last executing test programs:

4m47.774558409s ago: executing program 0 (id=844):
mmap$auto(0x9, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0xa)
r0 = socket(0x2b, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
socket(0x3f, 0x4, 0x10000)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2)
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
getpeername$auto(0x3, 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = socket(0x2, 0x1, 0x0)
sendmmsg$auto(r1, 0x0, 0x5, 0x20000000)
write$auto(0x3, 0x0, 0xfffffdef)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r2=>0x0})
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40080}, 0x40090)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
getrandom$auto(0x0, 0x6000000, 0x3)
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x1, 0x0, 0x0, 0x40000}, 0x80)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000080)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x6, 0x0, 0x4000000000007, 0xa}, 0x800}, 0x4, 0x4008)
r3 = socket(0x29, 0x2, 0x0)
r4 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
recvmmsg$auto(r4, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0)
ioctl$auto(r3, 0x89f2, 0x24)
bpf$auto(0x4, &(0x7f0000000080)=@bpf_attr_5={@target_ifindex=r2, r1, 0x40, 0x4, 0xffffffffffffffff, @relative_fd, 0xffffffffffffff7f}, 0x80000001)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x20b42, 0x0)
mmap$auto(0x0, 0x2020009, 0x9, 0xeb1, 0xfffefffffffffffa, 0x8000)
openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x8402, 0x0)

4m45.463783644s ago: executing program 0 (id=849):
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
ioctl$auto(0x3, 0x4020565b, 0x38)
sendmsg$auto_NETDEV_CMD_QUEUE_GET2(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000004c0)={&(0x7f0000000440)=ANY=[@ANYBLOB='d\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="200025bd7000fddbdf250a00000008000200", @ANYRES32=0x0, @ANYBLOB="08000200", @ANYRES32=0x0, @ANYBLOB="08000200", @ANYRES32=0x0, @ANYBLOB="08000200", @ANYRES32=0x0, @ANYBLOB="08000200", @ANYRES32=0x0, @ANYBLOB="08000200", @ANYRES32=0x0, @ANYBLOB="08000200", @ANYRES32=0x0, @ANYBLOB="08000200", @ANYRES32=0x0, @ANYBLOB='\a\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB, @ANYRES32=0x0, @ANYBLOB], 0x64}, 0x1, 0x0, 0x0, 0x8020}, 0x0)
mmap$auto(0x0, 0x40009, 0x6, 0x9b72, 0x7, 0x28000)
r0 = io_uring_setup$auto(0x2, 0x0)
r1 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cec24\x00', 0x0, 0x0)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/rpc/nfsd.fh/content\x00', 0x40c80, 0x0)
pread64$auto(r2, &(0x7f0000000540)='veth1\x00\xe0,\x17\xa0\xf7\x89Pl\x84K?\x01\x84\xa1i\xe00\x81p\xa0U \f\xdbP`:\xe2\'\xa7\xbf\xbd\x04\x18\xad\x90I^\x99M\xe0W\x14\x11\xf4\xeb\x90:\v\xc5\x13*\xfe\x90\xb1\xa9O\xa5\x05\xaa\x8fTi\xd6\x88Q\xda\xca', 0x20000000003f, 0x1)
ioctl$auto_CEC_DQEVENT(r1, 0xc0506107, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000840), r3)
mmap$auto(0xb, 0xd74, 0x2, 0x18, r0, 0x3)
sendmsg$auto_OVS_CT_LIMIT_CMD_SET(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000006400)={0x2e20, r4, 0x1, 0x51bd2e, 0x25dfcbfb, {}, [@OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x4}, @OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x2e07}]}, 0x2e20}, 0x1, 0x0, 0x0, 0x2000c040}, 0x4)
msgget$auto(0x0, 0x77d9)
poll$auto(&(0x7f0000001180)={r1, 0xd, 0x1000}, 0x5, 0x1000)
close_range$auto(0x2, 0x8, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r5 = socket(0x2, 0x2, 0x1)
r6 = bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_4={0x1f, <r7=>r5, 0x10000, r0}, 0x10)
mmap$auto(0x0, 0x9, 0xffffffff, 0x8000200008011, r6, 0x8000)
r8 = syz_clone(0x20000, 0x0, 0x0, 0x0, 0x0, 0x0)
mremap$auto(0x0, 0x4, 0x4, 0x7, 0x100000000)
statx$auto(r7, &(0x7f0000000780)='./file0\x00', 0x9, 0x1, &(0x7f0000000880)={0x0, 0xb8, 0x8000000000000000, 0x3, <r9=>0xffffffffffffffff, 0xee00, 0xb0, 0x1ff, 0x9, 0xfffffffffffffffe, 0x9, 0x800, {0x2, 0x1}, {0xa4ec, 0x3}, {0x6, 0x5}, {0x80, 0x3bb81386}, 0xffffffff, 0xfff, 0x5, 0x2, 0x15, 0x2, 0x7, 0x9, 0x8, 0x3, 0x1, 0x55a, [0x812e, 0x9, 0x5, 0x1191, 0x33a, 0x2, 0x8, 0x80000000, 0x1]})
sendmsg$auto_TIPC_NL_PEER_REMOVE(r6, &(0x7f0000000800)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000007c0)={&(0x7f00000021c0)={0x112c, 0x0, 0x200, 0x70bd2a, 0x25dfdbfd, {}, [@TIPC_NLA_MON={0x3ca, 0x9, 0x0, 0x1, [@nested={0x5e, 0x11e, 0x0, 0x1, [@generic="7600ee656ac823d358513eef4f69047ca648ff31b02858ce12752d5166837a0b7626f00797ded88e06481d762cc39afde0e4c6f1a09b81764ee1bb1d0ff0151efb2285c453f1", @nested={0x4, 0x9e}, @typed={0xc, 0x5, 0x0, 0x0, @u64=0x6c7}, @nested={0x4, 0x13f}]}, @generic="e78e28257be7a30e30230da020470562959ba776aea72f86883377ee445f8e2de6430f39647b8734c10e696c3457de29220f5cb6bdb4882e399812e42fc885553dc9636c077bbd8ce482beddc87a55ef2d4995863aa8fb0f0257cd0c50118abd366f572f923734c8d81b3cead3b05b99fec8199972e9afa7a935fd88cb4c894ebe9a9fbee3e8388508262a960890289afae40182d1d6befdc7a6683bf4cd79bb232ca970b4629fa1a33293c11432981623eeadb20e1ed5858bcd8f7db7acebb54b7bbe7c25fc", @generic="00f0d6a9dcb682cd38df9ad376cad8e440cd6ecd591951773a7dbdaf4a8b4a69260c7c7e6a32eb38e825c25f5c11e8332b87c810bc57fd6f5f71a0f842f6863eefcd940752b96594464bda98e5ab46c60b544c25d78dfaa8bbbed915b16882c2b2773d46b028656a666db7125b730543dda92fcf2fddcd41b89375fbbe2f01199cd02cc86dc25bcf45cb05b062aa766d8195d91066be816ada0a3b454b5dc1f8d968f76c3e88f3da4fb3ad5a60d7e2dedbd087a5e84ecbdb4710cfd6ee84d961c81d73bb68987dd6fd3b90fcacdad38055ce12a685957e1bdf2c3d35caba3276a538f756", @nested={0x1b9, 0x6f, 0x0, 0x1, [@generic="dbf7c854364a279e2db578b046c4ca309e11e4f10b4b0ca19eff4f3938408942ab59a6ea4781804730a382341e5b41bcd338223c25cf8cbbacfeb38fc7106f0bae2e928ab94a5d5213c6e08bf3a95178cfa89b2f8b75a88e17250590831ed39385a8ed3adce32806f7a7d6c065c12eda11", @typed={0x50, 0xe6, 0x0, 0x0, @binary="f7a28219061598cf5e556171f5580eb39f988d569c75b3b66a83802216afc37e4d68dacf2de99833a9eaf86b47ec5370db997b21b52116c9531d1250b8e375d2e6f470c8ac56fb6b6e36ea88"}, @typed={0xc, 0x47, 0x0, 0x0, @u64=0x6}, @nested={0x4, 0x122}, @typed={0x8, 0xf7, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}, @typed={0x8, 0x13c, 0x0, 0x0, @uid}, @nested={0x4, 0x123}, @generic="516af7e6cb1f556758ccb125caf4211a59a549bc3c366fd680a2fec8f035d3032d979a37e6eec8478daf10710fdbeb65694cf794986bad0e5d7f60d6d5a3a19b729ce7d8759a771834bd5253286fadf98cb35f375a439f75bafd9c8c1b133e19a5b730a640eb1843fd4b7edf9cd2edacb243f2d297f23b1ec791d4349222ab0d0a1d9b926617cfa82670026c0e2c1fba890bb6bdea02b707fe15a535a0c73b069c64a905ae2e767e1668510f80fb86391cd92117f0137eedd2964e99c980ddc42cd077ab6e2cccad7b079a7b00a1052a"]}]}, @TIPC_NLA_BEARER={0x18, 0x1, 0x0, 0x1, [@typed={0xc, 0xb7, 0x0, 0x0, @u64=0x3}, @typed={0x8, 0x135, 0x0, 0x0, @uid}]}, @TIPC_NLA_NODE={0x454, 0x6, 0x0, 0x1, [@typed={0x8, 0x5d, 0x0, 0x0, @ipv4=@remote}, @nested={0x2d3, 0x11f, 0x0, 0x1, [@typed={0x8, 0x62, 0x0, 0x0, @pid=r8}, @generic="0ab94ca44f103f21e29d4f6eb726bddf6edaa7878d3f0e1ce749c741cf8c3b32a9284f962815b88c2bbe59322911fc038c98ea3e69422c38e86d6048164ae30b293524305c17ea64a00c069fba3490b87d10f2c9f565df0206c63dff8101f12b0cb698bb588a87c3084e79b8eaaa2ee96a38ae76dd52f41c1919c153f06efd127a08d5aebfb6ac70d7762b2751c7516c7f8c094d5006875778dd246cd10c09f0e5480700ae23b0fff17c64ea5c25c34ff86cc8ebae9315af5cc82e9d98c16418a4606be0438934401872c1d6c31a925fe778dce4eb9ec599bd3cf6818d84b84693b04cfe504245da1057e1abba80c2f1c4d938", @generic="63fabd583ae5a59a4b0e9fc2654f9c14b5004bbc46e956468aff8e86b9eda97a3229bb75cc73227c41c68bd70c60731d0cea39c874e2f76f6152591c644399d6b4b783cad49c212d45526a7da83150f1b2ad341634ed02c410e7de6687c9fe94ae1c5a8b9c2338df4484b3bbac654d2ea53d39d4a04dc97680", @generic="61b1f723358b1b07478e81c36b861953c67fd4aad3ab60b33074c6b3152af030401b47ba60d2ac57dcf75f3d933c94546054d3adc3915841f04fdd591af6976bce8d5ad991c792bb9fc68c967f8aee935eb5767fb499d8440a8e3d2bda9718af7f871a1779d3f6a54c6ff37247cb40c51be9df8fb76c63e66d8dd080cd74328020560998031bfd0f9cc371bdfb4f1ddd9a1f54ade3599169b4dd812c6977e85d59e27abf91955b09b0b855452a96cd45519e293781b0353a4b492e526abc72c3ec4809e9845e1db60c768d80e22b0a50d7a48abb73f50154f181149a7e6def3a3cf9ba80c5c385f1", @nested={0x4, 0x125}, @nested={0x4, 0x14f}, @typed={0x2e, 0x11d, 0x0, 0x0, @binary="87577e8ac7afaf6049753a71a07ec7f81e039230c101e2bc18c1fb47beaabf3e5f14619c33321f01dfb3"}, @generic="4d871e55bab2b0ca5796417150ce8527ad", @generic="18e29d99150b748970bb7feac29d0a3b086a9bcdb39a97fbfd3a3d559fed5e3f3ec787504a21", @nested={0x4, 0x7e}]}, @nested={0x172, 0x79, 0x0, 0x1, [@generic="79b997f49862faf8e8350cf4bbe5c849b2695c4022c0064d9ee5440dd8543e9d6cae00a9071cdf73d3e8a5120faa293c3cefd03eec2bbcd9cde799fd6dbec13c8a4ec394b6fe62c6f75072a6044242191eedb5314d3c39961b5fa91e2f558ad80e6f80107fccdaf61488fa45a15b17b4510c677106861d1cd08cbb4a896bbbb657b1458455fae30ddf3b570246eb9b18617c66322b1d115b9ee6d03275c635e22274af16d24daefe0bce919da5e7de6030e14f798c7bd62f767074a9ccf9ec6b8460f0ea9ef8e30be8d12d8d0f0e", @nested={0x4, 0x121}, @generic="891ddfe5db16fb80e40e5eae12642d86e009a6f99e9a34a726192cdbca80731ab89fe71ab2f73f723ad72f98b4d0081e8bc7dca80b812ab03728868f68", @nested={0x4, 0xb5}, @generic="4479797c5cbd57db58b4e582f64f548cd2e61bb3e6d82a9308ccf45b34255ab88c5a9a5bcb7e8d15cbd48d6ac1a453c2d483f3a08f839f6197c70247479a021abbc284d7917c89370498a004db1a30", @typed={0x8, 0x13b, 0x0, 0x0, @uid}, @nested={0x4, 0x148}]}]}, @TIPC_NLA_MON={0x32d, 0x9, 0x0, 0x1, [@generic="29bc22b9504f2cb928337cba3fecceb776390d141c2d0c304e060f345938fa55172c06113b5ecbb81bd715e540c4630b5818ef9aff7d6c2f1e34e5eb1a25d1dcd05014c42bc137835e0fb41f0caf504c8c7489afb43d2674", @nested={0x1c5, 0xaf, 0x0, 0x1, [@generic="d37fd4d7", @typed={0x8, 0x110, 0x0, 0x0, @fd=r1}, @generic="83e15bc9af36a418e7f999fe6bda7b4097e4b5ef2c0370202fc6946f1c27d53e236a92d60093e888736a91bb6881da55a00da165964e0ea9b1850ecaacbb3e3ff7062313601a22f5b49696f59079b64351ca1c794fc9eb3d5aedf8b4ffb0d50e789ab58f8900206f2fdad580b51023599bafa82976bef4cd9439cd3ebbae6d797d1a8cd3f4b05a7ed60139445ef73280ba0fae2bdf49acd6b5579bf6be7a679abc2f955412ea2b30383ae9a5d7c2d8b0020a88ed177f94c9d0ed44349784646cc0947100b986186a606c8f6f4392a78e22", @generic="5fce1f28b40834c24a8a1420b6a7ee1f04bc791bdc00e520e6fd3c4d220648e60ebabc35a44ec474799bce0607678a022ed3c9fc899cf790974f9d794fb3757297e8f2a0a289dfd2f1f402ec37dcc3b3852e9f8178225c8fe31213f557159ca01e6d1a40b560e358532172232a4e7b0c3c26ac6b3ab947018c679de8fde7ec758ad261722c396ed4a01a255720b336c2e16a9e3f21a85545545a5f0092017d22e270006528122e7af2fa42d4462245c73517da5b4480f1f8e741f01d81343abd", @typed={0x8, 0x145, 0x0, 0x0, @u32=0x4}, @typed={0x8, 0x14c, 0x0, 0x0, @u32=0x1}, @typed={0x14, 0x71, 0x0, 0x0, @ipv6=@dev={0xfe, 0x80, '\x00', 0x36}}]}, @typed={0xc, 0xc2, 0x0, 0x0, @u64=0x6}, @nested={0x30, 0x9f, 0x0, 0x1, [@nested={0x4, 0x10b}, @typed={0x8, 0x147, 0x0, 0x0, @u32=0x8}, @typed={0x8, 0x38, 0x0, 0x0, @fd}, @typed={0xc, 0xd3, 0x0, 0x0, @u64=0x4}, @typed={0x8, 0x8a, 0x0, 0x0, @fd}, @nested={0x4, 0x132}]}, @typed={0x8, 0x112, 0x0, 0x0, @pid=r8}, @generic="37d9ae1c5bbd3cd5a262c6528bcd05b517726c2a99826a24d87db6cbf874d0b9ce97fccd50e2e2e788db1643c18be0524b9eb42580e724a4489bd8a096ca2abf4d4e1a0d80c37400580a1463394f2e80118a16aa5e938f8a1bc5a6fb17bbf1c8961a5c9ba9f371469b29b219c04a5ec347dd568c611deb8bf2dd2bb30251f5fb0a9039995b5b45bde9669729583ec714d880d75c610182a2d9714e844109d1328e08f6ffa6349f0e0a72dea7dd9ce5d8a49d65b1fb41a33c6b2c693388cd3508660ea86c0a"]}, @TIPC_NLA_NET={0x150, 0x7, 0x0, 0x1, [@generic="6226969c57c8f6c5cab689a72d0ca12ab954a5bf7c20e82317e153c6491dd015276cd8aaaf56885ae8bf7442df5e650de9ba622aad2bbb0e88d43fcb47849dcf8dd24a9828ceb1089299ff88279165d404ef6245fb84801ff19707c4f6ead10baed5b31222b96ff07b315df3c502c2affb452754d806510d7dce101ad36d3913c2049994ee683f64a176aac33a75b2a25af883c665e575aaf0940cadfe35a7613fce204389159f70ef16b60ed0408d7504cb50bc2e1f46a9e3522648707d42482ba9b39c60cdaa423f3b000861628c6ae19a527a", @nested={0x4c, 0x11c, 0x0, 0x1, [@nested={0x4, 0xff}, @generic="a652022f6495cdd3a6087fc2850582fa5f8cb7c4b0e4274a93674acde94aa2191c6c115f729d514d44e8f3911d0d4ad24f15ee003fdd3873a285dae672517ea9343cb2d9"]}, @typed={0x8, 0x68, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0xf3, 0x0, 0x0, @u32=0x1b805a28}, @nested={0x10, 0x5f, 0x0, 0x1, [@nested={0x4, 0xe}, @nested={0x4, 0x4a}, @nested={0x4, 0x74}]}, @nested={0xc, 0xc, 0x0, 0x1, [@typed={0x8, 0x5c, 0x0, 0x0, @pid=r8}]}]}, @TIPC_NLA_NAME_TABLE={0x4}, @TIPC_NLA_NET={0xc, 0x7, 0x0, 0x1, [@typed={0x8, 0x26, 0x0, 0x0, @u32=0x1}]}, @TIPC_NLA_SOCK={0x22f, 0x2, 0x0, 0x1, [@typed={0x8, 0x54, 0x0, 0x0, @str='^\\!\x00'}, @typed={0x8, 0x13, 0x0, 0x0, @u32=0x7}, @typed={0x8, 0x148, 0x0, 0x0, @pid=0xffffffffffffffff}, @nested={0x155, 0x147, 0x0, 0x1, [@typed={0xd9, 0x45, 0x0, 0x0, @binary="4ee7226e855169e378b2351c459df7836745a6e8d606d3a888cbdb19611c69caee7e0ecc7428863c8581e609a5318dd0e518861eb73eaf91813b85af803b101da83a183a61be5ec190869964904695215b34c4596f8b549a70c794e1c80336517194ad772dc1f05c5261280d3a6303a5dbf5913e7d971c86aaeb945cf78ebac554d081854ffec246f5e44c9c7dc0092e2d7bc84618a2c63064d1e554c9206441f4135696a0ff409eef61056f0a560a7ab4af708f1cd9637435d5ddf1e50bbf71ae47e1b2afca6495e6c3fd5e7eaaeef5c2621dfcdf"}, @nested={0x4, 0xac}, @generic="04ce81d067f7d41d2911c305032019ef6ea7ba96107064ae3f40667a12f05aea9911bc42be29ab7c531c051cf8ca7595cec2e625c0dddfd0e2fec42daa84e1e9df673634f3ad766cdbc93abc40b49b8bbddc9f1721b506402437e520a75d2c70ba", @typed={0xd, 0x126, 0x0, 0x0, @str=')%.%:%\xe1)\x00'}]}, @generic="66fc8c1cc22f398bd4ca93144a75f7599ec67b2f71796f73942bcfaf86f99debf6d4b7a75bbf12236b2c22f6af3395a12772aa9e31ba631f024c34529b3324b5b87059f0b0760da8f5a9f69049dcf410d9416286b339e125f4c1fb54d7350a75219c9598593bf8c8dd92b9811d5b34343af47b8b687088dca25e4c7fc2f12df47365fb6e8e5b82500f08e3135da142fd19368679d371e9b2416a01667f96ccfc64c7f97dbd25be5b147fc16bc471a549c7521058efd3f93233c8d6"]}, @TIPC_NLA_LINK={0x21e, 0x4, 0x0, 0x1, [@typed={0x4, 0x127}, @nested={0x13f, 0x0, 0x0, 0x1, [@generic="91ffd9e663dae86dec70b738077aa5199dd64c7d459abaca30fcfbc1dad416cac25e7cc312e724e79929729213db76f5338782d26d88db25135847b120957afb21e52f8e7d7856042ac1f2b5f5221566dfcd2e33b62658931668ec45ac87fb73b7180b685afb97fdff38a182f701cb506aa30cc7d22ce632494d03d735b62f0df93524d1864e56d87e0d5d257682ec50b6192c068cfa719a57de4f1f44645a52c3b04bd6fd7a539742bccc416e316c7eb1c0b605848a14653c0c7dbc88", @generic="ee8d1150b28d360fe9ee0947c6a32775c1d72ddeadae14915e12a4e8bbb9922aaf6086d3c246a6f57e8849f7cf433f47bc3b913f017ec2c94475cd93c9e5a938330d72258b5b12e4eccb429c41115ef2fdf879ebd7bdc4817fa8b27662b2", @typed={0x8, 0xb8, 0x0, 0x0, @uid=r9}, @typed={0xc, 0x8, 0x0, 0x0, @u64=0xbe}, @nested={0x4, 0x109}, @nested={0x4, 0x76}, @nested={0x4, 0x100}]}, @nested={0xc, 0x10b, 0x0, 0x1, [@typed={0x8, 0x10, 0x0, 0x0, @ipv4=@private=0xa010101}]}, @generic="5a425b5a853f0dc6fe0e67916f5009f4cc5b3c2aa82427fc6b2887fdaaf6c651f3483c", @typed={0x8, 0xeb, 0x0, 0x0, @pid=r8}, @generic="e7966d252a6a7f17ed0e0bd06226acb898a3272d53198a4fdde23fb0dfcc9c086f80cb6fca204845b128d8559479fd6f9d71e59b8b3ab94fd120a137c593e19235614e05ee2a2f805707ac427fc0b2ed10c7ccb63dd55c80dfbd30b74aa72602fd74d1cb79c0a47b980520d49d9e727224652f1554e28d22c81e0d23c1437b0b82b2904910c158e0982eaf4db124759ba649d6ae3bce0f6c549b88df9e3007"]}]}, 0x112c}, 0x1, 0x0, 0x0, 0x4048085}, 0x40)
mlockall$auto(0x7)
modify_ldt$auto(0x1, &(0x7f00000001c0), 0x10)
set_mempolicy$auto(0x4006, 0x0, 0x7)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/loop2/queue/iostats\x00', 0x20b02, 0x0)

4m43.543727983s ago: executing program 0 (id=864):
close_range$auto(0x2, 0x8, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, r0, 0x300000000000)
r1 = socket(0x1d, 0x2, 0x7)
r2 = socket(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r3=>0x0})
bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, <r4=>r3}, 0x6a)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
mbind$auto(0xfffffffffffffff7, 0x8cf, 0x40, &(0x7f00000000c0)=0x3ff, 0x7, 0xc9)
r5 = socket(0x1d, 0x3, 0x1)
getsockopt$auto(r5, 0x65, 0x5, 0x0, 0x0)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x10400, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
unshare$auto(0x40000080)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/bdi/1:12/power/runtime_suspended_time\x00', 0x200, 0x0)
open(0x0, 0x22240, 0x154)
r6 = getpid()
process_vm_readv$auto(r6, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r7 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
r8 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
ioctl$auto(r7, 0x4b72, r8)
sendto$auto(r1, 0x0, 0xc, 0xfffffff8, &(0x7f0000000440)=@can={0x1d, r4}, 0x36)
adjtimex$auto(&(0x7f00000001c0)={0x1, 0x0, 0xf5, 0x6, 0x8, 0x7, 0x1, 0x0, 0x5, 0x84, 0x8, {0x4, 0x1}, 0xa4, 0xcc, 0x8001, 0x3, 0x0, 0xba2, 0x0, 0x7ff, 0x7, 0x6, 0xeea})
read$auto(0x3, 0x0, 0xfffffdef)

4m42.202117226s ago: executing program 0 (id=859):
r0 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/sysvipc/msg\x00', 0x0, 0x0)
read$auto_proc_pid_maps_operations_internal(r0, &(0x7f00000019c0)=""/4098, 0x1002)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/firmware/devicetree/base/name\x00', 0x8000, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
read$auto(r1, 0x0, 0x9)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video1\x00', 0x0, 0x0)
mmap$auto(0x89fe, 0x400009, 0xdf, 0x9b7e, 0x8000000000000003, 0x8000)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x20000, 0x588)
getdents$auto(r2, 0x0, 0x400018)
read$auto_mon_fops_text_t_mon_text(r2, &(0x7f0000000080)=""/38, 0x26)
ioctl$auto(0x3, 0x4020565a, 0x38)
ioctl$auto(0x3, 0x4020565b, 0x38)

4m41.866580536s ago: executing program 0 (id=860):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x182b02, 0x0) (async)
bind$auto(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x1d, 'my\b\x00\x00\x00\x00\x00\x00\x00\f\x00'}, 0x13)
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) (async)
r0 = openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/ieee80211/phy9/hw_conf\x00', 0x8000, 0x0)
lseek$auto(r0, 0x94, 0x1) (async)
r1 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/mem\x00', 0x10b201, 0x0)
writev$auto(r1, &(0x7f0000000040)={0x0, 0x8}, 0x10000000000008)
r2 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x10880, 0x0)
read$auto(r2, 0x0, 0x1f40) (async)
stat$auto(0x0, &(0x7f0000000380)={0x3, 0x3, 0x6, 0x4, 0x0, 0x0, 0x0, 0x1001, 0x0, 0x2, 0x2a, 0x2000ff, 0x100, 0x401, 0x5f57, 0x80000000, 0xaa}) (async)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x23, 0x0)
close_range$auto(0x2, 0x8, 0x0) (async)
clock_nanosleep$auto(0x2, 0x4, 0x0, 0xffffffffffffffff)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, 0x0, 0x100000, 0x0) (async)
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x5b) (async)
mremap$auto(0x0, 0x7, 0x3fd6, 0x3, 0x200000) (async)
writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3) (async)
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x6, 0xa, 0x1000009, <r4=>0x5f, 0x0, 0x3}, 0x6f3)
getsockopt$auto_SO_PASSCRED(r4, 0x1, 0x10, 0x0, 0x0) (async)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ram11\x00', 0x400000, 0x0) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
rt_sigqueueinfo$auto(0x1, 0x7, &(0x7f0000000040)={@siginfo_0_0={0x0, 0x5, 0xfffffffb, @_sigpoll={0x52, 0x7}}}) (async)
ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(0xffffffffffffffff, 0xc0285700, &(0x7f00000000c0)={0x3, "6e546c3c3a265f11056b516535b1935cf3c6b75a2aeaf8af28111479136c52c5"})
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)

4m40.580282579s ago: executing program 0 (id=866):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x0)
r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
r1 = socket(0x15, 0x5, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x7, 0x800008000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
ustat$auto(0x801, 0x0)
sendmsg$auto(r1, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0)
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x100)
r2 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
r3 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000100), r2)
sendmsg$auto_SMC_NETLINK_DISABLE_HS_LIMITATION(r0, &(0x7f0000000380)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000280)={&(0x7f0000000300)={0x78, r3, 0x200, 0x70bd29, 0x25dfdbfc, {}, "e3c74265fc46948319c3f37d6e8a9a79dc3557b111f98dad43bb7851e85c6edd25ff2e5e66857d087593b0acdb6771e1b6419c56ce9aca14a11bef724018b01cc14037b81433734f688b95c01584da9bbacee5f4bfc69ab1f048df81beb2ac5152a4"}, 0x78}, 0x1, 0x0, 0x0, 0x80c0}, 0x24000000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x4, 0x300000000000)
ioctl$auto_BCH_IOCTL_DISK_OFFLINE(r0, 0x4010bc07, &(0x7f00000003c0)={0x6, 0x0, 0xfff})
mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f0000000180)='nfsd\x00', 0x8, 0x0)

4m40.208861849s ago: executing program 32 (id=866):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x0)
r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
r1 = socket(0x15, 0x5, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x7, 0x800008000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
ustat$auto(0x801, 0x0)
sendmsg$auto(r1, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0)
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x100)
r2 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
r3 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000100), r2)
sendmsg$auto_SMC_NETLINK_DISABLE_HS_LIMITATION(r0, &(0x7f0000000380)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000280)={&(0x7f0000000300)={0x78, r3, 0x200, 0x70bd29, 0x25dfdbfc, {}, "e3c74265fc46948319c3f37d6e8a9a79dc3557b111f98dad43bb7851e85c6edd25ff2e5e66857d087593b0acdb6771e1b6419c56ce9aca14a11bef724018b01cc14037b81433734f688b95c01584da9bbacee5f4bfc69ab1f048df81beb2ac5152a4"}, 0x78}, 0x1, 0x0, 0x0, 0x80c0}, 0x24000000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x4, 0x300000000000)
ioctl$auto_BCH_IOCTL_DISK_OFFLINE(r0, 0x4010bc07, &(0x7f00000003c0)={0x6, 0x0, 0xfff})
mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f0000000180)='nfsd\x00', 0x8, 0x0)

8.625051945s ago: executing program 3 (id=1721):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/bond0/queues/tx-9/xps_rxqs\x00', 0x1a1842, 0x0)
unshare$auto(0x40000080)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = open(&(0x7f0000000040)='./file0\x00', 0x44, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, 0x0, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x1c1282, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000000280)=""/65, 0x41)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
syz_clone3(&(0x7f0000000400)={0x9840100, 0x0, 0x0, 0x0, {0x31}, 0x0, 0x0, 0x0, 0x0}, 0x58)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0)
mmap$auto(0x81, 0x10000, 0x8000, 0xeb1, r0, 0x7ffc)
ppoll$auto(0x0, 0x9, 0x0, 0x0, 0x8)
madvise$auto(0x0, 0x200007, 0x19)
syz_clone3(0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x8, 0x2, 0x9b72, 0x5, 0x0)
futex_wait$auto(0x0, 0x0, 0x7f, 0x2, 0x0, 0x1)
futex_wake$auto(0x0, 0x6, 0xfffffffa, 0x6)
sysfs$auto(0x2, 0x23, 0x0)
r2 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0)
write$auto(r2, 0x0, 0x4)
mbind$auto(0x3, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$auto_NFSD_CMD_VERSION_SET(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x24000001}, 0x4010)

