050][T17160]  ? __pfx_do_futex+0x10/0x10
[  844.747073][T17160]  __x64_sys_futex+0x1e0/0x4c0
[  844.747093][T17160]  ? __x64_sys_openat+0x174/0x210
[  844.747114][T17160]  ? __pfx___x64_sys_futex+0x10/0x10
[  844.747146][T17160]  do_syscall_64+0xcd/0x490
[  844.747177][T17160]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  844.747192][T17160] RIP: 0033:0x7efd6c38e9a9
[  844.747205][T17160] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  844.747220][T17160] RSP: 002b:00007efd6d1280e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  844.747234][T17160] RAX: ffffffffffffffda RBX: 00007efd6c5b5fa8 RCX: 00007efd6c38e9a9
[  844.747244][T17160] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007efd6c5b5fac
[  844.747253][T17160] RBP: 00007efd6c5b5fa0 R08: 00007efd6d129000 R09: 0000000000000000
[  844.747263][T17160] R10: 0000000000000008 R11: 0000000000000246 R12: 00007efd6c5b5fac
[  844.747272][T17160] R13: 0000000000000000 R14: 00007ffd35c85480 R15: 00007ffd35c85568
[  844.747291][T17160]  </TASK>
[  846.556141][T17190] FAULT_INJECTION: forcing a failure.
[  846.556141][T17190] name failslab, interval 1, probability 0, space 0, times 0
[  846.621109][T17190] CPU: 0 UID: 0 PID: 17190 Comm: syz.2.2354 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[  846.621134][T17190] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  846.621144][T17190] Call Trace:
[  846.621150][T17190]  <TASK>
[  846.621157][T17190]  dump_stack_lvl+0x16c/0x1f0
[  846.621183][T17190]  should_fail_ex+0x512/0x640
[  846.621203][T17190]  ? __kvmalloc_node_noprof+0x124/0x620
[  846.621221][T17190]  should_failslab+0xc2/0x120
[  846.621241][T17190]  __kvmalloc_node_noprof+0x137/0x620
[  846.621256][T17190]  ? __pfx_net_ctl_permissions+0x10/0x10
[  846.621277][T17190]  ? proc_sys_call_handler+0x281/0x570
[  846.621300][T17190]  ? proc_sys_call_handler+0x281/0x570
[  846.621317][T17190]  proc_sys_call_handler+0x281/0x570
[  846.621336][T17190]  ? __pfx_proc_sys_call_handler+0x10/0x10
[  846.621356][T17190]  ? splice_from_pipe_next+0x1f8/0x5d0
[  846.621373][T17190]  iter_file_splice_write+0x91c/0x1150
[  846.621399][T17190]  ? __pfx_iter_file_splice_write+0x10/0x10
[  846.621417][T17190]  ? __pfx_copy_splice_read+0x10/0x10
[  846.621449][T17190]  ? __pfx_iter_file_splice_write+0x10/0x10
[  846.621465][T17190]  direct_splice_actor+0x18f/0x6c0
[  846.621481][T17190]  splice_direct_to_actor+0x342/0xa30
[  846.621505][T17190]  ? __pfx_direct_splice_actor+0x10/0x10
[  846.621522][T17190]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  846.621551][T17190]  do_splice_direct+0x174/0x240
[  846.621573][T17190]  ? __pfx_do_splice_direct+0x10/0x10
[  846.621597][T17190]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  846.621622][T17190]  ? rw_verify_area+0xcf/0x680
[  846.621646][T17190]  do_sendfile+0xb06/0xe50
[  846.621663][T17190]  ? __pfx_do_sendfile+0x10/0x10
[  846.621677][T17190]  ? __sys_sendmsg+0x18c/0x220
[  846.621699][T17190]  ? __x64_sys_futex+0x1e0/0x4c0
[  846.621717][T17190]  ? __x64_sys_futex+0x1e9/0x4c0
[  846.621737][T17190]  __x64_sys_sendfile64+0x1d8/0x220
[  846.621757][T17190]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  846.621791][T17190]  do_syscall_64+0xcd/0x490
[  846.621814][T17190]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  846.621829][T17190] RIP: 0033:0x7efd6c38e9a9
[  846.621842][T17190] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  846.621857][T17190] RSP: 002b:00007efd6d128038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  846.621872][T17190] RAX: ffffffffffffffda RBX: 00007efd6c5b5fa0 RCX: 00007efd6c38e9a9
[  846.621882][T17190] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 000000000000000a
[  846.621891][T17190] RBP: 00007efd6c410d69 R08: 0000000000000000 R09: 0000000000000000
[  846.621900][T17190] R10: 0000000000000048 R11: 0000000000000246 R12: 0000000000000000
[  846.621909][T17190] R13: 0000000000000000 R14: 00007efd6c5b5fa0 R15: 00007ffd35c85568
[  846.621929][T17190]  </TASK>
[  848.513990][   T51] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260
[  848.514027][   T51] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260
[  848.530712][   T51] Bluetooth: hci0: Unknown advertising packet type: 0x7f
[  848.530744][   T51] Bluetooth: hci0: adv larger than maximum supported
[  848.538000][   T51] Bluetooth: hci0: adv larger than maximum supported
[  848.544934][   T51] Bluetooth: hci0: Malformed LE Event: 0x0d
[  848.693031][   T51] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260
[  848.693070][   T51] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260
[  848.707893][   T51] Bluetooth: hci0: Unknown advertising packet type: 0x7f
[  848.707928][   T51] Bluetooth: hci0: adv larger than maximum supported
[  848.715180][   T51] Bluetooth: hci0: adv larger than maximum supported
[  848.721978][   T51] Bluetooth: hci0: Malformed LE Event: 0x0d
[  848.781966][   T36] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  848.853988][T13044] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  848.865040][T13044] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  848.873304][T13044] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  848.882363][T13044] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  848.890151][T13044] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  849.038891][   T36] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  849.271796][   T36] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  849.748189][   T36] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  850.220316][   T36] bridge_slave_1: left allmulticast mode
[  850.226265][   T36] bridge_slave_1: left promiscuous mode
[  850.240844][   T36] bridge0: port 2(bridge_slave_1) entered disabled state
[  850.280283][   T36] bridge_slave_0: left allmulticast mode
[  850.289032][   T36] bridge_slave_0: left promiscuous mode
[  850.295846][   T36] bridge0: port 1(bridge_slave_0) entered disabled state
[  850.918846][T13044] Bluetooth: hci1: command tx timeout
[  851.534259][T17256] FAULT_INJECTION: forcing a failure.
