last executing test programs:

6m22.537697645s ago: executing program 3 (id=1564):
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x3, 0x1ff, 0x1001, 0x5, 0x717e, 0x1ffde, 0x7, 0x3, 0xd, 0x2, 0x80003, 0x4, 0x1ffffffffffd, 0xb4, 0xfffffffffffffffe, 0x7, 0x10002, 0x7f, 0x2a2, 0x2, 0xa, 0x22000, 0x200, 0x4, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000000000]}, 0x1fe, 0xd)
r0 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r0, 0xfffffffffffffd03, &(0x7f00000001c0))
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = gettid()
prctl$auto(0xfffffffb, 0x5, r1, 0x5, 0x2000001)
openat$auto_proc_gid_map_operations_base(0xffffffffffffff9c, 0x0, 0x0, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
setpriority$auto(0x4000000001, 0x100000001, 0x6)
mmap$auto(0x2000000, 0x400008, 0xdf, 0x9b72, 0x100000000002, 0x8000)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x1, 0x0)
rseq$auto(0x0, 0x47fffd, 0x0, 0x6)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
setgroups$auto(0xe32, 0x0)

6m20.81716939s ago: executing program 3 (id=1569):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NFC_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="000826bd7000fddbdf250100000005020a0005"], 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x10004081)
r1 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000140), 0x80, 0x0)
ioctl$auto_SIOCSIFHWADDR(r1, 0x8924, &(0x7f0000000180))
close_range$auto(0x2, 0x8, 0x0)
close_range$auto(0xffffffffffffffff, 0xfffffffffffff000, 0x2)
mmap$auto(0x0, 0x16da, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
setfsgid$auto(0x9)
mknod$auto(&(0x7f0000000040)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00'/263, 0x1, 0x4)
lstat$auto(&(0x7f0000000500)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00', 0x0)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
r2 = socket(0x11, 0x3, 0x2)
ioctl$sock_SIOCGIFINDEX(r2, 0x8955, 0x0)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000340)={0x18, 0x0, 0x1, 0x70bd2b, 0x25dfdbfc, {}, [@HWSIM_ATTR_CIPHER_SUPPORT={0x4}]}, 0x18}}, 0x4044820)

6m20.489840486s ago: executing program 3 (id=1571):
mmap$auto(0x0, 0x400008, 0x200, 0x9b72, 0x2, 0x8000)
mmap$auto(0xffffffffffffffff, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
write$auto(0x3, 0x0, 0x7fffffff)
write$auto(0x1, 0x0, 0x80000000)
bpf$auto(0x0, 0x0, 0x6f4)
poll$auto(&(0x7f0000000000)={<r1=>r0, 0x4f07, 0x5}, 0x1320, 0x1)
recvmmsg$auto(r1, &(0x7f0000000300)={{&(0x7f0000000040)="1260a49af7c4751d114b5fbb2f5a117153dd3bf3c0935bfbb363aa1979322be2fa41483b0e612b34fe825e36c0aa069828b8704d3cecf6ea1318cab057b27acc4db76fc9c1a350ad0f6195531bcb6730f4869472f92dbd01c05f52d242fb973664d0b08fb3f22a547e3352bd44823b922a3399d8e1c272bea681a83eb9c919ac6f2c072cb5b09c181964433659141ee0bb4e7ff73c8a53e7dc7f1b3661861f5be0fb9d9bb2ea1246ca6169fb0d85eb1bf1cc6826aef549581d9db43acf", 0x5, &(0x7f0000000100)={&(0x7f0000000180)="b8816a33bdff12bbbd50a21e58e3b108bd78d598fddc2699110125fcf8314a659f1d8f116bb02a427a5edbf954ce43129338e670b8f59a4460986280df16e9aa95d32678ffc07ba017cbbbc619798eab820d6916cdd545e54dac16b53fa940ea896ca81da51f4e83e0e2e781798d20c7410a837a43d86e153c90603d22ba414963d0c035eb"}, 0x6, &(0x7f0000000240)="afe83f275cd28001ba75e86e4ea19f8316d0b33a399689f9f3c875842d98fcf94e0625a94d6f06c734c99f799c6ad475c5128528bcb49413749e41eac3087e166abc7268d6795e3444121bb46aaeca122edcfdc71ec28a6e44aac8b2e7181381c07c973d3d7f1d8cc6c12105ff6c1b6886e4b1732db4af0f2458500ac27ebb2d92e4de48686e351255e641be32a989db42d1304a6a14a48f28430544501a31600916af2993", 0xd1cb, 0x4}, 0x77}, 0x0, 0x4, &(0x7f0000000340)={0x1, 0x4})
read$auto(0x3, 0x0, 0x80)
getdents$auto(r0, &(0x7f0000000380)={0x2, 0xffff, 0x6, "c5a9426132df128416e4530fbb24d5c3b6cd69a65e258204a7088330b1cdccf157e9e9a6c16baf259ef26c0b468d41ecf85a8dca226717ccd4fe2a942a9b7406a149dca7f8cf309c5c1af10585067a0f986277cc06ab15facb90fac49fc859ec559fd74ededb448a331c6c6d7928d1c87d12ef336ccaaafd428b9ec74a3136a18f3e29e5132e2aaeb066a0762bae832300e1ebcc1b7250e010928e53e096a40a395a9700e4235d61f15aacd9f5b95cdc3c35f9c1e0432c479705eeb1349c845f994dca069c357848"}, 0x783b)
mmap$auto(0x0, 0x5, 0xdf, 0x9b72, 0x2, 0x8000)
write$auto(0x3, 0x0, 0xfffffdef)
preadv2$auto(r1, &(0x7f0000001000)={0x0, 0x9}, 0x6, 0xffffffffffffffff, 0x3d, 0xb4)

6m20.294240915s ago: executing program 3 (id=1572):
memfd_secret$auto(0x0)
mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0)
ftruncate$auto(0x3, 0x700)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
socket(0x11, 0x5, 0xfffffffd)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0)
ioctl$auto_PAGEMAP_SCAN(r1, 0xc0606610, &(0x7f000000c380)={0x60, 0x8, 0x100000, 0x7fffffffefff, 0xfffffffffffffffe, 0x1, 0x4, 0xc00, 0x2c, 0x30, 0x200000000000006, 0x2})
ppoll$auto(&(0x7f0000000000)={r1, 0x79f5, 0x6}, 0x8, &(0x7f00000000c0)={0xddb7, 0x7}, &(0x7f0000000140)={0xf}, 0x8)
r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_PRIVFLAGS_GET(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)={0x14, r2, 0x301, 0x70bd2a, 0x25dfdbfd}, 0x14}, 0x1, 0xffffffa6, 0x0, 0x4000}, 0x8000)
close_range$auto(0x2, 0x8, 0x0)

6m19.866455434s ago: executing program 3 (id=1575):
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000326bd7000fedbdf250200000800130001"], 0x24}, 0x1, 0x0, 0x0, 0x4c894}, 0x4)
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket(0x22, 0x2, 0x2)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
socket(0xa, 0x801, 0x84)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
setsockopt$auto(0x3, 0x0, 0x33, 0x0, 0x4)
listen$auto(0x3, 0x9)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004c18}, 0x810)
sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000100)=ANY=[@ANYBLOB="9025230e14f09d46582ce5f2bf7b6b29b920e5eb76da09b48f83e365605fb6bcf04e32b61b6211b117382fc69d7c9a449001e8185da1266b7fefdda39baa8855e3590b48a00805e3298b40742709c6fb7b00ca94", @ANYRES16=0x0, @ANYBLOB="01002cbd7000fbdbdf250a000000"], 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x20008810)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' '], 0x1ac}}, 0x40000)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
futex$auto(0x0, 0x8, 0x8243, 0x0, 0x0, 0x4)
getsockopt$auto(0x3, 0x200000000001, 0x3b, 0x0, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

6m19.276818243s ago: executing program 3 (id=1577):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x4000008000)
r0 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
epoll_create$auto(0x7)
socketpair$auto(0x2001e, 0x4, 0x8000000000000000, 0x0)
ioctl$auto_UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000200)={{0x9, 0x7fff, 0x8, 0x7d}, "6a034a07c7b82d90b69a39e325010000000100000051a0094a3836d61c9100fefbbabea6ef9368c7996e841f3f1561d4992f726b0a6c36b0b2fd1678e816201cf562367fe6596824588a2e3d84ba165f", 0xa})
ioctl$auto_UI_DEV_CREATE(r0, 0x5501, 0x0)
r1 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000040), 0x40a40, 0x0)
write$auto(0x3, 0x0, 0x7fffffff)
ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
r2 = socket(0x2, 0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)
memfd_create$auto(0x0, 0xe)
r3 = socket(0x2, 0x1, 0x106)
connect$auto(0x3, &(0x7f00000000c0), 0x55)
setsockopt$auto(r3, 0x1, 0x21, 0x0, 0x9)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @loopback}, 0x6a)
sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
write$auto(0x3, 0x0, 0xfdf3)
ioctl$auto(r1, 0xffffff81, r2)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)

6m4.190264015s ago: executing program 32 (id=1577):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x4000008000)
r0 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
epoll_create$auto(0x7)
socketpair$auto(0x2001e, 0x4, 0x8000000000000000, 0x0)
ioctl$auto_UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000200)={{0x9, 0x7fff, 0x8, 0x7d}, "6a034a07c7b82d90b69a39e325010000000100000051a0094a3836d61c9100fefbbabea6ef9368c7996e841f3f1561d4992f726b0a6c36b0b2fd1678e816201cf562367fe6596824588a2e3d84ba165f", 0xa})
ioctl$auto_UI_DEV_CREATE(r0, 0x5501, 0x0)
r1 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000040), 0x40a40, 0x0)
write$auto(0x3, 0x0, 0x7fffffff)
ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
r2 = socket(0x2, 0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)
memfd_create$auto(0x0, 0xe)
r3 = socket(0x2, 0x1, 0x106)
connect$auto(0x3, &(0x7f00000000c0), 0x55)
setsockopt$auto(r3, 0x1, 0x21, 0x0, 0x9)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @loopback}, 0x6a)
sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
write$auto(0x3, 0x0, 0xfdf3)
ioctl$auto(r1, 0xffffff81, r2)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)

5.713556088s ago: executing program 2 (id=2901):
mmap$auto(0x0, 0x1, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x20009, 0x40004000000000df, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x2}, 0x4000)
socket(0xa, 0x801, 0x84)
io_uring_setup$auto(0xe, 0x0)
mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
io_uring_enter$auto(0x3, 0x1, 0x82400001, 0xb, 0x0, 0xd)
openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x109482, 0x0)
adjtimex$auto(&(0x7f00000004c0)={0x3fd, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x1, 0x6, 0x0, 0x1, 0xe7, 0x2, {0xfffffffe, 0x10003}, 0x5, 0x6, 0xffffff7ffffffffd, 0x1008000, 0x0, 0x80000004, 0x81, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x804})
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x208d01, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffff7, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x800006a1, 0x2000000000002)
socket(0x26, 0x80805, 0x0)
socket(0x28, 0x1, 0x0)
socket(0x1, 0x1, 0x1)
open(&(0x7f0000000000)='./bus\x00', 0x22042, 0x45)
fanotify_mark$auto(0x0, 0x1, 0x9, 0x4, 0x0)
close_range$auto(0x2, 0x8, 0x0)
readv$auto(0x0, &(0x7f0000000080)={0x0, 0x60}, 0x3)
open(0x0, 0x12ba7e, 0x45)
close_range$auto(0x2, 0x8, 0x0)
bpf$auto(0x3, 0x0, 0x5)
r1 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000000), 0x149102, 0x0)
sendfile$auto(r1, r1, 0x0, 0x10000800000003)
socket(0x11, 0x80003, 0x300)
socket(0x11, 0x80003, 0x300)

5.383559023s ago: executing program 0 (id=2903):
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vbi15\x00', 0x802, 0x0)
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
socket(0xa, 0x1, 0x100)
openat$auto_vga_arb_device_fops_vgaarb(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
socket(0x1e, 0x1, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0xc, 0x16, 0x6]}, 0x0)

5.254660615s ago: executing program 4 (id=2904):
arch_prctl$auto(0x1021, 0x3)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x48041, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x2000, 0x0)
r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
read$auto(r0, 0x0, 0x1f40)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3)
r2 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
getsockopt$auto_SO_PASSCRED(r2, 0x5453a675, 0x10, 0x0, 0x0)
ioctl$auto_NS_GET_OWNER_UID(r2, 0xb704, 0x0)
close_range$auto(0x2, 0x8, 0xffdd)

4.756504363s ago: executing program 4 (id=2907):
statmount$auto(0x0, &(0x7f0000000380)={0x8, 0x7, 0x1ff, 0x1001, 0x5, 0x717e, 0x1ffde, 0x7, 0x3, 0xd, 0x2, 0x80003, 0x4, 0x1ffffffffffd, 0xb4, 0xfffffffffffffffe, 0x7, 0x10002, 0x7f, 0x2a2, 0x2, 0xa, 0x22000, 0x200, 0x4, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100000000000], "78da90681bf8397ef6bb00c767d3c8b15e53a4870313d5fe61d2"}, 0x1fe, 0xd)
r0 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r0, 0xfffffffffffffd03, &(0x7f00000001c0))
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = io_uring_setup$auto(0x4, 0x0)
close_range$auto(0x2, r1, 0x0)
open(0x0, 0x22240, 0x55)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$auto(0x3, 0x80286f4e, r2)
ioctl$auto(0x3, 0x400454ca, 0x38)
prctl$auto(0xfffffffb, 0x5, 0x0, 0x5, 0x2000001)
openat$auto_proc_gid_map_operations_base(0xffffffffffffff9c, 0x0, 0x0, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0x2000000, 0x400008, 0xdf, 0x9b72, 0x100000000002, 0x8000)

4.527469733s ago: executing program 2 (id=2908):
statmount$auto(0x0, &(0x7f0000000380)={0x8, 0x7, 0x1ff, 0x1001, 0x5, 0x717e, 0x1ffde, 0x7, 0x3, 0xd, 0x2, 0x80003, 0x4, 0x1ffffffffffd, 0xb4, 0xfffffffffffffffe, 0x7, 0x10002, 0x7f, 0x2a2, 0x2, 0xa, 0x22000, 0x200, 0x4, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100000000000], "78da90681bf8397ef6bb00c767d3c8b15e53a4870313d5fe61d2"}, 0x1fe, 0xd)
r0 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r0, 0xfffffffffffffd03, &(0x7f00000001c0))
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = io_uring_setup$auto(0x4, 0x0)
close_range$auto(0x2, r1, 0x0)
open(0x0, 0x22240, 0x55)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$auto(0x3, 0x80286f4e, r2)
ioctl$auto(0x3, 0x400454ca, 0x38)
prctl$auto(0xfffffffb, 0x5, 0x0, 0x5, 0x2000001)
openat$auto_proc_gid_map_operations_base(0xffffffffffffff9c, 0x0, 0x0, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0x2000000, 0x400008, 0xdf, 0x9b72, 0x100000000002, 0x8000)

4.279918919s ago: executing program 0 (id=2910):
mmap$auto(0x0, 0x2020009, 0x3, 0x2000000000eb1, 0x8, 0x8000)
select$auto(0x1, &(0x7f0000000040)={[0x10001, 0x3fc0000000, 0x4, 0x400000, 0x6, 0x60e, 0x2, 0xcdf, 0x2, 0x5500000000, 0x2, 0x0, 0x1, 0x1, 0x5, 0x9]}, &(0x7f0000000280)={[0x3, 0x6, 0x2, 0xd2, 0x7, 0xb, 0x6, 0x1, 0xe, 0x6, 0x6, 0xa, 0x7, 0x6b, 0x3, 0x4]}, &(0x7f0000000340)={[0x9, 0x10, 0xfffffffffffffffb, 0x0, 0x10000, 0x1ff, 0x0, 0x3, 0xfffffffffffeffff, 0x68, 0x130000, 0x7, 0x8, 0x8, 0x5, 0x40]}, &(0x7f0000000200)={0x10})
r0 = socket(0x3, 0xa, 0x0)
r1 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
socket(0x2, 0x3, 0x1)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x4000000000007, 0xa505}, 0x800}, 0x4, 0x4008)
r2 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000)
recvmmsg$auto(r2, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0)
r3 = socket(0x2, 0x1, 0x0)
setsockopt$auto(r3, 0x6d229c54, 0x9, 0x0, 0x7fffffff)
getsockopt$auto(r3, 0x6, 0x9, 0x0, 0x0)
ioctl$auto(0x3, 0x800005411, 0x38)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001a40), r4)
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(r4, &(0x7f0000002f40)={0x0, 0x0, &(0x7f0000002f00)={&(0x7f0000000100)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="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"], 0x2c}, 0x1, 0x0, 0x0, 0x801}, 0x0)
close_range$auto(r0, r1, 0x0)
r6 = socket(0xa, 0x1, 0x84)
getsockopt$auto(r6, 0x84, 0x0, 0x0, &(0x7f0000000000)=0x7)
open(0x0, 0x20040, 0x0)
socket(0x840000000002, 0x3, 0xff)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c"], 0x30}, 0x1, 0x0, 0x0, 0x8841}, 0x40000)

