last executing test programs:

8.225366391s ago: executing program 3 (id=610):
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/fs/ext4/sda1/mb_groups\x00', 0x40102, 0x0)
mmap$auto(0x0, 0x7f, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2, 0x1, 0x106)
connect$auto(0x3, &(0x7f0000000080)=@nl=@kern={0x10, 0x0, 0x0, 0x800000}, 0x54)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000200), 0x208c41, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
keyctl$auto(0x1e, 0xfffffffffffffffc, 0xfffffffffffffffd, 0xfffffffffffffffd, 0x1)
sendmsg$auto_NL80211_CMD_PROBE_CLIENT(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000005c0)=ANY=[@ANYBLOB="4c010000", @ANYRES16=0x0, @ANYBLOB="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"], 0x14c}, 0x1, 0x0, 0x0, 0x4000}, 0x40000)
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0)
socket(0x2, 0x2, 0x88)
bind$auto(0x3, &(0x7f0000000040)=@tipc=@id={0x1e, 0x3, 0x1, {0x4e24, 0x5}}, 0x6a)
mmap$auto(0x0, 0xb, 0xdf, 0x4000000009b72, 0x7, 0x28000)
write$auto(0x3, 0x0, 0xfdf3)
ioctl$auto_SNDCTL_DSP_SETFMT(r2, 0xc0045005, &(0x7f0000000100)="000004")
setsockopt$auto(0xffffffffffffffff, 0x29, 0x8000040, 0x0, 0xc6)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ram14\x00', 0x600000, 0x0)
sendfile$auto(0xffffffffffffffff, 0x3, 0x0, 0xc)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffa, 0x0)
close_range$auto(0x2, 0xa, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/vhci_hcd.0/usbip_debug\x00', 0x8002, 0x0)
r3 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0)
read$auto(r3, 0x0, 0xb4d3)
write$auto(0x3, 0x0, 0xffd8)
write$auto(0x3, 0x0, 0xfdef)

8.010260415s ago: executing program 0 (id=611):
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x8a403, 0x0)
openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/pcmC1D1p\x00', 0x80201, 0x0)
openat$auto_nsim_psample_enable_fops_psample(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim0/psample/enable\x00', 0x2, 0x0)
openat$auto_proc_pid_set_timerslack_ns_operations_base(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/time\x00')
socket(0x2, 0xa, 0x106)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff)
socket(0x2, 0x1, 0x0)
epoll_create$auto(0x4)
io_uring_setup$auto(0x85, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x3, 0xa)
socket(0x25, 0x1, 0x3)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
sendmsg$auto_WG_CMD_GET_DEVICE(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x400c810}, 0x200448c0)
r1 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, 0x0, 0x10b040, 0x0)
bpf$auto(0xfffff011, &(0x7f0000000000)=@test={r1, 0x4, 0xf9c, 0x468, 0x9, 0x3, 0x4, 0x2, 0x4, 0x200, 0x1fd, 0xb6, 0x4, 0x6, 0x3}, 0xa3)
writev$auto(0xca, &(0x7f0000000080)={&(0x7f0000000040), 0x1}, 0x7e)

7.59984772s ago: executing program 0 (id=613):
prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x6)
socket(0x10, 0x4, 0xffffffc0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x120e2, 0x0)
write$auto(r1, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$auto_CTRL_CMD_GETPOLICY(r2, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x28, r3, 0x301, 0x4070bd25, 0x25dfdbff, {}, [@CTRL_ATTR_FAMILY_NAME={0xc, 0x2, 'nl80211\x00'}, @CTRL_ATTR_OP={0x8, 0xa, 0x1ef}]}, 0x28}, 0x1, 0x0, 0x0, 0x30000881}, 0xc040810)
write$auto(r1, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
madvise$auto(0x0, 0xffffffffffff0004, 0x1a)
setgroups$auto(0xe32, 0x0)
madvise$auto(0x0, 0x200007, 0x19)
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/smaps_rollup\x00', 0x40000, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)

6.266431868s ago: executing program 1 (id=615):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = fcntl$auto(r0, 0x8, 0xffffffffffffffff)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x8, 0xa93, 0x80, 0x10, r1, 0x9)
openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r2 = socket(0x2d, 0x2, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_SMC_NETLINK_ENABLE_SEID(r2, &(0x7f0000000140)={&(0x7f0000000000)={0x2d, 0x1f, 0x0, 0x10}, 0xc, 0x0}, 0x20040804)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000db, 0x12, 0x400, 0x18002)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000040)='{\x00', 0xfff)
r3 = socket(0x10, 0x2, 0x0)
read$auto(r3, &(0x7f0000002300)='MAC802154_HWSIM\x00', 0xfdef)
openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/snd/pcmC1D1p\x00', 0x40341, 0x0)
mmap$auto(0x5, 0x40009, 0xe0, 0x9b72, 0xffffffffffffffff, 0x6)
r4 = socket(0x11, 0x80003, 0x300)
sendfile$auto(0x1, r4, 0x0, 0x56d)
dup2$auto(0x0, 0x3)
ioctl$auto(0x3, 0x541b, 0xfffffffffffff4e0)

5.800574591s ago: executing program 3 (id=617):
r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=ANY=[@ANYBLOB="7ef30000921e8df74e63949a68ea27f2150f8a71e2d6a9eb048497090000000000000058b8faac1dc2a2e2c41382c2a4c9c7b1c633204ee6a6c4bb9cce90cea1132ba2d531e98e94945297631a0ef49515b828ff66791d74a1f300bc3c9c59f6e6016d21bc0b5332b2ee521cdd5785201c08ff60", @ANYBLOB="1b0026bd7400fddbdf2503000000040008001400038010000b800c000180080008000a0101021200"], 0x44}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000a, 0x8e051, r0, 0x0)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/net/pppol2tp\x00', 0x200, 0x0)
pread64$auto(r2, &(0x7f0000000180)='/proc/thread-self/net/tcp6\x00\xd2)\x8e\x892\x82\x19\xfd\x03\xc3\x8d\xd7D\x8d\xa8\xcfM9\\\xd6\xcfUq\x05#\xed\x1c\xd1G\bz\xde5u4\xddS\xe6\x1a\x8a`\xad0\x98|\xbc\x00\x98\b\x0ey\xcb`\x9b\x91r\xd5\x13\x9e\xdd4\xe7\xb7\x94P\x8fBlm\x04eAW\xbc0\x9b\xbd\x8f\xf5];\x94\x18\xf0\v\xd7\xf4P\xd3\x9e,Q\xd8\x16\x989l\x03\a\xcc\x1e\xb9\xe9{\xeeS\xa9\xc60\x00\xb5&\x9e\xdbk{F\x18\xa8\xbasG\xd3\x80\xb1G.\xec1\x96uP\x97\x8co\xf1\xa6\xd5\xea\xc8L3|a\xb3\xaa\x90Y\xb19\xad\xdc\x05o\x98g\xd4\x10]5\x95\xd0\xabJC\x06\xd0c\xd1Ra\xf7\xc4n\xdf\xe4\xc7\x03\x19x\xbb\v\x00\t\xde\xf5\x93\xfb\xfb#\xbd\xc0S\f57\x83\xdd\xaa\xf0\x9c\xd3G\xe1\xfdz\xab\x91RQ7\xc4qI\xc5c.\xefQ\xfb\xf4!\xe6\xd0Pa\xb8\xb4R\xaah2\x1c\xdfEy?\xac\xc6\x122\xb0z\xdd\'\fq\x80\x1e\f\xaf\n\xad\x9f\xb4E+\x9e\xa6\xef\x03\xc7\xc1u\xa3K\xc3a\x127\xc2s\xae3\x80\x96\xf0\xc1\xff>\xec\x0eBW)\xb5I|\xaa\xb6\x1d\xbd,t\a\xff\x1e\xa67\xc1\xb5\xb5O\xe9aN|F\xb6\xd0\xf6\x19s\xf9\x9e', 0x400, 0x6)
pread64$auto(r2, 0x0, 0x2, 0x100000005)
mmap$auto(0x0, 0x4, 0x800000000007f, 0xeb1, 0x401, 0x8400)
socket(0xa, 0xa, 0x5)
ioctl$auto_SW_SYNC_GET_DEADLINE(0xffffffffffffffff, 0xc0105702, &(0x7f0000000000))
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
ioctl$auto(0xffffffffffffffff, 0x5410, 0xffffffffffffffff)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x10000, 0x7, 0xf, 0x40000000008fd6, 0x948b, 0x7, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
madvise$auto(0x0, 0x2000040080000004, 0xe)
r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0)
write$auto(r4, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
mprotect$auto(0x200000000000, 0x806121, 0x6)

5.685033134s ago: executing program 2 (id=618):
unshare$auto(0x40000082)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000)
openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0)
preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x5ff4, 0x1)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty36\x00', 0x400201, 0x0)
write$auto(0x3, 0x0, 0x7fffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$auto_MACSEC_CMD_ADD_RXSC(r1, &(0x7f0000004100)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)={0x2c, r2, 0x1, 0x70bd26, 0x25dfdbfc, {}, [@MACSEC_ATTR_RXSC_CONFIG={0x10, 0x2, 0x0, 0x1, [@typed={0xc, 0x1, 0x0, 0x0, @u64=0x6}]}, @MACSEC_ATTR_IFINDEX={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20040801}, 0x4000040)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9)
sendmsg$auto_NL80211_CMD_PROBE_MESH_LINK(r0, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x38, 0x0, 0x300, 0x70bd26, 0x25dfdbff, {}, [@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, 0x6}, @NL80211_ATTR_TDLS_DIALOG_TOKEN={0x5, 0x89, 0xa}, @NL80211_ATTR_WIPHY_TX_POWER_SETTING={0x8}, @NL80211_ATTR_WIPHY_FREQ_HINT={0x8, 0xc9, 0x7c2}, @NL80211_ATTR_SPLIT_WIPHY_DUMP={0x4}]}, 0x38}, 0x1, 0x0, 0x0, 0x24000000}, 0x400c080)
write$auto(0x3, 0x0, 0xfffffdef)
r4 = clone3$auto(&(0x7f0000000180)={0x400, 0xc31, 0xed, 0x7fff, 0x7, 0x1, 0xefee, 0x8, 0x20004000000000, 0x7, 0x4}, 0x1fe000)
rt_sigqueueinfo$auto(r4, 0xc00, &(0x7f00000002c0)={@_si_pad})

5.442804928s ago: executing program 0 (id=619):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80802, 0x0)
r0 = socket(0x2b, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a)
writev$auto(0xffffffffffffffff, 0x0, 0x1)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x3, 0x20000000)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000440), 0x20100, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20342, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
select$auto(0x7, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x800, 0x0, 0x2, 0x5, 0x495f4da0a, 0xa33a, 0x3, 0x62, 0xfffffffffffff7b2, 0x10000000000004, 0x6d40, 0x1, 0x39, 0xfffffffffffffffe]}, 0x0)
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp1\x00', 0x60282, 0x0)
ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r1, 0xc004500a, 0x0)
write$auto(r1, 0x0, 0x100082)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
syz_clone(0x800000, 0x0, 0x0, 0x0, 0x0, 0x0)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
socket(0x2, 0x5, 0x0)
open(0x0, 0x2a4c0, 0x40)

5.209870709s ago: executing program 1 (id=620):
socket(0x2, 0x1, 0x106)
bind$auto(0x3, 0x0, 0x6a)
connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x3}, 0x55)
socket$nl_generic(0x10, 0x3, 0x10)
sysfs$auto(0x2, 0x2c, 0x0)
r0 = fsopen$auto(0x0, 0x1)
fsconfig$auto(r0, 0x8, 0x0, 0x0, 0x0)
ioctl$auto_FS_IOC_SETFLAGS2(0xffffffffffffffff, 0x40086602, 0x0)
mmap$auto(0x0, 0x20007, 0x0, 0xeb4, 0x40000000000a5, 0x8000)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x3, 0x6)
kexec_load$auto(0x5eab, 0x8, &(0x7f0000000580)={@buf=0x0, 0x7, 0x7ff, 0x5}, 0x0)
r1 = socket(0x10, 0x2, 0x0)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0xfffff4a4, 0x0, 0xfffffffffffffffd)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="1b000000", @ANYBLOB="1a00279e"], 0x1ac}, 0x1, 0x0, 0x0, 0x20000001}, 0x40000)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x1009, 0x5, 0x1f, 0x93f, 0x1ffda, 0x402, 0x6, 0x8000003, 0x9, 0x5, 0x0, 0x4, 0xb0, 0xffffffffffffff17, 0x2, 0x3, 0x205, 0x7, 0x0, 0x3fffb, 0x0, 0x3, 0x0, 0x1, 0x0, 0xfffffffd, 0x0, 0x0, 0x3, [0x0, 0x0, 0x0, 0x8, 0x0, 0xf, 0x0, 0x0, 0xfffffffffffffffb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x0, 0x100000000, 0x0, 0x8000000000000001, 0x0, 0x0, 0x0, 0x0, 0x20, 0x4, 0x0, 0x0, 0x2000000000000000]}, 0x203, 0x7d)
r2 = socket(0x10, 0x2, 0x0)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)

4.700367604s ago: executing program 1 (id=621):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec18\x00', 0x900, 0x0)
ioctl$auto_CEC_DQEVENT(r0, 0xc0506107, &(0x7f0000000280)={0x4, 0x80003, 0xa, @state_change={0x200, 0x9, 0x3}})
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80502, 0x0)
ioctl$auto_SNDCTL_DSP_SPEED(r1, 0xc0045002, &(0x7f00000000c0))
r2 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC1\x00', 0x20400, 0x0)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x0, 0x9, 0xeb1, 0xffffffffffffffff, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
socketpair$auto(0x4, 0x2, 0x10, &(0x7f0000000040)=0x7)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x6, 0x1, 0x948b, 0x3, 0x1, 0x572f14dc, 0x80000000, 0x80000000, 0x0, 0x7, 0x6d3c, 0x7, 0x2, 0x1]}, 0x0)
write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1fe, 0x3, 0xd, 0x1, 0x948b, 0x0, 0x15f4da0a, 0x41000000003, 0x9, 0x62, 0x8000001b, 0x7, 0x6d3e, 0x9, 0x2, 0x200]}, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
capset$auto(0x0, &(0x7f0000000000)={0xb213, 0x101, 0x800})
socket(0x27, 0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)
io_setup$auto(0x10000, 0x0)
mmap$auto(0x0, 0x2000a, 0x73, 0x40000000000eb1, r2, 0x5)

4.70016664s ago: executing program 3 (id=622):
mmap$auto(0x3, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r0 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, 0x0, 0x109001, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_THERMAL_GENL_CMD_THRESHOLD_GET(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={0x0}, 0x1, 0x0, 0x0, 0x400c001}, 0x40840)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000280)='/dev/ptyzf\x00', 0x610000, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x129800, 0x0)
r3 = socket(0x10, 0x2, 0x0)
syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000200), r3)
kcmp$auto(0x0, 0x0, 0x6, r0, 0xffffffffffffffff)
capset$auto(0x0, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000380)='/proc/dynamic_debug/control\x00', 0x60900, 0x0)
pread64$auto(r4, 0x0, 0x8, 0x8000)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0x2, 0x5, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)

4.540809634s ago: executing program 2 (id=623):
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
landlock_create_ruleset$auto(&(0x7f0000000000)={0xdaa0, 0x1, 0x8}, 0x9, 0x0)
landlock_restrict_self$auto(r0, 0x0)
mmap$auto(0x0, 0x20009, 0x4400000000df, 0xc157, 0x101000000000000, 0x7)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
socket(0x2, 0x1, 0x0)
r1 = epoll_create$auto(0x4)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/conf/veth0_to_bridge/arp_announce\x00', 0x404982, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0xa, 0x3, 0x3, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0x8000]}, 0x0)
socket(0x3d, 0x805, 0xfffffffa)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x7, 0xe)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, 0x0, 0x900, 0x0)
select$auto(0x7, 0x0, &(0x7f0000000080)={[0x8, 0xc0b, 0x8, 0x5, 0x1001, 0xffffffffffffffff, 0xf, 0x1000, 0xb, 0x1, 0xced80000000000, 0x9, 0x3, 0x0, 0x1, 0x7fffffff]}, 0x0, 0x0)
ioctl$auto_CEC_S_MODE(r1, 0x40046109, 0x0)
open(0x0, 0x22240, 0x155)
mq_open$auto(0x0, 0x7e, 0x9, 0x0)

4.411043612s ago: executing program 2 (id=624):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8400)
openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x1, 0x0)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/lru_gen_full\x00', 0x8a302, 0x0)
socket(0x1a, 0x1, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x40001, 0x0)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80802, 0x0)
r1 = socket(0x2b, 0x1, 0x0)
ioctl$auto_IOCTL_VMCI_VERSION2(0xffffffffffffffff, 0x7a7, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a)
sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, 0x0, 0x9, 0x0, 0x1f, 0x9}, 0x800009}, 0x7, 0x20000000)
io_uring_setup$auto(0x6, 0x0)
setsockopt$auto(0x3, 0x1, 0x2f, 0x0, 0x9)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
write$auto(0x3, 0x0, 0xfffffdef)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x13e, 0x0, 0xfffffffffffffffd)

4.080176296s ago: executing program 0 (id=625):
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/fs/ext4/sda1/mb_groups\x00', 0x40102, 0x0)
mmap$auto(0x0, 0x7f, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2, 0x1, 0x106)
connect$auto(0x3, &(0x7f0000000080)=@nl=@kern={0x10, 0x0, 0x0, 0x800000}, 0x54)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000200), 0x208c41, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
keyctl$auto(0x1e, 0xfffffffffffffffc, 0xfffffffffffffffd, 0xfffffffffffffffd, 0x1)
sendmsg$auto_NL80211_CMD_PROBE_CLIENT(r1, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x40}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4000}, 0x40000)
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0)
socket(0x2, 0x2, 0x88)
bind$auto(0x3, &(0x7f0000000040)=@tipc=@id={0x1e, 0x3, 0x1, {0x4e24, 0x5}}, 0x6a)
mmap$auto(0x0, 0xb, 0xdf, 0x4000000009b72, 0x7, 0x28000)
write$auto(0x3, 0x0, 0xfdf3)
ioctl$auto_SNDCTL_DSP_SETFMT(r2, 0xc0045005, &(0x7f0000000100)="000004")
setsockopt$auto(0xffffffffffffffff, 0x29, 0x8000040, 0x0, 0xc6)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ram14\x00', 0x600000, 0x0)
sendfile$auto(0xffffffffffffffff, 0x3, 0x0, 0xc)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffa, 0x0)
close_range$auto(0x2, 0xa, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/vhci_hcd.0/usbip_debug\x00', 0x8002, 0x0)
r3 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0)
read$auto(r3, 0x0, 0xb4d3)
write$auto(0x3, 0x0, 0xffd8)
write$auto(0x3, 0x0, 0xfdef)

3.505164034s ago: executing program 3 (id=626):
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/fs/ext4/sda1/mb_groups\x00', 0x40102, 0x0)
mmap$auto(0x0, 0x7f, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2, 0x1, 0x106)
connect$auto(0x3, &(0x7f0000000080)=@nl=@kern={0x10, 0x0, 0x0, 0x800000}, 0x54)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000200), 0x208c41, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
keyctl$auto(0x1e, 0xfffffffffffffffc, 0xfffffffffffffffd, 0xfffffffffffffffd, 0x1)
sendmsg$auto_NL80211_CMD_PROBE_CLIENT(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000005c0)=ANY=[@ANYBLOB="4c010000", @ANYRES16=0x0, @ANYBLOB="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"], 0x14c}, 0x1, 0x0, 0x0, 0x4000}, 0x40000)
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0)
socket(0x2, 0x2, 0x88)
bind$auto(0x3, &(0x7f0000000040)=@tipc=@id={0x1e, 0x3, 0x1, {0x4e24, 0x5}}, 0x6a)
mmap$auto(0x0, 0xb, 0xdf, 0x4000000009b72, 0x7, 0x28000)
write$auto(0x3, 0x0, 0xfdf3)
ioctl$auto_SNDCTL_DSP_SETFMT(r2, 0xc0045005, &(0x7f0000000100)="000004")
setsockopt$auto(0xffffffffffffffff, 0x29, 0x8000040, 0x0, 0xc6)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ram14\x00', 0x600000, 0x0)
sendfile$auto(0xffffffffffffffff, 0x3, 0x0, 0xc)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffa, 0x0)
close_range$auto(0x2, 0xa, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/vhci_hcd.0/usbip_debug\x00', 0x8002, 0x0)
r3 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0)
read$auto(r3, 0x0, 0xb4d3)
write$auto(0x3, 0x0, 0xffd8)
write$auto(0x3, 0x0, 0xfdef)