[  851.534259][T17256] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  851.547626][T17256] CPU: 0 UID: 0 PID: 17256 Comm: syz.0.2366 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[  851.547662][T17256] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  851.547672][T17256] Call Trace:
[  851.547677][T17256]  <TASK>
[  851.547684][T17256]  dump_stack_lvl+0x16c/0x1f0
[  851.547709][T17256]  should_fail_ex+0x512/0x640
[  851.547732][T17256]  _copy_to_user+0x32/0xd0
[  851.547754][T17256]  fs_name+0x172/0x220
[  851.547789][T17256]  __x64_sys_sysfs+0xbf/0x1a0
[  851.547808][T17256]  do_syscall_64+0xcd/0x490
[  851.547829][T17256]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  851.547844][T17256] RIP: 0033:0x7f659ab8e9a9
[  851.547857][T17256] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  851.547872][T17256] RSP: 002b:00007f659b9a7038 EFLAGS: 00000246 ORIG_RAX: 000000000000008b
[  851.547887][T17256] RAX: ffffffffffffffda RBX: 00007f659adb5fa0 RCX: 00007f659ab8e9a9
[  851.547896][T17256] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000002
[  851.547905][T17256] RBP: 00007f659ac10d69 R08: 0000000000000000 R09: 0000000000000000
[  851.547914][T17256] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  851.547922][T17256] R13: 0000000000000000 R14: 00007f659adb5fa0 R15: 00007ffc091de0f8
[  851.547940][T17256]  </TASK>
[  851.865948][   T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  851.903434][   T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  851.951630][   T36] bond0 (unregistering): Released all slaves
[  852.368314][T17225] chnl_net:caif_netlink_parms(): no params data found
[  853.008742][T13044] Bluetooth: hci1: command tx timeout
[  853.167047][   T36] hsr_slave_0: left promiscuous mode
[  853.182826][   T36] hsr_slave_1: left promiscuous mode
[  853.200018][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  853.211758][   T36] batman_adv: batadv0: Removing interface: batadv_slave_0
[  853.269081][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  853.286997][   T36] batman_adv: batadv0: Removing interface: batadv_slave_1
[  853.366436][   T36] veth1_macvtap: left promiscuous mode
[  853.382304][   T36] veth0_macvtap: left promiscuous mode
[  853.390338][   T36] veth1_vlan: left promiscuous mode
[  853.395825][   T36] veth0_vlan: left promiscuous mode
[  853.461886][T13044] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260
[  853.461925][T13044] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260
[  853.479205][T13044] Bluetooth: hci2: Unknown advertising packet type: 0x7f
[  853.479242][T13044] Bluetooth: hci2: adv larger than maximum supported
[  853.488494][T13044] Bluetooth: hci2: adv larger than maximum supported
[  853.495325][T13044] Bluetooth: hci2: Malformed LE Event: 0x0d
[  853.641359][T13044] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260
[  853.641397][T13044] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260
[  853.656428][T13044] Bluetooth: hci2: Unknown advertising packet type: 0x7f
[  853.656468][T13044] Bluetooth: hci2: adv larger than maximum supported
[  853.664766][T13044] Bluetooth: hci2: adv larger than maximum supported
[  853.671622][T13044] Bluetooth: hci2: Malformed LE Event: 0x0d
[  853.863814][   T36] team0 (unregistering): Port device team_slave_1 removed
[  853.906808][   T36] team0 (unregistering): Port device team_slave_0 removed
[  854.384647][T17225] bridge0: port 1(bridge_slave_0) entered blocking state
[  854.395915][T17225] bridge0: port 1(bridge_slave_0) entered disabled state
[  854.404790][T17225] bridge_slave_0: entered allmulticast mode
[  854.412603][T17225] bridge_slave_0: entered promiscuous mode
[  854.437311][T17225] bridge0: port 2(bridge_slave_1) entered blocking state
[  854.447590][T17225] bridge0: port 2(bridge_slave_1) entered disabled state
[  854.455119][T17225] bridge_slave_1: entered allmulticast mode
[  854.464143][T17225] bridge_slave_1: entered promiscuous mode
[  854.605818][T17225] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  854.675599][T17225] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  854.935285][T17225] team0: Port device team_slave_0 added
[  854.979933][T17225] team0: Port device team_slave_1 added
[  855.078859][T13044] Bluetooth: hci1: command tx timeout
[  855.092280][T17225] batman_adv: batadv0: Adding interface: batadv_slave_0
[  855.116841][T17225] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  855.143676][T17225] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  855.165971][T17225] batman_adv: batadv0: Adding interface: batadv_slave_1
[  855.174322][T17225] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  855.272152][T17225] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  855.658943][T17225] hsr_slave_0: entered promiscuous mode
[  855.667141][T17225] hsr_slave_1: entered promiscuous mode
[  855.674809][T17225] debugfs: 'hsr0' already exists in 'hsr'
[  855.689098][T17225] Cannot create hsr debugfs directory
[  856.258335][T17331] FAULT_INJECTION: forcing a failure.
[  856.258335][T17331] name fail_futex, interval 1, probability 0, space 0, times 0
[  856.272070][T17331] CPU: 1 UID: 0 PID: 17331 Comm: syz.3.2374 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[  856.272105][T17331] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  856.272121][T17331] Call Trace:
[  856.272129][T17331]  <TASK>
[  856.272140][T17331]  dump_stack_lvl+0x16c/0x1f0
[  856.272178][T17331]  should_fail_ex+0x512/0x640
[  856.272218][T17331]  get_futex_key+0x1d0/0x1540
[  856.272254][T17331]  ? __pfx_get_futex_key+0x10/0x10
[  856.272285][T17331]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  856.272335][T17331]  futex_wake+0xe7/0x4e0
[  856.272369][T17331]  ? do_splice_direct+0x1b4/0x240
[  856.272411][T17331]  ? __pfx_futex_wake+0x10/0x10
[  856.272454][T17331]  ? rw_verify_area+0xcf/0x680
[  856.272495][T17331]  do_futex+0x1e3/0x350
[  856.272524][T17331]  ? __pfx_do_futex+0x10/0x10
[  856.272555][T17331]  ? __pfx_do_sendfile+0x10/0x10
[  856.272579][T17331]  ? __sys_sendmsg+0x18c/0x220
[  856.272610][T17331]  __x64_sys_futex+0x1e0/0x4c0
[  856.272647][T17331]  ? __pfx___x64_sys_futex+0x10/0x10
[  856.272677][T17331]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  856.272721][T17331]  do_syscall_64+0xcd/0x490
[  856.272755][T17331]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  856.272781][T17331] RIP: 0033:0x7fc212d8e9a9
[  856.272803][T17331] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  856.272828][T17331] RSP: 002b:00007fc213c2d0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  856.272853][T17331] RAX: ffffffffffffffda RBX: 00007fc212fb5fa8 RCX: 00007fc212d8e9a9
[  856.272872][T17331] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fc212fb5fac
[  856.272888][T17331] RBP: 00007fc212fb5fa0 R08: 00007fc213c2e000 R09: 0000000000000000
[  856.272905][T17331] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007fc212fb5fac
[  856.272921][T17331] R13: 0000000000000000 R14: 00007ffcbd581fd0 R15: 00007ffcbd5820b8
[  856.272964][T17331]  </TASK>
[  857.160001][T13044] Bluetooth: hci1: command tx timeout
[  858.130819][T17225] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  858.187594][T17225] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  858.231002][T17225] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  858.290107][T17225] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  858.799553][T17225] 8021q: adding VLAN 0 to HW filter on device bond0
[  859.036603][T17225] 8021q: adding VLAN 0 to HW filter on device team0
[  859.083957][   T36] bridge0: port 1(bridge_slave_0) entered blocking state
[  859.091219][   T36] bridge0: port 1(bridge_slave_0) entered forwarding state
[  859.604364][ T2911] bridge0: port 2(bridge_slave_1) entered blocking state
[  859.611703][ T2911] bridge0: port 2(bridge_slave_1) entered forwarding state
[  860.536528][T13044] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260
[  860.536564][T13044] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260
[  860.554514][T13044] Bluetooth: hci0: Unknown advertising packet type: 0x7f
[  860.554549][T13044] Bluetooth: hci0: adv larger than maximum supported
[  860.561886][T13044] Bluetooth: hci0: adv larger than maximum supported
[  860.568894][T13044] Bluetooth: hci0: Malformed LE Event: 0x0d
[  860.710497][T13044] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260
[  860.710535][T13044] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260
[  860.726060][T13044] Bluetooth: hci0: Unknown advertising packet type: 0x7f
[  860.726079][T13044] Bluetooth: hci0: adv larger than maximum supported
[  860.733573][T13044] Bluetooth: hci0: adv larger than maximum supported
[  860.740544][T13044] Bluetooth: hci0: Malformed LE Event: 0x0d
[  860.817752][T17225] 8021q: adding VLAN 0 to HW filter on device batadv0
[  861.395384][T17225] veth0_vlan: entered promiscuous mode
[  861.410134][T17225] veth1_vlan: entered promiscuous mode
[  861.434872][T17434] FAULT_INJECTION: forcing a failure.