6.939914006s ago: executing program 4 (id=1726):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/cgroup.max.descendants\x00', 0x22022, 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0xa61c2, 0x84)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
bind$auto(r0, &(0x7f0000000040)=@l2tp={0x2, 0x0, @loopback, 0x1}, 0x8)
sendfile$auto(0x6, 0x3, 0x0, 0xfdef)
mmap$auto(0x0, 0x88b, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0)
read$auto(r2, 0x0, 0x20)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x801, 0x0)
iopl$auto(0x2)
iopl$auto(0x1)
syz_genetlink_get_family_id$auto_tipcv2(0x0, 0xffffffffffffffff)
unshare$auto(0x40000080)
iopl$auto(0x6)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x1, 0x10000, 0x0, 0x1, 0x368e, 0x1, {0x100000000}, 0xb227, 0x2000000000400a, 0xfffffffffffffffa, 0x4, 0x0, 0x80000004, 0x81, 0xffffffffffff628e, 0x6, 0xdead, 0x804})
ioctl$auto_RTC_PARAM_GET(r1, 0x40187013, &(0x7f0000000180)={0x8000000000000001, @svalue=0x1})
r4 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
statmount$auto(0x0, &(0x7f00000005c0)={0x8, 0x1, 0x9, 0x3, 0x14, 0x944, 0x1ffe0, 0x3, 0x6, 0x7, 0x9, 0x400005, 0x4001002, 0x800000b, 0x98, 0x2, 0x5, 0xfff, 0x40, 0x8, 0x20, 0x309, 0x6, 0x0, 0x0, 0x200000, 0x0, 0x0, 0xffffffff, 0x0, 0x400, [0x0, 0x0, 0xbe3c, 0x0, 0xfffffffffffffffd, 0x40001, 0x0, 0x4, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x1000000000000, 0x0, 0x0, 0x0, 0x7ff, 0x0, 0x7f, 0x0, 0x9, 0x80000000000104, 0x0, 0x0, 0x2000000000, 0x7, 0x0, 0x0, 0x0, 0x2, 0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000], "d470671767c2e443609965e09e92046ea485031231ed1ea5afaaf060db11b4a154716ac3d277ef0986f7f743fc4746bb81985a1378faee8c7bc59517d66738653704ecb0f7cecd1e4b2f16a4bcff210a292e85dd36c598e87e4cb431caaa06b58b87f48712ad83f4a2e4eb287665c0fddfb659fc3f59cd196b6629585dcc9387b457215c1513b83472eab3d1e2255676b9d6b302140cb6dab62dd673c96d1955f1ad2e57d6c25fd1565564dbbe44e83ac6746570a875f2a3b275f45112e06dc8d5f93e1c2d0be41cd3e55be633d8576f01cefa701862e50ac4518b30bf25746d0db200d3b124b15ccc9750ddea9dcce3c5707b3de0aac546d8df97b70dd9"}, 0x1fe, 0x81)
write$auto(0xffffffffffffffff, &(0x7f0000000480)='{+@^*]--\x90\x00', 0x7)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000240)='/proc/thread-self/net/tls_stat\x00', 0x500, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
open(&(0x7f00000001c0)='./cgroup\x00', 0x800, 0x8a)
bpf$auto(0x10, &(0x7f00000000c0)=@bpf_attr_11={0x2, 0x3, 0x7, 0x5, 0x7f, 0x58ee, 0x5, r4}, 0xb9)
unshare$auto(0x0)
bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex, 0xffffffffffffffff, 0x4, 0x1, 0xffffffffffffffff, @relative_id=0x13, 0xe600}, 0xf)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
unshare$auto(0x40000080)

6.706730282s ago: executing program 3 (id=1727):
prctl$auto_PR_GET_TSC(0x19, 0x4, 0x0, 0x5, 0x4)
prctl$auto_PR_RISCV_V_SET_CONTROL(0x45, 0xfdc7, 0x0, 0x100, 0x8)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x0, 0x0)
fanotify_mark$auto(0xffffffffffffffff, 0x1, 0x9, 0x4, 0x0)
bpf$auto(0x0, 0x0, 0x6f4)
r0 = socket$nl_generic(0x11, 0x3, 0x10)
bind$auto(r0, &(0x7f0000000200)=@generic={0x11, "0000100000000000929e006300"}, 0x80)
close_range$auto(0x2, 0x8, 0x0)
epoll_create$auto(0x2)
r1 = socket(0x25, 0x1, 0x0)
openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/dynamic_events\x00', 0x80301, 0x0)
r2 = socket(0x2b, 0x1, 0x1)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000001380)='/dev/bus/usb/032/001\x00', 0x8000, 0x0)
sendmsg$auto_TCP_METRICS_CMD_GET(r2, &(0x7f0000000440)={0x0, 0x0, &(0x7f00000003c0)={0x0}, 0x1, 0x0, 0x0, 0x4}, 0x40004)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
fadvise64$auto_POSIX_FADV_NOREUSE(r1, 0x80, 0xe2, 0x5)
select$auto(0x11, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x9, 0x4, 0x15f4da0b, 0x3, 0x3, 0xc, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xd]}, 0x0)

5.590655507s ago: executing program 3 (id=1731):
set_mempolicy$auto(0x3, &(0x7f0000000000)=0x7, 0x9)
mmap$auto(0x0, 0x3, 0x800000000000003, 0x10010, 0xfffffffffffffffa, 0x400008000)
r0 = io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0)
ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r1, 0xc0285700, 0x0)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x48140, 0x0)
readv$auto(r2, &(0x7f00000000c0)={0x0, 0x5}, 0x3)
mbind$auto(0x0, 0x100000004, 0x100000003, 0x0, 0x6, 0x2)
ioctl$auto_TIOCVHANGUP2(r2, 0x5437, 0x0)
mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0x1010001, 0x100000003)
read$auto(r0, 0x0, 0x20)
mmap$auto(0xff0f200000000000, 0x400008, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0xff)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000100), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r3, 0x0, 0x64)
io_uring_setup$auto(0x6, 0x0)
madvise$auto(0x0, 0x200007, 0x19)
shmctl$auto_IPC_STAT(0x1, 0x2, 0x0)
unshare$auto(0x40000080)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x105c0, 0x0)
add_key$auto(0x0, 0x0, 0x0, 0x5, 0x3)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
clone$auto(0x2, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x0)

5.570532985s ago: executing program 4 (id=1732):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/bus/usb/drivers/usbip-host/match_busid\x00', 0x28b42, 0x0)
mmap$auto(0x6, 0x40000000000e983, 0xdf, 0xeb1, r0, 0x8000)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/security/tomoyo/manager\x00', 0x40040, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/snd/pcmC0D0p\x00', 0xa00, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ram4\x00', 0xdd01, 0x0)
open(0x0, 0x161342, 0x100)
msync$auto(0x1ffff000, 0x1800000ff010000, 0x400000004)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x1e, 0x5, 0xfffffffc, 0x0)
socket(0xa, 0x4, 0x9)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x26, 0x801, 0x100)
connect$auto(0x3, &(0x7f0000000000), 0x55)
setsockopt$auto(0x3, 0x0, 0x1, 0x0, 0x9)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x3e}}, 0x54)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x15, 0x5, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a)
setsockopt$auto(r1, 0x114, 0x1, 0x0, 0x801b)
setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd)
mmap$auto(0x100, 0x2000b, 0x4e2, 0xebc, r2, 0x4)
setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd)
open(0x0, 0xeee00, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
msgctl$auto(0x8000, 0x100006, 0x0)

4.975476386s ago: executing program 1 (id=1733):
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
ioctl$auto(0x4000000000000c8, 0x800454cf, 0x3)
r0 = socket(0x2, 0x5, 0x304)
setsockopt$auto(r0, 0x107, 0x12, 0x0, 0x4)
r1 = socket(0x11, 0x80003, 0x300)
setsockopt$auto(r1, 0x107, 0x12, 0x0, 0x4)
syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000200), r1)
r2 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/security/tomoyo/manager\x00', 0x2, 0x0)
write$auto_tomoyo_operations_securityfs_if(r2, &(0x7f0000000480)="f21a9a3c5c2d006e163bb154d7886d87a5c2574c58e9867ecec3371cadbc48770dc8f745d1c76eed1672bb713aca465c9bbc23b50000000000000004c635fcd1410f37152ad1f7fa09270ce98f867fefbe147095e2928c0a5c7b6842c879c1d95cb259d6f9d41f61ca07abf17751e78a05499207ce95baa061f1a04b2347ce07de09000000000000006e6dfd937bec82c2de33188e7e0a", 0x97)
r3 = socket(0x1f, 0x3, 0x300)
setsockopt$auto(r3, 0x107, 0x12, 0x0, 0x4)
mmap$auto(0x7fffffff, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptyv3\x00', 0x80000, 0x0)
r5 = socket(0xa, 0x2, 0x3a)
setsockopt$auto(r5, 0x29, 0x4b, 0x0, 0x1)
mmap$auto(0x100000000000, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
capset$auto(&(0x7f0000000100)={0x20080522}, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_HWSIM_CMD_FRAME(r6, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x30, 0x0, 0xa62, 0x70bd28, 0x25dfdbfe, {}, [@HWSIM_ATTR_REG_CUSTOM_REG={0x8, 0xc, 0x68d}, @HWSIM_ATTR_SIGNAL={0x8, 0x6, 0x9}, @HWSIM_ATTR_RX_RATE={0x8, 0x5, 0xc4}, @HWSIM_ATTR_MLO_SUPPORT={0x4}]}, 0x30}, 0x1, 0x0, 0x0, 0x1}, 0x20000080)
mmap$auto(0xfffffffffffffffe, 0x1, 0xdf, 0x9b76, 0xffffffffffffffff, 0x80)
bpf$auto(0x0, &(0x7f0000000380)=@task_fd_query={0x12, 0x3, 0x4, 0x88, 0x8, 0xae85, 0x66b, 0x4, 0x7ff}, 0x6f4)
r7 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
ioperm$auto(0xd44, 0x6, 0x8)
cachestat$auto(0xffffffffffffffff, 0x0, 0x0, 0x7)
ioctl$auto(r7, 0x4b32, 0x9)
ioctl$auto(r4, 0x5459, r4)

4.594739346s ago: executing program 1 (id=1735):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0xa, 0x3, 0x3b)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xd4, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1e, 0x4, 0x0)
get_robust_list$auto(0x0, 0x0, 0x0)
setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000200)={[0x8, 0xffffffffffffff49, 0x5, 0x1823, 0x800000000004, 0x1, 0x5, 0x19, 0x10, 0x5, 0x2dde, 0x8, 0xfffffffffffffffa, 0xab, 0x0, 0x1]}, &(0x7f0000000040)={0x0, 0x7})
capget$auto(0x0, 0xfffffffffffffffe)
getsockopt$auto(r0, 0x29, 0x30, 0x0, 0x0)
r1 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_FLOW_CMD_GET(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x30, r1, 0x1, 0x70bd2c, 0x25dfdbfb, {}, [@OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_KEY={0x18, 0x1, 0x0, 0x1, [@typed={0x14, 0x19, 0x0, 0x0, @ipv6=@dev={0xfe, 0x80, '\x00', 0xf}}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x40010}, 0x800)

4.368129196s ago: executing program 2 (id=1736):
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000001100)='/proc/buddyinfo\x00', 0x800, 0x0) (async)
r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000001100)='/proc/buddyinfo\x00', 0x800, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
read$auto(0x3, 0x0, 0x80) (async)
read$auto(0x3, 0x0, 0x80)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/system/cpu/cpu1/hotplug/target\x00', 0x2, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000200)='4', 0x1)
bpf$auto_BPF_MAP_DELETE_BATCH(0x1b, &(0x7f00000000c0)=@bpf_attr_7={@start_id=0xa0d3, 0x4c, 0x80000000, r0}, 0x8)
r2 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000180), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_TIPC_NL_MON_PEER_GET(r3, &(0x7f0000006140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x20, r2, 0x711, 0x70b52c, 0x25dfdbfe, {}, [@TIPC_NLA_MON={0xc, 0x9, 0x0, 0x1, [@typed={0x8, 0x2, 0x0, 0x0, @pid}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x4405}, 0x4c848)

4.322851622s ago: executing program 1 (id=1737):
set_mempolicy$auto(0x2, &(0x7f0000000080)=0x7e, 0x4) (async)
mmap$auto(0x0, 0x20009, 0xb17a, 0xeb1, 0x3fd, 0x8000)
r0 = socket(0x1d, 0x2, 0x2)
syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000040), r0)
r1 = socket(0x10, 0x2, 0x0) (async, rerun: 64)
set_mempolicy$auto(0x9b, &(0x7f0000000000)=0x6, 0x2) (async, rerun: 64)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x40000)
sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x8)
move_pages$auto(0x0, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) (async)
socket(0x28, 0x800, 0x5) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10) (async)
bpf$auto(0x0, &(0x7f0000000100)=@bpf_attr_5={@target_fd=0x5, 0x7f, 0x9c, 0x7b2, 0x1, @relative_id=0x4, 0x80}, 0x96)
bpf$auto(0x1, &(0x7f00000001c0)=@raw_tracepoint={0x5, <r2=>0xffff, 0x0, 0x7}, 0xc)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
sysfs$auto(0x2, 0x26, 0x0)
fsopen$auto(0x0, 0x1) (async)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x8ea182, 0x0) (async, rerun: 64)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) (rerun: 64)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/mm/transparent_hugepage/hugepages-512kB/enabled\x00', 0x129302, 0x0) (async)
init_module$auto(0x0, 0xfffff, 0x0) (async)
madvise$auto(0x8, 0x4004, 0x1)
madvise$auto(0x0, 0x8000000000000000, 0x15)
madvise$auto(0x0, 0x2000000080000001, 0x3) (async)
mmap$auto(0x0, 0x6, 0x3, 0x15, r2, 0x8000)

4.198028628s ago: executing program 4 (id=1738):
openat$auto_uhid_fops_uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x22480, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000200)={[0x8, 0xffffffffffffff49, 0x5, 0x1823, 0x800000000004, 0x6, 0x5, 0x19, 0x10, 0x5, 0x2dde, 0x8, 0xfffffffffffffffa, 0xab, 0x0, 0x1]}, &(0x7f0000000040)={0x0, 0x7})
mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4)
r0 = socket(0x15, 0x5, 0x0)
read$auto(r0, 0x0, 0x1ff)
uname$auto(&(0x7f0000000280)={"9581c1f21105466071d06f3cab81e66ebbcf308a3525a48d9b39b32c04d855e09d1eda8ed81572c8bd336114654f535154da572dfe5717376f36e09274289979c3", "a6808351a37bc5b0822790fd7e292b4f8f5f5538bb53aa9bcde7babf4288352940d71f33b3fe8895e5416f6e71aaf4d3a47a8b378d3b825cdc83387703b5217069", "ca57b112df69719719b15eff3b687f284855dd5b476aeb18932b7e5642ed7c8119105f12b24f7689aa281e4cd89a0407fe5f4a759bd4734df4bbe0e6215915807e", "ed89a1a884a0e1da4ff8bc0f4118a2eb810fb5410aa6744236b9060f02772c5bbabe1b1e73940948b9d521075aeaa1ffec5256e511bfbbe1f01b1e1a1c37228b7f", "6b1295509956883a6c451b6fb7ab20455aae9297f015ff7dc166bf6aa3bc67092b1959100ec3ee17aff3e37aa02a0628c1e3d4a550626546deca1f266254a069de", "f2e05c2a69989978438bb2f8f357cac494de4f15ff89d97bb4f27fe415d6bce8d796ff6fbe53a67f44058513a2d8e2b6c1fb6d48403e6ecdc22859a4efcf633abd"})
mmap$auto(0x0, 0x40000a, 0xdf, 0x1b, 0x7, 0x800008000)
r1 = socket(0x1e, 0x805, 0x0)
connect$auto(r1, &(0x7f0000000000)=@tipc=@nameseq={0x1e, 0x1, 0x1, {0x2, 0x2, 0x3}}, 0x10)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9)
ustat$auto(0x801, 0x0)
sendmsg$auto(r0, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0)
r2 = open(&(0x7f0000000080)='./file0\x00', 0x101a01, 0x20)
poll$auto(&(0x7f0000000140)={<r3=>r1, 0x1000, 0x3}, 0x7, 0x10001)
sendfile$auto(r3, r2, &(0x7f00000001c0)=0x1, 0x6)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x3, 0xff)
ioctl$auto_SNDRV_PCM_IOCTL_DELAY(r2, 0x80084121, &(0x7f00000000c0)=0x6)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
unshare$auto(0x20000080)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
connect$auto(0x3, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2710}, 0x10)
iopl$auto(0x3)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
io_uring_setup$auto(0x4c2, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
munmap$auto(0x20001000, 0x7fb3)
ptrace$auto(0x10, 0x10000000000001, 0xffffffffffffff56, 0x868f)

4.044134228s ago: executing program 2 (id=1739):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x6, 0xa, 0x1000009, 0x2, 0x0, 0x3}, 0x6f3) (async)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) (async)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async, rerun: 32)
write$auto(0x3, 0x0, 0x7fffffff) (async, rerun: 32)
write$auto(0x1, 0x0, 0x80000000)
openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0) (async)
preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5) (async)
r0 = socket(0x2b, 0x1, 0x1)
openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) (async)
sendmsg$auto_NFC_CMD_DEP_LINK_DOWN(r0, 0x0, 0x20000001) (async)
madvise$auto(0x0, 0xffffffffffff0004, 0x19) (async)
kill$auto(0x0, 0x21) (async)
madvise$auto(0x0, 0x200007, 0x8)
madvise$auto(0x0, 0x2003f0, 0x15) (async)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) (async)
sendmsg$auto_NL80211_CMD_GET_MPP(r0, 0x0, 0x880)
munmap$auto(0x8000, 0xffffffff)
syz_genetlink_get_family_id$auto_nfc(&(0x7f00000000c0), r0)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0x400000eb1, 0xfffffffffffffffa, 0x8000) (async, rerun: 32)
sysfs$auto(0x2, 0x10000000000048, 0x0) (async, rerun: 32)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async, rerun: 32)
r1 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0) (rerun: 32)
io_uring_enter$auto(r1, 0x8001, 0x80, 0xf, &(0x7f0000000040)="6f6fdfc624482b6feebecf0c6f9b95dfda4c61249e97790decc0a3b8885108e61e06e4de584eb953737116e751be9b06447d68ceb2fbe4cab38f1f351737e8a1acfa09e4ad456d9b26a7f85a39540a7cb4f7adedabc87237db4dc316f7f529c11804c2db4dbf598c1ea68248f57e56", 0x5)
read$auto(r1, 0x0, 0xb4d3)

3.813376976s ago: executing program 3 (id=1740):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x60740, 0x0)
mq_notify$auto(0xffffffffffffffff, 0x0)
mmap$auto(0x0, 0x101, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
io_uring_setup$auto(0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x100)
r0 = socket(0x2b, 0x1, 0x0)
r1 = socket(0x2, 0x1, 0x0)
getsockopt$auto_SO_PEEK_OFF(r0, 0x8001, 0x2a, &(0x7f0000000000)='\xd5I\xbb[.)$#!&\x00', &(0x7f0000000080)=0x3)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a)
listen$auto(r0, 0x7)
accept$auto(r0, 0x0, 0x0)
sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1, 0xb}, 0x800009}, 0x5, 0x20000000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x800)
mkdir$auto(0x0, 0x8001)
mount$auto(0x0, 0x0, 0x0, 0x3, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x20002, 0x0)
read$auto(0x3, 0x0, 0x8080)

3.665967301s ago: executing program 1 (id=1741):
pwrite64$auto(0xc8, 0x0, 0xfdef, 0x3)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x14f602, 0x0)
open(&(0x7f0000000280)='./cgroup\x00', 0x5d52c0, 0x0)
r0 = socket(0xa, 0x2, 0x3a)
r1 = open_by_handle_at$auto(r0, 0x0, 0xffffffff)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000001100)='/proc/bus/pci/00/03.0\x00', 0xa0581, 0x0)
write$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f0000001140)="8cbdca", 0x3)
writev$auto(r2, &(0x7f0000001d40)={0x0, 0x2}, 0x6)
prctl$auto_PR_PAC_RESET_KEYS(0x36, 0x0, 0xffffffffffffffff, 0x9, 0x7)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket(0xa, 0x801, 0x84)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x300, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r3, 0x0, 0x0)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x3, 0x6, 0x0, 0x10000, 0x1, 0x2, {0x2100000000, 0x10000}, 0x3, 0x6, 0xffffffffffffffdd, 0x1008000, 0x0, 0x80000004, 0x83, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x1800})
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r4, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f0000000ac0), 0xffffffffffffffff)
sendmsg$auto_TCP_METRICS_CMD_GET(r5, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000bc0)={&(0x7f0000000b00)={0x14, r6, 0x89c1beb01534ff9b, 0x70bd29, 0x25dfdbfb}, 0x14}}, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0x10011, 0xfffffffffffffffa, 0x8000)
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/maps\x00', 0x21000, 0x0)
ioctl$auto_IMADDTIMER(r1, 0x80044940, 0x0)
select$auto(0x1, &(0x7f0000000040)={[0xffffffff00000001, 0xfffffffffffffff7, 0x100, 0x7fff, 0x75, 0x3, 0x9, 0x6, 0xa80d, 0x8000000010000, 0x0, 0x7c43, 0x9, 0x0, 0x4, 0xd133]}, 0x0, &(0x7f00000001c0)={[0x800000000, 0x2, 0x12, 0x2, 0x4e4bcd3b, 0x8, 0x5, 0x4, 0x5, 0x12, 0xfffffffffffffffe, 0x1, 0xffffffff00000001, 0xe28, 0x48, 0x8]}, &(0x7f00000000c0)={0x100})
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
write$auto(0x3, 0x0, 0xfffffdef)
write$auto(0x3, 0x0, 0xfffffdef)

3.230600451s ago: executing program 3 (id=1742):
close_range$auto(0x2, 0x8, 0x0) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) (async)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/security/tomoyo/manager\x00', 0x2, 0x0) (async)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/irq/12/hwirq\x00', 0x2000, 0x0)
read$auto(r0, 0x0, 0x20)
socket(0x2b, 0x1, 0x0) (async)
socket(0x1d, 0x2, 0x6) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/nr14/ifindex\x00', 0x8000, 0x0) (async)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f00000005c0)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) (async)
fsconfig$auto_EROFS_MOUNT_DAX_ALWAYS(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x40)
close_range$auto(0x2, 0x8, 0x0)
close_range$auto(0x2, 0x8, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
socket(0xa, 0x801, 0x84) (async)
io_uring_setup$auto(0x1, 0x0) (async)
setsockopt$auto(0x3, 0x10000000084, 0x83, 0x0, 0x8) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
r2 = socket(0x11, 0x800000003, 0x0)
getsockopt$auto(r2, 0x107, 0xa, 0x0, 0x0) (async)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) (async)
ioctl$auto(0x3, 0xae47, 0x10000000000402)

2.332396815s ago: executing program 1 (id=1743):
mmap$auto(0x3, 0x2000a, 0xdf, 0xcf71, 0x401, 0x8000)
syz_clone(0x40100100, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x61, 0x100001000000004, 0xfa31, 0x400, 0x8000)
setreuid$auto(0x3, 0x7)
mremap$auto(0x0, 0xffffffffffffffff, 0x3fd6, 0x3, 0x7fffffffb000)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/bus/pci/resource_alignment\x00', 0x8ea182, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/mm/transparent_hugepage/hugepages-512kB/enabled\x00', 0x129302, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
init_module$auto(0x0, 0xfffff, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe\x00', 0x4400, 0x0)
madvise$auto(0x0, 0x8000000000000000, 0x15)
madvise$auto(0x0, 0x2000000080000001, 0x3)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
capget$auto(0x0, 0xfffffffffffffffe)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x80, 0x0)
move_mount$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x91e4)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000)
capget$auto(0x0, 0xfffffffffffffffe)
madvise$auto(0x0, 0x2003ed, 0x19)
mprotect$auto(0x0, 0x806121, 0x8)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
ioctl$auto_VHOST_VSOCK_SET_GUEST_CID(r0, 0x4008af60, &(0x7f0000000000)=0x1)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)

2.210347364s ago: executing program 4 (id=1744):
syz_genetlink_get_family_id$auto_gtp(0x0, 0xffffffffffffffff)
socket(0xa, 0x2, 0x73)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
setsockopt$auto(0x4, 0x29, 0x2a, 0x0, 0x200577)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto_TCFLSH2(0xffffffffffffffff, 0x540b, 0xfffffffffffffffd)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x28, 0x801, 0x0)
connect$auto(0x3, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2711}, 0x51)
shutdown$auto(0x200000003, 0x0)
socket(0xf, 0x3, 0x2)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0)
ioctl$auto_posix_clock_file_operations_posix_clock(r1, 0xc0603d02, 0x0)
select$auto(0x6, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x3, 0xfff, 0x1, 0x948b, 0x3, 0x95f4da2a, 0xffffffffffffffff, 0x3, 0x62, 0x7, 0x7, 0x6d3f, 0x9, 0x4, 0x5]}, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0x8, 0x0, 0x0, &(0x7f0000000100)={[0x1ff, 0x6, 0x1, 0x10, 0x9489, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000021, 0x7, 0x6d3e, 0x7fff, 0x2, 0x6]}, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0xa, 0x2, 0x73)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0xfffff4a4, 0x0, 0xfffffffffffffffd)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000240), 0xd2082, 0x0)
mmap$auto(0x8, 0x400008, 0xdf, 0x9b72, 0x2, 0x200)
socket(0x1d, 0x2, 0x3)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
mprotect$auto(0x110c238000, 0x1, 0x3)

1.771281328s ago: executing program 3 (id=1745):
r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vbi9\x00', 0x80382, 0x0)
readv$auto(r0, &(0x7f0000000080)={&(0x7f0000000000), 0x197188}, 0x8)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x167)
listen$auto(r0, 0x8)
kexec_load$auto(0x5, 0x2, &(0x7f0000000040)={@kbuf=0x0, 0x2aa7, 0x6c0000c000, 0xc000}, 0x4)
ioperm$auto(0x7, 0x6, 0x2)
settimeofday$auto(&(0x7f0000000080)={0x1, 0xffffffffffffffa0}, 0x0)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mremap$auto(0x1fc000, 0xfee0, 0x3fd6, 0x3, 0xfffff000)
bpf$auto_BPF_PROG_BIND_MAP(0x23, &(0x7f0000002300)=@bpf_attr_3={0xc5, 0xfffffffe, 0x9, 0x0, 0x0, 0x1, 0xe, 0x101, 0x7fff, "f2239d4121c486e257b5e08e7c9b283e", 0x0, 0xfff, 0xffffffffffffffff, 0x2, 0x1, 0x3, 0x6adb, 0xfb, 0x0, 0xffff, @attach_prog_fd, 0x4, 0x10, 0x5, 0x7, 0x10}, 0x9)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r3=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="c0090000", @ANYRES16=r1, @ANYBLOB="13002cbd700023723ab36bf877ac08000300", @ANYRES32=r3], 0x9c0}, 0x1, 0x0, 0x0, 0x2400c884}, 0x20040894)
mount$auto(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0)

1.539771285s ago: executing program 2 (id=1746):
shmat$auto(0x0, &(0x7f0000000580)='(\x00', 0xfffffffa) (async)
openat$auto_drm_edid_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/dri/vkms/Virtual-1/edid_override\x00', 0xc200, 0x0) (async)
r0 = waitid$auto_P_PGID(0x2, 0xffffffffffffffff, &(0x7f00000001c0)={@_si_pad}, 0x4, 0x0)
r1 = socket(0x10, 0x2, 0x9)
sendmsg$auto_NLBL_UNLABEL_C_STATICADD(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, 0x0, 0x4, 0x70bd28, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x80c0}, 0x4000000) (async)
r2 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000080), 0xffffffffffffffff)
r3 = openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/config/nvmet/discovery_nqn\x00', 0x400043, 0x0) (async)
r4 = geteuid()
setreuid$auto(r4, 0x0) (async, rerun: 64)
sendmsg$auto_OVS_VPORT_CMD_SET(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000100)={&(0x7f00000005c0)={0x1700, r2, 0x2, 0x70bd29, 0x25dfdbfe, {}, [@OVS_VPORT_ATTR_NAME={0xc, 0x3, '\xac\xbc\x9dt#,\'\x00'}, @OVS_VPORT_ATTR_OPTIONS={0x1d1, 0x4, 0x0, 0x1, [@nested={0xc, 0xf8, 0x0, 0x1, [@nested={0x4, 0x25}, @nested={0x4, 0xc5}]}, @generic="2e7b4bd3785f1776d33ec6da9f3ca3378b9c97a78a9fe9c383cd7aae9a02747245f5e46674c09df465599f0ad61c8f547bfcc95335f60999e2cbf62022129729741293000899901adcdce20f4543929cf4a740ae5ab952805465659201fd12df3f0232ac7c9a0843379f41f552233b74e4c721bb59b8715330019615b7ab15bfe81a64667b8aba06f03df06f0f0c7ab01e75d14988f32098531941a86dd6ccf279fbbf808b69f8763be37064b2ac7add360b6484842fb262d4dc301761cd9fd96892b33630386144e65b78054818fc202978178b21ec46caf59ca2710f8597cc417cb7286aafdd1c9d2a5881ced6283cba28cbbd0657", @typed={0x8, 0x77, 0x0, 0x0, @pid=r0}, @nested={0xd, 0x24, 0x0, 0x1, [@generic="21b69710bb3a880e4d"]}, @nested={0xc, 0x131, 0x0, 0x1, [@nested={0x4, 0x151}, @nested={0x4, 0x3}]}, @nested={0x20, 0xab, 0x0, 0x1, [@typed={0x8, 0x114, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}, @typed={0x8, 0x13a, 0x0, 0x0, @fd=r3}, @typed={0x8, 0xa3, 0x0, 0x0, @ipv4=@loopback}, @nested={0x4, 0x149}]}, @generic="accd1aa65904b1920c25fed61690b2c5f73320427120d07b77eb053ae09df3c906f62fb58a901099b8db06db5a37925bbba55f8c3dbfafa767845d5cc716c7883823e9c987ba25ff7eae43170d5251d131b4598354bd75c33fa5ae384e758b7d2140a0c84a466e6d2c2a6b35b3c840d0a207988b561257c4793aff", @nested={0xc, 0x100, 0x0, 0x1, [@typed={0x8, 0x21, 0x0, 0x0, @u32=0x9}]}]}, @OVS_VPORT_ATTR_UPCALL_STATS={0x1405, 0xa, 0x0, 0x1, [@typed={0x8, 0x7e, 0x0, 0x0, @u32=0x5}, @typed={0x8, 0x11d, 0x0, 0x0, @u32=0x5}, @nested={0x9f, 0x143, 0x0, 0x1, [@typed={0x8, 0x13, 0x0, 0x0, @u32=0x20000000}, @generic="45b575e057efc83fae5783f7159b2808a6074ad777a836797d1b3dfaa7344e5244b05e87a2b2ee83bc522eb68ae315c1904f18b5636e27cac82a07866d27ae6917240d2210b55592e57274cd2885a9c01270c90e41aec564148560afa008bb92a6ae70861b9b4252f7c1362f1a922efd9f177790d80ce68c99d1c1160a61dad366a8eb851009874e1152bd1d51f98fa0e628f2"]}, @nested={0x11f8, 0xd4, 0x0, 0x1, [@generic="848ef80a0f1b5bf306d23ff9d03c6dd0c9c252fcce9919e5302cba39271bfd37d936d24dd030d7a9efbb8c54554ff6459a782fd243d2069cf7959c34d4e4ef75137644c937e0f51168205d29057cc94cf5ee6a16e2b3200d67c02e1928e6edb031ab546738dd0f20e2684ebd3aa40cd910f496f6d33ae393a2e8cceb25229a8cb588c85dc5a265591974fc7ed3092cd4ea3b64e12412a0b06816aa0819f147", @nested={0x4, 0x10f}, @generic="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", @typed={0x8, 0x4f, 0x0, 0x0, @uid=r4}, @nested={0x4, 0x9}, @generic="722b9070830e948937b85527ef5ef9566f3b9d436a3068e4da31823b4693cf6a8daf0544eff0d045e09799dee1187c1a9c82077a03db3d9c0337b13e3de3716ad18ac11c592acf6eb2bdd5bc4c2488a4a819577e194ec6daff4f03b51f0c88356196a81c70f160b1fb6ed640b6d622f7e8140d2b23278fd36cac7cb763c1d6c83f6abbacf52203128f649842a3dd63f76fe567bd1c9c68b5c2313e35072d69af0a35d3d9e65f8d62eae831bb2049f3bec99bb5c11b30454f92cc2b2a", @typed={0x14, 0xbb, 0x0, 0x0, @ipv6=@mcast1}, @generic="f054ebd9f93b6ef7cbbf2fddca766dffeed6e0e9922fd7caeb6b0a92e8c514a46a1331d6506a322bae153e14db74bf409c33fd1b4a6843436b33013b6056fc45cbda02145d86a8b273fdfa8d1e00aa553936c90e6b09952dc73e97348a35a4aa9199dbca942084344c4a3a08ccdbe59ee41f875850"]}, @nested={0x10c, 0x2, 0x0, 0x1, [@typed={0xfb, 0x142, 0x0, 0x0, @binary="cd2254ba40ccdec8941f70721ef4486f0e4075d33ac884e7c12893b48888be94ad7c8008620a64097f0c6a7ebf613df733e58e3772db05503b1c7057f0a70cfa51ad71060636519d081d66e185ebd3e9388e3912400052a3cd843703018abe0be70c3982f123bb675e017b305a17796bb8016a1e9d959fa32bcaa8b996b2c1f517f8add72fdf5a5d76d2bf21348277cb1f488c4803b446ad62c60cb6508a3496e9ab656e7cf17eab1532b943da5a0b56a59f9e699d641aba62d7b9bc74776eb4b560ab7be54e0da11b4308e930d81c70fc9c5a66c34119f1f78ba0a99bf92b831a35f34616b75442ead9785ab9c35ce1c2451bae853e66"}, @typed={0x8, 0x14a, 0x0, 0x0, @u32=0x2}, @nested={0x4, 0x141}]}, @generic="507784b6a210e060eacdc8d6b2f8d8951f219d76c5f99ba5e511df0c5a4a0782f7127c341756f909fd9d21a966ecdf0aad7dc847753616af1f8ecfb657e440e0d4ef880845176f74d7a86f13bf"]}, @OVS_VPORT_ATTR_UPCALL_PID={0x103, 0x5, "c2bd2f316b0531e68a86914f9d079331cf7ad8335d07504c994dcdba48fa4a0398f45ba5471447177a123a74e466c1add24db23b5339872093c2546ea038bbefb7339f243817a63fc7457708d6a78535af78ad7af2cf45a4c661f97fc12e9f84fa2ed69cd0d12707dd893ad4a960b6e7e76a9b493ca32bab21ce568c15a68b13492fd95e59478da4ad1c042670f7d738568186b7e18359b0fcd444685fac02f23e972a59fbac2c9ef8fe5435d754bbb50f918255e1f38ad52bc8f14f93e58401b95b4da17a3bb461e95be64523cf28ee795c64ddba2d3d625a455771bf898d1fd8994d42a90ad0314ff9896120f2a54bea9b3076e28ee822ee26ca03352844"}]}, 0x1700}, 0x1, 0x0, 0x0, 0x4040004}, 0x20000080) (rerun: 64)

