last executing test programs:

4.021146865s ago: executing program 3 (id=1616):
mmap$auto(0xfffffffffffffffe, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
io_setup$auto(0x618, 0x0)
close_range$auto(0xffffffffffffffff, 0x8000, 0x0)
semctl$auto_SETALL(0xe, 0x6c, 0x11, 0xb)
mmap$auto(0xe, 0x8, 0x3ff57697, 0x15, 0x2, 0x8000000000008000)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x300, 0x0)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$auto(0x3, 0x8030ae7c, 0x38)
socket(0xa, 0x1, 0x84)
socket(0x1, 0x5, 0x0)
rseq$auto(&(0x7f0000000080)={0x6, 0x7fff, 0x2, 0x5, 0x40, 0x101, "2194ac4b29a52edd3ab36ac789f7e4e8e75a5fce718dd7f9c2fd0b41128000d5b3dcad310a758d69ed41a2"}, 0x401, 0x9, 0xd)
mmap$auto(0x0, 0xb3c7, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0x21, 0x1, 0x2)
r1 = openat$auto_ftrace_system_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/tracing/events/vmalloc/enable\x00', 0x46380, 0x0)
poll$auto(&(0x7f0000000040)={0x3, 0x1, 0xa}, 0x5, 0x108)
setsockopt$auto(0x3, 0x1, 0x20, 0x0, 0x9)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
r3 = socket(0x6, 0x4, 0x9)
write$auto(r3, 0x0, 0x8)
close_range$auto(0x2, r1, 0x0)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r4)
ioctl$auto_KVM_CREATE_VM(r2, 0x4008ae8a, 0x0)
fchmod$auto(0xffffffffffffffff, 0x7439)
setreuid$auto(0x4, 0x8)
mkdir$auto(&(0x7f0000000100)='./file0\x00', 0xff0)

3.741143731s ago: executing program 2 (id=1619):
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
mremap$auto(0x4000, 0xb8, 0x13fd4, 0x3, 0xfffff000)
r0 = io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xd, 0x4002, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0xa, 0x6, 0xf, 0x29f, 0x100, 0x7f, 0x101, 0x6, 0x2000}, {0x100, 0x1, 0x52, 0x5, 0x1, 0x40, 0x76c5, 0x8, 0x100000000}})
mmap$auto(0x0, 0x200004, 0x4000000000df, 0x15, r0, 0x300000000000)
connect$auto(0xffffffffffffffff, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/pcmC1D1p\x00', 0x0, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x181881, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x28641, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_zero_fops_mem(0xffffffffffffff9c, 0x0, 0x109002, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x4, 0x300000000000)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
clone$auto(0x8001, 0x4000000000000a, 0xffffffffffffffff, 0xfffffffffffffffc, 0xb)
futex$auto(&(0x7f0000000080)=0x2948, 0x0, 0x2948, 0x0, 0x0, 0x5)
futex$auto(&(0x7f0000000080)=0x3, 0x3, 0x8, 0x0, &(0x7f0000000100)=0x4, 0x440a48d3)

3.593221254s ago: executing program 0 (id=1620):
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/stat/synproxy\x00', 0xc0a00, 0x0)
pread64$auto(r0, &(0x7f0000000040)='/proc/thread-self/net/tcp6\x00\xd2)\x8e\x892\x82\x19\xfd\x03\xc3\x8d\xd7D\x8d\xa8\xcfM9\\\xd6\xcfUq\x05#\xed\x1c\xd1G\bz\xde5u4\xddS\xe6\x1a\x8a`\xad0\x98|\xbc\x00\x98\b\x0ey\xcb`\x9b\x91r\xd5\x13\x9e\xdd4\xe7\xb7\x94P\x8fBlm\x04eAW\xbc0\x9b\xbd\x8f\xf5];\x94\x18\xf0\v\xd7\xf4P\xd3\x9e,Q\xd8\x16\x989l\x03\a\xcc\x1e\xb9\xe9{\xeeS\xa9\xc60\x00\xb5&\x9e\xdbk{F\x18\xa8\xbasG\xd3\x80\xb1G.\xec1\x96uP\x97\x8co\xf1\xa6\xd5\xea\xc8L3|a\xb3\xaa\x90Y\xb19\xad\xdc\x05o\x98g\xd4\x10]5\x95\xd0\xabJC\x06\xd0c\xd1Ra\xf7\xc4n\xdf\xe4\xc7\x03\x19x\xbb\v\x00\t\xde\xf5\x93\xfb\xfb#\xbd\xc0S\f57\x83\xdd\xaa\xf0\x9c\xd3G\xe1', 0x3ff, 0x9)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x2, 0x8000)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), r2)
sendmsg$auto_NL80211_CMD_SET_PMKSA(r2, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x8001}, 0x40)
clone3$auto(&(0x7f00000001c0)={0x3, 0x6, 0x8000000000000000, 0xc05, 0x0, 0x8000, 0xfffffffffffffffd, 0x9, 0x100000000, 0x7, 0x1}, 0x7)
io_uring_setup$auto(0x1, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
r3 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000700), 0xffffffffffffffff)
sendmsg$auto_IPVS_CMD_SET_CONFIG(r1, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="01002abd47ae14"], 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x20040804)
r4 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
read$auto(r4, 0x0, 0x1f40)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x200440c4}, 0x40048c5)
sendmsg$auto_OVS_DP_CMD_DEL(r1, &(0x7f0000001180)={&(0x7f0000001080)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000001140)={&(0x7f00000011c0)=ANY=[@ANYBLOB='H\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="02202bbd7000ffaa000008000200f9bb36572673bf33d62253cfaf726346fbf9164ccb39df9f6fb3fc16fda848fa39da1e95541ffb4fa1e2cf23bb49f823eff63ceaf49b66ca1a623035ba788b6b7ebe33a047916be92cc4fed9f4f8e57e9362a30304b1a61191884abf5be0cbb3f6f6a5cb409cb8164b347a2d8b9997b46736decc4f0e1d", @ANYRES32, @ANYBLOB="08000200", @ANYRES32, @ANYBLOB="240001002f7379732f6b65726e656c2f64656275672f74726163696e672f747261636500"], 0x48}, 0x1, 0x0, 0x0, 0x240008d3}, 0x4c080)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x1000000000045, 0x100000001, 0xfffdffff, 0x0, 0x0, 0x0, 0x1000000006, 0x6, 0x7, 0x401, 0x7ffffffb, 0x5, 0xffffffff80000000, 0x1, 0x61, 0x103})
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r5, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000001040)='/proc/thread-self/fail-nth\x00', 0xa802, 0x0)
openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/trace\x00', 0x600, 0x0)
fcntl$auto(0x0, 0x407, 0x8100000)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)

3.504600473s ago: executing program 3 (id=1621):
mmap$auto(0xfffffffffffffeff, 0x9ed, 0x400000003, 0xeb1, 0xfffffffffffffffa, 0x7ffe)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
io_uring_setup$auto(0x6, 0x0) (async)
r0 = io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, r0, 0x8000)
write$auto_lowpan_enable_fops_(r0, &(0x7f0000000040)="05233fe12be151a32c04f9f572534a576ea47123735dc4f60cd725f34a5897d6fec722681c0dce766c0bdea19c8b3d22ce0f89b9ea64492e312d8dd90a1aea72635c3ec163b6ef8bf521dd46a40a95cb8da82cc83c157803cc7bb8560ad694bb7348bb86ce339398837e7533704c550c9e94b69bc37901e02ab59d7ddd833b326e9622817a1fe3d3ec6855242b6a619671061f28b2ada5110532381c75e50b62069ea788a4237b1bce6e3f848fbdfc5aab2c0a758957f86e22a7ee42b18fbf089b5283ad92bcc01e95c2881db977075b", 0xd0)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001cc0)='/dev/input/event1\x00', 0x101242, 0x0)
epoll_create$auto(0x3e)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8e00, 0x0) (async)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8e00, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000)
close_range$auto(0x2, 0x8, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xac}, 0x5, 0x0, 0x1, 0x697b}, 0xed7138c}, 0x2, 0x9)
recvmmsg$auto(0x4, 0x0, 0x7, 0xe, 0x0) (async)
recvmmsg$auto(0x4, 0x0, 0x7, 0xe, 0x0)
write$auto(0x3, 0x0, 0x100082)
ioctl$auto(0x3, 0xc048ae65, 0xffffffffffffffff)

3.443211343s ago: executing program 1 (id=1622):
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x0, 0x0)
mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000)
r0 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f00000006c0)='/dev/mtd0\x00', 0x0, 0x0)
openat$auto_trace_options_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/options/blk_classic\x00', 0x942, 0x0)
ioctl$auto_MEMGETREGIONCOUNT(r0, 0x80044d07, &(0x7f0000000700)=0x2)
quotactl_fd$auto(0xffffffffffffffff, 0x1, 0x0, 0x0)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x3, 0x6, 0x0, 0x200000000000001, 0x368e, 0x2, {0x100000000, 0x4}, 0xff, 0x6, 0xfffffffffffffffd, 0x1008000, 0x0, 0x8000000c, 0x81, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x804})
r1 = socket(0x2b, 0x1, 0x1)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x2, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0xa3da)
syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000180), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_THERMAL_GENL_CMD_THRESHOLD_DELETE(r1, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000200)={&(0x7f00000006c0)=ANY=[@ANYBLOB, @ANYRES16, @ANYBLOB="000126bd7000fcdbdf25090000000400018004000f80c3fc0e003264650101000000000000636572320014001300766c616e3000"/62], 0x44}, 0x1, 0x0, 0x0, 0x8004}, 0x40)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/scsi/sg/allow_dio\x00', 0x101181, 0x0)
socket(0x2, 0x1, 0x0)
socket(0x15, 0x5, 0x0)
ustat$auto(0x801, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)

3.046311228s ago: executing program 2 (id=1623):
r0 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/pcmC0D0c\x00', 0x101102, 0x0)
ioctl$auto_SNDRV_PCM_IOCTL_TTSTAMP2(r0, 0x40044103, &(0x7f0000000080)=0x78)
socket(0xf, 0x80003, 0x300)
mmap$auto(0x0, 0x20009, 0x94a, 0xeb1, 0x401, 0x8000)
r1 = socketpair$auto(0xffffffff, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = socket(0xa, 0x806, 0x0)
syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000040), r2)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa}, 0x55)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000001100), r5)
sendmsg$auto_CTRL_CMD_GETFAMILY(r5, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000001180)={&(0x7f0000001140)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r6, @ANYBLOB="01002dbd7000ffdbdf25030000000600010030"], 0x1c}, 0x1, 0x0, 0x0, 0x20000004}, 0x20000044)
r7 = syz_genetlink_get_family_id$auto_thermal(&(0x7f0000000200), r5)
sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_TEMP(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000036c0)=ANY=[@ANYBLOB='\x006\x00\x00', @ANYRES16=r7, @ANYBLOB="01002bbd7000fedbdfa503000000e43501805b"], 0x3600}, 0x1, 0x0, 0x0, 0x4008000}, 0x8084)
sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_TEMP(r3, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB='@', @ANYRES16=r7, @ANYBLOB="000129bd7000fedbdf250300000008000a000700000008000a0005000000080006000600000008000d80040058001400130062617461647630000000000000000000080010000400000008000a0000000000"], 0x58}, 0x1, 0x0, 0x0, 0x20000000}, 0x800)
sendmsg$auto_THERMAL_GENL_CMD_THRESHOLD_GET(r1, &(0x7f0000000340)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10200004}, 0xc, &(0x7f0000000300)={&(0x7f0000000180)=ANY=[@ANYBLOB="24010400", @ANYRES16=r7, @ANYBLOB="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"], 0x124}, 0x1, 0x0, 0x0, 0x5}, 0x4000000)
request_key$auto(0x0, 0x0, 0x0, 0xfffffffd)
r8 = setfsuid$auto(0xee00)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f0000000040), 0xffffffffffffffff)
read$auto_page_owner_stack_operations_page_owner(r0, &(0x7f00000000c0)=""/95, 0x5f)
sendmsg$auto_OVS_METER_CMD_DEL(r9, &(0x7f0000001180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="6471246060449559de55772ce18bedf0a14065", @ANYRES16=r10, @ANYBLOB="010028bd7000ffdbdf2503000000040002000800010001000080"], 0x20}, 0x1, 0x0, 0x0, 0x4800}, 0x4000)
setreuid$auto(r8, 0x0)
keyctl$auto(0x3, 0x102000000010001, r8, 0x200, 0x2)

2.95624734s ago: executing program 0 (id=1624):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_SMC_NETLINK_GET_DEV_SMCD(r0, &(0x7f0000004380)={0x0, 0x0, &(0x7f0000004340)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x810)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r0)
read$auto(r0, &(0x7f0000000100)='nl80211\x00', 0xbe62)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x100)
socket(0x10, 0x2, 0x0)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000000800030009000000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a000100aaaaaaaaaabb00000a000500aaaaaaaaaa370000080004001000000008000200", @ANYRES32=0x0], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40090)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

2.683656728s ago: executing program 1 (id=1625):
r0 = openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/ieee80211/phy14/netdev:wlan1/rc_rateidx_vht_mcs_mask_2ghz\x00', 0x101000, 0x0)
pidfd_send_signal$auto_0(r0, 0x2, &(0x7f0000000180)={@_si_pad}, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev5\x00', 0x3280, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp1\x00', 0x200, 0x0)
ioctl$auto_SOUND_MIXER_READ_RECMASK2(r1, 0x80044dfd, &(0x7f0000000200)="89b0dd2c26f2f80dadab910d9ec3f9d3f5bcd41abf08eea7239eeea3fc39061a7f572cdfeca84d3c9fd8e3059b2528681508a0f651528165eff45c9ea50ed7707db3f595bbc45bf31c79")
r2 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0)
ioctl$auto_PPPIOCSMRU(r2, 0xc004743e, 0x0)
ioctl$auto_PPPIOCSPASS(r2, 0x40107447, &(0x7f00000000c0)={0x401, 0x0})

2.530564328s ago: executing program 2 (id=1626):
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
mremap$auto(0x4000, 0xb8, 0x13fd4, 0x3, 0xfffff000)
r0 = io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xd, 0x4002, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0xa, 0x6, 0xf, 0x29f, 0x100, 0x7f, 0x101, 0x6, 0x2000}, {0x100, 0x1, 0x52, 0x5, 0x1, 0x40, 0x76c5, 0x8, 0x100000000}})
mmap$auto(0x0, 0x200004, 0x4000000000df, 0x15, r0, 0x300000000000)
connect$auto(0xffffffffffffffff, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/pcmC1D1p\x00', 0x0, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x181881, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x28641, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_zero_fops_mem(0xffffffffffffff9c, 0x0, 0x109002, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x4, 0x300000000000)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = clone$auto(0x8001, 0x4000000000000a, 0xffffffffffffffff, 0xfffffffffffffffc, 0xb)
move_pages$auto(r1, 0x10001, &(0x7f0000000140)=&(0x7f0000000040)="7e43c1f6943af0ec8ecc878314c652cc9cbd990e117601fd58998ff6d964c8b33e350294f91f5931ec9cff8175c2084d601c7e35997883af16779802", &(0x7f0000000180)=0x765, &(0x7f00000001c0)=0x156c, 0x5)
futex$auto(&(0x7f0000000080)=0x2948, 0x0, 0x2948, 0x0, 0x0, 0x5)
futex$auto(&(0x7f0000000080)=0x3, 0x3, 0x8, 0x0, &(0x7f0000000100)=0x4, 0x440a48d3)

2.447215481s ago: executing program 3 (id=1627):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/firmware/acpi/hotplug/pci_root/enabled\x00', 0x8001, 0x0)
write$auto(r0, &(0x7f0000000080)='\x85\x87\xdfi\x00\x00\x00\x00\\\x04\xc0b\x00\x00\x00\xfc\x00k\x00\x00\x00\xffQ\x10Q]\xdc\xc4\xdb <', 0x7d)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
socketpair$auto(0x8001, 0x5, 0x5, 0x0)
ioctl$auto(0x3, 0x4038ae7a, r1)
openat$auto_hwsim_fops_group_(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/ieee80211/phy5/hwsim/group\x00', 0x202000, 0x0)

2.232899093s ago: executing program 1 (id=1628):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000140)='/dev/cuse\x00', 0x1c1041, 0x0)
write$auto_fuse_dev_operations_fuse_i(r1, &(0x7f0000000440)="110000000400"/17, 0x11)
r2 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000001840), r0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'bond0\x00', <r3=>0x0})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r4)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000001c0)={'wlan0\x00', <r6=>0x0})
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
mq_notify$auto(0x4, &(0x7f0000000040)={@sival_ptr=0x0, @inferred, 0x1, @_tid})
sendmsg$auto_NL802154_CMD_DEL_INTERFACE(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1}, 0xc, 0x0}, 0x80)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
sendmmsg$auto(0xffffffffffffffff, &(0x7f00000000c0)={{0x0, 0x6, 0x0, 0xa7, &(0x7f0000000040)='\'', 0x8001, 0x9}, 0x8}, 0x1, 0x9)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0xff, 0x0, 0x1, 0x3}, 0xed7138c}, 0xb, 0x0)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="01002dbd7000fcdbdf252100000008000300", @ANYRES32=r6, @ANYBLOB="08009e"], 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$auto_MACSEC_CMD_UPD_TXSA(r0, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f00000018c0)={0x28, r2, 0x1, 0x70bd27, 0x25dfdbfc, {}, [@MACSEC_ATTR_SA_CONFIG={0xc, 0x3, 0x0, 0x1, [@typed={0x8, 0x1, 0x0, 0x0, @uid}]}, @MACSEC_ATTR_IFINDEX={0x8, 0x1, r3}]}, 0x28}, 0x1, 0x0, 0x0, 0x200480c7}, 0x80)

2.186967349s ago: executing program 3 (id=1629):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
socket(0x11, 0x2, 0x300)
connect$auto(0xffffffffffffffff, &(0x7f00000000c0)=@in={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x40}}, 0x55)
io_uring_setup$auto(0x6, 0x0)
connect$auto(0xffffffffffffffff, &(0x7f0000000000)=@l2tp={0x2, 0x0, @multicast2, 0x1}, 0x7f)
r0 = openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
ioctl$auto_IMADDTIMER(r0, 0x80044940, &(0x7f0000000040)=0x8)
r1 = openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$auto_IMDELTIMER(r1, 0x80044941, &(0x7f00000000c0)=0x8d1)
ioctl$auto_IMADDTIMER(r0, 0x80044940, &(0x7f0000000380)=0x3)
close_range$auto(0x2, 0xa, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket(0x10, 0x2, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x5, 0x0)
io_setup$auto(0x1, 0x0)
r3 = socket(0x2, 0x80802, 0x0)
setsockopt$auto(r3, 0x11, 0x68, 0x0, 0x8)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@hci={0x1f, 0x2}, 0x54)
write$auto(0x3, 0x0, 0xffd8)
recvmmsg$auto(r2, 0x0, 0x10a, 0x8, 0x0)
r4 = syz_genetlink_get_family_id$auto_net_dm(&(0x7f0000000140), r3)
sendmsg$auto_NET_DM_CMD_CONFIG_GET(r2, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000240)={&(0x7f0000000180)={0x14, r4, 0x200, 0x70bd26, 0x259fdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x44000}, 0x40010)
setgroups$auto(0xe32, 0x0)
write$auto(0x3, 0x0, 0xfdef)

2.028175522s ago: executing program 1 (id=1630):
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/kernel/shm_rmid_forced\x00', 0x42a81, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x802, 0x0)
select$auto(0x5, 0x0, &(0x7f0000000100)={[0x9, 0x200, 0x0, 0x8000000000000201, 0x9, 0x3, 0x6, 0x7, 0xd886, 0x5e58296b, 0x341, 0x41, 0x7, 0x200, 0x8, 0xc]}, 0x0, 0x0)
socket(0xa, 0x5, 0x0)
socket(0xa, 0x801, 0x84)
listen$auto(0x3, 0x81)
listen$auto(0x3, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/bdi/43:288/max_ratio_fine\x00', 0x10b142, 0x0)
r2 = socket(0x1e, 0x1, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
getsockopt$auto(r2, 0x6, 0x9, 0x0, 0x0)
sendfile$auto(r0, r1, 0x0, 0x1000200)

2.021434604s ago: executing program 3 (id=1631):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r0 = socket(0x2b, 0x1, 0x1)
getsockopt$auto(r0, 0x1, 0x1a, 0x0, 0x0)
r1 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/mem\x00', 0x100, 0x0)
prctl$auto_PR_PAC_RESET_KEYS(0x36, 0x6, 0xffffffffffffffff, 0x6, 0x3ff)
mmap$auto(0x0, 0x200006, 0x0, 0x40eb0, r0, 0x4)
mbind$auto(0x0, 0x2, 0x2, &(0x7f0000002100)=0x4, 0x7, 0x0)
get_mempolicy$auto(0x0, 0x0, 0x7f, 0x41ff, 0x3)
socket(0x2c, 0x3, 0x0)
setsockopt$auto(0x4, 0x0, 0x480, 0xfffffffffffffffe, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
socket(0x15, 0x5, 0x0)
mmap$auto(0x0, 0x9, 0x3, 0x800019b72, 0x9, 0x8000000000008000)
setsockopt$auto(0x3, 0x114, 0x7, 0x0, 0xa0)
r2 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0)
ioctl$auto(r2, 0x2289, 0xbb1)
mmap$auto(0x8000000, 0x5, 0xdf, 0xeb1, r1, 0x1)
mlockall$auto(0x7)
write$auto(0x3, 0x0, 0x7fffffff)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r3 = socket(0x2a, 0x2, 0xb)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xffffeffe, 0x2)
pipe$auto(0x0)
pipe$auto(0x0)
fcntl$auto(r3, 0x5, 0x6)
r4 = socket(0x2, 0x5, 0x0)
setsockopt$auto(r4, 0x0, 0x10, 0x0, 0x17)

1.93493249s ago: executing program 2 (id=1632):
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/stat/synproxy\x00', 0xc0a00, 0x0)
pread64$auto(r0, &(0x7f0000000040)='/proc/thread-self/net/tcp6\x00\xd2)\x8e\x892\x82\x19\xfd\x03\xc3\x8d\xd7D\x8d\xa8\xcfM9\\\xd6\xcfUq\x05#\xed\x1c\xd1G\bz\xde5u4\xddS\xe6\x1a\x8a`\xad0\x98|\xbc\x00\x98\b\x0ey\xcb`\x9b\x91r\xd5\x13\x9e\xdd4\xe7\xb7\x94P\x8fBlm\x04eAW\xbc0\x9b\xbd\x8f\xf5];\x94\x18\xf0\v\xd7\xf4P\xd3\x9e,Q\xd8\x16\x989l\x03\a\xcc\x1e\xb9\xe9{\xeeS\xa9\xc60\x00\xb5&\x9e\xdbk{F\x18\xa8\xbasG\xd3\x80\xb1G.\xec1\x96uP\x97\x8co\xf1\xa6\xd5\xea\xc8L3|a\xb3\xaa\x90Y\xb19\xad\xdc\x05o\x98g\xd4\x10]5\x95\xd0\xabJC\x06\xd0c\xd1Ra\xf7\xc4n\xdf\xe4\xc7\x03\x19x\xbb\v\x00\t\xde\xf5\x93\xfb\xfb#\xbd\xc0S\f57\x83\xdd\xaa\xf0\x9c\xd3G\xe1', 0x3ff, 0x9)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x2, 0x8000)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), r2)
sendmsg$auto_NL80211_CMD_SET_PMKSA(r2, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x8001}, 0x40)
clone3$auto(&(0x7f00000001c0)={0x3, 0x6, 0x8000000000000000, 0xc05, 0x0, 0x8000, 0xfffffffffffffffd, 0x9, 0x100000000, 0x7, 0x1}, 0x7)
io_uring_setup$auto(0x1, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
r3 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000700), 0xffffffffffffffff)
sendmsg$auto_IPVS_CMD_SET_CONFIG(r1, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="01002abd47ae14"], 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x20040804)
r4 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
read$auto(r4, 0x0, 0x1f40)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x200440c4}, 0x40048c5)
sendmsg$auto_OVS_DP_CMD_DEL(r1, &(0x7f0000001180)={&(0x7f0000001080)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000001140)={&(0x7f00000011c0)=ANY=[@ANYBLOB='H\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="02202bbd7000ffaa000008000200f9bb36572673bf33d62253cfaf726346fbf9164ccb39df9f6fb3fc16fda848fa39da1e95541ffb4fa1e2cf23bb49f823eff63ceaf49b66ca1a623035ba788b6b7ebe33a047916be92cc4fed9f4f8e57e9362a30304b1a61191884abf5be0cbb3f6f6a5cb409cb8164b347a2d8b9997b46736decc4f0e1d", @ANYRES32, @ANYBLOB="08000200", @ANYRES32, @ANYBLOB="240001002f7379732f6b65726e656c2f64656275672f74726163696e672f747261636500"], 0x48}, 0x1, 0x0, 0x0, 0x240008d3}, 0x4c080)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x1000000000045, 0x100000001, 0xfffdffff, 0x0, 0x0, 0x0, 0x1000000006, 0x6, 0x7, 0x401, 0x7ffffffb, 0x5, 0xffffffff80000000, 0x1, 0x61, 0x103})
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r5, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000001040)='/proc/thread-self/fail-nth\x00', 0xa802, 0x0)
openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/trace\x00', 0x600, 0x0)
fcntl$auto(0x0, 0x407, 0x8100000)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)