[  861.434872][T17434] name failslab, interval 1, probability 0, space 0, times 0
[  861.486975][T17434] CPU: 0 UID: 0 PID: 17434 Comm: syz.3.2384 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[  861.487013][T17434] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  861.487030][T17434] Call Trace:
[  861.487039][T17434]  <TASK>
[  861.487049][T17434]  dump_stack_lvl+0x16c/0x1f0
[  861.487091][T17434]  should_fail_ex+0x512/0x640
[  861.487123][T17434]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  861.487155][T17434]  should_failslab+0xc2/0x120
[  861.487188][T17434]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  861.487217][T17434]  ? security_file_alloc+0x34/0x2b0
[  861.487245][T17434]  security_file_alloc+0x34/0x2b0
[  861.487269][T17434]  init_file+0x93/0x4c0
[  861.487300][T17434]  alloc_empty_file+0x73/0x1e0
[  861.487331][T17434]  path_openat+0xda/0x2cb0
[  861.487354][T17434]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  861.487395][T17434]  ? __pfx_path_openat+0x10/0x10
[  861.487427][T17434]  ? __lock_acquire+0xb8a/0x1c90
[  861.487466][T17434]  do_filp_open+0x20b/0x470
[  861.487493][T17434]  ? __pfx_do_filp_open+0x10/0x10
[  861.487543][T17434]  ? alloc_fd+0x471/0x7d0
[  861.487575][T17434]  do_sys_openat2+0x11b/0x1d0
[  861.487611][T17434]  ? __pfx_do_sys_openat2+0x10/0x10
[  861.487647][T17434]  ? __sys_sendmsg+0x18c/0x220
[  861.487691][T17434]  __x64_sys_openat+0x174/0x210
[  861.487727][T17434]  ? __pfx___x64_sys_openat+0x10/0x10
[  861.487786][T17434]  do_syscall_64+0xcd/0x490
[  861.487826][T17434]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  861.487853][T17434] RIP: 0033:0x7fc212d8e9a9
[  861.487876][T17434] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  861.487902][T17434] RSP: 002b:00007fc213c2d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  861.487928][T17434] RAX: ffffffffffffffda RBX: 00007fc212fb5fa0 RCX: 00007fc212d8e9a9
[  861.487947][T17434] RDX: 0000000000002000 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  861.487965][T17434] RBP: 00007fc212e10d69 R08: 0000000000000000 R09: 0000000000000000
[  861.487981][T17434] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  861.487997][T17434] R13: 0000000000000000 R14: 00007fc212fb5fa0 R15: 00007ffcbd5820b8
[  861.488031][T17434]  </TASK>
[  862.072268][T17225] veth0_macvtap: entered promiscuous mode
[  862.124028][T17225] veth1_macvtap: entered promiscuous mode
[  862.203744][T17225] batman_adv: batadv0: Interface activated: batadv_slave_0
[  862.264973][T17225] batman_adv: batadv0: Interface activated: batadv_slave_1
[  862.317166][T17225] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  862.364507][T17225] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  862.385552][T17225] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  862.411577][T17225] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  862.920337][ T3559] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  863.017666][ T3559] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  863.174449][ T2911] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  863.216934][ T2911] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  863.494144][T17470] FAULT_INJECTION: forcing a failure.
[  863.494144][T17470] name fail_futex, interval 1, probability 0, space 0, times 0
[  863.537587][T17470] CPU: 0 UID: 0 PID: 17470 Comm: syz.1.2358 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[  863.537627][T17470] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  863.537644][T17470] Call Trace:
[  863.537653][T17470]  <TASK>
[  863.537664][T17470]  dump_stack_lvl+0x16c/0x1f0
[  863.537702][T17470]  should_fail_ex+0x512/0x640
[  863.537739][T17470]  get_futex_key+0x1d0/0x1540
[  863.537773][T17470]  ? __pfx_get_futex_key+0x10/0x10
[  863.537823][T17470]  futex_wake+0xe7/0x4e0
[  863.537865][T17470]  ? __pfx_futex_wake+0x10/0x10
[  863.537900][T17470]  ? kmem_cache_free+0x2d1/0x4d0
[  863.537925][T17470]  ? fd_install+0x225/0x750
[  863.537948][T17470]  ? putname+0x154/0x1a0
[  863.537983][T17470]  do_futex+0x1e3/0x350
[  863.538015][T17470]  ? __pfx_do_futex+0x10/0x10
[  863.538055][T17470]  __x64_sys_futex+0x1e0/0x4c0
[  863.538090][T17470]  ? __x64_sys_openat+0x174/0x210
[  863.538123][T17470]  ? __pfx___x64_sys_futex+0x10/0x10
[  863.538170][T17470]  do_syscall_64+0xcd/0x490
[  863.538201][T17470]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  863.538224][T17470] RIP: 0033:0x7fc9cbf8e9a9
[  863.538245][T17470] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  863.538269][T17470] RSP: 002b:00007fc9ccdd40e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  863.538293][T17470] RAX: ffffffffffffffda RBX: 00007fc9cc1b5fa8 RCX: 00007fc9cbf8e9a9
[  863.538309][T17470] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fc9cc1b5fac
[  863.538325][T17470] RBP: 00007fc9cc1b5fa0 R08: 00007fc9ccdd5000 R09: 0000000000000000
[  863.538341][T17470] R10: 0000000000000008 R11: 0000000000000246 R12: 00007fc9cc1b5fac
[  863.538367][T17470] R13: 0000000000000000 R14: 00007ffe2d421660 R15: 00007ffe2d421748
[  863.538401][T17470]  </TASK>
[  865.157225][T17508] FAULT_INJECTION: forcing a failure.