1.235788397s ago: executing program 2 (id=1747):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000000), 0xffffffffffffffff)
io_uring_setup$auto(0x2, 0x0) (async)
r2 = io_uring_setup$auto(0x2, 0x0)
socket(0x2, 0x801, 0x106)
socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000)
io_uring_setup$auto(0x6, 0x0) (async)
io_uring_setup$auto(0x6, 0x0)
socket(0x15, 0x5, 0x0) (async)
socket(0x15, 0x5, 0x0)
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x6, 0xa, 0x1000009, 0x5f, 0x0, 0x3}, 0x6f3) (async)
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x6, 0xa, 0x1000009, 0x5f, 0x0, 0x3}, 0x6f3)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x1, 0x0)
socket(0x10, 0x2, 0x0)
memfd_create$auto(0x0, 0x4) (async)
memfd_create$auto(0x0, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x3, 0x100)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x0, @rand_addr=0xfffffffe}, 0x55) (async)
connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x0, @rand_addr=0xfffffffe}, 0x55)
r3 = ioctl$auto_NS_GET_TGID_IN_PIDNS(r2, 0x8004b709, &(0x7f0000000080)=0x8000)
syz_open_procfs$namespace(r3, &(0x7f00000005c0)='ns/mnt\x00')
sendmsg$auto_MACSEC_CMD_UPD_RXSA(r0, &(0x7f0000006200)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000003c0)={0x508, r1, 0x23, 0x70bd27, 0x25dfdbff, {}, [@MACSEC_ATTR_SA_CONFIG={0x18, 0x3, 0x0, 0x1, [@nested={0x5, 0x1, 0x0, 0x1, [@generic="03"]}, @typed={0xc, 0x5, 0x0, 0x0, @u64=0xfffffffffffffffe}]}, @MACSEC_ATTR_RXSC_CONFIG={0x4}, @MACSEC_ATTR_RXSC_CONFIG={0x4d7, 0x2, 0x0, 0x1, [@nested={0x18, 0x137, 0x0, 0x1, [@typed={0xc, 0x60, 0x0, 0x0, @u64=0x94}, @typed={0x8, 0xa6, 0x0, 0x0, @ipv4=@multicast2}]}, @nested={0xfb, 0xcc, 0x0, 0x1, [@generic="191fc9a490b809934d8f7f56cd9712d1f5c3bde7869bb877aa1d20530d52710a8acb38848b1b11fb8cc2f179569f870610e426fba64341751175aabf95c5ea8cae82b377a11f6dae314ceecc5b5a749209a75d250a7bec12d082a6c528421e3ec4b8b5a8c1117059ac900050988362eb3522412240e0925ce1dea97b9f173e90a664766ff62f2c45d293579f7e77d3cb98a70db3878fda4e0bcc7163530413b8f589970a35462c4dc2ce5e2e772f083dc3c1daeb1c5b36dd26f14d919b594c9d8c331070af1d10f373a51bceba08e2c3f600800b68e40a1b500ee12712a4af19677d104e96e0b18658abb09e92ed89cb089d88613eb5f0"]}, @nested={0x29e, 0x84, 0x0, 0x1, [@typed={0x4, 0x151}, @generic="31745d19851f9adbe8a367c59313a306a841bab7d8b2051d97f93786b60fff6c02c3b68a3fd618144c6bac869a753e6646735458f702743d1616b5842652a12b8423926fcb85871e7662097df4f8b12000349f16db9bef31825de6d80421326bb43d953f073641a1c0de1f3198d1f339c1", @generic="ae9164021f93065e303e7d2597a68d5f367100c0c32986e131d8e5b80c440852a8f499dabf6c5579d4091a11106b5bac8f681f059653e5c4282b5e70e02626cf58ec7c3d9f4f2645d071eb0e355467ece8712e5c22001f9904ff44a787ccf9796c61593dd246c6e8d498e1fddce2571d85dbf714e0af2086107f1aae51074e1d509a1af1c12dd13de1df5efb63fc9bbca423f204e05cc2c41b9e501db0285279b72c669d730521a0cfe2cebb51ac269d8ee2537a5a40e54bc1365f617de824d87e1b255a4d84", @typed={0x8, 0x7f, 0x0, 0x0, @pid=r3}, @generic="077aeae63860989bf983a3e90891944ef082fe6087b9336cd30c6887e319c361e86edf8be8f6ccd2004ed948d9019a837b8127b63a0125c0d52e113347443c", @generic="095ed59057c31597accddc9e25e75f9eb1b356f54667695e5f14a9fdb0da1af0bf7b412f83623b4637c4bf4ff5c423a8da309bc1f08a616c22886eae3956d06946d6e4e6d7885d53135f85f118e12a38b152a4ac45196d5edf308c4dd7e555b7e7c012c4e0aaaacfc9cb8d0cfba8ab236ce58ef2786cb2d011e12e351bb6fedd18", @typed={0x8, 0x119, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x20}}, @generic="f7e200f81eb62e0b5ce609327e60b0a33ac1f1d1d43e5afd45d6c684e798bea0a3ff77a800e0638c957ea0ba6aff351548d9339555bca6319b78ac7e96c77ae83135d4627f3cf47f7467e91788eeaecc96566d51878aecfff3b0490db15efa1d56e15129d5e406db1892ef4f6e332087c9bc23cc437dcc48fdd5e941440c081f2b635db8e38ec7eec0389fbc168b7b"]}, @typed={0x8, 0x5, 0x0, 0x0, @pid}, @nested={0xb5, 0x44, 0x0, 0x1, [@generic="cd5801229cf47a7ea4aecaa32669dca9a241d977fe3ce45545614781dc8bb80494578a78ddc2e84c916ddb7907f0e147695dd44606ca15303423067b01b147a2e1a4a1c8fe2bcb76b2fe4ff05d681daf5f58c22368f153230a3c98434c1432c377e43c846feb8ab14b897c091882219a1a456875cd42373017fd8479f876d3d02cc1e72f2c7563f54b8b52d26e15ca5b6cf08981bf0eeb3056bdc8b9f6931f38c1bdf13d6c2bd671fbb6a7710e", @nested={0x4, 0xb8}]}, @typed={0x8, 0x98, 0x0, 0x0, @pid=0xffffffffffffffff}, @nested={0x10, 0x3e, 0x0, 0x1, [@typed={0xc, 0xf1, 0x0, 0x0, @u64=0x99}]}, @typed={0x14, 0x97, 0x0, 0x0, @ipv6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @generic="82acd9929c790810fb2bce30010b40c41ba4df225c541a156ea3871356e439b6773d2fd401fcfa346db7d88545dadb093ca4ff"]}]}, 0x508}, 0x1, 0x0, 0x0, 0x4008000}, 0x0)

1.04437644s ago: executing program 2 (id=1748):
r0 = socket(0x2, 0x801, 0x100)
r1 = ioctl$auto_TUNSETTXFILTER(0xffffffffffffffff, 0x400454d1, &(0x7f0000000000)=0x5)
r2 = open(&(0x7f0000000080)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0xb5d1af1605322d93)
open_by_handle_at$auto(r2, &(0x7f0000000040)={0x8, 0x2, "0200000000000000"}, 0xfe)
read$auto_urandom_fops_random(r1, &(0x7f0000000040)=""/50, 0x32)
gettid()
socket$nl_generic(0x10, 0x3, 0x10)
getresgid$auto(&(0x7f0000000080)=0xdb71, &(0x7f00000000c0)=0x8e92, &(0x7f0000000100)=0x4)
socket(0xa, 0x800, 0x100)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fcntl$auto(r3, 0xb, 0xa79e)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
setsockopt$auto(r0, 0x6, 0xa, 0x0, 0x9)

824.695969ms ago: executing program 1 (id=1749):
alarm$auto(0x2)
ioperm$auto(0x7, 0x5ad2, 0x8)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40, 0x0)
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, 0x0, 0x121900, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0xf, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x60240, 0x0)
read$auto(r2, &(0x7f0000000240)='/\x00', 0x100000001)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0xffffffffffffffff, 0x5, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0xffffffffffffffff]}, 0x0)
write$auto(0x3, 0x0, 0xfffffffffffffff7)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x8800)
openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, 0x0, 0x48b41, 0x0)
openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84)
mincore$auto(0x1000, 0x8001, 0x0)
r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
read$auto(r3, &(0x7f0000000040)='\x00', 0x461d)
read$auto(0x3, 0x0, 0x80)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/conf/bond_slave_0/src_valid_mark\x00', 0x480801, 0x0)
r4 = fcntl$auto(r1, 0x41c7, 0xffffffffffffffff)
bind$auto(r4, &(0x7f0000000180)=@generic={0x2a, "bf0a19931604f5df9a298b7fe508"}, 0x2)
close_range$auto(0x2, 0x8, 0x0)
ptrace$auto(0x4206, 0x1, 0x0, 0x200005)
alarm$auto(0x80000000)

675.70735ms ago: executing program 2 (id=1750):
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0) (async)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
mmap$auto(0x0, 0x400008, 0x200, 0x9b72, 0x2, 0x8000) (async)
mmap$auto(0x0, 0x400008, 0x200, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x2000040080000004, 0xe) (async)
madvise$auto(0x0, 0x2000040080000004, 0xe)
openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000001640)='/proc/self/mem\x00', 0x401, 0x0)
r1 = openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000600)='/proc/thread-self/clear_refs\x00', 0x2, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket(0x10, 0x2, 0x93) (async)
r2 = socket(0x10, 0x2, 0x93)
sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB=']'], 0x1ac}}, 0x40000) (async)
sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB=']'], 0x1ac}}, 0x40000)
recvmmsg$auto(r2, &(0x7f0000000140)={{0x0, 0x1, &(0x7f0000000080)={0x0, 0x400}, 0x5, 0x0, 0x200002, 0x8}, 0x803}, 0xfffffff9, 0x10, 0x0)
write$auto_proc_clear_refs_operations_internal(r1, 0x0, 0xffffff4b)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mmap$auto(0xfffffffffffffffd, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) (async)
mmap$auto(0xfffffffffffffffd, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
mq_notify$auto(0x4, &(0x7f0000000040)={@sival_ptr=0x0, @inferred, 0x1, @_tid})
sendmsg$auto_NL802154_CMD_DEL_INTERFACE(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1}, 0xc, 0x0}, 0x80)
socketpair$auto(0xfffffffd, 0xfffffffd, 0x8000000000000000, 0x0)
sendmmsg$auto(0xffffffffffffffff, &(0x7f00000000c0)={{0x0, 0x6, 0x0, 0xa7, &(0x7f0000000040)='~', 0x8000, 0x1}, 0x8}, 0x1, 0x9)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0xff, 0x0, 0x1, 0x3}, 0xed7138c}, 0xb, 0x0)
epoll_create$auto(0x8) (async)
r3 = epoll_create$auto(0x8)
epoll_ctl$auto(r3, 0x1, 0x8000000000000000, 0x0)
write$auto_ftrace_system_enable_fops_trace_events(r3, &(0x7f0000001680)="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", 0x1000)
syz_clone(0x612b4380, 0x0, 0x0, 0x0, 0x0, 0x0)
clone$auto(0x9001, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x6)
syz_clone3(&(0x7f0000000080)={0x123060000, 0x0, 0x0, 0x0, {0x14}, 0x0, 0x0, 0x0, 0x0}, 0x58)
write$auto(0x3, 0x0, 0x5c8) (async)
write$auto(0x3, 0x0, 0x5c8)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) (async)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
io_uring_register$auto_IORING_REGISTER_ZCRX_IFQ(r2, 0x20, &(0x7f0000000380)="cc7956d6a0227e1b6d223eec63914361b9a9f8a80bbd866d88855ba31685511b99c95ddded6f55b076e3a5184b4645394977b79bd28e525119451a91ec300232857f1f7119df115e53814dada1b94d0aa3179b3db90e3f38a48d71ba8b78d50e640de9048314758d73dfb8ab6479b7a5f3dca9bb3758ff77742a1569d6042f9f996e95073dcc775978eff044461848d604f8759a08e817a4bd4657b6cf3453c99185f6c0c00ddce08c289f6aca98c6cd51a414bfe4d6a1f992385673e7b27ef3eb73cbd6510a96af71574b1927cb3ab1", 0xdb9)

406.087417ms ago: executing program 4 (id=1751):
openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f00000001c0), 0x80100, 0x0) (async)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x100, 0x0)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, 0x0, 0x20082, 0x0) (async)
mmap$auto(0x0, 0x7f, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) (async)
r0 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
r1 = open(0x0, 0x22240, 0x155) (async)
socket(0xa, 0x3, 0x3b) (async)
rt_sigsuspend$auto(0x0, 0x8)
pread64$auto(0xffffffffffffffff, &(0x7f0000000040)='])[,(\x00', 0x22, 0x6) (async)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) (async)
mq_notify$auto(r0, 0x0) (async)
mmap$auto(0x0, 0x2020009, 0x81, 0xeb1, r1, 0x8000) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc0002, 0x0) (async)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/video8\x00', 0x802, 0x0) (async)
r2 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0)
r3 = ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r2, 0xc0285700, 0x0) (async)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, r2, 0x9) (async)
write$auto(0x3, 0x0, 0xfdef)
r4 = socket(0x10, 0x2, 0x0) (async)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x2, 0x9, 0x3, 0xb, 0x5, 0x1ffde, 0x3, 0x7, 0x2, 0x9, 0x5, 0x3, 0x4, 0xb0, 0x7, 0x2, 0x3, 0x5, 0xfffffffffffffffe, 0x2, 0x0, 0x2}, 0x1fe, 0x81) (async)
userfaultfd$auto(0x4) (async)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES8=r3], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) (async)
sendmmsg$auto(r4, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x8)

0s ago: executing program 4 (id=1752):
r0 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/fb1\x00', 0x82c00, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x1, 0x84)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer\x00', 0x2, 0x0)
r1 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0)
write$auto(r1, &(0x7f0000000040)='nbd\x00', 0x4)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/rpc/auth.rpcsec.context/channel\x00', 0x101002, 0x0)
fanotify_init$auto(0x5, 0x2)
ioctl$auto(0x3, 0x541b, 0xfffffffffffff4e0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket(0x2, 0x5, 0x0)
setsockopt$auto(0x3, 0x10000000084, 0x2, 0x0, 0x8)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
mmap$auto(0x0, 0x3, 0xde, 0x10, r0, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_TSINFO_GET(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)={0x2c, r4, 0x1, 0x70bd25, 0x25dfdbfd, {}, [@ETHTOOL_A_TSINFO_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20040840}, 0x40000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/vulnerabilities/mmio_stale_data\x00', 0x0, 0x0)
io_uring_register$auto(0xffffffffffffffff, 0x9, 0x0, 0x6)
write$auto(r2, &(0x7f0000000100)='/d-:\xe7J\x00'/23, 0x1eb0800)
mmap$auto(0x0, 0x0, 0x400000dc, 0x937e, 0x2, 0x8000)
prctl$auto_PR_PPC_SET_DEXCR(0x49, 0x8, 0x0, 0x3, 0x4)
unshare$auto(0x40000080)
socket(0xa, 0x3, 0x3a)
mmap$auto(0x0, 0xdb81, 0x2, 0x40eb1, 0xffffffffffffffff, 0x300000000000)
readv$auto(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x8}, 0x4)
openat$auto_event_inject_fops_trace(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/tracing/events/vmalloc/alloc_vmap_area/inject\x00', 0x2, 0x0)
setsockopt$auto(0x400000000000003, 0x29, 0xd0, 0x0, 0x4)

kernel console output (not intermixed with test programs):