3.500399503s ago: executing program 1 (id=627):
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/fs/ext4/sda1/mb_groups\x00', 0x40102, 0x0)
mmap$auto(0x0, 0x7f, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2, 0x1, 0x106)
connect$auto(0x3, &(0x7f0000000080)=@nl=@kern={0x10, 0x0, 0x0, 0x800000}, 0x54)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000200), 0x208c41, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
keyctl$auto(0x1e, 0xfffffffffffffffc, 0xfffffffffffffffd, 0xfffffffffffffffd, 0x1)
sendmsg$auto_NL80211_CMD_PROBE_CLIENT(r1, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000240)={&(0x7f00000005c0)=ANY=[@ANYBLOB="4c010000", @ANYRES16=0x0, @ANYBLOB="20002dbd7000fddbdf25540000001c004e01f500f87e9467d0540cecd41ee68f233df0a2c9b2a7a73e7cb6c24527ca0a9bc60db1d86083004e0153ca6247d69e82cf0651f67d36134375b4c1236c27b6d7e8e0e7ab10a6fc338cada59d2d782d5099dcdda618080eb401c378d761b666fd777adfb506f667e09ad0b07f9623fe75f522843b785e7595ebeab810cdda65714054f6e3dc4cb3d8b2e2a717dc6166847ce967e4641016f110beeb4f7d6e23ce836ca1ed979e4f2b000500a20008000000420006004810fdf10e7db122abd55eae31ed4da2327ad6ae91d75486befa090e45c338b987d4bbd6be87fa9790a7fe0284679e51716142cd2bd48cca4a3668f645ad00000800c9000500000043004801b293356cdcda9d7fde30d2721cd3fdd30d64837a7fcfb316daf1fd76661ca33de27b188861bdc5ba93c7c8a9d2369443db46c69f183591a3649df3348255c500"], 0x14c}, 0x1, 0x0, 0x0, 0x4000}, 0x40000)
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0)
socket(0x2, 0x2, 0x88)
bind$auto(0x3, &(0x7f0000000040)=@tipc=@id={0x1e, 0x3, 0x1, {0x4e24, 0x5}}, 0x6a)
mmap$auto(0x0, 0xb, 0xdf, 0x4000000009b72, 0x7, 0x28000)
write$auto(0x3, 0x0, 0xfdf3)
ioctl$auto_SNDCTL_DSP_SETFMT(r2, 0xc0045005, &(0x7f0000000100)="000004")
setsockopt$auto(0xffffffffffffffff, 0x29, 0x8000040, 0x0, 0xc6)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ram14\x00', 0x600000, 0x0)
sendfile$auto(0xffffffffffffffff, 0x3, 0x0, 0xc)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffa, 0x0)
close_range$auto(0x2, 0xa, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/vhci_hcd.0/usbip_debug\x00', 0x8002, 0x0)
r3 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0)
read$auto(r3, 0x0, 0xb4d3)
write$auto(0x3, 0x0, 0xffd8)
write$auto(0x3, 0x0, 0xfdef)

2.955701023s ago: executing program 1 (id=628):
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x321d00, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x800)
io_uring_setup$auto(0x6, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x48140, 0x0)
mmap$auto(0x0, 0x2020009, 0x2000000003, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_NL80211_CMD_UPDATE_FT_IES(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000580)={&(0x7f0000000600)=ANY=[@ANYBLOB="957038030000c3e2828863a5fe6bb3e7c8248562dcc5996d88da6a8a1832ce5d589315d5e85f7e28ed1182a4edc2a559ee1f3d09b23c0bde0c9cf35eaf14e07d15925aebf785bc6413d499699f2ac995aef57945b17032f764c85edef59c7dd111d7f093a33c60d381eeb7b8746dbdeb7fa850bfb00ee8369b5f9d820b0f2d7c0a1f9c56d840b423a94171b8f306e3ec0d4e429b66a923a913a7f80b8294de5c630545eb866d84c35dcc23544ad401fb4b92e56321824a71b851ce8fa78dc9c6d288b9e2ec09e5d4eb", @ANYRES16=0x0, @ANYBLOB="08002abd7000fcdbdf2560000000cc000201c84f6f4add8976768ad5f100635b554e24512ca0a4288345d8f8da782fce812a595390a60357194ab0e26d7c4ee92a0397c0ce0aed42e34880cefcc40512ac7c9387bb75d23ce8bb1bff3a03e2bb0378a72b387bd55604c55a632544affa45d8e1d4fa07d1d6fdefbfd6783e7a07ef9b9a41d2883ce0035496e209b15a6b94c922a032538ccd5c66dfd6e78add7a910932e885aa3845e198919b9c7c7d9d29faaab9350aefe030c67a4e53260d756ae7f37c21fe0240e7e6e19978f38eccf9", @ANYRES32=0x0, @ANYBLOB="e0002d8055005980040029801afb84d4e45bd0345035a76ee43b2aee61c7d23b4be11110735b5728f0c2b1aa31c5dd32bdab6ddb68b495d783521c50721099ec5e490df56226ec6707c5feed20057ece11149885f4163179060000000800eb002e2625007a003080040024800400828008007a00", @ANYRES32=0x0, @ANYBLOB="e8347a7a1c3ab974838cb1d51cc22bc7fbd0270ea7fd65f1b163e870a38ece3e674c112ad5afd9338a99cb45c70862c270d38cb46217d411a5a7f2071c6214e21c567baa960347ca51d813009e00726cba6744573e1e8b123e13a0ec48000400818004008e8000000500e400030000003c0081800500020002000000050002000a0000000500010000000000050002000b0000000500020004000000050002000000000005000100090000003100ba000e3c4ae286ffd2979a04bc3d48b6305b8dc5d7a8638ac519975767536cf00294d65e6c90806ace0e8a905f62ff0000000600b30001000000"], 0x248}, 0x1, 0x0, 0x0, 0x20004014}, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0x1010001, 0x100000003)
mmap$auto(0xff0f200000000000, 0x400008, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
syz_genetlink_get_family_id$auto_mac80211_hwsim(0x0, 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
shmctl$auto_IPC_STAT(0x4, 0x2, 0x0)
madvise$auto(0x5, 0xffffffffffff0005, 0x17)
mknod$auto(&(0x7f00000000c0)='./file0\x00', 0x1001, 0x804)
open(&(0x7f0000000000)='./file0\x00', 0x28400, 0x82)
open(&(0x7f00000002c0)='./file0\x00', 0x40841, 0x118)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x2, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.cpu/hugetlb.1GB.limit_in_bytes\x00', 0xa001, 0x0)
write$auto(r1, &(0x7f00000002c0)='0\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k>\xc8\x1f\xad\xf6\xf0\xef\xe4s\x95\xf2\x00\x97S\xb9O\xac\xbe\xd6\\J<\x02YK\xd6M\xe6\xe7\xa0\xb8\xc3[\x01\xc5\xe8|\xb0\xb0\x80\xbf\xa5?=i\x88UB\x1d\x8e\xd3\xc2\x949\xb6\xfb\x006\x02\x9c\x83\x14\x13\x99\xc7\xb4)M\xed\tN $\xd4\x90^?J\x92\x9a?\xf8b\x03\xd8\xdd\x84\xdf\x92\xf0\xcd\xd8\xba\xab\x15\x80\x9eo,\xc8\xf2\x82\xd2\x88\xbeL\xa0\x1a\xd3\xd5Of\x95\xee\x13e\xeb}o\x9b\x86_\xf0?\f<\xf3t7\xb6\x0f\x93\xc79@\xd8x\x9e\xef!\x006\b\xdbWB\x84\xdd\xac\xdau\x86g\x8f\x02@O7\x0f\xf8\x8d(\x9c\xf2NyD\x7f3\x14\x9eg\x86%)\xd6\b\xcd\x1f\x03\x00:\xa6\x83\'\xf4\xf2\x9dd\xf4z\x89\xc5D\xc4\x02\\\x81\xcf\x02Ep\xf6`\xde*\x1dV', 0x81)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x4004)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_mac80211_hwsim(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001580), 0xffffffffffffffff)
ioctl$auto_SNDRV_RAWMIDI_IOCTL_PARAMS(r0, 0xc0305710, &(0x7f0000000040)={0x2, 0xf8, 0xfffffffffffffffa, 0x1, 0x20041b, "01000f00fc0300000c525596"})

2.860483264s ago: executing program 2 (id=629):
mmap$auto(0x4, 0x400000000000005, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0xa14, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
setsockopt$auto(0x3, 0x0, 0x60, 0x0, 0x10001)
shmget$auto(0xffffffffffffffff, 0xb0d, 0xa7db6ba)
connect$auto(0x3, &(0x7f00000000c0), 0x55)
openat$auto_zero_fops_mem(0xffffffffffffff9c, 0x0, 0x440000, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x40200, 0x0)
read$auto(r0, 0x0, 0x20)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r1, &(0x7f00000001c0)={0x0, 0x7}, 0x3)
socket(0xa, 0x3, 0xe7)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="1b0026bd700000dbdf2503000000040008000400038012000100898771f1c19f1779048590828847000004000280"], 0x34}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty=0x1000000}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
connect$auto(0x3, &(0x7f00000018c0)=@in={0x2, 0x300, @loopback=0xac14140a}, 0x55)

1.766637452s ago: executing program 3 (id=630):
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xca481, 0x0)
setsockopt$auto(0x3, 0x81, 0x1, 0x0, 0x83)
r0 = open(&(0x7f0000000140)='./file0\x00', 0x220c0, 0x4)
ioctl$auto_SNAPSHOT_ALLOC_SWAP_PAGE(r0, 0x80083314, 0x0)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x1892, 0x0, 0x2, 0x0, 0xb, 0xa505}, 0x800}, 0x7, 0x4008)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/devices/virtual/block/zram0/mm_stat\x00', 0x8900, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
setsockopt$auto_SO_OOBINLINE(0xffffffffffffffff, 0x2, 0xa, &(0x7f0000000100)='+%-(-\'^\x00', 0x0)
read$auto(0xffffffffffffffff, 0x0, 0x7)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
mq_notify$auto(0xffffffffffffffff, &(0x7f0000000180)={@sival_ptr=0x0, @raw=0x1, 0x1, @_sigev_thread={0x0, 0x0}})
mq_notify$auto(0xffffffffffffffff, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = socket(0x10, 0x2, 0x4)
socket(0x10, 0x3, 0x6)
r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000380)=ANY=[@ANYBLOB="f0020000", @ANYRES16=r2, @ANYBLOB="01002dbd7000fedbdf2505000000da0203800800c000e000000204002a000400110008002e00", @ANYRES32, @ANYBLOB="d152e64e22695352dd73864415aa8a78c65e6ab752fb4d469a47a092ae7d5061cdd9690cac4138553ecfbb1b32"], 0x2f0}, 0x1, 0x0, 0x0, 0x40000}, 0x50)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1c003b"], 0x1ac}, 0x1, 0x0, 0x0, 0x800}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

1.700240294s ago: executing program 2 (id=631):
openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
socket(0xa, 0x80000, 0x100)
r0 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xd897e0b93128f712}, 0x40)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x402200, 0x0)
writev$auto(r1, 0x0, 0xa)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
socket(0x21, 0x3, 0x9)
prctl$auto(0x3d, 0x5, 0x0, 0x1, 0x0)
r3 = openat$auto_ftrace_system_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/events/vmalloc/enable\x00', 0x80, 0x0)
readv$auto(r3, &(0x7f0000000140)={0x0, 0x2}, 0x5)
pread64$auto(r0, &(0x7f0000000180)='cifs\x00', 0xfffffffffffffff8, 0x2)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xe, 0x8fda, 0xc40, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x3, 0x1, 0x9, 0x1, 0xf53a]}, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0)
write$auto(0x3, 0x0, 0x4000000000000007)
unshare$auto(0x40000080)
mmap$auto(0x2, 0x4, 0xe1, 0x9b72, 0xffffffffffffffff, 0x8000)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000)

616.267281ms ago: executing program 1 (id=632):
r0 = socket(0xa, 0x1, 0x100)
pread64$auto(0xffffffffffffffff, 0x0, 0x7ff, 0x400)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
socketcall$auto_SYS_SOCKET(0x1, &(0x7f0000000280)=0xfffffffffffffffd)
read$auto_proc_iter_file_ops_compat_inode(0xffffffffffffffff, &(0x7f0000000180)=""/248, 0xf8)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/002/001\x00', 0x40001, 0x0)
mmap$auto(0x0, 0x2020009, 0x2, 0xf8, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
r2 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000001140)='/proc/self/oom_adj\x00', 0x8042, 0x0)
read$auto(r2, 0x0, 0x1f40)
r3 = openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/per_cpu/cpu0/buffer_size_kb\x00', 0x1, 0x0)
writev$auto(r3, &(0x7f0000000200)={0x0, 0xa}, 0x3)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0xc, 0x2, 0x6]}, 0x0)
mmap$auto(0xc, 0x20009, 0x5, 0xeb1, 0x405, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0)
sendmsg$auto_NET_DM_CMD_CONFIG(r0, &(0x7f00000005c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0xd0008}, 0xc, &(0x7f0000000580)={&(0x7f0000000480)={0xec, 0x0, 0x300, 0x70bd28, 0x25dfdbfb, {}, [@NET_DM_ATTR_QUEUE_LEN={0x8, 0xb, 0x80000000}, @NET_DM_ATTR_ALERT_MODE={0x5, 0x1, 0x2}, @NET_DM_ATTR_HW_DROPS={0x4}, @NET_DM_ATTR_UNSPEC={0x5e, 0x0, "c378a8dfb4465f7d2b90e7016061816d9f42391131d4620f3770bf93a3500ba1d06f08242d98816f4a8ade88780907167882bad7afad4dbef1660e7598a35811c492339e7e02514932a4ddfd264457777805c7bbd3188a792df4"}, @NET_DM_ATTR_UNSPEC={0x63, 0x0, "353a743227dac637f194648001e09a5111d57b180d2e2f2f1c4d8b8c6f18795f1bac1e071ddb1ad1cac268dfa7d263fc3f9a2fb72d8710d0c50d1656e0c916d78d2e02ae06d869bb5c329cc420743acd911e5c8d49b6e2d0a71d4abd945cb5"}]}, 0xec}, 0x1, 0x0, 0x0, 0x24040895}, 0x20008880)

616.066339ms ago: executing program 3 (id=633):
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
r0 = io_uring_setup$auto(0x6, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x28641, 0x0)
ioctl$auto(0x3, 0x80000541b, 0x38)
r1 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0)
ioctl$auto_IOCTL_VMCI_VERSION2(r1, 0x7a7, 0x0)
ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, 0x6)
r2 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/kcore\x00', 0x10b402, 0x0)
pread64$auto(r2, 0x0, 0x800003, 0x270)
socket(0xf, 0x3, 0x2)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
umount2$auto(&(0x7f0000000040)='.\x00', 0x4)
umount2$auto(&(0x7f0000000000)='.\x00', 0x4)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
write$auto(r3, &(0x7f0000000100)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xf, 0x1, 0x948b, 0x4, 0x15f4da0a, 0x3, 0x3, 0x80d, 0x8000001f, 0x2, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0)
r4 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, 0x0, 0x125200, 0x0)
close_range$auto(r1, r4, 0x0)
bpf$auto(0x2, 0x0, 0xc)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000180), r0)
socket(0x1d, 0x80002, 0x73)

615.578486ms ago: executing program 0 (id=640):
mmap$auto(0x0, 0x20009, 0x7fffffff, 0xeb1, 0x401, 0x8000)
mknod$auto(&(0x7f0000000180)=':,\x00', 0xcb, 0xfffffffa)
execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r0, 0x0, 0x20)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3)
ioctl$auto_FIDEDUPERANGE(r0, 0xc0189436, 0x8000)
r2 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$auto(r2, 0x4004556e, 0x1f)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptycc\x00', 0xa0840, 0x0)
ioctl$auto(r4, 0x540a, 0x2)
bpf$auto_BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000240)=@batch={0x8001, 0x101, 0x7fff, 0xd, 0xf5f, r4, 0x400, 0x7}, 0x39cc)
openat$auto_userfaultfd_dev_fops_userfaultfd(0xffffffffffffff9c, &(0x7f0000000000), 0x48400, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0xa, 0x2, 0x0)
socket(0xa, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_datapath(0x0, 0xffffffffffffffff)
sendmsg$auto_OVS_DP_CMD_NEW(r3, 0x0, 0x80)

195.601332ms ago: executing program 2 (id=634):
mmap$auto(0x0, 0x2020009, 0x5, 0xeb1, 0xfffffffffffffffa, 0x200000000008000)
r0 = socket(0x2b, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
ppoll$auto(&(0x7f0000000000)={r0, 0x8, 0x6}, 0x7, 0x0, 0x0, 0x8)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x84c, 0x0, 0x9, 0x0, 0x3, 0x10b}, 0x800009}, 0x1, 0x20000000)
syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000080), 0xffffffffffffffff)
mmap$auto(0x0, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x8000000000008000)
socket(0xa, 0x5, 0x0)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000440), r0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vlan1\x00'})
ioctl$auto_TIOCSWINSZ(0xffffffffffffffff, 0x5414, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
r1 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/ieee80211/phy1/netdev:wlan1/bssid\x00', 0x0, 0x0)
read$auto_debugfs_full_proxy_file_operations_internal(r1, 0x0, 0x0)
writev$auto(r1, 0x0, 0x7)
close_range$auto(0x2, 0x8, 0x0)
semget$auto(0x8, 0x3, 0xfffffffe)
statmount$auto(0x0, 0x0, 0x1fe, 0xd)
setsockopt$auto(0xffffffffffffffff, 0x107, 0x7, 0x0, 0x8000)
r2 = socket(0x10, 0x2, 0x0)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB, @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xdc5e}, 0x800}, 0x7, 0x4008)