[  865.157225][T17508] name failslab, interval 1, probability 0, space 0, times 0
[  865.171472][T17508] CPU: 1 UID: 0 PID: 17508 Comm: syz.1.2394 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[  865.171511][T17508] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  865.171527][T17508] Call Trace:
[  865.171545][T17508]  <TASK>
[  865.171556][T17508]  dump_stack_lvl+0x16c/0x1f0
[  865.171597][T17508]  should_fail_ex+0x512/0x640
[  865.171631][T17508]  ? fs_reclaim_acquire+0xae/0x150
[  865.171673][T17508]  should_failslab+0xc2/0x120
[  865.171707][T17508]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  865.171737][T17508]  ? security_inode_alloc+0x3b/0x2b0
[  865.171778][T17508]  security_inode_alloc+0x3b/0x2b0
[  865.171813][T17508]  inode_init_always_gfp+0xce4/0x1030
[  865.171847][T17508]  alloc_inode+0x86/0x240
[  865.171879][T17508]  new_inode+0x22/0x1c0
[  865.171916][T17508]  proc_sys_make_inode+0x47/0x5c0
[  865.171952][T17508]  proc_sys_lookup+0x273/0x400
[  865.171984][T17508]  ? __pfx_proc_sys_lookup+0x10/0x10
[  865.172020][T17508]  ? lockdep_init_map_type+0x5c/0x280
[  865.172060][T17508]  ? lockdep_init_map_type+0x5c/0x280
[  865.172104][T17508]  __lookup_slow+0x251/0x460
[  865.172141][T17508]  ? __pfx___lookup_slow+0x10/0x10
[  865.172200][T17508]  ? lookup_fast+0x156/0x610
[  865.172237][T17508]  ? _raw_spin_unlock+0x28/0x50
[  865.172270][T17508]  walk_component+0x353/0x5b0
[  865.172298][T17508]  link_path_walk+0x627/0xe20
[  865.172336][T17508]  path_openat+0x1b0/0x2cb0
[  865.172362][T17508]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  865.172402][T17508]  ? __pfx_path_openat+0x10/0x10
[  865.172432][T17508]  ? __lock_acquire+0xb8a/0x1c90
[  865.172473][T17508]  do_filp_open+0x20b/0x470
[  865.172501][T17508]  ? __pfx_do_filp_open+0x10/0x10
[  865.172563][T17508]  ? alloc_fd+0x471/0x7d0
[  865.172600][T17508]  do_sys_openat2+0x11b/0x1d0
[  865.172638][T17508]  ? __pfx_do_sys_openat2+0x10/0x10
[  865.172676][T17508]  ? __sys_sendmsg+0x18c/0x220
[  865.172717][T17508]  __x64_sys_openat+0x174/0x210
[  865.172753][T17508]  ? __pfx___x64_sys_openat+0x10/0x10
[  865.172804][T17508]  do_syscall_64+0xcd/0x490
[  865.172841][T17508]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  865.172867][T17508] RIP: 0033:0x7fc9cbf8e9a9
[  865.172889][T17508] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  865.172914][T17508] RSP: 002b:00007fc9ccdd4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  865.172939][T17508] RAX: ffffffffffffffda RBX: 00007fc9cc1b5fa0 RCX: 00007fc9cbf8e9a9
[  865.172957][T17508] RDX: 0000000000000202 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  865.172975][T17508] RBP: 00007fc9cc010d69 R08: 0000000000000000 R09: 0000000000000000
[  865.172991][T17508] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  865.173008][T17508] R13: 0000000000000000 R14: 00007fc9cc1b5fa0 R15: 00007ffe2d421748
[  865.173045][T17508]  </TASK>
[  865.692365][   T51] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  865.700944][   T51] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  865.709141][   T51] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  865.716779][   T51] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  865.725804][   T51] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  866.189022][   T51] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260
[  866.189062][   T51] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260
[  866.206460][   T51] Bluetooth: hci1: Unknown advertising packet type: 0x7f
[  866.216595][   T51] Bluetooth: hci1: adv larger than maximum supported
[  866.236845][   T51] Bluetooth: hci1: adv larger than maximum supported
[  866.245487][   T51] Bluetooth: hci1: Malformed LE Event: 0x0d
[  866.310324][   T51] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260
[  866.310361][   T51] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260
[  866.325158][   T51] Bluetooth: hci1: Unknown advertising packet type: 0x7f
[  866.325186][   T51] Bluetooth: hci1: adv larger than maximum supported
[  866.332263][   T51] Bluetooth: hci1: adv larger than maximum supported
[  866.340075][   T51] Bluetooth: hci1: Malformed LE Event: 0x0d
[  867.132223][T17514] chnl_net:caif_netlink_parms(): no params data found
[  867.700736][ T3559] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  867.736695][T17514] bridge0: port 1(bridge_slave_0) entered blocking state
[  867.751596][T17514] bridge0: port 1(bridge_slave_0) entered disabled state
[  867.760327][T17514] bridge_slave_0: entered allmulticast mode
[  867.768419][T17514] bridge_slave_0: entered promiscuous mode
[  867.786286][T17514] bridge0: port 2(bridge_slave_1) entered blocking state
[  867.796165][T17514] bridge0: port 2(bridge_slave_1) entered disabled state
[  867.810210][   T51] Bluetooth: hci4: command tx timeout
[  867.825234][T17514] bridge_slave_1: entered allmulticast mode
[  867.852635][T17514] bridge_slave_1: entered promiscuous mode
[  868.092831][ T3559] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  868.251367][ T3559] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  868.619943][ T3559] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  868.656297][T17555] blktrace: Concurrent blktraces are not allowed on loop2
[  868.658171][T17553] FAULT_INJECTION: forcing a failure.