isolated_anon:0
[  359.350733][T10409]  active_file:10015 inactive_file:47296 isolated_file:0
[  359.350733][T10409]  unevictable:768 dirty:890 writeback:0
[  359.350733][T10409]  slab_reclaimable:10591 slab_unreclaimable:95971
[  359.350733][T10409]  mapped:38868 shmem:44214 pagetables:1148
[  359.350733][T10409]  sec_pagetables:0 bounce:0
[  359.350733][T10409]  kernel_misc_reclaimable:0
[  359.350733][T10409]  free:1286430 free_pcp:2634 free_cma:0
[  359.442262][T10409] Node 0 active_anon:226284kB inactive_anon:0kB active_file:40060kB inactive_file:189176kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:148972kB dirty:3556kB writeback:0kB shmem:175320kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12252kB pagetables:4492kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  359.520729][T10409] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:8kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  359.551965][    C0] vkms_vblank_simulate: vblank timer overrun
[  359.563118][T10409] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  359.590258][    C0] vkms_vblank_simulate: vblank timer overrun
[  359.626345][T10409] lowmem_reserve[]: 0 2484 2486 2486 2486
[  359.632734][T10409] Node 0 DMA32 free:1216928kB boost:0kB min:34108kB low:42632kB high:51156kB reserved_highatomic:0KB active_anon:224540kB inactive_anon:0kB active_file:39948kB inactive_file:187356kB unevictable:1536kB writepending:3560kB present:3129332kB managed:2544188kB mlocked:0kB bounce:0kB free_pcp:9040kB local_pcp:4148kB free_cma:0kB
[  359.711739][T10409] lowmem_reserve[]: 0 0 1 1 1
[  359.716817][T10409] Node 0 Normal free:28kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1820kB unevictable:0kB writepending:0kB present:1048580kB managed:1900kB mlocked:0kB bounce:0kB free_pcp:4kB local_pcp:4kB free_cma:0kB
[  359.844758][T10409] lowmem_reserve[]: 0 0 0 0 0
[  359.849660][T10409] Node 1 Normal free:3912252kB boost:0kB min:55768kB low:69708kB high:83648kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:8kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:3396kB local_pcp:0kB free_cma:0kB
[  359.941983][T10409] lowmem_reserve[]: 0 0 0 0 0
[  359.951869][T10409] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  359.990395][T10409] Node 0 DMA32: 1501*4kB (UM) 245*8kB (UME) 726*16kB (UME) 663*32kB (UME) 337*64kB (UME) 180*128kB (UME) 119*256kB (UM) 38*512kB (UM) 18*1024kB (UME) 37*2048kB (ME) 244*4096kB (UM) = 1228956kB
[  360.022711][T10435] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet.
[  360.058770][T10409] Node 0 Normal: 3*4kB (M) 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 28kB
[  360.077738][T10409] Node 1 Normal: 139*4kB (UME) 52*8kB (UME) 37*16kB (UME) 189*32kB (UME) 86*64kB (UME) 22*128kB (UME) 20*256kB (UME) 8*512kB (UME) 2*1024kB (U) 7*2048kB (UM) 945*4096kB (M) = 3912252kB
[  360.109026][T10409] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  360.176947][T10409] Node 0 hugepages_total=1 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  360.211190][T10409] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  360.241948][T10409] Node 1 hugepages_total=3 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB
[  360.270566][T10409] 94697 total pagecache pages
[  360.300253][T10409] 0 pages in swap cache
[  360.312669][T10409] Free swap  = 122944kB
[  360.317497][T10409] Total swap = 124996kB
[  360.332113][T10409] 2097051 pages RAM
[  360.336044][T10409] 0 pages HighMem/MovableOnly
[  360.340768][T10409] 428898 pages reserved
[  360.378199][T10409] 0 pages cma reserved
[  360.383769][T10409] tty tty3: ldisc open failed (-12), clearing slot 2
[  360.405730][T10415] tty tty45: ldisc open failed (-12), clearing slot 44
[  360.678085][T10448] netlink: 'syz.2.1033': attribute type 2 has an invalid length.
[  361.220037][T10459] netlink: set zone limit has 8 unknown bytes
[  362.271289][T10468] netlink: set zone limit has 8 unknown bytes
[  362.591312][T10474] could not allocate digest TFM handle binfmt_misc
[  362.999768][T10487] openvswitch: ovs_: Dropping previously announced user features
[  363.283809][T10484] FAULT_INJECTION: forcing a failure.
[  363.283809][T10484] name failslab, interval 1, probability 0, space 0, times 0
[  363.331423][T10484] CPU: 0 UID: 0 PID: 10484 Comm: syz.3.1041 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[  363.331483][T10484] Tainted: [U]=USER
[  363.331494][T10484] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  363.331514][T10484] Call Trace:
[  363.331525][T10484]  <TASK>
[  363.331538][T10484]  dump_stack_lvl+0x16c/0x1f0
[  363.331585][T10484]  should_fail_ex+0x512/0x640
[  363.331628][T10484]  ? __kmalloc_node_noprof+0xc5/0x500
[  363.331666][T10484]  should_failslab+0xc2/0x120
[  363.331701][T10484]  __kmalloc_node_noprof+0xd8/0x500
[  363.331735][T10484]  ? __vmalloc_node_range_noprof+0x3eb/0x1540
[  363.331788][T10484]  __vmalloc_node_range_noprof+0x3eb/0x1540
[  363.331845][T10484]  ? n_tty_open+0x1a/0x170
[  363.331883][T10484]  ? __ldsem_down_write_nested+0x10e/0x850
[  363.331920][T10484]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  363.331970][T10484]  ? n_tty_open+0x1a/0x170
[  363.332004][T10484]  vzalloc_noprof+0x6b/0x90
[  363.332074][T10484]  ? n_tty_open+0x1a/0x170
[  363.332109][T10484]  ? __pfx_n_tty_open+0x10/0x10
[  363.332142][T10484]  n_tty_open+0x1a/0x170
[  363.332176][T10484]  ? __pfx_n_tty_open+0x10/0x10
[  363.332212][T10484]  tty_ldisc_open+0x9c/0x120
[  363.332239][T10484]  tty_ldisc_setup+0x40/0x100
[  363.332267][T10484]  tty_init_dev.part.0+0x1ec/0x500
[  363.332301][T10484]  tty_open+0xa50/0xf90
[  363.332342][T10484]  ? __pfx_tty_open+0x10/0x10
[  363.332387][T10484]  ? chrdev_open+0x10b/0x6a0
[  363.332423][T10484]  ? __pfx_tty_open+0x10/0x10
[  363.332456][T10484]  chrdev_open+0x231/0x6a0
[  363.332483][T10484]  ? __pfx_apparmor_file_open+0x10/0x10
[  363.332518][T10484]  ? __pfx_chrdev_open+0x10/0x10
[  363.332554][T10484]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  363.332607][T10484]  do_dentry_open+0x741/0x1c10
[  363.332638][T10484]  ? __pfx_chrdev_open+0x10/0x10
[  363.332678][T10484]  vfs_open+0x82/0x3f0
[  363.332722][T10484]  path_openat+0x1e5e/0x2d40
[  363.332770][T10484]  ? __pfx_path_openat+0x10/0x10
[  363.332811][T10484]  do_filp_open+0x20b/0x470
[  363.332839][T10484]  ? __pfx_do_filp_open+0x10/0x10
[  363.332904][T10484]  ? alloc_fd+0x471/0x7d0
[  363.332962][T10484]  do_sys_openat2+0x11b/0x1d0
[  363.332999][T10484]  ? __pfx_do_sys_openat2+0x10/0x10
[  363.333057][T10484]  __x64_sys_openat+0x174/0x210
[  363.333095][T10484]  ? __pfx___x64_sys_openat+0x10/0x10
[  363.333133][T10484]  ? rcu_is_watching+0x12/0xc0
[  363.333171][T10484]  do_syscall_64+0xcd/0x230
[  363.333212][T10484]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  363.333245][T10484] RIP: 0033:0x7f825fb8e969
[  363.333271][T10484] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  363.333302][T10484] RSP: 002b:00007f8260a9b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  363.333333][T10484] RAX: ffffffffffffffda RBX: 00007f825fdb5fa0 RCX: 00007f825fb8e969
[  363.333358][T10484] RDX: 0000000000040002 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  363.333376][T10484] RBP: 00007f825fc10ab1 R08: 0000000000000000 R09: 0000000000000000
[  363.333393][T10484] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000
[  363.333411][T10484] R13: 0000000000000000 R14: 00007f825fdb5fa0 R15: 00007ffc7ca84688
[  363.333456][T10484]  </TASK>
[  363.747763][T10484] tty tty3: ldisc open failed (-12), clearing slot 2
[  364.767153][T10511] binder: 10509:10511 ioctl c00c620f 2000000000c0 returned -22
[  365.071099][T10513] netlink: set zone limit has 8 unknown bytes
[  365.591475][T10524] netlink: set zone limit has 8 unknown bytes
[  366.070413][T10536] openvswitch: ovs_: Dropping previously announced user features
[  366.302831][T10543] netlink: del zone limit has 4 unknown bytes
[  366.552656][T10548] binder: 10547:10548 ioctl c00c620f 2000000000c0 returned -22
[  366.747776][T10550] FAULT_INJECTION: forcing a failure.
[  366.747776][T10550] name failslab, interval 1, probability 0, space 0, times 0
[  366.765999][T10550] CPU: 0 UID: 0 PID: 10550 Comm: syz.1.1057 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[  366.766100][T10550] Tainted: [U]=USER
[  366.766112][T10550] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  366.766126][T10550] Call Trace:
[  366.766135][T10550]  <TASK>
[  366.766147][T10550]  dump_stack_lvl+0x16c/0x1f0
[  366.766197][T10550]  should_fail_ex+0x512/0x640
[  366.766237][T10550]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  366.766276][T10550]  should_failslab+0xc2/0x120
[  366.766317][T10550]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  366.766348][T10550]  ? __kernfs_new_node+0xd2/0x8a0
[  366.766402][T10550]  __kernfs_new_node+0xd2/0x8a0
[  366.766451][T10550]  ? __pfx___kernfs_new_node+0x10/0x10
[  366.766508][T10550]  ? find_held_lock+0x2b/0x80
[  366.766539][T10550]  ? kernfs_root+0xee/0x2a0
[  366.766592][T10550]  kernfs_new_node+0x13c/0x1e0
[  366.766633][T10550]  __kernfs_create_file+0x53/0x350
[  366.766683][T10550]  sysfs_add_file_mode_ns+0x207/0x3c0
[  366.766740][T10550]  internal_create_group+0x578/0xf30
[  366.766799][T10550]  ? __pfx_internal_create_group+0x10/0x10
[  366.766853][T10550]  ? kernfs_create_link+0x1bd/0x240
[  366.766890][T10550]  internal_create_groups+0x9d/0x150
[  366.766921][T10550]  device_add+0xf30/0x1a70
[  366.766964][T10550]  ? __pfx_device_add+0x10/0x10
[  366.767001][T10550]  ? lockdep_init_map_type+0x5c/0x280
[  366.767048][T10550]  ? __init_waitqueue_head+0xca/0x150
[  366.767107][T10550]  netdev_register_kobject+0x182/0x3a0
[  366.767152][T10550]  register_netdevice+0x13dc/0x2270
[  366.767196][T10550]  ? __pfx_register_netdevice+0x10/0x10
[  366.767238][T10550]  internal_dev_create+0x2d3/0x520
[  366.767284][T10550]  ovs_vport_add+0x144/0x4d0
[  366.767325][T10550]  new_vport+0x16/0x1d0
[  366.767357][T10550]  ovs_dp_cmd_new+0x6ba/0xe60
[  366.767403][T10550]  ? __pfx_ovs_dp_cmd_new+0x10/0x10
[  366.767445][T10550]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  366.767484][T10550]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  366.767526][T10550]  genl_family_rcv_msg_doit+0x206/0x2f0
[  366.767561][T10550]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  366.767593][T10550]  ? trace_cap_capable+0x18d/0x200
[  366.767630][T10550]  ? bpf_lsm_capable+0x9/0x10
[  366.767659][T10550]  ? security_capable+0x7e/0x260
[  366.767706][T10550]  ? ns_capable+0xd7/0x110
[  366.767740][T10550]  genl_rcv_msg+0x55c/0x800
[  366.767782][T10550]  ? __pfx_genl_rcv_msg+0x10/0x10
[  366.767817][T10550]  ? __pfx___dev_queue_xmit+0x10/0x10
[  366.767861][T10550]  ? __pfx_ovs_dp_cmd_new+0x10/0x10
[  366.767900][T10550]  ? __lock_acquire+0xaa4/0x1ba0
[  366.767947][T10550]  netlink_rcv_skb+0x16a/0x440
[  366.767982][T10550]  ? __pfx_genl_rcv_msg+0x10/0x10
[  366.768036][T10550]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  366.768094][T10550]  ? __pfx_down_read+0x10/0x10
[  366.768141][T10550]  ? netlink_deliver_tap+0x1ae/0xd30
[  366.768181][T10550]  genl_rcv+0x28/0x40
[  366.768219][T10550]  netlink_unicast+0x53a/0x7f0
[  366.768262][T10550]  ? __pfx_netlink_unicast+0x10/0x10
[  366.768292][T10550]  ? __lock_acquire+0xaa4/0x1ba0
[  366.768339][T10550]  netlink_sendmsg+0x8d1/0xdd0
[  366.768382][T10550]  ? __pfx_netlink_sendmsg+0x10/0x10
[  366.768434][T10550]  ____sys_sendmsg+0xa95/0xc70
[  366.768477][T10550]  ? copy_msghdr_from_user+0x10a/0x160
[  366.768508][T10550]  ? __pfx_____sys_sendmsg+0x10/0x10
[  366.768557][T10550]  ? try_to_wake_up+0xa2f/0x1680
[  366.768593][T10550]  ___sys_sendmsg+0x134/0x1d0
[  366.768628][T10550]  ? __pfx____sys_sendmsg+0x10/0x10
[  366.768713][T10550]  __sys_sendmsg+0x16d/0x220
[  366.768747][T10550]  ? __pfx___sys_sendmsg+0x10/0x10
[  366.768776][T10550]  ? __x64_sys_futex+0x1e0/0x4c0
[  366.768822][T10550]  ? rcu_is_watching+0x12/0xc0
[  366.768861][T10550]  do_syscall_64+0xcd/0x230
[  366.768904][T10550]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  366.768936][T10550] RIP: 0033:0x7f16a538e969
[  366.768962][T10550] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  366.768992][T10550] RSP: 002b:00007f16a626f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  366.769021][T10550] RAX: ffffffffffffffda RBX: 00007f16a55b5fa0 RCX: 00007f16a538e969
[  366.769052][T10550] RDX: 0000000002000000 RSI: 0000200000000080 RDI: 0000000000000005
[  366.769072][T10550] RBP: 00007f16a5410ab1 R08: 0000000000000000 R09: 0000000000000000
[  366.769091][T10550] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  366.769109][T10550] R13: 0000000000000000 R14: 00007f16a55b5fa0 R15: 00007ffd7e604378
[  366.769151][T10550]  </TASK>
[  368.646988][T10579] openvswitch: ovs_: Dropping previously announced user features
[  368.710635][T10582] netlink: del zone limit has 4 unknown bytes
[  369.141912][T10590] random: crng reseeded on system resumption
[  371.187804][T10626] openvswitch: ovs_: Dropping previously announced user features
[  371.606359][T10631] netlink: del zone limit has 4 unknown bytes
[  372.345962][T10641] can: request_module (can-proto-3) failed.
[  374.667039][T10665] netlink: zone id is out of range
[  374.681857][T10665] netlink: zone id is out of range
[  374.699613][T10665] netlink: zone id is out of range
[  374.711155][T10665] netlink: zone id is out of range
[  374.724568][T10665] netlink: zone id is out of range
[  374.737759][T10665] netlink: zone id is out of range
[  374.750937][T10665] netlink: zone id is out of range
[  374.767077][T10665] netlink: zone id is out of range
[  374.781689][T10665] netlink: zone id is out of range
[  375.449706][T10668] Process accounting paused
[  375.786588][T10667] FAULT_INJECTION: forcing a failure.
[  375.786588][T10667] name failslab, interval 1, probability 0, space 0, times 0
[  375.901054][T10667] CPU: 0 UID: 0 PID: 10667 Comm: syz.1.1085 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[  375.901117][T10667] Tainted: [U]=USER
[  375.901129][T10667] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  375.901148][T10667] Call Trace:
[  375.901159][T10667]  <TASK>
[  375.901172][T10667]  dump_stack_lvl+0x16c/0x1f0
[  375.901221][T10667]  should_fail_ex+0x512/0x640
[  375.901282][T10667]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  375.901327][T10667]  should_failslab+0xc2/0x120
[  375.901367][T10667]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  375.901402][T10667]  ? __pfx___might_resched+0x10/0x10
[  375.901446][T10667]  ? alloc_vmap_area+0xd9a/0x2970
[  375.901494][T10667]  alloc_vmap_area+0xd9a/0x2970
[  375.901555][T10667]  ? __pfx_alloc_vmap_area+0x10/0x10
[  375.901613][T10667]  __get_vm_area_node+0x1a7/0x300
[  375.901671][T10667]  __vmalloc_node_range_noprof+0x277/0x1540
[  375.901722][T10667]  ? n_tty_open+0x1a/0x170
[  375.901770][T10667]  ? n_tty_open+0x1a/0x170
[  375.901805][T10667]  ? __ldsem_down_write_nested+0x10e/0x850
[  375.901846][T10667]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  375.901899][T10667]  ? n_tty_open+0x1a/0x170
[  375.901939][T10667]  vzalloc_noprof+0x6b/0x90
[  375.901981][T10667]  ? n_tty_open+0x1a/0x170
[  375.902013][T10667]  ? __pfx_n_tty_open+0x10/0x10
[  375.902048][T10667]  n_tty_open+0x1a/0x170
[  375.902085][T10667]  ? __pfx_n_tty_open+0x10/0x10
[  375.902119][T10667]  tty_ldisc_open+0x9c/0x120
[  375.902148][T10667]  tty_ldisc_setup+0x40/0x100
[  375.902177][T10667]  tty_init_dev.part.0+0x1ec/0x500
[  375.902216][T10667]  tty_open+0xa50/0xf90
[  375.902268][T10667]  ? __pfx_tty_open+0x10/0x10
[  375.902303][T10667]  ? chrdev_open+0x10b/0x6a0
[  375.902341][T10667]  ? __pfx_tty_open+0x10/0x10
[  375.902377][T10667]  chrdev_open+0x231/0x6a0
[  375.902409][T10667]  ? __pfx_apparmor_file_open+0x10/0x10
[  375.902445][T10667]  ? __pfx_chrdev_open+0x10/0x10
[  375.902475][T10667]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  375.902525][T10667]  do_dentry_open+0x741/0x1c10
[  375.902555][T10667]  ? __pfx_chrdev_open+0x10/0x10
[  375.902591][T10667]  vfs_open+0x82/0x3f0
[  375.902634][T10667]  path_openat+0x1e5e/0x2d40
[  375.902677][T10667]  ? __pfx_path_openat+0x10/0x10
[  375.902716][T10667]  do_filp_open+0x20b/0x470
[  375.902744][T10667]  ? __pfx_do_filp_open+0x10/0x10
[  375.902805][T10667]  ? alloc_fd+0x471/0x7d0
[  375.902860][T10667]  do_sys_openat2+0x11b/0x1d0
[  375.902897][T10667]  ? __pfx_do_sys_openat2+0x10/0x10
[  375.902952][T10667]  __x64_sys_openat+0x174/0x210
[  375.902990][T10667]  ? __pfx___x64_sys_openat+0x10/0x10
[  375.903029][T10667]  ? rcu_is_watching+0x12/0xc0
[  375.903069][T10667]  do_syscall_64+0xcd/0x230
[  375.903112][T10667]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  375.903142][T10667] RIP: 0033:0x7f16a538e969
[  375.903169][T10667] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  375.903199][T10667] RSP: 002b:00007f16a626f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  375.903232][T10667] RAX: ffffffffffffffda RBX: 00007f16a55b5fa0 RCX: 00007f16a538e969
[  375.903261][T10667] RDX: 0000000000040002 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  375.903280][T10667] RBP: 00007f16a5410ab1 R08: 0000000000000000 R09: 0000000000000000
[  375.903297][T10667] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000
[  375.903315][T10667] R13: 0000000000000000 R14: 00007f16a55b5fa0 R15: 00007ffd7e604378
[  375.903357][T10667]  </TASK>
[  376.873365][T10683] net_ratelimit: 5 callbacks suppressed
[  376.873395][T10683] netlink: set zone limit has 8 unknown bytes
[  378.330485][T10716] netlink: set zone limit has 8 unknown bytes
[  379.153395][T10737] netlink: zone id is out of range
[  379.176717][T10737] netlink: zone id is out of range
[  379.199197][T10738] openvswitch: ovs_: Dropping previously announced user features
[  379.211904][T10737] netlink: zone id is out of range
[  379.221702][T10737] netlink: zone id is out of range
[  379.258138][T10737] netlink: zone id is out of range
[  379.310787][T10737] netlink: zone id is out of range
[  379.321651][T10737] netlink: zone id is out of range
[  379.336333][T10737] netlink: zone id is out of range
[  379.662878][T10742] binder: 10741:10742 ioctl c00c620f 2000000000c0 returned -22
[  383.028553][T10764] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  383.108249][T10764] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  383.254307][T10764] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  383.260640][T10764] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  383.372086][T10764] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  383.783109][T10764] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  383.811891][ T5830] Bluetooth: hci0: command 0x0c1a tx timeout
[  384.379150][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  384.386599][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  385.171996][ T5830] Bluetooth: hci2: command 0x0c1a tx timeout
[  385.251937][ T5830] Bluetooth: hci3: command 0x0c1a tx timeout
[  385.309031][T10789] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1110'.
[  385.332429][T10789] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1110'.
[  385.341442][ T5830] Bluetooth: hci1: command 0x0c1a tx timeout
[  385.938361][T10794] openvswitch: ovs_: Dropping previously announced user features
[  386.282417][T10798] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input7
[  386.941271][T10806] openvswitch: ovs_: Dropping previously announced user features
[  387.411973][ T5830] Bluetooth: hci1: command 0x0c1a tx timeout
[  387.821041][T10820] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1120'.
[  387.876921][T10820] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(20.65579.7388456), cmd(2)
[  389.492084][ T5830] Bluetooth: hci1: command 0x0c1a tx timeout
[  389.571177][T10856] net_ratelimit: 6 callbacks suppressed
[  389.571211][T10856] netlink: set zone limit has 8 unknown bytes
[  390.023816][T10864] netlink: 93 bytes leftover after parsing attributes in process `syz.1.1126'.
[  390.110779][T10842] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  390.122353][T10842] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  390.128580][T10842] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  390.162296][T10842] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  390.592931][T10868] openvswitch: ovs_: Dropping previously announced user features
[  390.781890][T10874] can: request_module (can-proto-3) failed.
[  390.933156][ T5830] Bluetooth: hci0: command 0x0c1a tx timeout
[  390.974251][T10879] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1129'.
[  392.132077][ T5830] Bluetooth: hci3: command 0x0c1a tx timeout
[  392.138275][ T5830] Bluetooth: hci2: command 0x0c1a tx timeout
[  392.212043][ T5830] Bluetooth: hci1: command 0x0c1a tx timeout
[  392.962041][T10912] netlink: set zone limit has 8 unknown bytes
[  398.164603][T10987] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888033558000 pfn:0x7fe08
[  398.252000][T10987] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  398.327736][T10987] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  398.358391][T10987] page_type: f2(table)
[  398.551631][T10987] raw: 00fff00000000040 ffffea0000c02c08 ffffea0000c19f88 0000000000000000
[  398.600272][T10987] raw: ffff888033558000 0000000000000000 00000001f2000000 0000000000000000
[  398.641677][T10987] head: 00fff00000000040 ffffea0000c02c08 ffffea0000c19f88 0000000000000000
[  398.668553][T10987] head: ffff888033558000 0000000000000000 00000001f2000000 0000000000000000
[  398.749884][T10987] head: 00fff00000000001 ffffea0001ff8201 00000000ffffffff 00000000ffffffff
[  398.875073][T10987] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002
[  398.972436][T10987] page dumped because: unmovable page
[  398.977945][T10987] page_owner tracks the page as allocated
[  399.087071][T10987] page last allocated via order 1, migratetype Unmovable, gfp_mask 0x440dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO|__GFP_COMP), pid 5478, tgid 5478 (dbus-daemon), ts 58241318984, free_ts 58238131713
[  399.185897][T10998] binder: 10997:10998 ioctl c00c620f 2000000000c0 returned -22
[  399.212247][T10987]  post_alloc_hook+0x181/0x1b0
[  399.217251][T10987]  get_page_from_freelist+0x135c/0x3920
[  399.301221][T10987]  __alloc_frozen_pages_noprof+0x263/0x23a0
[  399.328498][T10987]  alloc_pages_mpol+0x1fb/0x550
[  399.381550][T10987]  alloc_pages_noprof+0x131/0x390
[  399.424973][T10987]  pgd_alloc+0x49/0x4f0
[  399.463018][T10987]  mm_init+0x6f4/0x1370
[  399.542008][T10987]  copy_process+0x6cc6/0x91a0
[  399.546841][T10987]  kernel_clone+0xfc/0x960
[  399.551341][T10987]  __do_sys_clone+0xce/0x120
[  399.631923][T10987]  do_syscall_64+0xcd/0x230
[  399.636573][T10987]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  399.821850][T10987] page last free pid 5478 tgid 5478 stack trace:
[  399.828313][T10987]  __free_frozen_pages+0x69d/0xff0
[  399.971921][T10987]  qlist_free_all+0x4e/0x120
[  399.976676][T10987]  kasan_quarantine_reduce+0x195/0x1e0
[  400.144042][T10987]  __kasan_slab_alloc+0x69/0x90
[  400.252881][T10987]  __kmalloc_noprof+0x1d4/0x510
[  400.257892][T10987]  tomoyo_realpath_from_path+0xc2/0x6e0
[  400.387394][T10987]  tomoyo_path_number_perm+0x245/0x580
[  400.458764][T10987]  security_path_chmod+0x121/0x2c0
[  400.530550][T10987]  chmod_common+0x16c/0x460
[  400.616576][T10987]  __x64_sys_chmod+0x107/0x1c0
[  400.621522][T10987]  do_syscall_64+0xcd/0x230
[  400.721964][T10987]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  401.343920][T11022] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input8
[  401.388872][T11025] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1158'.
[  401.428784][T11025] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  401.775811][T11025] batman_adv: batadv0: Removing interface: batadv_slave_1
[  402.229076][T11026] Invalid ELF header magic: != ELF
[  403.524260][T11060] netlink: zone id is out of range
[  403.608219][T11060] netlink: zone id is out of range
[  403.615137][T11060] netlink: zone id is out of range
[  403.621582][T11060] netlink: zone id is out of range
[  403.630271][T11060] netlink: zone id is out of range
[  403.637376][T11060] netlink: zone id is out of range
[  403.643502][T11060] netlink: zone id is out of range
[  403.648825][T11060] netlink: zone id is out of range
[  403.655236][T11060] netlink: zone id is out of range
[  403.660527][T11060] netlink: zone id is out of range
[  404.927694][T11091] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1173'.
[  405.020245][T11098] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1173'.
[  405.044050][T11098] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1173'.
[  406.172205][   T30] audit: type=1400 audit(4294968471.845:9): apparmor="DENIED" operation="setprocattr" info="invalid" error=-22 profile="unconfined" pid=11109 comm="syz.3.1174"
[  406.508005][T11109] Process accounting resumed
[  408.157534][   T30] audit: type=1800 audit(4294968473.855:10): pid=11156 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1188" name="SYSVffffffff" dev="tmpfs" ino=0 res=0 errno=0
[  409.075597][T11173] net_ratelimit: 54 callbacks suppressed
[  409.075629][T11173] openvswitch: netlink: Key type 261 is out of range max 32
[  410.043271][T11180] netlink: set zone limit has 8 unknown bytes
[  410.716542][T11195] binder: 11194:11195 ioctl c00c620f 2000000000c0 returned -22
[  410.986197][T11201] openvswitch: ovs_: Dropping previously announced user features
[  412.200055][T11225] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1207'.
[  412.240712][T11225] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1207'.
[  412.243970][T11225] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1207'.
[  413.412224][T11231] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1209'.
[  413.900216][T11237] netlink: zone id is out of range
[  413.942035][T11237] netlink: zone id is out of range
[  413.986831][T11237] netlink: zone id is out of range
[  414.042457][T11237] netlink: zone id is out of range
[  414.047686][T11237] netlink: zone id is out of range
[  414.095847][T11237] netlink: zone id is out of range
[  414.121433][T11237] netlink: zone id is out of range
[  414.144390][T11240] binder: 11239:11240 ioctl c00c620f 2000000000c0 returned -22
[  414.162023][T11237] netlink: zone id is out of range
[  414.198565][T11237] netlink: zone id is out of range
[  414.219543][T11237] netlink: zone id is out of range
[  414.236017][T11237] netlink: zone id is out of range
[  414.254880][T11237] netlink: zone id is out of range
[  414.289007][T11244] openvswitch: ovs_: Dropping previously announced user features