1.915297765s ago: executing program 0 (id=1633):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000840), r0)
sendmsg$auto_OVS_CT_LIMIT_CMD_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000f80)={0x54, r1, 0x1, 0x51bd2e, 0x25dfcbfb, {}, [@OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x4}, @OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x3c, 0x1, 0x0, 0x1, [@nested={0x4, 0x6}, @nested={0x21, 0x134, 0x0, 0x1, [@generic="d54237515a5c936d57817f7660335b9c07934ba28841e78d8f", @nested={0x4, 0x2e}]}, @typed={0x8, 0xd2, 0x0, 0x0, @ipv4=@rand_addr=0x64010101}, @typed={0x8, 0x38, 0x0, 0x0, @u32=0x4}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x40}, 0x4)

1.772825217s ago: executing program 1 (id=1634):
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x0, 0x0)
mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000)
r0 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f00000006c0)='/dev/mtd0\x00', 0x0, 0x0)
openat$auto_trace_options_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/options/blk_classic\x00', 0x942, 0x0)
ioctl$auto_MEMGETREGIONCOUNT(r0, 0x80044d07, &(0x7f0000000700)=0x2)
quotactl_fd$auto(0xffffffffffffffff, 0x1, 0x0, 0x0)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x3, 0x6, 0x0, 0x200000000000001, 0x368e, 0x2, {0x100000000, 0x4}, 0xff, 0x6, 0xfffffffffffffffd, 0x1008000, 0x0, 0x8000000c, 0x81, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x804})
r1 = socket(0x2b, 0x1, 0x1)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x2, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0xa3da)
syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000180), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_THERMAL_GENL_CMD_THRESHOLD_DELETE(r1, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000200)={&(0x7f00000006c0)=ANY=[@ANYBLOB, @ANYRES16, @ANYBLOB="000126bd7000fcdbdf25090000000400018004000f80c3fc0e003264650101000000000000636572320014001300766c616e3000"/62], 0x44}, 0x1, 0x0, 0x0, 0x8004}, 0x40)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/scsi/sg/allow_dio\x00', 0x101181, 0x0)
socket(0x2, 0x1, 0x0)
socket(0x15, 0x5, 0x0)
ustat$auto(0x801, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)

1.737886309s ago: executing program 0 (id=1635):
r0 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/pcmC0D0c\x00', 0x101102, 0x0)
ioctl$auto_SNDRV_PCM_IOCTL_TTSTAMP2(r0, 0x40044103, &(0x7f0000000080)=0x78)
socket(0xf, 0x80003, 0x300)
mmap$auto(0x0, 0x20009, 0x94a, 0xeb1, 0x401, 0x8000)
r1 = socketpair$auto(0xffffffff, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = socket(0xa, 0x806, 0x0)
syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000040), r2)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa}, 0x55)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000001100), r5)
sendmsg$auto_CTRL_CMD_GETFAMILY(r5, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000001180)={&(0x7f0000001140)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r6, @ANYBLOB="01002dbd7000ffdbdf25030000000600010030"], 0x1c}, 0x1, 0x0, 0x0, 0x20000004}, 0x20000044)
r7 = syz_genetlink_get_family_id$auto_thermal(&(0x7f0000000200), r5)
sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_TEMP(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000036c0)=ANY=[@ANYBLOB='\x006\x00\x00', @ANYRES16=r7, @ANYBLOB="01002bbd7000fedbdfa503000000e43501805b"], 0x3600}, 0x1, 0x0, 0x0, 0x4008000}, 0x8084)
sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_TEMP(r3, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB='@', @ANYRES16=r7, @ANYBLOB="000129bd7000fedbdf250300000008000a000700000008000a0005000000080006000600000008000d80040058001400130062617461647630000000000000000000080010000400000008000a0000000000"], 0x58}, 0x1, 0x0, 0x0, 0x20000000}, 0x800)
sendmsg$auto_THERMAL_GENL_CMD_THRESHOLD_GET(r1, &(0x7f0000000340)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10200004}, 0xc, &(0x7f0000000300)={&(0x7f0000000180)=ANY=[@ANYBLOB="24010400", @ANYRES16=r7, @ANYBLOB="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"], 0x124}, 0x1, 0x0, 0x0, 0x5}, 0x4000000)
request_key$auto(0x0, 0x0, 0x0, 0xfffffffd)
r8 = setfsuid$auto(0xee00)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f0000000040), 0xffffffffffffffff)
read$auto_page_owner_stack_operations_page_owner(r0, &(0x7f00000000c0)=""/95, 0x5f)
sendmsg$auto_OVS_METER_CMD_DEL(r9, &(0x7f0000001180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="6471246060449559de55772ce18bedf0a14065", @ANYRES16=r10, @ANYBLOB="010028bd7000ffdbdf2503000000040002000800010001000080"], 0x20}, 0x1, 0x0, 0x0, 0x4800}, 0x4000)
setreuid$auto(r8, 0x0)
keyctl$auto(0x3, 0x102000000010001, r8, 0x200, 0x2)

1.019901044s ago: executing program 1 (id=1636):
openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cuse\x00', 0x40000, 0x0)
r0 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000001cc0), 0x101440, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f00000000c0)={{0x0, 0x2, 0x200800, 0xffffffff, 0xfffffffb}, "0dd7fd004929347eeeccdf0732f77b1f6de0d6d51768a257a97ca5e9ca6310ea"})
ioctl$auto_SNDRV_TIMER_IOCTL_PAUSE(r0, 0x54a3, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ram7\x00', 0x80, 0x0)
openat$auto_dfs_global_fops_debug(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/ubifs/chk_index\x00', 0x595c00, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/platform/vhci_hcd.10/usb30/ep_00/bmAttributes\x00', 0x12b5c0, 0x0)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x742, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/system/machinecheck/machinecheck1/cmci_disabled\x00', 0x165f82, 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84)
fallocate$auto(0x8000000000000003, 0x0, 0xd, 0xcbd5d)
memfd_secret$auto(0x0)
mmap$auto(0x0, 0x8, 0xfffffffffffffffa, 0x13, 0x3, 0x0)
r2 = pipe2$auto(0x0, 0x80)
sendfile$auto(0x6, 0x3, 0x0, 0xc01)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
r3 = open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x80842, 0x91)
read$auto(r3, 0x0, 0x1)
write$auto(0x3, 0x0, 0xfffffdef)
unshare$auto(0x40000080)
unshare$auto(0x40000080)
openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/ieee80211/phy5/netdev:wlan0/stations/08:02:11:00:00:01/vht_capa\x00', 0x40080, 0x0)
mmap$auto(0x0, 0xfffffffffffffffe, 0xdf, 0x16, r2, 0xc3)
r4 = socket(0x25, 0x1, 0x2)
sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000640)=ANY=[@ANYBLOB="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", @ANYRESDEC=r1], 0x1ac}, 0x1, 0x0, 0x0, 0x8841}, 0x40000)
read$auto(0x3, 0x0, 0x1)
read$auto(r4, &(0x7f0000000040)='\x00', 0x10001)
read$auto(0x3, 0x0, 0x80)
mmap$auto(0x400000, 0x2000b, 0x4000000000df, 0xeb1, 0x401, 0x8000)

857.711898ms ago: executing program 2 (id=1637):
r0 = openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/ieee80211/phy14/netdev:wlan1/rc_rateidx_vht_mcs_mask_2ghz\x00', 0x101000, 0x0)
pidfd_send_signal$auto_0(r0, 0x2, &(0x7f0000000180)={@_si_pad}, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev5\x00', 0x3280, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp1\x00', 0x200, 0x0)
ioctl$auto_SOUND_MIXER_READ_RECMASK2(r1, 0x80044dfd, &(0x7f0000000200)="89b0dd2c26f2f80dadab910d9ec3f9d3f5bcd41abf08eea7239eeea3fc39061a7f572cdfeca84d3c9fd8e3059b2528681508a0f651528165eff45c9ea50ed7707db3f595bbc45bf31c79")
r2 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0)
ioctl$auto_PPPIOCSMRU(r2, 0xc004743e, 0x0)
ioctl$auto_PPPIOCSPASS(r2, 0x40107447, &(0x7f00000000c0)={0x401, 0x0})

790.042422ms ago: executing program 0 (id=1638):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
getcwd$auto(0x0, 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x5, 0x0)
inotify_init1$auto(0x3000000000000)
inotify_add_watch$auto(0x4, 0x0, 0xe6e)
inotify_add_watch$auto(0x4, 0x0, 0x10000e6e)
unshare$auto(0x40000080)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, 0x0, 0x2000, 0x0)
r0 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
ioctl$auto_UI_DEV_SETUP(r0, 0x405c5503, &(0x7f00000000c0)={{0x9, 0xf2cf, 0x8, 0x80}, "6a034a07c7b82d90b69a39e32576f893fba86c9dd051a0094a3836d61c9100fefbbabea6ef9368c7996e841f3f1561d4992f726b0a6c36b0b2fd1678e816201cf562367fe6596824588a2e3d84ba165f", 0xa})
ioctl$auto_UI_DEV_CREATE(r0, 0x5501, 0x0)
write$auto(0x3, 0x0, 0x7fffffff)
write$auto(0x3, 0x0, 0xfdef)
link$auto(0x0, &(0x7f00000001c0)='./file0\x00')
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
statmount$auto(0x0, &(0x7f0000000180)={0x8000008, 0x1, 0x38a1, 0x3, 0x26, 0x200, 0x1ffde, 0x3, 0x6, 0x902c, 0x19, 0x400005, 0x3, 0x4, 0xb0, 0x8, 0x9, 0x3, 0x5, 0x6, 0x0, 0xffffffff, 0xfffffffe, 0x0, 0x0, 0x0, [0x3, 0x3, 0x200000000, 0x400000000, 0x2, 0x3903, 0x0, 0x4, 0x3, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0xffffffeffffffffe, 0x2, 0x0, 0xceb, 0x0, 0xfffffffffffffffc, 0x0, 0x4, 0x96f, 0xffffffffffffffff, 0x3, 0x4001, 0x3, 0x0, 0xb548, 0x8, 0x1, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb, 0x3]}, 0xfffff7fffffffffa, 0x81)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r1, 0x0, 0x20)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
munlock$auto(0x9, 0x29b9)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3)
eventfd$auto(0x2)

594.03023ms ago: executing program 3 (id=1639):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000002400)='/sys/devices/virtual/mtd/mtd0/mtdblock0/ro\x00', 0x20000, 0x0) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async)
sysfs$auto(0x2, 0x10000000000002a, 0x0) (async)
fsopen$auto(0x0, 0x1)
close_range$auto(0x2, 0x8, 0x0)
getdents$auto(r0, &(0x7f0000000100)={0x800, 0x6, 0x3, "694e35b9d41e181fcace6c00f28fdeb373a62873d9b2445d6f402374b30e6d89639b814a9306349576d6d59f6aa6b148bf30c1824e5867e9fbda6ba5356a05656ee3ab77904f800377786443351f953c2c3fc10af304b60e61b4f2ed74a3a55bcbf31611f6cea89dcd64277a4843d59dfc3b29c22050a0363c8d6d764d909a5620ee11fee823ee520398b761473fbe3adb79722e16dd4cc19af5ab19ec35df6439f000381eb1fb0176d6aa8de2d080e629f53833d92f7752d4d9755f42a330d234a94ae0e43636d168e6c6b277019f60d59732699fe3eca5dc76"}, 0x4c3) (async)
mbind$auto(0x0, 0x764, 0x4, &(0x7f0000000280)=0x1, 0x3, 0x4) (async)
close_range$auto(0x2, 0x8, 0xffffffff) (async)
socket(0x2, 0x80002, 0x73) (async)
socket(0xa, 0x1, 0x84) (async)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) (async)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54) (async)
sendmsg$auto_NL802154_CMD_SET_PAN_ID(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00', @ANYRES16, @ANYBLOB="010027bd7000fddbdf250a0005000700000000000000080001"], 0x24}, 0x1, 0x0, 0x0, 0x4088}, 0x20000010) (async)
sendmsg$auto_TIPC_NL_NET_SET(0xffffffffffffffff, &(0x7f00000079c0)={0x0, 0x0, &(0x7f0000007980)={&(0x7f0000000000)=ANY=[@ANYRES16=0x0, @ANYBLOB="01007050a7f82fc634b10f00003460fac93497d76d"], 0x1c}, 0x1, 0x0, 0x0, 0x40010}, 0x2)
futex_waitv$auto(&(0x7f0000000000)={0xf, 0x5d94, 0x4002, 0x4}, 0x77, 0xfffffffc, 0x0, 0x62bd)
r1 = socket(0x10, 0x2, 0x0)
madvise$auto(0x80000001, 0x101, 0x1)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x800}, 0x40000)
write$auto(0x3, 0x0, 0xfdef)
write$auto(0x3, 0x0, 0xfdef) (async)
select$auto(0xffff0000, &(0x7f0000000080)={[0x20000009, 0xfffffffffffbfffc, 0x9, 0x5, 0xc, 0x0, 0x3, 0x1ffe000, 0x2, 0x2, 0x9, 0xf, 0xa657, 0x202, 0x6]}, 0x0, 0x0, 0x0) (async)
setfsuid$auto(0x1) (async)
unshare$auto(0x40000080)
madvise$auto(0x0, 0x20200, 0x15) (async)
close_range$auto(0x2, 0x8, 0x0)

314.88462ms ago: executing program 2 (id=1640):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
mbind$auto(0x0, 0x8, 0x6, &(0x7f0000000280)=0xff, 0xf8, 0x2)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x110000, 0x0)
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp1\x00', 0x2, 0x0)
ioctl$auto_SNDCTL_DSP_GETOPTR(r1, 0x800c5012, &(0x7f0000001340))
ioctl$auto_KVM_GET_SUPPORTED_CPUID(r0, 0xc008ae05, &(0x7f0000000080)={0x9, 0x0, [{0xf, 0x8, 0x2, 0x2a6, 0x3, 0x8}, {0x6c, 0x5, 0xffffffff, 0x8, 0x18000, 0x4, 0x2}, {0xd0, 0x2, 0x2, 0x3, 0x1, 0x3, 0x6}]})
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
move_pages$auto(0x1, 0x233, 0x0, 0x0, 0x0, 0x8000000000000000)
memfd_create$auto(0x0, 0xe)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x3, 0xa)
ioctl$auto(0x3, 0x541b, 0x7f)
r4 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000700), 0xffffffffffffffff)
r5 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/renderD128\x00', 0x129800, 0x0)
ioctl$auto(r5, 0x9210641f, 0xd)
sendmsg$auto_IPVS_CMD_SET_CONFIG(r3, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)={0x1c, r4, 0x1, 0x70bd28, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x14ae4701}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x20040804)
r6 = gettid()
kcmp$auto(r6, r6, 0x91f, 0xffffffffffffffff, 0xffffffffffffffff)
waitid$auto_P_PID(0x1, 0xffffffffffffffff, &(0x7f0000000140)={@siginfo_0_0={0xc13, 0xfff, 0xf, @_sigchld={<r7=>0x0, 0x0, 0x7ff, 0x80, 0x7}}}, 0x4, &(0x7f00000001c0)={{0x3, 0x7fffffffffffffff}, {0x0, 0x7f}, 0x8, 0x7, 0x7fff, 0x6, 0x7, 0xa0, 0x0, 0x6, 0x5de, 0x202000000000, 0x1, 0xffffffffffffffc0, 0x7})
sendmsg$auto_IPVS_CMD_NEW_DAEMON(r2, &(0x7f0000001c80)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000001c40)={&(0x7f0000000280)=ANY=[@ANYBLOB="88190000", @ANYRES16=r4, @ANYBLOB="00022abd7000fbdbdf25090000000800040000000000d811018034109e80040029800c00d100de0800000000000008007d00", @ANYRES32=0xee01, @ANYBLOB="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", @ANYRES32=r2, @ANYBLOB="05003600000000000c000f8008003a0005000000bd00858004004c8008002f00", @ANYRES32, @ANYBLOB="0400498008008600ac1414420400a180388109120b3615c584628f0a4c638277efbd7e056fdc21cff3f2d6d0a960bbe65cc07bfa89b5019d8e6278c2a28a0543d66c8ae0bc0a9b61105d3b9b9b5a5a16af5ce8682cc0dcb698222a31849885c74531986ac9212e8dabebe7c5014d61f1568f2f97f2f1b30dcff5558b5e04787aa9d333727b0341c50245bf686db3162bb9a5d477093b264834a2b832aec7c3cb48795a9cc80800c200", @ANYRES32=r6, @ANYBLOB="000000c839136b12ff37018945f1115568553726591d82517cfc4ac5eabeadcf9f5d75bf676827d8b9a7add3bf754e47ab5157e5957e5277a61cb69db3382059baaa08cea567c4fcfc1105cc4b9561f6be49a721c258e264d6b846011b6fb2c2119f6fbfeaa86138ad751f82fa0876791f4355d75ca60b2b90b6a2ed707e6cc990df0e72d213ec6b274999cb8b0fdb517b70e5c38299df8419f8e42f49666752565505ea522ae0555e206a91f999d961fbe461e19591ddd0893dbe036247afe2002d7c94b01ea6b3532185b6d5e3988357da1d848d59b608000400f20700000800050001800000140302800403cf805702f4805603147a6de1c17f311710309066e5710925899991741e7bbcedc000b3c0669549e8edc945b51ac3bc587b845acc21f85b0bf1fa60be30d41ee56882584bc85efc3cab8c725bce40696c94631889fd3c04b4613603e958b9fb7608002200ac14142c414aaf3f3202b6febd4aafabdfee154a594449a2018776ca851e573ff43a6d6c63ad6a83e3a2d7a53a416ea3a93a0069bf1a63c85047be6de47c45db08005100", @ANYRES32=r0, @ANYBLOB="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", @ANYRES32=r7, @ANYBLOB="08000400220000006504018008002b00", @ANYRES32=0xee00, @ANYBLOB="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"], 0x1988}}, 0x20000814)
r8 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000002440), r2)
gettid()
sendmsg$auto_NL80211_CMD_GET_SURVEY(r2, &(0x7f0000002780)={0x0, 0x0, &(0x7f0000002740)={&(0x7f0000000040)=ANY=[@ANYBLOB="140041ef", @ANYRES64=r8, @ANYBLOB="3d0725bd7000fedbdf2532000000", @ANYRES16=r8], 0x14}, 0x1, 0x0, 0x0, 0xf0}, 0x8010)

0s ago: executing program 0 (id=1641):
unshare$auto(0x40000080)
socket(0xa, 0x1, 0x100) (async)
setsockopt$auto(0x400000000000003, 0x29, 0x1b, 0x0, 0x56b) (async)
r0 = socket(0x10, 0x3, 0x6)
mmap$auto(0x0, 0x7f, 0x1, 0xeb1, 0x401, 0x8000) (async)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYRES16=0x0, @ANYRESOCT=r0, @ANYBLOB='\a\x00\x00'], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x8041) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="18"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
io_uring_setup$auto(0x6, 0x0) (async)
clock_nanosleep$auto(0xb, 0xa000001c, 0x0, 0xffffffffffffffff) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x20b42, 0x0)
ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r1, 0xc004500a, &(0x7f00000003c0))
mmap$auto(0x6, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000002) (async, rerun: 64)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) (async, rerun: 64)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/rose1/statistics/rx_missed_errors\x00', 0x40000, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000040)=""/44, 0x2c) (async)
r3 = getpgid(0x0) (async, rerun: 32)
r4 = gettid() (rerun: 32)
rt_sigqueueinfo$auto(r4, 0x1, 0x0)
rt_tgsigqueueinfo$auto(r4, r3, 0xb6a, &(0x7f0000000100)={@siginfo_0_0={0x1, 0x86, 0x0, @_kill={r4, 0xffffffffffffffff}}}) (async)
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x40)
execve$auto(&(0x7f0000000180)='./file0\x00', &(0x7f0000000100)=&(0x7f0000000080)='\xac\x00', &(0x7f0000000000)=&(0x7f0000000200)=' ')

kernel console output (not intermixed with test programs):