[  868.658171][T17553] name fail_futex, interval 1, probability 0, space 0, times 0
[  868.676489][T17553] CPU: 1 UID: 0 PID: 17553 Comm: syz.1.2398 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[  868.676524][T17553] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  868.676537][T17553] Call Trace:
[  868.676547][T17553]  <TASK>
[  868.676556][T17553]  dump_stack_lvl+0x16c/0x1f0
[  868.676594][T17553]  should_fail_ex+0x512/0x640
[  868.676634][T17553]  get_futex_key+0x1d0/0x1540
[  868.676669][T17553]  ? __pfx_get_futex_key+0x10/0x10
[  868.676711][T17553]  futex_wake+0xe7/0x4e0
[  868.676746][T17553]  ? __pfx_futex_wake+0x10/0x10
[  868.676778][T17553]  ? kmem_cache_free+0x2d1/0x4d0
[  868.676798][T17553]  ? fd_install+0x225/0x750
[  868.676816][T17553]  ? putname+0x154/0x1a0
[  868.676844][T17553]  do_futex+0x1e3/0x350
[  868.676869][T17553]  ? __pfx_do_futex+0x10/0x10
[  868.676901][T17553]  __x64_sys_futex+0x1e0/0x4c0
[  868.676927][T17553]  ? __x64_sys_openat+0x174/0x210
[  868.676954][T17553]  ? __pfx___x64_sys_futex+0x10/0x10
[  868.676990][T17553]  do_syscall_64+0xcd/0x490
[  868.677017][T17553]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  868.677049][T17553] RIP: 0033:0x7fc9cbf8e9a9
[  868.677067][T17553] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  868.677087][T17553] RSP: 002b:00007fc9ccdd40e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  868.677106][T17553] RAX: ffffffffffffffda RBX: 00007fc9cc1b5fa8 RCX: 00007fc9cbf8e9a9
[  868.677119][T17553] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fc9cc1b5fac
[  868.677133][T17553] RBP: 00007fc9cc1b5fa0 R08: 00007fc9ccdd5000 R09: 0000000000000000
[  868.677146][T17553] R10: 0000000000000008 R11: 0000000000000246 R12: 00007fc9cc1b5fac
[  868.677159][T17553] R13: 0000000000000000 R14: 00007ffe2d421660 R15: 00007ffe2d421748
[  868.677187][T17553]  </TASK>
[  868.686315][T17514] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  869.060901][T17514] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  869.261157][T17514] team0: Port device team_slave_0 added
[  869.297534][T17563] FAULT_INJECTION: forcing a failure.
[  869.297534][T17563] name failslab, interval 1, probability 0, space 0, times 0
[  869.318335][T17563] CPU: 0 UID: 0 PID: 17563 Comm: syz.3.2402 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[  869.318374][T17563] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  869.318391][T17563] Call Trace:
[  869.318400][T17563]  <TASK>
[  869.318411][T17563]  dump_stack_lvl+0x16c/0x1f0
[  869.318451][T17563]  should_fail_ex+0x512/0x640
[  869.318484][T17563]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  869.318524][T17563]  should_failslab+0xc2/0x120
[  869.318557][T17563]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  869.318588][T17563]  ? security_file_alloc+0x34/0x2b0
[  869.318623][T17563]  security_file_alloc+0x34/0x2b0
[  869.318646][T17563]  init_file+0x93/0x4c0
[  869.318679][T17563]  alloc_empty_file+0x73/0x1e0
[  869.318712][T17563]  path_openat+0xda/0x2cb0
[  869.318736][T17563]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  869.318775][T17563]  ? __pfx_path_openat+0x10/0x10
[  869.318805][T17563]  ? __lock_acquire+0xb8a/0x1c90
[  869.318842][T17563]  do_filp_open+0x20b/0x470
[  869.318870][T17563]  ? __pfx_do_filp_open+0x10/0x10
[  869.318921][T17563]  ? alloc_fd+0x471/0x7d0
[  869.318955][T17563]  do_sys_openat2+0x11b/0x1d0
[  869.318991][T17563]  ? __pfx_do_sys_openat2+0x10/0x10
[  869.319028][T17563]  ? __sys_sendmsg+0x18c/0x220
[  869.319072][T17563]  __x64_sys_openat+0x174/0x210
[  869.319107][T17563]  ? __pfx___x64_sys_openat+0x10/0x10
[  869.319154][T17563]  do_syscall_64+0xcd/0x490
[  869.319196][T17563]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  869.319222][T17563] RIP: 0033:0x7fc212d8e9a9
[  869.319240][T17563] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  869.319266][T17563] RSP: 002b:00007fc213c2d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  869.319290][T17563] RAX: ffffffffffffffda RBX: 00007fc212fb5fa0 RCX: 00007fc212d8e9a9
[  869.319305][T17563] RDX: 0000000000002000 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  869.319321][T17563] RBP: 00007fc212e10d69 R08: 0000000000000000 R09: 0000000000000000
[  869.319336][T17563] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  869.319349][T17563] R13: 0000000000000000 R14: 00007fc212fb5fa0 R15: 00007ffcbd5820b8
[  869.319379][T17563]  </TASK>
[  869.329126][T17514] team0: Port device team_slave_1 added
[  869.878913][   T51] Bluetooth: hci4: command tx timeout
[  870.042376][T17514] batman_adv: batadv0: Adding interface: batadv_slave_0
[  870.159558][T17514] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  870.348805][T17514] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  870.360800][ T3559] bridge_slave_1: left allmulticast mode
[  870.385727][ T3559] bridge_slave_1: left promiscuous mode
[  870.410413][ T3559] bridge0: port 2(bridge_slave_1) entered disabled state
[  870.455050][ T3559] bridge_slave_0: left allmulticast mode
[  870.471598][ T3559] bridge_slave_0: left promiscuous mode
[  870.495269][ T3559] bridge0: port 1(bridge_slave_0) entered disabled state
[  871.472580][   T51] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260
[  871.472620][   T51] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260
[  871.487839][   T51] Bluetooth: hci0: Unknown advertising packet type: 0x7f
[  871.487860][   T51] Bluetooth: hci0: adv larger than maximum supported
[  871.495100][   T51] Bluetooth: hci0: adv larger than maximum supported
[  871.501875][   T51] Bluetooth: hci0: Malformed LE Event: 0x0d
[  871.549771][ T3559] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  871.580526][ T3559] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  871.593771][ T3559] bond0 (unregistering): Released all slaves
[  871.613326][T17514] batman_adv: batadv0: Adding interface: batadv_slave_1
[  871.620492][T17514] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  871.647224][T17514] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  871.672611][   T51] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260
[  871.672647][   T51] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260
[  871.687978][   T51] Bluetooth: hci0: Unknown advertising packet type: 0x7f
[  871.687999][   T51] Bluetooth: hci0: adv larger than maximum supported
[  871.695399][   T51] Bluetooth: hci0: adv larger than maximum supported
[  871.702261][   T51] Bluetooth: hci0: Malformed LE Event: 0x0d
[  871.802610][ T3559] HfR: left promiscuous mode
[  871.958854][   T51] Bluetooth: hci4: command tx timeout
[  872.025459][T17514] hsr_slave_0: entered promiscuous mode
[  872.032260][T17514] hsr_slave_1: entered promiscuous mode
[  872.043415][T17514] debugfs: 'hsr0' already exists in 'hsr'
[  872.054975][T17514] Cannot create hsr debugfs directory
[  872.352175][T17611] FAULT_INJECTION: forcing a failure.