[  414.307404][T11237] netlink: zone id is out of range
[  414.319860][   T30] audit: type=1400 audit(4294967302.720:11): apparmor="DENIED" operation="setprocattr" info="invalid" error=-22 profile="unconfined" pid=11241 comm="syz.2.1212"
[  414.324018][T11237] netlink: zone id is out of range
[  414.391145][T11237] netlink: zone id is out of range
[  414.668077][T11246] FAULT_INJECTION: forcing a failure.
[  414.668077][T11246] name failslab, interval 1, probability 0, space 0, times 0
[  414.685097][T11251] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1215'.
[  414.711889][T11246] CPU: 1 UID: 0 PID: 11246 Comm: syz.3.1214 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[  414.711946][T11246] Tainted: [U]=USER
[  414.711957][T11246] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  414.711988][T11246] Call Trace:
[  414.711998][T11246]  <TASK>
[  414.712011][T11246]  dump_stack_lvl+0x16c/0x1f0
[  414.712059][T11246]  should_fail_ex+0x512/0x640
[  414.712101][T11246]  ? __kmalloc_cache_node_noprof+0x5a/0x420
[  414.712136][T11246]  should_failslab+0xc2/0x120
[  414.712172][T11246]  __kmalloc_cache_node_noprof+0x6d/0x420
[  414.712207][T11246]  ? __get_vm_area_node+0x101/0x300
[  414.712254][T11246]  __get_vm_area_node+0x101/0x300
[  414.712304][T11246]  __vmalloc_node_range_noprof+0x277/0x1540
[  414.712350][T11246]  ? n_tty_open+0x1a/0x170
[  414.712401][T11246]  ? n_tty_open+0x1a/0x170
[  414.712437][T11246]  ? __ldsem_down_write_nested+0x10e/0x850
[  414.712475][T11246]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  414.712526][T11246]  ? n_tty_open+0x1a/0x170
[  414.712565][T11246]  vzalloc_noprof+0x6b/0x90
[  414.712608][T11246]  ? n_tty_open+0x1a/0x170
[  414.712644][T11246]  ? __pfx_n_tty_open+0x10/0x10
[  414.712679][T11246]  n_tty_open+0x1a/0x170
[  414.712715][T11246]  ? __pfx_n_tty_open+0x10/0x10
[  414.712750][T11246]  tty_ldisc_open+0x9c/0x120
[  414.712781][T11246]  tty_ldisc_setup+0x40/0x100
[  414.712812][T11246]  tty_init_dev.part.0+0x1ec/0x500
[  414.712852][T11246]  tty_open+0xa50/0xf90
[  414.712895][T11246]  ? __pfx_tty_open+0x10/0x10
[  414.712931][T11246]  ? chrdev_open+0x10b/0x6a0
[  414.712978][T11246]  ? __pfx_tty_open+0x10/0x10
[  414.713015][T11246]  chrdev_open+0x231/0x6a0
[  414.713045][T11246]  ? __pfx_apparmor_file_open+0x10/0x10
[  414.713088][T11246]  ? __pfx_chrdev_open+0x10/0x10
[  414.713125][T11246]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  414.713183][T11246]  do_dentry_open+0x741/0x1c10
[  414.713218][T11246]  ? __pfx_chrdev_open+0x10/0x10
[  414.713258][T11246]  vfs_open+0x82/0x3f0
[  414.713302][T11246]  path_openat+0x1e5e/0x2d40
[  414.713347][T11246]  ? __pfx_path_openat+0x10/0x10
[  414.713388][T11246]  do_filp_open+0x20b/0x470
[  414.713417][T11246]  ? __pfx_do_filp_open+0x10/0x10
[  414.713476][T11246]  ? alloc_fd+0x471/0x7d0
[  414.713533][T11246]  do_sys_openat2+0x11b/0x1d0
[  414.713571][T11246]  ? __pfx_do_sys_openat2+0x10/0x10
[  414.713626][T11246]  __x64_sys_openat+0x174/0x210
[  414.713667][T11246]  ? __pfx___x64_sys_openat+0x10/0x10
[  414.713709][T11246]  ? rcu_is_watching+0x12/0xc0
[  414.713747][T11246]  do_syscall_64+0xcd/0x230
[  414.713792][T11246]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  414.713823][T11246] RIP: 0033:0x7f825fb8e969
[  414.713850][T11246] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  414.713880][T11246] RSP: 002b:00007f8260a9b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  414.713910][T11246] RAX: ffffffffffffffda RBX: 00007f825fdb5fa0 RCX: 00007f825fb8e969
[  414.713929][T11246] RDX: 0000000000040002 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  414.713947][T11246] RBP: 00007f825fc10ab1 R08: 0000000000000000 R09: 0000000000000000
[  414.713977][T11246] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000
[  414.713997][T11246] R13: 0000000000000000 R14: 00007f825fdb5fa0 R15: 00007ffc7ca84688
[  414.714040][T11246]  </TASK>
[  414.714127][T11246] warn_alloc: 1 callbacks suppressed
[  414.714145][T11246] syz.3.1214: vmalloc error: size 9128, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  415.203377][T11246] CPU: 1 UID: 0 PID: 11246 Comm: syz.3.1214 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[  415.203428][T11246] Tainted: [U]=USER
[  415.203436][T11246] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  415.203454][T11246] Call Trace:
[  415.203464][T11246]  <TASK>
[  415.203474][T11246]  dump_stack_lvl+0x16c/0x1f0
[  415.203519][T11246]  warn_alloc+0x248/0x3a0
[  415.203552][T11246]  ? __pfx_warn_alloc+0x10/0x10
[  415.203584][T11246]  ? __kmalloc_cache_node_noprof+0x272/0x420
[  415.203620][T11246]  ? __kasan_kmalloc+0x8a/0xb0
[  415.203650][T11246]  ? __get_vm_area_node+0x1e5/0x300
[  415.203701][T11246]  __vmalloc_node_range_noprof+0xd31/0x1540
[  415.203770][T11246]  ? n_tty_open+0x1a/0x170
[  415.203811][T11246]  ? __ldsem_down_write_nested+0x10e/0x850
[  415.203852][T11246]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  415.203908][T11246]  ? n_tty_open+0x1a/0x170
[  415.203945][T11246]  vzalloc_noprof+0x6b/0x90
[  415.203988][T11246]  ? n_tty_open+0x1a/0x170
[  415.204018][T11246]  ? __pfx_n_tty_open+0x10/0x10
[  415.204052][T11246]  n_tty_open+0x1a/0x170
[  415.204087][T11246]  ? __pfx_n_tty_open+0x10/0x10
[  415.204129][T11246]  tty_ldisc_open+0x9c/0x120
[  415.204156][T11246]  tty_ldisc_setup+0x40/0x100
[  415.204185][T11246]  tty_init_dev.part.0+0x1ec/0x500
[  415.204222][T11246]  tty_open+0xa50/0xf90
[  415.204263][T11246]  ? __pfx_tty_open+0x10/0x10
[  415.204296][T11246]  ? chrdev_open+0x10b/0x6a0
[  415.204330][T11246]  ? __pfx_tty_open+0x10/0x10
[  415.204362][T11246]  chrdev_open+0x231/0x6a0
[  415.204390][T11246]  ? __pfx_apparmor_file_open+0x10/0x10
[  415.204425][T11246]  ? __pfx_chrdev_open+0x10/0x10
[  415.204457][T11246]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  415.204506][T11246]  do_dentry_open+0x741/0x1c10
[  415.204534][T11246]  ? __pfx_chrdev_open+0x10/0x10
[  415.204571][T11246]  vfs_open+0x82/0x3f0
[  415.204610][T11246]  path_openat+0x1e5e/0x2d40
[  415.204651][T11246]  ? __pfx_path_openat+0x10/0x10
[  415.204688][T11246]  do_filp_open+0x20b/0x470
[  415.204714][T11246]  ? __pfx_do_filp_open+0x10/0x10
[  415.204780][T11246]  ? alloc_fd+0x471/0x7d0
[  415.204831][T11246]  do_sys_openat2+0x11b/0x1d0
[  415.204867][T11246]  ? __pfx_do_sys_openat2+0x10/0x10
[  415.204918][T11246]  __x64_sys_openat+0x174/0x210
[  415.204953][T11246]  ? __pfx___x64_sys_openat+0x10/0x10
[  415.204992][T11246]  ? rcu_is_watching+0x12/0xc0
[  415.205029][T11246]  do_syscall_64+0xcd/0x230
[  415.205068][T11246]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  415.205096][T11246] RIP: 0033:0x7f825fb8e969
[  415.205119][T11246] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  415.205158][T11246] RSP: 002b:00007f8260a9b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  415.205186][T11246] RAX: ffffffffffffffda RBX: 00007f825fdb5fa0 RCX: 00007f825fb8e969
[  415.205204][T11246] RDX: 0000000000040002 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  415.205222][T11246] RBP: 00007f825fc10ab1 R08: 0000000000000000 R09: 0000000000000000
[  415.205238][T11246] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000
[  415.205260][T11246] R13: 0000000000000000 R14: 00007f825fdb5fa0 R15: 00007ffc7ca84688
[  415.205298][T11246]  </TASK>
[  415.205308][T11246] Mem-Info:
[  415.543249][T11246] active_anon:62529 inactive_anon:0 isolated_anon:0
[  415.543249][T11246]  active_file:9877 inactive_file:46888 isolated_file:0
[  415.543249][T11246]  unevictable:1718 dirty:845 writeback:0
[  415.543249][T11246]  slab_reclaimable:10795 slab_unreclaimable:96778
[  415.543249][T11246]  mapped:48021 shmem:44590 pagetables:1314
[  415.543249][T11246]  sec_pagetables:0 bounce:0
[  415.543249][T11246]  kernel_misc_reclaimable:0
[  415.543249][T11246]  free:1281294 free_pcp:1342 free_cma:0
[  415.640966][T11246] Node 0 active_anon:254212kB inactive_anon:0kB active_file:39508kB inactive_file:188548kB unevictable:4044kB isolated(anon):0kB isolated(file):0kB mapped:192400kB dirty:3424kB writeback:0kB shmem:179880kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11776kB pagetables:5188kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  415.771806][T11246] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:8kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  415.851934][T11246] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  415.921036][T11246] lowmem_reserve[]: 0 2484 2486 2486 2486
[  415.937699][T11246] Node 0 DMA32 free:1170456kB boost:0kB min:34108kB low:42632kB high:51156kB reserved_highatomic:0KB active_anon:272364kB inactive_anon:0kB active_file:39508kB inactive_file:187928kB unevictable:1544kB writepending:3424kB present:3129332kB managed:2544188kB mlocked:8kB bounce:0kB free_pcp:9268kB local_pcp:8248kB free_cma:0kB
[  416.006621][T11246] lowmem_reserve[]: 0 0 1 1 1
[  416.022196][T11246] Node 0 Normal free:28kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1820kB unevictable:0kB writepending:0kB present:1048580kB managed:1900kB mlocked:0kB bounce:0kB free_pcp:4kB local_pcp:0kB free_cma:0kB
[  416.070291][T11265] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1219'.
[  416.091839][T11246] lowmem_reserve[]: 0 0 0 0 0
[  416.106917][T11246] Node 1 Normal free:3912260kB boost:0kB min:55768kB low:69708kB high:83648kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:8kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:3396kB local_pcp:3396kB free_cma:0kB
[  416.166758][T11246] lowmem_reserve[]: 0 0 0 0 0
[  416.171625][T11246] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  416.220636][T11246] Node 0 DMA32: 332*4kB (UME) 346*8kB (UE) 247*16kB (UME) 1398*32kB (UME) 721*64kB (UME) 274*128kB (UM) 138*256kB (UM) 44*512kB (UME) 18*1024kB (UM) 4*2048kB (ME) 232*4096kB (UM) = 1168752kB
[  416.260216][T11246] Node 0 Normal: 3*4kB (M) 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 28kB
[  416.292388][T11246] Node 1 Normal: 139*4kB (UME) 53*8kB (UME) 37*16kB (UME) 189*32kB (UME) 86*64kB (UME) 22*128kB (UME) 20*256kB (UME) 8*512kB (UME) 2*1024kB (U) 7*2048kB (UM) 945*4096kB (M) = 3912260kB
[  416.491786][T11246] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  416.523235][T11246] Node 0 hugepages_total=1 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  416.549405][T11246] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  416.579471][T11246] Node 1 hugepages_total=3 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB
[  416.607647][T11246] 106717 total pagecache pages
[  416.621991][T11246] 0 pages in swap cache
[  416.631872][T11246] Free swap  = 124996kB
[  416.636103][T11246] Total swap = 124996kB
[  416.654353][T11246] 2097051 pages RAM
[  416.667327][T11246] 0 pages HighMem/MovableOnly
[  416.678849][T11246] 428898 pages reserved
[  416.688809][T11246] 0 pages cma reserved
[  416.698136][T11246] tty tty3: ldisc open failed (-12), clearing slot 2
[  417.039808][T11274] ptrace attach of "./syz-executor exec"[5836] was attempted by ""[11274]
[  417.060813][T11277] binder: 11276:11277 ioctl c00c620f 2000000000c0 returned -22
[  417.882901][T11288] UHID_CREATE from different security context by process 1133 (syz.2.1225), this is not allowed.
[  420.497317][   T30] audit: type=1400 audit(4294967308.930:12): apparmor="DENIED" operation="setprocattr" info="invalid" error=-22 profile="unconfined" pid=11316 comm="syz.1.1231"
[  421.972701][T11333] can: request_module (can-proto-3) failed.
[  422.146265][T11334] net_ratelimit: 22 callbacks suppressed
[  422.146299][T11334] netlink: zone id is out of range
[  422.232947][T11334] netlink: zone id is out of range
[  422.242297][T11334] netlink: zone id is out of range
[  422.247779][T11334] netlink: zone id is out of range
[  422.261876][T11334] netlink: zone id is out of range
[  422.267069][T11334] netlink: zone id is out of range
[  422.281881][T11334] netlink: zone id is out of range
[  422.287164][T11334] netlink: zone id is out of range
[  422.293113][T11334] netlink: zone id is out of range
[  422.302137][T11334] netlink: zone id is out of range
[  422.906094][T11345] openvswitch: ovs_: Dropping previously announced user features
[  423.193774][T11348] netlink: 'syz.3.1239': attribute type 1 has an invalid length.
[  423.343293][   T30] audit: type=1400 audit(4294967311.770:13): apparmor="DENIED" operation="setprocattr" info="invalid" error=-22 profile="unconfined" pid=11353 comm="syz.1.1242"
[  423.359845][T11356] FAULT_INJECTION: forcing a failure.
[  423.359845][T11356] name failslab, interval 1, probability 0, space 0, times 0
[  423.373222][T11356] CPU: 0 UID: 0 PID: 11356 Comm: syz.4.1241 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[  423.373267][T11356] Tainted: [U]=USER
[  423.373277][T11356] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  423.373294][T11356] Call Trace:
[  423.373303][T11356]  <TASK>
[  423.373314][T11356]  dump_stack_lvl+0x16c/0x1f0
[  423.373359][T11356]  should_fail_ex+0x512/0x640
[  423.373396][T11356]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  423.373431][T11356]  should_failslab+0xc2/0x120
[  423.373465][T11356]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  423.373497][T11356]  ? __kernfs_new_node+0xd2/0x8a0
[  423.373545][T11356]  __kernfs_new_node+0xd2/0x8a0
[  423.373587][T11356]  ? kernfs_add_one+0x37d/0x840
[  423.373617][T11356]  ? __pfx___kernfs_new_node+0x10/0x10
[  423.373670][T11356]  ? find_held_lock+0x2b/0x80
[  423.373698][T11356]  ? kernfs_root+0xee/0x2a0
[  423.373744][T11356]  kernfs_new_node+0x13c/0x1e0
[  423.373781][T11356]  kernfs_create_dir_ns+0x4c/0x1a0
[  423.373815][T11356]  internal_create_group+0x34d/0xf30
[  423.373866][T11356]  ? __pfx_internal_create_group+0x10/0x10
[  423.373910][T11356]  ? __pfx_internal_create_group+0x10/0x10
[  423.373969][T11356]  ? __pfx_dev_add_physical_location+0x10/0x10
[  423.374003][T11356]  ? bus_to_subsys+0x131/0x160
[  423.374046][T11356]  dpm_sysfs_add+0x80/0x280
[  423.374077][T11356]  device_add+0x9a6/0x1a70
[  423.374110][T11356]  ? __pfx_device_add+0x10/0x10
[  423.374136][T11356]  ? __pfx___mutex_lock+0x10/0x10
[  423.374168][T11356]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  423.374211][T11356]  input_register_device+0x7e8/0x1130
[  423.374249][T11356]  uinput_ioctl_handler.isra.0+0x1357/0x1df0
[  423.374291][T11356]  ? __pfx_uinput_ioctl_handler.isra.0+0x10/0x10
[  423.374339][T11356]  ? find_held_lock+0x2b/0x80
[  423.374380][T11356]  ? __pfx_uinput_ioctl+0x10/0x10
[  423.374414][T11356]  __x64_sys_ioctl+0x190/0x200
[  423.374451][T11356]  do_syscall_64+0xcd/0x230
[  423.374487][T11356]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  423.374513][T11356] RIP: 0033:0x7f6cdfd8e969
[  423.374536][T11356] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  423.374560][T11356] RSP: 002b:00007f6ce0ba4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  423.374586][T11356] RAX: ffffffffffffffda RBX: 00007f6cdffb5fa0 RCX: 00007f6cdfd8e969
[  423.374603][T11356] RDX: 0000000000000000 RSI: 0000000000005501 RDI: 0000000000000005
[  423.374619][T11356] RBP: 00007f6cdfe10ab1 R08: 0000000000000000 R09: 0000000000000000
[  423.374634][T11356] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  423.374649][T11356] R13: 0000000000000000 R14: 00007f6cdffb5fa0 R15: 00007ffc02876c28
[  423.374684][T11356]  </TASK>
[  424.744589][T11384] openvswitch: ovs_: Dropping previously announced user features
[  425.989426][T11421] openvswitch: ovs_: Dropping previously announced user features
[  426.547327][T11436] openvswitch: ovs_: Dropping previously announced user features
[  427.436608][T11452] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1263'.
[  427.564099][T11454] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1264'.
[  429.223963][T11470] can: request_module (can-proto-3) failed.
[  429.423453][T11463] FAULT_INJECTION: forcing a failure.
[  429.423453][T11463] name failslab, interval 1, probability 0, space 0, times 0
[  429.510282][T11463] CPU: 1 UID: 0 PID: 11463 Comm: syz.1.1267 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[  429.510321][T11463] Tainted: [U]=USER
[  429.510327][T11463] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  429.510339][T11463] Call Trace:
[  429.510345][T11463]  <TASK>
[  429.510354][T11463]  dump_stack_lvl+0x16c/0x1f0
[  429.510385][T11463]  should_fail_ex+0x512/0x640
[  429.510409][T11463]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  429.510435][T11463]  should_failslab+0xc2/0x120
[  429.510457][T11463]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  429.510475][T11463]  ? __pfx___might_resched+0x10/0x10
[  429.510493][T11463]  ? alloc_vmap_area+0x613/0x2970
[  429.510520][T11463]  alloc_vmap_area+0x613/0x2970
[  429.510553][T11463]  ? __pfx_alloc_vmap_area+0x10/0x10
[  429.510585][T11463]  __get_vm_area_node+0x1a7/0x300
[  429.510617][T11463]  __vmalloc_node_range_noprof+0x277/0x1540
[  429.510643][T11463]  ? n_tty_open+0x1a/0x170
[  429.510672][T11463]  ? n_tty_open+0x1a/0x170
[  429.510696][T11463]  ? __ldsem_down_write_nested+0x10e/0x850
[  429.510720][T11463]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  429.510753][T11463]  ? n_tty_open+0x1a/0x170
[  429.510775][T11463]  vzalloc_noprof+0x6b/0x90
[  429.510800][T11463]  ? n_tty_open+0x1a/0x170
[  429.510820][T11463]  ? __pfx_n_tty_open+0x10/0x10
[  429.510839][T11463]  n_tty_open+0x1a/0x170
[  429.510860][T11463]  ? __pfx_n_tty_open+0x10/0x10
[  429.510894][T11463]  tty_ldisc_open+0x9c/0x120
[  429.510912][T11463]  tty_ldisc_setup+0x40/0x100
[  429.510930][T11463]  tty_init_dev.part.0+0x1ec/0x500
[  429.510954][T11463]  tty_open+0xa50/0xf90
[  429.510982][T11463]  ? __pfx_tty_open+0x10/0x10
[  429.511006][T11463]  ? chrdev_open+0x10b/0x6a0
[  429.511029][T11463]  ? __pfx_tty_open+0x10/0x10
[  429.511049][T11463]  chrdev_open+0x231/0x6a0
[  429.511068][T11463]  ? __pfx_apparmor_file_open+0x10/0x10
[  429.511091][T11463]  ? __pfx_chrdev_open+0x10/0x10
[  429.511112][T11463]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  429.511143][T11463]  do_dentry_open+0x741/0x1c10
[  429.511160][T11463]  ? __pfx_chrdev_open+0x10/0x10
[  429.511182][T11463]  vfs_open+0x82/0x3f0
[  429.511205][T11463]  path_openat+0x1e5e/0x2d40
[  429.511230][T11463]  ? __pfx_path_openat+0x10/0x10
[  429.511251][T11463]  do_filp_open+0x20b/0x470
[  429.511267][T11463]  ? __pfx_do_filp_open+0x10/0x10
[  429.511303][T11463]  ? alloc_fd+0x471/0x7d0
[  429.511337][T11463]  do_sys_openat2+0x11b/0x1d0
[  429.511359][T11463]  ? __pfx_do_sys_openat2+0x10/0x10
[  429.511389][T11463]  __x64_sys_openat+0x174/0x210
[  429.511411][T11463]  ? __pfx___x64_sys_openat+0x10/0x10
[  429.511434][T11463]  ? rcu_is_watching+0x12/0xc0
[  429.511457][T11463]  do_syscall_64+0xcd/0x230
[  429.511481][T11463]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  429.511499][T11463] RIP: 0033:0x7f16a538e969
[  429.511515][T11463] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  429.511533][T11463] RSP: 002b:00007f16a626f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  429.511550][T11463] RAX: ffffffffffffffda RBX: 00007f16a55b5fa0 RCX: 00007f16a538e969
[  429.511561][T11463] RDX: 0000000000040002 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  429.511571][T11463] RBP: 00007f16a5410ab1 R08: 0000000000000000 R09: 0000000000000000
[  429.511581][T11463] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000
[  429.511591][T11463] R13: 0000000000000000 R14: 00007f16a55b5fa0 R15: 00007ffd7e604378
[  429.511636][T11463]  </TASK>
[  429.511667][T11463] syz.1.1267: vmalloc error: size 9128, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  429.896844][T11476] openvswitch: ovs_: Dropping previously announced user features
[  429.938972][T11463] ,cpuset=/,mems_allowed=0-1
[  429.948651][T11463] CPU: 1 UID: 0 PID: 11463 Comm: syz.1.1267 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[  429.948711][T11463] Tainted: [U]=USER
[  429.948720][T11463] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  429.948737][T11463] Call Trace:
[  429.948747][T11463]  <TASK>
[  429.948759][T11463]  dump_stack_lvl+0x16c/0x1f0
[  429.948805][T11463]  warn_alloc+0x248/0x3a0
[  429.948836][T11463]  ? __pfx_warn_alloc+0x10/0x10
[  429.948866][T11463]  ? kfree+0x2b6/0x4d0
[  429.948910][T11463]  ? __get_vm_area_node+0x1e5/0x300
[  429.948951][T11463]  __vmalloc_node_range_noprof+0xd31/0x1540
[  429.949004][T11463]  ? n_tty_open+0x1a/0x170
[  429.949044][T11463]  ? __ldsem_down_write_nested+0x10e/0x850
[  429.949084][T11463]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  429.949138][T11463]  ? n_tty_open+0x1a/0x170
[  429.949174][T11463]  vzalloc_noprof+0x6b/0x90
[  429.949215][T11463]  ? n_tty_open+0x1a/0x170
[  429.949247][T11463]  ? __pfx_n_tty_open+0x10/0x10
[  429.949278][T11463]  n_tty_open+0x1a/0x170
[  429.949310][T11463]  ? __pfx_n_tty_open+0x10/0x10
[  429.949341][T11463]  tty_ldisc_open+0x9c/0x120
[  429.949367][T11463]  tty_ldisc_setup+0x40/0x100
[  429.949396][T11463]  tty_init_dev.part.0+0x1ec/0x500
[  429.949433][T11463]  tty_open+0xa50/0xf90
[  429.949472][T11463]  ? __pfx_tty_open+0x10/0x10
[  429.949505][T11463]  ? chrdev_open+0x10b/0x6a0
[  429.949539][T11463]  ? __pfx_tty_open+0x10/0x10
[  429.949571][T11463]  chrdev_open+0x231/0x6a0
[  429.949599][T11463]  ? __pfx_apparmor_file_open+0x10/0x10
[  429.949634][T11463]  ? __pfx_chrdev_open+0x10/0x10
[  429.949678][T11463]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  429.949724][T11463]  do_dentry_open+0x741/0x1c10
[  429.949753][T11463]  ? __pfx_chrdev_open+0x10/0x10
[  429.949788][T11463]  vfs_open+0x82/0x3f0
[  429.949828][T11463]  path_openat+0x1e5e/0x2d40
[  429.949871][T11463]  ? __pfx_path_openat+0x10/0x10
[  429.949909][T11463]  do_filp_open+0x20b/0x470
[  429.949936][T11463]  ? __pfx_do_filp_open+0x10/0x10
[  429.949991][T11463]  ? alloc_fd+0x471/0x7d0
[  429.950045][T11463]  do_sys_openat2+0x11b/0x1d0
[  429.950078][T11463]  ? __pfx_do_sys_openat2+0x10/0x10
[  429.950129][T11463]  __x64_sys_openat+0x174/0x210
[  429.950166][T11463]  ? __pfx___x64_sys_openat+0x10/0x10
[  429.950204][T11463]  ? rcu_is_watching+0x12/0xc0
[  429.950243][T11463]  do_syscall_64+0xcd/0x230
[  429.950281][T11463]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  429.950307][T11463] RIP: 0033:0x7f16a538e969
[  429.950331][T11463] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  429.950358][T11463] RSP: 002b:00007f16a626f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  429.950385][T11463] RAX: ffffffffffffffda RBX: 00007f16a55b5fa0 RCX: 00007f16a538e969
[  429.950403][T11463] RDX: 0000000000040002 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  429.950421][T11463] RBP: 00007f16a5410ab1 R08: 0000000000000000 R09: 0000000000000000
[  429.950436][T11463] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000
[  429.950452][T11463] R13: 0000000000000000 R14: 00007f16a55b5fa0 R15: 00007ffd7e604378
[  429.950487][T11463]  </TASK>
[  430.260730][T11463] Mem-Info:
[  430.299799][T11463] active_anon:56421 inactive_anon:0 isolated_anon:0
[  430.299799][T11463]  active_file:8055 inactive_file:47286 isolated_file:0
[  430.299799][T11463]  unevictable:768 dirty:575 writeback:0
[  430.299799][T11463]  slab_reclaimable:10770 slab_unreclaimable:97337
[  430.299799][T11463]  mapped:36360 shmem:38176 pagetables:1224
[  430.299799][T11463]  sec_pagetables:0 bounce:0
[  430.299799][T11463]  kernel_misc_reclaimable:0
[  430.299799][T11463]  free:1288271 free_pcp:2171 free_cma:0
[  430.621167][T11463] Node 0 active_anon:238208kB inactive_anon:0kB active_file:32220kB inactive_file:189136kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:151680kB dirty:2392kB writeback:0kB shmem:164112kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11796kB pagetables:4864kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  430.703290][T11463] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:8kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  430.765394][T11463] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  430.944058][T11463] lowmem_reserve[]: 0 2484 2486 2486 2486
[  430.949983][T11463] Node 0 DMA32 free:1203804kB boost:0kB min:34108kB low:42632kB high:51156kB reserved_highatomic:0KB active_anon:250460kB inactive_anon:0kB active_file:32220kB inactive_file:187316kB unevictable:1536kB writepending:2392kB present:3129332kB managed:2544188kB mlocked:0kB bounce:0kB free_pcp:3056kB local_pcp:2408kB free_cma:0kB
[  431.219479][T11463] lowmem_reserve[]: 0 0 1 1 1
[  431.259712][T11463] Node 0 Normal free:28kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1820kB unevictable:0kB writepending:0kB present:1048580kB managed:1900kB mlocked:0kB bounce:0kB free_pcp:4kB local_pcp:4kB free_cma:0kB
[  431.490046][T11463] lowmem_reserve[]: 0 0 0 0 0
[  431.515216][T11463] Node 1 Normal free:3913268kB boost:0kB min:55768kB low:69708kB high:83648kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:8kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:2396kB local_pcp:2396kB free_cma:0kB
[  431.644007][T11463] lowmem_reserve[]: 0 0 0 0 0
[  431.648886][T11463] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  431.743343][T11463] Node 0 DMA32: 9376*4kB (UME) 5334*8kB (UME) 2962*16kB (UME) 1619*32kB (UME) 378*64kB (UME) 206*128kB (UM) 138*256kB (UM) 44*512kB (UME) 18*1024kB (UM) 3*2048kB (ME) 232*4096kB (UM) = 1262640kB
[  431.778682][T11463] Node 0 Normal: 3*4kB (M) 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 28kB
[  431.846045][T11463] Node 1 Normal: 204*4kB (UME) 53*8kB (UME) 36*16kB (UME) 189*32kB (UME) 86*64kB (UME) 22*128kB (UME) 21*256kB (UME) 9*512kB (UME) 2*1024kB (U) 7*2048kB (UM) 945*4096kB (M) = 3913272kB
[  431.925696][T11494] FAULT_INJECTION: forcing a failure.
[  431.925696][T11494] name failslab, interval 1, probability 0, space 0, times 0
[  431.940229][T11494] CPU: 1 UID: 0 PID: 11494 Comm: syz.4.1273 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[  431.940277][T11494] Tainted: [U]=USER
[  431.940288][T11494] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  431.940306][T11494] Call Trace:
[  431.940316][T11494]  <TASK>
[  431.940328][T11494]  dump_stack_lvl+0x16c/0x1f0
[  431.940370][T11494]  should_fail_ex+0x512/0x640
[  431.940400][T11494]  should_failslab+0xc2/0x120
[  431.940422][T11494]  __kmalloc_cache_noprof+0x6a/0x3e0
[  431.940450][T11494]  ? cfmuxl_create+0x40/0x210
[  431.940477][T11494]  ? __pfx_caif_init_net+0x10/0x10
[  431.940499][T11494]  cfmuxl_create+0x40/0x210
[  431.940521][T11494]  cfcnfg_create+0x78/0x500
[  431.940540][T11494]  ? debug_mutex_init+0x37/0x70
[  431.940567][T11494]  ? __pfx_caif_init_net+0x10/0x10
[  431.940585][T11494]  caif_init_net+0x7d/0xe0
[  431.940604][T11494]  ops_init+0x1df/0x5f0