0s ago: executing program 0 (id=635):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd10/queue/nr_requests\x00', 0x82942, 0x0)
sendfile$auto(r0, r0, 0x0, 0x200)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event0\x00', 0x3498c2, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r3 = ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r2)
ioctl$auto_KVM_GET_MSRS(r1, 0x4008ae89, &(0x7f0000000080)={0x2, 0x0, [{0x4b564d06, 0xe3, 0x100000007f}]})
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/audit\x00', 0x40, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_seg6(&(0x7f0000002e40), 0xffffffffffffffff)
sendmsg$auto_SEG6_CMD_SET_TUNSRC(r4, &(0x7f0000002f00)={0x0, 0x0, &(0x7f0000002ec0)={&(0x7f0000002e80)={0x14, r5, 0x1, 0x70bd28, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x4048c40}, 0x4)
sendmsg$auto_SEG6_CMD_DUMPHMAC(r3, &(0x7f0000000240)={&(0x7f0000000180), 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x2c, r5, 0x1, 0x70bd2d, 0x25dfdbfc, {}, [@SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x6}, @SEG6_ATTR_ALGID={0x5, 0x6, 0x7f}, @SEG6_ATTR_ALGID={0x5, 0x6, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x4000040)
pselect6$auto(0x5, &(0x7f0000000400)={[0x8, 0x5, 0x0, 0x5, 0x8001, 0x6, 0xac, 0x2000009, 0x3, 0xffffffff, 0x7fffffffffffffff, 0x0, 0x1000, 0x2, 0x8, 0x3ff]}, 0x0, 0x0, 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x400, 0x7}, 0x9, 0x0)
landlock_restrict_self$auto(r6, 0x0)
execve$auto(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)=&(0x7f0000000080)=',{\x00', &(0x7f0000000140)=&(0x7f0000000100)='}.\x00')
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.0.12' (ED25519) to the list of known hosts.
[   96.966679][ T3201] cfg80211: failed to load regulatory.db
[   97.740911][ T5835] cgroup: Unknown subsys name 'net'
[   97.910964][ T5835] cgroup: Unknown subsys name 'cpuset'
[   97.920404][ T5835] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   99.751827][ T5835] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  102.202177][ T5851] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  102.210752][ T5851] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  102.217720][ T5857] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  102.226651][ T5851] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  102.227480][ T5857] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  102.242835][ T5853] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  102.250516][ T5857] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  102.251621][ T5853] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  102.265166][ T5861] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  102.266127][ T5853] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  102.274166][ T5860] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  102.281971][ T5853] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  102.287759][ T5860] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  102.293565][ T5853] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  102.302402][ T5860] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  102.310281][ T5853] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  102.335204][ T5853] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  102.344575][ T5853] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  102.382927][ T5861] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  102.391166][ T5861] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  102.960418][ T5849] chnl_net:caif_netlink_parms(): no params data found
[  103.100705][ T5854] chnl_net:caif_netlink_parms(): no params data found
[  103.145430][ T5858] chnl_net:caif_netlink_parms(): no params data found
[  103.185329][ T5848] chnl_net:caif_netlink_parms(): no params data found
[  103.282233][ T5849] bridge0: port 1(bridge_slave_0) entered blocking state
[  103.289685][ T5849] bridge0: port 1(bridge_slave_0) entered disabled state
[  103.298985][ T5849] bridge_slave_0: entered allmulticast mode
[  103.307280][ T5849] bridge_slave_0: entered promiscuous mode
[  103.324852][ T5849] bridge0: port 2(bridge_slave_1) entered blocking state
[  103.332157][ T5849] bridge0: port 2(bridge_slave_1) entered disabled state
[  103.339441][ T5849] bridge_slave_1: entered allmulticast mode
[  103.347555][ T5849] bridge_slave_1: entered promiscuous mode
[  103.431986][ T5849] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  103.446344][ T5849] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  103.540350][ T5858] bridge0: port 1(bridge_slave_0) entered blocking state
[  103.547693][ T5858] bridge0: port 1(bridge_slave_0) entered disabled state
[  103.554877][ T5858] bridge_slave_0: entered allmulticast mode
[  103.563028][ T5858] bridge_slave_0: entered promiscuous mode
[  103.613243][ T5848] bridge0: port 1(bridge_slave_0) entered blocking state
[  103.620971][ T5848] bridge0: port 1(bridge_slave_0) entered disabled state
[  103.628585][ T5848] bridge_slave_0: entered allmulticast mode
[  103.638145][ T5848] bridge_slave_0: entered promiscuous mode
[  103.646126][ T5858] bridge0: port 2(bridge_slave_1) entered blocking state
[  103.653289][ T5858] bridge0: port 2(bridge_slave_1) entered disabled state
[  103.661762][ T5858] bridge_slave_1: entered allmulticast mode
[  103.669360][ T5858] bridge_slave_1: entered promiscuous mode
[  103.690757][ T5854] bridge0: port 1(bridge_slave_0) entered blocking state
[  103.697963][ T5854] bridge0: port 1(bridge_slave_0) entered disabled state
[  103.705368][ T5854] bridge_slave_0: entered allmulticast mode
[  103.712786][ T5854] bridge_slave_0: entered promiscuous mode
[  103.724366][ T5849] team0: Port device team_slave_0 added
[  103.731405][ T5848] bridge0: port 2(bridge_slave_1) entered blocking state
[  103.738654][ T5848] bridge0: port 2(bridge_slave_1) entered disabled state
[  103.746481][ T5848] bridge_slave_1: entered allmulticast mode
[  103.753854][ T5848] bridge_slave_1: entered promiscuous mode
[  103.776100][ T5854] bridge0: port 2(bridge_slave_1) entered blocking state
[  103.783292][ T5854] bridge0: port 2(bridge_slave_1) entered disabled state
[  103.791067][ T5854] bridge_slave_1: entered allmulticast mode
[  103.798638][ T5854] bridge_slave_1: entered promiscuous mode
[  103.822359][ T5849] team0: Port device team_slave_1 added
[  103.860189][ T5858] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  103.904673][ T5849] batman_adv: batadv0: Adding interface: batadv_slave_0
[  103.912025][ T5849] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  103.938865][ T5849] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  103.966537][ T5858] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  103.992502][ T5854] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  104.002724][ T5849] batman_adv: batadv0: Adding interface: batadv_slave_1
[  104.010054][ T5849] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  104.036896][ T5849] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  104.051208][ T5848] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  104.064482][ T5848] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  104.089583][ T5854] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  104.125977][ T5858] team0: Port device team_slave_0 added
[  104.180872][ T5848] team0: Port device team_slave_0 added
[  104.188904][ T5858] team0: Port device team_slave_1 added
[  104.201380][ T5854] team0: Port device team_slave_0 added
[  104.209688][ T5848] team0: Port device team_slave_1 added
[  104.245823][ T5854] team0: Port device team_slave_1 added
[  104.336571][ T5848] batman_adv: batadv0: Adding interface: batadv_slave_0
[  104.343569][ T5848] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  104.370021][ T5848] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  104.382824][ T5858] batman_adv: batadv0: Adding interface: batadv_slave_0
[  104.390052][ T5858] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  104.417473][ T5861] Bluetooth: hci1: command tx timeout
[  104.417635][ T5858] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  104.433531][ T5855] Bluetooth: hci3: command tx timeout
[  104.439002][ T5851] Bluetooth: hci0: command tx timeout
[  104.448802][ T5849] hsr_slave_0: entered promiscuous mode
[  104.455595][ T5849] hsr_slave_1: entered promiscuous mode
[  104.463009][ T5854] batman_adv: batadv0: Adding interface: batadv_slave_0
[  104.470330][ T5854] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  104.496462][ T5855] Bluetooth: hci2: command tx timeout
[  104.496843][ T5854] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  104.515779][ T5854] batman_adv: batadv0: Adding interface: batadv_slave_1
[  104.522846][ T5854] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  104.549255][ T5854] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  104.561144][ T5848] batman_adv: batadv0: Adding interface: batadv_slave_1
[  104.568608][ T5848] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  104.594847][ T5848] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  104.606821][ T5858] batman_adv: batadv0: Adding interface: batadv_slave_1
[  104.613795][ T5858] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  104.639819][ T5858] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  104.742037][ T5858] hsr_slave_0: entered promiscuous mode
[  104.749041][ T5858] hsr_slave_1: entered promiscuous mode
[  104.755627][ T5858] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  104.763353][ T5858] Cannot create hsr debugfs directory
[  104.847153][ T5848] hsr_slave_0: entered promiscuous mode
[  104.853580][ T5848] hsr_slave_1: entered promiscuous mode
[  104.860265][ T5848] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  104.868341][ T5848] Cannot create hsr debugfs directory
[  104.879658][ T5854] hsr_slave_0: entered promiscuous mode
[  104.886119][ T5854] hsr_slave_1: entered promiscuous mode
[  104.892216][ T5854] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  104.899910][ T5854] Cannot create hsr debugfs directory
[  105.384138][ T5849] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  105.404695][ T5849] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  105.428640][ T5849] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  105.449065][ T5849] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  105.496844][ T5858] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  105.529355][ T5858] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  105.542219][ T5858] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  105.560768][ T5858] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  105.650128][ T5848] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  105.682468][ T5848] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  105.694188][ T5848] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  105.705721][ T5848] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  105.777975][ T5854] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  105.802777][ T5854] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  105.829506][ T5854] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  105.843342][ T5854] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  105.909305][ T5849] 8021q: adding VLAN 0 to HW filter on device bond0
[  106.007690][ T5849] 8021q: adding VLAN 0 to HW filter on device team0
[  106.039388][   T49] bridge0: port 1(bridge_slave_0) entered blocking state
[  106.046919][   T49] bridge0: port 1(bridge_slave_0) entered forwarding state
[  106.082883][ T5858] 8021q: adding VLAN 0 to HW filter on device bond0
[  106.107894][   T49] bridge0: port 2(bridge_slave_1) entered blocking state
[  106.115194][   T49] bridge0: port 2(bridge_slave_1) entered forwarding state
[  106.171299][ T5848] 8021q: adding VLAN 0 to HW filter on device bond0
[  106.196955][ T5858] 8021q: adding VLAN 0 to HW filter on device team0
[  106.220418][ T5854] 8021q: adding VLAN 0 to HW filter on device bond0
[  106.232422][   T49] bridge0: port 1(bridge_slave_0) entered blocking state
[  106.239585][   T49] bridge0: port 1(bridge_slave_0) entered forwarding state
[  106.270293][   T49] bridge0: port 2(bridge_slave_1) entered blocking state
[  106.277536][   T49] bridge0: port 2(bridge_slave_1) entered forwarding state
[  106.306257][ T5848] 8021q: adding VLAN 0 to HW filter on device team0
[  106.350289][ T5854] 8021q: adding VLAN 0 to HW filter on device team0
[  106.362487][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  106.369643][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  106.410948][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  106.418683][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  106.462076][ T3574] bridge0: port 1(bridge_slave_0) entered blocking state
[  106.469300][ T3574] bridge0: port 1(bridge_slave_0) entered forwarding state
[  106.485812][ T5861] Bluetooth: hci3: command tx timeout
[  106.485819][ T5851] Bluetooth: hci1: command tx timeout
[  106.497666][ T5855] Bluetooth: hci0: command tx timeout
[  106.511346][ T3574] bridge0: port 2(bridge_slave_1) entered blocking state
[  106.518566][ T3574] bridge0: port 2(bridge_slave_1) entered forwarding state
[  106.578426][ T5855] Bluetooth: hci2: command tx timeout
[  106.880560][ T5849] 8021q: adding VLAN 0 to HW filter on device batadv0
[  107.028880][ T5849] veth0_vlan: entered promiscuous mode
[  107.069048][ T5849] veth1_vlan: entered promiscuous mode
[  107.112730][ T5858] 8021q: adding VLAN 0 to HW filter on device batadv0
[  107.182047][ T5849] veth0_macvtap: entered promiscuous mode
[  107.239659][ T5849] veth1_macvtap: entered promiscuous mode
[  107.291149][ T5858] veth0_vlan: entered promiscuous mode
[  107.323382][ T5849] batman_adv: batadv0: Interface activated: batadv_slave_0
[  107.338475][ T5849] batman_adv: batadv0: Interface activated: batadv_slave_1
[  107.353832][ T5858] veth1_vlan: entered promiscuous mode
[  107.364021][ T5848] 8021q: adding VLAN 0 to HW filter on device batadv0
[  107.395901][ T5849] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  107.404795][ T5849] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  107.414827][ T5849] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  107.427846][ T5849] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  107.453153][ T5854] 8021q: adding VLAN 0 to HW filter on device batadv0
[  107.543282][ T5858] veth0_macvtap: entered promiscuous mode
[  107.583375][ T5858] veth1_macvtap: entered promiscuous mode
[  107.654322][ T5854] veth0_vlan: entered promiscuous mode
[  107.663391][   T73] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  107.677790][ T5858] batman_adv: batadv0: Interface activated: batadv_slave_0
[  107.686005][ T5848] veth0_vlan: entered promiscuous mode
[  107.693987][   T73] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  107.721427][ T5858] batman_adv: batadv0: Interface activated: batadv_slave_1
[  107.751272][ T5854] veth1_vlan: entered promiscuous mode
[  107.780921][ T5858] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  107.790502][   T49] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  107.791191][ T5858] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  107.802539][   T49] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  107.813298][ T5858] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  107.823899][ T5858] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  107.843327][ T5848] veth1_vlan: entered promiscuous mode
[  107.922702][ T5854] veth0_macvtap: entered promiscuous mode
[  107.958026][ T5854] veth1_macvtap: entered promiscuous mode
[  107.969630][ T5849] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[  108.070183][ T5848] veth0_macvtap: entered promiscuous mode
[  108.096717][ T5848] veth1_macvtap: entered promiscuous mode
[  108.142046][ T3574] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  108.157791][ T3574] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  108.198111][ T5854] batman_adv: batadv0: Interface activated: batadv_slave_0
[  108.230637][ T5848] batman_adv: batadv0: Interface activated: batadv_slave_0
[  108.249755][ T5854] batman_adv: batadv0: Interface activated: batadv_slave_1
[  108.268397][ T3574] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  108.288182][ T5854] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  108.294995][ T3574] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  108.311450][ T5854] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  108.320998][ T5854] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  108.337865][ T5854] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  108.340276][ T5937] FAULT_INJECTION: forcing a failure.
[  108.340276][ T5937] name fail_futex, interval 1, probability 0, space 0, times 1
[  108.361133][ T5937] CPU: 0 UID: 0 PID: 5937 Comm: syz.3.5 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(full) 
[  108.361181][ T5937] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  108.361212][ T5937] Call Trace:
[  108.361224][ T5937]  <TASK>
[  108.361240][ T5937]  dump_stack_lvl+0x16c/0x1f0
[  108.361304][ T5937]  should_fail_ex+0x512/0x640
[  108.361359][ T5937]  get_futex_key+0x1d0/0x1540
[  108.361405][ T5937]  ? __pfx_get_futex_key+0x10/0x10
[  108.361461][ T5937]  futex_wake+0xe7/0x4e0
[  108.361513][ T5937]  ? __pfx_futex_wake+0x10/0x10
[  108.361560][ T5937]  ? trace_kmalloc+0x2b/0xd0
[  108.361593][ T5937]  ? __kmalloc_noprof+0x242/0x510
[  108.361650][ T5937]  ? commit_creds+0x6e3/0x1040
[  108.361704][ T5937]  do_futex+0x1e3/0x350
[  108.361746][ T5937]  ? __pfx_do_futex+0x10/0x10
[  108.361789][ T5937]  ? cap_task_prctl+0x2af/0xa80
[  108.361829][ T5937]  __x64_sys_futex+0x1e0/0x4c0
[  108.361893][ T5937]  ? __pfx___x64_sys_futex+0x10/0x10
[  108.361934][ T5937]  ? __pfx___do_sys_prctl+0x10/0x10
[  108.361997][ T5937]  do_syscall_64+0xcd/0x490
[  108.362050][ T5937]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  108.362082][ T5937] RIP: 0033:0x7f194358e929
[  108.362107][ T5937] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  108.362139][ T5937] RSP: 002b:00007f19443a70e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  108.362168][ T5937] RAX: ffffffffffffffda RBX: 00007f19437b5fa8 RCX: 00007f194358e929
[  108.362189][ T5937] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f19437b5fac
[  108.362216][ T5937] RBP: 00007f19437b5fa0 R08: 00007f19443a8000 R09: 0000000000000000
[  108.362236][ T5937] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f19437b5fac