[  872.352175][T17611] name failslab, interval 1, probability 0, space 0, times 0
[  872.388802][T17611] CPU: 0 UID: 0 PID: 17611 Comm: syz.3.2408 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[  872.388837][T17611] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  872.388851][T17611] Call Trace:
[  872.388861][T17611]  <TASK>
[  872.388871][T17611]  dump_stack_lvl+0x16c/0x1f0
[  872.388916][T17611]  should_fail_ex+0x512/0x640
[  872.388952][T17611]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  872.388983][T17611]  should_failslab+0xc2/0x120
[  872.389013][T17611]  __kmalloc_cache_noprof+0x6a/0x3e0
[  872.389037][T17611]  ? lockdep_hardirqs_on+0x7c/0x110
[  872.389066][T17611]  ? snd_seq_fifo_new+0x42/0x260
[  872.389094][T17611]  ? seq_create_client1+0x420/0x5e0
[  872.389130][T17611]  ? __pfx_snd_seq_open+0x10/0x10
[  872.389167][T17611]  snd_seq_fifo_new+0x42/0x260
[  872.389196][T17611]  snd_seq_open+0x15c/0x550
[  872.389232][T17611]  ? __pfx_snd_seq_open+0x10/0x10
[  872.389266][T17611]  snd_open+0x201/0x450
[  872.389303][T17611]  ? __pfx_snd_open+0x10/0x10
[  872.389337][T17611]  chrdev_open+0x234/0x6a0
[  872.389365][T17611]  ? __pfx_apparmor_file_open+0x10/0x10
[  872.389406][T17611]  ? __pfx_chrdev_open+0x10/0x10
[  872.389439][T17611]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  872.389474][T17611]  do_dentry_open+0x744/0x1c10
[  872.389503][T17611]  ? __pfx_chrdev_open+0x10/0x10
[  872.389539][T17611]  vfs_open+0x82/0x3f0
[  872.389579][T17611]  path_openat+0x1de4/0x2cb0
[  872.389620][T17611]  ? __pfx_path_openat+0x10/0x10
[  872.389651][T17611]  ? __lock_acquire+0xb8a/0x1c90
[  872.389693][T17611]  do_filp_open+0x20b/0x470
[  872.389722][T17611]  ? __pfx_do_filp_open+0x10/0x10
[  872.389778][T17611]  ? alloc_fd+0x471/0x7d0
[  872.389816][T17611]  do_sys_openat2+0x11b/0x1d0
[  872.389849][T17611]  ? __pfx_do_sys_openat2+0x10/0x10
[  872.389900][T17611]  __x64_sys_openat+0x174/0x210
[  872.389943][T17611]  ? __pfx___x64_sys_openat+0x10/0x10
[  872.389994][T17611]  do_syscall_64+0xcd/0x490
[  872.390030][T17611]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  872.390055][T17611] RIP: 0033:0x7fc212d8e9a9
[  872.390077][T17611] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  872.390102][T17611] RSP: 002b:00007fc213c2d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  872.390128][T17611] RAX: ffffffffffffffda RBX: 00007fc212fb5fa0 RCX: 00007fc212d8e9a9
[  872.390146][T17611] RDX: 0000000000000100 RSI: 00002000000000c0 RDI: ffffffffffffff9c
[  872.390163][T17611] RBP: 00007fc212e10d69 R08: 0000000000000000 R09: 0000000000000000
[  872.390178][T17611] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  872.390194][T17611] R13: 0000000000000000 R14: 00007fc212fb5fa0 R15: 00007ffcbd5820b8
[  872.390231][T17611]  </TASK>
[  873.212179][ T3559] hsr_slave_0: left promiscuous mode
[  873.230136][ T3559] hsr_slave_1: left promiscuous mode
[  873.236391][ T3559] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  873.243914][ T3559] batman_adv: batadv0: Removing interface: batadv_slave_0
[  873.272381][ T3559] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  873.288782][ T3559] batman_adv: batadv0: Removing interface: batadv_slave_1
[  873.346751][ T3559] veth1_macvtap: left promiscuous mode
[  873.366184][ T3559] veth0_macvtap: left promiscuous mode
[  873.397594][ T3559] veth1_vlan: left promiscuous mode
[  873.439603][ T3559] veth0_vlan: left promiscuous mode
[  874.047058][   T51] Bluetooth: hci4: command tx timeout
[  874.705670][ T3559] team0 (unregistering): Port device team_slave_1 removed
[  874.787466][ T3559] team0 (unregistering): Port device team_slave_0 removed
[  875.333780][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  875.340262][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  875.492209][T17617] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2411'.
[  875.741851][T17646] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2420'.
[  877.725351][T17514] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  877.789285][T17514] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  877.877862][T17514] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  877.933920][T17514] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  878.389256][   T51] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260
[  878.389293][   T51] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260
[  878.404236][   T51] Bluetooth: hci2: Unknown advertising packet type: 0x7f
[  878.404269][   T51] Bluetooth: hci2: adv larger than maximum supported
[  878.411418][   T51] Bluetooth: hci2: adv larger than maximum supported
[  878.418199][   T51] Bluetooth: hci2: Malformed LE Event: 0x0d
[  878.898335][T17514] 8021q: adding VLAN 0 to HW filter on device bond0
[  878.910505][   T51] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260
[  878.910544][   T51] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260
[  878.925953][   T51] Bluetooth: hci2: Unknown advertising packet type: 0x7f
[  878.925976][   T51] Bluetooth: hci2: adv larger than maximum supported
[  878.933832][   T51] Bluetooth: hci2: adv larger than maximum supported
[  878.940720][   T51] Bluetooth: hci2: Malformed LE Event: 0x0d
[  879.041522][T17514] 8021q: adding VLAN 0 to HW filter on device team0
[  879.075152][T10485] bridge0: port 1(bridge_slave_0) entered blocking state
[  879.082413][T10485] bridge0: port 1(bridge_slave_0) entered forwarding state
[  879.552432][   T36] bridge0: port 2(bridge_slave_1) entered blocking state
[  879.559796][   T36] bridge0: port 2(bridge_slave_1) entered forwarding state
[  879.740724][T17514] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  879.768796][T17514] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  879.945520][T17731] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2423'.