[  431.940627][T11494]  setup_net+0x21e/0x850
[  431.940650][T11494]  ? __pfx_setup_net+0x10/0x10
[  431.940668][T11494]  ? lockdep_init_map_type+0x5c/0x280
[  431.940689][T11494]  ? __pfx_down_read_killable+0x10/0x10
[  431.940717][T11494]  ? debug_mutex_init+0x37/0x70
[  431.940745][T11494]  copy_net_ns+0x2a6/0x5f0
[  431.940767][T11494]  create_new_namespaces+0x3ea/0xad0
[  431.940791][T11494]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  431.940811][T11494]  ksys_unshare+0x45b/0xa40
[  431.940834][T11494]  ? __pfx_ksys_unshare+0x10/0x10
[  431.940854][T11494]  ? xfd_validate_state+0x5d/0x180
[  431.940891][T11494]  ? rcu_is_watching+0x12/0xc0
[  431.940912][T11494]  __x64_sys_unshare+0x31/0x40
[  431.940933][T11494]  do_syscall_64+0xcd/0x230
[  431.940957][T11494]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  431.940974][T11494] RIP: 0033:0x7f6cdfd8e969
[  431.940990][T11494] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  431.941009][T11494] RSP: 002b:00007f6ce0b62038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  431.941029][T11494] RAX: ffffffffffffffda RBX: 00007f6cdffb6160 RCX: 00007f6cdfd8e969
[  431.941042][T11494] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  431.941053][T11494] RBP: 00007f6cdfe10ab1 R08: 0000000000000000 R09: 0000000000000000
[  431.941064][T11494] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  431.941074][T11494] R13: 0000000000000000 R14: 00007f6cdffb6160 R15: 00007ffc02876c28
[  431.941095][T11494]  </TASK>
[  432.182818][T11463] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  432.192511][T11463] Node 0 hugepages_total=1 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  432.207080][T11463] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  432.217927][T11463] Node 1 hugepages_total=3 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB
[  432.228880][T11463] 85245 total pagecache pages
[  432.235631][T11463] 0 pages in swap cache
[  432.239928][T11463] Free swap  = 124996kB
[  432.244247][T11463] Total swap = 124996kB
[  432.248525][T11463] 2097051 pages RAM
[  432.254485][T11463] 0 pages HighMem/MovableOnly
[  432.259314][T11463] 428898 pages reserved
[  432.483500][T11463] 0 pages cma reserved
[  432.530953][T11463] tty tty3: ldisc open failed (-12), clearing slot 2
[  433.014774][T11498] net_ratelimit: 27 callbacks suppressed
[  433.014805][T11498] netlink: set zone limit has 8 unknown bytes
[  433.485637][T11515] openvswitch: ovs_: Dropping previously announced user features
[  434.675571][T11536] netlink: set zone limit has 8 unknown bytes
[  435.807220][T11559] openvswitch: ovs_: Dropping previously announced user features
[  437.639870][T11570] Process accounting paused
[  437.683692][T11585] sd 0:0:1:0: PR command failed: 1026
[  437.751913][T11585] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  437.758760][T11585] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  439.120123][T11598] FAULT_INJECTION: forcing a failure.
[  439.120123][T11598] name failslab, interval 1, probability 0, space 0, times 0
[  439.141897][T11598] CPU: 1 UID: 0 PID: 11598 Comm: syz.1.1297 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[  439.141952][T11598] Tainted: [U]=USER
[  439.141961][T11598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  439.141978][T11598] Call Trace:
[  439.141989][T11598]  <TASK>
[  439.142000][T11598]  dump_stack_lvl+0x16c/0x1f0
[  439.142046][T11598]  should_fail_ex+0x512/0x640
[  439.142090][T11598]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  439.142128][T11598]  should_failslab+0xc2/0x120
[  439.142163][T11598]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  439.142193][T11598]  ? __pfx___might_resched+0x10/0x10
[  439.142221][T11598]  ? alloc_vmap_area+0x613/0x2970
[  439.142269][T11598]  alloc_vmap_area+0x613/0x2970
[  439.142329][T11598]  ? __pfx_alloc_vmap_area+0x10/0x10
[  439.142385][T11598]  __get_vm_area_node+0x1a7/0x300
[  439.142441][T11598]  __vmalloc_node_range_noprof+0x277/0x1540
[  439.142492][T11598]  ? n_tty_open+0x1a/0x170
[  439.142551][T11598]  ? n_tty_open+0x1a/0x170
[  439.142605][T11598]  ? __ldsem_down_write_nested+0x10e/0x850
[  439.142649][T11598]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  439.142708][T11598]  ? n_tty_open+0x1a/0x170
[  439.142747][T11598]  vzalloc_noprof+0x6b/0x90
[  439.142791][T11598]  ? n_tty_open+0x1a/0x170
[  439.142830][T11598]  ? __pfx_n_tty_open+0x10/0x10
[  439.142864][T11598]  n_tty_open+0x1a/0x170
[  439.142900][T11598]  ? __pfx_n_tty_open+0x10/0x10
[  439.142936][T11598]  tty_ldisc_open+0x9c/0x120
[  439.142965][T11598]  tty_ldisc_setup+0x40/0x100
[  439.142995][T11598]  tty_init_dev.part.0+0x1ec/0x500
[  439.143036][T11598]  tty_open+0xa50/0xf90
[  439.143079][T11598]  ? __pfx_tty_open+0x10/0x10
[  439.143115][T11598]  ? chrdev_open+0x10b/0x6a0
[  439.143151][T11598]  ? __pfx_tty_open+0x10/0x10
[  439.143184][T11598]  chrdev_open+0x231/0x6a0
[  439.143213][T11598]  ? __pfx_apparmor_file_open+0x10/0x10
[  439.143251][T11598]  ? __pfx_chrdev_open+0x10/0x10
[  439.143285][T11598]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  439.143338][T11598]  do_dentry_open+0x741/0x1c10
[  439.143369][T11598]  ? __pfx_chrdev_open+0x10/0x10
[  439.143408][T11598]  vfs_open+0x82/0x3f0
[  439.143456][T11598]  path_openat+0x1e5e/0x2d40
[  439.143502][T11598]  ? __pfx_path_openat+0x10/0x10
[  439.143542][T11598]  do_filp_open+0x20b/0x470
[  439.143570][T11598]  ? __pfx_do_filp_open+0x10/0x10
[  439.143640][T11598]  ? alloc_fd+0x471/0x7d0
[  439.143697][T11598]  do_sys_openat2+0x11b/0x1d0
[  439.143734][T11598]  ? __pfx_do_sys_openat2+0x10/0x10
[  439.143790][T11598]  __x64_sys_openat+0x174/0x210
[  439.143828][T11598]  ? __pfx___x64_sys_openat+0x10/0x10
[  439.143867][T11598]  ? rcu_is_watching+0x12/0xc0
[  439.143906][T11598]  do_syscall_64+0xcd/0x230
[  439.143949][T11598]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  439.143979][T11598] RIP: 0033:0x7f16a538e969
[  439.144004][T11598] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  439.144033][T11598] RSP: 002b:00007f16a624e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  439.144063][T11598] RAX: ffffffffffffffda RBX: 00007f16a55b6080 RCX: 00007f16a538e969
[  439.144082][T11598] RDX: 0000000000040002 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  439.144099][T11598] RBP: 00007f16a5410ab1 R08: 0000000000000000 R09: 0000000000000000
[  439.144116][T11598] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000
[  439.144133][T11598] R13: 0000000000000000 R14: 00007f16a55b6080 R15: 00007ffd7e604378
[  439.144174][T11598]  </TASK>
[  439.146901][T11598] tty tty3: ldisc open failed (-12), clearing slot 2
[  439.933010][T11607] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1300'.
[  440.538559][T11612] openvswitch: ovs_: Dropping previously announced user features
[  442.412374][T11632] FAULT_INJECTION: forcing a failure.
[  442.412374][T11632] name failslab, interval 1, probability 0, space 0, times 0
[  442.491895][T11632] CPU: 0 UID: 0 PID: 11632 Comm: syz.1.1304 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[  442.491952][T11632] Tainted: [U]=USER
[  442.491961][T11632] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  442.491978][T11632] Call Trace:
[  442.491986][T11632]  <TASK>
[  442.491998][T11632]  dump_stack_lvl+0x16c/0x1f0
[  442.492047][T11632]  should_fail_ex+0x512/0x640
[  442.492081][T11632]  ? __kmalloc_noprof+0xbf/0x510
[  442.492115][T11632]  ? lsm_blob_alloc+0x68/0x90
[  442.492156][T11632]  should_failslab+0xc2/0x120
[  442.492188][T11632]  __kmalloc_noprof+0xd2/0x510
[  442.492227][T11632]  lsm_blob_alloc+0x68/0x90
[  442.492269][T11632]  security_sk_alloc+0x30/0x270
[  442.492299][T11632]  sk_prot_alloc+0xfb/0x2a0
[  442.492340][T11632]  sk_alloc+0x36/0xc20
[  442.492368][T11632]  inet6_create+0x381/0x1300
[  442.492397][T11632]  ? inet6_create+0x7f/0x1300
[  442.492427][T11632]  __sock_create+0x335/0x8d0
[  442.492473][T11632]  inet_ctl_sock_create+0x94/0x230
[  442.492508][T11632]  ? __pfx_inet_ctl_sock_create+0x10/0x10
[  442.492540][T11632]  ? lockdep_init_map_type+0x5c/0x280
[  442.492574][T11632]  ? do_init_timer+0xc9/0x110
[  442.492617][T11632]  ? __pfx_sctp_ctrlsock_init+0x10/0x10
[  442.492653][T11632]  sctp_ctrlsock_init+0x40/0xf0
[  442.492688][T11632]  ops_init+0x1df/0x5f0
[  442.492727][T11632]  setup_net+0x21e/0x850
[  442.492763][T11632]  ? __pfx_setup_net+0x10/0x10
[  442.492792][T11632]  ? lockdep_init_map_type+0x5c/0x280
[  442.492829][T11632]  ? __pfx_down_read_killable+0x10/0x10
[  442.492876][T11632]  ? debug_mutex_init+0x37/0x70
[  442.492919][T11632]  copy_net_ns+0x2a6/0x5f0
[  442.492960][T11632]  create_new_namespaces+0x3ea/0xad0
[  442.493000][T11632]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  442.493033][T11632]  ksys_unshare+0x45b/0xa40
[  442.493069][T11632]  ? __pfx_ksys_unshare+0x10/0x10
[  442.493101][T11632]  ? xfd_validate_state+0x5d/0x180
[  442.493143][T11632]  ? rcu_is_watching+0x12/0xc0
[  442.493177][T11632]  __x64_sys_unshare+0x31/0x40
[  442.493209][T11632]  do_syscall_64+0xcd/0x230
[  442.493245][T11632]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  442.493271][T11632] RIP: 0033:0x7f16a538e969
[  442.493295][T11632] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  442.493321][T11632] RSP: 002b:00007f16a622d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  442.493349][T11632] RAX: ffffffffffffffda RBX: 00007f16a55b6160 RCX: 00007f16a538e969
[  442.493367][T11632] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  442.493383][T11632] RBP: 00007f16a5410ab1 R08: 0000000000000000 R09: 0000000000000000
[  442.493399][T11632] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  442.493415][T11632] R13: 0000000000000000 R14: 00007f16a55b6160 R15: 00007ffd7e604378
[  442.493451][T11632]  </TASK>
[  442.781270][    C0] vkms_vblank_simulate: vblank timer overrun
[  443.645254][T11646] input input10: cannot allocate more than FF_MAX_EFFECTS effects
[  445.133113][T11669] Invalid ELF header magic: != ELF
[  445.476486][T11674] Invalid ELF header magic: != ELF
[  445.505112][T11679] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1316'.
[  445.679058][T11679] team0: Port device team_slave_0 removed
[  445.823583][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  445.838627][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  447.037933][ T5830] Bluetooth: hci2: Unable to find connection for big 0xd2
[  447.622039][T11726] openvswitch: ovs_: Dropping previously announced user features
[  447.996041][T11734] hub 3-0:1.0: USB hub found
[  448.027220][T11734] hub 3-0:1.0: 1 port detected
[  448.069392][T11734] usb usb3: authorized to connect
[  448.647596][T11748] netlink: set zone limit has 8 unknown bytes
[  449.772959][T11762] netlink: 'syz.2.1336': attribute type 16 has an invalid length.
[  449.781546][T11762] netlink: 326 bytes leftover after parsing attributes in process `syz.2.1336'.
[  449.820208][T11762] veth1_macvtap: left promiscuous mode
[  449.922166][T11763] sctp: [Deprecated]: syz.1.1335 (pid 11763) Use of int in maxseg socket option.
[  449.922166][T11763] Use struct sctp_assoc_value instead
[  450.299883][T11771] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  451.203116][T11788] netlink: set zone limit has 8 unknown bytes
[  452.482540][T11808] FAULT_INJECTION: forcing a failure.
[  452.482540][T11808] name failslab, interval 1, probability 0, space 0, times 0
[  452.497721][T11808] CPU: 1 UID: 0 PID: 11808 Comm: syz.3.1346 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[  452.497775][T11808] Tainted: [U]=USER
[  452.497785][T11808] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  452.497805][T11808] Call Trace:
[  452.497815][T11808]  <TASK>
[  452.497826][T11808]  dump_stack_lvl+0x16c/0x1f0
[  452.497872][T11808]  should_fail_ex+0x512/0x640
[  452.497915][T11808]  ? __kmalloc_node_noprof+0xc5/0x500
[  452.497954][T11808]  should_failslab+0xc2/0x120
[  452.497990][T11808]  __kmalloc_node_noprof+0xd8/0x500
[  452.498025][T11808]  ? __vmalloc_node_range_noprof+0x3eb/0x1540
[  452.498081][T11808]  __vmalloc_node_range_noprof+0x3eb/0x1540
[  452.498142][T11808]  ? n_tty_open+0x1a/0x170
[  452.498183][T11808]  ? __ldsem_down_write_nested+0x10e/0x850
[  452.498225][T11808]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  452.498281][T11808]  ? n_tty_open+0x1a/0x170
[  452.498320][T11808]  vzalloc_noprof+0x6b/0x90
[  452.498363][T11808]  ? n_tty_open+0x1a/0x170
[  452.498398][T11808]  ? __pfx_n_tty_open+0x10/0x10
[  452.498432][T11808]  n_tty_open+0x1a/0x170
[  452.498467][T11808]  ? __pfx_n_tty_open+0x10/0x10
[  452.498504][T11808]  tty_ldisc_open+0x9c/0x120
[  452.498533][T11808]  tty_ldisc_setup+0x40/0x100
[  452.498573][T11808]  tty_init_dev.part.0+0x1ec/0x500
[  452.498614][T11808]  tty_open+0xa50/0xf90
[  452.498659][T11808]  ? __pfx_tty_open+0x10/0x10
[  452.498695][T11808]  ? chrdev_open+0x10b/0x6a0
[  452.498729][T11808]  ? __pfx_tty_open+0x10/0x10
[  452.498760][T11808]  chrdev_open+0x231/0x6a0
[  452.498786][T11808]  ? __pfx_apparmor_file_open+0x10/0x10
[  452.498818][T11808]  ? __pfx_chrdev_open+0x10/0x10
[  452.498849][T11808]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  452.498896][T11808]  do_dentry_open+0x741/0x1c10
[  452.498926][T11808]  ? __pfx_chrdev_open+0x10/0x10
[  452.498963][T11808]  vfs_open+0x82/0x3f0
[  452.499003][T11808]  path_openat+0x1e5e/0x2d40
[  452.499046][T11808]  ? __pfx_path_openat+0x10/0x10
[  452.499085][T11808]  do_filp_open+0x20b/0x470
[  452.499112][T11808]  ? __pfx_do_filp_open+0x10/0x10
[  452.499171][T11808]  ? alloc_fd+0x471/0x7d0
[  452.499227][T11808]  do_sys_openat2+0x11b/0x1d0
[  452.499265][T11808]  ? __pfx_do_sys_openat2+0x10/0x10
[  452.499320][T11808]  __x64_sys_openat+0x174/0x210
[  452.499358][T11808]  ? __pfx___x64_sys_openat+0x10/0x10
[  452.499398][T11808]  ? rcu_is_watching+0x12/0xc0
[  452.499440][T11808]  do_syscall_64+0xcd/0x230
[  452.499483][T11808]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  452.499513][T11808] RIP: 0033:0x7f825fb8e969
[  452.499539][T11808] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  452.499579][T11808] RSP: 002b:00007f8260a9b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  452.499608][T11808] RAX: ffffffffffffffda RBX: 00007f825fdb5fa0 RCX: 00007f825fb8e969
[  452.499629][T11808] RDX: 0000000000040002 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  452.499649][T11808] RBP: 00007f825fc10ab1 R08: 0000000000000000 R09: 0000000000000000
[  452.499666][T11808] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000
[  452.499683][T11808] R13: 0000000000000000 R14: 00007f825fdb5fa0 R15: 00007ffc7ca84688
[  452.499723][T11808]  </TASK>
[  452.570378][T11808] warn_alloc: 1 callbacks suppressed
[  452.570403][T11808] syz.3.1346: vmalloc error: size 12288, failed to allocated page array size 24, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  452.921176][T11808] CPU: 0 UID: 0 PID: 11808 Comm: syz.3.1346 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[  452.921230][T11808] Tainted: [U]=USER
[  452.921239][T11808] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  452.921256][T11808] Call Trace:
[  452.921266][T11808]  <TASK>
[  452.921277][T11808]  dump_stack_lvl+0x16c/0x1f0
[  452.921324][T11808]  warn_alloc+0x248/0x3a0
[  452.921361][T11808]  ? __pfx_warn_alloc+0x10/0x10
[  452.921387][T11808]  ? dump_stack_lvl+0x1a1/0x1f0
[  452.921437][T11808]  ? rcu_is_watching+0x12/0xc0
[  452.921464][T11808]  ? __kmalloc_node_noprof+0x23b/0x500
[  452.921506][T11808]  __vmalloc_node_range_noprof+0x1110/0x1540
[  452.921569][T11808]  ? n_tty_open+0x1a/0x170
[  452.921613][T11808]  ? __ldsem_down_write_nested+0x10e/0x850
[  452.921656][T11808]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  452.921728][T11808]  ? n_tty_open+0x1a/0x170
[  452.921763][T11808]  vzalloc_noprof+0x6b/0x90
[  452.921803][T11808]  ? n_tty_open+0x1a/0x170
[  452.921834][T11808]  ? __pfx_n_tty_open+0x10/0x10
[  452.921866][T11808]  n_tty_open+0x1a/0x170
[  452.921900][T11808]  ? __pfx_n_tty_open+0x10/0x10
[  452.921935][T11808]  tty_ldisc_open+0x9c/0x120
[  452.921964][T11808]  tty_ldisc_setup+0x40/0x100
[  452.921996][T11808]  tty_init_dev.part.0+0x1ec/0x500
[  452.922033][T11808]  tty_open+0xa50/0xf90
[  452.922076][T11808]  ? __pfx_tty_open+0x10/0x10
[  452.922109][T11808]  ? chrdev_open+0x10b/0x6a0
[  452.922144][T11808]  ? __pfx_tty_open+0x10/0x10
[  452.922177][T11808]  chrdev_open+0x231/0x6a0
[  452.922205][T11808]  ? __pfx_apparmor_file_open+0x10/0x10
[  452.922240][T11808]  ? __pfx_chrdev_open+0x10/0x10
[  452.922269][T11808]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  452.922314][T11808]  do_dentry_open+0x741/0x1c10
[  452.922343][T11808]  ? __pfx_chrdev_open+0x10/0x10
[  452.922381][T11808]  vfs_open+0x82/0x3f0
[  452.922422][T11808]  path_openat+0x1e5e/0x2d40
[  452.922465][T11808]  ? __pfx_path_openat+0x10/0x10
[  452.922502][T11808]  do_filp_open+0x20b/0x470
[  452.922529][T11808]  ? __pfx_do_filp_open+0x10/0x10
[  452.922586][T11808]  ? alloc_fd+0x471/0x7d0
[  452.922639][T11808]  do_sys_openat2+0x11b/0x1d0
[  452.922676][T11808]  ? __pfx_do_sys_openat2+0x10/0x10
[  452.922738][T11808]  __x64_sys_openat+0x174/0x210
[  452.922776][T11808]  ? __pfx___x64_sys_openat+0x10/0x10
[  452.922817][T11808]  ? rcu_is_watching+0x12/0xc0
[  452.922854][T11808]  do_syscall_64+0xcd/0x230
[  452.922895][T11808]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  452.922925][T11808] RIP: 0033:0x7f825fb8e969
[  452.922949][T11808] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  452.922977][T11808] RSP: 002b:00007f8260a9b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  452.923006][T11808] RAX: ffffffffffffffda RBX: 00007f825fdb5fa0 RCX: 00007f825fb8e969
[  452.923023][T11808] RDX: 0000000000040002 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  452.923040][T11808] RBP: 00007f825fc10ab1 R08: 0000000000000000 R09: 0000000000000000
[  452.923055][T11808] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000
[  452.923071][T11808] R13: 0000000000000000 R14: 00007f825fdb5fa0 R15: 00007ffc7ca84688
[  452.923109][T11808]  </TASK>
[  453.272452][T11808] Mem-Info:
[  453.275688][T11808] active_anon:24597 inactive_anon:0 isolated_anon:0
[  453.275688][T11808]  active_file:9032 inactive_file:46878 isolated_file:0
[  453.275688][T11808]  unevictable:768 dirty:1048 writeback:0
[  453.275688][T11808]  slab_reclaimable:11022 slab_unreclaimable:96025
[  453.275688][T11808]  mapped:29569 shmem:5341 pagetables:1255
[  453.275688][T11808]  sec_pagetables:0 bounce:0
[  453.275688][T11808]  kernel_misc_reclaimable:0
[  453.275688][T11808]  free:1321474 free_pcp:1649 free_cma:0
[  453.628966][T11808] Node 0 active_anon:114356kB inactive_anon:0kB active_file:43228kB inactive_file:187504kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:136216kB dirty:4192kB writeback:0kB shmem:35824kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11824kB pagetables:4860kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  453.677510][T11808] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:8kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  453.715382][T11808] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  453.795802][T11808] lowmem_reserve[]: 0 2484 2486 2486 2486
[  453.805922][T11808] Node 0 DMA32 free:1332776kB boost:0kB min:34108kB low:42632kB high:51156kB reserved_highatomic:0KB active_anon:117708kB inactive_anon:0kB active_file:44128kB inactive_file:185684kB unevictable:1536kB writepending:4192kB present:3129332kB managed:2544188kB mlocked:0kB bounce:0kB free_pcp:3040kB local_pcp:436kB free_cma:0kB
[  453.849479][T11808] lowmem_reserve[]: 0 0 1 1 1
[  453.858406][T11820] openvswitch: ovs_: Dropping previously announced user features
[  453.861671][T11808] Node 0 Normal free:28kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1820kB unevictable:0kB writepending:0kB present:1048580kB managed:1900kB mlocked:0kB bounce:0kB free_pcp:4kB local_pcp:4kB free_cma:0kB
[  453.907854][T11808] lowmem_reserve[]: 0 0 0 0 0
[  453.915382][T11808] Node 1 Normal free:3914472kB boost:0kB min:55768kB low:69708kB high:83648kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:8kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:1160kB local_pcp:248kB free_cma:0kB
[  454.021244][T11808] lowmem_reserve[]: 0 0 0 0 0
[  454.092814][T11808] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  454.144082][T11808] Node 0 DMA32: 654*4kB (UME) 645*8kB (UM) 3322*16kB (UME) 2539*32kB (UME) 1171*64kB (UME) 437*128kB (UME) 188*256kB (UM) 56*512kB (UME) 20*1024kB (UM) 6*2048kB (UME) 231*4096kB (UM) = 1328800kB
[  454.185762][T11808] Node 0 Normal: 3*4kB (M) 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 28kB
[  454.237131][T11808] Node 1 Normal: 139*4kB (UME) 52*8kB (UME) 37*16kB (UME) 190*32kB (UME) 87*64kB (UME) 23*128kB (UME) 20*256kB (UME) 10*512kB (UME) 3*1024kB (UM) 7*2048kB (UM) 945*4096kB (M) = 3914524kB
[  454.265874][T11808] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  454.303129][T11808] Node 0 hugepages_total=1 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  454.431128][T11808] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  454.466742][T11808] Node 1 hugepages_total=3 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB
[  454.498816][T11808] 70523 total pagecache pages
[  454.522234][T11808] 0 pages in swap cache
[  454.551089][T11808] Free swap  = 124996kB
[  454.555432][T11808] Total swap = 124996kB
[  454.565473][T11808] 2097051 pages RAM
[  454.593689][T11808] 0 pages HighMem/MovableOnly
[  454.598474][T11808] 428898 pages reserved
[  454.612409][T11808] 0 pages cma reserved
[  454.616634][T11808] tty tty3: ldisc open failed (-12), clearing slot 2
[  454.773432][T11837] netlink: set zone limit has 8 unknown bytes
[  454.872361][T11840] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1354'.
[  454.896658][T11840] netlink: 294 bytes leftover after parsing attributes in process `syz.3.1354'.
[  455.303970][T11855] openvswitch: ovs_: Dropping previously announced user features
[  456.364693][T11870] FAULT_INJECTION: forcing a failure.
[  456.364693][T11870] name failslab, interval 1, probability 0, space 0, times 0
[  456.377741][T11870] CPU: 1 UID: 0 PID: 11870 Comm: syz.4.1362 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[  456.377796][T11870] Tainted: [U]=USER
[  456.377807][T11870] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  456.377826][T11870] Call Trace:
[  456.377836][T11870]  <TASK>
[  456.377848][T11870]  dump_stack_lvl+0x16c/0x1f0
[  456.377893][T11870]  should_fail_ex+0x512/0x640
[  456.377933][T11870]  ? __kmalloc_node_noprof+0xc5/0x500
[  456.377972][T11870]  should_failslab+0xc2/0x120
[  456.378010][T11870]  __kmalloc_node_noprof+0xd8/0x500
[  456.378044][T11870]  ? __vmalloc_node_range_noprof+0x3eb/0x1540
[  456.378104][T11870]  __vmalloc_node_range_noprof+0x3eb/0x1540
[  456.378162][T11870]  ? n_tty_open+0x1a/0x170
[  456.378204][T11870]  ? __ldsem_down_write_nested+0x10e/0x850
[  456.378246][T11870]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  456.378302][T11870]  ? n_tty_open+0x1a/0x170
[  456.378342][T11870]  vzalloc_noprof+0x6b/0x90
[  456.378388][T11870]  ? n_tty_open+0x1a/0x170
[  456.378423][T11870]  ? __pfx_n_tty_open+0x10/0x10
[  456.378455][T11870]  n_tty_open+0x1a/0x170
[  456.378490][T11870]  ? __pfx_n_tty_open+0x10/0x10
[  456.378525][T11870]  tty_ldisc_open+0x9c/0x120
[  456.378553][T11870]  tty_ldisc_setup+0x40/0x100
[  456.378584][T11870]  tty_init_dev.part.0+0x1ec/0x500
[  456.378622][T11870]  tty_open+0xa50/0xf90
[  456.378663][T11870]  ? __pfx_tty_open+0x10/0x10
[  456.378708][T11870]  ? chrdev_open+0x10b/0x6a0
[  456.378742][T11870]  ? __pfx_tty_open+0x10/0x10
[  456.378775][T11870]  chrdev_open+0x231/0x6a0
[  456.378803][T11870]  ? __pfx_apparmor_file_open+0x10/0x10
[  456.378841][T11870]  ? __pfx_chrdev_open+0x10/0x10
[  456.378877][T11870]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  456.378932][T11870]  do_dentry_open+0x741/0x1c10
[  456.378965][T11870]  ? __pfx_chrdev_open+0x10/0x10
[  456.379006][T11870]  vfs_open+0x82/0x3f0
[  456.379051][T11870]  path_openat+0x1e5e/0x2d40
[  456.379095][T11870]  ? __pfx_path_openat+0x10/0x10
[  456.379134][T11870]  do_filp_open+0x20b/0x470
[  456.379161][T11870]  ? __pfx_do_filp_open+0x10/0x10
[  456.379218][T11870]  ? alloc_fd+0x471/0x7d0
[  456.379272][T11870]  do_sys_openat2+0x11b/0x1d0
[  456.379307][T11870]  ? __pfx_do_sys_openat2+0x10/0x10
[  456.379360][T11870]  __x64_sys_openat+0x174/0x210
[  456.379392][T11870]  ? __pfx___x64_sys_openat+0x10/0x10
[  456.379426][T11870]  ? rcu_is_watching+0x12/0xc0
[  456.379461][T11870]  do_syscall_64+0xcd/0x230
[  456.379502][T11870]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  456.379531][T11870] RIP: 0033:0x7f6cdfd8e969
[  456.379557][T11870] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  456.379586][T11870] RSP: 002b:00007f6ce0ba4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  456.379616][T11870] RAX: ffffffffffffffda RBX: 00007f6cdffb5fa0 RCX: 00007f6cdfd8e969
[  456.379635][T11870] RDX: 0000000000040002 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  456.379654][T11870] RBP: 00007f6cdfe10ab1 R08: 0000000000000000 R09: 0000000000000000
[  456.379672][T11870] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000
[  456.379701][T11870] R13: 0000000000000000 R14: 00007f6cdffb5fa0 R15: 00007ffc02876c28
[  456.379740][T11870]  </TASK>
[  456.379848][T11870] tty tty3: ldisc open failed (-12), clearing slot 2
[  456.808665][T11878] cgroup: fork rejected by pids controller in /syz3
[  458.271858][T11933] ksmbd: Unknown IPC event: 14, ignore.
[  460.162381][T11953] input input11: cannot allocate more than FF_MAX_EFFECTS effects
[  461.704478][T11959] FAULT_INJECTION: forcing a failure.
[  461.704478][T11959] name failslab, interval 1, probability 0, space 0, times 0
[  461.741834][T11959] CPU: 1 UID: 0 PID: 11959 Comm: syz.4.1372 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[  461.741891][T11959] Tainted: [U]=USER
[  461.741900][T11959] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  461.741919][T11959] Call Trace:
[  461.741931][T11959]  <TASK>
[  461.741942][T11959]  dump_stack_lvl+0x16c/0x1f0
[  461.741995][T11959]  should_fail_ex+0x512/0x640
[  461.742033][T11959]  ? __kmalloc_node_noprof+0xc5/0x500
[  461.742074][T11959]  should_failslab+0xc2/0x120
[  461.742114][T11959]  __kmalloc_node_noprof+0xd8/0x500
[  461.742150][T11959]  ? __vmalloc_node_range_noprof+0x3eb/0x1540
[  461.742203][T11959]  __vmalloc_node_range_noprof+0x3eb/0x1540
[  461.742265][T11959]  ? n_tty_open+0x1a/0x170
[  461.742307][T11959]  ? __ldsem_down_write_nested+0x10e/0x850