[  108.362255][ T5937] R13: 0000000000000000 R14: 00007ffdd2f54690 R15: 00007ffdd2f54778
[  108.362296][ T5937]  </TASK>
[  108.364393][ T5848] batman_adv: batadv0: Interface activated: batadv_slave_1
[  108.522962][ T5939] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[  108.536257][ T5848] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  108.583241][ T5855] Bluetooth: hci1: command tx timeout
[  108.590438][ T5848] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  108.596868][ T5855] Bluetooth: hci0: command tx timeout
[  108.606478][ T5861] Bluetooth: hci3: command tx timeout
[  108.611313][ T5848] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  108.624980][ T5848] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  108.655737][ T5861] Bluetooth: hci2: command tx timeout
[  108.899967][ T5942] syz.3.7 uses obsolete (PF_INET,SOCK_PACKET)
[  108.938754][ T3574] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  108.961920][ T3574] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  109.053451][   T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  109.079596][   T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  109.145224][ T1156] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  109.153875][ T1156] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  109.263898][ T1156] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  109.275710][ T1156] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  109.650460][ T5951] vhci_hcd: invalid port number 242
[  109.665545][ T5951] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535
[  109.778705][ T5950] FAULT_INJECTION: forcing a failure.
[  109.778705][ T5950] name failslab, interval 1, probability 0, space 0, times 0
[  109.821345][ T5950] CPU: 0 UID: 0 PID: 5950 Comm: syz.1.2 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(full) 
[  109.821395][ T5950] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  109.821414][ T5950] Call Trace:
[  109.821425][ T5950]  <TASK>
[  109.821438][ T5950]  dump_stack_lvl+0x16c/0x1f0
[  109.821497][ T5950]  should_fail_ex+0x512/0x640
[  109.821553][ T5950]  ? aa_label_asxprint+0x75/0x140
[  109.821586][ T5950]  should_failslab+0xc2/0x120
[  109.821618][ T5950]  __kmalloc_noprof+0xd2/0x510
[  109.821678][ T5950]  aa_label_asxprint+0x75/0x140
[  109.821717][ T5950]  apparmor_lsmprop_to_secctx+0xb2/0x1a0
[  109.821767][ T5950]  security_lsmprop_to_secctx+0x94/0x260
[  109.821815][ T5950]  audit_log_task_context+0x134/0x1a0
[  109.821859][ T5950]  ? __pfx_audit_log_task_context+0x10/0x10
[  109.821906][ T5950]  ? from_kuid+0x8d/0xd0
[  109.821955][ T5950]  ? __pfx_from_kuid+0x10/0x10
[  109.822006][ T5950]  ? __pfx_audit_log_start+0x10/0x10
[  109.822055][ T5950]  audit_log_task+0x1c2/0x3f0
[  109.822107][ T5950]  ? __pfx_audit_log_task+0x10/0x10
[  109.822170][ T5950]  ? arch_do_signal_or_restart+0x211/0x790
[  109.822220][ T5950]  audit_seccomp+0x79/0x1f0
[  109.822262][ T5950]  __secure_computing+0x2bf/0x320
[  109.822305][ T5950]  syscall_trace_enter+0x89/0x260
[  109.822362][ T5950]  do_syscall_64+0x347/0x490
[  109.822416][ T5950]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.822449][ T5950] RIP: 0033:0x7f5babb8e929
[  109.822474][ T5950] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  109.822505][ T5950] RSP: 002b:00007f5baca159f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[  109.822535][ T5950] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 00007f5babb8e929
[  109.822556][ T5950] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 000000000000000b
[  109.822575][ T5950] RBP: 00007f5baca16040 R08: 00007f5baca17000 R09: 000000000000000b
[  109.822595][ T5950] R10: 0000000000004d90 R11: 0000000000000246 R12: 0000000000000000
[  109.822614][ T5950] R13: 0000000000000000 R14: 00007f5babdb5fa0 R15: 00007ffe72951fb8
[  109.822654][ T5950]  </TASK>
[  109.822668][ T5950] audit: error in audit_log_task_context
[  110.094747][   T30] audit: type=1326 audit(1752315013.675:2): auid=4294967295 uid=0 gid=0 ses=4294967295 pid=5947 comm="syz.1.2" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5babb8e929 code=0x0
[  110.648046][ T5861] Bluetooth: hci0: command tx timeout
[  110.654009][ T5851] Bluetooth: hci1: command tx timeout
[  110.654021][ T5855] Bluetooth: hci3: command tx timeout
[  110.727663][ T5851] Bluetooth: hci2: command tx timeout
[  110.851803][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[  110.925368][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  111.025343][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  111.057620][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[  111.126602][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  111.525913][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[  111.535388][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  111.595540][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  111.603873][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  111.613054][    T0] NOHZ tick-stop error: local softirq work is pending, handler #208!!!
[  113.169582][ T6016] KVM: debugfs: duplicate directory 6016-4
[  113.479600][ T6024] process 'syz.3.26' launched ':,' with NULL argv: empty string added
[  114.298890][ T6035] __vm_enough_memory: pid: 6035, comm: syz.1.29, bytes: 4398046511104 not enough memory for the allocation
[  115.706462][ T6061] netlink: 'syz.2.34': attribute type 15 has an invalid length.
[  115.734619][ T6061] netlink: 'syz.2.34': attribute type 16 has an invalid length.
[  115.755056][ T6061] netlink: 'syz.2.34': attribute type 17 has an invalid length.
[  115.765765][ T6061] netlink: 'syz.2.34': attribute type 19 has an invalid length.
[  115.794334][ T6061] netlink: 'syz.2.34': attribute type 27 has an invalid length.
[  115.832202][ T6061] netlink: 'syz.2.34': attribute type 28 has an invalid length.
[  115.882759][ T6061] netlink: 'syz.2.34': attribute type 29 has an invalid length.
[  116.039029][ T6061] netlink: 'syz.2.34': attribute type 30 has an invalid length.
[  116.077884][ T6061] netlink: 18 bytes leftover after parsing attributes in process `syz.2.34'.
[  116.102231][ T6061] Zero length message leads to an empty skb
[  116.502529][ T6069] FAULT_INJECTION: forcing a failure.
[  116.502529][ T6069] name failslab, interval 1, probability 0, space 0, times 0
[  116.529969][ T6067] FAULT_INJECTION: forcing a failure.
[  116.529969][ T6067] name failslab, interval 1, probability 0, space 0, times 0
[  116.544274][ T6067] CPU: 1 UID: 0 PID: 6067 Comm: syz.3.35 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(full) 
[  116.544317][ T6067] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  116.544335][ T6067] Call Trace:
[  116.544345][ T6067]  <TASK>
[  116.544356][ T6067]  dump_stack_lvl+0x16c/0x1f0
[  116.544410][ T6067]  should_fail_ex+0x512/0x640
[  116.544457][ T6067]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  116.544505][ T6067]  should_failslab+0xc2/0x120
[  116.544535][ T6067]  __kmalloc_cache_noprof+0x6a/0x3e0
[  116.544579][ T6067]  ? alloc_tty_struct+0x96/0x8c0
[  116.544619][ T6067]  alloc_tty_struct+0x96/0x8c0
[  116.544653][ T6067]  ? __pfx_alloc_tty_struct+0x10/0x10
[  116.544698][ T6067]  pty_common_install+0x1c7/0xb30
[  116.544749][ T6067]  ? __pfx_pty_unix98_install+0x10/0x10
[  116.544798][ T6067]  tty_init_dev.part.0+0x99/0x500
[  116.544834][ T6067]  tty_init_dev+0x60/0x80
[  116.544866][ T6067]  ? __pfx_ptmx_open+0x10/0x10
[  116.544906][ T6067]  ptmx_open+0x10d/0x360
[  116.544960][ T6067]  ? __pfx_ptmx_open+0x10/0x10
[  116.545002][ T6067]  chrdev_open+0x234/0x6a0
[  116.545055][ T6067]  ? __pfx_chrdev_open+0x10/0x10
[  116.545110][ T6067]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  116.545161][ T6067]  do_dentry_open+0x741/0x1c10
[  116.545211][ T6067]  ? __pfx_chrdev_open+0x10/0x10
[  116.545271][ T6067]  vfs_open+0x82/0x3f0
[  116.545311][ T6067]  path_openat+0x1de4/0x2cb0
[  116.545372][ T6067]  ? __pfx_path_openat+0x10/0x10
[  116.545423][ T6067]  ? __lock_acquire+0xb8a/0x1c90
[  116.545473][ T6067]  do_filp_open+0x20b/0x470
[  116.545522][ T6067]  ? __pfx_do_filp_open+0x10/0x10
[  116.545602][ T6067]  ? alloc_fd+0x471/0x7d0
[  116.545658][ T6067]  do_sys_openat2+0x11b/0x1d0
[  116.545694][ T6067]  ? __pfx_do_sys_openat2+0x10/0x10
[  116.545735][ T6067]  ? do_fcntl+0x1eb/0x15a0
[  116.545777][ T6067]  __x64_sys_openat+0x174/0x210
[  116.545824][ T6067]  ? __pfx___x64_sys_openat+0x10/0x10
[  116.545877][ T6067]  do_syscall_64+0xcd/0x490
[  116.545927][ T6067]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  116.545963][ T6067] RIP: 0033:0x7f194358e929
[  116.545987][ T6067] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  116.546016][ T6067] RSP: 002b:00007f19443a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  116.546043][ T6067] RAX: ffffffffffffffda RBX: 00007f19437b5fa0 RCX: 00007f194358e929
[  116.546063][ T6067] RDX: 0000000000020540 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  116.546082][ T6067] RBP: 00007f1943610b39 R08: 0000000000000000 R09: 0000000000000000
[  116.546099][ T6067] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  116.546116][ T6067] R13: 0000000000000000 R14: 00007f19437b5fa0 R15: 00007ffdd2f54778
[  116.546154][ T6067]  </TASK>
[  116.963750][ T6069] CPU: 0 UID: 0 PID: 6069 Comm: syz.2.36 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(full) 
[  116.963797][ T6069] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  116.963816][ T6069] Call Trace:
[  116.963825][ T6069]  <TASK>
[  116.963837][ T6069]  dump_stack_lvl+0x16c/0x1f0
[  116.963890][ T6069]  should_fail_ex+0x512/0x640
[  116.963938][ T6069]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  116.963984][ T6069]  should_failslab+0xc2/0x120
[  116.964014][ T6069]  __kmalloc_cache_noprof+0x6a/0x3e0
[  116.964057][ T6069]  ? __asan_memcpy+0x3c/0x60
[  116.964098][ T6069]  ? sctp_transport_new+0xa8/0x7b0
[  116.964136][ T6069]  sctp_transport_new+0xa8/0x7b0
[  116.964167][ T6069]  sctp_assoc_add_peer+0x2e3/0x1550
[  116.964201][ T6069]  sctp_connect_new_asoc+0x208/0x790
[  116.964232][ T6069]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  116.964262][ T6069]  ? sctp_endpoint_lookup_assoc+0x15c/0x2a0
[  116.964296][ T6069]  __sctp_connect+0x3f3/0xc60
[  116.964326][ T6069]  ? do_raw_spin_lock+0x12c/0x2b0
[  116.964365][ T6069]  ? __pfx___sctp_connect+0x10/0x10
[  116.964394][ T6069]  ? __pfx_sctp_inet_connect+0x10/0x10
[  116.964423][ T6069]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  116.964461][ T6069]  ? __pfx_sctp_inet_connect+0x10/0x10
[  116.964488][ T6069]  sctp_inet_connect+0x15f/0x200
[  116.964517][ T6069]  __sys_connect_file+0x13e/0x1a0
[  116.964551][ T6069]  __sys_connect+0x13b/0x160
[  116.964580][ T6069]  ? __pfx___sys_connect+0x10/0x10
[  116.964619][ T6069]  ? xfd_validate_state+0x61/0x180
[  116.964659][ T6069]  ? __pfx_do_writev+0x10/0x10
[  116.964696][ T6069]  __x64_sys_connect+0x72/0xb0
[  116.964725][ T6069]  ? lockdep_hardirqs_on+0x7c/0x110
[  116.964759][ T6069]  do_syscall_64+0xcd/0x490
[  116.964797][ T6069]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  116.964820][ T6069] RIP: 0033:0x7ff44a38e929
[  116.964838][ T6069] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  116.964860][ T6069] RSP: 002b:00007ff44b21c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  116.964881][ T6069] RAX: ffffffffffffffda RBX: 00007ff44a5b5fa0 RCX: 00007ff44a38e929
[  116.964896][ T6069] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003
[  116.964916][ T6069] RBP: 00007ff44a410b39 R08: 0000000000000000 R09: 0000000000000000
[  116.964936][ T6069] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  116.964955][ T6069] R13: 0000000000000000 R14: 00007ff44a5b5fa0 R15: 00007ffdd039f338
[  116.964994][ T6069]  </TASK>
[  118.577075][ T6089] FAULT_INJECTION: forcing a failure.
[  118.577075][ T6089] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  118.595471][ T6089] CPU: 1 UID: 0 PID: 6089 Comm: syz.2.41 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(full) 
[  118.595515][ T6089] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  118.595537][ T6089] Call Trace:
[  118.595548][ T6089]  <TASK>
[  118.595559][ T6089]  dump_stack_lvl+0x16c/0x1f0
[  118.595649][ T6089]  should_fail_ex+0x512/0x640
[  118.595705][ T6089]  _copy_from_user+0x2e/0xd0
[  118.595761][ T6089]  copy_msghdr_from_user+0x98/0x160
[  118.595813][ T6089]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  118.595875][ T6089]  ? find_held_lock+0x2b/0x80
[  118.595913][ T6089]  ? futex_unqueue+0x133/0x2c0
[  118.595961][ T6089]  ___sys_sendmsg+0xfe/0x1d0
[  118.596011][ T6089]  ? __pfx____sys_sendmsg+0x10/0x10
[  118.596083][ T6089]  ? find_held_lock+0x2b/0x80
[  118.596146][ T6089]  __sys_sendmmsg+0x200/0x420
[  118.596203][ T6089]  ? __pfx___sys_sendmmsg+0x10/0x10
[  118.596268][ T6089]  ? __pfx_do_futex+0x10/0x10
[  118.596325][ T6089]  ? __sys_socket+0xac/0x260
[  118.596361][ T6089]  ? __fget_files+0x20e/0x3c0
[  118.596410][ T6089]  ? xfd_validate_state+0x61/0x180
[  118.596464][ T6089]  __x64_sys_sendmmsg+0x9c/0x100
[  118.596513][ T6089]  ? lockdep_hardirqs_on+0x7c/0x110
[  118.596559][ T6089]  do_syscall_64+0xcd/0x490
[  118.596613][ T6089]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  118.596647][ T6089] RIP: 0033:0x7ff44a38e929
[  118.596672][ T6089] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  118.596711][ T6089] RSP: 002b:00007ff44b21c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  118.596747][ T6089] RAX: ffffffffffffffda RBX: 00007ff44a5b5fa0 RCX: 00007ff44a38e929
[  118.596769][ T6089] RDX: 0000000000000008 RSI: 0000200000000300 RDI: 0000000000000006
[  118.596789][ T6089] RBP: 00007ff44a410b39 R08: 0000000000000000 R09: 0000000000000000
[  118.596807][ T6089] R10: 0000000000007fff R11: 0000000000000246 R12: 0000000000000000
[  118.596827][ T6089] R13: 0000000000000000 R14: 00007ff44a5b5fa0 R15: 00007ffdd039f338
[  118.596885][ T6089]  </TASK>
[  119.646243][ T6099] FAULT_INJECTION: forcing a failure.
[  119.646243][ T6099] name failslab, interval 1, probability 0, space 0, times 0
[  119.715039][ T6099] CPU: 0 UID: 0 PID: 6099 Comm: syz.2.46 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(full) 
[  119.715089][ T6099] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  119.715109][ T6099] Call Trace:
[  119.715120][ T6099]  <TASK>
[  119.715133][ T6099]  dump_stack_lvl+0x16c/0x1f0
[  119.715192][ T6099]  should_fail_ex+0x512/0x640
[  119.715250][ T6099]  should_failslab+0xc2/0x120
[  119.715286][ T6099]  __kmalloc_cache_noprof+0x6a/0x3e0
[  119.715332][ T6099]  ? __pfx___might_resched+0x10/0x10
[  119.715374][ T6099]  ? bdi_split_work_to_wbs+0x2bd/0xf90
[  119.715416][ T6099]  bdi_split_work_to_wbs+0x2bd/0xf90
[  119.715465][ T6099]  ? __pfx_bdi_split_work_to_wbs+0x10/0x10
[  119.715514][ T6099]  ? lockdep_unlock+0x64/0xe0
[  119.715569][ T6099]  ? __lock_acquire+0x1053/0x1c90
[  119.715628][ T6099]  __writeback_inodes_sb_nr+0x1cf/0x270
[  119.715669][ T6099]  ? __pfx___writeback_inodes_sb_nr+0x10/0x10
[  119.715724][ T6099]  ? get_nr_dirty_inodes+0x170/0x1e0
[  119.715772][ T6099]  sync_filesystem+0xbb/0x290
[  119.715832][ T6099]  ? __pfx_fs_bdev_sync+0x10/0x10
[  119.715878][ T6099]  fs_bdev_sync+0x2c/0x40
[  119.715926][ T6099]  blkdev_common_ioctl+0x1745/0x2480
[  119.715966][ T6099]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  119.716011][ T6099]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  119.716066][ T6099]  ? __pfx_blkdev_common_ioctl+0x10/0x10
[  119.716107][ T6099]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  119.716191][ T6099]  ? find_held_lock+0x2b/0x80
[  119.716235][ T6099]  blkdev_ioctl+0x1cb/0x6d0
[  119.716281][ T6099]  ? __pfx_blkdev_ioctl+0x10/0x10
[  119.716329][ T6099]  ? __pfx_blkdev_ioctl+0x10/0x10
[  119.716377][ T6099]  __x64_sys_ioctl+0x18e/0x210
[  119.716421][ T6099]  do_syscall_64+0xcd/0x490
[  119.716482][ T6099]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  119.716516][ T6099] RIP: 0033:0x7ff44a38e929
[  119.716543][ T6099] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  119.716580][ T6099] RSP: 002b:00007ff44b21c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  119.716613][ T6099] RAX: ffffffffffffffda RBX: 00007ff44a5b5fa0 RCX: 00007ff44a38e929
[  119.716635][ T6099] RDX: 000000000000001f RSI: 0000000000001261 RDI: 0000000000000006
[  119.716655][ T6099] RBP: 00007ff44a410b39 R08: 0000000000000000 R09: 0000000000000000
[  119.716680][ T6099] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  119.716699][ T6099] R13: 0000000000000000 R14: 00007ff44a5b5fa0 R15: 00007ffdd039f338
[  119.716740][ T6099]  </TASK>
[  121.245379][ T6118] netlink: 338 bytes leftover after parsing attributes in process `syz.2.50'.
[  121.261498][ T6118] netlink: 338 bytes leftover after parsing attributes in process `syz.2.50'.
[  121.528804][ T6118] netlink: 210 bytes leftover after parsing attributes in process `syz.2.50'.
[  121.541298][ T6119] zswap: compressor  not available
[  122.498824][ T6141] netlink: 4 bytes leftover after parsing attributes in process `syz.1.54'.
[  122.548902][ T6141] netlink: 25 bytes leftover after parsing attributes in process `syz.1.54'.
[  125.260008][ T6189] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  127.328270][ T6214] FAULT_INJECTION: forcing a failure.
[  127.328270][ T6214] name failslab, interval 1, probability 0, space 0, times 0
[  127.363293][ T6214] CPU: 0 UID: 0 PID: 6214 Comm: syz.2.69 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(full) 
[  127.363327][ T6214] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  127.363340][ T6214] Call Trace:
[  127.363348][ T6214]  <TASK>
[  127.363357][ T6214]  dump_stack_lvl+0x16c/0x1f0
[  127.363404][ T6214]  should_fail_ex+0x512/0x640
[  127.363438][ T6214]  ? __kmalloc_noprof+0xbf/0x510
[  127.363475][ T6214]  ? __netif_set_xps_queue+0x80f/0x22d0
[  127.363497][ T6214]  should_failslab+0xc2/0x120
[  127.363519][ T6214]  __kmalloc_noprof+0xd2/0x510
[  127.363559][ T6214]  __netif_set_xps_queue+0x80f/0x22d0
[  127.363600][ T6214]  xps_rxqs_store+0x238/0x320
[  127.363638][ T6214]  ? __pfx_xps_rxqs_store+0x10/0x10
[  127.363668][ T6214]  netdev_queue_attr_store+0x61/0x90
[  127.363691][ T6214]  ? __pfx_netdev_queue_attr_store+0x10/0x10
[  127.363715][ T6214]  sysfs_kf_write+0xef/0x150
[  127.363746][ T6214]  kernfs_fop_write_iter+0x351/0x510
[  127.363770][ T6214]  ? __pfx_sysfs_kf_write+0x10/0x10