33][ T9059] CPU: 1 UID: 0 PID: 9059 Comm: syz.3.734 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  313.833762][ T9059] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  313.833774][ T9059] Call Trace:
[  313.833782][ T9059]  <TASK>
[  313.833789][ T9059]  dump_stack_lvl+0x16c/0x1f0
[  313.833822][ T9059]  should_fail_ex+0x512/0x640
[  313.833845][ T9059]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  313.833879][ T9059]  should_failslab+0xc2/0x120
[  313.833899][ T9059]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  313.833931][ T9059]  ? __alloc_skb+0x2b2/0x380
[  313.833963][ T9059]  __alloc_skb+0x2b2/0x380
[  313.833988][ T9059]  ? __pfx___alloc_skb+0x10/0x10
[  313.834012][ T9059]  ? __pfx_rtnl_dellink+0x10/0x10
[  313.834060][ T9059]  netlink_ack+0x15d/0xb80
[  313.834101][ T9059]  netlink_rcv_skb+0x347/0x440
[  313.834132][ T9059]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  313.834163][ T9059]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  313.834210][ T9059]  ? netlink_deliver_tap+0x1ae/0xd30
[  313.834246][ T9059]  netlink_unicast+0x53a/0x7f0
[  313.834281][ T9059]  ? __pfx_netlink_unicast+0x10/0x10
[  313.834308][ T9059]  ? __lock_acquire+0xaa4/0x1ba0
[  313.834338][ T9059]  netlink_sendmsg+0x8d1/0xdd0
[  313.834373][ T9059]  ? __pfx_netlink_sendmsg+0x10/0x10
[  313.834416][ T9059]  ____sys_sendmsg+0xa95/0xc70
[  313.834451][ T9059]  ? copy_msghdr_from_user+0x10a/0x160
[  313.834478][ T9059]  ? __pfx_____sys_sendmsg+0x10/0x10
[  313.834516][ T9059]  ? kfree+0x252/0x4d0
[  313.834540][ T9059]  ? __pfx__kstrtoull+0x10/0x10
[  313.834579][ T9059]  ___sys_sendmsg+0x134/0x1d0
[  313.834609][ T9059]  ? __pfx____sys_sendmsg+0x10/0x10
[  313.834667][ T9059]  ? __pfx___might_resched+0x10/0x10
[  313.834704][ T9059]  __sys_sendmmsg+0x200/0x420
[  313.834736][ T9059]  ? __pfx___sys_sendmmsg+0x10/0x10
[  313.834776][ T9059]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  313.834820][ T9059]  ? fput+0x70/0xf0
[  313.834841][ T9059]  ? ksys_write+0x1b9/0x240
[  313.834868][ T9059]  ? __pfx_ksys_write+0x10/0x10
[  313.834894][ T9059]  ? rcu_is_watching+0x12/0xc0
[  313.834926][ T9059]  __x64_sys_sendmmsg+0x9c/0x100
[  313.834953][ T9059]  ? lockdep_hardirqs_on+0x7c/0x110
[  313.834981][ T9059]  do_syscall_64+0xcd/0x260
[  313.835014][ T9059]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  313.835045][ T9059] RIP: 0033:0x7f3616f8d169
[  313.835063][ T9059] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  313.835084][ T9059] RSP: 002b:00007f3617e2b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  313.835106][ T9059] RAX: ffffffffffffffda RBX: 00007f36171a5fa0 RCX: 00007f3616f8d169
[  313.835121][ T9059] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000003
[  313.835135][ T9059] RBP: 00007f3617e2b090 R08: 0000000000000000 R09: 0000000000000000
[  313.835148][ T9059] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000002
[  313.835161][ T9059] R13: 0000000000000000 R14: 00007f36171a5fa0 R15: 00007ffc4d9705c8
[  313.835191][ T9059]  </TASK>
[  314.868234][ T9076] ubi0: attaching mtd0
[  314.964199][ T9076] ubi0: scanning is finished
[  314.991247][ T9076] ubi0 error: ubi_read_volume_table: the layout volume was not found
[  315.289348][ T9076] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  316.924584][ T9108] netlink: 'syz.1.750': attribute type 1 has an invalid length.
[  317.228277][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  317.238455][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  318.099605][ T9122] kAFS: unparsable volume name
[  318.798262][ T9137] netlink: 28 bytes leftover after parsing attributes in process `syz.2.760'.
[  319.018690][ T9137] bond0: (slave bond_slave_0): Releasing backup interface
[  319.115450][ T9141] FAULT_INJECTION: forcing a failure.
[  319.115450][ T9141] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  319.152891][ T9141] CPU: 1 UID: 0 PID: 9141 Comm: syz.3.761 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  319.152923][ T9141] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  319.152936][ T9141] Call Trace:
[  319.152943][ T9141]  <TASK>
[  319.152951][ T9141]  dump_stack_lvl+0x16c/0x1f0
[  319.152985][ T9141]  should_fail_ex+0x512/0x640
[  319.153014][ T9141]  _copy_from_user+0x2e/0xd0
[  319.153042][ T9141]  snd_rawmidi_kernel_write1+0x50a/0x8a0
[  319.153079][ T9141]  snd_rawmidi_write+0x26e/0xc10
[  319.153112][ T9141]  ? __pfx_snd_rawmidi_write+0x10/0x10
[  319.153138][ T9141]  ? __pfx_default_wake_function+0x10/0x10
[  319.153168][ T9141]  ? bpf_lsm_file_permission+0x9/0x10
[  319.153196][ T9141]  ? security_file_permission+0x71/0x210
[  319.153225][ T9141]  ? rw_verify_area+0xcf/0x680
[  319.153255][ T9141]  vfs_write+0x25c/0x1180
[  319.153282][ T9141]  ? __pfx_snd_rawmidi_write+0x10/0x10
[  319.153312][ T9141]  ? __pfx_vfs_write+0x10/0x10
[  319.153338][ T9141]  ? find_held_lock+0x2b/0x80
[  319.153366][ T9141]  ? __fget_files+0x204/0x3c0
[  319.153401][ T9141]  ? __fget_files+0x20e/0x3c0
[  319.153439][ T9141]  ksys_write+0x205/0x240
[  319.153468][ T9141]  ? __pfx_ksys_write+0x10/0x10
[  319.153495][ T9141]  ? rcu_is_watching+0x12/0xc0
[  319.153537][ T9141]  do_syscall_64+0xcd/0x260
[  319.153570][ T9141]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  319.153593][ T9141] RIP: 0033:0x7f3616f8d169
[  319.153611][ T9141] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  319.153631][ T9141] RSP: 002b:00007f3617e2b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  319.153652][ T9141] RAX: ffffffffffffffda RBX: 00007f36171a5fa0 RCX: 00007f3616f8d169
[  319.153667][ T9141] RDX: 000000100000a3d9 RSI: 0000200000000400 RDI: 0000000000000005
[  319.153683][ T9141] RBP: 00007f3617e2b090 R08: 0000000000000000 R09: 0000000000000000
[  319.153694][ T9141] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  319.153705][ T9141] R13: 0000000000000000 R14: 00007f36171a5fa0 R15: 00007ffc4d9705c8
[  319.153734][ T9141]  </TASK>
[  319.908870][ T9146] bridge0: port 3(netdevsim2) entered blocking state
[  319.970873][ T9146] bridge0: port 3(netdevsim2) entered disabled state
[  320.017434][ T9146] netdevsim netdevsim2 netdevsim2: entered allmulticast mode
[  320.038904][ T9142] Falling back ldisc for pty19.
[  320.073109][ T9146] netdevsim netdevsim2 netdevsim2: entered promiscuous mode
[  320.107570][ T9146] bridge0: port 3(netdevsim2) entered blocking state
[  320.114482][ T9146] bridge0: port 3(netdevsim2) entered forwarding state
[  320.608759][ T9155] FAULT_INJECTION: forcing a failure.
[  320.608759][ T9155] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  320.663816][ T9155] CPU: 0 UID: 0 PID: 9155 Comm: syz.0.765 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  320.663849][ T9155] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  320.663862][ T9155] Call Trace:
[  320.663870][ T9155]  <TASK>
[  320.663879][ T9155]  dump_stack_lvl+0x16c/0x1f0
[  320.663917][ T9155]  should_fail_ex+0x512/0x640
[  320.663946][ T9155]  _copy_from_user+0x2e/0xd0
[  320.663974][ T9155]  snd_rawmidi_kernel_write1+0x50a/0x8a0
[  320.664012][ T9155]  snd_rawmidi_write+0x26e/0xc10
[  320.664043][ T9155]  ? __pfx_snd_rawmidi_write+0x10/0x10
[  320.664070][ T9155]  ? __pfx_default_wake_function+0x10/0x10
[  320.664101][ T9155]  ? bpf_lsm_file_permission+0x9/0x10
[  320.664129][ T9155]  ? security_file_permission+0x71/0x210
[  320.664159][ T9155]  ? rw_verify_area+0xcf/0x680
[  320.664189][ T9155]  vfs_write+0x25c/0x1180
[  320.664216][ T9155]  ? __pfx_snd_rawmidi_write+0x10/0x10
[  320.664245][ T9155]  ? __pfx_vfs_write+0x10/0x10
[  320.664270][ T9155]  ? find_held_lock+0x2b/0x80
[  320.664298][ T9155]  ? __fget_files+0x204/0x3c0
[  320.664354][ T9155]  ? __fget_files+0x20e/0x3c0
[  320.664406][ T9155]  ksys_write+0x205/0x240
[  320.664437][ T9155]  ? __pfx_ksys_write+0x10/0x10
[  320.664465][ T9155]  ? rcu_is_watching+0x12/0xc0
[  320.664505][ T9155]  do_syscall_64+0xcd/0x260
[  320.664538][ T9155]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  320.664562][ T9155] RIP: 0033:0x7fc84598d169
[  320.664582][ T9155] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  320.664603][ T9155] RSP: 002b:00007fc8468ac038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  320.664625][ T9155] RAX: ffffffffffffffda RBX: 00007fc845ba5fa0 RCX: 00007fc84598d169
[  320.664641][ T9155] RDX: 000000100000a3d9 RSI: 0000200000000400 RDI: 0000000000000005
[  320.664655][ T9155] RBP: 00007fc845a0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  320.664669][ T9155] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  320.664683][ T9155] R13: 0000000000000000 R14: 00007fc845ba5fa0 R15: 00007ffeb1a8ee98
[  320.664714][ T9155]  </TASK>
[  321.040019][ T9170] FAULT_INJECTION: forcing a failure.
[  321.040019][ T9170] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  321.122123][ T9170] CPU: 1 UID: 0 PID: 9170 Comm: syz.1.769 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  321.122155][ T9170] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  321.122168][ T9170] Call Trace:
[  321.122176][ T9170]  <TASK>
[  321.122185][ T9170]  dump_stack_lvl+0x16c/0x1f0
[  321.122220][ T9170]  should_fail_ex+0x512/0x640
[  321.122252][ T9170]  _copy_to_user+0x32/0xd0
[  321.122282][ T9170]  simple_read_from_buffer+0xcb/0x170
[  321.122322][ T9170]  proc_fail_nth_read+0x197/0x270
[  321.122354][ T9170]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  321.122387][ T9170]  ? rw_verify_area+0xcf/0x680
[  321.122412][ T9170]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  321.122442][ T9170]  vfs_read+0x1de/0xc70
[  321.122476][ T9170]  ? __pfx___mutex_lock+0x10/0x10
[  321.122507][ T9170]  ? __pfx_vfs_read+0x10/0x10
[  321.122546][ T9170]  ? __fget_files+0x20e/0x3c0
[  321.122587][ T9170]  ksys_read+0x12a/0x240
[  321.122616][ T9170]  ? __pfx_ksys_read+0x10/0x10
[  321.122643][ T9170]  ? rcu_is_watching+0x12/0xc0
[  321.122681][ T9170]  do_syscall_64+0xcd/0x260
[  321.122714][ T9170]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  321.122737][ T9170] RIP: 0033:0x7fad2018bb7c
[  321.122756][ T9170] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  321.122777][ T9170] RSP: 002b:00007fad20f42030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  321.122798][ T9170] RAX: ffffffffffffffda RBX: 00007fad203a5fa0 RCX: 00007fad2018bb7c
[  321.122813][ T9170] RDX: 000000000000000f RSI: 00007fad20f420a0 RDI: 0000000000000004
[  321.122827][ T9170] RBP: 00007fad20f42090 R08: 0000000000000000 R09: 0000000000000000
[  321.122841][ T9170] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  321.122853][ T9170] R13: 0000000000000000 R14: 00007fad203a5fa0 R15: 00007ffec545af08
[  321.122885][ T9170]  </TASK>
[  321.319349][ T9168] netlink: 326 bytes leftover after parsing attributes in process `syz.2.771'.
[  321.328793][ T9169] netlink: 326 bytes leftover after parsing attributes in process `syz.2.771'.
[  321.360949][ T9162] program syz.3.767 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  328.058151][ T9268] netlink: 330 bytes leftover after parsing attributes in process `syz.2.796'.
[  329.157249][ T9299] netlink: 330 bytes leftover after parsing attributes in process `syz.3.805'.
[  332.505259][ T9347] netlink: 330 bytes leftover after parsing attributes in process `syz.1.818'.
[  335.811232][ T9381] netlink: 330 bytes leftover after parsing attributes in process `syz.0.828'.
[  335.951286][ T9383] netlink: 330 bytes leftover after parsing attributes in process `syz.0.837'.
[  338.202831][ T9417] netlink: 330 bytes leftover after parsing attributes in process `syz.3.840'.
[  339.319008][ T9439] netlink: 28 bytes leftover after parsing attributes in process `syz.0.846'.
[  339.738829][ T9439] bond0: (slave bond_slave_0): Releasing backup interface
[  340.472895][ T9445] bridge0: port 2(netdevsim2) entered blocking state
[  340.490197][ T9445] bridge0: port 2(netdevsim2) entered disabled state
[  340.518392][ T9445] netdevsim netdevsim0 netdevsim2: entered allmulticast mode
[  340.577640][ T9445] netdevsim netdevsim0 netdevsim2: entered promiscuous mode
[  340.608107][ T9445] bridge0: port 2(netdevsim2) entered blocking state
[  340.614918][ T9445] bridge0: port 2(netdevsim2) entered forwarding state
[  340.622763][    T0] NOHZ tick-stop error: local softirq work is pending, handler #240!!!
[  341.074398][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  345.574368][ T9528] netlink: 'syz.3.867': attribute type 10 has an invalid length.
[  345.582287][ T9528] netlink: 230 bytes leftover after parsing attributes in process `syz.3.867'.
[  347.450453][ T9548] bridge0: port 3(netdevsim2) entered blocking state
[  347.473232][ T9548] bridge0: port 3(netdevsim2) entered disabled state
[  347.528146][ T9548] netdevsim netdevsim1 netdevsim2: entered allmulticast mode
[  347.565452][ T9548] netdevsim netdevsim1 netdevsim2: entered promiscuous mode
[  347.588676][ T9548] bridge0: port 3(netdevsim2) entered blocking state
[  347.595579][ T9548] bridge0: port 3(netdevsim2) entered forwarding state
[  350.814814][ T9597] FAULT_INJECTION: forcing a failure.
[  350.814814][ T9597] name failslab, interval 1, probability 0, space 0, times 0
[  350.827715][ T9597] CPU: 1 UID: 0 PID: 9597 Comm: syz.0.886 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  350.827745][ T9597] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  350.827753][ T9597] Call Trace:
[  350.827760][ T9597]  <TASK>
[  350.827765][ T9597]  dump_stack_lvl+0x16c/0x1f0
[  350.827788][ T9597]  should_fail_ex+0x512/0x640
[  350.827804][ T9597]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[  350.827829][ T9597]  should_failslab+0xc2/0x120
[  350.827842][ T9597]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  350.827862][ T9597]  ? vfs_mkdir+0x590/0x8c0
[  350.827876][ T9597]  ? do_mkdirat+0x304/0x3e0
[  350.827891][ T9597]  ? __x64_sys_mkdir+0xef/0x140
[  350.827909][ T9597]  ? kstrdup_const+0x63/0x80
[  350.827923][ T9597]  kstrdup+0x53/0x100
[  350.827936][ T9597]  kstrdup_const+0x63/0x80
[  350.827947][ T9597]  __kernfs_new_node+0x9b/0x8a0
[  350.827968][ T9597]  ? __pfx___kernfs_new_node+0x10/0x10
[  350.827991][ T9597]  ? find_held_lock+0x2b/0x80
[  350.828009][ T9597]  ? kernfs_root+0xee/0x2a0
[  350.828031][ T9597]  kernfs_new_node+0x13c/0x1e0
[  350.828047][ T9597]  __kernfs_create_file+0x53/0x350
[  350.828065][ T9597]  cgroup_addrm_files+0x546/0xc20
[  350.828085][ T9597]  ? __lock_acquire+0x5ca/0x1ba0
[  350.828096][ T9597]  ? __pfx_cgroup_addrm_files+0x10/0x10
[  350.828115][ T9597]  ? css_next_child+0xcf/0x2d0
[  350.828134][ T9597]  ? css_next_descendant_pre+0x58/0x1a0
[  350.828155][ T9597]  css_populate_dir+0x386/0x530
[  350.828174][ T9597]  cgroup_mkdir+0x37e/0x1160
[  350.828189][ T9597]  ? __pfx_cgroup_mkdir+0x10/0x10
[  350.828203][ T9597]  kernfs_iop_mkdir+0x108/0x190
[  350.828215][ T9597]  ? bpf_lsm_inode_mkdir+0x9/0x10
[  350.828231][ T9597]  vfs_mkdir+0x590/0x8c0
[  350.828248][ T9597]  do_mkdirat+0x304/0x3e0
[  350.828293][ T9597]  ? __pfx_do_mkdirat+0x10/0x10
[  350.828317][ T9597]  __x64_sys_mkdir+0xef/0x140
[  350.828335][ T9597]  do_syscall_64+0xcd/0x260
[  350.828355][ T9597]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  350.828368][ T9597] RIP: 0033:0x7fc84598d169
[  350.828381][ T9597] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  350.828393][ T9597] RSP: 002b:00007fc84688b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[  350.828405][ T9597] RAX: ffffffffffffffda RBX: 00007fc845ba6080 RCX: 00007fc84598d169
[  350.828415][ T9597] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00002000000002c0
[  350.828422][ T9597] RBP: 00007fc845a0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  350.828431][ T9597] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  350.828438][ T9597] R13: 0000000000000000 R14: 00007fc845ba6080 R15: 00007ffeb1a8ee98
[  350.828457][ T9597]  </TASK>
[  350.828464][ T9597] cgroup: cgroup_addrm_files: failed to add cgroup.type, err=-12
[  352.080352][ T9620] netlink: 8 bytes leftover after parsing attributes in process `syz.2.893'.
[  352.144751][ T9620] netlink: 13700 bytes leftover after parsing attributes in process `syz.2.893'.
[  352.614533][ T9628] netlink: 'syz.1.896': attribute type 10 has an invalid length.
[  352.684322][ T9631] sg_write: data in/out 3292/1 bytes for SCSI command 0xa3-- guessing data in;
[  352.684322][ T9631]    program syz.3.894 not setting count and/or reply_len properly
[  352.688824][ T9628] netlink: 230 bytes leftover after parsing attributes in process `syz.1.896'.
[  353.519294][ T9651] netlink: 8 bytes leftover after parsing attributes in process `syz.3.902'.
[  354.143237][ T9665] netlink: 'syz.0.908': attribute type 10 has an invalid length.
[  354.161497][ T9665] netlink: 230 bytes leftover after parsing attributes in process `syz.0.908'.
[  355.871072][ T9691] netlink: 8 bytes leftover after parsing attributes in process `syz.2.918'.
[  355.921134][ T9691] netlink: 13700 bytes leftover after parsing attributes in process `syz.2.918'.
[  356.320795][ T9694] netlink: 'syz.2.919': attribute type 10 has an invalid length.
[  356.379447][ T9694] netlink: 230 bytes leftover after parsing attributes in process `syz.2.919'.
[  359.092803][ T9742] FAULT_INJECTION: forcing a failure.
[  359.092803][ T9742] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  359.165369][ T9742] CPU: 0 UID: 0 PID: 9742 Comm: syz.3.931 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  359.165389][ T9742] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  359.165401][ T9742] Call Trace:
[  359.165407][ T9742]  <TASK>
[  359.165412][ T9742]  dump_stack_lvl+0x16c/0x1f0
[  359.165435][ T9742]  should_fail_ex+0x512/0x640
[  359.165454][ T9742]  _copy_to_user+0x32/0xd0
[  359.165471][ T9742]  simple_read_from_buffer+0xcb/0x170
[  359.165491][ T9742]  proc_fail_nth_read+0x197/0x270
[  359.165509][ T9742]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  359.165527][ T9742]  ? rw_verify_area+0xcf/0x680
[  359.165542][ T9742]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  359.165559][ T9742]  vfs_read+0x1de/0xc70
[  359.165578][ T9742]  ? __pfx___mutex_lock+0x10/0x10
[  359.165596][ T9742]  ? __pfx_vfs_read+0x10/0x10
[  359.165617][ T9742]  ? __fget_files+0x20e/0x3c0
[  359.165646][ T9742]  ksys_read+0x12a/0x240
[  359.165675][ T9742]  ? __pfx_ksys_read+0x10/0x10
[  359.165712][ T9742]  do_syscall_64+0xcd/0x260
[  359.165735][ T9742]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  359.165749][ T9742] RIP: 0033:0x7f3616f8bb7c
[  359.165760][ T9742] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  359.165772][ T9742] RSP: 002b:00007f3617e2b030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  359.165785][ T9742] RAX: ffffffffffffffda RBX: 00007f36171a5fa0 RCX: 00007f3616f8bb7c
[  359.165793][ T9742] RDX: 000000000000000f RSI: 00007f3617e2b0a0 RDI: 0000000000000004
[  359.165801][ T9742] RBP: 00007f3617e2b090 R08: 0000000000000000 R09: 0000000000000000
[  359.165808][ T9742] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  359.165815][ T9742] R13: 0000000000000000 R14: 00007f36171a5fa0 R15: 00007ffc4d9705c8
[  359.165831][ T9742]  </TASK>
[  359.679961][ T9748] netlink: 'syz.2.930': attribute type 10 has an invalid length.
[  359.708120][ T9748] netlink: 230 bytes leftover after parsing attributes in process `syz.2.930'.
[  360.402222][ T9768] netlink: 8 bytes leftover after parsing attributes in process `syz.2.936'.
[  360.411242][ T9768] netlink: 13700 bytes leftover after parsing attributes in process `syz.2.936'.
[  362.357074][ T9799] netlink: 8 bytes leftover after parsing attributes in process `syz.3.946'.
[  362.397349][ T9799] netlink: 13700 bytes leftover after parsing attributes in process `syz.3.946'.
[  362.605097][ T9806] netlink: 28 bytes leftover after parsing attributes in process `syz.3.949'.
[  362.817546][ T9806] team0: Port device team_slave_0 removed
[  363.033154][ T9807] FAULT_INJECTION: forcing a failure.
[  363.033154][ T9807] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  363.046471][ T9807] CPU: 1 UID: 0 PID: 9807 Comm: syz.1.948 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  363.046502][ T9807] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  363.046516][ T9807] Call Trace:
[  363.046523][ T9807]  <TASK>
[  363.046531][ T9807]  dump_stack_lvl+0x16c/0x1f0
[  363.046567][ T9807]  should_fail_ex+0x512/0x640
[  363.046597][ T9807]  strncpy_from_user+0x3b/0x2e0
[  363.046623][ T9807]  getname_flags.part.0+0x8b/0x540
[  363.046651][ T9807]  getname_flags+0x93/0xf0
[  363.046678][ T9807]  do_sys_openat2+0xb8/0x1d0
[  363.046697][ T9807]  ? __pfx_do_sys_openat2+0x10/0x10
[  363.046729][ T9807]  __x64_sys_openat+0x174/0x210
[  363.046752][ T9807]  ? __pfx___x64_sys_openat+0x10/0x10
[  363.046776][ T9807]  ? rcu_is_watching+0x12/0xc0
[  363.046809][ T9807]  do_syscall_64+0xcd/0x260
[  363.046840][ T9807]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  363.046860][ T9807] RIP: 0033:0x7fad2018d169
[  363.046879][ T9807] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  363.046900][ T9807] RSP: 002b:00007fad20f21038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  363.046922][ T9807] RAX: ffffffffffffffda RBX: 00007fad203a6080 RCX: 00007fad2018d169
[  363.046940][ T9807] RDX: 0000000000000200 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  363.046957][ T9807] RBP: 00007fad2020e2a0 R08: 0000000000000000 R09: 0000000000000000
[  363.046971][ T9807] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  363.046983][ T9807] R13: 0000000000000000 R14: 00007fad203a6080 R15: 00007ffec545af08