[  461.742350][T11959]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  461.742408][T11959]  ? n_tty_open+0x1a/0x170
[  461.742444][T11959]  vzalloc_noprof+0x6b/0x90
[  461.742487][T11959]  ? n_tty_open+0x1a/0x170
[  461.742523][T11959]  ? __pfx_n_tty_open+0x10/0x10
[  461.742559][T11959]  n_tty_open+0x1a/0x170
[  461.742595][T11959]  ? __pfx_n_tty_open+0x10/0x10
[  461.742630][T11959]  tty_ldisc_open+0x9c/0x120
[  461.742659][T11959]  tty_ldisc_setup+0x40/0x100
[  461.742700][T11959]  tty_init_dev.part.0+0x1ec/0x500
[  461.742740][T11959]  tty_open+0xa50/0xf90
[  461.742782][T11959]  ? __pfx_tty_open+0x10/0x10
[  461.742820][T11959]  ? chrdev_open+0x10b/0x6a0
[  461.742859][T11959]  ? __pfx_tty_open+0x10/0x10
[  461.742893][T11959]  chrdev_open+0x231/0x6a0
[  461.742921][T11959]  ? __pfx_apparmor_file_open+0x10/0x10
[  461.742958][T11959]  ? __pfx_chrdev_open+0x10/0x10
[  461.742993][T11959]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  461.743045][T11959]  do_dentry_open+0x741/0x1c10
[  461.743076][T11959]  ? __pfx_chrdev_open+0x10/0x10
[  461.743116][T11959]  vfs_open+0x82/0x3f0
[  461.743159][T11959]  path_openat+0x1e5e/0x2d40
[  461.743204][T11959]  ? __pfx_path_openat+0x10/0x10
[  461.743243][T11959]  do_filp_open+0x20b/0x470
[  461.743271][T11959]  ? __pfx_do_filp_open+0x10/0x10
[  461.743330][T11959]  ? alloc_fd+0x471/0x7d0
[  461.743386][T11959]  do_sys_openat2+0x11b/0x1d0
[  461.743423][T11959]  ? __pfx_do_sys_openat2+0x10/0x10
[  461.743474][T11959]  __x64_sys_openat+0x174/0x210
[  461.743512][T11959]  ? __pfx___x64_sys_openat+0x10/0x10
[  461.743554][T11959]  ? rcu_is_watching+0x12/0xc0
[  461.743594][T11959]  do_syscall_64+0xcd/0x230
[  461.743638][T11959]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  461.743668][T11959] RIP: 0033:0x7f6cdfd8e969
[  461.743704][T11959] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  461.743733][T11959] RSP: 002b:00007f6ce0b83038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  461.743763][T11959] RAX: ffffffffffffffda RBX: 00007f6cdffb6080 RCX: 00007f6cdfd8e969
[  461.743783][T11959] RDX: 0000000000040002 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  461.743805][T11959] RBP: 00007f6cdfe10ab1 R08: 0000000000000000 R09: 0000000000000000
[  461.743825][T11959] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000
[  461.743844][T11959] R13: 0000000000000000 R14: 00007f6cdffb6080 R15: 00007ffc02876c28
[  461.743889][T11959]  </TASK>
[  461.743995][T11959] tty tty3: ldisc open failed (-12), clearing slot 2
[  463.180124][T11944] netlink: set zone limit has 8 unknown bytes
[  466.593067][T11986] block2mtd: illegal erase size
[  470.123918][T12008] FAULT_INJECTION: forcing a failure.
[  470.123918][T12008] name fail_futex, interval 1, probability 0, space 0, times 0
[  470.193310][T12008] CPU: 0 UID: 0 PID: 12008 Comm: syz.1.1382 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[  470.193368][T12008] Tainted: [U]=USER
[  470.193379][T12008] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  470.193397][T12008] Call Trace:
[  470.193407][T12008]  <TASK>
[  470.193418][T12008]  dump_stack_lvl+0x16c/0x1f0
[  470.193471][T12008]  should_fail_ex+0x512/0x640
[  470.193525][T12008]  get_futex_key+0x49e/0x1000
[  470.193562][T12008]  ? __pfx_get_futex_key+0x10/0x10
[  470.193615][T12008]  futex_wake+0xe7/0x4e0
[  470.193658][T12008]  ? __pfx_futex_wake+0x10/0x10
[  470.193701][T12008]  ? percpu_counter_add_batch+0xb8/0x1f0
[  470.193740][T12008]  ? errseq_sample+0x53/0x70
[  470.193789][T12008]  ? file_init_path+0x4fe/0x760
[  470.193834][T12008]  do_futex+0x1e3/0x350
[  470.193865][T12008]  ? __pfx_do_futex+0x10/0x10
[  470.193897][T12008]  ? fd_install+0x225/0x750
[  470.193947][T12008]  __x64_sys_futex+0x1e0/0x4c0
[  470.193982][T12008]  ? __sys_socket+0xac/0x260
[  470.194025][T12008]  ? __pfx___x64_sys_futex+0x10/0x10
[  470.194059][T12008]  ? rcu_is_watching+0x12/0xc0
[  470.194095][T12008]  do_syscall_64+0xcd/0x230
[  470.194137][T12008]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  470.194166][T12008] RIP: 0033:0x7f16a538e969
[  470.194188][T12008] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  470.194220][T12008] RSP: 002b:00007f16a624e0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  470.194252][T12008] RAX: ffffffffffffffda RBX: 00007f16a55b6088 RCX: 00007f16a538e969
[  470.194273][T12008] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f16a55b608c
[  470.194293][T12008] RBP: 00007f16a55b6080 R08: 00007f16a6270000 R09: 0000000000000000
[  470.194312][T12008] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f16a55b608c
[  470.194332][T12008] R13: 0000000000000000 R14: 00007ffd7e604290 R15: 00007ffd7e604378
[  470.194367][T12008]  </TASK>
[  470.417488][T12017] netlink: set zone limit has 8 unknown bytes
[  472.092923][T12039] random: crng reseeded on system resumption
[  477.990488][T11984] Process accounting resumed
[  478.080431][T12096] Invalid ELF header magic: != ELF
[  478.168027][   T30] audit: type=1804 audit(4294967332.730:14): pid=12091 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.1398" name="/newroot/sys/kernel/tracing/events/vmalloc/filter" dev="tracefs" ino=19680823 res=1 errno=0
[  479.070808][T12102] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  481.069853][T12128] can: request_module (can-proto-4) failed.
[  481.111479][T12132] FAULT_INJECTION: forcing a failure.
[  481.111479][T12132] name fail_futex, interval 1, probability 0, space 0, times 0
[  481.144811][T12111] syz.2.1403 (12111) used greatest stack depth: 19176 bytes left
[  481.170311][T12132] CPU: 0 UID: 0 PID: 12132 Comm: syz.1.1407 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[  481.170371][T12132] Tainted: [U]=USER
[  481.170383][T12132] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  481.170402][T12132] Call Trace:
[  481.170413][T12132]  <TASK>
[  481.170427][T12132]  dump_stack_lvl+0x16c/0x1f0
[  481.170476][T12132]  should_fail_ex+0x512/0x640
[  481.170523][T12132]  get_futex_key+0x49e/0x1000
[  481.170570][T12132]  ? __pfx_get_futex_key+0x10/0x10
[  481.170615][T12132]  futex_wake+0xe7/0x4e0
[  481.170657][T12132]  ? __pfx_futex_wake+0x10/0x10
[  481.170698][T12132]  ? kmem_cache_free+0x2d4/0x4d0
[  481.170729][T12132]  ? fd_install+0x225/0x750
[  481.170774][T12132]  ? putname+0x154/0x1a0
[  481.170813][T12132]  do_futex+0x1e3/0x350
[  481.170843][T12132]  ? __pfx_do_futex+0x10/0x10
[  481.170883][T12132]  __x64_sys_futex+0x1e0/0x4c0
[  481.170920][T12132]  ? __x64_sys_openat+0x174/0x210
[  481.170957][T12132]  ? __pfx___x64_sys_futex+0x10/0x10
[  481.170987][T12132]  ? rcu_is_watching+0x12/0xc0
[  481.171023][T12132]  do_syscall_64+0xcd/0x230
[  481.171062][T12132]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  481.171091][T12132] RIP: 0033:0x7f16a538e969
[  481.171115][T12132] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  481.171146][T12132] RSP: 002b:00007f16a626f0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  481.171176][T12132] RAX: ffffffffffffffda RBX: 00007f16a55b5fa8 RCX: 00007f16a538e969
[  481.171196][T12132] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f16a55b5fac
[  481.171214][T12132] RBP: 00007f16a55b5fa0 R08: 00007f16a6270000 R09: 0000000000000000
[  481.171233][T12132] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f16a55b5fac
[  481.171251][T12132] R13: 0000000000000000 R14: 00007ffd7e604290 R15: 00007ffd7e604378
[  481.171313][T12132]  </TASK>
[  481.967905][T12143] sd 0:0:1:0: PR command failed: 1026
[  481.981855][T12143] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  481.999596][T12143] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  484.366125][T12175] kexec: Could not allocate control_code_buffer
[  484.961222][T12195] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1421'.
[  485.004430][T12191] nvme_fabrics: missing parameter 'transport=%s'
[  485.061998][T12191] nvme_fabrics: missing parameter 'nqn=%s'
[  487.678700][ T5817] syz-executor invoked oom-killer: gfp_mask=0x408d40(GFP_NOFS|__GFP_ZERO|__GFP_NOFAIL|__GFP_ACCOUNT), order=0, oom_score_adj=0
[  487.738086][ T5817] CPU: 1 UID: 0 PID: 5817 Comm: syz-executor Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[  487.738134][ T5817] Tainted: [U]=USER
[  487.738144][ T5817] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  487.738159][ T5817] Call Trace:
[  487.738168][ T5817]  <TASK>
[  487.738179][ T5817]  dump_stack_lvl+0x16c/0x1f0
[  487.738223][ T5817]  dump_header+0x101/0x930
[  487.738260][ T5817]  oom_kill_process+0x270/0xa60
[  487.738291][ T5817]  ? mem_cgroup_out_of_memory+0x8c/0x270
[  487.738344][ T5817]  out_of_memory+0x350/0x1700
[  487.738376][ T5817]  ? __lock_acquire+0xaa4/0x1ba0
[  487.738412][ T5817]  ? __pfx_out_of_memory+0x10/0x10
[  487.738453][ T5817]  mem_cgroup_out_of_memory+0x205/0x270
[  487.738490][ T5817]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  487.738534][ T5817]  ? do_raw_spin_unlock+0x172/0x230
[  487.738577][ T5817]  try_charge_memcg+0xa07/0x10c0
[  487.738617][ T5817]  ? __pfx_try_charge_memcg+0x10/0x10
[  487.738647][ T5817]  ? peak_open+0x11/0x50
[  487.738685][ T5817]  ? get_mem_cgroup_from_objcg+0xd3/0x330
[  487.738731][ T5817]  obj_cgroup_charge+0x298/0x640
[  487.738770][ T5817]  __memcg_slab_post_alloc_hook+0x18a/0x940
[  487.738811][ T5817]  ? kasan_save_track+0x14/0x30
[  487.738843][ T5817]  kmem_cache_alloc_noprof+0x307/0x3b0
[  487.738874][ T5817]  ? alloc_buffer_head+0x21/0x160
[  487.738921][ T5817]  alloc_buffer_head+0x21/0x160
[  487.738956][ T5817]  folio_alloc_buffers+0x2bd/0x830
[  487.738991][ T5817]  create_empty_buffers+0x36/0x480
[  487.739019][ T5817]  folio_create_buffers+0x109/0x150
[  487.739048][ T5817]  __block_write_begin_int+0x320/0x16d0
[  487.739086][ T5817]  ? __pfx_ext4_da_get_block_prep+0x10/0x10
[  487.739131][ T5817]  ? __pfx___block_write_begin_int+0x10/0x10
[  487.739163][ T5817]  ? __pfx___might_resched+0x10/0x10
[  487.739198][ T5817]  ? __pfx_ext4_da_get_block_prep+0x10/0x10
[  487.739232][ T5817]  block_page_mkwrite+0x3d3/0x4b0
[  487.739266][ T5817]  ext4_page_mkwrite+0x8d8/0x1750
[  487.739311][ T5817]  ? __pfx_ext4_page_mkwrite+0x10/0x10
[  487.739344][ T5817]  do_page_mkwrite+0x171/0x380
[  487.739376][ T5817]  do_pte_missing+0x29c/0x3fb0
[  487.739404][ T5817]  ? __handle_mm_fault+0x1010/0x2a40
[  487.739434][ T5817]  __handle_mm_fault+0x103d/0x2a40
[  487.739471][ T5817]  ? __pfx___handle_mm_fault+0x10/0x10
[  487.739494][ T5817]  ? lock_vma_under_rcu+0x47d/0x970
[  487.739530][ T5817]  ? lock_vma_under_rcu+0x47d/0x970
[  487.739597][ T5817]  handle_mm_fault+0x3fe/0xad0
[  487.739632][ T5817]  do_user_addr_fault+0x60c/0x1370
[  487.739676][ T5817]  exc_page_fault+0x5c/0xc0
[  487.739713][ T5817]  asm_exc_page_fault+0x26/0x30
[  487.739741][ T5817] RIP: 0033:0x7fcee1077dcf
[  487.739767][ T5817] Code: 49 89 d1 48 c1 ea 03 48 83 c6 08 49 c1 e9 06 48 c1 e0 0e 48 89 d1 48 01 f8 41 81 e1 ff 3f 00 00 83 e1 07 bf 01 00 00 00 d3 e7 <41> 08 bc 01 20 20 00 00 49 39 f0 0f 85 78 fe ff ff 48 8b 9d 68 fd
[  487.739794][ T5817] RSP: 002b:00007ffc954b4db0 EFLAGS: 00010202
[  487.739819][ T5817] RAX: 00007fcedf70c000 RBX: 00000000000001c3 RCX: 0000000000000006
[  487.739835][ T5817] RDX: 1ffffffff0366e6e RSI: 000055558c9ab298 RDI: 0000000000000040
[  487.739852][ T5817] RBP: 00007ffc954b50a0 R08: 000055558c9ab378 R09: 0000000000000dcd
[  487.739868][ T5817] R10: 00007fcee1000000 R11: 00007ffc954b52b0 R12: 00007ffc954b5100
[  487.739884][ T5817] R13: 0000000000000004 R14: 00007ffc954b4e20 R15: 00007ffc954b4ef0
[  487.739923][ T5817]  </TASK>
[  487.740025][ T5817] memory: usage 307200kB, limit 307200kB, failcnt 17047
[  488.175349][ T5817] memory+swap: usage 431616kB, limit 9007199254740988kB, failcnt 0
[  488.200910][ T5817] kmem: usage 3900kB, limit 9007199254740988kB, failcnt 0
[  488.221777][ T5817] Memory cgroup stats for /syz3:
[  488.222140][ T5817] cache 309850112
[  488.230915][ T5817] rss 139264
[  488.246515][ T5840] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18
[  488.257544][ T5840] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18
[  488.265422][ T5840] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection
[  488.277511][ T5817] rss_huge 0
[  488.280822][ T5817] shmem 295403520
[  488.290916][ T5817] mapped_file 14372864
[  488.296580][ T5817] dirty 4096
[  488.300609][ T5817] writeback 0
[  488.305207][ T5817] workingset_refault_anon 3333
[  488.310111][ T5817] workingset_refault_file 1320
[  488.321733][ T5817] swap 127406080
[  488.325400][ T5817] swapcached 585728
[  488.329289][ T5817] pgpgin 589226
[  488.333041][ T5817] pgpgout 516592
[  488.336699][ T5817] pgfault 318954
[  488.340349][ T5817] pgmajfault 547
[  488.344022][ T5817] inactive_anon 293007360
[  488.348461][ T5817] active_anon 2502656
[  488.352594][ T5817] inactive_file 0
[  488.356329][ T5817] active_file 0
[  488.359868][ T5817] unevictable 14372864
[  488.364105][ T5817] hierarchical_memory_limit 314572800
[  488.369645][ T5817] hierarchical_memsw_limit 9223372036854771712
[  488.375971][ T5817] total_cache 309850112
[  488.380233][ T5817] total_rss 139264
[  488.384383][ T5817] total_rss_huge 0
[  488.388897][ T5817] total_shmem 295403520
[  488.393972][ T5817] total_mapped_file 14372864
[  488.398685][ T5817] total_dirty 4096
[  488.416874][ T5817] total_writeback 0
[  488.421388][ T5817] total_workingset_refault_anon 3333
[  488.441749][ T5817] total_workingset_refault_file 1320
[  488.447204][ T5817] total_swap 127406080
[  488.451373][ T5817] total_swapcached 585728
[  488.484998][ T5817] total_pgpgin 589226
[  488.502140][ T5817] total_pgpgout 516592
[  488.506350][ T5817] total_pgfault 318954
[  488.510515][ T5817] total_pgmajfault 547
[  488.541600][ T5817] total_inactive_anon 293007360
[  488.571874][ T5817] total_active_anon 2502656
[  488.576514][ T5817] total_inactive_file 0
[  488.592430][ T5817] total_active_file 0
[  488.596529][ T5817] total_unevictable 14372864
[  488.601213][ T5817] anon_cost 0
[  488.633459][ T5817] file_cost 0
[  488.636869][ T5817] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.1360,pid=11909,uid=0
[  488.695664][ T5817] Memory cgroup out of memory: Killed process 11909 (syz.3.1360) total-vm:102468kB, anon-rss:1068kB, file-rss:45548kB, shmem-rss:0kB, UID:0 pgtables:204kB oom_score_adj:1000
[  490.891810][   T32] oom_reaper: reaped process 11909 (syz.3.1360), now anon-rss:52kB, file-rss:44420kB, shmem-rss:0kB
[  494.059555][T11895] syz.3.1360 (11895) used greatest stack depth: 18008 bytes left
[  497.526220][T12328] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1445'.
[  498.458091][T12335] FAULT_INJECTION: forcing a failure.
[  498.458091][T12335] name failslab, interval 1, probability 0, space 0, times 0
[  498.481813][T12335] CPU: 0 UID: 0 PID: 12335 Comm: syz.1.1446 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[  498.481873][T12335] Tainted: [U]=USER
[  498.481885][T12335] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  498.481903][T12335] Call Trace:
[  498.481913][T12335]  <TASK>
[  498.481924][T12335]  dump_stack_lvl+0x16c/0x1f0
[  498.481969][T12335]  should_fail_ex+0x512/0x640
[  498.482011][T12335]  ? fs_reclaim_acquire+0xae/0x150
[  498.482060][T12335]  should_failslab+0xc2/0x120
[  498.482096][T12335]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  498.482131][T12335]  ? security_inode_alloc+0x3b/0x2b0
[  498.482166][T12335]  security_inode_alloc+0x3b/0x2b0
[  498.482196][T12335]  inode_init_always_gfp+0xce4/0x1030
[  498.482244][T12335]  alloc_inode+0x86/0x240
[  498.482278][T12335]  new_inode+0x22/0x1c0
[  498.482315][T12335]  hugetlbfs_get_inode+0x354/0x730
[  498.482355][T12335]  hugetlb_file_setup+0x15b/0x620
[  498.482394][T12335]  ksys_mmap_pgoff+0x189/0x5c0
[  498.482443][T12335]  ? rcu_is_watching+0x12/0xc0
[  498.482476][T12335]  __x64_sys_mmap+0x125/0x190
[  498.482510][T12335]  do_syscall_64+0xcd/0x230
[  498.482556][T12335]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  498.482583][T12335] RIP: 0033:0x7f16a538e969
[  498.482608][T12335] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  498.482637][T12335] RSP: 002b:00007f16a624e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  498.482666][T12335] RAX: ffffffffffffffda RBX: 00007f16a55b6080 RCX: 00007f16a538e969
[  498.482685][T12335] RDX: 00004000000000e3 RSI: 0000000000200004 RDI: 0000000000000000
[  498.482702][T12335] RBP: 00007f16a5410ab1 R08: 000000000000000d R09: 0000300000000000
[  498.482720][T12335] R10: 0000000000040eb2 R11: 0000000000000246 R12: 0000000000000000
[  498.482735][T12335] R13: 0000000000000000 R14: 00007f16a55b6080 R15: 00007ffd7e604378
[  498.482772][T12335]  </TASK>
[  498.888275][T11892] syz.3.1360 (11892) used greatest stack depth: 17304 bytes left
[  499.133231][T12350] ecryptfs_parse_packet_length: Five-byte packet length not supported
[  499.151145][T12350] ecryptfs_miscdev_write: Error parsing packet length; rc = [-22]
[  499.779200][T12360] misc userio: No port type given on /dev/userio
[  500.052338][T12363] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1452'.
[  501.052138][T12365] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  501.103388][T12365] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  501.182219][T12365] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  501.189127][T12365] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  501.207445][T12365] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  501.793700][T12380] Process accounting resumed
[  501.935239][T12378] netlink: set zone limit has 8 unknown bytes
[  502.532277][ T5830] Bluetooth: hci0: command 0x0c1a tx timeout
[  503.181790][ T5830] Bluetooth: hci2: command 0x0c1a tx timeout
[  503.252180][ T5830] Bluetooth: hci1: command 0x0c1a tx timeout
[  503.258439][ T5830] Bluetooth: hci3: command 0x0c1a tx timeout
[  503.615611][T12423] netlink: 346 bytes leftover after parsing attributes in process `syz.4.1468'.
[  504.563970][T12433] netlink: set zone limit has 8 unknown bytes
[  505.332610][ T5830] Bluetooth: hci1: command 0x0c1a tx timeout
[  505.762466][T12446] netlink: 342 bytes leftover after parsing attributes in process `syz.4.1476'.
[  507.113614][T12479] netlink: set zone limit has 8 unknown bytes
[  507.257619][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  507.264854][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  508.158697][T12506] CIFS mount error: No usable UNC path provided in device string!
[  508.158697][T12506] 
[  508.168971][T12506] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  508.302868][T12500] Process accounting paused
[  508.428463][T12502] ptrace attach of "./syz-executor exec"[5835] was attempted by "./syz-executor exec"[12502]
[  509.746576][T12524] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  509.762645][T12524] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  509.768890][T12524] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  509.812234][T12524] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  510.761594][T12552] netlink: set zone limit has 8 unknown bytes
[  511.176052][ T5830] Bluetooth: hci0: command 0x0c1a tx timeout
[  511.531355][T12580] ptrace attach of "./syz-executor exec"[5835] was attempted by "./syz-executor exec"[12580]
[  511.812457][ T5830] Bluetooth: hci3: command 0x0c1a tx timeout
[  511.818949][ T5840] Bluetooth: hci2: command 0x0c1a tx timeout
[  511.892009][ T5830] Bluetooth: hci1: command 0x0c1a tx timeout
[  511.946649][T12583] could not allocate digest TFM handle 
[  512.324308][T12590] random: crng reseeded on system resumption
[  512.659043][T12591] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1503'.
[  514.807734][T12627] netlink: zone id is out of range
[  514.819056][T12627] netlink: zone id is out of range
[  514.824932][T12627] netlink: zone id is out of range
[  514.830063][T12627] netlink: zone id is out of range
[  514.842203][T12627] netlink: zone id is out of range
[  514.852360][T12627] netlink: zone id is out of range
[  514.878359][T12627] netlink: zone id is out of range
[  514.934484][T12627] netlink: zone id is out of range
[  515.012025][T12627] netlink: zone id is out of range
[  515.017246][T12627] netlink: zone id is out of range
[  516.276896][T12658] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1517'.
[  516.445046][T12658] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  516.485542][T12658] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  517.780658][T12678] program syz.2.1522 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  518.430858][T12706] Invalid ELF header magic: != ELF
[  522.991496][T12753] net_ratelimit: 74 callbacks suppressed
[  522.991532][T12753] netlink: set zone limit has 8 unknown bytes
[  526.488187][T12820] netlink: set zone limit has 8 unknown bytes
[  531.572501][T12891] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  531.578617][T12891] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  531.634852][T12891] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  531.685511][T12891] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  531.908843][T12903] binder: 12900:12903 ioctl c00c6211 0 returned -14
[  532.745373][T12900] Process accounting paused
[  533.334273][ T5840] Bluetooth: hci0: command 0x0c1a tx timeout
[  533.652025][ T5840] Bluetooth: hci3: command 0x0c1a tx timeout
[  533.658275][ T5840] Bluetooth: hci2: command 0x0c1a tx timeout
[  533.731834][ T5840] Bluetooth: hci1: command 0x0c1a tx timeout
[  533.931550][T12921] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input12
[  538.465384][T12952] Process accounting resumed
[  538.471347][T12968] netlink: set zone limit has 8 unknown bytes
[  539.431328][T12997] block2mtd: illegal erase size
[  541.152508][T13011] ubi0: attaching mtd0
[  541.185284][T13017] Invalid ELF header magic: != ELF
[  541.196834][T13011] ubi0: scanning is finished
[  541.218022][T13011] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record
[  541.260204][T13012] mkiss: ax1: crc mode is auto.
[  541.396425][T13011] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  543.662785][T13059] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1599'.
[  543.918073][T13062] zram: Added device: zram1
[  543.939031][T13064] Setting dangerous option i915.request_timeout_ms - tainting kernel
[  543.963755][T13065] Setting dangerous option i915.request_timeout_ms - tainting kernel
[  543.991932][T13064] Setting dangerous option i915.request_timeout_ms - tainting kernel
[  544.843892][T13078] netlink: set zone limit has 8 unknown bytes
[  544.997415][T13084] random: crng reseeded on system resumption
[  546.106307][T13093] could not allocate digest TFM handle 
[  546.717051][T13126] netlink: set zone limit has 8 unknown bytes
[  546.871478][T13135] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1615'.
[  550.466037][T13162] kexec: Could not allocate control_code_buffer
[  550.780927][T13178] netlink: set zone limit has 8 unknown bytes
[  551.227914][T13191] Invalid ELF header magic: != ELF
[  555.856935][T13261] netlink: set zone limit has 8 unknown bytes
[  555.868922][T13262] FAULT_INJECTION: forcing a failure.
[  555.868922][T13262] name failslab, interval 1, probability 0, space 0, times 0
[  555.932451][T13262] CPU: 1 UID: 0 PID: 13262 Comm: syz.3.1643 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[  555.932510][T13262] Tainted: [U]=USER
[  555.932521][T13262] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  555.932542][T13262] Call Trace:
[  555.932552][T13262]  <TASK>
[  555.932565][T13262]  dump_stack_lvl+0x16c/0x1f0
[  555.932614][T13262]  should_fail_ex+0x512/0x640
[  555.932656][T13262]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  555.932711][T13262]  should_failslab+0xc2/0x120
[  555.932746][T13262]  __kmalloc_cache_noprof+0x6a/0x3e0
[  555.932795][T13262]  ? __mutex_lock+0x1ca/0xb90
[  555.932833][T13262]  ? alloc_tty_struct+0x96/0x8c0
[  555.932886][T13262]  alloc_tty_struct+0x96/0x8c0
[  555.932919][T13262]  ? __pfx___mutex_lock+0x10/0x10
[  555.932955][T13262]  ? __pfx_alloc_tty_struct+0x10/0x10
[  555.932991][T13262]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  555.933041][T13262]  tty_init_dev.part.0+0x1e/0x500
[  555.933080][T13262]  tty_init_dev+0x60/0x80
[  555.933109][T13262]  ? __pfx_ptmx_open+0x10/0x10
[  555.933150][T13262]  ptmx_open+0x10d/0x360
[  555.933196][T13262]  ? __pfx_ptmx_open+0x10/0x10
[  555.933240][T13262]  chrdev_open+0x231/0x6a0
[  555.933266][T13262]  ? __pfx_apparmor_file_open+0x10/0x10
[  555.933302][T13262]  ? __pfx_chrdev_open+0x10/0x10
[  555.933335][T13262]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  555.933386][T13262]  do_dentry_open+0x741/0x1c10
[  555.933417][T13262]  ? __pfx_chrdev_open+0x10/0x10
[  555.933455][T13262]  vfs_open+0x82/0x3f0
[  555.933498][T13262]  path_openat+0x1e5e/0x2d40
[  555.933541][T13262]  ? __pfx_path_openat+0x10/0x10
[  555.933581][T13262]  do_filp_open+0x20b/0x470
[  555.933609][T13262]  ? __pfx_do_filp_open+0x10/0x10
[  555.933666][T13262]  ? alloc_fd+0x471/0x7d0
[  555.933720][T13262]  do_sys_openat2+0x11b/0x1d0
[  555.933754][T13262]  ? __pfx_do_sys_openat2+0x10/0x10
[  555.933809][T13262]  __x64_sys_openat+0x174/0x210
[  555.933848][T13262]  ? __pfx___x64_sys_openat+0x10/0x10
[  555.933896][T13262]  ? rcu_is_watching+0x12/0xc0
[  555.933938][T13262]  do_syscall_64+0xcd/0x230
[  555.933983][T13262]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  555.934016][T13262] RIP: 0033:0x7f825fb8e969
[  555.934043][T13262] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  555.934074][T13262] RSP: 002b:00007f8260a7a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  555.934103][T13262] RAX: ffffffffffffffda RBX: 00007f825fdb6080 RCX: 00007f825fb8e969
[  555.934121][T13262] RDX: 0000000000020540 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  555.934137][T13262] RBP: 00007f825fc10ab1 R08: 0000000000000000 R09: 0000000000000000
[  555.934155][T13262] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  555.934172][T13262] R13: 0000000000000000 R14: 00007f825fdb6080 R15: 00007ffc7ca84688
[  555.934212][T13262]  </TASK>
[  556.544690][T13271] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1644'.
[  556.587752][T13269] svc: failed to register nfsdv3 RPC service (errno 111).
[  556.599494][T13269] svc: failed to register nfsaclv3 RPC service (errno 111).
[  556.757516][T13267] ima: policy update failed
[  556.782899][   T30] audit: type=1802 audit(4294967413.346:15): pid=13267 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.1644" res=0 errno=0
[  557.666606][T13276] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[  558.341834][ T5840] Bluetooth: hci1: unexpected subevent 0x01 length: 122 > 18
[  560.038266][T13347] [U] 