[  880.603605][T17514] 8021q: adding VLAN 0 to HW filter on device batadv0
[  880.740429][T17514] veth0_vlan: entered promiscuous mode
[  880.765256][T17514] veth1_vlan: entered promiscuous mode
[  880.812987][T17514] veth0_macvtap: entered promiscuous mode
[  880.834051][T17514] veth1_macvtap: entered promiscuous mode
[  880.876337][T17514] batman_adv: batadv0: Interface activated: batadv_slave_0
[  880.913031][T17514] batman_adv: batadv0: Interface activated: batadv_slave_1
[  880.936761][T17514] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  880.963150][T17514] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  880.976561][T17514] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  880.986979][T17514] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  881.363863][   T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  881.382604][   T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  881.479534][T10484] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  881.539185][T10484] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  882.466440][   T51] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260
[  882.466466][   T51] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260
[  882.481809][   T51] Bluetooth: hci1: Unknown advertising packet type: 0x7f
[  882.481830][   T51] Bluetooth: hci1: adv larger than maximum supported
[  882.489071][   T51] Bluetooth: hci1: adv larger than maximum supported
[  882.496145][   T51] Bluetooth: hci1: Malformed LE Event: 0x0d
[  883.082177][   T51] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260
[  883.082216][   T51] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260
[  883.097020][   T51] Bluetooth: hci1: Unknown advertising packet type: 0x7f
[  883.097068][   T51] Bluetooth: hci1: Malformed LE Event: 0x0d
[  883.358090][T17806] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  883.370219][T17806] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  883.378903][T17806] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  883.416885][T17806] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  883.428458][T17806] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  883.549299][   T51] Bluetooth: hci4: unexpected event 0x3e length: 726 > 260
[  883.549339][   T51] Bluetooth: hci4: unexpected subevent 0x0d length: 725 > 260
[  883.565300][   T51] bt_err_ratelimited: 2 callbacks suppressed
[  883.565319][   T51] Bluetooth: hci4: Unknown advertising packet type: 0x7f
[  883.573064][   T51] Bluetooth: hci4: adv larger than maximum supported
[  883.581714][   T51] Bluetooth: hci4: adv larger than maximum supported
[  883.598593][   T51] Bluetooth: hci4: Malformed LE Event: 0x0d
[  884.029213][   T51] Bluetooth: hci4: unexpected event 0x3e length: 726 > 260
[  884.029238][   T51] Bluetooth: hci4: unexpected subevent 0x0d length: 725 > 260
[  884.045031][   T51] Bluetooth: hci4: Unknown advertising packet type: 0x7f
[  884.045063][   T51] Bluetooth: hci4: adv larger than maximum supported
[  884.058848][   T51] Bluetooth: hci4: adv larger than maximum supported
[  884.065678][   T51] Bluetooth: hci4: Malformed LE Event: 0x0d
[  884.080459][ T5843] ------------[ cut here ]------------
[  884.086080][ T5843] ODEBUG: free active (active state 0) object: ffff88807b275318 object type: timer_list hint: hci_devcd_timeout+0x0/0x2e0
[  884.128182][T17815] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2428'.
[  884.148467][ T5843] WARNING: CPU: 0 PID: 5843 at lib/debugobjects.c:612 debug_print_object+0x1a2/0x2b0
[  884.159276][ T5843] Modules linked in:
[  884.163230][ T5843] CPU: 0 UID: 0 PID: 5843 Comm: syz-executor Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  884.175988][ T5843] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  884.186579][ T5843] RIP: 0010:debug_print_object+0x1a2/0x2b0
[  884.192586][ T5843] Code: fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 54 41 56 48 8b 14 dd c0 ba 15 8c 4c 89 e6 48 c7 c7 40 af 15 8c e8 ff 69 97 fc 90 <0f> 0b 90 90 58 83 05 a6 67 c6 0b 01 48 83 c4 18 5b 5d 41 5c 41 5d
[  884.213092][ T5843] RSP: 0018:ffffc9000424f768 EFLAGS: 00010286
[  884.219578][ T5843] RAX: 0000000000000000 RBX: 0000000000000003 RCX: ffffffff817ab118
[  884.227553][ T5843] RDX: ffff888030680000 RSI: ffffffff817ab125 RDI: 0000000000000001
[  884.235593][ T5843] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000
[  884.243651][ T5843] R10: 0000000000000001 R11: 000000000001eab8 R12: ffffffff8c15b5e0
[  884.251863][ T5843] R13: ffffffff8baff0c0 R14: ffffffff8a948540 R15: ffffc9000424f868
[  884.260262][ T5843] FS:  0000000000000000(0000) GS:ffff888124706000(0000) knlGS:0000000000000000
[  884.269589][ T5843] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  884.276352][ T5843] CR2: 0000001b313ceff8 CR3: 0000000032472000 CR4: 00000000003526f0
[  884.284353][ T5843] Call Trace:
[  884.287623][ T5843]  <TASK>
[  884.290751][ T5843]  ? __pfx_hci_devcd_timeout+0x10/0x10
[  884.296211][ T5843]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  884.302143][ T5843]  debug_check_no_obj_freed+0x4b7/0x600
[  884.307693][ T5843]  ? __pfx_debug_check_no_obj_freed+0x10/0x10
[  884.313796][ T5843]  ? rcu_is_watching+0x12/0xc0
[  884.318576][ T5843]  ? kmem_cache_free+0x2d1/0x4d0
[  884.323544][ T5843]  kfree+0x28f/0x4d0
[  884.327439][ T5843]  ? hci_release_dev+0x4d8/0x600
[  884.332427][ T5843]  hci_release_dev+0x4d8/0x600
[  884.337207][ T5843]  ? __pfx_hci_release_dev+0x10/0x10
[  884.342553][ T5843]  ? rcu_is_watching+0x12/0xc0
[  884.347350][ T5843]  ? kfree+0x24f/0x4d0
[  884.351464][ T5843]  bt_host_release+0x6a/0xb0
[  884.356077][ T5843]  ? __pfx_bt_host_release+0x10/0x10
[  884.361872][ T5843]  device_release+0xa4/0x240
[  884.366478][ T5843]  kobject_put+0x1e7/0x5a0
[  884.371275][ T5843]  ? __pfx_vhci_release+0x10/0x10
[  884.376308][ T5843]  put_device+0x1f/0x30
[  884.380484][ T5843]  vhci_release+0x81/0xf0
[  884.384816][ T5843]  __fput+0x3ff/0xb70
[  884.388902][ T5843]  task_work_run+0x150/0x240
[  884.393673][ T5843]  ? __pfx_task_work_run+0x10/0x10
[  884.398819][ T5843]  do_exit+0x86c/0x2bd0
[  884.402987][ T5843]  ? __pfx_do_exit+0x10/0x10
[  884.407683][ T5843]  ? do_raw_spin_lock+0x12c/0x2b0
[  884.412806][ T5843]  ? find_held_lock+0x2b/0x80
[  884.417594][ T5843]  do_group_exit+0xd3/0x2a0
[  884.422212][ T5843]  get_signal+0x2673/0x26d0
[  884.426731][ T5843]  ? __pfx_get_signal+0x10/0x10
[  884.431636][ T5843]  arch_do_signal_or_restart+0x8f/0x790
[  884.437202][ T5843]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  884.443475][ T5843]  ? ksys_read+0x1ac/0x250
[  884.447916][ T5843]  ? __pfx_ksys_read+0x10/0x10
[  884.452772][ T5843]  exit_to_user_mode_loop+0x84/0x110
[  884.458062][ T5843]  do_syscall_64+0x3f6/0x490
[  884.463406][ T5843]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  884.469920][ T5843] RIP: 0033:0x7efd6c38d3bc
[  884.474358][ T5843] Code: Unable to access opcode bytes at 0x7efd6c38d392.