[  363.047014][ T9807]  </TASK>
[  364.019654][   T30] audit: type=1800 audit(6039047920.106:4): pid=9830 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.951" name="dbroot" dev="configfs" ino=21565 res=0 errno=0
[  364.609476][ T9844] netlink: 8 bytes leftover after parsing attributes in process `syz.2.958'.
[  364.618695][ T9844] netlink: 13700 bytes leftover after parsing attributes in process `syz.2.958'.
[  365.343081][ T9867] netlink: 28 bytes leftover after parsing attributes in process `syz.0.962'.
[  365.392086][ T9867] team0: Port device team_slave_0 removed
[  366.199735][ T9881] bridge0: port 3(netdevsim2) entered blocking state
[  366.224158][ T9881] bridge0: port 3(netdevsim2) entered disabled state
[  366.272238][ T9881] netdevsim netdevsim3 netdevsim2: entered allmulticast mode
[  366.304301][ T9881] netdevsim netdevsim3 netdevsim2: entered promiscuous mode
[  366.312238][ T9881] bridge0: port 3(netdevsim2) entered blocking state
[  366.322775][ T9881] bridge0: port 3(netdevsim2) entered forwarding state
[  366.384198][ T9882] FAULT_INJECTION: forcing a failure.
[  366.384198][ T9882] name failslab, interval 1, probability 0, space 0, times 0
[  366.406706][ T9882] CPU: 1 UID: 0 PID: 9882 Comm: syz.0.966 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  366.406746][ T9882] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  366.406760][ T9882] Call Trace:
[  366.406767][ T9882]  <TASK>
[  366.406776][ T9882]  dump_stack_lvl+0x16c/0x1f0
[  366.406813][ T9882]  should_fail_ex+0x512/0x640
[  366.406839][ T9882]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  366.406875][ T9882]  should_failslab+0xc2/0x120
[  366.406896][ T9882]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  366.406929][ T9882]  ? alloc_empty_file+0x55/0x1e0
[  366.406957][ T9882]  alloc_empty_file+0x55/0x1e0
[  366.406983][ T9882]  path_openat+0xe0/0x2d40
[  366.407013][ T9882]  ? __x64_sys_openat+0x174/0x210
[  366.407037][ T9882]  ? do_syscall_64+0xcd/0x260
[  366.407064][ T9882]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  366.407098][ T9882]  ? __pfx_path_openat+0x10/0x10
[  366.407141][ T9882]  do_filp_open+0x20b/0x470
[  366.407172][ T9882]  ? __pfx_do_filp_open+0x10/0x10
[  366.407229][ T9882]  ? alloc_fd+0x471/0x7d0
[  366.407270][ T9882]  do_sys_openat2+0x11b/0x1d0
[  366.407295][ T9882]  ? __pfx_do_sys_openat2+0x10/0x10
[  366.407334][ T9882]  __x64_sys_openat+0x174/0x210
[  366.407359][ T9882]  ? __pfx___x64_sys_openat+0x10/0x10
[  366.407386][ T9882]  ? rcu_is_watching+0x12/0xc0
[  366.407423][ T9882]  do_syscall_64+0xcd/0x260
[  366.407457][ T9882]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  366.407481][ T9882] RIP: 0033:0x7fc84598d169
[  366.407500][ T9882] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  366.407524][ T9882] RSP: 002b:00007fc84688b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  366.407547][ T9882] RAX: ffffffffffffffda RBX: 00007fc845ba6080 RCX: 00007fc84598d169
[  366.407563][ T9882] RDX: 0000000000000200 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  366.407578][ T9882] RBP: 00007fc845a0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  366.407592][ T9882] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  366.407605][ T9882] R13: 0000000000000000 R14: 00007fc845ba6080 R15: 00007ffeb1a8ee98
[  366.407633][ T9882]  </TASK>
[  367.584783][ T9922] netlink: 28 bytes leftover after parsing attributes in process `syz.1.975'.
[  367.779494][ T9922] team0: Port device team_slave_0 removed
[  368.701031][ T9939] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  368.708878][ T9939] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  368.730650][ T9939] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  368.756162][ T9939] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  368.787425][ T9939] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  368.793483][ T9939] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  368.819999][ T9939] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  368.833963][ T9939] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  369.303845][ T9971] FAULT_INJECTION: forcing a failure.
[  369.303845][ T9971] name failslab, interval 1, probability 0, space 0, times 0
[  369.322411][ T9971] CPU: 0 UID: 0 PID: 9971 Comm: syz.0.991 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  369.322444][ T9971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  369.322458][ T9971] Call Trace:
[  369.322466][ T9971]  <TASK>
[  369.322475][ T9971]  dump_stack_lvl+0x16c/0x1f0
[  369.322511][ T9971]  should_fail_ex+0x512/0x640
[  369.322536][ T9971]  ? fs_reclaim_acquire+0xae/0x150
[  369.322566][ T9971]  ? tomoyo_encode2+0x100/0x3e0
[  369.322593][ T9971]  should_failslab+0xc2/0x120
[  369.322615][ T9971]  __kmalloc_noprof+0xd2/0x510
[  369.322647][ T9971]  ? d_absolute_path+0x136/0x1a0
[  369.322678][ T9971]  tomoyo_encode2+0x100/0x3e0
[  369.322712][ T9971]  tomoyo_encode+0x29/0x50
[  369.322740][ T9971]  tomoyo_realpath_from_path+0x18f/0x6e0
[  369.322781][ T9971]  tomoyo_path_number_perm+0x245/0x580
[  369.322805][ T9971]  ? tomoyo_path_number_perm+0x237/0x580
[  369.322835][ T9971]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  369.322862][ T9971]  ? find_held_lock+0x2b/0x80
[  369.322921][ T9971]  ? find_held_lock+0x2b/0x80
[  369.322947][ T9971]  ? hook_file_ioctl_common+0x145/0x410
[  369.322985][ T9971]  ? __fget_files+0x20e/0x3c0
[  369.323021][ T9971]  security_file_ioctl+0x9b/0x240
[  369.323051][ T9971]  __x64_sys_ioctl+0xb7/0x200
[  369.323081][ T9971]  do_syscall_64+0xcd/0x260
[  369.323115][ T9971]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  369.323138][ T9971] RIP: 0033:0x7fc84598d169
[  369.323156][ T9971] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  369.323182][ T9971] RSP: 002b:00007fc8468ac038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  369.323204][ T9971] RAX: ffffffffffffffda RBX: 00007fc845ba5fa0 RCX: 00007fc84598d169
[  369.323219][ T9971] RDX: 00002000000000c0 RSI: 0000000040107447 RDI: 0000000000000003
[  369.323232][ T9971] RBP: 00007fc8468ac090 R08: 0000000000000000 R09: 0000000000000000
[  369.323247][ T9971] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  369.323260][ T9971] R13: 0000000000000000 R14: 00007fc845ba5fa0 R15: 00007ffeb1a8ee98
[  369.323292][ T9971]  </TASK>
[  369.323316][ T9971] ERROR: Out of memory at tomoyo_realpath_from_path.
[  369.532909][ T9979] netlink: 8 bytes leftover after parsing attributes in process `syz.1.986'.
[  369.607994][ T9979] netlink: 13700 bytes leftover after parsing attributes in process `syz.1.986'.
[  370.177395][ T9994] snd_aloop snd_aloop.0: control 16781581:65535:6:�'x?F���/��zF˷fC���:0 is already present
[  370.334416][ T5843] Bluetooth: hci3: command 0x0406 tx timeout
[  370.733745][ T5843] Bluetooth: hci1: command 0x0406 tx timeout
[  370.814640][ T5843] Bluetooth: hci0: command 0x0406 tx timeout
[  370.894226][ T5843] Bluetooth: hci2: command 0x0406 tx timeout
[  370.922462][T10012] bridge0: port 4(syz_tun) entered blocking state
[  370.943216][T10012] bridge0: port 4(syz_tun) entered disabled state
[  370.970056][T10012] syz_tun: entered allmulticast mode
[  370.982789][T10012] syz_tun: entered promiscuous mode
[  371.007313][T10012] bridge0: port 4(syz_tun) entered blocking state
[  371.013978][T10012] bridge0: port 4(syz_tun) entered forwarding state
[  371.121267][T10022] netlink: 8 bytes leftover after parsing attributes in process `syz.0.998'.
[  371.143952][T10022] netlink: 13700 bytes leftover after parsing attributes in process `syz.0.998'.
[  371.259748][T10026] netlink: zone id is out of range
[  371.265403][T10026] netlink: zone id is out of range
[  371.270606][T10026] netlink: zone id is out of range
[  371.276496][T10026] netlink: zone id is out of range
[  371.281711][T10026] netlink: zone id is out of range
[  371.292205][T10026] netlink: zone id is out of range
[  371.309594][T10026] netlink: zone id is out of range
[  371.319130][T10026] netlink: zone id is out of range
[  371.327296][T10029] netlink: 'syz.2.1001': attribute type 10 has an invalid length.
[  371.334154][T10026] netlink: zone id is out of range
[  371.337521][T10029] netlink: 230 bytes leftover after parsing attributes in process `syz.2.1001'.
[  371.342581][T10026] netlink: zone id is out of range
[  372.168170][T10042] FAULT_INJECTION: forcing a failure.
[  372.168170][T10042] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  372.184188][T10042] CPU: 0 UID: 0 PID: 10042 Comm: syz.1.1003 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  372.184220][T10042] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  372.184234][T10042] Call Trace:
[  372.184242][T10042]  <TASK>
[  372.184251][T10042]  dump_stack_lvl+0x16c/0x1f0
[  372.184288][T10042]  should_fail_ex+0x512/0x640
[  372.184320][T10042]  should_fail_alloc_page+0xe7/0x130
[  372.184344][T10042]  prepare_alloc_pages+0x3c2/0x610
[  372.184378][T10042]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[  372.184415][T10042]  ? process_measurement+0x1e7/0x2360
[  372.184456][T10042]  ? __lock_acquire+0x5ca/0x1ba0
[  372.184481][T10042]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  372.184514][T10042]  ? look_up_lock_class+0x59/0x150
[  372.184546][T10042]  ? register_lock_class+0x41/0x4c0
[  372.184578][T10042]  ? __lock_acquire+0xaa4/0x1ba0
[  372.184604][T10042]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  372.184632][T10042]  ? policy_nodemask+0xea/0x4e0
[  372.184670][T10042]  alloc_pages_mpol+0x1fb/0x550
[  372.184694][T10042]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  372.184713][T10042]  ? __pfx___might_resched+0x10/0x10
[  372.184755][T10042]  alloc_pages_noprof+0x131/0x390
[  372.184779][T10042]  __pmd_alloc+0x3f/0x870
[  372.184809][T10042]  huge_pte_alloc+0x292/0x3a0
[  372.184842][T10042]  hugetlb_fault+0x373/0x2e90
[  372.184878][T10042]  ? __pfx_hugetlb_fault+0x10/0x10
[  372.184920][T10042]  ? find_vma+0xbf/0x140
[  372.184944][T10042]  ? __pfx_find_vma+0x10/0x10
[  372.184973][T10042]  handle_mm_fault+0x95d/0xad0
[  372.185011][T10042]  do_user_addr_fault+0x7a6/0x1370
[  372.185042][T10042]  ? rcu_is_watching+0x12/0xc0
[  372.185073][T10042]  exc_page_fault+0x5c/0xc0
[  372.185110][T10042]  asm_exc_page_fault+0x26/0x30
[  372.185132][T10042] RIP: 0010:rep_movs_alternative+0x33/0x90
[  372.185158][T10042] Code: 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 <48> 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb
[  372.185180][T10042] RSP: 0018:ffffc9000cbf7d98 EFLAGS: 00050216
[  372.185200][T10042] RAX: 00000000000262dd RBX: 0000000000000020 RCX: 0000000000000020
[  372.185214][T10042] RDX: fffff5200197efc3 RSI: ffffc9000cbf7df8 RDI: 0000000000000000
[  372.185229][T10042] RBP: 0000000000000000 R08: 0000000000000000 R09: fffff5200197efc2
[  372.185243][T10042] R10: ffffc9000cbf7e17 R11: 0000000000000000 R12: ffffc9000cbf7df8
[  372.185258][T10042] R13: 0000000000000020 R14: 00007ffffffff000 R15: 0000000000000000
[  372.185293][T10042]  _copy_to_user+0xbb/0xd0
[  372.185324][T10042]  __do_sys_ustat+0x1b4/0x1f0
[  372.185351][T10042]  ? __pfx___do_sys_ustat+0x10/0x10
[  372.185403][T10042]  ? rcu_is_watching+0x12/0xc0
[  372.185433][T10042]  do_syscall_64+0xcd/0x260
[  372.185467][T10042]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  372.185489][T10042] RIP: 0033:0x7fad2018d169
[  372.185507][T10042] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  372.185527][T10042] RSP: 002b:00007fad20f21038 EFLAGS: 00000246 ORIG_RAX: 0000000000000088
[  372.185547][T10042] RAX: ffffffffffffffda RBX: 00007fad203a6080 RCX: 00007fad2018d169
[  372.185562][T10042] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000801
[  372.185575][T10042] RBP: 00007fad20f21090 R08: 0000000000000000 R09: 0000000000000000
[  372.185589][T10042] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  372.185602][T10042] R13: 0000000000000000 R14: 00007fad203a6080 R15: 00007ffec545af08
[  372.185635][T10042]  </TASK>
[  372.536361][ T5843] Bluetooth: hci3: command 0x0406 tx timeout
[  372.816896][ T5843] Bluetooth: hci1: command 0x0406 tx timeout
[  372.899791][ T5843] Bluetooth: hci0: command 0x0406 tx timeout
[  372.974730][ T5845] Bluetooth: hci2: command 0x0406 tx timeout
[  373.815784][T10058] snd_aloop snd_aloop.0: control 16781581:65535:6:�'x?F���/��zF˷fC���:0 is already present
[  374.030755][T10066] FAULT_INJECTION: forcing a failure.
[  374.030755][T10066] name failslab, interval 1, probability 0, space 0, times 0
[  374.039352][T10068] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1009'.
[  374.043589][T10066] CPU: 1 UID: 0 PID: 10066 Comm: syz.1.1008 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  374.043625][T10066] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  374.043641][T10066] Call Trace:
[  374.043654][T10066]  <TASK>
[  374.043664][T10066]  dump_stack_lvl+0x16c/0x1f0
[  374.043707][T10066]  should_fail_ex+0x512/0x640
[  374.043737][T10066]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  374.043778][T10066]  should_failslab+0xc2/0x120
[  374.043802][T10066]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  374.043838][T10066]  ? __proc_create+0xc3/0x8c0
[  374.043865][T10066]  ? __proc_create+0x2ce/0x8c0
[  374.043894][T10066]  __proc_create+0x2ce/0x8c0
[  374.043923][T10066]  ? __pfx___proc_create+0x10/0x10
[  374.043955][T10066]  ? _raw_write_unlock+0x28/0x50
[  374.043988][T10066]  ? proc_register+0x314/0x5f0
[  374.044018][T10066]  proc_create_reg+0x7d/0x180
[  374.044049][T10066]  proc_create_data+0x86/0x110
[  374.044077][T10066]  ? __pfx_proc_create_data+0x10/0x10
[  374.044109][T10066]  ? cache_register_net+0x137/0x5e0
[  374.044152][T10066]  cache_register_net+0x25a/0x5e0
[  374.044190][T10066]  gss_svc_init_net+0x151/0x660
[  374.044215][T10066]  ? __pfx_canbcm_pernet_init+0x10/0x10
[  374.044250][T10066]  ? __pfx_rpcsec_gss_init_net+0x10/0x10
[  374.044277][T10066]  ops_init+0x1df/0x5f0
[  374.044315][T10066]  setup_net+0x21e/0x850
[  374.044353][T10066]  ? __pfx_setup_net+0x10/0x10
[  374.044385][T10066]  ? lockdep_init_map_type+0x5c/0x280
[  374.044411][T10066]  ? __pfx_down_read_killable+0x10/0x10
[  374.044453][T10066]  ? debug_mutex_init+0x37/0x70
[  374.044488][T10066]  copy_net_ns+0x2a6/0x5f0
[  374.044527][T10066]  create_new_namespaces+0x3ea/0xad0
[  374.044571][T10066]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  374.044609][T10066]  ksys_unshare+0x45b/0xa40
[  374.044648][T10066]  ? __pfx_ksys_unshare+0x10/0x10
[  374.044683][T10066]  ? xfd_validate_state+0x5d/0x180
[  374.044713][T10066]  ? rcu_is_watching+0x12/0xc0
[  374.044752][T10066]  __x64_sys_unshare+0x31/0x40
[  374.044790][T10066]  do_syscall_64+0xcd/0x260
[  374.044827][T10066]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  374.044853][T10066] RIP: 0033:0x7fad2018d169
[  374.044874][T10066] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  374.044897][T10066] RSP: 002b:00007fad20f42038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  374.044921][T10066] RAX: ffffffffffffffda RBX: 00007fad203a5fa0 RCX: 00007fad2018d169
[  374.044939][T10066] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  374.044954][T10066] RBP: 00007fad2020e2a0 R08: 0000000000000000 R09: 0000000000000000
[  374.044969][T10066] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  374.044984][T10066] R13: 0000000000000000 R14: 00007fad203a5fa0 R15: 00007ffec545af08
[  374.045017][T10066]  </TASK>
[  374.340071][T10068] netlink: 13700 bytes leftover after parsing attributes in process `syz.2.1009'.
[  374.402592][T10074] syz.2.1010 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  374.499415][T10076] netlink: 'syz.2.1011': attribute type 10 has an invalid length.
[  374.507732][T10076] netlink: 230 bytes leftover after parsing attributes in process `syz.2.1011'.
[  375.959855][T10123] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1019'.
[  376.244964][T10134] netlink: 'syz.3.1022': attribute type 10 has an invalid length.
[  376.273822][T10134] netlink: 230 bytes leftover after parsing attributes in process `syz.3.1022'.
[  376.775072][T10155] FAULT_INJECTION: forcing a failure.
[  376.775072][T10155] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  376.806194][T10155] CPU: 1 UID: 0 PID: 10155 Comm: syz.3.1026 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  376.806227][T10155] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  376.806240][T10155] Call Trace:
[  376.806248][T10155]  <TASK>
[  376.806257][T10155]  dump_stack_lvl+0x16c/0x1f0
[  376.806292][T10155]  should_fail_ex+0x512/0x640
[  376.806322][T10155]  _copy_to_user+0x32/0xd0
[  376.806353][T10155]  simple_read_from_buffer+0xcb/0x170
[  376.806387][T10155]  proc_fail_nth_read+0x197/0x270
[  376.806418][T10155]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  376.806450][T10155]  ? rw_verify_area+0xcf/0x680
[  376.806476][T10155]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  376.806507][T10155]  vfs_read+0x1de/0xc70
[  376.806540][T10155]  ? __pfx___mutex_lock+0x10/0x10
[  376.806571][T10155]  ? __pfx_vfs_read+0x10/0x10
[  376.806609][T10155]  ? __fget_files+0x20e/0x3c0
[  376.806658][T10155]  ksys_read+0x12a/0x240
[  376.806687][T10155]  ? __pfx_ksys_read+0x10/0x10
[  376.806726][T10155]  do_syscall_64+0xcd/0x260
[  376.806760][T10155]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  376.806782][T10155] RIP: 0033:0x7f3616f8bb7c
[  376.806801][T10155] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  376.806822][T10155] RSP: 002b:00007f3617e2b030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  376.806844][T10155] RAX: ffffffffffffffda RBX: 00007f36171a5fa0 RCX: 00007f3616f8bb7c
[  376.806857][T10155] RDX: 000000000000000f RSI: 00007f3617e2b0a0 RDI: 0000000000000003
[  376.806871][T10155] RBP: 00007f3617e2b090 R08: 0000000000000000 R09: 0000000000000000
[  376.806883][T10155] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  376.806896][T10155] R13: 0000000000000001 R14: 00007f36171a5fa0 R15: 00007ffc4d9705c8
[  376.806927][T10155]  </TASK>
[  378.660716][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  378.667173][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  378.738965][T10204] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1037'.
[  378.783138][T10204] netlink: 13700 bytes leftover after parsing attributes in process `syz.0.1037'.
[  379.089876][T10211] FAULT_INJECTION: forcing a failure.
[  379.089876][T10211] name failslab, interval 1, probability 0, space 0, times 0
[  379.177360][T10211] CPU: 0 UID: 0 PID: 10211 Comm: syz.3.1038 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  379.177403][T10211] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  379.177418][T10211] Call Trace:
[  379.177427][T10211]  <TASK>
[  379.177441][T10211]  dump_stack_lvl+0x16c/0x1f0
[  379.177481][T10211]  should_fail_ex+0x512/0x640
[  379.177510][T10211]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  379.177548][T10211]  should_failslab+0xc2/0x120
[  379.177572][T10211]  __kmalloc_cache_noprof+0x6a/0x3e0
[  379.177604][T10211]  ? create_filter_start.constprop.0+0xa5/0x300
[  379.177643][T10211]  create_filter_start.constprop.0+0xa5/0x300
[  379.177681][T10211]  apply_subsystem_event_filter+0x185/0x1450
[  379.177723][T10211]  ? __might_fault+0xe3/0x190
[  379.177756][T10211]  ? __pfx_apply_subsystem_event_filter+0x10/0x10
[  379.177802][T10211]  ? _copy_from_user+0x59/0xd0
[  379.177835][T10211]  subsystem_filter_write+0x95/0x120
[  379.177872][T10211]  vfs_write+0x25c/0x1180
[  379.177901][T10211]  ? __pfx_subsystem_filter_write+0x10/0x10
[  379.177940][T10211]  ? __pfx___mutex_lock+0x10/0x10
[  379.177973][T10211]  ? __pfx_vfs_write+0x10/0x10
[  379.178016][T10211]  ? __fget_files+0x20e/0x3c0
[  379.178060][T10211]  ksys_write+0x12a/0x240
[  379.178091][T10211]  ? __pfx_ksys_write+0x10/0x10
[  379.178119][T10211]  ? rcu_is_watching+0x12/0xc0
[  379.178159][T10211]  do_syscall_64+0xcd/0x260
[  379.178195][T10211]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  379.178220][T10211] RIP: 0033:0x7f3616f8d169
[  379.178241][T10211] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  379.178266][T10211] RSP: 002b:00007f3617e0a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  379.178289][T10211] RAX: ffffffffffffffda RBX: 00007f36171a6080 RCX: 00007f3616f8d169
[  379.178305][T10211] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000007
[  379.178320][T10211] RBP: 00007f361700e2a0 R08: 0000000000000000 R09: 0000000000000000
[  379.178335][T10211] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  379.178349][T10211] R13: 0000000000000000 R14: 00007f36171a6080 R15: 00007ffc4d9705c8
[  379.178416][T10211]  </TASK>
[  379.905768][T10221] net_ratelimit: 36 callbacks suppressed
[  379.905787][T10221] netlink: zone id is out of range
[  379.931405][T10221] netlink: zone id is out of range
[  379.952878][T10221] netlink: zone id is out of range
[  379.969759][T10221] netlink: zone id is out of range
[  379.981303][T10221] netlink: zone id is out of range
[  379.986881][T10221] netlink: zone id is out of range
[  379.992275][T10221] netlink: zone id is out of range
[  379.998059][T10221] netlink: zone id is out of range
[  380.003384][T10221] netlink: zone id is out of range
[  380.009075][T10221] netlink: zone id is out of range
[  381.328037][T10255] FAULT_INJECTION: forcing a failure.
[  381.328037][T10255] name failslab, interval 1, probability 0, space 0, times 0