4.026415715s ago: executing program 1 (id=2911):
unshare$auto(0x40000080)
mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
socket(0xa, 0x1, 0x100)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x20000, 0x0)
sendfile$auto(r0, r0, 0x0, 0x7fff)
r1 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, 0x0, 0x8080, 0x0)
pread64$auto(r1, &(0x7f0000000340)='bond0\x00', 0x3, 0x101)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_ila(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ILA_CMD_ADD(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010028bd7000fddbdf2501"], 0x1c}}, 0x40000)
fcntl$auto_F_GETSIG(r2, 0xb, 0x1)
sendmsg$auto_ILA_CMD_FLUSH(r2, &(0x7f0000001f80)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f0000000540)={0x14, r4, 0x1, 0x2, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x4000004}, 0x40844)
unshare$auto(0xa4)
setsockopt$auto(0x400000000000003, 0x29, 0x1b, 0x0, 0x56b)
ioctl$auto_SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045002, 0x0)
unshare$auto(0x40000080)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)
pivot_root$auto(&(0x7f0000000300)='.\x00\xaf\xeb)\xae$\xfc\x00\xf8\x05AC\x9f\xbbR\xec\xc6c\x85\xc8\xa7\xe84sF\xe3U\x94\x99\x8fR\xd0\x98\f\xa5\xb1S\x7f\xc3\xa5\xc0\x97\x10qa\r\x02\xd2\xc8\xd2\x8e\xc7\x80\x11\x06#\xf5\x18|\xdc\x81Ai\xb6\x96iaR\xdbA\x04\x10\x99\xe6\xdb\xae`G\x1d9`T\xd8\xc6\xea\xf7\x96\xb5\xe9\x164e\xb1 S\x8f\x12_\x15y\x91F\xc89\xb1\xd24?\x89.,Z\xba,\"v\xde\xc4\xe0\x84\xca|\"\x96V\xd5P\xe4\xb9\xea\x88\x15\xacs\xc6\x83\xd6\x81\xd7\x11\x88\x9c\xdd\x8a\x0e\xea\x19|\x7f\xe3A8x\xce\xc1!q\xbbi\\\xd8\xa9\xe0\xed\x9e\x19\xc0IC9^\xfcJG\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000280)='.\x00')
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0xfffffffd, 0x441bf, 0x73d2, 0x3c, 0x65f, 0x1ffde, 0x1, 0x3, 0x2, 0x9, 0x3, 0x10a, 0x4, 0xb2, 0x80000000009, 0x6, 0x10003, 0xb, 0x4, 0x0, 0x7, 0x2000, 0x203, 0x0, 0x84, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, [0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff]}, 0x1fe, 0x10)
madvise$auto(0x1000000000005, 0x8, 0xfffffffd)
r5 = socket(0x9, 0xa, 0x0)
setsockopt$auto(r5, 0x8000000c, 0x84, 0x0, 0x56b)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
socket(0x15, 0x5, 0x0)
openat$auto__dev_ioctl_fops_dev_ioctl(0xffffffffffffff9c, &(0x7f0000001440), 0x101000, 0x0)
ioctl$auto__dev_ioctl_fops_dev_ioctl(0xffffffffffffffff, 0x0, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
socketpair$auto(0x1ff, 0x5, 0x8000000000000000, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/loop1/queue/max_hw_sectors_kb\x00', 0x2000, 0x0)

3.386132953s ago: executing program 0 (id=2912):
r0 = openat$auto_hwsim_fops_ps_(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/ieee80211/phy8/hwsim/ps\x00', 0x80a00, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, r0, 0x7)
io_uring_register$auto_IORING_REGISTER_SEND_MSG_RING(0xffffffffffffffff, 0x1f, &(0x7f00000030c0), 0x7)
fanotify_init$auto(0x5, 0x2000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vbi15\x00', 0x802, 0x0)
r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vbi15\x00', 0x802, 0x0)
ppoll$auto(&(0x7f0000000040)={r1, 0x5, 0xf}, 0x4, 0x0, 0x0, 0x8)
mmap$auto(0x0, 0x5, 0xdf, 0x9b72, 0x7, 0x28000)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0x1e, 0x1, 0xa)
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0xffffffffffffffff, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
r2 = openat$dir(0xffffffffffffff9c, 0x0, 0x42dc0, 0x1a0)
ftruncate$auto(r2, 0x20000000000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
socket(0x2, 0x1, 0x0)
r3 = epoll_create$auto(0x4)
openat$auto_proc_projid_map_operations_base(0xffffffffffffff9c, 0x0, 0x101002, 0x0)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x1, 0x0, 0x0, 0x20044850}, 0x40000)
sendmsg$auto_GTP_CMD_GETPDP(r3, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4044800}, 0x4)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x180b01, 0x0)
ioctl$auto(0x3, 0x40045613, 0x38)
r4 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0)
ioctl$auto_UI_DEV_SETUP(r4, 0x405c5503, &(0x7f00000000c0)={{0x9, 0x72cf, 0x5, 0x80}, "6a034a07c7b82d90b69a39e32576f893fba86c9dd051a0094a3836d61c9100fefbbabea6ef9368c7996e841f3f1561d4992f726b0a6c36b0b2fd1678e816201cf562367fe6596824588a2e3d84ba165f", 0xa})

3.318427284s ago: executing program 4 (id=2913):
r0 = openat$auto_nsim_dev_take_snapshot_fops_dev(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim7/take_snapshot\x00', 0x208100, 0x0)
write$auto_nsim_dev_take_snapshot_fops_dev(r0, &(0x7f0000000040)="fdb803f950bc1c1af610d32100800b9fcb164e05e408262baa91eb7ea6a8f54934cb7fa54f881cbe2f14efd93aaffc3254a6cb2d726bb43d6eeb6052b5e4d7a3e6dac717c5d8af9ba894afd777149e9bdd93ea4b7b", 0x55)
fsconfig$auto_SHMEM_HUGE_DENY(0xffffffffffffffff, 0x3ff, &(0x7f00000000c0)='\xa0+/(:$]{(.\x00', &(0x7f0000000100)="570ba98187c50862385a9efe64d2fea47f54be2eb8278313a4993be2e0525f272af90cc6f6679bdbf9a5d10b5fd413c51805bb2ba916a6d560661680ea16c7afd7825da3301bf49340e10b7983a4ce1a0a5308cca70ec92771d7d2eaabca9db62811ba2a3f02bb723b99e60691259a598517fa0eae128eb4a8c4f777ad4b6a4494997295b32c807ed921fd2d1e1f64912c677bad6d88796fc76c7cbdb1f5", 0xffffffffffffffff)
r1 = prctl$auto(0x3ff, 0x9, 0xffffffffffffffff, 0x0, 0xe046)
poll$auto(&(0x7f00000001c0)={<r2=>r1, 0xb, 0xfff}, 0x9, 0x60df)
r3 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000200), 0x80000, 0x0)
ioctl$auto_IOCTL_VMCI_CTX_GET_CPT_STATE(r3, 0x7b1, 0x0)
r4 = openat$auto_nsim_dev_take_snapshot_fops_dev(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/debug/netdevsim/netdevsim1/take_snapshot\x00', 0x115100, 0x0)
write$auto_nsim_dev_take_snapshot_fops_dev(r4, &(0x7f0000000280)="7481b2c5600bfc0084ffd79127bcf313c24a9d33650a391db2e4baf79b867405ba273f3a5080c80557caf5ca80ee4a49f646a83af9317eb0d4a7e752c9", 0x3d)
poll$auto(&(0x7f00000002c0)={<r5=>0xffffffffffffffff, 0x4, 0xe460}, 0x5, 0x8)
ioctl$auto_VHOST_SET_VRING_BUSYLOOP_TIMEOUT(r5, 0x4008af23, &(0x7f0000000300)={0x7, 0x7b12})
bpf$auto_BPF_MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)=@bpf_attr_4={0x0, <r6=>r2, 0x7fffffff, <r7=>r1}, 0x7)
r8 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='/sys/devices/virtual/net/nr0/queues/tx-0/xps_cpus\x00', 0x240c2, 0x0)
select$auto(0x46c3, &(0x7f0000000440)={[0x10000, 0x1ff, 0xbf, 0x6, 0x82, 0xbd, 0x1, 0x6, 0x0, 0x5, 0xfffffffffffffbff, 0x9, 0x6, 0x10, 0x2f3, 0x100000000]}, &(0x7f00000004c0)={[0x9, 0x7, 0x6, 0x6, 0x9, 0xffffffff7fffffff, 0x10000, 0x7fffffff, 0x1, 0xbc60, 0x3, 0x40, 0x6, 0x5, 0xffffffffffffff00, 0x3]}, &(0x7f0000000540)={[0x1, 0x1f, 0x1, 0x4, 0x8, 0x6, 0x9, 0x2, 0x0, 0xe, 0x40, 0xffffffffffff8000, 0x3c20, 0xf, 0x4, 0x7]}, &(0x7f00000005c0)={0x7, 0x8})
ioctl$auto_IOCTL_VMCI_VERSION2(r6, 0x7a7, 0x0)
ioctl$auto_SNAPSHOT_POWER_OFF(r7, 0xc0045878, 0x0)
ioctl$auto_IOCTL_VMCI_QUEUEPAIR_ALLOC(0xffffffffffffffff, 0x7a8, 0x0)
sendmsg$auto_NL80211_CMD_STOP_AP(r1, &(0x7f0000000740)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000700)={&(0x7f0000000640)={0xa8, 0x0, 0x200, 0x70bd2b, 0x25dfdbfd, {}, [@NL80211_ATTR_PBSS={0x4}, @NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM={0x6, 0xfb, 0x200}, @NL80211_ATTR_FILS_ERP_USERNAME={0x7, 0xf9, "f8a844"}, @NL80211_ATTR_FRAME_MATCH={0x75, 0x5b, "8fcb2033e7bdede4b00bdda7108fdff8f21bbc2f70714c8ce940de7ee3611739d7ee05006588d8a99d7c77d50e1607bf4a4bedd3a30e5028f629258622afeee9cacb74f464ae7d85a13215a4648ac1f6bba4b037762002242d5d1746876704d25c499a98cf114d4f9a841c9100d55d243a"}, @NL80211_ATTR_BSS_HT_OPMODE={0x6, 0x6d, 0x52}]}, 0xa8}}, 0x10)
r9 = openat$auto_udf_dir_operations_udfdecl(0xffffffffffffff9c, &(0x7f0000000780)='/sys/devices/virtual/mac80211_hwsim/hwsim13\x00', 0x202040, 0x0)
read$auto_udf_dir_operations_udfdecl(r9, &(0x7f00000007c0)=""/233, 0xe9)
socket(0x23, 0x1, 0xd0d)
r10 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000900), r5)
sendmsg$auto_TIPC_NL_NAME_TABLE_GET(r6, &(0x7f0000001cc0)={&(0x7f00000008c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000001c80)={&(0x7f0000000940)={0x1328, r10, 0x20, 0x70bd2b, 0x25dfdbff, {}, [@TIPC_NLA_MEDIA={0xcc, 0x5, 0x0, 0x1, [@generic="35baa96a75ee2e28b45bdb81421e0a55ec1d85d2815c4b864654084c7c1ef4307d5b7351cbce735a2b2cea4271d4dd17ef2c54e649e97e9271154b3f691f17aba99dc4a3c63f9b603c43f882afd188aa6b31bbe2bc12e4036ef1cbbc7951eb2a95f922897dc432db1f49d3d5c209c086ce222a3d9180def228a72968ee8481668f51f23c8ef4f3b2487e1a89ab297571c7e884ba8b5ec33fe602068a4add7549c3daf4ac23793c3b5df1a1736a7ea51444616c6a390c93fe672e1b01271edbe7daaa49d61c6cacfb"]}, @TIPC_NLA_UNSPEC={0xee, 0x0, "e7f977223430e6f01fd01e72d7b7801d5718fe2f60ce0db0a80bbdc514b680892c05e4098fd38f7c7411e41c798f51945e49801bd87b92604496e171e4700b9d207253954426a71c674864429e78809029cec8e47db71513b7eaca203b8a263c2d8a821c71c380ab2517a4d183a64ca6bea6c9e59383312d7953fe67e6a6b12077eda5f2768bc07f0dc368e6a9e29b7c71109ab149ce4a28be544653ea74015fc156e8116ab1549ef819980c2d84e1a0b1d115ad1b1c594db04f64753412a9cc0264c7a78bca2b93f4583b2028b80522ff8488cea8ce057832674d372bfdb36f6497f8b1c3bf78976ea1"}, @TIPC_NLA_NAME_TABLE={0x1158, 0x8, 0x0, 0x1, [@nested={0x1149, 0xa1, 0x0, 0x1, [@nested={0x4, 0x10c}, @generic="1fb7047c0c00b8f82e767be8cfd4466e202e4855f00ed1be3d3d04c17d183120b08339554136e54d88371d7d3d76e8f4cfbf636fb2c6a1d29496cb41330d22ab300eed1a4c1a7187f5631d29a6b2e7c1cb4ee801ad9cbffca56ec4d637b9d270a8b6d74c11f9e0760e2d888a330c51ae2343788a993ce2c9806b414bec7cd20cfbf33fe1a3f21ffd721de9aca74f5dec79eea7c21f4468ec00a6d25e2e1f84ca2a96ae05a8", @typed={0x84, 0xe6, 0x0, 0x0, @binary="c8f92346824f9f58beb8a0fe6a946406d7e02264b0b49d32c177ab018b4a5209c7f4309c33a3d88a8dcc6ab544b164e1ea7ca05819f3a54e9f99fa911b3b4183aa728deabdb1394b6606f12cc842eaa8eddc6cb248d341cde0a5f4b4411b0c99126a4cfb27896321a4e842d1538ed2cde46d2e58f6981b9cb287c79c72c5559a"}, @typed={0xc, 0x83, 0x0, 0x0, @u64=0xe}, @nested={0x4, 0x6e}, @typed={0x1004, 0x16, 0x0, 0x0, @binary="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"}, @nested={0x4, 0x98}]}, @generic, @typed={0x8, 0xf0, 0x0, 0x0, @pid=0xffffffffffffffff}]}]}, 0x1328}, 0x1, 0x0, 0x0, 0x8008000}, 0x24004001)
r11 = epoll_create1$auto(0x8)
fcntl$auto(r11, 0x2000, 0x0)
r12 = socket$nl_generic(0x10, 0x3, 0x10)
r13 = syz_genetlink_get_family_id$auto_nfc(&(0x7f0000001d40), r2)
sendmsg$auto_NFC_CMD_DEP_LINK_DOWN(r12, &(0x7f0000001e40)={&(0x7f0000001d00)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000001e00)={&(0x7f0000001d80)={0x4c, r13, 0x800, 0x70bd29, 0x25dfdbfc, {}, [@NFC_ATTR_FIRMWARE_NAME={0x36, 0x14, '/sys/devices/virtual/net/nr0/queues/tx-0/xps_cpus\x00'}]}, 0x4c}, 0x1, 0x0, 0x0, 0xf73c600c312dfc5f}, 0x40)
bpf$auto_BPF_OBJ_GET_INFO_BY_FD(0xf, &(0x7f0000001e80)=@link_create={@map_fd=r8, @target_fd=r6, 0x6, 0x9d4d, @tracing={0x1, 0x6}}, 0x800)
setsockopt$auto_SO_TIMESTAMPNS_OLD(r12, 0x8, 0x23, &(0x7f0000001f40)='\'%\x00', 0xc)