[  884.481433][ T5843] RSP: 002b:00007ffd35c858c0 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  884.489885][ T5843] RAX: fffffffffffffe00 RBX: 0000000000000003 RCX: 00007efd6c38d3bc
[  884.497856][ T5843] RDX: 0000000000000030 RSI: 00007ffd35c85980 RDI: 00000000000000f9
[  884.505882][ T5843] RBP: 00007ffd35c8592c R08: 0000000000000000 R09: 0079746972756365
[  884.514073][ T5843] R10: 00007efd6c5837e0 R11: 0000000000000246 R12: 0000000000000259
[  884.522253][ T5843] R13: 00000000000927c0 R14: 00000000000d7662 R15: 00007ffd35c85980
[  884.530334][ T5843]  </TASK>
[  884.533423][ T5843] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  884.540950][ T5843] CPU: 0 UID: 0 PID: 5843 Comm: syz-executor Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[  884.552970][ T5843] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  884.563037][ T5843] Call Trace:
[  884.566323][ T5843]  <TASK>
[  884.569265][ T5843]  dump_stack_lvl+0x3d/0x1f0
[  884.573879][ T5843]  panic+0x71c/0x800
[  884.577789][ T5843]  ? __pfx_panic+0x10/0x10
[  884.582221][ T5843]  ? show_trace_log_lvl+0x29b/0x3e0
[  884.587527][ T5843]  ? check_panic_on_warn+0x1f/0xb0
[  884.592651][ T5843]  ? debug_print_object+0x1a2/0x2b0
[  884.597917][ T5843]  check_panic_on_warn+0xab/0xb0
[  884.602874][ T5843]  __warn+0xf6/0x3c0
[  884.606773][ T5843]  ? debug_print_object+0x1a2/0x2b0
[  884.611993][ T5843]  report_bug+0x3c3/0x580
[  884.616348][ T5843]  ? debug_print_object+0x1a2/0x2b0
[  884.621608][ T5843]  handle_bug+0x184/0x210
[  884.625967][ T5843]  exc_invalid_op+0x17/0x50
[  884.630506][ T5843]  asm_exc_invalid_op+0x1a/0x20
[  884.635375][ T5843] RIP: 0010:debug_print_object+0x1a2/0x2b0
[  884.641202][ T5843] Code: fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 54 41 56 48 8b 14 dd c0 ba 15 8c 4c 89 e6 48 c7 c7 40 af 15 8c e8 ff 69 97 fc 90 <0f> 0b 90 90 58 83 05 a6 67 c6 0b 01 48 83 c4 18 5b 5d 41 5c 41 5d
[  884.660825][ T5843] RSP: 0018:ffffc9000424f768 EFLAGS: 00010286
[  884.666917][ T5843] RAX: 0000000000000000 RBX: 0000000000000003 RCX: ffffffff817ab118
[  884.674932][ T5843] RDX: ffff888030680000 RSI: ffffffff817ab125 RDI: 0000000000000001
[  884.683020][ T5843] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000
[  884.691092][ T5843] R10: 0000000000000001 R11: 000000000001eab8 R12: ffffffff8c15b5e0
[  884.699066][ T5843] R13: ffffffff8baff0c0 R14: ffffffff8a948540 R15: ffffc9000424f868
[  884.707040][ T5843]  ? __pfx_hci_devcd_timeout+0x10/0x10
[  884.712529][ T5843]  ? __warn_printk+0x198/0x350
[  884.717324][ T5843]  ? __warn_printk+0x1a5/0x350
[  884.722115][ T5843]  ? debug_print_object+0x1a1/0x2b0
[  884.727342][ T5843]  ? __pfx_hci_devcd_timeout+0x10/0x10
[  884.732808][ T5843]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  884.738649][ T5843]  debug_check_no_obj_freed+0x4b7/0x600
[  884.744228][ T5843]  ? __pfx_debug_check_no_obj_freed+0x10/0x10
[  884.750478][ T5843]  ? rcu_is_watching+0x12/0xc0
[  884.755343][ T5843]  ? kmem_cache_free+0x2d1/0x4d0
[  884.760287][ T5843]  kfree+0x28f/0x4d0
[  884.764186][ T5843]  ? hci_release_dev+0x4d8/0x600
[  884.769135][ T5843]  hci_release_dev+0x4d8/0x600
[  884.773906][ T5843]  ? __pfx_hci_release_dev+0x10/0x10
[  884.779317][ T5843]  ? rcu_is_watching+0x12/0xc0
[  884.784177][ T5843]  ? kfree+0x24f/0x4d0
[  884.788250][ T5843]  bt_host_release+0x6a/0xb0
[  884.792968][ T5843]  ? __pfx_bt_host_release+0x10/0x10
[  884.798265][ T5843]  device_release+0xa4/0x240
[  884.802862][ T5843]  kobject_put+0x1e7/0x5a0
[  884.807286][ T5843]  ? __pfx_vhci_release+0x10/0x10
[  884.812328][ T5843]  put_device+0x1f/0x30
[  884.816487][ T5843]  vhci_release+0x81/0xf0
[  884.820824][ T5843]  __fput+0x3ff/0xb70
[  884.824819][ T5843]  task_work_run+0x150/0x240
[  884.829424][ T5843]  ? __pfx_task_work_run+0x10/0x10
[  884.834765][ T5843]  do_exit+0x86c/0x2bd0
[  884.838947][ T5843]  ? __pfx_do_exit+0x10/0x10
[  884.843648][ T5843]  ? do_raw_spin_lock+0x12c/0x2b0
[  884.848673][ T5843]  ? find_held_lock+0x2b/0x80
[  884.853630][ T5843]  do_group_exit+0xd3/0x2a0
[  884.858148][ T5843]  get_signal+0x2673/0x26d0
[  884.862669][ T5843]  ? __pfx_get_signal+0x10/0x10
[  884.867540][ T5843]  arch_do_signal_or_restart+0x8f/0x790
[  884.873104][ T5843]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  884.879277][ T5843]  ? ksys_read+0x1ac/0x250
[  884.883727][ T5843]  ? __pfx_ksys_read+0x10/0x10
[  884.888500][ T5843]  exit_to_user_mode_loop+0x84/0x110
[  884.893889][ T5843]  do_syscall_64+0x3f6/0x490
[  884.898490][ T5843]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  884.904383][ T5843] RIP: 0033:0x7efd6c38d3bc
[  884.908796][ T5843] Code: Unable to access opcode bytes at 0x7efd6c38d392.
[  884.915811][ T5843] RSP: 002b:00007ffd35c858c0 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  884.924234][ T5843] RAX: fffffffffffffe00 RBX: 0000000000000003 RCX: 00007efd6c38d3bc
[  884.932306][ T5843] RDX: 0000000000000030 RSI: 00007ffd35c85980 RDI: 00000000000000f9
[  884.940277][ T5843] RBP: 00007ffd35c8592c R08: 0000000000000000 R09: 0079746972756365
[  884.948245][ T5843] R10: 00007efd6c5837e0 R11: 0000000000000246 R12: 0000000000000259
[  884.956221][ T5843] R13: 00000000000927c0 R14: 00000000000d7662 R15: 00007ffd35c85980
[  884.964291][ T5843]  </TASK>
[  884.967599][ T5843] Kernel Offset: disabled
[  884.971981][ T5843] Rebooting in 86400 seconds..