[  127.363800][ T6214]  do_iter_readv_writev+0x654/0x950
[  127.363834][ T6214]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  127.363880][ T6214]  vfs_writev+0x35f/0xde0
[  127.363918][ T6214]  ? __pfx_vfs_writev+0x10/0x10
[  127.363989][ T6214]  ? __fget_files+0x20e/0x3c0
[  127.364030][ T6214]  ? do_pwritev+0x1a6/0x270
[  127.364061][ T6214]  do_pwritev+0x1a6/0x270
[  127.364093][ T6214]  ? __pfx_do_pwritev+0x10/0x10
[  127.364135][ T6214]  do_syscall_64+0xcd/0x490
[  127.364173][ T6214]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  127.364197][ T6214] RIP: 0033:0x7ff44a38e929
[  127.364215][ T6214] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  127.364238][ T6214] RSP: 002b:00007ff44b21c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000128
[  127.364259][ T6214] RAX: ffffffffffffffda RBX: 00007ff44a5b5fa0 RCX: 00007ff44a38e929
[  127.364275][ T6214] RDX: 0000000000000005 RSI: 0000200000001000 RDI: 0000000000000003
[  127.364289][ T6214] RBP: 00007ff44a410b39 R08: 0000000000000009 R09: 0000000000000000
[  127.364302][ T6214] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000
[  127.364316][ T6214] R13: 0000000000000000 R14: 00007ff44a5b5fa0 R15: 00007ffdd039f338
[  127.364346][ T6214]  </TASK>
[  128.160666][ T6219] netlink: 330 bytes leftover after parsing attributes in process `syz.2.70'.
[  128.219836][ T6219] gretap0: refused to change device tx_queue_len
[  128.269139][ T6222] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  128.744453][ T6234] FAULT_INJECTION: forcing a failure.
[  128.744453][ T6234] name failslab, interval 1, probability 0, space 0, times 0
[  128.761902][ T6234] CPU: 0 UID: 0 PID: 6234 Comm: syz.1.77 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(full) 
[  128.761943][ T6234] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  128.761961][ T6234] Call Trace:
[  128.761971][ T6234]  <TASK>
[  128.761983][ T6234]  dump_stack_lvl+0x16c/0x1f0
[  128.762033][ T6234]  should_fail_ex+0x512/0x640
[  128.762075][ T6234]  ? fs_reclaim_acquire+0xae/0x150
[  128.762111][ T6234]  ? tomoyo_encode2+0x100/0x3e0
[  128.762150][ T6234]  should_failslab+0xc2/0x120
[  128.762177][ T6234]  __kmalloc_noprof+0xd2/0x510
[  128.762219][ T6234]  ? d_absolute_path+0x136/0x1a0
[  128.762253][ T6234]  tomoyo_encode2+0x100/0x3e0
[  128.762296][ T6234]  tomoyo_encode+0x29/0x50
[  128.762342][ T6234]  tomoyo_realpath_from_path+0x18f/0x6e0
[  128.762414][ T6234]  tomoyo_path_number_perm+0x245/0x580
[  128.762461][ T6234]  ? tomoyo_path_number_perm+0x237/0x580
[  128.762498][ T6234]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  128.762602][ T6234]  ? find_held_lock+0x2b/0x80
[  128.762631][ T6234]  ? hook_file_ioctl_common+0x145/0x410
[  128.762669][ T6234]  ? __fget_files+0x20e/0x3c0
[  128.762714][ T6234]  security_file_ioctl+0x9b/0x240
[  128.762751][ T6234]  __x64_sys_ioctl+0xb7/0x210
[  128.762787][ T6234]  do_syscall_64+0xcd/0x490
[  128.762851][ T6234]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  128.762880][ T6234] RIP: 0033:0x7f5babb8e929
[  128.762904][ T6234] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  128.762933][ T6234] RSP: 002b:00007f5baca16038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  128.762961][ T6234] RAX: ffffffffffffffda RBX: 00007f5babdb5fa0 RCX: 00007f5babb8e929
[  128.762980][ T6234] RDX: 000000000000001f RSI: 0000000000001261 RDI: 0000000000000006
[  128.762998][ T6234] RBP: 00007f5babc10b39 R08: 0000000000000000 R09: 0000000000000000
[  128.763016][ T6234] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  128.763034][ T6234] R13: 0000000000000000 R14: 00007f5babdb5fa0 R15: 00007ffe72951fb8
[  128.763071][ T6234]  </TASK>
[  128.978799][ T6234] ERROR: Out of memory at tomoyo_realpath_from_path.
[  131.012309][ T6263] FAULT_INJECTION: forcing a failure.
[  131.012309][ T6263] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  131.072362][ T6263] CPU: 1 UID: 0 PID: 6263 Comm: syz.1.82 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(full) 
[  131.072410][ T6263] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  131.072430][ T6263] Call Trace:
[  131.072441][ T6263]  <TASK>
[  131.072453][ T6263]  dump_stack_lvl+0x16c/0x1f0
[  131.072510][ T6263]  should_fail_ex+0x512/0x640
[  131.072566][ T6263]  _copy_from_user+0x2e/0xd0
[  131.072620][ T6263]  copy_msghdr_from_user+0x98/0x160
[  131.072671][ T6263]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  131.072729][ T6263]  ? kfree+0x24f/0x4d0
[  131.072772][ T6263]  ? futex_unqueue+0x133/0x2c0
[  131.072817][ T6263]  ___sys_sendmsg+0xfe/0x1d0
[  131.072870][ T6263]  ? __pfx____sys_sendmsg+0x10/0x10
[  131.072961][ T6263]  ? __pfx___might_resched+0x10/0x10
[  131.073008][ T6263]  __sys_sendmmsg+0x200/0x420
[  131.073064][ T6263]  ? __pfx___sys_sendmmsg+0x10/0x10
[  131.073128][ T6263]  ? __pfx_do_futex+0x10/0x10
[  131.073188][ T6263]  ? __x64_sys_openat+0x174/0x210
[  131.073240][ T6263]  ? xfd_validate_state+0x61/0x180
[  131.073296][ T6263]  __x64_sys_sendmmsg+0x9c/0x100
[  131.073347][ T6263]  ? lockdep_hardirqs_on+0x7c/0x110
[  131.073396][ T6263]  do_syscall_64+0xcd/0x490
[  131.073450][ T6263]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  131.073484][ T6263] RIP: 0033:0x7f5babb8e929
[  131.073509][ T6263] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  131.073541][ T6263] RSP: 002b:00007f5baca16038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  131.073572][ T6263] RAX: ffffffffffffffda RBX: 00007f5babdb5fa0 RCX: 00007f5babb8e929
[  131.073593][ T6263] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000003
[  131.073612][ T6263] RBP: 00007f5babc10b39 R08: 0000000000000000 R09: 0000000000000000
[  131.073632][ T6263] R10: 0000000007000000 R11: 0000000000000246 R12: 0000000000000000
[  131.073651][ T6263] R13: 0000000000000000 R14: 00007f5babdb5fa0 R15: 00007ffe72951fb8
[  131.073692][ T6263]  </TASK>
[  132.217827][ T6280] netlink: 186 bytes leftover after parsing attributes in process `syz.0.86'.
[  132.598592][ T6282] netlink: 342 bytes leftover after parsing attributes in process `syz.1.87'.
[  132.812209][ T6282] netlink: 214 bytes leftover after parsing attributes in process `syz.1.87'.
[  132.839443][ T6282] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  132.846999][ T6282] IPv6: NLM_F_CREATE should be set when creating new route
[  132.854377][ T6282] IPv6: NLM_F_CREATE should be set when creating new route
[  132.861695][ T6282] IPv6: NLM_F_CREATE should be set when creating new route
[  133.846706][ T6295] FAULT_INJECTION: forcing a failure.
[  133.846706][ T6295] name failslab, interval 1, probability 0, space 0, times 0
[  133.930066][ T6295] CPU: 1 UID: 0 PID: 6295 Comm: syz.3.89 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(full) 
[  133.930121][ T6295] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  133.930141][ T6295] Call Trace:
[  133.930151][ T6295]  <TASK>
[  133.930164][ T6295]  dump_stack_lvl+0x16c/0x1f0
[  133.930220][ T6295]  should_fail_ex+0x512/0x640
[  133.930269][ T6295]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  133.930345][ T6295]  should_failslab+0xc2/0x120
[  133.930389][ T6295]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  133.930439][ T6295]  ? radix_tree_node_alloc.constprop.0+0x7c/0x350
[  133.930489][ T6295]  radix_tree_node_alloc.constprop.0+0x7c/0x350
[  133.930540][ T6295]  radix_tree_insert+0x247/0x630
[  133.930592][ T6295]  qrtr_node_enqueue+0x1077/0x12e0
[  133.930637][ T6295]  ? __asan_memcpy+0x3c/0x60
[  133.930702][ T6295]  ? __pfx_qrtr_node_enqueue+0x10/0x10
[  133.930734][ T6295]  ? skb_set_owner_w+0x31f/0x710
[  133.930778][ T6295]  ? skb_copy_header+0x20/0x2b0
[  133.930824][ T6295]  ? __pfx_skb_set_owner_w+0x10/0x10
[  133.930866][ T6295]  ? __pskb_copy_fclone+0x48e/0xb50
[  133.930897][ T6295]  ? __pfx__copy_from_iter+0x10/0x10
[  133.930952][ T6295]  qrtr_bcast_enqueue+0xc7/0x1b0
[  133.930982][ T6295]  qrtr_sendmsg+0x441/0x7b0
[  133.931006][ T6295]  ? __pfx_qrtr_bcast_enqueue+0x10/0x10
[  133.931030][ T6295]  ? __pfx_qrtr_sendmsg+0x10/0x10
[  133.931065][ T6295]  sock_write_iter+0x4fc/0x5b0
[  133.931093][ T6295]  ? __pfx_sock_write_iter+0x10/0x10
[  133.931139][ T6295]  ? __futex_wait+0x24c/0x2f0
[  133.931183][ T6295]  ? copy_iovec_from_user+0x131/0x170
[  133.931239][ T6295]  do_iter_readv_writev+0x654/0x950
[  133.931275][ T6295]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  133.931312][ T6295]  ? bpf_lsm_file_permission+0x9/0x10
[  133.931338][ T6295]  ? security_file_permission+0x71/0x210
[  133.931372][ T6295]  ? rw_verify_area+0xcf/0x680
[  133.931405][ T6295]  vfs_writev+0x35f/0xde0
[  133.931445][ T6295]  ? __pfx_vfs_writev+0x10/0x10
[  133.931498][ T6295]  ? __fget_files+0x20e/0x3c0
[  133.931539][ T6295]  ? do_writev+0x28c/0x340
[  133.931568][ T6295]  do_writev+0x28c/0x340
[  133.931599][ T6295]  ? __pfx_do_writev+0x10/0x10
[  133.931640][ T6295]  do_syscall_64+0xcd/0x490
[  133.931678][ T6295]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.931703][ T6295] RIP: 0033:0x7f194358e929
[  133.931721][ T6295] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  133.931744][ T6295] RSP: 002b:00007f19443a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  133.931765][ T6295] RAX: ffffffffffffffda RBX: 00007f19437b5fa0 RCX: 00007f194358e929
[  133.931780][ T6295] RDX: 0000000000000008 RSI: 0000200000000100 RDI: 0000000000000003
[  133.931794][ T6295] RBP: 00007f1943610b39 R08: 0000000000000000 R09: 0000000000000000
[  133.931808][ T6295] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  133.931822][ T6295] R13: 0000000000000000 R14: 00007f19437b5fa0 R15: 00007ffdd2f54778
[  133.931851][ T6295]  </TASK>
[  141.129002][ T6416] netlink: 294 bytes leftover after parsing attributes in process `syz.0.112'.
[  141.288525][ T6417] FAULT_INJECTION: forcing a failure.
[  141.288525][ T6417] name failslab, interval 1, probability 0, space 0, times 0
[  141.319213][ T6417] CPU: 1 UID: 0 PID: 6417 Comm: syz.3.113 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(full) 
[  141.319254][ T6417] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  141.319269][ T6417] Call Trace:
[  141.319276][ T6417]  <TASK>
[  141.319285][ T6417]  dump_stack_lvl+0x16c/0x1f0
[  141.319326][ T6417]  should_fail_ex+0x512/0x640
[  141.319361][ T6417]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  141.319397][ T6417]  should_failslab+0xc2/0x120
[  141.319420][ T6417]  __kmalloc_cache_noprof+0x6a/0x3e0
[  141.319451][ T6417]  ? __asan_memset+0x23/0x50
[  141.319481][ T6417]  ? alloc_netdev_mqs+0xece/0x1570
[  141.319523][ T6417]  alloc_netdev_mqs+0xece/0x1570
[  141.319567][ T6417]  slip_open+0x35c/0x1150
[  141.319598][ T6417]  ? __pfx___might_resched+0x10/0x10
[  141.319624][ T6417]  ? __pfx_n_tty_close+0x10/0x10
[  141.319656][ T6417]  ? find_held_lock+0x2b/0x80
[  141.319680][ T6417]  ? __pfx_slip_open+0x10/0x10
[  141.319712][ T6417]  ? down_write+0x14d/0x200
[  141.319737][ T6417]  ? __pfx_slip_open+0x10/0x10
[  141.319767][ T6417]  tty_ldisc_open+0x9c/0x120
[  141.319801][ T6417]  tty_set_ldisc+0x32b/0x780
[  141.319842][ T6417]  tty_ioctl+0xc2e/0x1640
[  141.319882][ T6417]  ? __pfx_tty_ioctl+0x10/0x10
[  141.319928][ T6417]  ? find_held_lock+0x2b/0x80
[  141.319952][ T6417]  ? hook_file_ioctl_common+0x145/0x410
[  141.319985][ T6417]  ? __fget_files+0x20e/0x3c0
[  141.320023][ T6417]  ? __pfx_tty_ioctl+0x10/0x10
[  141.320062][ T6417]  __x64_sys_ioctl+0x18e/0x210
[  141.320106][ T6417]  do_syscall_64+0xcd/0x490
[  141.320146][ T6417]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  141.320170][ T6417] RIP: 0033:0x7f194358e929
[  141.320188][ T6417] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  141.320210][ T6417] RSP: 002b:00007f19443a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  141.320232][ T6417] RAX: ffffffffffffffda RBX: 00007f19437b5fa0 RCX: 00007f194358e929
[  141.320248][ T6417] RDX: 0000000000000000 RSI: 0000000000005423 RDI: 0000000000000006
[  141.320262][ T6417] RBP: 00007f1943610b39 R08: 0000000000000000 R09: 0000000000000000
[  141.320276][ T6417] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  141.320290][ T6417] R13: 0000000000000000 R14: 00007f19437b5fa0 R15: 00007ffdd2f54778
[  141.320319][ T6417]  </TASK>
[  141.772725][ T6423] netlink: 338 bytes leftover after parsing attributes in process `syz.2.116'.
[  141.796756][ T6423] netlink: 338 bytes leftover after parsing attributes in process `syz.2.116'.
[  141.879693][ T6423] netlink: 338 bytes leftover after parsing attributes in process `syz.2.116'.
[  142.160204][ T6423] netlink: 338 bytes leftover after parsing attributes in process `syz.2.116'.
[  142.311504][ T6423] netlink: 338 bytes leftover after parsing attributes in process `syz.2.116'.
[  142.321726][ T6423] netlink: 338 bytes leftover after parsing attributes in process `syz.2.116'.
[  142.332097][ T6423] netlink: 338 bytes leftover after parsing attributes in process `syz.2.116'.
[  142.430860][ T6423] netlink: 338 bytes leftover after parsing attributes in process `syz.2.116'.
[  143.055693][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  143.062230][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  144.827846][ T6474] FAULT_INJECTION: forcing a failure.
[  144.827846][ T6474] name failslab, interval 1, probability 0, space 0, times 0
[  144.841683][ T6474] CPU: 0 UID: 0 PID: 6474 Comm: syz.0.127 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(full) 
[  144.841716][ T6474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  144.841737][ T6474] Call Trace:
[  144.841745][ T6474]  <TASK>
[  144.841754][ T6474]  dump_stack_lvl+0x16c/0x1f0
[  144.841795][ T6474]  should_fail_ex+0x512/0x640
[  144.841830][ T6474]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  144.841871][ T6474]  should_failslab+0xc2/0x120
[  144.841906][ T6474]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  144.841941][ T6474]  ? __alloc_skb+0x2b2/0x380
[  144.841979][ T6474]  __alloc_skb+0x2b2/0x380
[  144.842012][ T6474]  ? __pfx___alloc_skb+0x10/0x10
[  144.842042][ T6474]  ? __pfx_add_uevent_var+0x10/0x10
[  144.842064][ T6474]  ? trace_kmalloc+0x2b/0xd0
[  144.842092][ T6474]  ? __asan_memcpy+0x3c/0x60
[  144.842125][ T6474]  alloc_uevent_skb+0x7d/0x210
[  144.842148][ T6474]  ? __pfx_rx_queue_namespace+0x10/0x10
[  144.842172][ T6474]  kobject_uevent_env+0x11cc/0x1870
[  144.842204][ T6474]  ? internal_create_groups+0x11a/0x150
[  144.842241][ T6474]  net_rx_queue_update_kobjects+0x1de/0x770
[  144.842269][ T6474]  ? kset_register+0x1bb/0x2b0
[  144.842294][ T6474]  netdev_register_kobject+0x269/0x3a0
[  144.842321][ T6474]  register_netdevice+0x13dc/0x2270
[  144.842346][ T6474]  ? idr_alloc+0xdd/0x130
[  144.842376][ T6474]  ? __pfx_register_netdevice+0x10/0x10
[  144.842406][ T6474]  ppp_dev_configure+0x99b/0xc80
[  144.842440][ T6474]  ppp_ioctl+0x17e0/0x2660
[  144.842470][ T6474]  ? find_held_lock+0x2b/0x80
[  144.842494][ T6474]  ? __pfx_ppp_ioctl+0x10/0x10
[  144.842527][ T6474]  ? __fget_files+0x20e/0x3c0
[  144.842563][ T6474]  ? __pfx_ppp_ioctl+0x10/0x10
[  144.842592][ T6474]  __x64_sys_ioctl+0x18e/0x210
[  144.842621][ T6474]  do_syscall_64+0xcd/0x490
[  144.842661][ T6474]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.842684][ T6474] RIP: 0033:0x7f6c7c98e929
[  144.842702][ T6474] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  144.842732][ T6474] RSP: 002b:00007f6c7d7a5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  144.842753][ T6474] RAX: ffffffffffffffda RBX: 00007f6c7cbb5fa0 RCX: 00007f6c7c98e929
[  144.842768][ T6474] RDX: 0000000000000000 RSI: 00000000c004743e RDI: 0000000000000007
[  144.842782][ T6474] RBP: 00007f6c7ca10b39 R08: 0000000000000000 R09: 0000000000000000
[  144.842814][ T6474] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  144.842827][ T6474] R13: 0000000000000000 R14: 00007f6c7cbb5fa0 R15: 00007ffdaaa41118
[  144.842857][ T6474]  </TASK>
[  146.772120][ T6502] 0x000200000001-0xa29656a63616329 : ""
[  146.808057][ T6502] mtd: partition "" is out of reach -- disabled
[  146.855283][ T6502] ftl_cs: FTL header not found.
[  150.056061][ T6560] 0x000200000001-0xa29656a63616329 : ""
[  150.061682][ T6560] mtd: partition "" is out of reach -- disabled
[  150.137335][ T6560] ftl_cs: FTL header not found.
[  150.196804][ T6556] netlink: 'syz.3.146': attribute type 16 has an invalid length.
[  150.204610][ T6556] netlink: 326 bytes leftover after parsing attributes in process `syz.3.146'.
[  150.346625][ T6556] veth1_macvtap: left promiscuous mode
[  157.967257][ T6677] netlink: 274 bytes leftover after parsing attributes in process `syz.1.176'.
[  160.191797][   T30] audit: type=1804 audit(1752315064.085:3): pid=6717 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.187" name="/newroot/49/file0" dev="tmpfs" ino=276 res=1 errno=0
[  161.405557][ T6735] syz.3.194 (6735): /proc/6734/oom_adj is deprecated, please use /proc/6734/oom_score_adj instead.
[  161.418058][ T6735] FAULT_INJECTION: forcing a failure.
[  161.418058][ T6735] name failslab, interval 1, probability 0, space 0, times 0
[  161.431197][ T6735] CPU: 0 UID: 0 PID: 6735 Comm: syz.3.194 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(full) 
[  161.431228][ T6735] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  161.431242][ T6735] Call Trace:
[  161.431250][ T6735]  <TASK>
[  161.431258][ T6735]  dump_stack_lvl+0x16c/0x1f0
[  161.431299][ T6735]  should_fail_ex+0x512/0x640
[  161.431334][ T6735]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  161.431373][ T6735]  should_failslab+0xc2/0x120
[  161.431405][ T6735]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  161.431448][ T6735]  ? security_file_alloc+0x34/0x2b0
[  161.431484][ T6735]  security_file_alloc+0x34/0x2b0
[  161.431517][ T6735]  init_file+0x93/0x4c0
[  161.431541][ T6735]  alloc_empty_file+0x73/0x1e0
[  161.431567][ T6735]  alloc_file_pseudo+0x13a/0x230
[  161.431594][ T6735]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  161.431618][ T6735]  ? __pfx_pipe_lock_cmp_fn+0x10/0x10
[  161.431660][ T6735]  create_pipe_files+0x364/0x930
[  161.431701][ T6735]  do_pipe2+0xaf/0x1c0
[  161.431737][ T6735]  ? __pfx_do_pipe2+0x10/0x10
[  161.431774][ T6735]  ? xfd_validate_state+0x61/0x180
[  161.431805][ T6735]  ? __pfx_ksys_write+0x10/0x10
[  161.431846][ T6735]  __x64_sys_pipe+0x33/0x50
[  161.431866][ T6735]  do_syscall_64+0xcd/0x490
[  161.431905][ T6735]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  161.431928][ T6735] RIP: 0033:0x7f194358e929