3.096619348s ago: executing program 2 (id=2914):
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x20342, 0x0)
ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000000))
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1)
mmap$auto(0x0, 0x2020009, 0x1003, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4008011}, 0x24048084)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sysfs$auto(0x2, 0x3f, 0x0)
fsopen$auto(0x0, 0x1)
write$auto(0x3, 0x0, 0xfffffdef)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x8000, 0x0)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000980)='/proc/self/pagemap\x00', 0x180800, 0x0)
ioctl$auto_SNDCTL_DSP_SYNC(r0, 0x5001, 0xfffffffffffffffc)

2.989999813s ago: executing program 1 (id=2915):
mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
sendmmsg$auto(0xffffffffffffffff, &(0x7f00000002c0)={{&(0x7f0000000240)="0db347c108fbaf563a3dbf09070188bc8c889932b4b9951a275033d7b55eb8567c2b596bddae08c35345d0e31e585868483a725ab4130a620bf81ec0812035e9880a2c370bd82a3c3a98509b36796287d15db018437738b27985535244b1a713ba271eb6473df36ee8f9c3e147ac8cdf72b0c7b51009223ee7afbbdb", 0x8, &(0x7f00000001c0)={&(0x7f0000000080)="b25917defc6ca5501029e29fdbb7abda5edc3310dae11254f35f1c3315571bb73abf2cca8874246f29ae18c80f372242cf40740736b9d383d35ce6b0", 0xf}, 0x65a, &(0x7f00000004c0)="3a081e00fcaf441420bb393a872df4bf09edf7b6e3df79729a0f8f54acdcd11fd334f0d3ffae816b743a154db3afc0a10b750dae8015626bcf1011ef0274bc27dc40536a2cb1b9d73ecd4b62ea70392679b7c03cedcc24faed45267763628db32a992bdf31fb34b8f521841ed01eb8c29411e05a7ec6ca8454a33205a531d9e78fffbf805ea9ed7e1e64411b4e824346cc1583f6e7ef84f48d77354356a55cfacac0c32a9ed24b8869a9a2d070119457d310a40c056dcb92dc90fc7698a001ad9fb22d61e1b8c9c03251acd3156b5709c033c57085", 0x3, 0x2}, 0x9ffb}, 0x6, 0x4)
r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video43\x00', 0x169000, 0x0)
ioctl$auto(r0, 0xc0905664, r0)
socket(0x2, 0x3, 0x4)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sda1\x00', 0x4040, 0x0)
preadv2$auto(0x3, &(0x7f0000001000)={0x0, 0x80000000}, 0x5, 0xffffffffffffffff, 0x7, 0x2e)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000300)='/dev/input/event0\x00', 0x204000, 0x0)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x40001, 0x0)
ioctl$auto_TIOCVHANGUP2(r1, 0x5437, 0x0)
openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000380), 0x82002, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
fanotify_init$auto(0x6a1, 0x2000000000002)
readv$auto(0x0, 0x0, 0x3)
mmap$auto(0x0, 0x810004, 0x2, 0x8000000008011, 0x3, 0x8000)
r2 = open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x80842, 0x91)
read$auto(r2, 0x0, 0x1)
r3 = openat$auto_trace_options_fops_trace(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/tracing/options/blk_classic\x00', 0x5, 0x0)
write$auto(r3, 0x0, 0x6)
close_range$auto(0x2, 0x8000, 0x0)
r4 = socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
newfstatat$auto(r4, 0x0, 0x0, 0xfffffffe)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8)
connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55)
r5 = socket(0x11, 0x80003, 0x300)
name_to_handle_at$auto(0xffffffffffffffff, &(0x7f00000000c0)='/\x00R\xa6\x00\xc8\xda\xdc\xb1\xb4#\xe4\xeb\xe1c_\x1b/\xb9L\xc6P\x82\xba\x90@\xb8\xb5\xb1\xe8\"\x88s\xdf\x15\xaa\x18\xa9\x86\xc7\x87g>8\xae\x99\xd4~\xc6\xa7\\\xcc\xfeV\x83\f\xdc\xdc~\x8e\xd5\x18\x13\x16\xc5\x93E\x10\xcb\x1c\x02\x00\xd2\xa4_\xa3\xdcS\xe2\xe2\xc6\x85p\xfa\xc3/G\x86\xea\x9f\xb0\x9a\xcc6\x1a\x06\x91\x9f\xcfC\xedU\x00f`\x02\x04\xef\xfe\x10\xec\x17\x83%K\x04\xd5s\x86\xe4\x9d\x15\f\x8c\xd9wj\xe5t\x82o7\xc05ul\xacU\xbf\xc0\xee\xb4\xd7\t\xe0s]\xcd\xac\x87\xa5\xa6.t\xa9\xe8\xa6>\xf2\xd0\xb1\x83\x83\x91\a\xdc\xe9\xaa\x1dx\x06\xa77\xd6\xe1\xe9\x94\xb9Xi\xbbv_\x9a_bv%\xcb\xc7\xdd\xa3\xb4\tpr%\xdf\xc9\x06\xa2\xe7\xe1\xde\x16\xf7\x03x\xf8\v\v\x1a\xfcm\x87r\xc1\b\xca\x97\xb0\xeb\xd6F\x8f^\x94\xdf\x9ax\xf4\x03e[l\xa5', &(0x7f0000000200)={0x2c, 0x6}, 0x0, 0x1001)
setsockopt$auto(r5, 0x107, 0x12, 0x0, 0x4)
write$auto(0x3, 0x0, 0xffeb)

2.767315017s ago: executing program 2 (id=2916):
rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x0)
syz_clone3(&(0x7f0000000100)={0x2000000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58)
mmap$auto(0x8001, 0xfffffffffffffff8, 0x80000001, 0x1010, 0xffffffffffffffff, 0x28000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0)
mmap$auto(0xfffffffffffffffc, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8008000)
socket(0xa, 0x801, 0x1)
unshare$auto(0x40000080)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/bonding/all_slaves_active\x00', 0xb02, 0x0)
write$auto(0xca, 0x0, 0x10)
sendfile$auto(r0, r0, 0x0, 0x3)
openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a0027"], 0x1ac}, 0x1, 0x0, 0x0, 0x4000804}, 0x40000)
write$auto(r0, &(0x7f00000000c0)=']\\/\x00', 0x5)
r1 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x44814}, 0x2004c0c4)
sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x8)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/pci/00/01.3\x00', 0x149041, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/nr2/queues/tx-0/xps_rxqs\x00', 0x22701, 0x0)
setresuid$auto(0x2, 0x7, 0x8080)
write$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f00000027c0)='H', 0x1)
rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0x6, 0x2}, 0x8000, 0x0, 0x6)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
write$auto(0x4, 0x0, 0x100082)
setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9)
openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/set_event\x00', 0x80c00, 0x0)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0xfd, 0x0, 0xfffffffffffffffd)
sendmsg$auto_NL80211_CMD_DEL_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB="01000000", @ANYRES16=0x0, @ANYBLOB="00012cbd7000fbdbdf2576000000"], 0x14}, 0x1, 0x0, 0x0, 0x10044}, 0x11)

2.695382721s ago: executing program 1 (id=2917):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = io_uring_setup$auto(0x6, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
connect$auto(0x3, &(0x7f00000018c0)=@in={0x2, 0x300, @loopback=0xac14140a}, 0x55)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x0, 0x5, 0x7)
ustat$auto(0x6, 0x0)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4)
r3 = openat$auto_aoe_fops_aoechr(0xffffffffffffff9c, &(0x7f0000000280)='/dev/etherd/discover\x00', 0x82, 0x0)
write$auto_aoe_fops_aoechr(r3, 0x0, 0x0)
sendmsg$auto_HWSIM_CMD_GET_RADIO(r2, &(0x7f0000001900)={0x0, 0x0, &(0x7f00000018c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB='\x00'/14], 0x14}, 0x1, 0x0, 0x0, 0x884}, 0x8000)
read$auto(r2, 0x0, 0x3)
r4 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000040), 0x230082, 0x0)
ioctl$auto_SIOCGIFHWADDR(r4, 0x8927, &(0x7f0000000080)="7cff9bb2ad9fac8c883192ae47b49a7baf567a73998058bf1082")
bind$auto(0x3, &(0x7f0000000000)=@generic={0x10, "a500acb75c9cedd1b5e9a0d76293"}, 0x68)
getsockopt$auto(r1, 0x10e, 0x9, 0xfffffffffffffffe, 0x0)
setsockopt$auto(r0, 0x1, 0x9, 0x0, 0xeb66)
close_range$auto(0x2, 0x8, 0x0)

2.291540187s ago: executing program 4 (id=2918):
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vbi15\x00', 0x802, 0x0)
ppoll$auto(0x0, 0x4, 0x0, 0x0, 0x8)
r0 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/video8\x00', 0x802, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
r1 = socket(0xa, 0x1, 0x100)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40, 0x0)
ioctl$auto(0xc8, 0x400454d4, 0xe)
r2 = socket(0xa, 0x2, 0x3a)
setsockopt$auto(r2, 0x29, 0x40, &(0x7f0000000400)='\x15!\xa8^J/\xddCx4!\x00\xd3\x8f\xff\x1b\x01\x1e\xe2\xa8\xd6\xd9\xc0\xa2\x0f\x88\xb1e\x8a\xd8?\xfe\xda\xc4\xef\xff(i_\vBj\x0eQ\xce\x16\'C\x8c\x01\x80\x92u\xd5\xb8\\\x82,\xe2=y\x9bR\xbcn\xa0c\x16~\x86\"t\x00\x00\x00\x00\xe4\xa5\xfe\xb5h\xae\xec%\xf9\x94>\xd6,\xf3\x98\'\xb0\t~~\xb4\x98\xbb3=A\x9c\x17\xaa\xce\fh-M\xdb-\x15VX\xfe\xca+\xb5\x95\xb3JL\x0fl\xe84\xbd\xa3nO\x9f\xfa\xb1\x06$\b$i3\x83\xd7\x06\xd6\x1e\xdbB\x9bb\x1cXC\x8c\x8b\xd9\xff\xf2Bf\x99!Z\x13\xff\xca\xf3e\x015\x9b\x86\xd6$\x1a\r3\x91\xb7\x942\xeb\xadVA\xfc\x1f\xbf1\xb7T\xc1\xbf\xc0\xc2\xfc\xe8w\xd33\xb2,&\xd5z\xe6\x93\xb9\aE\x825\x94U\xbbNeb\xd2\xa9\x0f\xed\x8b\xea\xfa\x8a\x04.\xffMIw\x0f\xd6\xae^\xd2\xf1j\xcb\r\xa4\x1d0d\xca\x81\x9c\x80GL\x0e\xe6\x19\x8au\x1a7\xc5|\xf6\x1e\xe00\xc6\"\x83\x1c\xa2\x9e\a\x1c\xea\xa3\x9c\xe1BF\x05b\xf6\xdcf\x04\xd9B\xb9\x98\x9cq\xbd\xfb\xb5~\xf2\x8d\x9f`\xec\xd0\xafY\xcf\x84', 0x8001)
socket(0x1e, 0x1, 0x0)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r4 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r5 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000001c0), r1)
r6 = set_tid_address$auto(&(0x7f0000000200)=0xffff)
r7 = getpid()
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r4, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x48}, 0xc, &(0x7f0000000240)={&(0x7f0000000700)=ANY=[@ANYBLOB="fc1a0000", @ANYRES16=r5, @ANYBLOB="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", @ANYRES32=r0, @ANYBLOB="7f42c2fbb02ca5b1532ff53e7ba8a4d9664993319a9bf301bc1ddcf7de279a5c5b4fd56c7b5cfeadbb8ace265b24e627152b53d3454c43cdbe2c70dac70e99aa4bc9feb40a66f390ca225f0d4af5d7a02ac82013b66086ce4989351f0507ed4b4a0f27e77800bf00397bd4283bfbebb10c9de14cd2d0a92f151b511cf45d426b86a6ef24cec948e67c7e67b02ed3ec98c4b998ac4780edc51df95eb41d41939f99974d224cfa5ebf86cf4fcce15b1f586bf6a261311307907850803f64de36a1d81f6a72df59ce5900000c007600657468746f6f6c002f8aabdf4bee060e8ce9075220fb415108593e3a9e31766627ab6aa17fd5f5716ec4cc2727952a10c673067853ff7f2e4890b9b67b82b660a775c73cb81d657dda2741e37c78efa48d8e7b3ce9681e398c6261f315f9f713b2cb320a7c65168d115627a96c7c0711752b70a3246a1e5dc78d2653413c1d397187ed70be6ef032fa7c1164494ff1f64512494519441a2cfd00b680678844c769ad3fa713f8781e302ac59505809bff1d6481467fed5e890cf39baa05afc1d09eca03f460d03b3488eb87f7f24f2fb8d64ba0dcb1e5a62e0cb5794c2df274c5d677e85374c28ee71b53f57e0143e13a680e7c11263b3fb3be1da8aad68f746c34b7196858ec3aeccaf6e5834511d397363368b1aa0593869aa9e13f92e2e42b5fed638f4f5f18073ce3cd593cfd27982a7c69fb9ce92198b740c4575639d2eade88c78acc87db3c0cdd7b3ab2e7c8684b06947230219d0aaa0441c082927f26a9f603a16336b04619af0cb363f8ac3c70ac6c20e91c24e6e9fafeeb12b0b28068bcea0b89080034008b2f819b0ef57cd8fa0a8c2ae7292c792cd022a179cebf2181", @ANYRES32=r6, @ANYBLOB="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", @ANYRES32=r7, @ANYBLOB="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", @ANYRES32=r6, @ANYBLOB="b300680027505eff1a305ff4971bfa411585727e1788130a22b45608b5b5447141d94e2b8c69400433968f12d620d6ddccfe341406e0731ebece6202fe397f8deef64f790b6feb71c4ce4056b9fd378c757bbb6d75acfbaf7a35162ad57c31a81d68bb417115fbfd5daf4c3301a87bf9d1103772b27350716f769da7f121d3512a56b38bdbeee07ca8574a526b10939538783b20ce2fa4641a57baff1b5a9f02a598ac187697d6e14e859100b9f68ebcb9c95400"], 0x1afc}, 0x1, 0x0, 0x0, 0x4008004}, 0x40010)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000)
r8 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000380)='/dev/dri/card0\x00', 0x402040, 0x0)
ioctl$auto(r8, 0xd00064c0, 0xc36)
uname$auto(0x0)
r9 = socket(0x28, 0x1, 0x0)
getsockopt$auto(r9, 0x28, 0x1, 0x0, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0)
r10 = openat$auto_show_traces_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/tracing/available_tracers\x00', 0x40000, 0x0)
read$auto_show_traces_fops_trace(r10, &(0x7f0000000640)=""/188, 0xbc)
select$auto(0x8, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da08, 0x3, 0x3, 0x62, 0x80000003, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x200000000000007, 0xd, 0xfffffffffffffffe, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x43, 0x82, 0x6]}, 0x0)