[  381.362995][T10255] CPU: 0 UID: 0 PID: 10255 Comm: syz.1.1052 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  381.363032][T10255] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  381.363047][T10255] Call Trace:
[  381.363056][T10255]  <TASK>
[  381.363066][T10255]  dump_stack_lvl+0x16c/0x1f0
[  381.363107][T10255]  should_fail_ex+0x512/0x640
[  381.363133][T10255]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  381.363169][T10255]  should_failslab+0xc2/0x120
[  381.363193][T10255]  __kmalloc_cache_noprof+0x6a/0x3e0
[  381.363223][T10255]  ? __asan_memcpy+0x3c/0x60
[  381.363250][T10255]  ? create_filter_start.constprop.0+0x103/0x300
[  381.363289][T10255]  create_filter_start.constprop.0+0x103/0x300
[  381.363327][T10255]  apply_subsystem_event_filter+0x185/0x1450
[  381.363366][T10255]  ? __might_fault+0xe3/0x190
[  381.363397][T10255]  ? __pfx_apply_subsystem_event_filter+0x10/0x10
[  381.363449][T10255]  ? _copy_from_user+0x59/0xd0
[  381.363483][T10255]  subsystem_filter_write+0x95/0x120
[  381.363522][T10255]  vfs_write+0x25c/0x1180
[  381.363550][T10255]  ? __pfx_subsystem_filter_write+0x10/0x10
[  381.363590][T10255]  ? __pfx___mutex_lock+0x10/0x10
[  381.363622][T10255]  ? __pfx_vfs_write+0x10/0x10
[  381.363665][T10255]  ? __fget_files+0x20e/0x3c0
[  381.363707][T10255]  ksys_write+0x12a/0x240
[  381.363736][T10255]  ? __pfx_ksys_write+0x10/0x10
[  381.363763][T10255]  ? rcu_is_watching+0x12/0xc0
[  381.363799][T10255]  do_syscall_64+0xcd/0x260
[  381.363834][T10255]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  381.363856][T10255] RIP: 0033:0x7fad2018d169
[  381.363874][T10255] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  381.363895][T10255] RSP: 002b:00007fad20f21038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  381.363919][T10255] RAX: ffffffffffffffda RBX: 00007fad203a6080 RCX: 00007fad2018d169
[  381.363936][T10255] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000007
[  381.363950][T10255] RBP: 00007fad2020e2a0 R08: 0000000000000000 R09: 0000000000000000
[  381.363964][T10255] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  381.363979][T10255] R13: 0000000000000000 R14: 00007fad203a6080 R15: 00007ffec545af08
[  381.364012][T10255]  </TASK>
[  381.952726][T10272] FAULT_INJECTION: forcing a failure.
[  381.952726][T10272] name failslab, interval 1, probability 0, space 0, times 0
[  381.966670][T10272] CPU: 0 UID: 0 PID: 10272 Comm: syz.0.1059 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  381.966699][T10272] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  381.966712][T10272] Call Trace:
[  381.966718][T10272]  <TASK>
[  381.966726][T10272]  dump_stack_lvl+0x16c/0x1f0
[  381.966761][T10272]  should_fail_ex+0x512/0x640
[  381.966785][T10272]  ? __kvmalloc_node_noprof+0x122/0x600
[  381.966818][T10272]  should_failslab+0xc2/0x120
[  381.966839][T10272]  __kvmalloc_node_noprof+0x135/0x600
[  381.966870][T10272]  ? seq_read_iter+0x826/0x12c0
[  381.966905][T10272]  ? seq_read_iter+0x826/0x12c0
[  381.966930][T10272]  seq_read_iter+0x826/0x12c0
[  381.966961][T10272]  ? __mutex_trylock_common+0xe9/0x250
[  381.966994][T10272]  kernfs_fop_read_iter+0x40f/0x5a0
[  381.967022][T10272]  ? rw_verify_area+0xcf/0x680
[  381.967053][T10272]  vfs_read+0x8c8/0xc70
[  381.967085][T10272]  ? __pfx___mutex_lock+0x10/0x10
[  381.967116][T10272]  ? __pfx_vfs_read+0x10/0x10
[  381.967176][T10272]  ksys_read+0x12a/0x240
[  381.967205][T10272]  ? __pfx_ksys_read+0x10/0x10
[  381.967230][T10272]  ? rcu_is_watching+0x12/0xc0
[  381.967268][T10272]  do_syscall_64+0xcd/0x260
[  381.967301][T10272]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  381.967325][T10272] RIP: 0033:0x7fc84598d169
[  381.967343][T10272] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  381.967365][T10272] RSP: 002b:00007fc8468ac038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  381.967386][T10272] RAX: ffffffffffffffda RBX: 00007fc845ba5fa0 RCX: 00007fc84598d169
[  381.967400][T10272] RDX: 00000000000000a3 RSI: 0000200000000480 RDI: 0000000000000003
[  381.967414][T10272] RBP: 00007fc8468ac090 R08: 0000000000000000 R09: 0000000000000000
[  381.967428][T10272] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  381.967442][T10272] R13: 0000000000000000 R14: 00007fc845ba5fa0 R15: 00007ffeb1a8ee98
[  381.967473][T10272]  </TASK>
[  382.317597][T10280] FAULT_INJECTION: forcing a failure.
[  382.317597][T10280] name failslab, interval 1, probability 0, space 0, times 0
[  382.330594][T10280] CPU: 0 UID: 0 PID: 10280 Comm: syz.0.1063 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  382.330624][T10280] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  382.330639][T10280] Call Trace:
[  382.330646][T10280]  <TASK>
[  382.330655][T10280]  dump_stack_lvl+0x16c/0x1f0
[  382.330691][T10280]  should_fail_ex+0x512/0x640
[  382.330717][T10280]  ? __kvmalloc_node_noprof+0x122/0x600
[  382.330751][T10280]  should_failslab+0xc2/0x120
[  382.330774][T10280]  __kvmalloc_node_noprof+0x135/0x600
[  382.330806][T10280]  ? seq_read_iter+0x826/0x12c0
[  382.330841][T10280]  ? seq_read_iter+0x826/0x12c0
[  382.330868][T10280]  seq_read_iter+0x826/0x12c0
[  382.330898][T10280]  ? aa_file_perm+0x4d6/0xfb0
[  382.330937][T10280]  seq_read+0x39e/0x4e0
[  382.330966][T10280]  ? __pfx_seq_read+0x10/0x10
[  382.330999][T10280]  ? get_pid_task+0xfc/0x250
[  382.331035][T10280]  ? __pfx_seq_read+0x10/0x10
[  382.331062][T10280]  proc_reg_read+0x23d/0x330
[  382.331084][T10280]  ? __pfx_proc_reg_read+0x10/0x10
[  382.331106][T10280]  vfs_read+0x1de/0xc70
[  382.331139][T10280]  ? __pfx___mutex_lock+0x10/0x10
[  382.331169][T10280]  ? __pfx_vfs_read+0x10/0x10
[  382.331206][T10280]  ? __fget_files+0x20e/0x3c0
[  382.331245][T10280]  ksys_read+0x12a/0x240
[  382.331273][T10280]  ? __pfx_ksys_read+0x10/0x10
[  382.331300][T10280]  ? rcu_is_watching+0x12/0xc0
[  382.331335][T10280]  do_syscall_64+0xcd/0x260
[  382.331482][T10280]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  382.331507][T10280] RIP: 0033:0x7fc84598d169
[  382.331526][T10280] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  382.331548][T10280] RSP: 002b:00007fc8468ac038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  382.331570][T10280] RAX: ffffffffffffffda RBX: 00007fc845ba5fa0 RCX: 00007fc84598d169
[  382.331585][T10280] RDX: 0000000000000ff7 RSI: 0000200000001840 RDI: 0000000000000003
[  382.331600][T10280] RBP: 00007fc8468ac090 R08: 0000000000000000 R09: 0000000000000000
[  382.331613][T10280] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  382.331627][T10280] R13: 0000000000000000 R14: 00007fc845ba5fa0 R15: 00007ffeb1a8ee98
[  382.331661][T10280]  </TASK>
[  382.372475][T10278] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1062'.
[  382.595245][T10278] netlink: 13700 bytes leftover after parsing attributes in process `syz.1.1062'.
[  382.673581][T10290] FAULT_INJECTION: forcing a failure.
[  382.673581][T10290] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  382.691163][T10290] CPU: 1 UID: 0 PID: 10290 Comm: syz.0.1067 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  382.691196][T10290] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  382.691209][T10290] Call Trace:
[  382.691217][T10290]  <TASK>
[  382.691226][T10290]  dump_stack_lvl+0x16c/0x1f0
[  382.691261][T10290]  should_fail_ex+0x512/0x640
[  382.691292][T10290]  _copy_to_user+0x32/0xd0
[  382.691323][T10290]  simple_read_from_buffer+0xcb/0x170
[  382.691354][T10290]  proc_fail_nth_read+0x197/0x270
[  382.691384][T10290]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  382.691413][T10290]  ? rw_verify_area+0xcf/0x680
[  382.691432][T10290]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  382.691454][T10290]  vfs_read+0x1de/0xc70
[  382.691478][T10290]  ? __pfx___mutex_lock+0x10/0x10
[  382.691500][T10290]  ? __pfx_vfs_read+0x10/0x10
[  382.691528][T10290]  ? __fget_files+0x20e/0x3c0
[  382.691557][T10290]  ksys_read+0x12a/0x240
[  382.691578][T10290]  ? __pfx_ksys_read+0x10/0x10
[  382.691607][T10290]  do_syscall_64+0xcd/0x260
[  382.691631][T10290]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  382.691648][T10290] RIP: 0033:0x7fc84598bb7c
[  382.691663][T10290] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  382.691679][T10290] RSP: 002b:00007fc8468ac030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  382.691695][T10290] RAX: ffffffffffffffda RBX: 00007fc845ba5fa0 RCX: 00007fc84598bb7c
[  382.691706][T10290] RDX: 000000000000000f RSI: 00007fc8468ac0a0 RDI: 0000000000000003
[  382.691716][T10290] RBP: 00007fc8468ac090 R08: 0000000000000000 R09: 0000000000000000
[  382.691725][T10290] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  382.691735][T10290] R13: 0000000000000001 R14: 00007fc845ba5fa0 R15: 00007ffeb1a8ee98
[  382.691757][T10290]  </TASK>
[  383.862841][T10321] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1077'.
[  383.875983][T10321] netlink: 13700 bytes leftover after parsing attributes in process `syz.2.1077'.
[  385.000495][T10361] FAULT_INJECTION: forcing a failure.
[  385.000495][T10361] name failslab, interval 1, probability 0, space 0, times 0
[  385.047178][T10361] CPU: 1 UID: 0 PID: 10361 Comm: syz.0.1085 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  385.047212][T10361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  385.047226][T10361] Call Trace:
[  385.047235][T10361]  <TASK>
[  385.047244][T10361]  dump_stack_lvl+0x16c/0x1f0
[  385.047286][T10361]  should_fail_ex+0x512/0x640
[  385.047315][T10361]  ? fs_reclaim_acquire+0xae/0x150
[  385.047345][T10361]  ? security_inode_init_security+0x13f/0x390
[  385.047376][T10361]  should_failslab+0xc2/0x120
[  385.047398][T10361]  __kmalloc_noprof+0xd2/0x510
[  385.047439][T10361]  security_inode_init_security+0x13f/0x390
[  385.047479][T10361]  ? __pfx_shmem_initxattrs+0x10/0x10
[  385.047507][T10361]  ? __pfx_security_inode_init_security+0x10/0x10
[  385.047550][T10361]  shmem_mknod+0x22e/0x450
[  385.047585][T10361]  shmem_mkdir+0x31/0x80
[  385.047614][T10361]  vfs_mkdir+0x590/0x8c0
[  385.047648][T10361]  do_mkdirat+0x304/0x3e0
[  385.047685][T10361]  ? __pfx_do_mkdirat+0x10/0x10
[  385.047727][T10361]  __x64_sys_mkdir+0xef/0x140
[  385.047781][T10361]  do_syscall_64+0xcd/0x260
[  385.047819][T10361]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  385.047844][T10361] RIP: 0033:0x7fc84598d169
[  385.047864][T10361] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  385.047888][T10361] RSP: 002b:00007fc8468ac038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[  385.047910][T10361] RAX: ffffffffffffffda RBX: 00007fc845ba5fa0 RCX: 00007fc84598d169
[  385.047927][T10361] RDX: 0000000000000000 RSI: 0000000000008001 RDI: 0000000000000000
[  385.047947][T10361] RBP: 00007fc845a0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  385.047962][T10361] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  385.047977][T10361] R13: 0000000000000000 R14: 00007fc845ba5fa0 R15: 00007ffeb1a8ee98
[  385.048010][T10361]  </TASK>
[  385.556870][T10372] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1090'.
[  385.708108][T10372] netlink: 13700 bytes leftover after parsing attributes in process `syz.2.1090'.
[  386.171181][T10379] Invalid ELF header magic: != ELF
[  387.751001][T10434] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1103'.
[  387.760078][T10434] netlink: 13700 bytes leftover after parsing attributes in process `syz.1.1103'.
[  388.293342][T10449] netlink: 'syz.1.1108': attribute type 10 has an invalid length.
[  388.348607][T10449] netlink: 230 bytes leftover after parsing attributes in process `syz.1.1108'.
[  389.344811][T10473] FAULT_INJECTION: forcing a failure.
[  389.344811][T10473] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  389.392508][T10473] CPU: 1 UID: 0 PID: 10473 Comm: syz.3.1112 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  389.392542][T10473] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  389.392556][T10473] Call Trace:
[  389.392564][T10473]  <TASK>
[  389.392573][T10473]  dump_stack_lvl+0x16c/0x1f0
[  389.392610][T10473]  should_fail_ex+0x512/0x640
[  389.392646][T10473]  should_fail_alloc_page+0xe7/0x130
[  389.392671][T10473]  prepare_alloc_pages+0x3c2/0x610
[  389.392705][T10473]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[  389.392741][T10473]  ? is_bpf_text_address+0x94/0x1a0
[  389.392764][T10473]  ? kernel_text_address+0x8d/0x100
[  389.392792][T10473]  ? __kernel_text_address+0xd/0x40
[  389.392818][T10473]  ? unwind_get_return_address+0x59/0xa0
[  389.392849][T10473]  ? arch_stack_walk+0xa6/0x100
[  389.392879][T10473]  ? look_up_lock_class+0x59/0x150
[  389.392911][T10473]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  389.392945][T10473]  ? __lock_acquire+0xaa4/0x1ba0
[  389.392982][T10473]  ? __lock_acquire+0xaa4/0x1ba0
[  389.393004][T10473]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  389.393031][T10473]  ? policy_nodemask+0xea/0x4e0
[  389.393069][T10473]  alloc_pages_mpol+0x1fb/0x550
[  389.393093][T10473]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  389.393123][T10473]  ? __pfx___pollwait+0x10/0x10
[  389.393151][T10473]  alloc_pages_noprof+0x131/0x390
[  389.393175][T10473]  get_free_pages_noprof+0xc/0x40
[  389.393202][T10473]  __pollwait+0x295/0x490
[  389.393234][T10473]  ? __pfx___pollwait+0x10/0x10
[  389.393262][T10473]  datagram_poll+0x7d/0x4f0
[  389.393288][T10473]  ? __pfx_datagram_poll+0x10/0x10
[  389.393310][T10473]  sock_poll+0x15d/0x510
[  389.393347][T10473]  ? __pfx_sock_poll+0x10/0x10
[  389.393379][T10473]  do_select+0xd67/0x17d0
[  389.393433][T10473]  ? __pfx_do_select+0x10/0x10
[  389.393465][T10473]  ? __pfx___pollwait+0x10/0x10
[  389.393498][T10473]  ? __pfx_pollwake+0x10/0x10
[  389.393530][T10473]  ? __pfx_pollwake+0x10/0x10
[  389.393562][T10473]  ? __pfx_pollwake+0x10/0x10
[  389.393594][T10473]  ? __pfx_pollwake+0x10/0x10
[  389.393627][T10473]  ? __pfx_pollwake+0x10/0x10
[  389.393661][T10473]  ? __pfx_pollwake+0x10/0x10
[  389.393687][T10473]  ? __pfx_pollwake+0x10/0x10
[  389.393714][T10473]  ? __pfx_pollwake+0x10/0x10
[  389.393742][T10473]  ? __pfx_pollwake+0x10/0x10
[  389.393772][T10473]  ? find_held_lock+0x2b/0x80
[  389.393798][T10473]  ? __might_fault+0xe3/0x190
[  389.393828][T10473]  ? __might_fault+0xe3/0x190
[  389.393853][T10473]  ? __might_fault+0x13b/0x190
[  389.393895][T10473]  ? core_sys_select+0x440/0xbe0
[  389.393924][T10473]  core_sys_select+0x440/0xbe0
[  389.393962][T10473]  ? __pfx_core_sys_select+0x10/0x10
[  389.394000][T10473]  ? proc_fail_nth_write+0x9f/0x250
[  389.394059][T10473]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  389.394099][T10473]  kern_select+0x15d/0x1e0
[  389.394130][T10473]  ? __pfx_kern_select+0x10/0x10
[  389.394166][T10473]  ? __pfx_ksys_write+0x10/0x10
[  389.394195][T10473]  ? rcu_is_watching+0x12/0xc0
[  389.394227][T10473]  __x64_sys_select+0xbd/0x160
[  389.394257][T10473]  ? do_syscall_64+0x91/0x260
[  389.394286][T10473]  ? lockdep_hardirqs_on+0x7c/0x110
[  389.394322][T10473]  do_syscall_64+0xcd/0x260
[  389.394356][T10473]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  389.394380][T10473] RIP: 0033:0x7f3616f8d169
[  389.394395][T10473] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  389.394416][T10473] RSP: 002b:00007f3617de9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017
[  389.394439][T10473] RAX: ffffffffffffffda RBX: 00007f36171a6160 RCX: 00007f3616f8d169
[  389.394455][T10473] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000e
[  389.394470][T10473] RBP: 00007f3617de9090 R08: 0000000000000000 R09: 0000000000000000
[  389.394484][T10473] R10: 00002000000002c0 R11: 0000000000000246 R12: 0000000000000001
[  389.394498][T10473] R13: 0000000000000000 R14: 00007f36171a6160 R15: 00007ffc4d9705c8
[  389.394530][T10473]  </TASK>
[  389.858747][T10477] sd 0:0:1:0: PR command failed: 1026
[  389.928157][T10477] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  390.000420][T10477] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  390.067302][T10479] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1116'.
[  390.108082][T10479] netlink: 13700 bytes leftover after parsing attributes in process `syz.1.1116'.
[  390.322061][T10488] netlink: 'syz.1.1119': attribute type 10 has an invalid length.
[  390.330628][T10488] netlink: 230 bytes leftover after parsing attributes in process `syz.1.1119'.
[  390.674025][T10499] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1121'.
[  391.327899][T10503] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  391.370914][T10509] FAULT_INJECTION: forcing a failure.
[  391.370914][T10509] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  391.423806][T10503] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  391.458733][T10509] CPU: 1 UID: 0 PID: 10509 Comm: syz.1.1124 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  391.458773][T10509] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  391.458787][T10509] Call Trace:
[  391.458795][T10509]  <TASK>
[  391.458803][T10509]  dump_stack_lvl+0x16c/0x1f0
[  391.458838][T10509]  should_fail_ex+0x512/0x640
[  391.458876][T10509]  _copy_to_iter+0x477/0x15a0
[  391.458912][T10509]  ? __pfx__copy_to_iter+0x10/0x10
[  391.458944][T10509]  ? traverse.part.0.constprop.0+0x2c5/0x640
[  391.458984][T10509]  seq_read_iter+0x719/0x12c0
[  391.459013][T10509]  ? aa_file_perm+0x4d6/0xfb0
[  391.459053][T10509]  seq_read+0x39e/0x4e0
[  391.459081][T10509]  ? __pfx_seq_read+0x10/0x10
[  391.459143][T10509]  ? get_pid_task+0xfc/0x250
[  391.459179][T10509]  ? __pfx_seq_read+0x10/0x10
[  391.459207][T10509]  proc_reg_read+0x23d/0x330
[  391.459230][T10509]  ? __pfx_proc_reg_read+0x10/0x10
[  391.459253][T10509]  vfs_read+0x1de/0xc70
[  391.459290][T10509]  ? __pfx_vfs_read+0x10/0x10
[  391.459317][T10509]  ? find_held_lock+0x2b/0x80
[  391.459344][T10509]  ? __fget_files+0x204/0x3c0
[  391.459377][T10509]  ? __fget_files+0x20e/0x3c0
[  391.459406][T10509]  ? __fget_files+0x1e0/0x3c0
[  391.459444][T10509]  __x64_sys_pread64+0x1f4/0x250
[  391.459477][T10509]  ? __pfx___x64_sys_pread64+0x10/0x10
[  391.459507][T10509]  ? rcu_is_watching+0x12/0xc0
[  391.459543][T10509]  do_syscall_64+0xcd/0x260
[  391.459577][T10509]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  391.459599][T10509] RIP: 0033:0x7fad2018d169
[  391.459617][T10509] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  391.459640][T10509] RSP: 002b:00007fad20f00038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011
[  391.459662][T10509] RAX: ffffffffffffffda RBX: 00007fad203a6160 RCX: 00007fad2018d169
[  391.459677][T10509] RDX: 00000000000081bb RSI: 0000200000000500 RDI: 0000000000000009
[  391.459696][T10509] RBP: 00007fad20f00090 R08: 0000000000000000 R09: 0000000000000000
[  391.459710][T10509] R10: 0000000000000dfe R11: 0000000000000246 R12: 0000000000000001
[  391.459723][T10509] R13: 0000000000000000 R14: 00007fad203a6160 R15: 00007ffec545af08
[  391.459760][T10509]  </TASK>
[  392.470376][T10534] FAULT_INJECTION: forcing a failure.
[  392.470376][T10534] name failslab, interval 1, probability 0, space 0, times 0
[  392.508545][T10534] CPU: 1 UID: 0 PID: 10534 Comm: syz.1.1132 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  392.508567][T10534] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  392.508576][T10534] Call Trace:
[  392.508581][T10534]  <TASK>
[  392.508587][T10534]  dump_stack_lvl+0x16c/0x1f0
[  392.508611][T10534]  should_fail_ex+0x512/0x640
[  392.508627][T10534]  ? fs_reclaim_acquire+0xae/0x150
[  392.508645][T10534]  ? security_inode_init_security+0x13f/0x390
[  392.508664][T10534]  should_failslab+0xc2/0x120
[  392.508678][T10534]  __kmalloc_noprof+0xd2/0x510
[  392.508701][T10534]  security_inode_init_security+0x13f/0x390
[  392.508720][T10534]  ? __pfx_shmem_initxattrs+0x10/0x10
[  392.508738][T10534]  ? __pfx_security_inode_init_security+0x10/0x10
[  392.508763][T10534]  shmem_mknod+0x22e/0x450
[  392.508782][T10534]  shmem_mkdir+0x31/0x80
[  392.508798][T10534]  vfs_mkdir+0x590/0x8c0
[  392.508816][T10534]  do_mkdirat+0x304/0x3e0
[  392.508835][T10534]  ? __pfx_do_mkdirat+0x10/0x10
[  392.508858][T10534]  __x64_sys_mkdir+0xef/0x140
[  392.508877][T10534]  do_syscall_64+0xcd/0x260
[  392.508896][T10534]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  392.508910][T10534] RIP: 0033:0x7fad2018d169
[  392.508921][T10534] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  392.508934][T10534] RSP: 002b:00007fad20f42038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[  392.508947][T10534] RAX: ffffffffffffffda RBX: 00007fad203a5fa0 RCX: 00007fad2018d169
[  392.508957][T10534] RDX: 0000000000000000 RSI: 0000000000008001 RDI: 0000000000000000
[  392.508965][T10534] RBP: 00007fad2020e2a0 R08: 0000000000000000 R09: 0000000000000000
[  392.508973][T10534] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  392.508981][T10534] R13: 0000000000000000 R14: 00007fad203a5fa0 R15: 00007ffec545af08
[  392.508999][T10534]  </TASK>
[  392.871070][T10535] Invalid ELF header magic: != ELF
[  395.696923][T10601] netlink: 'syz.2.1150': attribute type 10 has an invalid length.
[  395.733811][T10601] netlink: 230 bytes leftover after parsing attributes in process `syz.2.1150'.
[  395.819297][T10604] sd 0:0:1:0: PR command failed: 1026
[  395.827537][T10604] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  395.837804][T10604] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  399.271967][T10674] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1167'.
[  399.781886][T10687] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1170'.