[  560.041384][T13347] [U] 
[  560.044091][T13347] [U] 
[  560.046913][T13347] [U] 
[  560.079726][T13347] [U] 
[  560.082542][T13347] [U] 
[  560.085263][T13347] [U] 
[  560.087996][T13347] [U] 
[  560.103446][T13347] [U] 
[  560.106214][T13347] [U] 
[  560.108918][T13347] [U] 
[  560.111624][T13347] [U] 
[  560.211232][T13347] [U] 
[  560.214065][T13347] [U] 
[  560.216812][T13347] [U] 
[  560.219546][T13347] [U] 
[  560.238105][T13347] [U] 
[  560.240901][T13347] [U] 
[  560.243652][T13347] [U] 
[  560.246404][T13347] [U] 
[  560.369917][T13347] [U] 
[  560.372744][T13347] [U] 
[  560.375502][T13347] [U] 
[  560.378259][T13347] [U] 
[  560.481435][T13347] [U] 
[  560.484268][T13347] [U] 
[  560.487014][T13347] [U] 
[  560.489770][T13347] [U] 
[  560.542994][T13347] [U] 
[  560.545809][T13347] [U] 
[  560.548558][T13347] [U] 
[  560.551296][T13347] [U] 
[  560.556564][T13347] [U] 
[  560.559287][T13347] [U] 
[  560.561987][T13347] [U] 
[  560.564688][T13347] [U] 
[  560.568112][T13347] [U] 
[  560.570832][T13347] [U] 
[  560.573561][T13347] [U] 
[  560.576304][T13347] [U] 
[  560.613248][T13347] [U] 
[  560.616069][T13347] [U] 
[  560.618829][T13347] [U] 
[  560.621580][T13347] [U] 
[  560.701776][T13347] [U] 
[  560.704582][T13347] [U] 
[  560.707325][T13347] [U] 
[  560.710064][T13347] [U] 
[  560.716211][T13347] [U] 
[  560.718952][T13347] [U] 
[  560.721678][T13347] [U] 
[  560.724397][T13347] [U] 
[  560.728155][T13347] [U] 
[  560.730898][T13347] [U] 
[  560.733622][T13347] [U] 
[  560.736362][T13347] [U] 
[  560.744077][T13347] [U] 
[  560.746827][T13347] [U] 
[  560.749530][T13347] [U] 
[  560.752236][T13347] [U] 
[  560.842737][T13347] [U] 
[  560.845511][T13347] [U] 
[  560.848210][T13347] [U] 
[  560.850908][T13347] [U] 
[  560.882372][T13347] [U] 
[  561.633234][T13379] block2mtd: illegal erase size
[  561.780457][T13390] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1669'.
[  562.115054][T13401] netlink: 'syz.2.1672': attribute type 21 has an invalid length.
[  562.123038][T13401] netlink: 326 bytes leftover after parsing attributes in process `syz.2.1672'.
[  562.151838][T13401] IPv6: NLM_F_CREATE should be specified when creating new route
[  562.216133][T13401] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1672'.
[  562.348244][T13401] ovs_��: entered promiscuous mode
[  563.399423][T13371] Process accounting resumed
[  564.663287][T13446] kernel read not supported for file /set_event_notrace_pid (pid: 13446 comm: syz.3.1680)
[  564.744731][   T30] audit: type=1800 audit(4294967303.360:16): pid=13446 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1680" name="set_event_notrace_pid" dev="tracefs" ino=27 res=0 errno=0
[  565.158943][T13460] FAULT_INJECTION: forcing a failure.
[  565.158943][T13460] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  565.187772][T13460] CPU: 1 UID: 0 PID: 13460 Comm: syz.4.1684 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[  565.187832][T13460] Tainted: [U]=USER
[  565.187844][T13460] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  565.187863][T13460] Call Trace:
[  565.187874][T13460]  <TASK>
[  565.187888][T13460]  dump_stack_lvl+0x16c/0x1f0
[  565.187936][T13460]  should_fail_ex+0x512/0x640
[  565.187987][T13460]  should_fail_alloc_page+0xe7/0x130
[  565.188026][T13460]  prepare_alloc_pages+0x3c2/0x610
[  565.188072][T13460]  ? rcu_is_watching+0x12/0xc0
[  565.188104][T13460]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[  565.188140][T13460]  ? kasan_save_stack+0x33/0x60
[  565.188175][T13460]  ? cgroup_rstat_updated+0x2a/0xb20
[  565.188240][T13460]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  565.188286][T13460]  ? lru_gen_add_folio+0x1a4/0xef0
[  565.188329][T13460]  ? __lock_acquire+0x5ca/0x1ba0
[  565.188370][T13460]  ? __lock_acquire+0x5ca/0x1ba0
[  565.188407][T13460]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  565.188450][T13460]  ? policy_nodemask+0xea/0x4e0
[  565.188492][T13460]  alloc_pages_mpol+0x1fb/0x550
[  565.188531][T13460]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  565.188567][T13460]  ? __lock_acquire+0x5ca/0x1ba0
[  565.188611][T13460]  folio_alloc_mpol_noprof+0x36/0x2f0
[  565.188654][T13460]  vma_alloc_folio_noprof+0xed/0x1e0
[  565.188695][T13460]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  565.188757][T13460]  do_pte_missing+0x223d/0x3fb0
[  565.188802][T13460]  __handle_mm_fault+0x103d/0x2a40
[  565.188844][T13460]  ? __pfx___handle_mm_fault+0x10/0x10
[  565.188873][T13460]  ? __pte_offset_map_lock+0x155/0x2f0
[  565.188916][T13460]  ? find_held_lock+0x2b/0x80
[  565.188941][T13460]  ? find_held_lock+0x2b/0x80
[  565.188994][T13460]  handle_mm_fault+0x3fe/0xad0
[  565.189034][T13460]  __get_user_pages+0x771/0x36f0
[  565.189091][T13460]  ? __pfx_mt_find+0x10/0x10
[  565.189134][T13460]  ? __pfx___get_user_pages+0x10/0x10
[  565.189195][T13460]  populate_vma_page_range+0x278/0x3a0
[  565.189246][T13460]  ? __pfx_populate_vma_page_range+0x10/0x10
[  565.189291][T13460]  ? __pfx_find_vma_intersection+0x10/0x10
[  565.189336][T13460]  ? do_mmap+0x69c/0x11b0
[  565.189381][T13460]  __mm_populate+0x1d8/0x380
[  565.189410][T13460]  ? __pfx___mm_populate+0x10/0x10
[  565.189460][T13460]  ? up_write+0x1b2/0x520
[  565.189505][T13460]  vm_mmap_pgoff+0x362/0x450
[  565.189554][T13460]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  565.189605][T13460]  ? __x64_sys_futex+0x1e0/0x4c0
[  565.189636][T13460]  ? __x64_sys_futex+0x1e9/0x4c0
[  565.189673][T13460]  ksys_mmap_pgoff+0x7d/0x5c0
[  565.189716][T13460]  ? rcu_is_watching+0x12/0xc0
[  565.189756][T13460]  __x64_sys_mmap+0x125/0x190
[  565.189793][T13460]  do_syscall_64+0xcd/0x230
[  565.189837][T13460]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  565.189868][T13460] RIP: 0033:0x7f6cdfd8e969
[  565.189896][T13460] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  565.189930][T13460] RSP: 002b:00007f6ce0ba4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  565.189962][T13460] RAX: ffffffffffffffda RBX: 00007f6cdffb5fa0 RCX: 00007f6cdfd8e969
[  565.189982][T13460] RDX: 000000000000005f RSI: 0000000000400008 RDI: 0000000000000000
[  565.189998][T13460] RBP: 00007f6cdfe10ab1 R08: 0000000000000002 R09: 0000000000008000
[  565.190015][T13460] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  565.190032][T13460] R13: 0000000000000000 R14: 00007f6cdffb5fa0 R15: 00007ffc02876c28
[  565.190074][T13460]  </TASK>
[  566.601942][T13487] nbd0: detected capacity change from 0 to 68719476736
[  566.638676][ T5833] block nbd0: Send control failed (result -22)
[  566.655302][ T5833] block nbd0: Request send failed, requeueing
[  566.671143][T11505] block nbd0: Dead connection, failed to find a fallback
[  566.680881][ T5830] block nbd0: Receive control failed (result -32)
[  566.683918][T11505] block nbd0: shutting down sockets
[  566.713807][T11505] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  566.723978][T11505] Buffer I/O error on dev nbd0, logical block 0, async page read
[  566.732650][ T5833] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  566.754504][ T5833] Buffer I/O error on dev nbd0, logical block 0, async page read
[  566.780827][ T5833] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  566.791868][ T5833] Buffer I/O error on dev nbd0, logical block 0, async page read
[  566.799907][ T5833] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  566.809197][ T5833] Buffer I/O error on dev nbd0, logical block 0, async page read
[  566.819604][ T5833] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  566.829372][ T5833] Buffer I/O error on dev nbd0, logical block 0, async page read
[  566.852479][ T5833] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  566.862795][ T5833] Buffer I/O error on dev nbd0, logical block 0, async page read
[  566.882482][ T5833] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  566.891602][ T5833] Buffer I/O error on dev nbd0, logical block 0, async page read
[  566.927219][ T5833] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  566.937593][ T5833] Buffer I/O error on dev nbd0, logical block 0, async page read
[  566.945739][ T5833] ldm_validate_partition_table(): Disk read failed.
[  566.953146][ T5833] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  566.975139][ T5833] Buffer I/O error on dev nbd0, logical block 0, async page read
[  566.985869][ T5833] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  567.002048][ T5833] Buffer I/O error on dev nbd0, logical block 0, async page read
[  567.010535][ T5833] Dev nbd0: unable to read RDB block 0
[  567.018172][ T5833]  nbd0: unable to read partition table
[  567.028865][ T5833] ldm_validate_partition_table(): Disk read failed.
[  567.036369][ T5833] Dev nbd0: unable to read RDB block 0
[  567.043619][ T5833]  nbd0: unable to read partition table
[  568.449036][T13512] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  568.455803][T13512] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  568.472071][T13512] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  568.478303][T13512] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  568.500548][T13516] netlink: 'syz.1.1694': attribute type 1 has an invalid length.
[  568.543404][T13519] netlink: set zone limit has 8 unknown bytes
[  568.567528][T13512] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  568.614149][T13501] kexec: Could not allocate control_code_buffer
[  568.696312][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  568.707928][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  568.849801][T13505] Process accounting paused
[  570.457823][ T5830] Bluetooth: hci0: command 0x0c1a tx timeout
[  570.532794][ T5830] Bluetooth: hci1: command 0x0c1a tx timeout
[  570.538547][ T5840] Bluetooth: hci3: command 0x0c1a tx timeout
[  570.538932][   T55] Bluetooth: hci2: command 0x0c1a tx timeout
[  571.011404][T13556] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1702'.
[  571.217280][T13556] smc: removing net device syz_tun with user defined pnetid ETHTOOL
[  572.611941][   T55] Bluetooth: hci1: command 0x0c1a tx timeout
[  572.737673][T13591] netlink: set zone limit has 8 unknown bytes
[  573.404801][T13625] netlink: 186 bytes leftover after parsing attributes in process `syz.1.1713'.
[  573.903516][   T30] audit: type=1800 audit(4294967312.520:17): pid=13606 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1710" name="SYSV00000008" dev="hugetlbfs" ino=0 res=0 errno=0
[  576.047681][T13681] netlink: set zone limit has 8 unknown bytes
[  576.873919][T13701] i2c i2c-0: new_device: Invalid device name
[  577.524085][T13707] FAULT_INJECTION: forcing a failure.
[  577.524085][T13707] name failslab, interval 1, probability 0, space 0, times 0
[  577.685633][T13707] CPU: 1 UID: 0 PID: 13707 Comm: syz.4.1726 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[  577.685697][T13707] Tainted: [U]=USER
[  577.685708][T13707] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  577.685738][T13707] Call Trace:
[  577.685749][T13707]  <TASK>
[  577.685762][T13707]  dump_stack_lvl+0x16c/0x1f0
[  577.685812][T13707]  should_fail_ex+0x512/0x640
[  577.685853][T13707]  ? __kmalloc_noprof+0xbf/0x510
[  577.685892][T13707]  ? __netlink_kernel_create+0x17f/0x750
[  577.685925][T13707]  should_failslab+0xc2/0x120
[  577.685960][T13707]  __kmalloc_noprof+0xd2/0x510
[  577.685994][T13707]  ? __netlink_create+0x208/0x2c0
[  577.686043][T13707]  __netlink_kernel_create+0x17f/0x750
[  577.686081][T13707]  ? __pfx___netlink_kernel_create+0x10/0x10
[  577.686129][T13707]  uevent_net_init+0xf8/0x350
[  577.686174][T13707]  ? __pfx_uevent_net_init+0x10/0x10
[  577.686221][T13707]  ? __pfx_uevent_net_rcv+0x10/0x10
[  577.686279][T13707]  ? __pfx_uevent_net_init+0x10/0x10
[  577.686321][T13707]  ops_init+0x1df/0x5f0
[  577.686360][T13707]  setup_net+0x21e/0x850
[  577.686397][T13707]  ? __pfx_setup_net+0x10/0x10
[  577.686428][T13707]  ? lockdep_init_map_type+0x5c/0x280
[  577.686468][T13707]  ? __pfx_down_read_killable+0x10/0x10
[  577.686516][T13707]  ? debug_mutex_init+0x37/0x70
[  577.686567][T13707]  copy_net_ns+0x2a6/0x5f0
[  577.686608][T13707]  create_new_namespaces+0x3ea/0xad0
[  577.686651][T13707]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  577.686687][T13707]  ksys_unshare+0x45b/0xa40
[  577.686738][T13707]  ? __pfx_ksys_unshare+0x10/0x10
[  577.686775][T13707]  ? xfd_validate_state+0x5d/0x180
[  577.686824][T13707]  ? rcu_is_watching+0x12/0xc0
[  577.686860][T13707]  __x64_sys_unshare+0x31/0x40
[  577.686899][T13707]  do_syscall_64+0xcd/0x230
[  577.686942][T13707]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  577.686976][T13707] RIP: 0033:0x7f6cdfd8e969
[  577.687002][T13707] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  577.687031][T13707] RSP: 002b:00007f6ce0ba4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  577.687061][T13707] RAX: ffffffffffffffda RBX: 00007f6cdffb5fa0 RCX: 00007f6cdfd8e969
[  577.687081][T13707] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  577.687098][T13707] RBP: 00007f6cdfe10ab1 R08: 0000000000000000 R09: 0000000000000000
[  577.687116][T13707] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  577.687133][T13707] R13: 0000000000000000 R14: 00007f6cdffb5fa0 R15: 00007ffc02876c28
[  577.687172][T13707]  </TASK>
[  577.782072][T13707] kobject_uevent: unable to create netlink socket!
[  578.365209][T13725] 0x6328000000020000-0x632a0a29656a6361 : ""
[  578.372094][T13725] mtd: partition "" is out of reach -- disabled
[  578.413108][T13725] ftl_cs: FTL header not found.
[  579.445547][T13746] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  580.021617][T13758] Invalid ELF header magic: != ELF
[  581.343904][T13790] ptrace attach of "./syz-executor exec"[9469] was attempted by "./syz-executor exec"[13790]
[  582.327731][T13832] can: request_module (can-proto-3) failed.
[  582.894926][T13836] netlink: 2468 bytes leftover after parsing attributes in process `syz.3.1745'.
[  583.495889][T13866] ptrace attach of "./syz-executor exec"[5826] was attempted by "./syz-executor exec"[13866]
[  583.755483][T13834] kexec: Could not allocate control_code_buffer
[  630.137678][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  630.144524][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  644.353524][ T5201] udevd[5201]: worker [5833] /devices/pci0000:00/0000:00:03.0/virtio0/host0/target0:0:1/0:0:1:0/block/sda is taking a long time
[  691.575424][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  691.582227][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  737.012456][   T31] INFO: task jbd2/sda1-8:5163 blocked for more than 143 seconds.
[  737.020280][   T31]       Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0
[  737.029949][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  737.038721][   T31] task:jbd2/sda1-8     state:D stack:26616 pid:5163  tgid:5163  ppid:2      task_flags:0x240040 flags:0x00004000
[  737.050811][   T31] Call Trace:
[  737.054215][   T31]  <TASK>
[  737.057186][   T31]  __schedule+0x116f/0x5de0
[  737.061794][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[  737.066935][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[  737.072061][   T31]  ? __pfx___schedule+0x10/0x10
[  737.076991][   T31]  ? find_held_lock+0x2b/0x80
[  737.081805][   T31]  ? schedule+0x2d7/0x3a0
[  737.086207][   T31]  schedule+0xe7/0x3a0
[  737.090302][   T31]  io_schedule+0xbf/0x130
[  737.094784][   T31]  bit_wait_io+0x15/0xe0
[  737.099079][   T31]  __wait_on_bit+0x62/0x180
[  737.103669][   T31]  ? __pfx_bit_wait_io+0x10/0x10
[  737.108679][   T31]  out_of_line_wait_on_bit+0xd9/0x110
[  737.114808][   T31]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[  737.120869][   T31]  ? __pfx_wake_bit_function+0x10/0x10
[  737.126408][   T31]  ? __pfx___might_resched+0x10/0x10
[  737.131779][   T31]  __wait_on_buffer+0x64/0x70
[  737.136482][   T31]  jbd2_journal_commit_transaction+0x382e/0x6830
[  737.142944][   T31]  ? __pfx_jbd2_journal_commit_transaction+0x10/0x10
[  737.149677][   T31]  ? __pfx_tcp_bpf_recvmsg+0x10/0x10
[  737.155048][   T31]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  737.160925][   T31]  ? debug_object_deactivate+0x1ec/0x3a0
[  737.166659][   T31]  ? __pfx_debug_object_deactivate+0x10/0x10
[  737.172744][   T31]  ? find_held_lock+0x2b/0x80
[  737.177487][   T31]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  737.183383][   T31]  ? rcu_is_watching+0x12/0xc0
[  737.188192][   T31]  kjournald2+0x1f4/0x760
[  737.192614][   T31]  ? __pfx_kjournald2+0x10/0x10
[  737.197516][   T31]  ? find_held_lock+0x2b/0x80
[  737.202269][   T31]  ? __pfx_autoremove_wake_function+0x10/0x10
[  737.208408][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[  737.213693][   T31]  ? __kthread_parkme+0x19e/0x250
[  737.219092][   T31]  ? __pfx_kjournald2+0x10/0x10
[  737.224057][   T31]  kthread+0x3c2/0x780
[  737.228178][   T31]  ? __pfx_kthread+0x10/0x10
[  737.232859][   T31]  ? __pfx_kthread+0x10/0x10
[  737.237507][   T31]  ? __pfx_kthread+0x10/0x10
[  737.242242][   T31]  ? __pfx_kthread+0x10/0x10
[  737.246889][   T31]  ? rcu_is_watching+0x12/0xc0
[  737.251783][   T31]  ? __pfx_kthread+0x10/0x10
[  737.256423][   T31]  ret_from_fork+0x45/0x80
[  737.260869][   T31]  ? __pfx_kthread+0x10/0x10
[  737.265549][   T31]  ret_from_fork_asm+0x1a/0x30
[  737.270399][   T31]  </TASK>
[  737.273534][   T31] INFO: task syz-executor:5817 blocked for more than 143 seconds.
[  737.281397][   T31]       Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0
[  737.290707][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  737.299453][   T31] task:syz-executor    state:D stack:23680 pid:5817  tgid:5817  ppid:5815   task_flags:0x440100 flags:0x00000002
[  737.311480][   T31] Call Trace:
[  737.314858][   T31]  <TASK>
[  737.317850][   T31]  __schedule+0x116f/0x5de0
[  737.322933][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[  737.327937][   T31]  ? __pfx___schedule+0x10/0x10
[  737.332881][   T31]  ? find_held_lock+0x2b/0x80
[  737.337601][   T31]  ? schedule+0x2d7/0x3a0
[  737.342024][   T31]  schedule+0xe7/0x3a0
[  737.346137][   T31]  io_schedule+0xbf/0x130
[  737.350488][   T31]  bit_wait_io+0x15/0xe0
[  737.354808][   T31]  __wait_on_bit+0x62/0x180
[  737.359380][   T31]  ? __pfx_bit_wait_io+0x10/0x10
[  737.364406][   T31]  out_of_line_wait_on_bit+0xd9/0x110
[  737.369822][   T31]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[  737.375902][   T31]  ? __pfx_wake_bit_function+0x10/0x10
[  737.381414][   T31]  do_get_write_access+0x93d/0x12a0
[  737.386701][   T31]  jbd2_journal_get_write_access+0x1d6/0x280
[  737.392794][   T31]  __ext4_journal_get_write_access+0x6a/0x340
[  737.398921][   T31]  ext4_reserve_inode_write+0x1be/0x320
[  737.404554][   T31]  __ext4_mark_inode_dirty+0x197/0x870
[  737.410095][   T31]  ? trace_kmem_cache_alloc+0x28/0xc0
[  737.415567][   T31]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[  737.422148][   T31]  ? rcu_is_watching+0x12/0xc0
[  737.426972][   T31]  ? trace_jbd2_handle_start+0x1a8/0x230
[  737.432726][   T31]  ? jbd2__journal_start+0xf6/0x6a0
[  737.437984][   T31]  ? __ext4_journal_start_sb+0x195/0x690
[  737.443821][   T31]  ? __ext4_journal_start_sb+0x19e/0x690
[  737.449501][   T31]  ? ext4_dirty_inode+0xa1/0x130
[  737.454541][   T31]  ? __pfx_ext4_dirty_inode+0x10/0x10
[  737.459960][   T31]  ext4_dirty_inode+0xd9/0x130
[  737.464788][   T31]  ? rcu_is_watching+0x12/0xc0
[  737.469592][   T31]  __mark_inode_dirty+0x1eb/0xe50
[  737.474738][   T31]  generic_update_time+0xcf/0xf0
[  737.479723][   T31]  file_update_time+0x17d/0x1c0
[  737.484655][   T31]  ext4_page_mkwrite+0x35e/0x1750
[  737.489728][   T31]  ? anon_pipe_read+0xc85/0x1210
[  737.495090][   T31]  ? __pfx_ext4_page_mkwrite+0x10/0x10
[  737.500598][   T31]  ? vm_normal_page+0x13b/0x2b0
[  737.505531][   T31]  ? find_held_lock+0x2b/0x80
[  737.510247][   T31]  ? find_held_lock+0x2b/0x80
[  737.515005][   T31]  do_page_mkwrite+0x171/0x380
[  737.519821][   T31]  do_wp_page+0xb9e/0x58e0
[  737.524752][   T31]  ? __pfx_do_wp_page+0x10/0x10
[  737.529660][   T31]  ? do_raw_spin_lock+0x12c/0x2b0
[  737.534772][   T31]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  737.540194][   T31]  ? ___pte_offset_map+0x1bc/0x540
[  737.545405][   T31]  __handle_mm_fault+0x1ada/0x2a40
[  737.550607][   T31]  ? __pfx___handle_mm_fault+0x10/0x10
[  737.556144][   T31]  ? lock_vma_under_rcu+0x47d/0x970
[  737.561414][   T31]  ? lock_vma_under_rcu+0x47d/0x970
[  737.566766][   T31]  handle_mm_fault+0x3fe/0xad0
[  737.571573][   T31]  do_user_addr_fault+0x60c/0x1370
[  737.576804][   T31]  exc_page_fault+0x5c/0xc0
[  737.581363][   T31]  asm_exc_page_fault+0x26/0x30
[  737.586273][   T31] RIP: 0033:0x7fcee10689c5
[  737.590722][   T31] RSP: 002b:00007ffc954b4af0 EFLAGS: 00010206
[  737.596913][   T31] RAX: 00007fcedabe2b1c RBX: 00007ffc954b4bf0 RCX: 0000000000000000
[  737.604942][   T31] RDX: 00007fcedabe2b18 RSI: 0000000000000008 RDI: 00007ffc954b4bf0
[  737.612995][   T31] RBP: 00000000000003e6 R08: 0000000000000000 R09: 0000000000000000
[  737.621001][   T31] R10: 00007ffc954b4bd0 R11: 0000000000000000 R12: 0000000000000000
[  737.629471][   T31] R13: 000000000001d4e4 R14: fffffffffffe2b1c R15: 000000000001d4e4
[  737.637550][   T31]  </TASK>
[  737.640683][   T31] INFO: task syz.3.1731:13760 blocked for more than 143 seconds.
[  737.648482][   T31]       Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0
[  737.658267][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  737.667092][   T31] task:syz.3.1731      state:D stack:23992 pid:13760 tgid:13760 ppid:5836   task_flags:0x400640 flags:0x00004002
[  737.679124][   T31] Call Trace:
[  737.683670][   T31]  <TASK>
[  737.686690][   T31]  __schedule+0x116f/0x5de0
[  737.691246][   T31]  ? bpf_ksym_find+0x124/0x1c0
[  737.696108][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[  737.701096][   T31]  ? __pfx___schedule+0x10/0x10
[  737.706055][   T31]  ? find_held_lock+0x2b/0x80
[  737.710778][   T31]  ? schedule+0x2d7/0x3a0
[  737.715190][   T31]  schedule+0xe7/0x3a0
[  737.719303][   T31]  io_schedule+0xbf/0x130
[  737.723716][   T31]  folio_wait_bit_common+0x3d6/0x9e0
[  737.729360][   T31]  ? folio_wait_bit_common+0x13a/0x9e0
[  737.734926][   T31]  ? __pfx_folio_wait_bit_common+0x10/0x10
[  737.740821][   T31]  ? find_held_lock+0x2b/0x80
[  737.745588][   T31]  ? find_held_lock+0x2b/0x80
[  737.750314][   T31]  ? __pfx_wake_page_function+0x10/0x10
[  737.755926][   T31]  ? __filemap_get_folio+0x333/0xc10
[  737.761268][   T31]  filemap_fault+0xd62/0x2740
[  737.766059][   T31]  ? __pfx_filemap_fault+0x10/0x10
[  737.771237][   T31]  __do_fault+0x10a/0x490
[  737.775649][   T31]  do_pte_missing+0x1031/0x3fb0
[  737.780540][   T31]  ? do_raw_spin_unlock+0x172/0x230
[  737.785812][   T31]  ? __pmd_alloc+0x3c2/0x870
[  737.790457][   T31]  __handle_mm_fault+0x103d/0x2a40
[  737.795711][   T31]  ? __pfx___handle_mm_fault+0x10/0x10
[  737.801217][   T31]  ? should_fail_alloc_page+0xee/0x130
[  737.806813][   T31]  handle_mm_fault+0x3fe/0xad0
[  737.811680][   T31]  __get_user_pages+0x771/0x36f0
[  737.816705][   T31]  ? __pfx___get_user_pages+0x10/0x10
[  737.822182][   T31]  get_dump_page+0x257/0x3d0
[  737.826811][   T31]  ? __pfx_get_dump_page+0x10/0x10
[  737.832417][   T31]  ? _raw_spin_unlock+0x28/0x50
[  737.837342][   T31]  ? __free_frozen_pages+0x734/0xff0
[  737.842893][   T31]  dump_user_range+0x1c3/0xb30
[  737.847735][   T31]  ? __pfx_dump_user_range+0x10/0x10
[  737.853171][   T31]  ? elf_coredump_extra_notes_write+0xbd/0x430
[  737.859375][   T31]  ? __pfx_writenote+0x10/0x10
[  737.864243][   T31]  elf_core_dump+0x288a/0x3a90
[  737.869078][   T31]  ? __pfx_elf_core_dump+0x10/0x10
[  737.874265][   T31]  ? kasan_save_stack+0x42/0x60
[  737.879159][   T31]  ? kasan_save_stack+0x33/0x60
[  737.884085][   T31]  ? kasan_save_track+0x14/0x30
[  737.888981][   T31]  ? __kasan_kmalloc+0xaa/0xb0
[  737.893916][   T31]  ? do_coredump+0x17aa/0x4480
[  737.898760][   T31]  ? get_signal+0x22e3/0x26d0
[  737.903508][   T31]  ? arch_do_signal_or_restart+0x8f/0x7a0
[  737.909287][   T31]  ? 0xffffffffff600000
[  737.913559][   T31]  ? do_coredump+0x3183/0x4480
[  737.918375][   T31]  do_coredump+0x3183/0x4480
[  737.923090][   T31]  ? __pfx_do_coredump+0x10/0x10
[  737.928093][   T31]  ? stack_trace_save+0x8e/0xc0
[  737.933027][   T31]  ? __pfx_stack_trace_save+0x10/0x10
[  737.938776][   T31]  ? stack_depot_save_flags+0x28/0xa50
[  737.944346][   T31]  ? __lock_acquire+0xaa4/0x1ba0
[  737.949329][   T31]  ? __kasan_slab_free+0x51/0x70
[  737.954361][   T31]  ? kmem_cache_free+0x2d4/0x4d0
[  737.959341][   T31]  ? __sigqueue_free+0xba/0x2a0
[  737.964276][   T31]  ? get_signal+0xcba/0x26d0
[  737.968915][   T31]  ? arch_do_signal_or_restart+0x8f/0x7a0
[  737.974791][   T31]  ? proc_coredump_connector+0x2d1/0x4f0
[  737.980480][   T31]  ? __pfx_proc_coredump_connector+0x10/0x10
[  737.986552][   T31]  ? rcu_is_watching+0x12/0xc0
[  737.991365][   T31]  get_signal+0x22e3/0x26d0
[  737.995959][   T31]  ? __pfx_get_signal+0x10/0x10
[  738.000849][   T31]  ? rcu_is_watching+0x12/0xc0
[  738.005730][   T31]  ? trace_irq_disable.constprop.0+0xd4/0x120
[  738.011916][   T31]  arch_do_signal_or_restart+0x8f/0x7a0
[  738.017515][   T31]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  738.023771][   T31]  irqentry_exit_to_user_mode+0x13f/0x280
[  738.029563][   T31]  asm_exc_page_fault+0x26/0x30
[  738.034530][   T31] RIP: 0033:0x0
[  738.038360][   T31] RSP: 002b:0000000000000011 EFLAGS: 00010217
[  738.044542][   T31] RAX: 0000000000000000 RBX: 00007f825fdb6240 RCX: 00007f825fb8e969
[  738.052594][   T31] RDX: 9999999999999999 RSI: 0000000000000009 RDI: 0000000000000002
[  738.060623][   T31] RBP: 00007f825fc10ab1 R08: 0000000000000000 R09: 0000000000000000
[  738.068709][   T31] R10: ffffffff81000000 R11: 0000000000000246 R12: 0000000000000000
[  738.076772][   T31] R13: 0000000000000000 R14: 00007f825fdb6240 R15: 00007ffc7ca84688
[  738.084821][   T31]  ? 0xffffffff81000000
[  738.089017][   T31]  </TASK>
[  738.092163][   T31] INFO: task syz.1.1749:13858 blocked for more than 144 seconds.
[  738.099932][   T31]       Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0
[  738.109232][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  738.117979][   T31] task:syz.1.1749      state:D stack:25672 pid:13858 tgid:13858 ppid:5826   task_flags:0x440040 flags:0x00000004
[  738.129971][   T31] Call Trace:
[  738.133448][   T31]  <TASK>
[  738.136507][   T31]  __schedule+0x116f/0x5de0
[  738.141361][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[  738.146425][   T31]  ? __pfx___schedule+0x10/0x10
[  738.151325][   T31]  ? find_held_lock+0x2b/0x80
[  738.156071][   T31]  ? schedule+0x2d7/0x3a0
[  738.160446][   T31]  schedule+0xe7/0x3a0
[  738.164600][   T31]  io_schedule+0xbf/0x130
[  738.168975][   T31]  bit_wait_io+0x15/0xe0
[  738.173313][   T31]  __wait_on_bit+0x62/0x180
[  738.177883][   T31]  ? __pfx_bit_wait_io+0x10/0x10
[  738.182907][   T31]  out_of_line_wait_on_bit+0xd9/0x110
[  738.188352][   T31]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[  738.194726][   T31]  ? __pfx_wake_bit_function+0x10/0x10
[  738.200254][   T31]  do_get_write_access+0x93d/0x12a0
[  738.205541][   T31]  jbd2_journal_get_write_access+0x1d6/0x280
[  738.211568][   T31]  __ext4_journal_get_write_access+0x6a/0x340
[  738.217765][   T31]  ext4_reserve_inode_write+0x1be/0x320
[  738.223409][   T31]  __ext4_mark_inode_dirty+0x197/0x870
[  738.228928][   T31]  ? trace_kmem_cache_alloc+0x28/0xc0
[  738.234375][   T31]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[  738.240870][   T31]  ? rcu_is_watching+0x12/0xc0
[  738.245725][   T31]  ? trace_jbd2_handle_start+0x1a8/0x230
[  738.251401][   T31]  ? jbd2__journal_start+0xf6/0x6a0
[  738.256674][   T31]  ? __ext4_journal_start_sb+0x195/0x690
[  738.262429][   T31]  ? __ext4_journal_start_sb+0x19e/0x690
[  738.268114][   T31]  ? ext4_dirty_inode+0xa1/0x130
[  738.273104][   T31]  ? __pfx_ext4_dirty_inode+0x10/0x10
[  738.278518][   T31]  ext4_dirty_inode+0xd9/0x130
[  738.283369][   T31]  ? rcu_is_watching+0x12/0xc0
[  738.288176][   T31]  __mark_inode_dirty+0x1eb/0xe50
[  738.293269][   T31]  generic_update_time+0xcf/0xf0
[  738.298278][   T31]  file_update_time+0x17d/0x1c0
[  738.303212][   T31]  ext4_page_mkwrite+0x35e/0x1750
[  738.308306][   T31]  ? __pfx_ext4_page_mkwrite+0x10/0x10
[  738.313854][   T31]  do_page_mkwrite+0x171/0x380
[  738.318663][   T31]  do_pte_missing+0x29c/0x3fb0
[  738.323862][   T31]  ? __handle_mm_fault+0x1010/0x2a40
[  738.329179][   T31]  __handle_mm_fault+0x103d/0x2a40
[  738.334382][   T31]  ? __pfx___handle_mm_fault+0x10/0x10
[  738.339882][   T31]  ? lock_vma_under_rcu+0x47d/0x970
[  738.345583][   T31]  ? lock_vma_under_rcu+0x47d/0x970
[  738.350857][   T31]  handle_mm_fault+0x3fe/0xad0
[  738.355698][   T31]  do_user_addr_fault+0x60c/0x1370
[  738.360861][   T31]  exc_page_fault+0x5c/0xc0
[  738.365443][   T31]  asm_exc_page_fault+0x26/0x30
[  738.370335][   T31] RIP: 0033:0x7f16a526eada
[  738.374881][   T31] RSP: 002b:00007ffd7e6043b0 EFLAGS: 00010202
[  738.381004][   T31] RAX: 0000001b2ff11000 RBX: 00007f16a60e5720 RCX: 0000001b2ff10ff8
[  738.389056][   T31] RDX: 0000001b2fb20220 RSI: 0000000000000008 RDI: 00007f16a60e5720
[  738.397099][   T31] RBP: ffffffff81c9fbc6 R08: 00007f16a55b6118 R09: 00007f16a55a2000
[  738.405163][   T31] R10: 00007f16a45fd008 R11: 0000000000000007 R12: 0000000000000007
[  738.413215][   T31] R13: 00000000000001d8 R14: ffffffff81c9f074 R15: 00000000000001f1
[  738.421226][   T31]  ? bpf_ksym_find+0x124/0x1c0
[  738.426086][   T31]  ? perf_trace_xdp_bulk_tx+0x4a6/0x5e0
[  738.431731][   T31]  </TASK>
[  738.434806][   T31] INFO: task syz.1.1749:13864 blocked for more than 144 seconds.
[  738.442615][   T31]       Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0
[  738.452489][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  738.461207][   T31] task:syz.1.1749      state:D stack:28288 pid:13864 tgid:13858 ppid:5826   task_flags:0x440040 flags:0x00000004
[  738.473321][   T31] Call Trace:
[  738.476640][   T31]  <TASK>
[  738.479687][   T31]  __schedule+0x116f/0x5de0
[  738.484361][   T31]  ? blk_mq_flush_plug_list+0x75a/0x1c70
[  738.490074][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[  738.495147][   T31]  ? __pfx___schedule+0x10/0x10
[  738.500056][   T31]  ? __blk_flush_plug+0x2f3/0x4b0
[  738.505221][   T31]  ? find_held_lock+0x2b/0x80
[  738.509965][   T31]  ? schedule+0x2d7/0x3a0
[  738.514419][   T31]  schedule+0xe7/0x3a0
[  738.518539][   T31]  io_schedule+0xbf/0x130
[  738.522964][   T31]  folio_wait_bit_common+0x3d6/0x9e0
[  738.528301][   T31]  ? folio_wait_bit_common+0x13a/0x9e0
[  738.534135][   T31]  ? __pfx_folio_wait_bit_common+0x10/0x10
[  738.540002][   T31]  ? filemap_get_folios_tag+0x46a/0xae0
[  738.545897][   T31]  ? __pfx_wake_page_function+0x10/0x10
[  738.552011][   T31]  folio_wait_writeback+0x3c/0x90
[  738.557130][   T31]  mpage_prepare_extent_to_map+0x535/0x1460
[  738.563158][   T31]  ? __pfx_mpage_prepare_extent_to_map+0x10/0x10
[  738.569589][   T31]  ? trace_kmem_cache_alloc+0x28/0xc0
[  738.575115][   T31]  ? kmem_cache_alloc_noprof+0x21e/0x3b0
[  738.580767][   T31]  ? ext4_init_io_end+0x24/0x170
[  738.585816][   T31]  ext4_do_writepages+0x9af/0x3490
[  738.591015][   T31]  ? process_measurement+0x1e6/0x23e0
[  738.596490][   T31]  ? __pfx_ext4_do_writepages+0x10/0x10
[  738.602161][   T31]  ? ext4_writepages+0x37a/0x7d0
[  738.607152][   T31]  ext4_writepages+0x37a/0x7d0
[  738.611999][   T31]  ? __pfx_ext4_writepages+0x10/0x10
[  738.617350][   T31]  ? trace_sched_exit_tp+0xde/0x130
[  738.622689][   T31]  ? __pfx_ext4_writepages+0x10/0x10
[  738.628031][   T31]  do_writepages+0x1b2/0x820
[  738.632709][   T31]  ? __pfx_do_writepages+0x10/0x10
[  738.637863][   T31]  ? do_raw_spin_lock+0x12c/0x2b0
[  738.642973][   T31]  ? find_held_lock+0x2b/0x80
[  738.647685][   T31]  ? wbc_attach_fdatawrite_inode+0x13a/0x190
[  738.654166][   T31]  ? do_raw_spin_unlock+0x172/0x230
[  738.659427][   T31]  ? _raw_spin_unlock+0x28/0x50
[  738.664341][   T31]  filemap_fdatawrite_wbc+0x104/0x160
[  738.669759][   T31]  __filemap_fdatawrite_range+0xb2/0xf0
[  738.675412][   T31]  ? __pfx___filemap_fdatawrite_range+0x10/0x10
[  738.681803][   T31]  file_write_and_wait_range+0xca/0x140
[  738.687424][   T31]  ext4_sync_file+0x310/0xf10
[  738.692337][   T31]  ? __pfx___up_read+0x10/0x10
[  738.697178][   T31]  ? __pfx_ext4_sync_file+0x10/0x10
[  738.702496][   T31]  vfs_fsync_range+0x136/0x220
[  738.707347][   T31]  __do_sys_msync+0x3cb/0x5c0
[  738.712135][   T31]  do_syscall_64+0xcd/0x230
[  738.716689][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  738.722683][   T31] RIP: 0033:0x7f16a538e969
[  738.727145][   T31] RSP: 002b:00007f16a622d038 EFLAGS: 00000246 ORIG_RAX: 000000000000001a
[  738.735639][   T31] RAX: ffffffffffffffda RBX: 00007f16a55b6160 RCX: 00007f16a538e969
[  738.743672][   T31] RDX: 0000000400000004 RSI: 0180000000000000 RDI: 000000001ffff000
[  738.751717][   T31] RBP: 00007f16a5410ab1 R08: 0000000000000000 R09: 0000000000000000
[  738.760044][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  738.768120][   T31] R13: 0000000000000000 R14: 00007f16a55b6160 R15: 00007ffd7e604378
[  738.776249][   T31]  </TASK>
[  738.779341][   T31] INFO: task syz.4.1752:13875 blocked for more than 145 seconds.
[  738.787161][   T31]       Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0
[  738.796457][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  738.805261][   T31] task:syz.4.1752      state:D stack:28632 pid:13875 tgid:13875 ppid:9469   task_flags:0x440040 flags:0x00000004
[  738.817356][   T31] Call Trace:
[  738.820683][   T31]  <TASK>
[  738.823721][   T31]  __schedule+0x116f/0x5de0
[  738.828277][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[  738.833332][   T31]  ? __pfx___schedule+0x10/0x10
[  738.838233][   T31]  ? find_held_lock+0x2b/0x80
[  738.843004][   T31]  ? schedule+0x2d7/0x3a0
[  738.847386][   T31]  schedule+0xe7/0x3a0
[  738.851472][   T31]  io_schedule+0xbf/0x130
[  738.856406][   T31]  bit_wait_io+0x15/0xe0
[  738.860713][   T31]  __wait_on_bit+0x62/0x180
[  738.865323][   T31]  ? __pfx_bit_wait_io+0x10/0x10
[  738.870355][   T31]  out_of_line_wait_on_bit+0xd9/0x110
[  738.875827][   T31]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[  738.881910][   T31]  ? __pfx_wake_bit_function+0x10/0x10
[  738.887425][   T31]  do_get_write_access+0x93d/0x12a0
[  738.892731][   T31]  jbd2_journal_get_write_access+0x1d6/0x280
[  738.898775][   T31]  __ext4_journal_get_write_access+0x6a/0x340
[  738.904923][   T31]  ext4_reserve_inode_write+0x1be/0x320
[  738.910525][   T31]  __ext4_mark_inode_dirty+0x197/0x870
[  738.916073][   T31]  ? trace_kmem_cache_alloc+0x28/0xc0
[  738.921493][   T31]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[  738.927552][   T31]  ? rcu_is_watching+0x12/0xc0
[  738.932466][   T31]  ? trace_jbd2_handle_start+0x1a8/0x230
[  738.938162][   T31]  ? jbd2__journal_start+0xf6/0x6a0
[  738.943997][   T31]  ? __ext4_journal_start_sb+0x195/0x690
[  738.949705][   T31]  ? __ext4_journal_start_sb+0x19e/0x690
[  738.955472][   T31]  ? ext4_dirty_inode+0xa1/0x130
[  738.960774][   T31]  ? __pfx_ext4_dirty_inode+0x10/0x10
[  738.966253][   T31]  ext4_dirty_inode+0xd9/0x130
[  738.971054][   T31]  ? rcu_is_watching+0x12/0xc0
[  738.975882][   T31]  __mark_inode_dirty+0x1eb/0xe50
[  738.980959][   T31]  generic_update_time+0xcf/0xf0
[  738.985969][   T31]  file_update_time+0x17d/0x1c0
[  738.990878][   T31]  ext4_page_mkwrite+0x35e/0x1750
[  738.996002][   T31]  ? __pfx_ext4_page_mkwrite+0x10/0x10
[  739.001502][   T31]  ? __pfx_filemap_map_pages+0x10/0x10
[  739.007031][   T31]  ? pte_alloc_one+0x2b1/0x380
[  739.011887][   T31]  do_page_mkwrite+0x171/0x380
[  739.016705][   T31]  do_pte_missing+0x29c/0x3fb0
[  739.021479][   T31]  ? do_raw_spin_unlock+0x172/0x230
[  739.026815][   T31]  ? __pmd_alloc+0x3c2/0x870
[  739.031459][   T31]  __handle_mm_fault+0x103d/0x2a40
[  739.036669][   T31]  ? __pfx___handle_mm_fault+0x10/0x10
[  739.042206][   T31]  ? lock_vma_under_rcu+0x47d/0x970
[  739.047459][   T31]  ? lock_vma_under_rcu+0x47d/0x970
[  739.053177][   T31]  handle_mm_fault+0x3fe/0xad0
[  739.058030][   T31]  do_user_addr_fault+0x60c/0x1370
[  739.063830][   T31]  exc_page_fault+0x5c/0xc0
[  739.068421][   T31]  asm_exc_page_fault+0x26/0x30
[  739.073394][   T31] RIP: 0033:0x7f6cdfc6547b
[  739.077858][   T31] RSP: 002b:00007ffc02876d90 EFLAGS: 00010246
[  739.084018][   T31] RAX: 00000000003ffde8 RBX: 0000000000000000 RCX: 0000000000000000
[  739.092078][   T31] RDX: 0000001b32f20000 RSI: 0000000000400000 RDI: 00007f6cdfe98d50
[  739.100105][   T31] RBP: 0000000000000000 R08: 0000000000000004 R09: 0000000000040000
[  739.108158][   T31] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  739.116191][   T31] R13: 00000000000927c0 R14: 000000000008e7c7 R15: 00007ffc02877040
[  739.124241][   T31]  </TASK>
[  739.127428][   T31] 
[  739.127428][   T31] Showing all locks held in the system:
[  739.135256][   T31] 1 lock held by khungtaskd/31:
[  739.140136][   T31]  #0: ffffffff8e3bf440 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x36/0x1c0
[  739.150132][   T31] 6 locks held by kworker/u8:9/3456:
[  739.155494][   T31]  #0: ffff88801c6f3148 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[  739.166711][   T31]  #1: ffffc9000bd0fd18 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[  739.178690][   T31]  #2: ffff88814d8040e0 (&type->s_umount_key#31){++++}-{4:4}, at: super_trylock_shared+0x1e/0xf0
[  739.189353][   T31]  #3: ffff88814d806b98 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: do_writepages+0x1b2/0x820
[  739.199766][   T31]  #4: ffff8880341e0950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410
[  739.209481][   T31]  #5: ffff888078cb5bf0 (&ei->i_data_sem){++++}-{4:4}, at: ext4_map_blocks+0x355/0x1390
[  739.219419][   T31] 3 locks held by syz-executor/5817:
[  739.224760][   T31]  #0: ffff888033e19d08 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370
[  739.234158][   T31]  #1: ffff88814d804518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380
[  739.243800][   T31]  #2: ffff8880341e0950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410
[  739.253535][   T31] 3 locks held by kworker/u8:37/9551:
[  739.258932][   T31]  #0: ffff8880b8439f18 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x29/0x130
[  739.269362][   T31]  #1: ffffc9000aecfd18 ((work_completion)(&rdev->wiphy_work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[  739.281182][   T31]  #2: ffffffff9adbd2a8 (&obj_hash[i].lock){-.-.}-{2:2}, at: debug_object_deactivate+0x135/0x3a0
[  739.291823][   T31] 2 locks held by syz.3.1731/13760:
[  739.297077][   T31]  #0: ffff888025382420 (sb_writers#5){.+.+}-{0:0}, at: get_signal+0x22e3/0x26d0
[  739.306309][   T31]  #1: ffff8880314601e0 (&mm->mmap_lock){++++}-{4:4}, at: dump_user_range+0x187/0xb30
[  739.315989][   T31] 2 locks held by getty/13761:
[  739.320763][   T31]  #0: ffff88823bf848a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80
[  739.330622][   T31]  #1: ffffc9000c4032f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x41b/0x14f0
[  739.340860][   T31] 3 locks held by syz.1.1749/13858:
[  739.346166][   T31]  #0: ffff888032743e48 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370
[  739.355594][   T31]  #1: ffff88814d804518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380
[  739.365259][   T31]  #2: ffff8880341e0950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410
[  739.375246][   T31] 1 lock held by syz.1.1749/13864:
[  739.380388][   T31]  #0: ffff88814d806b98 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: do_writepages+0x1b2/0x820
[  739.390773][   T31] 3 locks held by syz.4.1752/13875:
[  739.396029][   T31]  #0: ffff88802840e6c8 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370
[  739.405411][   T31]  #1: ffff88814d804518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380
[  739.415013][   T31]  #2: ffff8880341e0950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410
[  739.424672][   T31] 
[  739.427028][   T31] =============================================
[  739.427028][   T31] 
[  739.435502][   T31] NMI backtrace for cpu 1
[  739.435524][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[  739.435562][   T31] Tainted: [U]=USER
[  739.435570][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  739.435585][   T31] Call Trace:
[  739.435594][   T31]  <TASK>
[  739.435604][   T31]  dump_stack_lvl+0x116/0x1f0
[  739.435643][   T31]  nmi_cpu_backtrace+0x27b/0x390
[  739.435670][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  739.435711][   T31]  nmi_trigger_cpumask_backtrace+0x29c/0x300
[  739.435742][   T31]  watchdog+0xf70/0x12c0
[  739.435783][   T31]  ? __pfx_watchdog+0x10/0x10
[  739.435813][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[  739.435848][   T31]  ? __kthread_parkme+0x19e/0x250
[  739.435883][   T31]  ? __pfx_watchdog+0x10/0x10
[  739.435918][   T31]  kthread+0x3c2/0x780
[  739.435957][   T31]  ? __pfx_kthread+0x10/0x10
[  739.436002][   T31]  ? __pfx_kthread+0x10/0x10
[  739.436038][   T31]  ? __pfx_kthread+0x10/0x10
[  739.436073][   T31]  ? __pfx_kthread+0x10/0x10
[  739.436106][   T31]  ? rcu_is_watching+0x12/0xc0
[  739.436132][   T31]  ? __pfx_kthread+0x10/0x10
[  739.436169][   T31]  ret_from_fork+0x45/0x80
[  739.436207][   T31]  ? __pfx_kthread+0x10/0x10
[  739.436241][   T31]  ret_from_fork_asm+0x1a/0x30
[  739.436297][   T31]  </TASK>
[  739.436307][   T31] Sending NMI from CPU 1 to CPUs 0:
[  739.574699][    C0] NMI backtrace for cpu 0
[  739.574732][    C0] CPU: 0 UID: 0 PID: 9551 Comm: kworker/u8:37 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[  739.574765][    C0] Tainted: [U]=USER
[  739.574772][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  739.574786][    C0] Workqueue: events_unbound nsim_dev_trap_report_work
[  739.574822][    C0] RIP: 0010:unwind_next_frame+0xe70/0x20a0
[  739.574850][    C0] Code: b8 00 00 00 00 00 fc ff df 4c 89 ea 48 c1 ea 03 0f b6 04 02 84 c0 74 08 3c 03 0f 8e c6 0c 00 00 41 39 5d 00 0f 84 91 07 00 00 <bd> 01 00 00 00 e9 5f f5 ff ff ba 28 00 00 00 4c 89 f6 4c 89 ef 48
[  739.574871][    C0] RSP: 0018:ffffc9000aecf648 EFLAGS: 00000283
[  739.574888][    C0] RAX: ffffc9000aed0001 RBX: ffffc9000aecf7e8 RCX: ffffffff911dcc01
[  739.574902][    C0] RDX: ffffc9000aecf7f0 RSI: 0000000000000001 RDI: ffffc9000aecf6c8
[  739.574916][    C0] RBP: ffffc9000aec8000 R08: ffffffff911dcca4 R09: 0000000000000000
[  739.574930][    C0] R10: 0000000000000004 R11: 000000000000a68e R12: ffffc9000aecf708
[  739.574943][    C0] R13: ffffc9000aecf6b8 R14: ffffc9000aecf7e8 R15: ffffc9000aecf6ec
[  739.574957][    C0] FS:  0000000000000000(0000) GS:ffff8881249ed000(0000) knlGS:0000000000000000
[  739.574980][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  739.574994][    C0] CR2: 000055e19a8e3e48 CR3: 000000000e180000 CR4: 00000000003526f0
[  739.575007][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  739.575020][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  739.575033][    C0] Call Trace:
[  739.575040][    C0]  <TASK>
[  739.575048][    C0]  ? stack_trace_save+0x8e/0xc0
[  739.575072][    C0]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  739.575094][    C0]  arch_stack_walk+0x94/0x100
[  739.575119][    C0]  ? kasan_save_stack+0x33/0x60
[  739.575143][    C0]  stack_trace_save+0x8e/0xc0
[  739.575161][    C0]  ? __pfx_stack_trace_save+0x10/0x10
[  739.575184][    C0]  ? __lock_acquire+0xaa4/0x1ba0
[  739.575209][    C0]  kasan_save_stack+0x33/0x60
[  739.575248][    C0]  kasan_save_track+0x14/0x30
[  739.575268][    C0]  __kasan_kmalloc+0xaa/0xb0
[  739.575288][    C0]  __kmalloc_node_track_caller_noprof+0x221/0x510
[  739.575313][    C0]  ? __alloc_skb+0x166/0x380
[  739.575334][    C0]  kmalloc_reserve+0xef/0x2c0
[  739.575361][    C0]  __alloc_skb+0x166/0x380
[  739.575379][    C0]  ? __pfx___alloc_skb+0x10/0x10
[  739.575396][    C0]  ? do_raw_spin_lock+0x12c/0x2b0
[  739.575424][    C0]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  739.575452][    C0]  ? __pfx___might_resched+0x10/0x10
[  739.575477][    C0]  nsim_dev_trap_report_work+0x2b1/0xcf0
[  739.575508][    C0]  process_one_work+0x9cc/0x1b70
[  739.575543][    C0]  ? __pfx_process_one_work+0x10/0x10
[  739.575575][    C0]  ? assign_work+0x1a0/0x250
[  739.575603][    C0]  worker_thread+0x6c8/0xf10
[  739.575637][    C0]  ? __pfx_worker_thread+0x10/0x10
[  739.575665][    C0]  kthread+0x3c2/0x780
[  739.575691][    C0]  ? __pfx_kthread+0x10/0x10
[  739.575725][    C0]  ? __pfx_kthread+0x10/0x10
[  739.575750][    C0]  ? __pfx_kthread+0x10/0x10
[  739.575774][    C0]  ? __pfx_kthread+0x10/0x10
[  739.575799][    C0]  ? rcu_is_watching+0x12/0xc0
[  739.575818][    C0]  ? __pfx_kthread+0x10/0x10
[  739.575844][    C0]  ret_from_fork+0x45/0x80
[  739.575873][    C0]  ? __pfx_kthread+0x10/0x10
[  739.575899][    C0]  ret_from_fork_asm+0x1a/0x30
[  739.575933][    C0]  </TASK>
[  739.577053][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[  739.908984][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[  739.922391][   T31] Tainted: [U]=USER
[  739.926211][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  739.936286][   T31] Call Trace:
[  739.939588][   T31]  <TASK>
[  739.942539][   T31]  dump_stack_lvl+0x3d/0x1f0
[  739.947165][   T31]  panic+0x71c/0x800
[  739.951133][   T31]  ? __pfx_panic+0x10/0x10
[  739.955611][   T31]  ? preempt_schedule_thunk+0x16/0x30
[  739.961073][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  739.967106][   T31]  ? preempt_schedule_thunk+0x16/0x30
[  739.972538][   T31]  ? watchdog+0xdda/0x12c0
[  739.976995][   T31]  ? watchdog+0xdcd/0x12c0
[  739.981449][   T31]  watchdog+0xdeb/0x12c0
[  739.985732][   T31]  ? __pfx_watchdog+0x10/0x10
[  739.990446][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[  739.995691][   T31]  ? __kthread_parkme+0x19e/0x250
[  740.000754][   T31]  ? __pfx_watchdog+0x10/0x10
[  740.005470][   T31]  kthread+0x3c2/0x780
[  740.009576][   T31]  ? __pfx_kthread+0x10/0x10
[  740.014227][   T31]  ? __pfx_kthread+0x10/0x10
[  740.018862][   T31]  ? __pfx_kthread+0x10/0x10
[  740.023486][   T31]  ? __pfx_kthread+0x10/0x10
[  740.028107][   T31]  ? rcu_is_watching+0x12/0xc0
[  740.032897][   T31]  ? __pfx_kthread+0x10/0x10
[  740.037521][   T31]  ret_from_fork+0x45/0x80
[  740.041971][   T31]  ? __pfx_kthread+0x10/0x10
[  740.046590][   T31]  ret_from_fork_asm+0x1a/0x30
[  740.051397][   T31]  </TASK>
[  740.054623][   T31] Kernel Offset: disabled
[  740.058992][   T31] Rebooting in 86400 seconds..