2.275582296s ago: executing program 0 (id=2919):
symlink$auto(&(0x7f0000000180)='./file0/../file0\x00', &(0x7f00000002c0)='./file0\x00')
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000440), 0x20100, 0x0)
ioctl$auto_LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, 0x0, 0x28082, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000480)='/proc/asound/card1/cable#0\x00', 0x10000, 0x0)
socket(0x1e, 0x80000, 0x5c)
mmap$auto(0x0, 0x9, 0xdf, 0x1000000eb1, 0x401, 0x8000)
io_uring_setup$auto(0x6, 0x0)
clock_nanosleep$auto(0x0, 0x1000, 0x0, &(0x7f0000000040)={0x9, 0x1000000000004})
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_REMOVE_LINK_STA(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@NL80211_ATTR_BSS_CTS_PROT={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc1}, 0x4000)
madvise$auto(0x0, 0xfffffffffffefffd, 0x17)
sendmsg$auto_NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x3a8044}, 0xc, &(0x7f0000000400)={&(0x7f0000000180)={0x258, r1, 0x0, 0x70bd28, 0x25dfdbfb, {}, [@NL80211_ATTR_LOCAL_MESH_POWER_MODE={0x8, 0xa4, 0x200}, @NL80211_ATTR_MBSSID_ELEMS={0x215, 0x133, 0x0, 0x1, [@generic="061748a31e9559a89a4fc849603b836e17cc1ad03c2d358b7cd98671dcce5d23f89f762f92570b697347f18346ef4250cb71b9fa43d9c5e1de71dd871f6df113cb2671f1cb1b0d163b7e91fddd9b004caf256d76bc7f70ebd40ead7e4a1dda7791c34766febcd56585a1ccc4f87709a6d3a0cc905aaa2927fc8f44c979e5efafb09ea3", @generic="7cd512f1a83098177aa0f2909efa3d84ee934dfbed7e0d4ff5ba59245273d073052da52bdae7de371030594c3a920526175ee507f1b12dcbfd6666653205ab0b404aa78364b908", @generic="e93fe5de707725065b141aa24268fbb3f9534f4e64235b12a87b44bc4c4a9fc4c6b86cde80d40f601251bad939cd850f194b28d9ff8146805b0fe3d9b8b2962127ecb8cc2b488541601f66136480fc5d29bd9bb7b948492abe285fee16b5e0fbe0caf6c4c356d5d5e65f279a385650a40b5d6dbccc16c8262108e9796de764b942e7eba5f24b55fc37a525cd43a930261ac3fe4f64253d2c6863b0c4957b963d3d707659f7a48c2ce767f0cd23a8f0f659adcf9aacc8004a485e48002a1e511aff423af9082b89855f98218ffbf94478b42e64d23973aa862f33be95b2a26c33120ea700c2c530a2cabbd5", @generic="e21a8f75755c9836c67b1f800e847f28850493f1488e1a299f111a063bf1386c570adb51caee0d88ad9a639a69b986e411eec9394f3886dc205db362e7647de5dfc919cbded6063aba8bbf97b8bb4d60836b2bc5d8b2b8e0", @typed={0x4, 0x1}]}, @NL80211_ATTR_MESH_PEER_AID={0x6, 0xed, 0x9}, @NL80211_ATTR_INACTIVITY_TIMEOUT={0x6, 0x96, 0x7}, @NL80211_ATTR_TDLS_SUPPORT={0x4}, @NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM={0x6, 0xfb, 0xff}, @NL80211_ATTR_CONTROL_PORT_ETHERTYPE={0x6, 0x66, 0x4e22}]}, 0x258}, 0x1, 0x0, 0x0, 0xc814}, 0x10)
madvise$auto(0x0, 0x20499d, 0x9)
syz_genetlink_get_family_id$auto_nl802154(0x0, 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000000), r2)
sendmsg$auto_ETHTOOL_MSG_LINKINFO_SET(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x34, r3, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@ETHTOOL_A_LINKINFO_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_LINKINFO_PORT={0x5}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000840}, 0x2000c840)
sendmsg$auto_NL802154_CMD_SET_TX_POWER(0xffffffffffffffff, 0x0, 0x810)
madvise$auto(0x108000, 0x800034, 0x4)
madvise$auto(0x0, 0x5, 0x15)
madvise$auto(0x0, 0x200007, 0x19)
rename$auto(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0/../file0\x00')

2.02682773s ago: executing program 1 (id=2920):
r0 = socket(0x10, 0x2, 0x0)
setuid$auto(0xe)
sendmsg$auto_NCSI_CMD_SET_PACKAGE_MASK(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)={0x24, 0x0, 0x518, 0x70bd2b, 0x25dfdbff, {}, [@NCSI_ATTR_PACKAGE_ID={0x8, 0x3, 0x6}, @NCSI_ATTR_CHANNEL_ID={0x8, 0x4, 0x2}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000000}, 0x20000800)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)="ac1cef5517e4c2fde1646f5326f5687e8da8ec0965f5c53a568c4280baaa96acf4cae8f0846c746e1b578fb28407fb4809fcaede2d4c2065e812b2b75f5bfd3fed20cda378a40e5aec5efd9b0dd690f9fa20c40fd600a3ecff3dab0f2fa5e8daffde2358f90858245fbc3faa07521cfed1a8620e9b21a4749b93e32df8f06c67749d581b22", 0xfc2}, 0x2, &(0x7f00000002c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008)

1.85902753s ago: executing program 1 (id=2921):
mmap$auto(0x0, 0x2000d, 0x4000000000df, 0xeb1, 0x404, 0x8000) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ram11\x00', 0x4eb02, 0x0) (async)
write$auto(0x3, 0x0, 0x7fffffff)
setresuid$auto(0x0, 0x7, 0x0) (async, rerun: 64)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async, rerun: 64)
bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0xb, 0xb5, 0x10, 0x4, 0x53000000, 0xffffffffffffffff, 0x9, "2af051b26b658a20d8dc6b36c83ce63f", 0x0, 0xffffffffffffffff, 0x5, 0x7, 0x4f4, 0x7}, 0x10) (async, rerun: 64)
r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/028/001\x00', 0xa901, 0x0) (rerun: 64)
semctl$auto(0x201, 0xfffffffffffffffa, 0x3, 0x0) (async)
ioctl$auto_USBDEVFS_SUBMITURB32(r0, 0x802c550a, &(0x7f00000001c0)=ANY=[@ANYBLOB="020000000000000005"]) (async, rerun: 32)
close_range$auto(0x2, 0x8, 0x0) (async, rerun: 32)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0x80900, 0x0) (async, rerun: 32)
mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) (rerun: 32)
madvise$auto_MADV_GUARD_INSTALL(0x0, 0x100000000, 0x66)
ioctl$auto_BLKFLSBUF(r1, 0x1261, 0x0) (async)
setresuid$auto(0x0, 0x0, 0x0)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/pci/00/01.3\x00', 0x100, 0x0)
pread64$auto(r2, 0x0, 0x8, 0x4) (async, rerun: 64)
r3 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64)
listen$auto(0x3, 0x81) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
bpf$auto_BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000380)=@prog_bind_map={0xffffffffffffffff, <r4=>r2, 0xffff}, 0x1000)
read$auto_v4l2_fops_v4l2_dev(r4, &(0x7f0000000440)=""/128, 0x80)
r5 = socket(0xa, 0x801, 0x84)
mmap$auto(0x8000000000000004, 0x7, 0x4000000000e1, 0x40eb2, r3, 0x8) (async, rerun: 64)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) (async, rerun: 64)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x11}}, 0x54)
io_uring_setup$auto(0x1, 0x0)
getsockopt$auto(r5, 0x84, 0x6d, 0x0, &(0x7f0000000280)=0x1000c0) (async)
setsockopt$auto(0x3, 0x10000000084, 0x85, 0x0, 0x90)

1.19769825s ago: executing program 2 (id=2922):
statmount$auto(0x0, &(0x7f0000000380)={0x8, 0x7, 0x1ff, 0x1001, 0x5, 0x717e, 0x1ffde, 0x7, 0x3, 0xd, 0x2, 0x80003, 0x4, 0x1ffffffffffd, 0xb4, 0xfffffffffffffffe, 0x7, 0x10002, 0x7f, 0x2a2, 0x2, 0xa, 0x22000, 0x200, 0x4, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100000000000], "78da90681bf8397ef6bb00c767d3c8b15e53a4870313d5fe61d2"}, 0x1fe, 0xd)
r0 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r0, 0xfffffffffffffd03, &(0x7f00000001c0))
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = io_uring_setup$auto(0x4, 0x0)
close_range$auto(0x2, r1, 0x0)
open(0x0, 0x22240, 0x55)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$auto(0x3, 0x80286f4e, r2)
ioctl$auto(0x3, 0x400454ca, 0x38)
prctl$auto(0xfffffffb, 0x5, 0x0, 0x5, 0x2000001)
openat$auto_proc_gid_map_operations_base(0xffffffffffffff9c, 0x0, 0x0, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0x2000000, 0x400008, 0xdf, 0x9b72, 0x100000000002, 0x8000)

1.002058093s ago: executing program 4 (id=2923):
unshare$auto(0x40000080)
mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
socket(0xa, 0x1, 0x100)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x20000, 0x0)
sendfile$auto(r0, r0, 0x0, 0x7fff)
r1 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, 0x0, 0x8080, 0x0)
pread64$auto(r1, &(0x7f0000000340)='bond0\x00', 0x3, 0x101)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_ila(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ILA_CMD_ADD(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010028bd7000fddbdf2501"], 0x1c}}, 0x40000)
fcntl$auto_F_GETSIG(r2, 0xb, 0x1)
sendmsg$auto_ILA_CMD_FLUSH(r2, &(0x7f0000001f80)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f0000000540)={0x14, r4, 0x1, 0x2, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x4000004}, 0x40844)
unshare$auto(0xa4)
setsockopt$auto(0x400000000000003, 0x29, 0x1b, 0x0, 0x56b)
ioctl$auto_SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045002, 0x0)
unshare$auto(0x40000080)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)
pivot_root$auto(&(0x7f0000000300)='.\x00\xaf\xeb)\xae$\xfc\x00\xf8\x05AC\x9f\xbbR\xec\xc6c\x85\xc8\xa7\xe84sF\xe3U\x94\x99\x8fR\xd0\x98\f\xa5\xb1S\x7f\xc3\xa5\xc0\x97\x10qa\r\x02\xd2\xc8\xd2\x8e\xc7\x80\x11\x06#\xf5\x18|\xdc\x81Ai\xb6\x96iaR\xdbA\x04\x10\x99\xe6\xdb\xae`G\x1d9`T\xd8\xc6\xea\xf7\x96\xb5\xe9\x164e\xb1 S\x8f\x12_\x15y\x91F\xc89\xb1\xd24?\x89.,Z\xba,\"v\xde\xc4\xe0\x84\xca|\"\x96V\xd5P\xe4\xb9\xea\x88\x15\xacs\xc6\x83\xd6\x81\xd7\x11\x88\x9c\xdd\x8a\x0e\xea\x19|\x7f\xe3A8x\xce\xc1!q\xbbi\\\xd8\xa9\xe0\xed\x9e\x19\xc0IC9^\xfcJG\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000280)='.\x00')
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0xfffffffd, 0x441bf, 0x73d2, 0x3c, 0x65f, 0x1ffde, 0x1, 0x3, 0x2, 0x9, 0x3, 0x10a, 0x4, 0xb2, 0x80000000009, 0x6, 0x10003, 0xb, 0x4, 0x0, 0x7, 0x2000, 0x203, 0x0, 0x84, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, [0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff]}, 0x1fe, 0x10)
madvise$auto(0x1000000000005, 0x8, 0xfffffffd)
r5 = socket(0x9, 0xa, 0x0)
setsockopt$auto(r5, 0x8000000c, 0x84, 0x0, 0x56b)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
socket(0x15, 0x5, 0x0)
openat$auto__dev_ioctl_fops_dev_ioctl(0xffffffffffffff9c, &(0x7f0000001440), 0x101000, 0x0)
ioctl$auto__dev_ioctl_fops_dev_ioctl(0xffffffffffffffff, 0x0, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
socketpair$auto(0x1ff, 0x5, 0x8000000000000000, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/loop1/queue/max_hw_sectors_kb\x00', 0x2000, 0x0)

835.075749ms ago: executing program 0 (id=2924):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
rseq$auto(&(0x7f0000000340)={0x10, 0x401, 0x0, 0x803, 0x7, 0x2}, 0x8000, 0x0, 0x8000006)
write$auto(0x3, 0x0, 0xffd8)
r0 = syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$auto_IEEE802154_DEL_IFACE(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000380)={&(0x7f0000000280)={0x24, r0, 0x400, 0x70bd27, 0x25dfdbfd, {}, [@IEEE802154_ATTR_SRC_SHORT_ADDR={0x6, 0xb, 0x7f}, @IEEE802154_ATTR_CSMA_MAX_BE={0x5, 0x27, 0x3}]}, 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x1)
r1 = socket(0x11, 0x80003, 0x300)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x80000008000)
socket(0x18, 0x2, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0)
close_range$auto(0x2, 0xa, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1e, 0x4, 0x0)
r3 = socket(0x1e, 0x4, 0x0)
read$auto(0x3, 0x0, 0x80)
get_robust_list$auto(0x0, 0x0, 0x0)
setsockopt$auto(r3, 0x10f, 0x87, 0x0, 0x14)
setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
write$auto(r3, 0x0, 0x9)
close_range$auto(0x2, 0x8, 0x0)
setsockopt$auto(r1, 0x107, 0x5, 0x0, 0x8004)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = ioctl$auto_TUNSETGROUP(0xffffffffffffffff, 0x400454ce, &(0x7f0000000180)=0x1)
r6 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f00000001c0), r5)
sendmsg$auto_L2TP_CMD_TUNNEL_MODIFY(r4, &(0x7f0000001000)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f0000000ec0)={0x14, r6, 0x1, 0x70bd26, 0x25dfdbfc}, 0x14}}, 0x4000)

248.265467ms ago: executing program 0 (id=2925):
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x20342, 0x0)
ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000000))
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1)
mmap$auto(0x0, 0x2020009, 0x1003, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4008011}, 0x24048084)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sysfs$auto(0x2, 0x3f, 0x0)
fsopen$auto(0x0, 0x1)
write$auto(0x3, 0x0, 0xfffffdef)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x8000, 0x0)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000980)='/proc/self/pagemap\x00', 0x180800, 0x0)
ioctl$auto_SNDCTL_DSP_SYNC(r0, 0x5001, 0xfffffffffffffffc)

52.153885ms ago: executing program 4 (id=2926):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
rseq$auto(&(0x7f0000000340)={0x10, 0x401, 0x0, 0x803, 0x7, 0x2}, 0x8000, 0x0, 0x8000006)
write$auto(0x3, 0x0, 0xffd8)
r0 = syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$auto_IEEE802154_DEL_IFACE(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000380)={&(0x7f0000000280)={0x24, r0, 0x400, 0x70bd27, 0x25dfdbfd, {}, [@IEEE802154_ATTR_SRC_SHORT_ADDR={0x6, 0xb, 0x7f}, @IEEE802154_ATTR_CSMA_MAX_BE={0x5, 0x27, 0x3}]}, 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x1)
r1 = socket(0x11, 0x80003, 0x300)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x80000008000)
socket(0x18, 0x2, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0)
close_range$auto(0x2, 0xa, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1e, 0x4, 0x0)
r3 = socket(0x1e, 0x4, 0x0)
read$auto(0x3, 0x0, 0x80)
get_robust_list$auto(0x0, 0x0, 0x0)
setsockopt$auto(r3, 0x10f, 0x87, 0x0, 0x14)
setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
write$auto(r3, 0x0, 0x9)
close_range$auto(0x2, 0x8, 0x0)
setsockopt$auto(r1, 0x107, 0x5, 0x0, 0x8004)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = ioctl$auto_TUNSETGROUP(0xffffffffffffffff, 0x400454ce, &(0x7f0000000180)=0x1)
r6 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f00000001c0), r5)
sendmsg$auto_L2TP_CMD_TUNNEL_MODIFY(r4, &(0x7f0000001000)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f0000000ec0)={0x14, r6, 0x1, 0x70bd26, 0x25dfdbfc}, 0x14}}, 0x4000)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vbi15\x00', 0x802, 0x0)
ppoll$auto(0x0, 0x4, 0x0, 0x0, 0x8)

51.156187ms ago: executing program 1 (id=2934):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
rseq$auto(&(0x7f0000000340)={0x10, 0x401, 0x0, 0x803, 0x7, 0x2}, 0x8000, 0x0, 0x8000006)
write$auto(0x3, 0x0, 0xffd8)
r0 = syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$auto_IEEE802154_DEL_IFACE(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000380)={&(0x7f0000000280)={0x24, r0, 0x400, 0x70bd27, 0x25dfdbfd, {}, [@IEEE802154_ATTR_SRC_SHORT_ADDR={0x6, 0xb, 0x7f}, @IEEE802154_ATTR_CSMA_MAX_BE={0x5, 0x27, 0x3}]}, 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x1)
r1 = socket(0x11, 0x80003, 0x300)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x80000008000)
socket(0x18, 0x2, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0)
close_range$auto(0x2, 0xa, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1e, 0x4, 0x0)
r3 = socket(0x1e, 0x4, 0x0)
read$auto(0x3, 0x0, 0x80)
get_robust_list$auto(0x0, 0x0, 0x0)
setsockopt$auto(r3, 0x10f, 0x87, 0x0, 0x14)
setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
write$auto(r3, 0x0, 0x9)
close_range$auto(0x2, 0x8, 0x0)
setsockopt$auto(r1, 0x107, 0x5, 0x0, 0x8004)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = ioctl$auto_TUNSETGROUP(0xffffffffffffffff, 0x400454ce, &(0x7f0000000180)=0x1)
r6 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f00000001c0), r5)
sendmsg$auto_L2TP_CMD_TUNNEL_MODIFY(r4, &(0x7f0000001000)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f0000000ec0)={0x14, r6, 0x1, 0x70bd26, 0x25dfdbfc}, 0x14}}, 0x4000)