[  400.533466][T10704] FAULT_INJECTION: forcing a failure.
[  400.533466][T10704] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  400.559578][T10704] CPU: 1 UID: 0 PID: 10704 Comm: syz.0.1176 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  400.559608][T10704] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  400.559621][T10704] Call Trace:
[  400.559628][T10704]  <TASK>
[  400.559636][T10704]  dump_stack_lvl+0x16c/0x1f0
[  400.559670][T10704]  should_fail_ex+0x512/0x640
[  400.559698][T10704]  _copy_from_user+0x2e/0xd0
[  400.559725][T10704]  copy_msghdr_from_user+0x98/0x160
[  400.559754][T10704]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  400.559795][T10704]  ___sys_sendmsg+0xfe/0x1d0
[  400.559824][T10704]  ? __pfx____sys_sendmsg+0x10/0x10
[  400.559892][T10704]  __sys_sendmsg+0x16d/0x220
[  400.559920][T10704]  ? __pfx___sys_sendmsg+0x10/0x10
[  400.559957][T10704]  ? rcu_is_watching+0x12/0xc0
[  400.559992][T10704]  do_syscall_64+0xcd/0x260
[  400.560024][T10704]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  400.560046][T10704] RIP: 0033:0x7fc84598d169
[  400.560063][T10704] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  400.560082][T10704] RSP: 002b:00007fc8468ac038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  400.560102][T10704] RAX: ffffffffffffffda RBX: 00007fc845ba5fa0 RCX: 00007fc84598d169
[  400.560117][T10704] RDX: 0000000000004880 RSI: 0000200000000140 RDI: 0000000000000004
[  400.560132][T10704] RBP: 00007fc8468ac090 R08: 0000000000000000 R09: 0000000000000000
[  400.560146][T10704] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  400.560159][T10704] R13: 0000000000000000 R14: 00007fc845ba5fa0 R15: 00007ffeb1a8ee98
[  400.560186][T10704]  </TASK>
[  400.980218][T10710] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1178'.
[  401.013759][T10710] netlink: 13700 bytes leftover after parsing attributes in process `syz.0.1178'.
[  401.261587][T10719] FAULT_INJECTION: forcing a failure.
[  401.261587][T10719] name failslab, interval 1, probability 0, space 0, times 0
[  401.352232][T10719] CPU: 1 UID: 0 PID: 10719 Comm: syz.3.1182 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  401.352274][T10719] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  401.352291][T10719] Call Trace:
[  401.352301][T10719]  <TASK>
[  401.352312][T10719]  dump_stack_lvl+0x16c/0x1f0
[  401.352356][T10719]  should_fail_ex+0x512/0x640
[  401.352392][T10719]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[  401.352444][T10719]  should_failslab+0xc2/0x120
[  401.352470][T10719]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  401.352514][T10719]  ? dccp_feat_clone_sp_val+0x96/0x130
[  401.352560][T10719]  kmemdup_noprof+0x29/0x60
[  401.352587][T10719]  dccp_feat_clone_sp_val+0x96/0x130
[  401.352632][T10719]  __feat_register_sp+0x331/0x5a0
[  401.352678][T10719]  ? __pfx___feat_register_sp+0x10/0x10
[  401.352719][T10719]  ? __kasan_kmalloc+0xaa/0xb0
[  401.352764][T10719]  dccp_feat_init+0x762/0x800
[  401.352794][T10719]  ? __pfx_dccp_feat_init+0x10/0x10
[  401.352821][T10719]  ? __pfx_dccp_keepalive_timer+0x10/0x10
[  401.352858][T10719]  ? lockdep_init_map_type+0x5c/0x280
[  401.352885][T10719]  ? do_init_timer+0xc9/0x110
[  401.352917][T10719]  ? __pfx_dccp_keepalive_timer+0x10/0x10
[  401.352952][T10719]  ? __pfx_dccp_delack_timer+0x10/0x10
[  401.352992][T10719]  dccp_init_sock+0x327/0x420
[  401.353022][T10719]  ? __pfx_dccp_v4_init_sock+0x10/0x10
[  401.353053][T10719]  dccp_v4_init_sock+0x1f/0xa0
[  401.353079][T10719]  ? __pfx_dccp_v4_init_sock+0x10/0x10
[  401.353109][T10719]  inet_create+0x936/0x1090
[  401.353136][T10719]  ? inet_create+0x93/0x1090
[  401.353166][T10719]  __sock_create+0x335/0x8d0
[  401.353200][T10719]  inet_ctl_sock_create+0x94/0x230
[  401.353241][T10719]  ? __pfx_inet_ctl_sock_create+0x10/0x10
[  401.353290][T10719]  ? __pfx_dccp_v4_init_net+0x10/0x10
[  401.353320][T10719]  dccp_v4_init_net+0x63/0x90
[  401.353349][T10719]  ops_init+0x1df/0x5f0
[  401.353396][T10719]  setup_net+0x21e/0x850
[  401.353439][T10719]  ? __pfx_setup_net+0x10/0x10
[  401.353476][T10719]  ? lockdep_init_map_type+0x5c/0x280
[  401.353503][T10719]  ? __pfx_down_read_killable+0x10/0x10
[  401.353548][T10719]  ? debug_mutex_init+0x37/0x70
[  401.353585][T10719]  copy_net_ns+0x2a6/0x5f0
[  401.353628][T10719]  create_new_namespaces+0x3ea/0xad0
[  401.353674][T10719]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  401.353713][T10719]  ksys_unshare+0x45b/0xa40
[  401.353753][T10719]  ? __pfx_ksys_unshare+0x10/0x10
[  401.353791][T10719]  ? xfd_validate_state+0x5d/0x180
[  401.353823][T10719]  ? rcu_is_watching+0x12/0xc0
[  401.353881][T10719]  __x64_sys_unshare+0x31/0x40
[  401.353920][T10719]  do_syscall_64+0xcd/0x260
[  401.353962][T10719]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  401.353991][T10719] RIP: 0033:0x7f3616f8d169
[  401.354013][T10719] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  401.354038][T10719] RSP: 002b:00007f3617e2b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  401.354063][T10719] RAX: ffffffffffffffda RBX: 00007f36171a5fa0 RCX: 00007f3616f8d169
[  401.354081][T10719] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  401.354096][T10719] RBP: 00007f361700e2a0 R08: 0000000000000000 R09: 0000000000000000
[  401.354113][T10719] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  401.354128][T10719] R13: 0000000000000000 R14: 00007f36171a5fa0 R15: 00007ffc4d9705c8
[  401.354161][T10719]  </TASK>
[  402.471035][T10734] netlink: 'syz.3.1185': attribute type 10 has an invalid length.
[  402.494065][T10734] netlink: 230 bytes leftover after parsing attributes in process `syz.3.1185'.
[  402.870200][T10737] zswap: compressor  not available
[  403.167648][T10750] netlink: 'syz.3.1191': attribute type 10 has an invalid length.
[  403.186234][T10750] netlink: 230 bytes leftover after parsing attributes in process `syz.3.1191'.
[  403.196601][T10752] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1190'.
[  403.214129][T10752] netlink: 13700 bytes leftover after parsing attributes in process `syz.2.1190'.
[  403.216207][T10749] FAULT_INJECTION: forcing a failure.
[  403.216207][T10749] name failslab, interval 1, probability 0, space 0, times 0
[  403.274470][T10749] CPU: 0 UID: 0 PID: 10749 Comm: syz.0.1189 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  403.274506][T10749] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  403.274521][T10749] Call Trace:
[  403.274530][T10749]  <TASK>
[  403.274540][T10749]  dump_stack_lvl+0x16c/0x1f0
[  403.274577][T10749]  should_fail_ex+0x512/0x640
[  403.274605][T10749]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  403.274646][T10749]  should_failslab+0xc2/0x120
[  403.274669][T10749]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  403.274705][T10749]  ? sock_alloc_inode+0x25/0x1c0
[  403.274744][T10749]  ? __pfx_sock_alloc_inode+0x10/0x10
[  403.274777][T10749]  sock_alloc_inode+0x25/0x1c0
[  403.274810][T10749]  alloc_inode+0x61/0x240
[  403.274839][T10749]  sock_alloc+0x40/0x280
[  403.274872][T10749]  __sock_create+0xc1/0x8d0
[  403.274904][T10749]  inet_ctl_sock_create+0x94/0x230
[  403.274952][T10749]  ? __pfx_inet_ctl_sock_create+0x10/0x10
[  403.274998][T10749]  ? __pfx_dccp_v6_init_net+0x10/0x10
[  403.275024][T10749]  dccp_v6_init_net+0x63/0x90
[  403.275050][T10749]  ops_init+0x1df/0x5f0
[  403.275084][T10749]  setup_net+0x21e/0x850
[  403.275117][T10749]  ? __pfx_setup_net+0x10/0x10
[  403.275144][T10749]  ? lockdep_init_map_type+0x5c/0x280
[  403.275166][T10749]  ? __pfx_down_read_killable+0x10/0x10
[  403.275207][T10749]  ? debug_mutex_init+0x37/0x70
[  403.275239][T10749]  copy_net_ns+0x2a6/0x5f0
[  403.275276][T10749]  create_new_namespaces+0x3ea/0xad0
[  403.275316][T10749]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  403.275352][T10749]  ksys_unshare+0x45b/0xa40
[  403.275388][T10749]  ? __pfx_ksys_unshare+0x10/0x10
[  403.275419][T10749]  ? xfd_validate_state+0x5d/0x180
[  403.275447][T10749]  ? rcu_is_watching+0x12/0xc0
[  403.275483][T10749]  __x64_sys_unshare+0x31/0x40
[  403.275517][T10749]  do_syscall_64+0xcd/0x260
[  403.275552][T10749]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  403.275577][T10749] RIP: 0033:0x7fc84598d169
[  403.275596][T10749] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  403.275619][T10749] RSP: 002b:00007fc8468ac038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  403.275642][T10749] RAX: ffffffffffffffda RBX: 00007fc845ba5fa0 RCX: 00007fc84598d169
[  403.275659][T10749] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  403.275673][T10749] RBP: 00007fc845a0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  403.275688][T10749] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  403.275702][T10749] R13: 0000000000000000 R14: 00007fc845ba5fa0 R15: 00007ffeb1a8ee98
[  403.275735][T10749]  </TASK>
[  403.275747][T10749] net_ratelimit: 36 callbacks suppressed
[  403.275759][T10749] socket: no more sockets
[  403.548333][T10762] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1193'.
[  403.882388][T10771] netlink: 'syz.2.1197': attribute type 10 has an invalid length.
[  403.901852][T10771] netlink: 230 bytes leftover after parsing attributes in process `syz.2.1197'.
[  404.192221][T10774] zswap: compressor  not available
[  404.588358][T10779] FAULT_INJECTION: forcing a failure.
[  404.588358][T10779] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  404.652617][T10779] CPU: 1 UID: 0 PID: 10779 Comm: syz.0.1207 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  404.652651][T10779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  404.652665][T10779] Call Trace:
[  404.652672][T10779]  <TASK>
[  404.652681][T10779]  dump_stack_lvl+0x16c/0x1f0
[  404.652717][T10779]  should_fail_ex+0x512/0x640
[  404.652748][T10779]  _copy_from_user+0x2e/0xd0
[  404.652776][T10779]  move_addr_to_kernel+0x65/0x170
[  404.652802][T10779]  __sys_connect+0xaf/0x170
[  404.652826][T10779]  ? __pfx___sys_connect+0x10/0x10
[  404.652862][T10779]  ? __pfx_ksys_write+0x10/0x10
[  404.652891][T10779]  ? rcu_is_watching+0x12/0xc0
[  404.652924][T10779]  __x64_sys_connect+0x72/0xb0
[  404.652947][T10779]  ? lockdep_hardirqs_on+0x7c/0x110
[  404.652977][T10779]  do_syscall_64+0xcd/0x260
[  404.653011][T10779]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  404.653040][T10779] RIP: 0033:0x7fc84598d169
[  404.653058][T10779] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  404.653080][T10779] RSP: 002b:00007fc8468ac038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  404.653103][T10779] RAX: ffffffffffffffda RBX: 00007fc845ba5fa0 RCX: 00007fc84598d169
[  404.653120][T10779] RDX: 0000000000000055 RSI: 00002000000000c0 RDI: 0000000000000003
[  404.653135][T10779] RBP: 00007fc8468ac090 R08: 0000000000000000 R09: 0000000000000000
[  404.653150][T10779] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  404.653164][T10779] R13: 0000000000000000 R14: 00007fc845ba5fa0 R15: 00007ffeb1a8ee98
[  404.653197][T10779]  </TASK>
[  405.005733][T10790] netlink: 'syz.1.1202': attribute type 10 has an invalid length.
[  405.014665][T10790] netlink: 230 bytes leftover after parsing attributes in process `syz.1.1202'.
[  407.743363][T10860] zswap: compressor  not available
[  408.366936][T10888] FAULT_INJECTION: forcing a failure.
[  408.366936][T10888] name failslab, interval 1, probability 0, space 0, times 0
[  408.379798][T10888] CPU: 1 UID: 0 PID: 10888 Comm: syz.3.1220 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  408.379830][T10888] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  408.379845][T10888] Call Trace:
[  408.379852][T10888]  <TASK>
[  408.379861][T10888]  dump_stack_lvl+0x16c/0x1f0
[  408.379901][T10888]  should_fail_ex+0x512/0x640
[  408.379926][T10888]  ? __kmalloc_noprof+0xbf/0x510
[  408.379962][T10888]  ? lsm_blob_alloc+0x68/0x90
[  408.379993][T10888]  should_failslab+0xc2/0x120
[  408.380016][T10888]  __kmalloc_noprof+0xd2/0x510
[  408.380056][T10888]  lsm_blob_alloc+0x68/0x90
[  408.380090][T10888]  security_prepare_creds+0x30/0x270
[  408.380124][T10888]  prepare_creds+0x56f/0x7d0
[  408.380152][T10888]  copy_creds+0xa7/0xa50
[  408.380182][T10888]  copy_process+0x10b1/0x91a0
[  408.380211][T10888]  ? find_held_lock+0x2b/0x80
[  408.380241][T10888]  ? schedule+0x2d7/0x3a0
[  408.380267][T10888]  ? futex_wait_queue+0x24/0x220
[  408.380288][T10888]  ? schedule+0xf1/0x3a0
[  408.380315][T10888]  ? futex_wait_queue+0x14c/0x220
[  408.380344][T10888]  ? __pfx_copy_process+0x10/0x10
[  408.380375][T10888]  ? __pfx___futex_wait+0x10/0x10
[  408.380417][T10888]  ? __pfx_futex_wake_mark+0x10/0x10
[  408.380459][T10888]  kernel_clone+0xfc/0x960
[  408.380493][T10888]  ? __pfx_kernel_clone+0x10/0x10
[  408.380544][T10888]  __do_sys_clone+0xce/0x120
[  408.380576][T10888]  ? __pfx___do_sys_clone+0x10/0x10
[  408.380625][T10888]  ? syscall_user_dispatch+0x78/0x140
[  408.380661][T10888]  do_syscall_64+0xcd/0x260
[  408.380695][T10888]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  408.380720][T10888] RIP: 0033:0x7f3616f8d169
[  408.380740][T10888] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  408.380763][T10888] RSP: 002b:00007f3617e2b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  408.380786][T10888] RAX: ffffffffffffffda RBX: 00007f36171a5fa0 RCX: 00007f3616f8d169
[  408.380801][T10888] RDX: 0000000000000000 RSI: fffffffffffffff7 RDI: 0000000000000006
[  408.380815][T10888] RBP: 00007f361700e2a0 R08: 0000000000000009 R09: 0000000000000000
[  408.380827][T10888] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  408.380839][T10888] R13: 0000000000000000 R14: 00007f36171a5fa0 R15: 00007ffc4d9705c8
[  408.380869][T10888]  </TASK>
[  414.112217][T10993] input: f4$w�Tr as /devices/virtual/input/input9
[  416.116146][T11043] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1255'.
[  416.148134][T11043] netlink: 13700 bytes leftover after parsing attributes in process `syz.1.1255'.
[  424.806130][T11214] input: jJǸ-���9�%v����l��Q�	J"��1� as /devices/virtual/input/input10
[  425.256247][T11223] bond0: option packets_per_slave: invalid value ()
[  425.264239][T11223] bond0: option packets_per_slave: allowed values 0 - 65535
[  425.299388][T11228] FAULT_INJECTION: forcing a failure.
[  425.299388][T11228] name failslab, interval 1, probability 0, space 0, times 0
[  425.333883][T11228] CPU: 0 UID: 0 PID: 11228 Comm: syz.3.1300 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  425.333918][T11228] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  425.333932][T11228] Call Trace:
[  425.333941][T11228]  <TASK>
[  425.333956][T11228]  dump_stack_lvl+0x16c/0x1f0
[  425.333995][T11228]  should_fail_ex+0x512/0x640
[  425.334021][T11228]  ? __kmalloc_noprof+0xbf/0x510
[  425.334064][T11228]  ? apply_wqattrs_prepare+0xf8/0xbd0
[  425.334094][T11228]  should_failslab+0xc2/0x120
[  425.334118][T11228]  __kmalloc_noprof+0xd2/0x510
[  425.334161][T11228]  apply_wqattrs_prepare+0xf8/0xbd0
[  425.334207][T11228]  apply_workqueue_attrs_locked+0x64/0xe0
[  425.334240][T11228]  __alloc_workqueue+0xf41/0x1810
[  425.334284][T11228]  alloc_workqueue+0xd2/0x200
[  425.334318][T11228]  ? __pfx_alloc_workqueue+0x10/0x10
[  425.334358][T11228]  ? rcu_is_watching+0x12/0xc0
[  425.334388][T11228]  ? trace_kmalloc+0x2b/0xd0
[  425.334411][T11228]  ? do_raw_spin_lock+0x12c/0x2b0
[  425.334437][T11228]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  425.334469][T11228]  ieee80211_register_hw+0x1e18/0x4020
[  425.334499][T11228]  ? _raw_spin_unlock_irqrestore+0x11/0x80
[  425.334529][T11228]  ? __debug_object_init+0x281/0x3d0
[  425.334567][T11228]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  425.334596][T11228]  ? find_held_lock+0x2b/0x80
[  425.334625][T11228]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  425.334652][T11228]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  425.334686][T11228]  ? __hrtimer_setup+0x176/0x280
[  425.334714][T11228]  mac80211_hwsim_new_radio+0x3034/0x54d0
[  425.334772][T11228]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  425.334815][T11228]  hwsim_new_radio_nl+0xb51/0x12c0
[  425.334848][T11228]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  425.334888][T11228]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  425.334928][T11228]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  425.334974][T11228]  genl_family_rcv_msg_doit+0x206/0x2f0
[  425.335013][T11228]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  425.335050][T11228]  ? trace_cap_capable+0x18d/0x200
[  425.335082][T11228]  ? bpf_lsm_capable+0x9/0x10
[  425.335113][T11228]  ? security_capable+0x7e/0x260
[  425.335137][T11228]  ? ns_capable+0xd7/0x110
[  425.335169][T11228]  genl_rcv_msg+0x55c/0x800
[  425.335197][T11228]  ? __pfx_genl_rcv_msg+0x10/0x10
[  425.335218][T11228]  ? __pfx___dev_queue_xmit+0x10/0x10
[  425.335244][T11228]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  425.335275][T11228]  ? __lock_acquire+0xaa4/0x1ba0
[  425.335305][T11228]  netlink_rcv_skb+0x16a/0x440
[  425.335338][T11228]  ? __pfx_genl_rcv_msg+0x10/0x10
[  425.335362][T11228]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  425.335414][T11228]  ? __pfx_down_read+0x10/0x10
[  425.335450][T11228]  ? netlink_deliver_tap+0x1ae/0xd30
[  425.335488][T11228]  genl_rcv+0x28/0x40
[  425.335520][T11228]  netlink_unicast+0x53a/0x7f0
[  425.335557][T11228]  ? __pfx_netlink_unicast+0x10/0x10
[  425.335587][T11228]  ? __lock_acquire+0xaa4/0x1ba0
[  425.335620][T11228]  netlink_sendmsg+0x8d1/0xdd0
[  425.335659][T11228]  ? __pfx_netlink_sendmsg+0x10/0x10
[  425.335705][T11228]  ____sys_sendmsg+0xa95/0xc70
[  425.335740][T11228]  ? copy_msghdr_from_user+0x10a/0x160
[  425.335821][T11228]  ? __pfx_____sys_sendmsg+0x10/0x10
[  425.335869][T11228]  ? try_to_wake_up+0xa2f/0x1680
[  425.335905][T11228]  ___sys_sendmsg+0x134/0x1d0
[  425.335937][T11228]  ? __pfx____sys_sendmsg+0x10/0x10
[  425.336014][T11228]  __sys_sendmsg+0x16d/0x220
[  425.336044][T11228]  ? __pfx___sys_sendmsg+0x10/0x10
[  425.336074][T11228]  ? __x64_sys_futex+0x1e0/0x4c0
[  425.336116][T11228]  ? rcu_is_watching+0x12/0xc0
[  425.336156][T11228]  do_syscall_64+0xcd/0x260
[  425.336191][T11228]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  425.336216][T11228] RIP: 0033:0x7f3616f8d169
[  425.336236][T11228] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  425.336260][T11228] RSP: 002b:00007f3617e2b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  425.336284][T11228] RAX: ffffffffffffffda RBX: 00007f36171a5fa0 RCX: 00007f3616f8d169
[  425.336301][T11228] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 000000000000000a
[  425.336317][T11228] RBP: 00007f361700e2a0 R08: 0000000000000000 R09: 0000000000000000
[  425.336332][T11228] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  425.336347][T11228] R13: 0000000000000000 R14: 00007f36171a5fa0 R15: 00007ffc4d9705c8
[  425.336383][T11228]  </TASK>
[  426.372864][T11250] FAULT_INJECTION: forcing a failure.
[  426.372864][T11250] name failslab, interval 1, probability 0, space 0, times 0
[  426.467886][T11250] CPU: 0 UID: 0 PID: 11250 Comm: syz.1.1305 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  426.467920][T11250] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  426.467934][T11250] Call Trace:
[  426.467942][T11250]  <TASK>
[  426.467951][T11250]  dump_stack_lvl+0x16c/0x1f0
[  426.467987][T11250]  should_fail_ex+0x512/0x640
[  426.468018][T11250]  should_failslab+0xc2/0x120
[  426.468041][T11250]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  426.468077][T11250]  ? skb_clone+0x190/0x3f0
[  426.468111][T11250]  skb_clone+0x190/0x3f0
[  426.468142][T11250]  netlink_deliver_tap+0xabd/0xd30
[  426.468181][T11250]  netlink_unicast+0x5df/0x7f0
[  426.468218][T11250]  ? __pfx_netlink_unicast+0x10/0x10
[  426.468247][T11250]  ? __lock_acquire+0xaa4/0x1ba0
[  426.468278][T11250]  netlink_sendmsg+0x8d1/0xdd0
[  426.468317][T11250]  ? __pfx_netlink_sendmsg+0x10/0x10
[  426.468362][T11250]  ____sys_sendmsg+0xa95/0xc70
[  426.468398][T11250]  ? copy_msghdr_from_user+0x10a/0x160
[  426.468426][T11250]  ? __pfx_____sys_sendmsg+0x10/0x10
[  426.468478][T11250]  ___sys_sendmsg+0x134/0x1d0
[  426.468509][T11250]  ? __pfx____sys_sendmsg+0x10/0x10
[  426.468574][T11250]  __sys_sendmsg+0x16d/0x220
[  426.468604][T11250]  ? __pfx___sys_sendmsg+0x10/0x10
[  426.468644][T11250]  ? rcu_is_watching+0x12/0xc0
[  426.468682][T11250]  do_syscall_64+0xcd/0x260
[  426.468716][T11250]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  426.468738][T11250] RIP: 0033:0x7fad2018d169
[  426.468757][T11250] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  426.468779][T11250] RSP: 002b:00007fad20f42038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  426.468809][T11250] RAX: ffffffffffffffda RBX: 00007fad203a5fa0 RCX: 00007fad2018d169
[  426.468828][T11250] RDX: 0000000000000880 RSI: 0000200000000f80 RDI: 0000000000000003
[  426.468842][T11250] RBP: 00007fad20f42090 R08: 0000000000000000 R09: 0000000000000000
[  426.468856][T11250] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  426.468870][T11250] R13: 0000000000000000 R14: 00007fad203a5fa0 R15: 00007ffec545af08
[  426.468903][T11250]  </TASK>
[  427.186144][T11258] netlink: 'syz.1.1306': attribute type 10 has an invalid length.
[  427.236101][T11258] netlink: 230 bytes leftover after parsing attributes in process `syz.1.1306'.
[  428.199657][T11294] netlink: 338 bytes leftover after parsing attributes in process `syz.2.1314'.