[  161.431946][ T6735] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  161.431969][ T6735] RSP: 002b:00007f19443a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000016
[  161.431991][ T6735] RAX: ffffffffffffffda RBX: 00007f19437b5fa0 RCX: 00007f194358e929
[  161.432007][ T6735] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  161.432020][ T6735] RBP: 00007f1943610b39 R08: 0000000000000000 R09: 0000000000000000
[  161.432034][ T6735] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  161.432047][ T6735] R13: 0000000000000000 R14: 00007f19437b5fa0 R15: 00007ffdd2f54778
[  161.432076][ T6735]  </TASK>
[  161.926200][ T6738] sp0: Synchronizing with TNC
[  161.961070][ T6737] [U] �
[  171.529611][ T6871] sp0: Synchronizing with TNC
[  172.043861][ T6876] sp0: Synchronizing with TNC
[  172.228927][ T6882] FAULT_INJECTION: forcing a failure.
[  172.228927][ T6882] name failslab, interval 1, probability 0, space 0, times 0
[  172.257771][ T6882] CPU: 0 UID: 0 PID: 6882 Comm: syz.1.227 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(full) 
[  172.257804][ T6882] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  172.257818][ T6882] Call Trace:
[  172.257825][ T6882]  <TASK>
[  172.257834][ T6882]  dump_stack_lvl+0x16c/0x1f0
[  172.257874][ T6882]  should_fail_ex+0x512/0x640
[  172.257908][ T6882]  ? __kmalloc_noprof+0xbf/0x510
[  172.257944][ T6882]  ? lsm_blob_alloc+0x68/0x90
[  172.257978][ T6882]  should_failslab+0xc2/0x120
[  172.258000][ T6882]  __kmalloc_noprof+0xd2/0x510
[  172.258040][ T6882]  lsm_blob_alloc+0x68/0x90
[  172.258076][ T6882]  security_prepare_creds+0x30/0x270
[  172.258117][ T6882]  prepare_creds+0x56f/0x7d0
[  172.258155][ T6882]  __sys_setfsuid+0xda/0x350
[  172.258184][ T6882]  do_syscall_64+0xcd/0x490
[  172.258222][ T6882]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  172.258245][ T6882] RIP: 0033:0x7f5babb8e929
[  172.258262][ T6882] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  172.258284][ T6882] RSP: 002b:00007f5bac9f5038 EFLAGS: 00000246 ORIG_RAX: 000000000000007a
[  172.258305][ T6882] RAX: ffffffffffffffda RBX: 00007f5babdb6080 RCX: 00007f5babb8e929
[  172.258321][ T6882] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000ee01
[  172.258334][ T6882] RBP: 00007f5babc10b39 R08: 0000000000000000 R09: 0000000000000000
[  172.258347][ T6882] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  172.258360][ T6882] R13: 0000000000000000 R14: 00007f5babdb6080 R15: 00007ffe72951fb8
[  172.258388][ T6882]  </TASK>
[  173.145441][ T6890] FAULT_INJECTION: forcing a failure.
[  173.145441][ T6890] name failslab, interval 1, probability 0, space 0, times 0
[  173.179645][ T6890] CPU: 1 UID: 0 PID: 6890 Comm: syz.3.228 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(full) 
[  173.179694][ T6890] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  173.179715][ T6890] Call Trace:
[  173.179726][ T6890]  <TASK>
[  173.179739][ T6890]  dump_stack_lvl+0x16c/0x1f0
[  173.179797][ T6890]  should_fail_ex+0x512/0x640
[  173.179847][ T6890]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  173.179905][ T6890]  should_failslab+0xc2/0x120
[  173.179939][ T6890]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  173.179993][ T6890]  ? __kernfs_new_node+0xd2/0x8e0
[  173.180058][ T6890]  __kernfs_new_node+0xd2/0x8e0
[  173.180113][ T6890]  ? __pfx___kernfs_new_node+0x10/0x10
[  173.180174][ T6890]  ? find_held_lock+0x2b/0x80
[  173.180213][ T6890]  ? kernfs_root+0xee/0x2a0
[  173.180271][ T6890]  kernfs_new_node+0x13c/0x1e0
[  173.180333][ T6890]  __kernfs_create_file+0x53/0x350
[  173.180378][ T6890]  sysfs_add_file_mode_ns+0x207/0x3c0
[  173.180436][ T6890]  internal_create_group+0x578/0xf30
[  173.180498][ T6890]  ? __pfx_internal_create_group+0x10/0x10
[  173.180566][ T6890]  sysfs_slab_add+0x1a3/0x1e0
[  173.180618][ T6890]  do_kmem_cache_create+0x530/0x730
[  173.180677][ T6890]  ? __kmem_cache_create_args+0x205/0x390
[  173.180732][ T6890]  __kmem_cache_create_args+0x225/0x390
[  173.180785][ T6890]  mon_text_open+0x313/0x4f0
[  173.180842][ T6890]  ? __pfx_mon_text_open+0x10/0x10
[  173.180894][ T6890]  ? __debugfs_file_get+0x1fe/0x840
[  173.180929][ T6890]  ? __pfx_mon_text_ctor+0x10/0x10
[  173.180982][ T6890]  ? __pfx_apparmor_file_open+0x10/0x10
[  173.181025][ T6890]  ? lockdown_is_locked_down+0x3f/0x130
[  173.181088][ T6890]  ? bpf_lsm_locked_down+0x9/0x10
[  173.181138][ T6890]  ? __pfx_mon_text_open+0x10/0x10
[  173.181189][ T6890]  full_proxy_open_regular+0x1b6/0x360
[  173.181232][ T6890]  do_dentry_open+0x741/0x1c10
[  173.181286][ T6890]  ? __pfx_full_proxy_open_regular+0x10/0x10
[  173.181335][ T6890]  vfs_open+0x82/0x3f0
[  173.181378][ T6890]  path_openat+0x1de4/0x2cb0
[  173.181444][ T6890]  ? __pfx_path_openat+0x10/0x10
[  173.181497][ T6890]  ? __lock_acquire+0xb8a/0x1c90
[  173.181551][ T6890]  do_filp_open+0x20b/0x470
[  173.181602][ T6890]  ? __pfx_do_filp_open+0x10/0x10
[  173.181684][ T6890]  ? alloc_fd+0x471/0x7d0
[  173.181744][ T6890]  do_sys_openat2+0x11b/0x1d0
[  173.181782][ T6890]  ? __pfx_do_sys_openat2+0x10/0x10
[  173.181856][ T6890]  __x64_sys_openat+0x174/0x210
[  173.181895][ T6890]  ? __pfx___x64_sys_openat+0x10/0x10
[  173.181952][ T6890]  do_syscall_64+0xcd/0x490
[  173.182007][ T6890]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  173.182049][ T6890] RIP: 0033:0x7f194358e929
[  173.182077][ T6890] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  173.182109][ T6890] RSP: 002b:00007f19443a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  173.182140][ T6890] RAX: ffffffffffffffda RBX: 00007f19437b5fa0 RCX: 00007f194358e929
[  173.182161][ T6890] RDX: 0000000000000200 RSI: 0000200000000380 RDI: ffffffffffffff9c
[  173.182182][ T6890] RBP: 00007f1943610b39 R08: 0000000000000000 R09: 0000000000000000
[  173.182202][ T6890] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  173.182221][ T6890] R13: 0000000000000000 R14: 00007f19437b5fa0 R15: 00007ffdd2f54778
[  173.182262][ T6890]  </TASK>
[  173.530139][ T6890] SLUB: Unable to add cache mon_text_ffff88805b04a800 to sysfs
[  177.125802][ T6951] sp0: Synchronizing with TNC
[  178.573897][ T6963] nvme_fabrics: missing parameter 'transport=%s'
[  178.604935][ T6963] nvme_fabrics: missing parameter 'nqn=%s'
[  180.545180][ T6984] binder: 6978:6984 ioctl 540a ffffffffffffffff returned -22
[  182.033418][ T7004] FAULT_INJECTION: forcing a failure.
[  182.033418][ T7004] name failslab, interval 1, probability 0, space 0, times 0
[  182.131500][ T7004] CPU: 1 UID: 0 PID: 7004 Comm: syz.0.257 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(full) 
[  182.131540][ T7004] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  182.131557][ T7004] Call Trace:
[  182.131567][ T7004]  <TASK>
[  182.131578][ T7004]  dump_stack_lvl+0x16c/0x1f0
[  182.131629][ T7004]  should_fail_ex+0x512/0x640
[  182.131672][ T7004]  ? __kmalloc_noprof+0xbf/0x510
[  182.131719][ T7004]  ? __register_sysctl_table+0xea2/0x1900
[  182.131782][ T7004]  should_failslab+0xc2/0x120
[  182.131812][ T7004]  __kmalloc_noprof+0xd2/0x510
[  182.131856][ T7004]  ? __register_sysctl_table+0xe8e/0x1900
[  182.131925][ T7004]  __register_sysctl_table+0xea2/0x1900
[  182.131984][ T7004]  ? __pfx___register_sysctl_table+0x10/0x10
[  182.132033][ T7004]  ? is_module_address+0x69/0xf0
[  182.132079][ T7004]  ? register_net_sysctl_sz+0x228/0x3e0
[  182.132112][ T7004]  ? __asan_memcpy+0x3c/0x60
[  182.132157][ T7004]  nf_log_net_init+0x109/0x450
[  182.132189][ T7004]  ? __pfx_nf_log_net_init+0x10/0x10
[  182.132218][ T7004]  ops_init+0x1df/0x5f0
[  182.132271][ T7004]  setup_net+0x1ff/0x510
[  182.132296][ T7004]  ? lockdep_init_map_type+0x5c/0x280
[  182.132342][ T7004]  ? __pfx_setup_net+0x10/0x10
[  182.132373][ T7004]  ? debug_mutex_init+0x37/0x70
[  182.132409][ T7004]  copy_net_ns+0x2a6/0x5f0
[  182.132444][ T7004]  create_new_namespaces+0x3ea/0xa90
[  182.132490][ T7004]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  182.132532][ T7004]  ksys_unshare+0x45b/0xa40
[  182.132573][ T7004]  ? __pfx_ksys_unshare+0x10/0x10
[  182.132614][ T7004]  ? xfd_validate_state+0x61/0x180
[  182.132663][ T7004]  __x64_sys_unshare+0x31/0x40
[  182.132702][ T7004]  do_syscall_64+0xcd/0x490
[  182.132755][ T7004]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  182.132785][ T7004] RIP: 0033:0x7f6c7c98e929
[  182.132808][ T7004] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  182.132835][ T7004] RSP: 002b:00007f6c7d7a5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  182.132862][ T7004] RAX: ffffffffffffffda RBX: 00007f6c7cbb5fa0 RCX: 00007f6c7c98e929
[  182.132881][ T7004] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  182.132897][ T7004] RBP: 00007f6c7ca10b39 R08: 0000000000000000 R09: 0000000000000000
[  182.132914][ T7004] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  182.132930][ T7004] R13: 0000000000000000 R14: 00007f6c7cbb5fa0 R15: 00007ffdaaa41118
[  182.132965][ T7004]  </TASK>
[  182.133707][ T7004] sysctl could not get directory: /net/netfilter/nf_log -12
[  184.517700][ T7029] netlink: 25 bytes leftover after parsing attributes in process `syz.0.266'.
[  185.034106][ T7029] ima: policy update failed
[  185.177064][   T30] audit: type=1802 audit(1752315089.075:4): pid=7029 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.266" res=0 errno=0
[  186.409457][ T7047] sp0: Synchronizing with TNC
[  186.634218][ T7049] FAULT_INJECTION: forcing a failure.
[  186.634218][ T7049] name failslab, interval 1, probability 0, space 0, times 0
[  186.804803][ T7049] CPU: 0 UID: 0 PID: 7049 Comm: syz.3.269 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(full) 
[  186.804851][ T7049] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  186.804868][ T7049] Call Trace:
[  186.804883][ T7049]  <TASK>
[  186.804894][ T7049]  dump_stack_lvl+0x16c/0x1f0
[  186.804948][ T7049]  should_fail_ex+0x512/0x640
[  186.804996][ T7049]  ? __kmalloc_noprof+0xbf/0x510
[  186.805047][ T7049]  ? acpi_ns_get_normalized_pathname+0x75/0xd0
[  186.805083][ T7049]  should_failslab+0xc2/0x120
[  186.805115][ T7049]  __kmalloc_noprof+0xd2/0x510
[  186.805176][ T7049]  acpi_ns_get_normalized_pathname+0x75/0xd0
[  186.805219][ T7049]  acpi_ns_evaluate+0x1e1/0xca0
[  186.805256][ T7049]  ? kasan_save_track+0x14/0x30
[  186.805310][ T7049]  acpi_evaluate_object+0x1fa/0xa90
[  186.805363][ T7049]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  186.805399][ T7049]  ? __pfx_acpi_evaluate_object+0x10/0x10
[  186.805450][ T7049]  ? __mutex_trylock_common+0xe9/0x250
[  186.805504][ T7049]  acpi_evaluate_integer+0xdd/0x200
[  186.805546][ T7049]  ? __pfx_acpi_evaluate_integer+0x10/0x10
[  186.805614][ T7049]  ? __pfx_status_show+0x10/0x10
[  186.805662][ T7049]  status_show+0xa0/0x120
[  186.805710][ T7049]  ? __pfx_status_show+0x10/0x10
[  186.805770][ T7049]  dev_attr_show+0x56/0xe0
[  186.805805][ T7049]  ? __pfx_dev_attr_show+0x10/0x10
[  186.805836][ T7049]  sysfs_kf_seq_show+0x213/0x3e0
[  186.805885][ T7049]  seq_read_iter+0x509/0x12c0
[  186.805946][ T7049]  kernfs_fop_read_iter+0x40f/0x5a0
[  186.805981][ T7049]  ? rw_verify_area+0xcf/0x680
[  186.806027][ T7049]  vfs_read+0x8bc/0xc60
[  186.806080][ T7049]  ? __pfx___mutex_lock+0x10/0x10
[  186.806131][ T7049]  ? __pfx_vfs_read+0x10/0x10
[  186.806205][ T7049]  ksys_read+0x12a/0x250
[  186.806251][ T7049]  ? __pfx_ksys_read+0x10/0x10
[  186.806311][ T7049]  do_syscall_64+0xcd/0x490
[  186.806365][ T7049]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  186.806397][ T7049] RIP: 0033:0x7f194358e929
[  186.806423][ T7049] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  186.806454][ T7049] RSP: 002b:00007f1944386038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  186.806484][ T7049] RAX: ffffffffffffffda RBX: 00007f19437b6080 RCX: 00007f194358e929
[  186.806504][ T7049] RDX: 000000000000007a RSI: 0000200000000140 RDI: 0000000000000004
[  186.806523][ T7049] RBP: 00007f1943610b39 R08: 0000000000000000 R09: 0000000000000000
[  186.806542][ T7049] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  186.806563][ T7049] R13: 0000000000000000 R14: 00007f19437b6080 R15: 00007ffdd2f54778
[  186.806599][ T7049]  </TASK>
[  187.375466][ T7049] ACPI Error: Could not allocate 15 bytes (20250404/nsnames-308)
[  188.111371][   T30] audit: type=1326 audit(1752315092.005:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7057 comm="syz.0.273" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6c7c98e929 code=0x0
[  194.036556][ T7123] netlink: 50 bytes leftover after parsing attributes in process `syz.1.286'.
[  195.306392][ T7140] netlink: 342 bytes leftover after parsing attributes in process `syz.0.289'.
[  195.328632][ T7144] FAULT_INJECTION: forcing a failure.
[  195.328632][ T7144] name failslab, interval 1, probability 0, space 0, times 0
[  195.374404][ T7144] CPU: 0 UID: 0 PID: 7144 Comm: syz.2.291 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(full) 
[  195.374446][ T7144] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  195.374464][ T7144] Call Trace:
[  195.374473][ T7144]  <TASK>
[  195.374485][ T7144]  dump_stack_lvl+0x16c/0x1f0
[  195.374536][ T7144]  should_fail_ex+0x512/0x640
[  195.374586][ T7144]  should_failslab+0xc2/0x120
[  195.374615][ T7144]  __kmalloc_cache_noprof+0x6a/0x3e0
[  195.374654][ T7144]  ? __pfx___might_resched+0x10/0x10
[  195.374686][ T7144]  ? bdi_split_work_to_wbs+0x2bd/0xf90
[  195.374723][ T7144]  bdi_split_work_to_wbs+0x2bd/0xf90
[  195.374761][ T7144]  ? __pfx_bdi_split_work_to_wbs+0x10/0x10
[  195.374804][ T7144]  ? __pfx_down_write+0x10/0x10
[  195.374844][ T7144]  sync_inodes_sb+0x1ae/0xa70
[  195.374882][ T7144]  ? __pfx_sync_inodes_sb+0x10/0x10
[  195.374933][ T7144]  ? get_nr_dirty_inodes+0x170/0x1e0
[  195.374973][ T7144]  sync_filesystem+0x177/0x290
[  195.375016][ T7144]  ? __pfx_fs_bdev_sync+0x10/0x10
[  195.375055][ T7144]  fs_bdev_sync+0x2c/0x40
[  195.375094][ T7144]  blkdev_common_ioctl+0x1745/0x2480
[  195.375130][ T7144]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  195.375186][ T7144]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  195.375238][ T7144]  ? __pfx_blkdev_common_ioctl+0x10/0x10
[  195.375278][ T7144]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  195.375354][ T7144]  ? find_held_lock+0x2b/0x80
[  195.375397][ T7144]  blkdev_ioctl+0x1cb/0x6d0
[  195.375436][ T7144]  ? __pfx_blkdev_ioctl+0x10/0x10
[  195.375491][ T7144]  ? __pfx_blkdev_ioctl+0x10/0x10
[  195.375529][ T7144]  __x64_sys_ioctl+0x18e/0x210
[  195.375568][ T7144]  do_syscall_64+0xcd/0x490
[  195.375617][ T7144]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  195.375647][ T7144] RIP: 0033:0x7ff44a38e929
[  195.375671][ T7144] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  195.375700][ T7144] RSP: 002b:00007ff44b21c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  195.375728][ T7144] RAX: ffffffffffffffda RBX: 00007ff44a5b5fa0 RCX: 00007ff44a38e929
[  195.375747][ T7144] RDX: 000000000000001f RSI: 0000000000001261 RDI: 0000000000000007
[  195.375765][ T7144] RBP: 00007ff44a410b39 R08: 0000000000000000 R09: 0000000000000000
[  195.375783][ T7144] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  195.375801][ T7144] R13: 0000000000000000 R14: 00007ff44a5b5fa0 R15: 00007ffdd039f338
[  195.375839][ T7144]  </TASK>
[  195.411599][ T7140] netlink: 'syz.0.289': attribute type 1 has an invalid length.
[  195.508662][ T7145] FAULT_INJECTION: forcing a failure.
[  195.508662][ T7145] name failslab, interval 1, probability 0, space 0, times 0
[  195.659337][ T7140] netlink: 'syz.0.289': attribute type 2 has an invalid length.
[  195.734635][ T7145] CPU: 0 UID: 0 PID: 7145 Comm: syz.3.290 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(full) 
[  195.734682][ T7145] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  195.734701][ T7145] Call Trace:
[  195.734712][ T7145]  <TASK>
[  195.734723][ T7145]  dump_stack_lvl+0x16c/0x1f0
[  195.734779][ T7145]  should_fail_ex+0x512/0x640
[  195.734826][ T7145]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  195.734883][ T7145]  should_failslab+0xc2/0x120
[  195.734914][ T7145]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  195.734964][ T7145]  ? locks_get_lock_context+0x243/0x410
[  195.735021][ T7145]  locks_get_lock_context+0x243/0x410
[  195.735073][ T7145]  generic_setlease+0x5e7/0x1300
[  195.735116][ T7145]  ? find_held_lock+0x2b/0x80
[  195.735153][ T7145]  ? __pfx_generic_setlease+0x10/0x10
[  195.735200][ T7145]  kernel_setlease+0x106/0x140
[  195.735238][ T7145]  vfs_setlease+0x258/0x2d0
[  195.735278][ T7145]  fcntl_setlease+0x3ed/0x5a0
[  195.735314][ T7145]  ? __pfx_fcntl_setlease+0x10/0x10
[  195.735379][ T7145]  do_fcntl+0x751/0x15a0
[  195.735413][ T7145]  ? __pfx_do_fcntl+0x10/0x10
[  195.735455][ T7145]  ? tomoyo_file_fcntl+0x6c/0xc0
[  195.735491][ T7145]  __x64_sys_fcntl+0x163/0x200
[  195.735529][ T7145]  do_syscall_64+0xcd/0x490
[  195.735584][ T7145]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  195.735617][ T7145] RIP: 0033:0x7f194358e929
[  195.735642][ T7145] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  195.735674][ T7145] RSP: 002b:00007f1944386038 EFLAGS: 00000246 ORIG_RAX: 0000000000000048
[  195.735705][ T7145] RAX: ffffffffffffffda RBX: 00007f19437b6080 RCX: 00007f194358e929
[  195.735726][ T7145] RDX: 0000000000000001 RSI: 0000000000000400 RDI: 0000000000000005
[  195.735744][ T7145] RBP: 00007f1943610b39 R08: 0000000000000000 R09: 0000000000000000
[  195.735763][ T7145] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  195.735782][ T7145] R13: 0000000000000000 R14: 00007f19437b6080 R15: 00007ffdd2f54778
[  195.735822][ T7145]  </TASK>
[  195.755122][ T7140] netlink: 'syz.0.289': attribute type 7 has an invalid length.
[  195.772821][ T7149] binder: 7148:7149 ioctl 400c620e 200000000080 returned -22
[  195.835113][ T7140] netlink: 274 bytes leftover after parsing attributes in process `syz.0.289'.
[  196.435668][ T7161] FAULT_INJECTION: forcing a failure.
[  196.435668][ T7161] name failslab, interval 1, probability 0, space 0, times 0
[  196.505033][ T7161] CPU: 0 UID: 0 PID: 7161 Comm: syz.0.295 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(full) 
[  196.505080][ T7161] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  196.505099][ T7161] Call Trace:
[  196.505110][ T7161]  <TASK>
[  196.505122][ T7161]  dump_stack_lvl+0x16c/0x1f0
[  196.505182][ T7161]  should_fail_ex+0x512/0x640