0s ago: executing program 2 (id=2927):
mmap$auto(0x0, 0x2020409, 0xa, 0xeb1, 0xffffffffffffffff, 0x8000)
r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'syz_tun\x00'})
bpf$auto(0x2, &(0x7f0000000040)=@enable_stats={0x1c}, 0x429355f5)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/afs/addr_prefs\x00', 0x102, 0x0)
writev$auto(r2, &(0x7f0000000080)={&(0x7f0000000040), 0x6}, 0x3)
r3 = openat$auto_hsr_node_table_fops_(0xffffffffffffff9c, &(0x7f0000001340), 0x2, 0x0)
read$auto_hsr_node_table_fops_(r3, &(0x7f0000001380)=""/30, 0x1e)
ioctl$auto_VHOST_SET_VRING_ADDR2(r0, 0x4028af11, &(0x7f0000000040)={0x7, 0x10000, 0xd5ac, 0x0, 0x8, 0x400})
madvise$auto(0x0, 0x2003f0, 0x15)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x0)
mmap$auto(0x0, 0x0, 0x3, 0xeb1, r0, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
read$auto_hsr_node_table_fops_(r0, &(0x7f00000002c0)=""/237, 0xed)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x3, 0xa)
futex$auto(0x0, 0x6, 0x47, 0x0, 0x0, 0x0)
setsockopt$auto(0x3, 0x0, 0x14, 0x0, 0x10001)
setsockopt$auto(r2, 0x0, 0x12, 0x0, 0x10001)
read$auto(0x3, 0x0, 0x80)
connect$auto(0x3, &(0x7f00000000c0), 0x55)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptyb6\x00', 0x20000, 0x0)
ioctl$auto_TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000180)="157517b823c0524bb2bbb782f0c36363d6d2dd3351034e7d04f1e1063ee7ac3602e51f3f17694ea950040026")
sendmmsg$auto(0x3, 0x0, 0x7, 0x0)
openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, 0x0, 0x48402, 0x0)
getsockopt$auto_SO_TIMESTAMPING_OLD(r3, 0x7fff, 0x25, &(0x7f0000000080)=':^\\,+\x00', &(0x7f0000000100)=0x1)
prctl$auto(0xbb, 0x1, 0x0, 0x3, 0x7)
msgrcv$auto(0x0, 0x0, 0xff9, 0x1, 0xb4)
msgsnd$auto(0x0, &(0x7f0000000000)={0x1, 0x5}, 0x8, 0x9)

kernel console output (not intermixed with test programs):