[  428.351980][T11298] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1313'.
[  428.406359][T11299] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(5)
[  428.488549][T11293] HfR: entered promiscuous mode
[  428.549998][T11298] HfR: left promiscuous mode
[  428.702241][T11307] netlink: 'syz.3.1317': attribute type 10 has an invalid length.
[  428.717244][T11307] netlink: 230 bytes leftover after parsing attributes in process `syz.3.1317'.
[  429.574292][T11329] netlink: 338 bytes leftover after parsing attributes in process `syz.2.1324'.
[  429.736100][T11333] HfR: entered promiscuous mode
[  429.747914][T11333] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1325'.
[  429.765074][T11333] HfR: left promiscuous mode
[  429.781495][T11339] netlink: 'syz.1.1328': attribute type 10 has an invalid length.
[  429.797205][T11339] netlink: 230 bytes leftover after parsing attributes in process `syz.1.1328'.
[  429.852337][T11333] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(5)
[  430.601461][T11373] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1338'.
[  431.813565][T11400] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1347'.
[  431.884142][T11401] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(5)
[  431.942695][T11397] HfR: entered promiscuous mode
[  431.997204][T11400] HfR: left promiscuous mode
[  432.661438][T11417] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1351'.
[  434.622576][T11465] [U] 
[  434.625538][T11465] [U] 
[  434.628210][T11465] [U] 
[  434.630880][T11465] [U] 
[  434.634477][T11465] [U] 
[  434.637165][T11465] [U] 
[  434.639839][T11465] [U] 
[  434.642510][T11465] [U] 
[  434.646666][T11465] [U] 
[  434.649367][T11465] [U] 
[  434.652040][T11465] [U] 
[  434.654714][T11465] [U] 
[  434.699900][T11465] [U] 
[  434.702614][T11465] [U] 
[  434.705289][T11465] [U] 
[  434.707995][T11465] [U] 
[  434.767990][T11465] [U] 
[  434.770766][T11465] [U] 
[  434.773484][T11465] [U] 
[  434.776176][T11465] [U] 
[  434.799552][T11465] [U] 
[  434.802320][T11465] [U] 
[  434.805041][T11465] [U] 
[  434.807765][T11465] [U] 
[  434.864746][T11465] [U] 
[  434.867679][T11465] [U] 
[  434.870388][T11465] [U] 
[  434.873097][T11465] [U] 
[  434.966000][T11465] [U] 
[  434.968770][T11465] [U] 
[  434.971487][T11465] [U] 
[  434.974179][T11465] [U] 
[  434.978202][T11465] [U] 
[  434.980892][T11465] [U] 
[  434.983563][T11465] [U] 
[  434.986243][T11465] [U] 
[  434.989614][T11465] [U] 
[  434.992298][T11465] [U] 
[  434.994987][T11465] [U] 
[  434.997660][T11465] [U] 
[  435.001140][T11465] [U] 
[  435.003825][T11465] [U] 
[  435.006497][T11465] [U] 
[  435.009168][T11465] [U] 
[  435.012641][T11465] [U] 
[  435.015335][T11465] [U] 
[  435.018027][T11465] [U] 
[  435.020701][T11465] [U] 
[  435.024372][T11465] [U] 
[  435.027056][T11465] [U] 
[  435.029725][T11465] [U] 
[  435.032397][T11465] [U] 
[  435.044881][T11465] [U] 
[  435.617514][ T5845] Bluetooth: hci1: unexpected event 0x35 length: 13 > 6
[  439.270355][T11559] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input11
[  440.006446][T11580] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1398'.
[  440.098182][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  440.109905][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  440.751660][T11597] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1395'.
[  442.260721][T11638] netlink: zone id is out of range
[  442.266025][T11638] netlink: zone id is out of range
[  442.283021][T11638] netlink: zone id is out of range
[  442.292630][T11638] netlink: zone id is out of range
[  442.303921][T11638] netlink: zone id is out of range
[  442.309282][T11638] netlink: zone id is out of range
[  442.324156][T11638] netlink: zone id is out of range
[  442.334121][T11638] netlink: zone id is out of range
[  442.342684][T11638] netlink: zone id is out of range
[  442.379149][T11638] netlink: zone id is out of range
[  442.877787][T11654] tipc: Started in network mode
[  442.882825][T11654] tipc: Node identity 8e4e6f15, cluster identity 4711
[  442.892643][T11654] tipc: Node number set to 2387504917
[  443.514821][T11677] FAULT_INJECTION: forcing a failure.
[  443.514821][T11677] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  443.563604][T11677] CPU: 0 UID: 0 PID: 11677 Comm: syz.1.1412 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  443.563662][T11677] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  443.563675][T11677] Call Trace:
[  443.563682][T11677]  <TASK>
[  443.563691][T11677]  dump_stack_lvl+0x16c/0x1f0
[  443.563724][T11677]  should_fail_ex+0x512/0x640
[  443.563752][T11677]  _copy_to_iter+0x2a4/0x15a0
[  443.563780][T11677]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  443.563826][T11677]  ? __pfx__copy_to_iter+0x10/0x10
[  443.563853][T11677]  ? kernfs_seq_stop+0xcd/0x120
[  443.563885][T11677]  ? kernfs_put_active+0x86/0xe0
[  443.563909][T11677]  seq_read_iter+0xcf8/0x12c0
[  443.563951][T11677]  kernfs_fop_read_iter+0x40f/0x5a0
[  443.563978][T11677]  ? rw_verify_area+0xcf/0x680
[  443.564009][T11677]  vfs_read+0x8c8/0xc70
[  443.564041][T11677]  ? __pfx___mutex_lock+0x10/0x10
[  443.564069][T11677]  ? __pfx_vfs_read+0x10/0x10
[  443.564118][T11677]  ksys_read+0x12a/0x240
[  443.564147][T11677]  ? __pfx_ksys_read+0x10/0x10
[  443.564173][T11677]  ? rcu_is_watching+0x12/0xc0
[  443.564212][T11677]  do_syscall_64+0xcd/0x260
[  443.564245][T11677]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  443.564269][T11677] RIP: 0033:0x7fad2018d169
[  443.564287][T11677] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  443.564309][T11677] RSP: 002b:00007fad20f42038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  443.564331][T11677] RAX: ffffffffffffffda RBX: 00007fad203a5fa0 RCX: 00007fad2018d169
[  443.564347][T11677] RDX: 00000000000000ec RSI: 0000200000001240 RDI: 0000000000000003
[  443.564361][T11677] RBP: 00007fad20f42090 R08: 0000000000000000 R09: 0000000000000000
[  443.564375][T11677] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  443.564388][T11677] R13: 0000000000000000 R14: 00007fad203a5fa0 R15: 00007ffec545af08
[  443.564421][T11677]  </TASK>
[  447.172051][T11755] mmap: syz.2.1424 (11755): VmData 37527552 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data.
[  447.448904][T11759] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1427'.
[  450.725322][T11819] vivid-008: =================  START STATUS  =================
[  450.733242][T11819] vivid-008: ==================  END STATUS  ==================
[  451.208841][T11838] FAULT_INJECTION: forcing a failure.
[  451.208841][T11838] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  451.246806][T11838] CPU: 1 UID: 0 PID: 11838 Comm: syz.1.1446 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  451.246838][T11838] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  451.246851][T11838] Call Trace:
[  451.246859][T11838]  <TASK>
[  451.246868][T11838]  dump_stack_lvl+0x16c/0x1f0
[  451.246900][T11838]  should_fail_ex+0x512/0x640
[  451.246929][T11838]  _copy_from_user+0x2e/0xd0
[  451.246956][T11838]  load_msg+0x253/0x4a0
[  451.246988][T11838]  do_msgrcv+0x202/0x16c0
[  451.247016][T11838]  ? __pfx_do_msg_fill+0x10/0x10
[  451.247072][T11838]  ? __fget_files+0x20e/0x3c0
[  451.247103][T11838]  ? __pfx_do_msgrcv+0x10/0x10
[  451.247132][T11838]  ? fput+0x70/0xf0
[  451.247152][T11838]  ? ksys_write+0x1b9/0x240
[  451.247179][T11838]  ? __pfx_ksys_write+0x10/0x10
[  451.247206][T11838]  ? rcu_is_watching+0x12/0xc0
[  451.247239][T11838]  ? do_syscall_64+0xcd/0x260
[  451.247267][T11838]  do_syscall_64+0xcd/0x260
[  451.247297][T11838]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  451.247319][T11838] RIP: 0033:0x7fad2018d169
[  451.247336][T11838] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  451.247357][T11838] RSP: 002b:00007fad20f42038 EFLAGS: 00000246 ORIG_RAX: 0000000000000046
[  451.247377][T11838] RAX: ffffffffffffffda RBX: 00007fad203a5fa0 RCX: 00007fad2018d169
[  451.247393][T11838] RDX: 0000000000000ff9 RSI: 0000000000000000 RDI: 0000000000000000
[  451.247405][T11838] RBP: 00007fad20f42090 R08: 000000000000da4e R09: 0000000000000000
[  451.247419][T11838] R10: ff00000000000000 R11: 0000000000000246 R12: 0000000000000001
[  451.247432][T11838] R13: 0000000000000000 R14: 00007fad203a5fa0 R15: 00007ffec545af08
[  451.247461][T11838]  </TASK>
[  452.278482][T11856] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1450'.
[  452.392995][T11856] geneve1: entered allmulticast mode
[  453.495936][T11890] netlink: 332 bytes leftover after parsing attributes in process `syz.1.1456'.
[  454.431919][T11905] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1460'.
[  454.747855][T11908] FAULT_INJECTION: forcing a failure.
[  454.747855][T11908] name failslab, interval 1, probability 0, space 0, times 0
[  454.807163][T11908] CPU: 0 UID: 0 PID: 11908 Comm: syz.1.1461 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  454.807193][T11908] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  454.807205][T11908] Call Trace:
[  454.807211][T11908]  <TASK>
[  454.807219][T11908]  dump_stack_lvl+0x16c/0x1f0
[  454.807250][T11908]  should_fail_ex+0x512/0x640
[  454.807272][T11908]  ? __kmalloc_cache_node_noprof+0x5a/0x420
[  454.807303][T11908]  should_failslab+0xc2/0x120
[  454.807321][T11908]  __kmalloc_cache_node_noprof+0x6d/0x420
[  454.807349][T11908]  ? find_held_lock+0x2b/0x80
[  454.807371][T11908]  ? __get_vm_area_node+0x101/0x300
[  454.807398][T11908]  __get_vm_area_node+0x101/0x300
[  454.807425][T11908]  __vmalloc_node_range_noprof+0x277/0x1540
[  454.807450][T11908]  ? __do_sys_listmount+0x1c2/0xed0
[  454.807484][T11908]  ? __do_sys_listmount+0x1c2/0xed0
[  454.807515][T11908]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  454.807551][T11908]  __kvmalloc_node_noprof+0x2ff/0x600
[  454.807577][T11908]  ? __do_sys_listmount+0x1c2/0xed0
[  454.807603][T11908]  ? __do_sys_listmount+0x1c2/0xed0
[  454.807632][T11908]  ? __do_sys_listmount+0x1c2/0xed0
[  454.807654][T11908]  __do_sys_listmount+0x1c2/0xed0
[  454.807688][T11908]  ? __pfx___do_sys_listmount+0x10/0x10
[  454.807711][T11908]  ? fput+0x70/0xf0
[  454.807730][T11908]  ? ksys_write+0x1b9/0x240
[  454.807768][T11908]  do_syscall_64+0xcd/0x260
[  454.807797][T11908]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  454.807819][T11908] RIP: 0033:0x7fad2018d169
[  454.807835][T11908] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  454.807854][T11908] RSP: 002b:00007fad20f42038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[  454.807874][T11908] RAX: ffffffffffffffda RBX: 00007fad203a5fa0 RCX: 00007fad2018d169
[  454.807888][T11908] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100
[  454.807900][T11908] RBP: 00007fad20f42090 R08: 0000000000000000 R09: 0000000000000000
[  454.807912][T11908] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001
[  454.807924][T11908] R13: 0000000000000000 R14: 00007fad203a5fa0 R15: 00007ffec545af08
[  454.807951][T11908]  </TASK>
[  454.811919][T11908] syz.1.1461: vmalloc error: size 8000000, vm_struct allocation failed, mode:0x400cc0(GFP_KERNEL_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1
[  455.113802][T11908] CPU: 0 UID: 0 PID: 11908 Comm: syz.1.1461 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  455.113835][T11908] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  455.113850][T11908] Call Trace:
[  455.113857][T11908]  <TASK>
[  455.113866][T11908]  dump_stack_lvl+0x16c/0x1f0
[  455.113902][T11908]  warn_alloc+0x248/0x3a0
[  455.113945][T11908]  ? __pfx_warn_alloc+0x10/0x10
[  455.113978][T11908]  ? __kmalloc_cache_node_noprof+0x272/0x420
[  455.114015][T11908]  ? __kasan_kmalloc+0x8a/0xb0
[  455.114047][T11908]  ? __get_vm_area_node+0x1e5/0x300
[  455.114081][T11908]  __vmalloc_node_range_noprof+0xd31/0x1540
[  455.114122][T11908]  ? __do_sys_listmount+0x1c2/0xed0
[  455.114159][T11908]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  455.114202][T11908]  __kvmalloc_node_noprof+0x2ff/0x600
[  455.114233][T11908]  ? __do_sys_listmount+0x1c2/0xed0
[  455.114262][T11908]  ? __do_sys_listmount+0x1c2/0xed0
[  455.114296][T11908]  ? __do_sys_listmount+0x1c2/0xed0
[  455.114322][T11908]  __do_sys_listmount+0x1c2/0xed0
[  455.114362][T11908]  ? __pfx___do_sys_listmount+0x10/0x10
[  455.114389][T11908]  ? fput+0x70/0xf0
[  455.114411][T11908]  ? ksys_write+0x1b9/0x240
[  455.114452][T11908]  do_syscall_64+0xcd/0x260
[  455.114484][T11908]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  455.114507][T11908] RIP: 0033:0x7fad2018d169
[  455.114525][T11908] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  455.114547][T11908] RSP: 002b:00007fad20f42038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[  455.114569][T11908] RAX: ffffffffffffffda RBX: 00007fad203a5fa0 RCX: 00007fad2018d169
[  455.114585][T11908] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100
[  455.114599][T11908] RBP: 00007fad20f42090 R08: 0000000000000000 R09: 0000000000000000
[  455.114613][T11908] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001
[  455.114627][T11908] R13: 0000000000000000 R14: 00007fad203a5fa0 R15: 00007ffec545af08
[  455.114658][T11908]  </TASK>
[  455.114666][T11908] Mem-Info:
[  455.349426][T11908] active_anon:73812 inactive_anon:0 isolated_anon:0
[  455.349426][T11908]  active_file:10431 inactive_file:50286 isolated_file:0
[  455.349426][T11908]  unevictable:768 dirty:1442 writeback:0
[  455.349426][T11908]  slab_reclaimable:10638 slab_unreclaimable:98479
[  455.349426][T11908]  mapped:52471 shmem:58871 pagetables:1036
[  455.349426][T11908]  sec_pagetables:0 bounce:0
[  455.349426][T11908]  kernel_misc_reclaimable:0
[  455.349426][T11908]  free:1250412 free_pcp:10869 free_cma:0
[  455.395044][    C0] vkms_vblank_simulate: vblank timer overrun
[  455.552993][T11908] Node 0 active_anon:300548kB inactive_anon:0kB active_file:41708kB inactive_file:201140kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:211168kB dirty:5352kB writeback:256kB shmem:239248kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11224kB pagetables:4044kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  455.659622][T11908] Node 1 active_anon:0kB inactive_anon:0kB active_file:16kB inactive_file:4kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:16kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  455.767494][T11908] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  455.885610][T11908] lowmem_reserve[]: 0 2482 2483 2483 2483
[  455.891437][T11908] Node 0 DMA32 free:1113536kB boost:0kB min:34092kB low:42612kB high:51132kB reserved_highatomic:0KB active_anon:307396kB inactive_anon:0kB active_file:41708kB inactive_file:199560kB unevictable:1536kB writepending:3432kB present:3129332kB managed:2541688kB mlocked:0kB bounce:0kB free_pcp:1548kB local_pcp:928kB free_cma:0kB
[  456.027732][T11908] lowmem_reserve[]: 0 0 1 1 1
[  456.032516][T11908] Node 0 Normal free:8kB boost:0kB min:20kB low:24kB high:28kB reserved_highatomic:0KB active_anon:52kB inactive_anon:0kB active_file:0kB inactive_file:1580kB unevictable:0kB writepending:0kB present:1048580kB managed:1644kB mlocked:0kB bounce:0kB free_pcp:4kB local_pcp:0kB free_cma:0kB
[  456.060961][T11908] lowmem_reserve[]: 0 0 0 0 0
[  456.065966][T11908] Node 1 Normal free:3861124kB boost:0kB min:55784kB low:69728kB high:83672kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:16kB inactive_file:4kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:41356kB local_pcp:13756kB free_cma:0kB
[  456.095753][T11908] lowmem_reserve[]: 0 0 0 0 0
[  456.100504][T11908] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  456.163989][T11908] Node 0 DMA32: 886*4kB (UM) 474*8kB (UME) 213*16kB (UME) 2564*32kB (UME) 2706*64kB (UME) 1334*128kB (UME) 490*256kB (UME) 118*512kB (UME) 18*1024kB (UME) 7*2048kB (UM) 113*4096kB (M) = 1118200kB
[  456.335935][T11908] Node 0 Normal: 0*4kB 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB
[  456.348247][T11908] Node 1 Normal: 171*4kB (UM) 43*8kB (UME) 50*16kB (UME) 213*32kB (UME) 115*64kB (UME) 40*128kB (UME) 26*256kB (UM) 19*512kB (UME) 8*1024kB (UME) 7*2048kB (UME) 928*4096kB (M) = 3861124kB
[  456.367263][T11908] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  456.377090][T11908] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  456.386691][T11908] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  456.397387][T11908] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  456.407268][T11908] 120982 total pagecache pages
[  456.412045][T11908] 28 pages in swap cache
[  456.416751][T11908] Free swap  = 124880kB
[  456.420916][T11908] Total swap = 124996kB
[  456.425555][T11908] 2097051 pages RAM
[  456.429377][T11908] 0 pages HighMem/MovableOnly
[  456.434447][T11908] 429587 pages reserved
[  456.438701][T11908] 0 pages cma reserved
[  456.766712][T11926] FAULT_INJECTION: forcing a failure.
[  456.766712][T11926] name failslab, interval 1, probability 0, space 0, times 0
[  456.803911][T11926] CPU: 1 UID: 0 PID: 11926 Comm: syz.0.1467 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  456.803943][T11926] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  456.803955][T11926] Call Trace:
[  456.803963][T11926]  <TASK>
[  456.803972][T11926]  dump_stack_lvl+0x16c/0x1f0
[  456.804006][T11926]  should_fail_ex+0x512/0x640
[  456.804029][T11926]  ? fs_reclaim_acquire+0xae/0x150
[  456.804057][T11926]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  456.804088][T11926]  should_failslab+0xc2/0x120
[  456.804110][T11926]  __kmalloc_noprof+0xd2/0x510
[  456.804151][T11926]  tomoyo_realpath_from_path+0xc2/0x6e0
[  456.804185][T11926]  ? tomoyo_profile+0x47/0x60
[  456.804221][T11926]  tomoyo_path_number_perm+0x245/0x580
[  456.804246][T11926]  ? tomoyo_path_number_perm+0x237/0x580
[  456.804275][T11926]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  456.804304][T11926]  ? find_held_lock+0x2b/0x80
[  456.804364][T11926]  ? find_held_lock+0x2b/0x80
[  456.804390][T11926]  ? hook_file_ioctl_common+0x145/0x410
[  456.804423][T11926]  ? __fget_files+0x20e/0x3c0
[  456.804461][T11926]  security_file_ioctl+0x9b/0x240
[  456.804491][T11926]  __x64_sys_ioctl+0xb7/0x200
[  456.804521][T11926]  do_syscall_64+0xcd/0x260
[  456.804555][T11926]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  456.804579][T11926] RIP: 0033:0x7fc84598d169
[  456.804597][T11926] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  456.804619][T11926] RSP: 002b:00007fc8468ac038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  456.804641][T11926] RAX: ffffffffffffffda RBX: 00007fc845ba5fa0 RCX: 00007fc84598d169
[  456.804656][T11926] RDX: 0000200000000300 RSI: 0000000040046f41 RDI: 0000000000000004
[  456.804671][T11926] RBP: 00007fc8468ac090 R08: 0000000000000000 R09: 0000000000000000
[  456.804686][T11926] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  456.804699][T11926] R13: 0000000000000000 R14: 00007fc845ba5fa0 R15: 00007ffeb1a8ee98
[  456.804732][T11926]  </TASK>
[  456.804741][T11926] ERROR: Out of memory at tomoyo_realpath_from_path.
[  457.087643][T11934] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1471'.
[  458.543874][T11967] net_ratelimit: 12 callbacks suppressed
[  458.543893][T11967] netlink: zone id is out of range
[  458.588539][T11967] netlink: zone id is out of range
[  458.601440][T11967] netlink: zone id is out of range
[  458.621040][T11967] netlink: zone id is out of range
[  458.659380][T11967] netlink: zone id is out of range
[  458.683247][T11967] netlink: zone id is out of range
[  458.820109][T11973] netlink: 'syz.0.1481': attribute type 10 has an invalid length.
[  458.828574][T11973] netlink: 230 bytes leftover after parsing attributes in process `syz.0.1481'.
[  458.929426][T11983] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1482'.
[  459.002817][T11984] netlink: 544 bytes leftover after parsing attributes in process `syz.2.1483'.
[  459.078206][T11984] netlink: 544 bytes leftover after parsing attributes in process `syz.2.1483'.
[  459.101843][T11984] netlink: 544 bytes leftover after parsing attributes in process `syz.2.1483'.
[  459.145589][T11984] netlink: 544 bytes leftover after parsing attributes in process `syz.2.1483'.
[  459.175972][T11984] netlink: 544 bytes leftover after parsing attributes in process `syz.2.1483'.
[  459.204781][T11984] netlink: 544 bytes leftover after parsing attributes in process `syz.2.1483'.
[  459.222750][T11984] netlink: 544 bytes leftover after parsing attributes in process `syz.2.1483'.
[  459.242804][T11984] netlink: 544 bytes leftover after parsing attributes in process `syz.2.1483'.
[  460.354456][T12011] netlink: zone id is out of range
[  460.382470][T12011] netlink: zone id is out of range
[  460.437519][T12011] netlink: zone id is out of range
[  460.444098][T12011] netlink: zone id is out of range
[  463.501769][T12079] FAULT_INJECTION: forcing a failure.
[  463.501769][T12079] name failslab, interval 1, probability 0, space 0, times 0
[  463.536303][T12079] CPU: 1 UID: 0 PID: 12079 Comm: syz.1.1507 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  463.536337][T12079] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  463.536350][T12079] Call Trace:
[  463.536358][T12079]  <TASK>
[  463.536367][T12079]  dump_stack_lvl+0x16c/0x1f0
[  463.536403][T12079]  should_fail_ex+0x512/0x640
[  463.536429][T12079]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  463.536466][T12079]  should_failslab+0xc2/0x120
[  463.536489][T12079]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  463.536523][T12079]  ? __pmd_alloc+0xc3/0x870