[  196.505234][ T7161]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  196.505300][ T7161]  should_failslab+0xc2/0x120
[  196.505334][ T7161]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  196.505388][ T7161]  ? acpi_ut_allocate_owner_id+0x2d6/0x3a0
[  196.505430][ T7161]  ? acpi_ps_alloc_op+0xf1/0x310
[  196.505485][ T7161]  acpi_ps_alloc_op+0xf1/0x310
[  196.505543][ T7161]  acpi_ps_create_scope_op+0x1a/0x70
[  196.505597][ T7161]  acpi_ps_execute_method+0x1b1/0xb30
[  196.505634][ T7161]  ? acpi_ut_acquire_mutex+0x125/0x1d0
[  196.505677][ T7161]  acpi_ns_evaluate+0x76c/0xca0
[  196.505715][ T7161]  ? kasan_save_track+0x14/0x30
[  196.505770][ T7161]  acpi_evaluate_object+0x1fa/0xa90
[  196.505823][ T7161]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  196.505861][ T7161]  ? __pfx_acpi_evaluate_object+0x10/0x10
[  196.505924][ T7161]  ? __mutex_trylock_common+0xe9/0x250
[  196.505979][ T7161]  acpi_evaluate_integer+0xdd/0x200
[  196.506022][ T7161]  ? __pfx_acpi_evaluate_integer+0x10/0x10
[  196.506077][ T7161]  ? __pfx_status_show+0x10/0x10
[  196.506122][ T7161]  status_show+0xa0/0x120
[  196.506170][ T7161]  ? __pfx_status_show+0x10/0x10
[  196.506229][ T7161]  dev_attr_show+0x56/0xe0
[  196.506292][ T7161]  ? __pfx_dev_attr_show+0x10/0x10
[  196.506325][ T7161]  sysfs_kf_seq_show+0x213/0x3e0
[  196.506377][ T7161]  seq_read_iter+0x509/0x12c0
[  196.506439][ T7161]  kernfs_fop_read_iter+0x40f/0x5a0
[  196.506475][ T7161]  ? rw_verify_area+0xcf/0x680
[  196.506522][ T7161]  vfs_read+0x8bc/0xc60
[  196.506575][ T7161]  ? __pfx___mutex_lock+0x10/0x10
[  196.506629][ T7161]  ? __pfx_vfs_read+0x10/0x10
[  196.506706][ T7161]  ksys_read+0x12a/0x250
[  196.506754][ T7161]  ? __pfx_ksys_read+0x10/0x10
[  196.506816][ T7161]  do_syscall_64+0xcd/0x490
[  196.506868][ T7161]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  196.506902][ T7161] RIP: 0033:0x7f6c7c98e929
[  196.506928][ T7161] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  196.506960][ T7161] RSP: 002b:00007f6c7d784038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  196.506992][ T7161] RAX: ffffffffffffffda RBX: 00007f6c7cbb6080 RCX: 00007f6c7c98e929
[  196.507014][ T7161] RDX: 000000000000007a RSI: 0000200000000140 RDI: 0000000000000004
[  196.507034][ T7161] RBP: 00007f6c7ca10b39 R08: 0000000000000000 R09: 0000000000000000
[  196.507054][ T7161] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  196.507073][ T7161] R13: 0000000000000000 R14: 00007f6c7cbb6080 R15: 00007ffdaaa41118
[  196.507116][ T7161]  </TASK>
[  198.489312][ T7190] netlink: 25 bytes leftover after parsing attributes in process `syz.3.301'.
[  198.566532][ T7190] ima: policy update failed
[  198.616623][   T30] audit: type=1802 audit(1752315102.495:6): pid=7190 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.301" res=0 errno=0
[  198.671199][ T7194] netlink: 28 bytes leftover after parsing attributes in process `syz.0.302'.
[  199.413196][ T7210] netlink: 'syz.1.307': attribute type 28 has an invalid length.
[  199.442504][ T7210] netlink: 334 bytes leftover after parsing attributes in process `syz.1.307'.
[  203.329401][ T7269] netlink: 338 bytes leftover after parsing attributes in process `syz.2.323'.
[  203.465229][ T7269] netlink: 338 bytes leftover after parsing attributes in process `syz.2.323'.
[  203.495237][ T7274] netlink: 290 bytes leftover after parsing attributes in process `syz.2.323'.
[  203.515875][ T7274] veth0_macvtap: left promiscuous mode
[  203.521537][ T7269] netlink: 290 bytes leftover after parsing attributes in process `syz.2.323'.
[  203.532622][ T7269] veth0_macvtap: entered promiscuous mode
[  203.984038][ T7283] netlink: 28 bytes leftover after parsing attributes in process `syz.2.325'.
[  204.490974][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  204.497520][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  205.173932][ T7283] team0: Port device team_slave_1 removed
[  206.971208][ T7305] FAULT_INJECTION: forcing a failure.
[  206.971208][ T7305] name failslab, interval 1, probability 0, space 0, times 0
[  207.063480][ T7305] CPU: 0 UID: 0 PID: 7305 Comm: syz.3.332 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(full) 
[  207.063528][ T7305] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  207.063548][ T7305] Call Trace:
[  207.063559][ T7305]  <TASK>
[  207.063571][ T7305]  dump_stack_lvl+0x16c/0x1f0
[  207.063626][ T7305]  should_fail_ex+0x512/0x640
[  207.063673][ T7305]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[  207.063733][ T7305]  should_failslab+0xc2/0x120
[  207.063766][ T7305]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  207.063820][ T7305]  ? __split_page_owner+0x23b/0x3b0
[  207.063868][ T7305]  ? snd_pcm_hw_rule_add+0x414/0x5a0
[  207.063925][ T7305]  krealloc_noprof+0x1fc/0x370
[  207.063988][ T7305]  snd_pcm_hw_rule_add+0x414/0x5a0
[  207.064041][ T7305]  ? __pfx_snd_pcm_hw_rule_format+0x10/0x10
[  207.064083][ T7305]  ? __pfx_snd_pcm_hw_rule_add+0x10/0x10
[  207.064136][ T7305]  ? lockdep_init_map_type+0x5c/0x280
[  207.064185][ T7305]  ? debug_mutex_init+0x37/0x70
[  207.064219][ T7305]  ? snd_pcm_attach_substream+0x89d/0xd60
[  207.064272][ T7305]  snd_pcm_open_substream+0x534/0x17f0
[  207.064319][ T7305]  ? __pfx_snd_pcm_open_substream+0x10/0x10
[  207.064364][ T7305]  ? rcu_is_watching+0x12/0xc0
[  207.064405][ T7305]  snd_pcm_open+0x29e/0x730
[  207.064452][ T7305]  ? __pfx_snd_pcm_open+0x10/0x10
[  207.064498][ T7305]  ? __pfx_default_wake_function+0x10/0x10
[  207.064546][ T7305]  ? __pfx_snd_pcm_capture_open+0x10/0x10
[  207.064589][ T7305]  snd_pcm_capture_open+0x89/0xe0
[  207.064631][ T7305]  snd_open+0x1fe/0x450
[  207.064684][ T7305]  ? __pfx_snd_open+0x10/0x10
[  207.064753][ T7305]  chrdev_open+0x234/0x6a0
[  207.064808][ T7305]  ? __pfx_chrdev_open+0x10/0x10
[  207.064863][ T7305]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  207.064920][ T7305]  do_dentry_open+0x741/0x1c10
[  207.064978][ T7305]  ? __pfx_chrdev_open+0x10/0x10
[  207.065040][ T7305]  vfs_open+0x82/0x3f0
[  207.065082][ T7305]  path_openat+0x1de4/0x2cb0
[  207.065142][ T7305]  ? __pfx_path_openat+0x10/0x10
[  207.065193][ T7305]  ? __lock_acquire+0xb8a/0x1c90
[  207.065241][ T7305]  do_filp_open+0x20b/0x470
[  207.065288][ T7305]  ? __pfx_do_filp_open+0x10/0x10
[  207.065365][ T7305]  ? alloc_fd+0x471/0x7d0
[  207.065420][ T7305]  do_sys_openat2+0x11b/0x1d0
[  207.065458][ T7305]  ? __pfx_do_sys_openat2+0x10/0x10
[  207.065513][ T7305]  __x64_sys_openat+0x174/0x210
[  207.065553][ T7305]  ? __pfx___x64_sys_openat+0x10/0x10
[  207.065607][ T7305]  do_syscall_64+0xcd/0x490
[  207.065661][ T7305]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  207.065694][ T7305] RIP: 0033:0x7f194358e929
[  207.065721][ T7305] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  207.065752][ T7305] RSP: 002b:00007f19443a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  207.065781][ T7305] RAX: ffffffffffffffda RBX: 00007f19437b5fa0 RCX: 00007f194358e929
[  207.065802][ T7305] RDX: 0000000000001200 RSI: 00002000000000c0 RDI: ffffffffffffff9c
[  207.065822][ T7305] RBP: 00007f1943610b39 R08: 0000000000000000 R09: 0000000000000000
[  207.065840][ T7305] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  207.065857][ T7305] R13: 0000000000000000 R14: 00007f19437b5fa0 R15: 00007ffdd2f54778
[  207.065895][ T7305]  </TASK>
[  209.295861][ T7336] netlink: 338 bytes leftover after parsing attributes in process `syz.2.340'.
[  209.307447][ T7336] netlink: 338 bytes leftover after parsing attributes in process `syz.2.340'.
[  209.328378][ T7336] netlink: 134 bytes leftover after parsing attributes in process `syz.2.340'.
[  211.327206][ T7362] netlink: 25 bytes leftover after parsing attributes in process `syz.1.345'.
[  212.599292][ T7377] netlink: 25 bytes leftover after parsing attributes in process `syz.3.349'.
[  213.064293][ T7377] ima: policy update failed
[  213.078072][   T30] audit: type=1802 audit(1752315116.975:7): pid=7377 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.349" res=0 errno=0
[  214.564048][ T7399] netlink: 25 bytes leftover after parsing attributes in process `syz.3.355'.
[  214.576048][ T7398] ima: policy update failed
[  214.603841][   T30] audit: type=1802 audit(1752315118.475:8): pid=7398 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.355" res=0 errno=0
[  215.873864][   T30] audit: type=1800 audit(1752315119.765:9): pid=7413 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.359" name="members" dev="configfs" ino=13290 res=0 errno=0
[  216.165065][ T7420] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input5
[  216.784673][ T7424] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input6
[  222.406583][ T7494] netlink: 354 bytes leftover after parsing attributes in process `syz.3.378'.
[  223.221688][ T5851] Bluetooth: hci3: ISO packet for unknown connection handle 0
[  223.646618][ T7520] netlink: 25 bytes leftover after parsing attributes in process `syz.3.382'.
[  224.054577][ T7524] netlink: 4 bytes leftover after parsing attributes in process `syz.2.384'.
[  224.082729][ T7524] netlink: 25 bytes leftover after parsing attributes in process `syz.2.384'.
[  225.636389][ T7540] [U]  
[  225.639542][ T7540] [U] 
[  225.642311][ T7540] [U] 
[  225.645074][ T7540] [U] 
[  225.651930][ T7540] [U] 
[  225.654716][ T7540] [U] 
[  225.657484][ T7540] [U] 
[  225.660254][ T7540] [U] 
[  225.673376][ T7540] [U] 
[  225.676163][ T7540] [U] 
[  225.678925][ T7540] [U] 
[  225.681692][ T7540] [U] 
[  225.688781][ T7540] [U] 
[  225.691558][ T7540] [U] 
[  225.694302][ T7540] [U] 
[  225.697062][ T7540] [U] 
[  225.743370][ T7540] [U] 
[  225.746184][ T7540] [U] 
[  225.748945][ T7540] [U] 
[  225.751716][ T7540] [U] 
[  225.780992][ T7540] [U] 
[  225.783796][ T7540] [U] 
[  225.786568][ T7540] [U] 
[  225.789336][ T7540] [U] 
[  225.822606][ T7540] [U] 
[  225.825482][ T7540] [U] 
[  225.828246][ T7540] [U] 
[  225.830998][ T7540] [U] 
[  225.855055][ T7540] [U] 
[  225.857846][ T7540] [U] 
[  225.860610][ T7540] [U] 
[  225.863377][ T7540] [U] 
[  225.902587][ T7540] [U] 
[  225.905409][ T7540] [U] 
[  225.908160][ T7540] [U] 
[  225.910897][ T7540] [U] 
[  225.954449][ T7540] [U] 
[  226.745363][ T7565] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  227.051689][ T5853] Bluetooth: hci0: command 0x0406 tx timeout
[  227.055152][ T5167] Bluetooth: hci3: command 0x0406 tx timeout
[  227.057815][ T5853] Bluetooth: hci1: command 0x0406 tx timeout
[  227.064319][ T5167] Bluetooth: hci2: command 0x0406 tx timeout
[  231.530991][   T30] audit: type=1800 audit(1752315135.425:10): pid=7650 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.416" name="lu_gp_id" dev="configfs" ino=14745 res=0 errno=0
[  231.692240][ T7653] HfR: entered promiscuous mode
[  231.731610][ T7653] netlink: 12 bytes leftover after parsing attributes in process `syz.1.417'.
[  231.780138][ T7653] HfR: left promiscuous mode
[  231.877265][ T7660] netlink: 25 bytes leftover after parsing attributes in process `syz.0.419'.
[  231.919316][ T7657] HfR: entered promiscuous mode
[  232.167649][ T7669] FAULT_INJECTION: forcing a failure.
[  232.167649][ T7669] name failslab, interval 1, probability 0, space 0, times 0
[  232.211830][ T7669] CPU: 1 UID: 0 PID: 7669 Comm: syz.0.421 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(full) 
[  232.211880][ T7669] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  232.211901][ T7669] Call Trace:
[  232.211911][ T7669]  <TASK>
[  232.211923][ T7669]  dump_stack_lvl+0x16c/0x1f0
[  232.211984][ T7669]  should_fail_ex+0x512/0x640
[  232.212040][ T7669]  ? __kmalloc_noprof+0xbf/0x510
[  232.212098][ T7669]  ? realloc_user_queue+0x270/0x310
[  232.212134][ T7669]  should_failslab+0xc2/0x120
[  232.212168][ T7669]  __kmalloc_noprof+0xd2/0x510
[  232.212228][ T7669]  realloc_user_queue+0x270/0x310
[  232.212267][ T7669]  ? __pfx_snd_timer_user_open+0x10/0x10
[  232.212305][ T7669]  snd_timer_user_open+0xfc/0x180
[  232.212343][ T7669]  snd_open+0x1fe/0x450
[  232.212399][ T7669]  ? __pfx_snd_open+0x10/0x10
[  232.212452][ T7669]  chrdev_open+0x234/0x6a0
[  232.212504][ T7669]  ? __pfx_apparmor_file_open+0x10/0x10
[  232.212549][ T7669]  ? __pfx_chrdev_open+0x10/0x10
[  232.212606][ T7669]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  232.212662][ T7669]  do_dentry_open+0x741/0x1c10
[  232.212713][ T7669]  ? __pfx_chrdev_open+0x10/0x10
[  232.212776][ T7669]  vfs_open+0x82/0x3f0
[  232.212824][ T7669]  path_openat+0x1de4/0x2cb0
[  232.212889][ T7669]  ? __pfx_path_openat+0x10/0x10
[  232.212943][ T7669]  ? __lock_acquire+0xb8a/0x1c90
[  232.213009][ T7669]  do_filp_open+0x20b/0x470
[  232.213057][ T7669]  ? __pfx_do_filp_open+0x10/0x10
[  232.213135][ T7669]  ? alloc_fd+0x471/0x7d0
[  232.213193][ T7669]  do_sys_openat2+0x11b/0x1d0
[  232.213230][ T7669]  ? __pfx_do_sys_openat2+0x10/0x10
[  232.213283][ T7669]  __x64_sys_openat+0x174/0x210
[  232.213322][ T7669]  ? __pfx___x64_sys_openat+0x10/0x10
[  232.213378][ T7669]  do_syscall_64+0xcd/0x490
[  232.213432][ T7669]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  232.213465][ T7669] RIP: 0033:0x7f6c7c98e929
[  232.213491][ T7669] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  232.213522][ T7669] RSP: 002b:00007f6c7d7a5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  232.213553][ T7669] RAX: ffffffffffffffda RBX: 00007f6c7cbb5fa0 RCX: 00007f6c7c98e929
[  232.213575][ T7669] RDX: 0000000000101440 RSI: 0000200000001cc0 RDI: ffffffffffffff9c
[  232.213596][ T7669] RBP: 00007f6c7ca10b39 R08: 0000000000000000 R09: 0000000000000000
[  232.213615][ T7669] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  232.213652][ T7669] R13: 0000000000000000 R14: 00007f6c7cbb5fa0 R15: 00007ffdaaa41118
[  232.213695][ T7669]  </TASK>
[  237.055793][ T7729] FAULT_INJECTION: forcing a failure.
[  237.055793][ T7729] name failslab, interval 1, probability 0, space 0, times 0
[  237.088931][ T7729] CPU: 1 UID: 0 PID: 7729 Comm: syz.3.436 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(full) 
[  237.088977][ T7729] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  237.088995][ T7729] Call Trace:
[  237.089006][ T7729]  <TASK>
[  237.089018][ T7729]  dump_stack_lvl+0x16c/0x1f0
[  237.089074][ T7729]  should_fail_ex+0x512/0x640
[  237.089120][ T7729]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  237.089169][ T7729]  should_failslab+0xc2/0x120
[  237.089200][ T7729]  __kmalloc_cache_noprof+0x6a/0x3e0
[  237.089244][ T7729]  ? lockdep_init_map_type+0x5c/0x280
[  237.089290][ T7729]  ? zs_create_pool+0x4d2/0xb80
[  237.089331][ T7729]  zs_create_pool+0x4d2/0xb80
[  237.089372][ T7729]  ? __pfx_zs_create_pool+0x10/0x10
[  237.089412][ T7729]  ? disksize_store+0x117/0x670
[  237.089452][ T7729]  ? __vmalloc_node_noprof+0xad/0xf0
[  237.089492][ T7729]  ? disksize_store+0x117/0x670
[  237.089536][ T7729]  disksize_store+0x174/0x670
[  237.089584][ T7729]  ? __pfx_disksize_store+0x10/0x10
[  237.089624][ T7729]  dev_attr_store+0x55/0x80
[  237.089654][ T7729]  ? __pfx_dev_attr_store+0x10/0x10
[  237.089686][ T7729]  sysfs_kf_write+0xef/0x150
[  237.089729][ T7729]  kernfs_fop_write_iter+0x351/0x510
[  237.089762][ T7729]  ? __pfx_sysfs_kf_write+0x10/0x10
[  237.089806][ T7729]  vfs_write+0x6c4/0x1150
[  237.089853][ T7729]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  237.089891][ T7729]  ? __pfx___mutex_lock+0x10/0x10
[  237.089953][ T7729]  ? __pfx_vfs_write+0x10/0x10
[  237.090028][ T7729]  ksys_write+0x12a/0x250
[  237.090073][ T7729]  ? __pfx_ksys_write+0x10/0x10
[  237.090133][ T7729]  do_syscall_64+0xcd/0x490
[  237.090185][ T7729]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  237.090217][ T7729] RIP: 0033:0x7f194358e929
[  237.090242][ T7729] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  237.090273][ T7729] RSP: 002b:00007f19443a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  237.090304][ T7729] RAX: ffffffffffffffda RBX: 00007f19437b5fa0 RCX: 00007f194358e929
[  237.090324][ T7729] RDX: 0000000000000001 RSI: 0000200000000ec0 RDI: 0000000000000005
[  237.090344][ T7729] RBP: 00007f1943610b39 R08: 0000000000000000 R09: 0000000000000000
[  237.090363][ T7729] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  237.090382][ T7729] R13: 0000000000000000 R14: 00007f19437b5fa0 R15: 00007ffdd2f54778
[  237.090424][ T7729]  </TASK>
[  237.865802][ T7735] random: crng reseeded on system resumption
[  238.853922][ T7732] syz.0.437 (7732) used greatest stack depth: 19784 bytes left
[  241.211320][ T7776] can0: slcan on ptm0.
[  241.346834][ T7775] can0 (unregistered): slcan off ptm0.
[  246.081065][ T7835] netlink: 25 bytes leftover after parsing attributes in process `syz.3.458'.
[  246.100178][ T7834] ima: policy update failed
[  246.105447][   T30] audit: type=1802 audit(1752315149.995:11): pid=7834 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.458" res=0 errno=0
[  248.046417][ T7881] netlink: 194 bytes leftover after parsing attributes in process `syz.2.466'.
[  250.801698][ T7922] netlink: 20 bytes leftover after parsing attributes in process `syz.3.477'.
[  251.132274][ T7922] mac80211_hwsim hwsim3 wlan1: entered allmulticast mode
[  257.433066][ T8021] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input7
[  257.617575][ T8023] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input8
[  258.493218][ T8031] can0: slcan on pty233.
[  258.696236][ T8030] can0 (unregistered): slcan off pty233.
[  259.459580][ T8037] can0: slcan on pty238.
[  259.615535][ T8037] can0 (unregistered): slcan off pty238.
[  265.930614][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  265.937136][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  267.091508][ T8170] FAULT_INJECTION: forcing a failure.
[  267.091508][ T8170] name fail_futex, interval 1, probability 0, space 0, times 0
[  267.157109][ T8170] CPU: 0 UID: 0 PID: 8170 Comm: syz.3.531 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(full) 
[  267.157142][ T8170] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  267.157159][ T8170] Call Trace:
[  267.157167][ T8170]  <TASK>
[  267.157178][ T8170]  dump_stack_lvl+0x16c/0x1f0
[  267.157218][ T8170]  should_fail_ex+0x512/0x640
[  267.157256][ T8170]  get_futex_key+0x1d0/0x1540
[  267.157288][ T8170]  ? __pfx_get_futex_key+0x10/0x10
[  267.157343][ T8170]  futex_wake+0xe7/0x4e0
[  267.157380][ T8170]  ? __pfx_futex_wake+0x10/0x10
[  267.157417][ T8170]  ? kmem_cache_free+0x2d1/0x4d0