T15606]  should_fail_ex+0x512/0x640
[  646.119402][T15606]  ? __kmalloc_noprof+0xbf/0x510
[  646.119426][T15606]  ? ops_init+0x77/0x5f0
[  646.119447][T15606]  should_failslab+0xc2/0x120
[  646.119471][T15606]  __kmalloc_noprof+0xd2/0x510
[  646.119498][T15606]  ops_init+0x77/0x5f0
[  646.119524][T15606]  setup_net+0x21e/0x850
[  646.119549][T15606]  ? __pfx_setup_net+0x10/0x10
[  646.119571][T15606]  ? lockdep_init_map_type+0x5c/0x280
[  646.119598][T15606]  ? __pfx_down_read_killable+0x10/0x10
[  646.119641][T15606]  ? debug_mutex_init+0x37/0x70
[  646.119677][T15606]  copy_net_ns+0x2a6/0x5f0
[  646.119706][T15606]  create_new_namespaces+0x3ea/0xad0
[  646.119734][T15606]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  646.119759][T15606]  ksys_unshare+0x45b/0xa40
[  646.119787][T15606]  ? __pfx_ksys_unshare+0x10/0x10
[  646.119813][T15606]  ? xfd_validate_state+0x5d/0x180
[  646.119847][T15606]  ? rcu_is_watching+0x12/0xc0
[  646.119871][T15606]  __x64_sys_unshare+0x31/0x40
[  646.119898][T15606]  do_syscall_64+0xcd/0x230
[  646.119927][T15606]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  646.119948][T15606] RIP: 0033:0x7f2a6d58e969
[  646.119964][T15606] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  646.119984][T15606] RSP: 002b:00007f2a6e3f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  646.120002][T15606] RAX: ffffffffffffffda RBX: 00007f2a6d7b5fa0 RCX: 00007f2a6d58e969
[  646.120015][T15606] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  646.120027][T15606] RBP: 00007f2a6d610ab1 R08: 0000000000000000 R09: 0000000000000000
[  646.120039][T15606] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  646.120051][T15606] R13: 0000000000000000 R14: 00007f2a6d7b5fa0 R15: 00007ffed7aa1cc8
[  646.120077][T15606]  </TASK>
[  646.335303][    C0] vkms_vblank_simulate: vblank timer overrun
[  650.747578][T15662] netlink: 326 bytes leftover after parsing attributes in process `syz.1.2147'.
[  657.166166][T15721] netlink: 318 bytes leftover after parsing attributes in process `syz.1.2160'.
[  657.247591][T15722] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2161'.
[  658.106444][T15733] netlink: 326 bytes leftover after parsing attributes in process `syz.0.2164'.
[  659.160813][T15731] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2163'.
[  660.243786][T15760] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input31
[  661.419474][T15779] tty tty25: ldisc open failed (-12), clearing slot 24
[  661.467018][T15784] tty tty53: ldisc open failed (-12), clearing slot 52
[  662.453793][T15801] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2181'.
[  665.352514][T15828] ptrace attach of "./syz-executor exec"[12973] was attempted by ""[15828]
[  665.693995][T15831] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  666.405863][   T55] Bluetooth: hci3: unexpected event 0x3e length: 508 > 260
[  666.405918][   T55] Bluetooth: hci3: unexpected subevent 0x02 length: 507 > 260
[  666.422425][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  666.430442][   T55] Bluetooth: hci3: unknown advertising packet type: 0xe9
[  666.430469][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  666.446773][   T55] Bluetooth: hci3: Malformed LE Event: 0x02
[  666.453887][   T55] Bluetooth: hci3: unexpected event 0x3e length: 508 > 260
[  666.453911][   T55] Bluetooth: hci3: unexpected subevent 0x02 length: 507 > 260
[  666.468662][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  666.475334][   T55] Bluetooth: hci3: unknown advertising packet type: 0xe9
[  666.475359][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  666.489382][   T55] Bluetooth: hci3: Malformed LE Event: 0x02
[  666.495433][   T55] Bluetooth: hci3: unexpected event 0x3e length: 508 > 260
[  666.495458][   T55] Bluetooth: hci3: unexpected subevent 0x02 length: 507 > 260
[  666.510985][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  666.518079][   T55] Bluetooth: hci3: unknown advertising packet type: 0xe9
[  666.518104][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  666.533943][   T55] Bluetooth: hci3: Malformed LE Event: 0x02
[  666.540084][   T55] Bluetooth: hci3: unexpected event 0x3e length: 508 > 260
[  666.540106][   T55] Bluetooth: hci3: unexpected subevent 0x02 length: 507 > 260
[  666.555207][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  666.562211][   T55] Bluetooth: hci3: unknown advertising packet type: 0xe9
[  666.562236][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  666.576046][   T55] Bluetooth: hci3: Malformed LE Event: 0x02
[  666.582074][   T55] Bluetooth: hci3: unexpected event 0x3e length: 508 > 260
[  666.582095][   T55] Bluetooth: hci3: unexpected subevent 0x02 length: 507 > 260
[  666.597927][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  666.604625][   T55] Bluetooth: hci3: unknown advertising packet type: 0xe9
[  666.604649][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  666.625575][   T55] Bluetooth: hci3: Malformed LE Event: 0x02
[  666.631659][   T55] Bluetooth: hci3: unexpected event 0x3e length: 508 > 260
[  666.631683][   T55] Bluetooth: hci3: unexpected subevent 0x02 length: 507 > 260
[  666.646924][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  666.653599][   T55] Bluetooth: hci3: unknown advertising packet type: 0xe9
[  666.653621][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  666.668434][   T55] Bluetooth: hci3: Malformed LE Event: 0x02
[  666.674486][   T55] Bluetooth: hci3: unexpected event 0x3e length: 508 > 260
[  666.674511][   T55] Bluetooth: hci3: unexpected subevent 0x02 length: 507 > 260
[  666.689568][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  666.696754][   T55] Bluetooth: hci3: unknown advertising packet type: 0xe9
[  666.696780][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  666.715557][   T55] Bluetooth: hci3: Malformed LE Event: 0x02
[  666.722633][   T55] Bluetooth: hci3: unexpected event 0x3e length: 508 > 260
[  666.722657][   T55] Bluetooth: hci3: unexpected subevent 0x02 length: 507 > 260
[  666.738580][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  666.745279][   T55] Bluetooth: hci3: unknown advertising packet type: 0xe9
[  666.745306][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  666.765553][   T55] Bluetooth: hci3: Malformed LE Event: 0x02
[  666.771617][   T55] Bluetooth: hci3: unexpected event 0x3e length: 508 > 260
[  666.771639][   T55] Bluetooth: hci3: unexpected subevent 0x02 length: 507 > 260
[  666.795537][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  666.802247][   T55] Bluetooth: hci3: unknown advertising packet type: 0xe9
[  666.802271][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  666.816230][   T55] Bluetooth: hci3: Malformed LE Event: 0x02
[  666.822273][   T55] Bluetooth: hci3: unexpected event 0x3e length: 508 > 260
[  666.822294][   T55] Bluetooth: hci3: unexpected subevent 0x02 length: 507 > 260
[  666.838112][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  666.844792][   T55] Bluetooth: hci3: unknown advertising packet type: 0xe9
[  666.844819][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  666.859962][   T55] Bluetooth: hci3: Malformed LE Event: 0x02
[  666.872771][   T55] Bluetooth: hci3: unexpected subevent 0x02 length: 507 > 260
[  666.880330][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  666.887052][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  666.893732][   T55] Bluetooth: hci3: Malformed LE Event: 0x02
[  666.899827][   T55] Bluetooth: hci3: unexpected subevent 0x02 length: 507 > 260
[  666.912320][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  666.925674][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  666.933496][   T55] Bluetooth: hci3: Malformed LE Event: 0x02
[  666.940386][   T55] Bluetooth: hci3: unexpected subevent 0x02 length: 507 > 260
[  666.948251][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  666.955653][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  666.962346][   T55] Bluetooth: hci3: Malformed LE Event: 0x02
[  666.969080][   T55] Bluetooth: hci3: unexpected subevent 0x02 length: 507 > 260
[  666.976955][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  666.983643][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  666.990415][   T55] Bluetooth: hci3: Malformed LE Event: 0x02
[  666.996482][   T55] Bluetooth: hci3: unexpected subevent 0x02 length: 507 > 260
[  667.004037][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  667.011410][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  667.021224][   T55] Bluetooth: hci3: Malformed LE Event: 0x02
[  667.028670][   T55] Bluetooth: hci3: unexpected subevent 0x02 length: 507 > 260
[  667.037656][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  667.044346][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  667.052013][   T55] Bluetooth: hci3: Malformed LE Event: 0x02
[  667.058534][   T55] Bluetooth: hci3: unexpected subevent 0x02 length: 507 > 260
[  667.066687][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  667.073372][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  667.083894][   T55] Bluetooth: hci3: Malformed LE Event: 0x02
[  667.096431][   T55] Bluetooth: hci3: unexpected subevent 0x02 length: 507 > 260
[  667.104045][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  667.110778][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  667.117531][   T55] Bluetooth: hci3: Malformed LE Event: 0x02
[  667.123473][   T55] Bluetooth: hci3: unexpected subevent 0x02 length: 507 > 260
[  667.136170][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  667.142857][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  667.150553][   T55] Bluetooth: hci3: Malformed LE Event: 0x02
[  667.157227][   T55] Bluetooth: hci3: unexpected subevent 0x02 length: 507 > 260
[  667.164689][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  667.171452][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  667.178171][   T55] Bluetooth: hci3: Malformed LE Event: 0x02
[  667.184099][   T55] Bluetooth: hci3: unexpected subevent 0x02 length: 507 > 260
[  667.191678][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  667.198383][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  667.205068][   T55] Bluetooth: hci3: Malformed LE Event: 0x02
[  667.215587][   T55] Bluetooth: hci3: unexpected subevent 0x02 length: 507 > 260
[  667.223088][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  667.230992][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  667.238727][   T55] Bluetooth: hci3: Malformed LE Event: 0x02
[  667.244670][   T55] Bluetooth: hci3: unexpected subevent 0x02 length: 507 > 260
[  667.255458][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  667.263190][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  667.269931][   T55] Bluetooth: hci3: Malformed LE Event: 0x02
[  667.276190][   T55] Bluetooth: hci3: unexpected subevent 0x02 length: 507 > 260
[  667.283653][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  667.298526][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  667.305764][   T55] Bluetooth: hci3: Malformed LE Event: 0x02
[  667.311709][   T55] Bluetooth: hci3: unexpected subevent 0x02 length: 507 > 260
[  667.320083][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  667.326849][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  667.333538][   T55] Bluetooth: hci3: Malformed LE Event: 0x02
[  667.340510][   T55] Bluetooth: hci3: unexpected subevent 0x02 length: 507 > 260
[  667.348509][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  667.355196][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  667.365621][   T55] Bluetooth: hci3: Malformed LE Event: 0x02
[  667.371570][   T55] Bluetooth: hci3: unexpected subevent 0x02 length: 507 > 260
[  667.379110][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  667.386313][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  667.393005][   T55] Bluetooth: hci3: Malformed LE Event: 0x02
[  667.399011][   T55] Bluetooth: hci3: unexpected subevent 0x02 length: 507 > 260
[  667.406502][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  667.413191][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  667.420523][   T55] Bluetooth: hci3: Malformed LE Event: 0x02
[  667.426574][   T55] Bluetooth: hci3: unexpected subevent 0x02 length: 507 > 260
[  667.434122][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  667.442051][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  667.448978][   T55] Bluetooth: hci3: Malformed LE Event: 0x02
[  667.455218][   T55] Bluetooth: hci3: unexpected subevent 0x02 length: 507 > 260
[  667.464596][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  667.471645][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  667.485536][   T55] Bluetooth: hci3: Malformed LE Event: 0x02
[  667.491852][   T55] Bluetooth: hci3: unexpected subevent 0x02 length: 507 > 260
[  667.499468][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  667.506179][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  667.512884][   T55] Bluetooth: hci3: Malformed LE Event: 0x02
[  667.518951][   T55] Bluetooth: hci3: unexpected subevent 0x02 length: 507 > 260
[  667.527195][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  667.533878][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  667.545557][   T55] Bluetooth: hci3: Malformed LE Event: 0x02
[  667.551541][   T55] Bluetooth: hci3: unexpected subevent 0x02 length: 507 > 260
[  667.559215][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  667.567228][   T55] Bluetooth: hci3: Dropping invalid advertising data
[  667.573921][   T55] Bluetooth: hci3: Malformed LE Event: 0x02
[  668.581098][T15882] binder: 15878:15882 ioctl 41045508 1 returned -22
[  668.748217][T15887] binder: 15878:15887 ioctl 40081271 38 returned -22
[  668.829977][T15889] netlink: 392 bytes leftover after parsing attributes in process `syz.1.2202'.
[  668.959522][T15890] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78000
[  669.118954][T15890] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  669.250031][T15890] memcg:ffff888034137101
[  669.322527][T15890] anon flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  669.358565][T15886] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  669.397146][T15890] page_type: f5(slab)
[  669.421836][T15890] raw: 00fff00000000040 ffff8881447eeb40 0000000000000000 dead000000000001
[  669.536574][T15890] raw: 0000000000000000 0000000000090009 00000000f5000000 ffff888034137101
[  669.654078][T15890] head: 00fff00000000040 ffff8881447eeb40 0000000000000000 dead000000000001
[  669.746059][T15890] head: 0000000000000000 0000000000090009 00000000f5000000 ffff888034137101
[  669.754772][T15890] head: 00fff00000000003 ffffea0001e00001 00000000ffffffff 00000000ffffffff
[  669.863221][T15890] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  669.901634][T15890] page dumped because: unmovable page
[  669.938245][T15890] page_owner tracks the page as allocated
[  669.944004][T15890] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 1135, tgid 1135 (kworker/u8:5), ts 591197220209, free_ts 588043569604
[  670.028187][T15890]  post_alloc_hook+0x181/0x1b0
[  670.044285][T15890]  get_page_from_freelist+0x135c/0x3920
[  670.059068][T15890]  __alloc_frozen_pages_noprof+0x263/0x23a0
[  670.072488][T15890]  alloc_pages_mpol+0x1fb/0x550
[  670.085229][T15890]  new_slab+0x244/0x340
[  670.095352][T15890]  ___slab_alloc+0xd9c/0x1940
[  670.108929][T15890]  __slab_alloc.constprop.0+0x56/0xb0
[  670.124514][T15890]  kmem_cache_alloc_noprof+0xef/0x3b0
[  670.141018][T15890]  sk_prot_alloc+0x60/0x2a0
[  670.160976][T15890]  sk_clone_lock+0x74/0x12e0
[  670.170605][T15890]  inet_csk_clone_lock+0x2a/0x750
[  670.183345][T15890]  tcp_create_openreq_child+0x34/0x1980
[  670.198345][T15890]  tcp_v4_syn_recv_sock+0x115/0x1250
[  670.212347][T15890]  tcp_v6_syn_recv_sock+0x1353/0x2480
[  670.224980][T15890]  tcp_check_req+0x69a/0x1f80
[  670.240186][T15890]  tcp_v4_rcv+0x19b0/0x4640
[  670.251908][T15890] page last free pid 5815 tgid 5815 stack trace:
[  670.267731][T15890]  __free_frozen_pages+0x69d/0xff0
[  670.280206][T15890]  __folio_put+0x329/0x450
[  670.290131][T15890]  skb_release_data+0x618/0x960
[  670.302618][T15890]  __kfree_skb+0x4f/0x70
[  670.313642][T15890]  tcp_ack+0x19b2/0x5c90
[  670.324647][T15890]  tcp_rcv_established+0x536/0x2180
[  670.340067][T15890]  tcp_v4_do_rcv+0x5ca/0xa90
[  670.350149][T15890]  tcp_v4_rcv+0x3601/0x4640
[  670.362502][T15890]  ip_protocol_deliver_rcu+0xba/0x4c0
[  670.374562][T15890]  ip_local_deliver_finish+0x316/0x570
[  670.388239][T15890]  ip_local_deliver+0x18e/0x1f0
[  670.401093][T15890]  ip_sublist_rcv_finish+0x2c1/0x620
[  670.413830][T15890]  ip_list_rcv_finish+0x552/0x720
[  670.426565][T15890]  ip_list_rcv+0x335/0x450
[  670.441169][T15890]  __netif_receive_skb_list_core+0x752/0x950
[  670.457581][T15890]  netif_receive_skb_list_internal+0x752/0xdb0
[  671.111148][T15929] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2210'.
[  671.228856][T15929] team_slave_0 (unregistering): left promiscuous mode
[  671.265769][T15929] team_slave_0 (unregistering): left allmulticast mode
[  671.279700][T15937] FAULT_INJECTION: forcing a failure.
[  671.279700][T15937] name failslab, interval 1, probability 0, space 0, times 0
[  671.298973][T15929] team0: Port device team_slave_0 removed
[  671.315032][T15937] CPU: 0 UID: 0 PID: 15937 Comm: syz.1.2211 Not tainted 6.15.0-rc4-syzkaller-00147-gebd297a2affa #0 PREEMPT(full) 
[  671.315074][T15937] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  671.315089][T15937] Call Trace:
[  671.315096][T15937]  <TASK>
[  671.315105][T15937]  dump_stack_lvl+0x16c/0x1f0
[  671.315141][T15937]  should_fail_ex+0x512/0x640
[  671.315174][T15937]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  671.315218][T15937]  should_failslab+0xc2/0x120
[  671.315247][T15937]  __kmalloc_cache_noprof+0x6a/0x3e0
[  671.315287][T15937]  ? kobject_create_and_add+0x4a/0xf0
[  671.315330][T15937]  kobject_create_and_add+0x4a/0xf0
[  671.315369][T15937]  add_disk_fwnode+0x8d0/0x13a0
[  671.315410][T15937]  zram_add+0x494/0x6c0
[  671.315442][T15937]  ? __pfx_zram_add+0x10/0x10
[  671.315497][T15937]  ? find_held_lock+0x2b/0x80
[  671.315525][T15937]  ? __pfx_hot_add_show+0x10/0x10
[  671.315556][T15937]  ? __pfx_class_attr_show+0x10/0x10
[  671.315586][T15937]  hot_add_show+0x21/0x80
[  671.315617][T15937]  class_attr_show+0x6f/0xa0
[  671.315648][T15937]  sysfs_kf_seq_show+0x213/0x3e0
[  671.315689][T15937]  seq_read_iter+0x506/0x12c0
[  671.315737][T15937]  kernfs_fop_read_iter+0x40f/0x5a0
[  671.315767][T15937]  ? rw_verify_area+0xcf/0x680
[  671.315805][T15937]  vfs_read+0x8c8/0xc70
[  671.315830][T15937]  ? __pfx___mutex_lock+0x10/0x10
[  671.315884][T15937]  ? __pfx_vfs_read+0x10/0x10