[  463.536554][T12079]  __pmd_alloc+0xc3/0x870
[  463.536578][T12079]  ? find_held_lock+0x2b/0x80
[  463.536609][T12079]  __handle_mm_fault+0x948/0x2a40
[  463.536650][T12079]  ? __pfx___handle_mm_fault+0x10/0x10
[  463.536701][T12079]  ? find_vma+0xbf/0x140
[  463.536725][T12079]  ? __pfx_find_vma+0x10/0x10
[  463.536753][T12079]  handle_mm_fault+0x3fe/0xad0
[  463.536790][T12079]  do_user_addr_fault+0x7a6/0x1370
[  463.536821][T12079]  ? rcu_is_watching+0x12/0xc0
[  463.536853][T12079]  exc_page_fault+0x5c/0xc0
[  463.536883][T12079]  asm_exc_page_fault+0x26/0x30
[  463.536905][T12079] RIP: 0010:rep_movs_alternative+0x30/0x90
[  463.536931][T12079] Code: 83 f9 08 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08
[  463.536953][T12079] RSP: 0018:ffffc90005d77a58 EFLAGS: 00050206
[  463.536972][T12079] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000038
[  463.536986][T12079] RDX: fffff52000baef5c RSI: 0000000000000000 RDI: ffffc90005d77aa8
[  463.537001][T12079] RBP: 0000000000000038 R08: 0000000000000001 R09: fffff52000baef5b
[  463.537016][T12079] R10: ffffc90005d77adf R11: 0000000000000000 R12: 0000000000000000
[  463.537036][T12079] R13: ffffc90005d77aa8 R14: ffffc90005d77b90 R15: ffffc90005d77aa8
[  463.537071][T12079]  _copy_from_user+0x98/0xd0
[  463.537101][T12079]  copy_msghdr_from_user+0x98/0x160
[  463.537132][T12079]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  463.537171][T12079]  ? __lock_acquire+0x5ca/0x1ba0
[  463.537200][T12079]  ___sys_recvmsg+0xdb/0x1a0
[  463.537230][T12079]  ? __pfx____sys_recvmsg+0x10/0x10
[  463.537262][T12079]  ? find_held_lock+0x2b/0x80
[  463.537313][T12079]  do_recvmmsg+0x2fe/0x740
[  463.537347][T12079]  ? __pfx_do_recvmmsg+0x10/0x10
[  463.537384][T12079]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  463.537427][T12079]  ? __fget_files+0x20e/0x3c0
[  463.537467][T12079]  __x64_sys_recvmmsg+0x22a/0x280
[  463.537499][T12079]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  463.537527][T12079]  ? rcu_is_watching+0x12/0xc0
[  463.537572][T12079]  do_syscall_64+0xcd/0x260
[  463.537606][T12079]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  463.537628][T12079] RIP: 0033:0x7fad2018d169
[  463.537647][T12079] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  463.537668][T12079] RSP: 002b:00007fad20f21038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  463.537689][T12079] RAX: ffffffffffffffda RBX: 00007fad203a6080 RCX: 00007fad2018d169
[  463.537705][T12079] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000003
[  463.537719][T12079] RBP: 00007fad20f21090 R08: 0000000000000000 R09: 0000000000000000
[  463.537733][T12079] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  463.537747][T12079] R13: 0000000000000000 R14: 00007fad203a6080 R15: 00007ffec545af08
[  463.537779][T12079]  </TASK>
[  463.990961][T12084] __nla_validate_parse: 26 callbacks suppressed
[  463.990989][T12084] netlink: 338 bytes leftover after parsing attributes in process `syz.2.1510'.
[  465.807825][T12118] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1516'.
[  465.853880][T12118] netlink: 13700 bytes leftover after parsing attributes in process `syz.3.1516'.
[  466.460917][T12131] netlink: 338 bytes leftover after parsing attributes in process `syz.2.1521'.
[  467.071720][T12143] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1526'.
[  467.101519][T12143] netlink: 13700 bytes leftover after parsing attributes in process `syz.1.1526'.
[  467.832029][T12162] netlink: 'syz.0.1531': attribute type 10 has an invalid length.
[  467.935109][T12162] netlink: 230 bytes leftover after parsing attributes in process `syz.0.1531'.
[  468.336825][T12173] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1532'.
[  468.591307][T12157] bond0: option all_slaves_active: invalid value (8)
[  469.667339][T12201] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1538'.
[  469.676485][T12201] netlink: 13700 bytes leftover after parsing attributes in process `syz.1.1538'.
[  470.304360][   T30] audit: type=1800 audit(6039048034.358:5): pid=12217 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1544" name=05 dev="tmpfs" ino=1909 res=0 errno=0
[  472.042209][T12256] bridge0: port 5(team0) entered blocking state
[  472.091281][T12256] bridge0: port 5(team0) entered disabled state
[  472.138231][T12256] team0: entered allmulticast mode
[  472.171535][T12256] team_slave_0: entered allmulticast mode
[  472.233759][T12256] team_slave_1: entered allmulticast mode
[  472.486854][T12256] team0: entered promiscuous mode
[  472.491968][T12256] team_slave_0: entered promiscuous mode
[  472.574503][T12256] team_slave_1: entered promiscuous mode
[  473.142385][T12281] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1550'.
[  473.198287][T12281] netlink: 13700 bytes leftover after parsing attributes in process `syz.3.1550'.
[  474.054019][T12319] FAULT_INJECTION: forcing a failure.
[  474.054019][T12319] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  474.155737][T12319] CPU: 1 UID: 0 PID: 12319 Comm: syz.3.1556 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  474.155770][T12319] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  474.155783][T12319] Call Trace:
[  474.155790][T12319]  <TASK>
[  474.155799][T12319]  dump_stack_lvl+0x16c/0x1f0
[  474.155832][T12319]  should_fail_ex+0x512/0x640
[  474.155862][T12319]  _copy_to_user+0x32/0xd0
[  474.155892][T12319]  simple_read_from_buffer+0xcb/0x170
[  474.155923][T12319]  proc_fail_nth_read+0x197/0x270
[  474.155962][T12319]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  474.155993][T12319]  ? rw_verify_area+0xcf/0x680
[  474.156019][T12319]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  474.156051][T12319]  vfs_read+0x1de/0xc70
[  474.156085][T12319]  ? __pfx___mutex_lock+0x10/0x10
[  474.156117][T12319]  ? __pfx_vfs_read+0x10/0x10
[  474.156156][T12319]  ? __fget_files+0x20e/0x3c0
[  474.156196][T12319]  ksys_read+0x12a/0x240
[  474.156224][T12319]  ? __pfx_ksys_read+0x10/0x10
[  474.156264][T12319]  do_syscall_64+0xcd/0x260
[  474.156298][T12319]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  474.156321][T12319] RIP: 0033:0x7f3616f8bb7c
[  474.156340][T12319] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  474.156361][T12319] RSP: 002b:00007f3617e2b030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  474.156384][T12319] RAX: ffffffffffffffda RBX: 00007f36171a5fa0 RCX: 00007f3616f8bb7c
[  474.156399][T12319] RDX: 000000000000000f RSI: 00007f3617e2b0a0 RDI: 0000000000000004
[  474.156413][T12319] RBP: 00007f3617e2b090 R08: 0000000000000000 R09: 0000000000000000
[  474.156427][T12319] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  474.156441][T12319] R13: 0000000000000000 R14: 00007f36171a5fa0 R15: 00007ffc4d9705c8
[  474.156473][T12319]  </TASK>
[  475.211297][T12333] kmem.tcp.limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[  475.666055][T12346] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1563'.
[  475.675617][T12346] netlink: 13700 bytes leftover after parsing attributes in process `syz.1.1563'.
[  478.325615][T12396] bridge0: port 4(team0) entered blocking state
[  478.354501][T12396] bridge0: port 4(team0) entered disabled state
[  478.380913][T12396] team0: entered allmulticast mode
[  478.405588][T12396] team_slave_1: entered allmulticast mode
[  478.456200][T12396] team0: entered promiscuous mode
[  478.476004][T12399] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1573'.
[  478.485533][T12396] team_slave_1: entered promiscuous mode
[  478.523857][T12399] netlink: 13700 bytes leftover after parsing attributes in process `syz.1.1573'.
[  479.328967][T12412] netlink: 'syz.2.1576': attribute type 10 has an invalid length.
[  479.340003][T12412] netlink: 230 bytes leftover after parsing attributes in process `syz.2.1576'.
[  479.824942][T12418] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1578'.
[  479.833958][T12418] netlink: 13700 bytes leftover after parsing attributes in process `syz.2.1578'.
[  480.473549][T12434] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1581'.
[  482.134087][T12463] FAULT_INJECTION: forcing a failure.
[  482.134087][T12463] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  482.147431][T12463] CPU: 1 UID: 0 PID: 12463 Comm: syz.0.1590 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  482.147460][T12463] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  482.147472][T12463] Call Trace:
[  482.147480][T12463]  <TASK>
[  482.147488][T12463]  dump_stack_lvl+0x16c/0x1f0
[  482.147522][T12463]  should_fail_ex+0x512/0x640
[  482.147550][T12463]  _copy_from_user+0x2e/0xd0
[  482.147578][T12463]  memdup_user+0x6b/0xe0
[  482.147600][T12463]  nvram_misc_write+0x92/0xf0
[  482.147626][T12463]  vfs_write+0x25c/0x1180
[  482.147653][T12463]  ? __pfx_nvram_misc_write+0x10/0x10
[  482.147681][T12463]  ? __pfx_vfs_write+0x10/0x10
[  482.147707][T12463]  ? find_held_lock+0x2b/0x80
[  482.147734][T12463]  ? __fget_files+0x204/0x3c0
[  482.147768][T12463]  ? __fget_files+0x20e/0x3c0
[  482.147807][T12463]  ksys_write+0x12a/0x240
[  482.147836][T12463]  ? __pfx_ksys_write+0x10/0x10
[  482.147864][T12463]  ? rcu_is_watching+0x12/0xc0
[  482.147920][T12463]  do_syscall_64+0xcd/0x260
[  482.147951][T12463]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  482.147974][T12463] RIP: 0033:0x7fc84598d169
[  482.147992][T12463] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  482.148014][T12463] RSP: 002b:00007fc8468ac038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  482.148037][T12463] RAX: ffffffffffffffda RBX: 00007fc845ba5fa0 RCX: 00007fc84598d169
[  482.148053][T12463] RDX: 000000000000045c RSI: 0000000000000000 RDI: 0000000000000003
[  482.148068][T12463] RBP: 00007fc8468ac090 R08: 0000000000000000 R09: 0000000000000000
[  482.148082][T12463] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  482.148096][T12463] R13: 0000000000000000 R14: 00007fc845ba5fa0 R15: 00007ffeb1a8ee98
[  482.148133][T12463]  </TASK>
[  483.116400][T12486] netlink: 338 bytes leftover after parsing attributes in process `syz.2.1596'.
[  485.600616][T12496] bond0: option all_slaves_active: invalid value (8)
[  485.771038][T12516] kexec: Could not allocate control_code_buffer
[  486.270334][T12545] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1609'.
[  486.279423][T12545] netlink: 13700 bytes leftover after parsing attributes in process `syz.0.1609'.
[  486.479330][T12558] netlink: 338 bytes leftover after parsing attributes in process `syz.2.1611'.
[  486.878083][T12565] FAULT_INJECTION: forcing a failure.
[  486.878083][T12565] name failslab, interval 1, probability 0, space 0, times 0
[  486.906865][T12565] CPU: 0 UID: 0 PID: 12565 Comm: syz.1.1613 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  486.906898][T12565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  486.906907][T12565] Call Trace:
[  486.906912][T12565]  <TASK>
[  486.906918][T12565]  dump_stack_lvl+0x16c/0x1f0
[  486.906941][T12565]  should_fail_ex+0x512/0x640
[  486.906956][T12565]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  486.906979][T12565]  should_failslab+0xc2/0x120
[  486.906992][T12565]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  486.907009][T12565]  ? __asan_memcpy+0x3c/0x60
[  486.907024][T12565]  ? __kernfs_new_node+0xd2/0x8a0
[  486.907046][T12565]  __kernfs_new_node+0xd2/0x8a0
[  486.907067][T12565]  ? __pfx___kernfs_new_node+0x10/0x10
[  486.907090][T12565]  ? find_held_lock+0x2b/0x80
[  486.907107][T12565]  ? kernfs_root+0xee/0x2a0
[  486.907129][T12565]  kernfs_new_node+0x13c/0x1e0
[  486.907145][T12565]  __kernfs_create_file+0x53/0x350
[  486.907163][T12565]  cgroup_addrm_files+0x546/0xc20
[  486.907183][T12565]  ? __lock_acquire+0x5ca/0x1ba0
[  486.907194][T12565]  ? __pfx_cgroup_addrm_files+0x10/0x10
[  486.907213][T12565]  ? css_next_child+0xcf/0x2d0
[  486.907233][T12565]  ? css_next_descendant_pre+0x58/0x1a0
[  486.907255][T12565]  css_populate_dir+0x386/0x530
[  486.907278][T12565]  cgroup_mkdir+0x37e/0x1160
[  486.907304][T12565]  ? __pfx_cgroup_mkdir+0x10/0x10
[  486.907330][T12565]  kernfs_iop_mkdir+0x108/0x190
[  486.907352][T12565]  ? bpf_lsm_inode_mkdir+0x9/0x10
[  486.907368][T12565]  vfs_mkdir+0x590/0x8c0
[  486.907401][T12565]  do_mkdirat+0x304/0x3e0
[  486.907421][T12565]  ? __pfx_do_mkdirat+0x10/0x10
[  486.907446][T12565]  __x64_sys_mkdir+0xef/0x140
[  486.907468][T12565]  do_syscall_64+0xcd/0x260
[  486.907488][T12565]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  486.907501][T12565] RIP: 0033:0x7fad2018d169
[  486.907513][T12565] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  486.907536][T12565] RSP: 002b:00007fad20f21038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[  486.907558][T12565] RAX: ffffffffffffffda RBX: 00007fad203a6080 RCX: 00007fad2018d169
[  486.907573][T12565] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00002000000002c0
[  486.907587][T12565] RBP: 00007fad2020e2a0 R08: 0000000000000000 R09: 0000000000000000
[  486.907601][T12565] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  486.907609][T12565] R13: 0000000000000000 R14: 00007fad203a6080 R15: 00007ffec545af08
[  486.907627][T12565]  </TASK>
[  486.907690][T12565] cgroup: cgroup_addrm_files: failed to add cgroup.type, err=-12
[  488.643907][T12600] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1623'.
[  488.671342][T12602] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1624'.
[  488.712086][T12600] netlink: 13700 bytes leftover after parsing attributes in process `syz.2.1623'.
[  489.269717][T12614] netlink: 'syz.1.1628': attribute type 1 has an invalid length.
[  489.526967][T12623] net_ratelimit: 2 callbacks suppressed
[  489.526985][T12623] netlink: zone id is out of range
[  489.543759][T12623] netlink: zone id is out of range
[  489.548901][T12623] netlink: zone id is out of range
[  489.573562][T12623] netlink: set zone limit has 8 unknown bytes
[  489.728727][T12629] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1635'.
[  489.745028][T12629] netlink: 13700 bytes leftover after parsing attributes in process `syz.0.1635'.
[  490.748876][T12641] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input12
[  491.493143][T12662] 
[  491.495516][T12662] ======================================================
[  491.502538][T12662] WARNING: possible circular locking dependency detected
[  491.509566][T12662] 6.15.0-rc1-syzkaller #0 Not tainted
[  491.515128][T12662] ------------------------------------------------------
[  491.522151][T12662] syz.0.1641/12662 is trying to acquire lock:
[  491.528222][T12662] ffffffff9012d9a8 (rtnl_mutex){+.+.}-{4:4}, at: do_ipv6_setsockopt+0x2042/0x4420
[  491.537481][T12662] 
[  491.537481][T12662] but task is already holding lock:
[  491.544845][T12662] ffff888033ee2ea0 (&smc->clcsock_release_lock){+.+.}-{4:4}, at: smc_setsockopt+0x100/0xa00
[  491.554958][T12662] 
[  491.554958][T12662] which lock already depends on the new lock.
[  491.554958][T12662] 
[  491.565348][T12662] 
[  491.565348][T12662] the existing dependency chain (in reverse order) is:
[  491.574353][T12662] 
[  491.574353][T12662] -> #2 (&smc->clcsock_release_lock){+.+.}-{4:4}:
[  491.582964][T12662]        __mutex_lock+0x199/0xb90
[  491.587990][T12662]        smc_switch_to_fallback+0x2d/0x9f0
[  491.593794][T12662]        smc_sendmsg+0x13d/0x520
[  491.598725][T12662]        ____sys_sendmsg+0xa95/0xc70
[  491.604015][T12662]        ___sys_sendmsg+0x134/0x1d0
[  491.609223][T12662]        __sys_sendmsg+0x16d/0x220
[  491.614342][T12662]        do_syscall_64+0xcd/0x260
[  491.619363][T12662]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  491.625767][T12662] 
[  491.625767][T12662] -> #1 (sk_lock-AF_INET){+.+.}-{0:0}:
[  491.633406][T12662]        lock_sock_nested+0x41/0xf0
[  491.638614][T12662]        sockopt_lock_sock+0x54/0x70
[  491.643900][T12662]        do_ip_getsockopt+0x13e4/0x2220
[  491.649437][T12662]        ip_getsockopt+0x9b/0x1e0
[  491.654451][T12662]        raw_getsockopt+0x4d/0x1f0
[  491.659557][T12662]        do_sock_getsockopt+0x3fc/0x800
[  491.665105][T12662]        __sys_getsockopt+0x12f/0x260
[  491.670473][T12662]        __x64_sys_getsockopt+0xbd/0x160
[  491.676099][T12662]        do_syscall_64+0xcd/0x260
[  491.681122][T12662]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  491.687532][T12662] 
[  491.687532][T12662] -> #0 (rtnl_mutex){+.+.}-{4:4}:
[  491.694738][T12662]        __lock_acquire+0x1173/0x1ba0
[  491.700098][T12662]        lock_acquire+0x179/0x350
[  491.705111][T12662]        __mutex_lock+0x199/0xb90
[  491.710132][T12662]        do_ipv6_setsockopt+0x2042/0x4420
[  491.715851][T12662]        ipv6_setsockopt+0xcb/0x170
[  491.721044][T12662]        tcp_setsockopt+0xa4/0x100
[  491.726146][T12662]        smc_setsockopt+0x1b3/0xa00
[  491.731339][T12662]        do_sock_setsockopt+0x221/0x470
[  491.736881][T12662]        __sys_setsockopt+0x1a0/0x230
[  491.742244][T12662]        __x64_sys_setsockopt+0xbd/0x160
[  491.747868][T12662]        do_syscall_64+0xcd/0x260
[  491.752889][T12662]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  491.759305][T12662] 
[  491.759305][T12662] other info that might help us debug this:
[  491.759305][T12662] 
[  491.769521][T12662] Chain exists of:
[  491.769521][T12662]   rtnl_mutex --> sk_lock-AF_INET --> &smc->clcsock_release_lock
[  491.769521][T12662] 
[  491.783076][T12662]  Possible unsafe locking scenario:
[  491.783076][T12662] 
[  491.790513][T12662]        CPU0                    CPU1
[  491.795866][T12662]        ----                    ----
[  491.801217][T12662]   lock(&smc->clcsock_release_lock);
[  491.806579][T12662]                                lock(sk_lock-AF_INET);
[  491.813506][T12662]                                lock(&smc->clcsock_release_lock);
[  491.821389][T12662]   lock(rtnl_mutex);
[  491.825362][T12662] 
[  491.825362][T12662]  *** DEADLOCK ***
[  491.825362][T12662] 
[  491.833489][T12662] 1 lock held by syz.0.1641/12662:
[  491.838583][T12662]  #0: ffff888033ee2ea0 (&smc->clcsock_release_lock){+.+.}-{4:4}, at: smc_setsockopt+0x100/0xa00
[  491.849113][T12662] 
[  491.849113][T12662] stack backtrace:
[  491.854989][T12662] CPU: 0 UID: 0 PID: 12662 Comm: syz.0.1641 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  491.855013][T12662] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  491.855024][T12662] Call Trace:
[  491.855030][T12662]  <TASK>
[  491.855037][T12662]  dump_stack_lvl+0x116/0x1f0
[  491.855063][T12662]  print_circular_bug+0x275/0x350
[  491.855090][T12662]  check_noncircular+0x14c/0x170
[  491.855118][T12662]  __lock_acquire+0x1173/0x1ba0
[  491.855139][T12662]  lock_acquire+0x179/0x350
[  491.855158][T12662]  ? do_ipv6_setsockopt+0x2042/0x4420
[  491.855183][T12662]  ? __pfx___might_resched+0x10/0x10
[  491.855209][T12662]  __mutex_lock+0x199/0xb90
[  491.855233][T12662]  ? do_ipv6_setsockopt+0x2042/0x4420
[  491.855256][T12662]  ? trace_mm_page_alloc+0x11f/0x1a0
[  491.855276][T12662]  ? do_ipv6_setsockopt+0x2042/0x4420
[  491.855300][T12662]  ? __pfx___mutex_lock+0x10/0x10
[  491.855329][T12662]  ? do_ipv6_setsockopt+0x2042/0x4420
[  491.855351][T12662]  ? rtnl_lock+0x9/0x20
[  491.855367][T12662]  do_ipv6_setsockopt+0x2042/0x4420
[  491.855392][T12662]  ? __lock_acquire+0x511/0x1ba0
[  491.855407][T12662]  ? __pfx_do_ipv6_setsockopt+0x10/0x10
[  491.855431][T12662]  ? __lock_acquire+0xaa4/0x1ba0
[  491.855449][T12662]  ? lock_acquire+0x179/0x350
[  491.855465][T12662]  ? __mutex_trylock_common+0xe9/0x250
[  491.855482][T12662]  ? __pfx___mutex_trylock_common+0x10/0x10
[  491.855500][T12662]  ? __pfx___might_resched+0x10/0x10
[  491.855523][T12662]  ? rcu_is_watching+0x12/0xc0
[  491.855544][T12662]  ? trace_contention_end+0xdd/0x130
[  491.855561][T12662]  ? __mutex_lock+0x1ca/0xb90
[  491.855584][T12662]  ? find_held_lock+0x2b/0x80
[  491.855604][T12662]  ? smc_setsockopt+0x100/0xa00
[  491.855622][T12662]  ? __pfx___mutex_lock+0x10/0x10
[  491.855647][T12662]  ? ipv6_setsockopt+0xcb/0x170
[  491.855669][T12662]  ipv6_setsockopt+0xcb/0x170
[  491.855692][T12662]  tcp_setsockopt+0xa4/0x100
[  491.855714][T12662]  smc_setsockopt+0x1b3/0xa00
[  491.855730][T12662]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  491.855757][T12662]  ? __pfx_smc_setsockopt+0x10/0x10
[  491.855775][T12662]  ? lock_vma_under_rcu+0x47d/0x970
[  491.855797][T12662]  ? __pfx_smc_setsockopt+0x10/0x10
[  491.855815][T12662]  do_sock_setsockopt+0x221/0x470
[  491.855840][T12662]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  491.855872][T12662]  __sys_setsockopt+0x1a0/0x230
[  491.855894][T12662]  __x64_sys_setsockopt+0xbd/0x160
[  491.855915][T12662]  ? do_syscall_64+0x91/0x260
[  491.855938][T12662]  ? lockdep_hardirqs_on+0x7c/0x110
[  491.855960][T12662]  do_syscall_64+0xcd/0x260
[  491.855984][T12662]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  491.856002][T12662] RIP: 0033:0x7fc84598d169
[  491.856017][T12662] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  491.856034][T12662] RSP: 002b:00007fc84686a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  491.856051][T12662] RAX: ffffffffffffffda RBX: 00007fc845ba6160 RCX: 00007fc84598d169
[  491.856063][T12662] RDX: 000000000000001b RSI: 0000000000000029 RDI: 0400000000000003
[  491.856075][T12662] RBP: 00007fc845a0e2a0 R08: 000000000000056b R09: 0000000000000000
[  491.856086][T12662] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  491.856097][T12662] R13: 0000000000000001 R14: 00007fc845ba6160 R15: 00007ffeb1a8ee98
[  491.856114][T12662]  </TASK>