[  267.157450][ T8170]  ? fd_install+0x225/0x750
[  267.157480][ T8170]  ? putname+0x154/0x1a0
[  267.157507][ T8170]  do_futex+0x1e3/0x350
[  267.157536][ T8170]  ? __pfx_do_futex+0x10/0x10
[  267.157573][ T8170]  __x64_sys_futex+0x1e0/0x4c0
[  267.157604][ T8170]  ? __x64_sys_openat+0x174/0x210
[  267.157632][ T8170]  ? __pfx___x64_sys_futex+0x10/0x10
[  267.157662][ T8170]  ? xfd_validate_state+0x61/0x180
[  267.157703][ T8170]  do_syscall_64+0xcd/0x490
[  267.157742][ T8170]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  267.157766][ T8170] RIP: 0033:0x7f194358e929
[  267.157784][ T8170] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  267.157807][ T8170] RSP: 002b:00007f19443860e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  267.157828][ T8170] RAX: ffffffffffffffda RBX: 00007f19437b6088 RCX: 00007f194358e929
[  267.157844][ T8170] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f19437b608c
[  267.157858][ T8170] RBP: 00007f19437b6080 R08: 00007f19443a8000 R09: 0000000000000000
[  267.157873][ T8170] R10: 0000000000000007 R11: 0000000000000246 R12: 00007f19437b608c
[  267.157887][ T8170] R13: 0000000000000000 R14: 00007ffdd2f54690 R15: 00007ffdd2f54778
[  267.157915][ T8170]  </TASK>
[  267.873174][ T8187] random: crng reseeded on system resumption
[  269.827180][ T8215] mmap: syz.2.540 (8215) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  270.581550][ T8226] netlink: 186 bytes leftover after parsing attributes in process `syz.1.551'.
[  271.447972][ T8236] netlink: 25 bytes leftover after parsing attributes in process `syz.2.545'.
[  271.485704][ T8236] zram: Added device: zram1
[  271.799393][ T8247] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input9
[  271.851115][ T8249] netlink: 16 bytes leftover after parsing attributes in process `syz.2.549'.
[  274.050765][ T8284] random: crng reseeded on system resumption
[  274.796453][ T8296] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input10
[  279.070359][ T8355] Invalid ELF header magic: != ELF
[  281.363363][ T8392] netlink: 25 bytes leftover after parsing attributes in process `syz.0.583'.
[  281.554617][ T8389] ima: policy update failed
[  281.569022][   T30] audit: type=1802 audit(6047282481.465:12): pid=8389 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.583" res=0 errno=0
dev/[  285.023594][ T8453] ubi0: attaching mtd0
[  285.047051][ T8453] ubi0: scanning is finished
[  285.051727][ T8453] ubi0 error: ubi_read_volume_table: the layout volume was not found
[  285.183282][ T8453] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  287.442999][   T51] Bluetooth: hci1: unexpected event 0x3e length: 508 > 260
[  287.443054][   T51] Bluetooth: hci1: unexpected subevent 0x02 length: 507 > 260
[  287.458617][   T51] Bluetooth: hci1: Dropping invalid advertising data
[  287.466203][   T51] Bluetooth: hci1: Dropping invalid advertising data
[  287.472974][   T51] Bluetooth: hci1: Dropping invalid advertising data
[  287.480311][   T51] Bluetooth: hci1: Malformed LE Event: 0x02
[  288.905244][ T8504] 
[  289.558416][   T51] Bluetooth: hci3: unexpected event 0x16 length: 11 > 6
[  292.526619][ T8562] netlink: 28 bytes leftover after parsing attributes in process `syz.1.620'.
[  292.988814][ T8575] netlink: 8 bytes leftover after parsing attributes in process `syz.3.622'.
[  294.907167][ T8603] FAULT_INJECTION: forcing a failure.
[  294.907167][ T8603] name fail_futex, interval 1, probability 0, space 0, times 0
[  294.953019][ T8603] CPU: 0 UID: 0 PID: 8603 Comm: syz.2.629 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(full) 
[  294.953065][ T8603] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  294.953084][ T8603] Call Trace:
[  294.953095][ T8603]  <TASK>
[  294.953106][ T8603]  dump_stack_lvl+0x16c/0x1f0
[  294.953157][ T8603]  should_fail_ex+0x512/0x640
[  294.953206][ T8603]  get_futex_key+0x1d0/0x1540
[  294.953251][ T8603]  ? __pfx_get_futex_key+0x10/0x10
[  294.953299][ T8603]  ? find_held_lock+0x2b/0x80
[  294.953337][ T8603]  futex_wait_setup+0x84/0x510
[  294.953395][ T8603]  __futex_wait+0x194/0x2f0
[  294.953448][ T8603]  ? __pfx___futex_wait+0x10/0x10
[  294.953495][ T8603]  ? __lock_acquire+0xb8a/0x1c90
[  294.953548][ T8603]  ? __pfx_futex_wake_mark+0x10/0x10
[  294.953605][ T8603]  ? release_sock+0x21/0x220
[  294.953660][ T8603]  ? __futex_hash.constprop.0+0x1e9/0x440
[  294.953704][ T8603]  futex_wait+0xe8/0x380
[  294.953764][ T8603]  ? __pfx_futex_wait+0x10/0x10
[  294.953802][ T8603]  ? __local_bh_enable_ip+0xa4/0x120
[  294.953850][ T8603]  ? inet6_bind_sk+0xe5/0x230
[  294.953881][ T8603]  ? __pfx_inet6_bind_sk+0x10/0x10
[  294.953918][ T8603]  do_futex+0x229/0x350
[  294.953958][ T8603]  ? __pfx_do_futex+0x10/0x10
[  294.954006][ T8603]  ? __sys_bind+0x1c5/0x260
[  294.954052][ T8603]  __x64_sys_futex+0x1e0/0x4c0
[  294.954099][ T8603]  ? __pfx___x64_sys_futex+0x10/0x10
[  294.954139][ T8603]  ? xfd_validate_state+0x61/0x180
[  294.954182][ T8603]  ? __pfx___do_sys_close_range+0x10/0x10
[  294.954243][ T8603]  do_syscall_64+0xcd/0x490
[  294.954293][ T8603]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  294.954325][ T8603] RIP: 0033:0x7ff44a38e929
[  294.954349][ T8603] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  294.954380][ T8603] RSP: 002b:00007ff44b21c0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  294.954410][ T8603] RAX: ffffffffffffffda RBX: 00007ff44a5b5fa8 RCX: 00007ff44a38e929
[  294.954430][ T8603] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007ff44a5b5fa8
[  294.954447][ T8603] RBP: 00007ff44a5b5fa0 R08: 0000000000000000 R09: 0000000000000000
[  294.954465][ T8603] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff44a5b5fac
[  294.954482][ T8603] R13: 0000000000000000 R14: 00007ffdd039f250 R15: 00007ffdd039f338
[  294.954520][ T8603]  </TASK>
[  295.768428][ T8609] netlink: 504 bytes leftover after parsing attributes in process `syz.3.630'.
[  295.797689][ T8609] netlink: 350 bytes leftover after parsing attributes in process `syz.3.630'.
[  296.905772][ T8629] FAULT_INJECTION: forcing a failure.
[  296.905772][ T8629] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  296.935046][ T8629] CPU: 0 UID: 0 PID: 8629 Comm: syz.0.640 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(full) 
[  296.935093][ T8629] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  296.935111][ T8629] Call Trace:
[  296.935122][ T8629]  <TASK>
[  296.935134][ T8629]  dump_stack_lvl+0x16c/0x1f0
[  296.935188][ T8629]  should_fail_ex+0x512/0x640
[  296.935241][ T8629]  strncpy_from_user+0x3b/0x2e0
[  296.935290][ T8629]  getname_flags.part.0+0x8f/0x550
[  296.935332][ T8629]  getname_flags+0x93/0xf0
[  296.935375][ T8629]  do_sys_openat2+0xb8/0x1d0
[  296.935415][ T8629]  ? __pfx_do_sys_openat2+0x10/0x10
[  296.935470][ T8629]  __x64_sys_openat+0x174/0x210
[  296.935509][ T8629]  ? __pfx___x64_sys_openat+0x10/0x10
[  296.935564][ T8629]  do_syscall_64+0xcd/0x490
[  296.935634][ T8629]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  296.935678][ T8629] RIP: 0033:0x7f6c7c98e929
[  296.935705][ T8629] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  296.935737][ T8629] RSP: 002b:00007f6c7d7a5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  296.935769][ T8629] RAX: ffffffffffffffda RBX: 00007f6c7cbb5fa0 RCX: 00007f6c7c98e929
[  296.935791][ T8629] RDX: 0000000000048400 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  296.935812][ T8629] RBP: 00007f6c7ca10b39 R08: 0000000000000000 R09: 0000000000000000
[  296.935832][ T8629] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  296.935852][ T8629] R13: 0000000000000000 R14: 00007f6c7cbb5fa0 R15: 00007ffdaaa41118
[  296.935893][ T8629]  </TASK>
[  297.525546][ T8640] 
[  297.527919][ T8640] ======================================================
[  297.534955][ T8640] WARNING: possible circular locking dependency detected
[  297.542001][ T8640] 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 Not tainted
[  297.549207][ T8640] ------------------------------------------------------
[  297.556308][ T8640] syz.0.635/8640 is trying to acquire lock:
[  297.562208][ T8640] ffff888027260fa8 (&q->elevator_lock){+.+.}-{4:4}, at: queue_requests_store+0x1c7/0x310
[  297.572070][ T8640] 
[  297.572070][ T8640] but task is already holding lock:
[  297.579438][ T8640] ffff888027260a70 (&q->q_usage_counter(io)#59){++++}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20
[  297.590705][ T8640] 
[  297.590705][ T8640] which lock already depends on the new lock.
[  297.590705][ T8640] 
[  297.601113][ T8640] 
[  297.601113][ T8640] the existing dependency chain (in reverse order) is:
[  297.610136][ T8640] 
[  297.610136][ T8640] -> #3 (&q->q_usage_counter(io)#59){++++}-{0:0}:
[  297.618773][ T8640]        blk_alloc_queue+0x619/0x760
[  297.624080][ T8640]        blk_mq_alloc_queue+0x175/0x290
[  297.629667][ T8640]        __blk_mq_alloc_disk+0x29/0x120
[  297.635242][ T8640]        nbd_dev_add+0x4a0/0xbc0
[  297.640215][ T8640]        nbd_init+0x181/0x320
[  297.644930][ T8640]        do_one_initcall+0x120/0x6e0
[  297.650248][ T8640]        kernel_init_freeable+0x5c2/0x900
[  297.656080][ T8640]        kernel_init+0x1c/0x2b0
[  297.660946][ T8640]        ret_from_fork+0x5d7/0x6f0
[  297.666083][ T8640]        ret_from_fork_asm+0x1a/0x30
[  297.671385][ T8640] 
[  297.671385][ T8640] -> #2 (fs_reclaim){+.+.}-{0:0}:
[  297.678619][ T8640]        fs_reclaim_acquire+0x102/0x150
[  297.684180][ T8640]        prepare_alloc_pages+0x162/0x610
[  297.689830][ T8640]        __alloc_frozen_pages_noprof+0x18b/0x23f0
[  297.696279][ T8640]        __alloc_pages_noprof+0xb/0x1b0
[  297.701852][ T8640]        pcpu_populate_chunk+0x110/0xb00
[  297.707512][ T8640]        pcpu_alloc_noprof+0x86a/0x1470
[  297.713081][ T8640]        xt_percpu_counter_alloc+0x13e/0x1b0
[  297.719090][ T8640]        find_check_entry.constprop.0+0xbc/0x9b0
[  297.725440][ T8640]        translate_table+0xc98/0x1720
[  297.730830][ T8640]        ipt_register_table+0x102/0x430
[  297.736406][ T8640]        iptable_raw_table_init+0x63/0x90
[  297.742146][ T8640]        xt_find_table_lock+0x2e4/0x520
[  297.747723][ T8640]        xt_request_find_table_lock+0x28/0xf0
[  297.753811][ T8640]        get_info+0x190/0x610
[  297.758505][ T8640]        do_ipt_get_ctl+0x169/0xa10
[  297.763721][ T8640]        nf_getsockopt+0x79/0xe0
[  297.768670][ T8640]        ip_getsockopt+0x18c/0x1e0
[  297.773801][ T8640]        tcp_getsockopt+0xa1/0x100
[  297.778939][ T8640]        do_sock_getsockopt+0x3ff/0x800
[  297.784499][ T8640]        __sys_getsockopt+0x123/0x1b0
[  297.789920][ T8640]        __x64_sys_getsockopt+0xbd/0x160
[  297.795593][ T8640]        do_syscall_64+0xcd/0x490
[  297.800647][ T8640]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  297.807075][ T8640] 
[  297.807075][ T8640] -> #1 (pcpu_alloc_mutex){+.+.}-{4:4}:
[  297.814824][ T8640]        __mutex_lock+0x199/0xb90
[  297.819909][ T8640]        pcpu_alloc_noprof+0xb4c/0x1470
[  297.825475][ T8640]        sbitmap_init_node+0x2fd/0x770
[  297.830949][ T8640]        sbitmap_queue_init_node+0x41/0x560
[  297.836860][ T8640]        blk_mq_init_tags+0x12d/0x2b0
[  297.842266][ T8640]        blk_mq_alloc_map_and_rqs+0x237/0xf60
[  297.848356][ T8640]        blk_mq_init_sched+0x30c/0x610
[  297.853828][ T8640]        elevator_switch+0x1e1/0x7f0
[  297.859149][ T8640]        elevator_change+0x2ac/0x400
[  297.864444][ T8640]        elevator_set_default+0x292/0x320
[  297.870180][ T8640]        blk_register_queue+0x393/0x4f0
[  297.875735][ T8640]        __add_disk+0x74a/0xf00
[  297.880602][ T8640]        add_disk_fwnode+0x13f/0x5d0
[  297.885906][ T8640]        nbd_dev_add+0x791/0xbc0
[  297.890869][ T8640]        nbd_init+0x181/0x320
[  297.895918][ T8640]        do_one_initcall+0x120/0x6e0
[  297.901225][ T8640]        kernel_init_freeable+0x5c2/0x900
[  297.906981][ T8640]        kernel_init+0x1c/0x2b0
[  297.911853][ T8640]        ret_from_fork+0x5d7/0x6f0
[  297.917005][ T8640]        ret_from_fork_asm+0x1a/0x30
[  297.922311][ T8640] 
[  297.922311][ T8640] -> #0 (&q->elevator_lock){+.+.}-{4:4}:
[  297.930151][ T8640]        __lock_acquire+0x126f/0x1c90
[  297.935553][ T8640]        lock_acquire+0x179/0x350
[  297.940603][ T8640]        __mutex_lock+0x199/0xb90
[  297.945654][ T8640]        queue_requests_store+0x1c7/0x310
[  297.951389][ T8640]        queue_attr_store+0x279/0x320
[  297.956787][ T8640]        sysfs_kf_write+0xef/0x150
[  297.961916][ T8640]        kernfs_fop_write_iter+0x351/0x510
[  297.967749][ T8640]        iter_file_splice_write+0x91f/0x1150
[  297.973747][ T8640]        direct_splice_actor+0x192/0x6c0
[  297.979397][ T8640]        splice_direct_to_actor+0x342/0xa30
[  297.985308][ T8640]        do_splice_direct+0x174/0x240
[  297.990698][ T8640]        do_sendfile+0xb06/0xe50
[  297.995681][ T8640]        __x64_sys_sendfile64+0x1d8/0x220
[  298.001411][ T8640]        do_syscall_64+0xcd/0x490
[  298.006462][ T8640]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  298.012916][ T8640] 
[  298.012916][ T8640] other info that might help us debug this:
[  298.012916][ T8640] 
[  298.023155][ T8640] Chain exists of:
[  298.023155][ T8640]   &q->elevator_lock --> fs_reclaim --> &q->q_usage_counter(io)#59
[  298.023155][ T8640] 
[  298.036919][ T8640]  Possible unsafe locking scenario:
[  298.036919][ T8640] 
[  298.044398][ T8640]        CPU0                    CPU1
[  298.049769][ T8640]        ----                    ----
[  298.055139][ T8640]   lock(&q->q_usage_counter(io)#59);
[  298.060535][ T8640]                                lock(fs_reclaim);
[  298.067048][ T8640]                                lock(&q->q_usage_counter(io)#59);
[  298.075068][ T8640]   lock(&q->elevator_lock);
[  298.079677][ T8640] 
[  298.079677][ T8640]  *** DEADLOCK ***
[  298.079677][ T8640] 
[  298.087831][ T8640] 5 locks held by syz.0.635/8640:
[  298.092950][ T8640]  #0: ffff8880250a2428 (sb_writers#7){.+.+}-{0:0}, at: splice_direct_to_actor+0x342/0xa30
[  298.103032][ T8640]  #1: ffff88805b7fdc88 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x510
[  298.112815][ T8640]  #2: ffff888140593b48 (kn->active#123){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2b2/0x510
[  298.122955][ T8640]  #3: ffff888027260a70 (&q->q_usage_counter(io)#59){++++}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20
[  298.134667][ T8640]  #4: ffff888027260aa8 (&q->q_usage_counter(queue)#11){+.+.}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20
[  298.146676][ T8640] 
[  298.146676][ T8640] stack backtrace:
[  298.152569][ T8640] CPU: 0 UID: 0 PID: 8640 Comm: syz.0.635 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(full) 
[  298.152597][ T8640] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  298.152611][ T8640] Call Trace:
[  298.152618][ T8640]  <TASK>
[  298.152631][ T8640]  dump_stack_lvl+0x116/0x1f0
[  298.152668][ T8640]  print_circular_bug+0x275/0x350
[  298.152700][ T8640]  check_noncircular+0x14c/0x170
[  298.152734][ T8640]  __lock_acquire+0x126f/0x1c90
[  298.152767][ T8640]  ? __lock_acquire+0xb8a/0x1c90
[  298.152798][ T8640]  lock_acquire+0x179/0x350
[  298.152828][ T8640]  ? queue_requests_store+0x1c7/0x310
[  298.152851][ T8640]  ? __pfx___might_resched+0x10/0x10
[  298.152876][ T8640]  ? do_raw_spin_lock+0x12c/0x2b0
[  298.152913][ T8640]  __mutex_lock+0x199/0xb90
[  298.152947][ T8640]  ? queue_requests_store+0x1c7/0x310
[  298.152969][ T8640]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  298.152999][ T8640]  ? queue_requests_store+0x1c7/0x310
[  298.153019][ T8640]  ? lockdep_hardirqs_on+0x7c/0x110
[  298.153052][ T8640]  ? __pfx___mutex_lock+0x10/0x10
[  298.153089][ T8640]  ? __pfx_autoremove_wake_function+0x10/0x10
[  298.153122][ T8640]  ? queue_requests_store+0x1c7/0x310
[  298.153142][ T8640]  queue_requests_store+0x1c7/0x310
[  298.153163][ T8640]  ? __pfx_queue_requests_store+0x10/0x10
[  298.153186][ T8640]  ? __mutex_trylock_common+0xe9/0x250
[  298.153219][ T8640]  ? __pfx_queue_requests_store+0x10/0x10
[  298.153240][ T8640]  queue_attr_store+0x279/0x320
[  298.153275][ T8640]  ? __pfx_queue_attr_store+0x10/0x10
[  298.153309][ T8640]  ? __lock_acquire+0x622/0x1c90
[  298.153346][ T8640]  ? find_held_lock+0x2b/0x80
[  298.153368][ T8640]  ? sysfs_file_kobj+0xe4/0x290
[  298.153397][ T8640]  ? __pfx_queue_attr_store+0x10/0x10
[  298.153431][ T8640]  sysfs_kf_write+0xef/0x150
[  298.153458][ T8640]  kernfs_fop_write_iter+0x351/0x510
[  298.153482][ T8640]  ? __pfx_sysfs_kf_write+0x10/0x10
[  298.153510][ T8640]  iter_file_splice_write+0x91f/0x1150
[  298.153549][ T8640]  ? __pfx_iter_file_splice_write+0x10/0x10
[  298.153582][ T8640]  ? __pfx_copy_splice_read+0x10/0x10
[  298.153617][ T8640]  ? __pfx_iter_file_splice_write+0x10/0x10
[  298.153653][ T8640]  direct_splice_actor+0x192/0x6c0
[  298.153684][ T8640]  splice_direct_to_actor+0x342/0xa30
[  298.153714][ T8640]  ? __pfx_direct_splice_actor+0x10/0x10
[  298.153746][ T8640]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  298.153779][ T8640]  do_splice_direct+0x174/0x240
[  298.153826][ T8640]  ? __pfx_do_splice_direct+0x10/0x10
[  298.153856][ T8640]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  298.153888][ T8640]  ? rw_verify_area+0xcf/0x680
[  298.153919][ T8640]  do_sendfile+0xb06/0xe50
[  298.153953][ T8640]  ? __pfx_do_sendfile+0x10/0x10
[  298.153983][ T8640]  ? handle_mm_fault+0x2ab/0xd10
[  298.154016][ T8640]  ? __x64_sys_futex+0x1e0/0x4c0
[  298.154044][ T8640]  ? __x64_sys_futex+0x1e9/0x4c0
[  298.154074][ T8640]  __x64_sys_sendfile64+0x1d8/0x220
[  298.154096][ T8640]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  298.154123][ T8640]  do_syscall_64+0xcd/0x490
[  298.154159][ T8640]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  298.154184][ T8640] RIP: 0033:0x7f6c7c98e929
[  298.154202][ T8640] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  298.154224][ T8640] RSP: 002b:00007f6c7d7a5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  298.154245][ T8640] RAX: ffffffffffffffda RBX: 00007f6c7cbb5fa0 RCX: 00007f6c7c98e929
[  298.154261][ T8640] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[  298.154274][ T8640] RBP: 00007f6c7ca10b39 R08: 0000000000000000 R09: 0000000000000000
[  298.154288][ T8640] R10: 0000000000000200 R11: 0000000000000246 R12: 0000000000000000
[  298.154302][ T8640] R13: 0000000000000000 R14: 00007f6c7cbb5fa0 R15: 00007ffdaaa41118
[  298.154323][ T8640]  </TASK>