[  671.315921][T15937]  ksys_read+0x12a/0x240
[  671.315939][T15937]  ? __pfx_ksys_read+0x10/0x10
[  671.315956][T15937]  ? rcu_is_watching+0x12/0xc0
[  671.315982][T15937]  do_syscall_64+0xcd/0x230
[  671.316012][T15937]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  671.316032][T15937] RIP: 0033:0x7fad2418e969
[  671.316048][T15937] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  671.316067][T15937] RSP: 002b:00007fad250b0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  671.316085][T15937] RAX: ffffffffffffffda RBX: 00007fad243b6080 RCX: 00007fad2418e969
[  671.316099][T15937] RDX: 0000000000001000 RSI: 0000200000000ec0 RDI: 000000000000000c
[  671.316112][T15937] RBP: 00007fad24210ab1 R08: 0000000000000000 R09: 0000000000000000
[  671.316124][T15937] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  671.316136][T15937] R13: 0000000000000000 R14: 00007fad243b6080 R15: 00007ffd0b947568
[  671.316162][T15937]  </TASK>
[  672.206546][T15948] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2214'.
[  672.751145][T15957] FAULT_INJECTION: forcing a failure.
[  672.751145][T15957] name failslab, interval 1, probability 0, space 0, times 0
[  672.825753][T15957] CPU: 0 UID: 0 PID: 15957 Comm: syz.1.2218 Not tainted 6.15.0-rc4-syzkaller-00147-gebd297a2affa #0 PREEMPT(full) 
[  672.825791][T15957] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  672.825805][T15957] Call Trace:
[  672.825812][T15957]  <TASK>
[  672.825820][T15957]  dump_stack_lvl+0x16c/0x1f0
[  672.825854][T15957]  should_fail_ex+0x512/0x640
[  672.825887][T15957]  ? fs_reclaim_acquire+0xae/0x150
[  672.825925][T15957]  ? tomoyo_encode2+0x100/0x3e0
[  672.825955][T15957]  should_failslab+0xc2/0x120
[  672.825983][T15957]  __kmalloc_noprof+0xd2/0x510
[  672.826016][T15957]  tomoyo_encode2+0x100/0x3e0
[  672.826052][T15957]  tomoyo_encode+0x29/0x50
[  672.826082][T15957]  tomoyo_realpath_from_path+0x18f/0x6e0
[  672.826117][T15957]  ? tomoyo_profile+0x47/0x60
[  672.826155][T15957]  tomoyo_path_number_perm+0x245/0x580
[  672.826181][T15957]  ? tomoyo_path_number_perm+0x237/0x580
[  672.826211][T15957]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  672.826240][T15957]  ? find_held_lock+0x2b/0x80
[  672.826288][T15957]  ? find_held_lock+0x2b/0x80
[  672.826308][T15957]  ? hook_file_ioctl_common+0x145/0x410
[  672.826340][T15957]  ? __fget_files+0x20e/0x3c0
[  672.826381][T15957]  security_file_ioctl+0x9b/0x240
[  672.826412][T15957]  __x64_sys_ioctl+0xb7/0x200
[  672.826446][T15957]  do_syscall_64+0xcd/0x230
[  672.826480][T15957]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  672.826503][T15957] RIP: 0033:0x7fad2418e969
[  672.826521][T15957] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  672.826544][T15957] RSP: 002b:00007fad250d1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  672.826565][T15957] RAX: ffffffffffffffda RBX: 00007fad243b5fa0 RCX: 00007fad2418e969
[  672.826581][T15957] RDX: 0000000000000000 RSI: 0000000000008953 RDI: 0000000000000004
[  672.826595][T15957] RBP: 00007fad250d1090 R08: 0000000000000000 R09: 0000000000000000
[  672.826608][T15957] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  672.826621][T15957] R13: 0000000000000000 R14: 00007fad243b5fa0 R15: 00007ffd0b947568
[  672.826650][T15957]  </TASK>
[  672.826668][T15957] ERROR: Out of memory at tomoyo_realpath_from_path.
[  674.850548][T15995] FAULT_INJECTION: forcing a failure.
[  674.850548][T15995] name failslab, interval 1, probability 0, space 0, times 0
[  674.973946][T16000] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(3)
[  675.015062][T15995] CPU: 0 UID: 0 PID: 15995 Comm: syz.2.2223 Not tainted 6.15.0-rc4-syzkaller-00147-gebd297a2affa #0 PREEMPT(full) 
[  675.015097][T15995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  675.015112][T15995] Call Trace:
[  675.015120][T15995]  <TASK>
[  675.015128][T15995]  dump_stack_lvl+0x16c/0x1f0
[  675.015164][T15995]  should_fail_ex+0x512/0x640
[  675.015199][T15995]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  675.015242][T15995]  should_failslab+0xc2/0x120
[  675.015271][T15995]  __kmalloc_cache_noprof+0x6a/0x3e0
[  675.015310][T15995]  ? mark_held_locks+0x49/0x80
[  675.015339][T15995]  ? kobject_create_and_add+0x4a/0xf0
[  675.015376][T15995]  ? lockdep_hardirqs_on+0x7c/0x110
[  675.015409][T15995]  kobject_create_and_add+0x4a/0xf0
[  675.015448][T15995]  add_disk_fwnode+0x83b/0x13a0
[  675.015493][T15995]  zram_add+0x494/0x6c0
[  675.015525][T15995]  ? __pfx_zram_add+0x10/0x10
[  675.015577][T15995]  ? find_held_lock+0x2b/0x80
[  675.015604][T15995]  ? __pfx_hot_add_show+0x10/0x10
[  675.015645][T15995]  ? __pfx_class_attr_show+0x10/0x10
[  675.015675][T15995]  hot_add_show+0x21/0x80
[  675.015707][T15995]  class_attr_show+0x6f/0xa0
[  675.015739][T15995]  sysfs_kf_seq_show+0x213/0x3e0
[  675.015780][T15995]  seq_read_iter+0x506/0x12c0
[  675.015828][T15995]  kernfs_fop_read_iter+0x40f/0x5a0
[  675.015858][T15995]  ? rw_verify_area+0xcf/0x680
[  675.015897][T15995]  vfs_read+0x8c8/0xc70
[  675.015922][T15995]  ? __pfx___mutex_lock+0x10/0x10
[  675.015955][T15995]  ? __pfx_vfs_read+0x10/0x10
[  675.016003][T15995]  ksys_read+0x12a/0x240
[  675.016020][T15995]  ? __pfx_ksys_read+0x10/0x10
[  675.016037][T15995]  ? rcu_is_watching+0x12/0xc0
[  675.016062][T15995]  do_syscall_64+0xcd/0x230
[  675.016091][T15995]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  675.016112][T15995] RIP: 0033:0x7fb258d8e969
[  675.016127][T15995] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  675.016147][T15995] RSP: 002b:00007fb259b79038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  675.016165][T15995] RAX: ffffffffffffffda RBX: 00007fb258fb6080 RCX: 00007fb258d8e969
[  675.016178][T15995] RDX: 0000000000001000 RSI: 0000200000000ec0 RDI: 000000000000000c
[  675.016190][T15995] RBP: 00007fb258e10ab1 R08: 0000000000000000 R09: 0000000000000000
[  675.016202][T15995] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  675.016214][T15995] R13: 0000000000000000 R14: 00007fb258fb6080 R15: 00007ffe0568ea88
[  675.016240][T15995]  </TASK>
[  675.259797][    C0] vkms_vblank_simulate: vblank timer overrun
[  677.912190][T16036] Invalid ELF header magic: != ELF
[  679.062639][T16063] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(3)
[  684.565287][T16126] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(3)
[  684.908502][T16135] netlink: 8372 bytes leftover after parsing attributes in process `syz.0.2258'.
[  685.096828][   T55] Bluetooth: hci0: Unable to find connection for big 0xd2
[  685.932463][T16156] erspan0: entered allmulticast mode
[  686.303197][T16165] Invalid ELF header magic: != ELF
[  686.562467][T16176] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(3)
[  687.895078][   T30] audit: type=1800 audit(4294967642.790:14): pid=16195 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2271" name="dummy_udc" dev="gadgetfs" ino=5739 res=0 errno=0
[  687.915434][    C0] vkms_vblank_simulate: vblank timer overrun
[  689.104327][T16223] ACPI: EC: Assuming SCI_EVT clearing on QR_EC writes
[  689.424590][T16221] can: request_module (can-proto-3) failed.
[  689.544579][T16234] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(3)
[  689.565408][T16231] FAULT_INJECTION: forcing a failure.
[  689.565408][T16231] name failslab, interval 1, probability 0, space 0, times 0
[  689.610497][T16231] CPU: 0 UID: 0 PID: 16231 Comm: syz.1.2280 Not tainted 6.15.0-rc4-syzkaller-00147-gebd297a2affa #0 PREEMPT(full) 
[  689.610548][T16231] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  689.610561][T16231] Call Trace:
[  689.610569][T16231]  <TASK>
[  689.610577][T16231]  dump_stack_lvl+0x16c/0x1f0
[  689.610612][T16231]  should_fail_ex+0x512/0x640
[  689.610645][T16231]  ? __kmalloc_noprof+0xbf/0x510
[  689.610673][T16231]  ? drm_atomic_state_init+0x17b/0x320
[  689.610711][T16231]  should_failslab+0xc2/0x120
[  689.610739][T16231]  __kmalloc_noprof+0xd2/0x510
[  689.610771][T16231]  drm_atomic_state_init+0x17b/0x320
[  689.610801][T16231]  ? __kasan_kmalloc+0xaa/0xb0
[  689.610825][T16231]  drm_atomic_state_alloc+0xd3/0x120
[  689.610858][T16231]  drm_client_modeset_commit_atomic+0xcc/0x7e0
[  689.610888][T16231]  ? __pfx___might_resched+0x10/0x10
[  689.610915][T16231]  ? rcu_is_watching+0x12/0xc0
[  689.610936][T16231]  ? trace_contention_end+0xdd/0x130
[  689.610968][T16231]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  689.611029][T16231]  drm_client_modeset_commit_locked+0x14d/0x580
[  689.611063][T16231]  drm_client_modeset_commit+0x4f/0x80
[  689.611092][T16231]  __drm_fb_helper_restore_fbdev_mode_unlocked+0x19f/0x200
[  689.611119][T16231]  ? __pfx_drm_fbdev_client_restore+0x10/0x10
[  689.611155][T16231]  drm_fbdev_client_restore+0x2c/0x40
[  689.611189][T16231]  drm_client_dev_restore+0x1f3/0x2a0
[  689.611221][T16231]  drm_release+0x2c4/0x360
[  689.611250][T16231]  ? __pfx_drm_release+0x10/0x10
[  689.611273][T16231]  __fput+0x3ff/0xb70
[  689.611308][T16231]  task_work_run+0x14d/0x240
[  689.611345][T16231]  ? __pfx_task_work_run+0x10/0x10
[  689.611381][T16231]  ? __pfx___do_sys_close_range+0x10/0x10
[  689.611402][T16231]  ? syscall_user_dispatch+0x78/0x140
[  689.611446][T16231]  syscall_exit_to_user_mode+0x27b/0x2a0
[  689.611480][T16231]  do_syscall_64+0xda/0x230
[  689.611513][T16231]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  689.611536][T16231] RIP: 0033:0x7fad2418e969
[  689.611554][T16231] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  689.611576][T16231] RSP: 002b:00007fad250d1038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  689.611597][T16231] RAX: 0000000000000000 RBX: 00007fad243b5fa0 RCX: 00007fad2418e969
[  689.611612][T16231] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  689.611625][T16231] RBP: 00007fad24210ab1 R08: 0000000000000000 R09: 0000000000000000
[  689.611638][T16231] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  689.611653][T16231] R13: 0000000000000000 R14: 00007fad243b5fa0 R15: 00007ffd0b947568
[  689.611693][T16231]  </TASK>
[  689.877062][    C0] vkms_vblank_simulate: vblank timer overrun
[  690.347559][   T55] Bluetooth: hci1: Unable to find connection for big 0xd2
[  690.448340][T16246] bond0: no command found in slaves file - use +ifname or -ifname
[  690.759430][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  690.765958][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  692.024963][T16274] FAULT_INJECTION: forcing a failure.
[  692.024963][T16274] name failslab, interval 1, probability 0, space 0, times 0
[  692.094107][T16274] CPU: 0 UID: 0 PID: 16274 Comm: syz.2.2291 Not tainted 6.15.0-rc4-syzkaller-00147-gebd297a2affa #0 PREEMPT(full) 
[  692.094138][T16274] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  692.094150][T16274] Call Trace:
[  692.094157][T16274]  <TASK>
[  692.094164][T16274]  dump_stack_lvl+0x16c/0x1f0
[  692.094196][T16274]  should_fail_ex+0x512/0x640
[  692.094224][T16274]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  692.094262][T16274]  should_failslab+0xc2/0x120
[  692.094287][T16274]  __kmalloc_cache_noprof+0x6a/0x3e0
[  692.094320][T16274]  ? ww_mutex_lock+0x37/0x160
[  692.094347][T16274]  ? vkms_plane_duplicate_state+0x45/0x130
[  692.094378][T16274]  ? modeset_lock+0x114/0x6e0
[  692.094399][T16274]  vkms_plane_duplicate_state+0x45/0x130
[  692.094438][T16274]  drm_atomic_get_plane_state+0x20b/0x590
[  692.094468][T16274]  drm_client_modeset_commit_atomic+0x237/0x7e0
[  692.094495][T16274]  ? __pfx___might_resched+0x10/0x10
[  692.094523][T16274]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  692.094577][T16274]  drm_client_modeset_commit_locked+0x14d/0x580
[  692.094607][T16274]  drm_client_modeset_commit+0x4f/0x80
[  692.094632][T16274]  __drm_fb_helper_restore_fbdev_mode_unlocked+0x19f/0x200
[  692.094656][T16274]  ? __pfx_drm_fbdev_client_restore+0x10/0x10
[  692.094690][T16274]  drm_fbdev_client_restore+0x2c/0x40
[  692.094738][T16274]  drm_client_dev_restore+0x1f3/0x2a0
[  692.094772][T16274]  drm_release+0x2c4/0x360
[  692.094801][T16274]  ? __pfx_drm_release+0x10/0x10
[  692.094826][T16274]  __fput+0x3ff/0xb70
[  692.094862][T16274]  task_work_run+0x14d/0x240
[  692.094900][T16274]  ? __pfx_task_work_run+0x10/0x10
[  692.094938][T16274]  ? __pfx___do_sys_close_range+0x10/0x10
[  692.094960][T16274]  ? syscall_user_dispatch+0x78/0x140
[  692.095002][T16274]  syscall_exit_to_user_mode+0x27b/0x2a0
[  692.095036][T16274]  do_syscall_64+0xda/0x230
[  692.095072][T16274]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  692.095096][T16274] RIP: 0033:0x7fb258d8e969
[  692.095114][T16274] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  692.095137][T16274] RSP: 002b:00007fb259b9a038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  692.095164][T16274] RAX: 0000000000000000 RBX: 00007fb258fb5fa0 RCX: 00007fb258d8e969
[  692.095179][T16274] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  692.095192][T16274] RBP: 00007fb258e10ab1 R08: 0000000000000000 R09: 0000000000000000
[  692.095206][T16274] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  692.095220][T16274] R13: 0000000000000000 R14: 00007fb258fb5fa0 R15: 00007ffe0568ea88
[  692.095251][T16274]  </TASK>
[  692.354031][    C0] vkms_vblank_simulate: vblank timer overrun
[  692.718126][T16281] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(3)
[  693.158275][T16290] FAULT_INJECTION: forcing a failure.
[  693.158275][T16290] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  693.211843][T16290] CPU: 0 UID: 0 PID: 16290 Comm: syz.4.2297 Not tainted 6.15.0-rc4-syzkaller-00147-gebd297a2affa #0 PREEMPT(full) 
[  693.211872][T16290] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  693.211884][T16290] Call Trace:
[  693.211890][T16290]  <TASK>
[  693.211896][T16290]  dump_stack_lvl+0x16c/0x1f0
[  693.211926][T16290]  should_fail_ex+0x512/0x640
[  693.211955][T16290]  _copy_to_user+0x32/0xd0
[  693.211985][T16290]  copy_siginfo_to_user+0x27/0xc0
[  693.212009][T16290]  x64_setup_rt_frame+0x811/0xcf0
[  693.212041][T16290]  ? __pfx_x64_setup_rt_frame+0x10/0x10
[  693.212066][T16290]  ? find_held_lock+0x2b/0x80
[  693.212088][T16290]  arch_do_signal_or_restart+0x5b6/0x7a0
[  693.212115][T16290]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  693.212146][T16290]  ? ksys_read+0x1b9/0x240
[  693.212162][T16290]  ? __pfx_ksys_read+0x10/0x10
[  693.212180][T16290]  ? rcu_is_watching+0x12/0xc0
[  693.212202][T16290]  syscall_exit_to_user_mode+0x150/0x2a0
[  693.212230][T16290]  do_syscall_64+0xda/0x230
[  693.212259][T16290]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  693.212279][T16290] RIP: 0033:0x7faa04f8e967
[  693.212293][T16290] Code: ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 <0f> 05 48 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89
[  693.212312][T16290] RSP: 002b:00007faa05e93038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  693.212330][T16290] RAX: 0000000000000000 RBX: 00007faa051b5fa0 RCX: 00007faa04f8e969
[  693.212343][T16290] RDX: 00000000000003ff RSI: 0000000000000000 RDI: 0000000000000003
[  693.212359][T16290] RBP: 00007faa05e93090 R08: 0000000000000000 R09: 0000000000000000
[  693.212371][T16290] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  693.212383][T16290] R13: 0000000000000000 R14: 00007faa051b5fa0 R15: 00007ffd683c0688
[  693.212407][T16290]  </TASK>
[  693.394637][    C0] vkms_vblank_simulate: vblank timer overrun
[  693.940696][T16307] netlink: 338 bytes leftover after parsing attributes in process `syz.0.2300'.
[  693.996146][T16307] veth1_macvtap: left promiscuous mode
[  694.407634][T16311] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2301'.
[  696.429220][T16332] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  696.492378][T16332] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  696.516529][T16338] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(3)
[  696.536368][T16336] bond0: no command found in slaves file - use +ifname or -ifname
[  697.639329][T16354] netlink: 314 bytes leftover after parsing attributes in process `syz.2.2309'.
[  697.839991][T16359] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(3)
[  697.916797][T16363] netlink: 338 bytes leftover after parsing attributes in process `syz.2.2312'.
[  699.198043][T16376] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2314'.
[  699.640555][T16388] vivid-007: =================  START STATUS  =================
[  699.677422][T16388] vivid-007: Generate PTS: true
[  699.708281][T16388] vivid-007: Generate SCR: true
[  699.737945][T16388] tpg source WxH: 640x360 (Y'CbCr)
[  699.759900][T16388] tpg field: 1
[  699.793778][T16388] tpg crop: (0,0)/640x360
[  699.838209][T16388] tpg compose: (0,0)/640x360
[  699.910212][T16388] tpg colorspace: 8
[  699.914137][T16388] tpg transfer function: 0/0
[  699.971014][T16388] tpg Y'CbCr encoding: 0/0
[  699.996628][T16388] tpg quantization: 0/0
[  700.028840][T16388] tpg RGB range: 0/2
[  700.048182][T16388] vivid-007: ==================  END STATUS  ==================
[  700.583275][T16400] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(3)
[  700.688005][T16394] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  700.722336][T16394] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  701.667335][T16412] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2329'.
[  701.708137][T16412] veth1_macvtap: entered promiscuous mode
[  701.749215][T16412] macsec0: entered allmulticast mode
[  701.754521][T16412] veth1_macvtap: entered allmulticast mode
[  701.849316][T16378] bridge0: port 2(team0) entered blocking state
[  701.887841][T16378] bridge0: port 2(team0) entered disabled state
[  701.931778][T16378] team0: entered allmulticast mode
[  701.975246][T16378] team_slave_0: entered allmulticast mode
[  702.022320][T16378] team_slave_1: entered allmulticast mode
[  702.084060][T16378] team0: entered promiscuous mode
[  702.130827][T16378] team_slave_0: entered promiscuous mode
[  702.178613][T16378] team_slave_1: entered promiscuous mode
[  702.226265][T16378] bridge0: port 2(team0) entered blocking state
[  702.232612][T16378] bridge0: port 2(team0) entered forwarding state
[  702.383778][T16414] bond0: no command found in slaves file - use +ifname or -ifname
[  702.560274][T16423] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(3)
[  703.636078][T16435] FAULT_INJECTION: forcing a failure.
[  703.636078][T16435] name failslab, interval 1, probability 0, space 0, times 0
[  703.692487][T16435] CPU: 0 UID: 0 PID: 16435 Comm: syz.0.2326 Not tainted 6.15.0-rc4-syzkaller-00147-gebd297a2affa #0 PREEMPT(full) 
[  703.692517][T16435] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  703.692530][T16435] Call Trace:
[  703.692536][T16435]  <TASK>
[  703.692544][T16435]  dump_stack_lvl+0x16c/0x1f0
[  703.692575][T16435]  should_fail_ex+0x512/0x640
[  703.692603][T16435]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  703.692646][T16435]  should_failslab+0xc2/0x120
[  703.692671][T16435]  __kmalloc_cache_noprof+0x6a/0x3e0
[  703.692704][T16435]  ? ww_mutex_lock+0x37/0x160
[  703.692731][T16435]  ? vkms_plane_duplicate_state+0x45/0x130
[  703.692763][T16435]  ? modeset_lock+0x114/0x6e0
[  703.692784][T16435]  vkms_plane_duplicate_state+0x45/0x130
[  703.692816][T16435]  drm_atomic_get_plane_state+0x20b/0x590
[  703.692845][T16435]  drm_client_modeset_commit_atomic+0x237/0x7e0
[  703.692872][T16435]  ? __pfx___might_resched+0x10/0x10
[  703.692903][T16435]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  703.692956][T16435]  drm_client_modeset_commit_locked+0x14d/0x580
[  703.692986][T16435]  drm_client_modeset_commit+0x4f/0x80
[  703.693012][T16435]  __drm_fb_helper_restore_fbdev_mode_unlocked+0x19f/0x200
[  703.693036][T16435]  ? __pfx_drm_fbdev_client_restore+0x10/0x10
[  703.693068][T16435]  drm_fbdev_client_restore+0x2c/0x40
[  703.693097][T16435]  drm_client_dev_restore+0x1f3/0x2a0
[  703.693126][T16435]  drm_release+0x2c4/0x360
[  703.693151][T16435]  ? __pfx_drm_release+0x10/0x10
[  703.693172][T16435]  __fput+0x3ff/0xb70
[  703.693202][T16435]  task_work_run+0x14d/0x240
[  703.693234][T16435]  ? __pfx_task_work_run+0x10/0x10
[  703.693265][T16435]  ? __pfx___do_sys_close_range+0x10/0x10
[  703.693284][T16435]  ? syscall_user_dispatch+0x78/0x140
[  703.693320][T16435]  syscall_exit_to_user_mode+0x27b/0x2a0
[  703.693348][T16435]  do_syscall_64+0xda/0x230
[  703.693378][T16435]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  703.693398][T16435] RIP: 0033:0x7f2a6d58e969
[  703.693413][T16435] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  703.693433][T16435] RSP: 002b:00007f2a6e3f6038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  703.693452][T16435] RAX: 0000000000000000 RBX: 00007f2a6d7b5fa0 RCX: 00007f2a6d58e969
[  703.693464][T16435] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  703.693476][T16435] RBP: 00007f2a6d610ab1 R08: 0000000000000000 R09: 0000000000000000
[  703.693488][T16435] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  703.693500][T16435] R13: 0000000000000000 R14: 00007f2a6d7b5fa0 R15: 00007ffed7aa1cc8
[  703.693526][T16435]  </TASK>
[  704.154847][T16440] openvswitch: netlink: Key type 261 is out of range max 32
[  704.588223][T16451] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2327'.
[  704.625005][T16456] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2333'.
[  704.823721][T16458] vivid-007: =================  START STATUS  =================
[  704.860652][T16458] vivid-007: Generate PTS: true
[  704.883441][T16458] vivid-007: Generate SCR: true
[  704.922165][T16458] tpg source WxH: 640x360 (Y'CbCr)
[  704.949906][T16458] tpg field: 1
[  704.966813][T16458] tpg crop: (0,0)/640x360
[  704.979718][T16458] tpg compose: (0,0)/640x360
[  704.993286][T16458] tpg colorspace: 8
[  705.003381][T16458] tpg transfer function: 0/0
[  705.014436][T16458] tpg Y'CbCr encoding: 0/0
[  705.048984][T16458] tpg quantization: 0/0
[  705.072774][T16458] tpg RGB range: 0/2
[  705.097612][T16458] vivid-007: ==================  END STATUS  ==================
[  705.622559][T16472] netlink: 93 bytes leftover after parsing attributes in process `syz.2.2338'.
[  705.780248][T16473] FAULT_INJECTION: forcing a failure.
[  705.780248][T16473] name failslab, interval 1, probability 0, space 0, times 0
[  705.889166][T16473] CPU: 0 UID: 0 PID: 16473 Comm: syz.0.2339 Not tainted 6.15.0-rc4-syzkaller-00147-gebd297a2affa #0 PREEMPT(full) 
[  705.889196][T16473] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  705.889209][T16473] Call Trace:
[  705.889215][T16473]  <TASK>
[  705.889223][T16473]  dump_stack_lvl+0x16c/0x1f0
[  705.889254][T16473]  should_fail_ex+0x512/0x640
[  705.889283][T16473]  ? __kmalloc_noprof+0xbf/0x510
[  705.889308][T16473]  ? drm_atomic_state_init+0x17b/0x320
[  705.889346][T16473]  should_failslab+0xc2/0x120
[  705.889388][T16473]  __kmalloc_noprof+0xd2/0x510
[  705.889420][T16473]  drm_atomic_state_init+0x17b/0x320
[  705.889451][T16473]  ? __kasan_kmalloc+0xaa/0xb0
[  705.889476][T16473]  drm_atomic_state_alloc+0xd3/0x120
[  705.889513][T16473]  drm_client_modeset_commit_atomic+0xcc/0x7e0
[  705.889543][T16473]  ? __pfx___might_resched+0x10/0x10
[  705.889571][T16473]  ? rcu_is_watching+0x12/0xc0
[  705.889592][T16473]  ? trace_contention_end+0xdd/0x130
[  705.889624][T16473]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  705.889684][T16473]  drm_client_modeset_commit_locked+0x14d/0x580
[  705.889718][T16473]  drm_client_modeset_commit+0x4f/0x80
[  705.889748][T16473]  __drm_fb_helper_restore_fbdev_mode_unlocked+0x19f/0x200
[  705.889775][T16473]  ? __pfx_drm_fbdev_client_restore+0x10/0x10
[  705.889810][T16473]  drm_fbdev_client_restore+0x2c/0x40
[  705.889843][T16473]  drm_client_dev_restore+0x1f3/0x2a0
[  705.889877][T16473]  drm_release+0x2c4/0x360
[  705.889904][T16473]  ? __pfx_drm_release+0x10/0x10
[  705.889928][T16473]  __fput+0x3ff/0xb70
[  705.889963][T16473]  task_work_run+0x14d/0x240
[  705.890000][T16473]  ? __pfx_task_work_run+0x10/0x10
[  705.890036][T16473]  ? __pfx___do_sys_close_range+0x10/0x10
[  705.890057][T16473]  ? syscall_user_dispatch+0x78/0x140
[  705.890097][T16473]  syscall_exit_to_user_mode+0x27b/0x2a0
[  705.890130][T16473]  do_syscall_64+0xda/0x230
[  705.890164][T16473]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  705.890187][T16473] RIP: 0033:0x7f2a6d58e969
[  705.890204][T16473] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  705.890227][T16473] RSP: 002b:00007f2a6e3f6038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  705.890247][T16473] RAX: 0000000000000000 RBX: 00007f2a6d7b5fa0 RCX: 00007f2a6d58e969
[  705.890262][T16473] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  705.890275][T16473] RBP: 00007f2a6d610ab1 R08: 0000000000000000 R09: 0000000000000000
[  705.890288][T16473] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  705.890301][T16473] R13: 0000000000000000 R14: 00007f2a6d7b5fa0 R15: 00007ffed7aa1cc8
[  705.890332][T16473]  </TASK>
[  707.343800][T16504] vivid-007: =================  START STATUS  =================
[  707.369412][T16504] vivid-007: Generate PTS: true
[  707.427892][T16504] vivid-007: Generate SCR: true
[  707.444230][T16504] tpg source WxH: 640x360 (Y'CbCr)
[  707.464791][T16504] tpg field: 1
[  707.488426][T16504] tpg crop: (0,0)/640x360
[  707.508491][T16504] tpg compose: (0,0)/640x360
[  707.524078][T16504] tpg colorspace: 8
[  707.555598][T16504] tpg transfer function: 0/0
[  707.591711][T16504] tpg Y'CbCr encoding: 0/0
[  707.609635][T16504] tpg quantization: 0/0
[  707.624005][T16504] tpg RGB range: 0/2
[  707.643859][T16504] vivid-007: ==================  END STATUS  ==================
[  707.654419][T16510] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2347'.
[  707.926252][T16516] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2348'.
[  708.470630][   T30] audit: type=1800 audit(4294967663.370:15): pid=16522 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.2349" name="dummy_udc" dev="gadgetfs" ino=5739 res=0 errno=0
[  708.521188][T16524] FAULT_INJECTION: forcing a failure.
[  708.521188][T16524] name fail_futex, interval 1, probability 0, space 0, times 0
[  708.595843][T16524] CPU: 0 UID: 0 PID: 16524 Comm: syz.0.2350 Not tainted 6.15.0-rc4-syzkaller-00147-gebd297a2affa #0 PREEMPT(full) 
[  708.595886][T16524] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  708.595899][T16524] Call Trace:
[  708.595907][T16524]  <TASK>
[  708.595914][T16524]  dump_stack_lvl+0x16c/0x1f0
[  708.595957][T16524]  should_fail_ex+0x512/0x640
[  708.596000][T16524]  get_futex_key+0x49e/0x1000
[  708.596022][T16524]  ? __pfx_get_futex_key+0x10/0x10
[  708.596050][T16524]  futex_wake+0xe7/0x4e0
[  708.596072][T16524]  ? rcu_is_watching+0x12/0xc0
[  708.596092][T16524]  ? __pfx_futex_wake+0x10/0x10
[  708.596127][T16524]  do_futex+0x1e3/0x350
[  708.596148][T16524]  ? __pfx_do_futex+0x10/0x10
[  708.596166][T16524]  ? __might_fault+0xe3/0x190
[  708.596194][T16524]  mm_release+0x24e/0x300
[  708.596215][T16524]  do_exit+0x898/0x2c30
[  708.596239][T16524]  ? __pfx_futex_wake_mark+0x10/0x10
[  708.596267][T16524]  ? __pfx_do_exit+0x10/0x10
[  708.596297][T16524]  ? do_raw_spin_lock+0x12c/0x2b0
[  708.596326][T16524]  ? find_held_lock+0x2b/0x80
[  708.596348][T16524]  do_group_exit+0xd3/0x2a0
[  708.596377][T16524]  get_signal+0x2673/0x26d0
[  708.596407][T16524]  ? __pfx_get_signal+0x10/0x10
[  708.596429][T16524]  ? do_futex+0x122/0x350
[  708.596449][T16524]  ? __pfx_do_futex+0x10/0x10
[  708.596471][T16524]  arch_do_signal_or_restart+0x8f/0x7a0
[  708.596501][T16524]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  708.596536][T16524]  ? syscall_user_dispatch+0x78/0x140
[  708.596571][T16524]  syscall_exit_to_user_mode+0x150/0x2a0
[  708.596599][T16524]  do_syscall_64+0xda/0x230
[  708.596627][T16524]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  708.596647][T16524] RIP: 0033:0x7f2a6d58e969
[  708.596662][T16524] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  708.596681][T16524] RSP: 002b:00007f2a6e3f60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  708.596703][T16524] RAX: fffffffffffffe00 RBX: 00007f2a6d7b5fa8 RCX: 00007f2a6d58e969
[  708.596716][T16524] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f2a6d7b5fa8
[  708.596728][T16524] RBP: 00007f2a6d7b5fa0 R08: 0000000000000000 R09: 0000000000000000
[  708.596740][T16524] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2a6d7b5fac
[  708.596752][T16524] R13: 0000000000000000 R14: 00007ffed7aa1be0 R15: 00007ffed7aa1cc8
[  708.596776][T16524]  </TASK>
[  709.390658][T16530] FAULT_INJECTION: forcing a failure.
[  709.390658][T16530] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  709.515532][T16530] CPU: 0 UID: 0 PID: 16530 Comm: syz.2.2351 Not tainted 6.15.0-rc4-syzkaller-00147-gebd297a2affa #0 PREEMPT(full) 
[  709.515566][T16530] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  709.515580][T16530] Call Trace:
[  709.515587][T16530]  <TASK>
[  709.515596][T16530]  dump_stack_lvl+0x16c/0x1f0
[  709.515630][T16530]  should_fail_ex+0x512/0x640
[  709.515665][T16530]  core_sys_select+0x4b2/0xbe0
[  709.515705][T16530]  ? __pfx_core_sys_select+0x10/0x10
[  709.515747][T16530]  ? proc_fail_nth_write+0x9f/0x250
[  709.515804][T16530]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  709.515843][T16530]  kern_select+0x15d/0x1e0
[  709.515893][T16530]  ? __pfx_kern_select+0x10/0x10
[  709.515942][T16530]  ? __pfx_ksys_write+0x10/0x10
[  709.515979][T16530]  __x64_sys_select+0xbd/0x160
[  709.516008][T16530]  ? do_syscall_64+0x91/0x230
[  709.516033][T16530]  ? lockdep_hardirqs_on+0x7c/0x110
[  709.516058][T16530]  do_syscall_64+0xcd/0x230
[  709.516086][T16530]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  709.516105][T16530] RIP: 0033:0x7fb258d8e969
[  709.516120][T16530] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  709.516139][T16530] RSP: 002b:00007fb259b58038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017
[  709.516157][T16530] RAX: ffffffffffffffda RBX: 00007fb258fb6160 RCX: 00007fb258d8e969
[  709.516170][T16530] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000e
[  709.516181][T16530] RBP: 00007fb259b58090 R08: 0000000000000000 R09: 0000000000000000
[  709.516193][T16530] R10: 00002000000002c0 R11: 0000000000000246 R12: 0000000000000001
[  709.516204][T16530] R13: 0000000000000001 R14: 00007fb258fb6160 R15: 00007ffe0568ea88
[  709.516233][T16530]  </TASK>
[  710.296229][T16542] FAULT_INJECTION: forcing a failure.
[  710.296229][T16542] name failslab, interval 1, probability 0, space 0, times 0
[  710.391501][T16543] netlink: 'syz.2.2356': attribute type 1 has an invalid length.
[  710.433693][T16542] CPU: 0 UID: 0 PID: 16542 Comm: syz.2.2356 Not tainted 6.15.0-rc4-syzkaller-00147-gebd297a2affa #0 PREEMPT(full) 
[  710.433723][T16542] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  710.433735][T16542] Call Trace:
[  710.433741][T16542]  <TASK>
[  710.433748][T16542]  dump_stack_lvl+0x16c/0x1f0
[  710.433779][T16542]  should_fail_ex+0x512/0x640
[  710.433807][T16542]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  710.433833][T16542]  should_failslab+0xc2/0x120
[  710.433857][T16542]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  710.433880][T16542]  ? security_file_alloc+0x34/0x2b0
[  710.433910][T16542]  security_file_alloc+0x34/0x2b0
[  710.433936][T16542]  init_file+0x93/0x4c0
[  710.433960][T16542]  alloc_empty_file+0x73/0x1e0
[  710.433986][T16542]  path_openat+0xe0/0x2d40
[  710.434003][T16542]  ? __x64_sys_openat+0x174/0x210
[  710.434030][T16542]  ? do_syscall_64+0xcd/0x230
[  710.434056][T16542]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  710.434084][T16542]  ? __pfx_path_openat+0x10/0x10
[  710.434109][T16542]  do_filp_open+0x20b/0x470
[  710.434128][T16542]  ? __pfx_do_filp_open+0x10/0x10
[  710.434164][T16542]  ? alloc_fd+0x471/0x7d0
[  710.434208][T16542]  do_sys_openat2+0x11b/0x1d0
[  710.434235][T16542]  ? __pfx_do_sys_openat2+0x10/0x10
[  710.434272][T16542]  __x64_sys_openat+0x174/0x210
[  710.434300][T16542]  ? __pfx___x64_sys_openat+0x10/0x10
[  710.434329][T16542]  ? rcu_is_watching+0x12/0xc0
[  710.434355][T16542]  do_syscall_64+0xcd/0x230
[  710.434384][T16542]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  710.434404][T16542] RIP: 0033:0x7fb258d8e969
[  710.434419][T16542] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  710.434439][T16542] RSP: 002b:00007fb259b9a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  710.434458][T16542] RAX: ffffffffffffffda RBX: 00007fb258fb5fa0 RCX: 00007fb258d8e969
[  710.434471][T16542] RDX: 00000000000c0082 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  710.434484][T16542] RBP: 00007fb258e10ab1 R08: 0000000000000000 R09: 0000000000000000
[  710.434496][T16542] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  710.434508][T16542] R13: 0000000000000000 R14: 00007fb258fb5fa0 R15: 00007ffe0568ea88
[  710.434533][T16542]  </TASK>
[  711.231233][T16554] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2359'.
[  711.704393][T16562] random: crng reseeded on system resumption
[  713.596761][T16593] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(3)
[  713.699495][T16597] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2374'.
[  714.739892][T16614] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2378'.
[  715.730340][T16631] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(3)
[  715.748599][T16632] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2385'.
[  716.718270][T16649] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input34
[  717.742375][T16659] FAULT_INJECTION: forcing a failure.
[  717.742375][T16659] name failslab, interval 1, probability 0, space 0, times 0
[  717.776116][T16666] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2394'.
[  717.873654][T16659] CPU: 0 UID: 0 PID: 16659 Comm: syz.2.2400 Not tainted 6.15.0-rc4-syzkaller-00147-gebd297a2affa #0 PREEMPT(full) 
[  717.873686][T16659] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  717.873700][T16659] Call Trace:
[  717.873706][T16659]  <TASK>
[  717.873714][T16659]  dump_stack_lvl+0x16c/0x1f0
[  717.873748][T16659]  should_fail_ex+0x512/0x640
[  717.873777][T16659]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  717.873816][T16659]  should_failslab+0xc2/0x120
[  717.873842][T16659]  __kmalloc_cache_noprof+0x6a/0x3e0
[  717.873878][T16659]  ? sctp_auth_shkey_create+0x9e/0x210
[  717.873914][T16659]  sctp_auth_shkey_create+0x9e/0x210
[  717.873948][T16659]  sctp_endpoint_new+0x562/0xcd0
[  717.873985][T16659]  sctp_init_sock+0xe2d/0x1330
[  717.874026][T16659]  ? __pfx_sctp_v6_init_sock+0x10/0x10
[  717.874055][T16659]  sctp_v6_init_sock+0x16/0x70
[  717.874082][T16659]  ? __pfx_sctp_v6_init_sock+0x10/0x10
[  717.874110][T16659]  inet6_create+0xb2d/0x1300
[  717.874132][T16659]  ? inet6_create+0x7f/0x1300
[  717.874153][T16659]  __sock_create+0x335/0x8d0
[  717.874186][T16659]  inet_ctl_sock_create+0x94/0x230
[  717.874213][T16659]  ? __pfx_inet_ctl_sock_create+0x10/0x10
[  717.874238][T16659]  ? lockdep_init_map_type+0x5c/0x280
[  717.874267][T16659]  ? do_init_timer+0xc9/0x110
[  717.874289][T16659]  ? __pfx_sctp_ctrlsock_init+0x10/0x10
[  717.874315][T16659]  sctp_ctrlsock_init+0x40/0xf0
[  717.874341][T16659]  ops_init+0x1df/0x5f0
[  717.874366][T16659]  setup_net+0x21e/0x850
[  717.874391][T16659]  ? __pfx_setup_net+0x10/0x10
[  717.874413][T16659]  ? lockdep_init_map_type+0x5c/0x280
[  717.874439][T16659]  ? __pfx_down_read_killable+0x10/0x10
[  717.874473][T16659]  ? debug_mutex_init+0x37/0x70
[  717.874508][T16659]  copy_net_ns+0x2a6/0x5f0
[  717.874536][T16659]  create_new_namespaces+0x3ea/0xad0
[  717.874565][T16659]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  717.874589][T16659]  ksys_unshare+0x45b/0xa40
[  717.874618][T16659]  ? __pfx_ksys_unshare+0x10/0x10
[  717.874655][T16659]  ? xfd_validate_state+0x5d/0x180
[  717.874694][T16659]  ? rcu_is_watching+0x12/0xc0
[  717.874718][T16659]  __x64_sys_unshare+0x31/0x40
[  717.874767][T16659]  do_syscall_64+0xcd/0x230
[  717.874802][T16659]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  717.874825][T16659] RIP: 0033:0x7fb258d8e969
[  717.874843][T16659] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  717.874867][T16659] RSP: 002b:00007fb259b9a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  717.874889][T16659] RAX: ffffffffffffffda RBX: 00007fb258fb5fa0 RCX: 00007fb258d8e969
[  717.874905][T16659] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  717.874919][T16659] RBP: 00007fb258e10ab1 R08: 0000000000000000 R09: 0000000000000000
[  717.874934][T16659] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  717.874948][T16659] R13: 0000000000000000 R14: 00007fb258fb5fa0 R15: 00007ffe0568ea88
[  717.874977][T16659]  </TASK>
[  719.449887][T16680] can: request_module (can-proto-0) failed.
[  719.852064][T16691] Invalid ELF header magic: != ELF
[  719.982118][T16697] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2407'.
[  720.028971][T16697] macsec0: entered allmulticast mode
[  720.055218][T16697] veth1_macvtap: entered allmulticast mode
[  720.106076][T16699] random: crng reseeded on system resumption
[  721.682838][T16725] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2416'.
[  721.924228][T16729] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(3)
[  722.664915][T16739] random: crng reseeded on system resumption
[  724.118531][T16772] FAULT_INJECTION: forcing a failure.
[  724.118531][T16772] name failslab, interval 1, probability 0, space 0, times 0
[  724.256263][T16772] CPU: 0 UID: 0 PID: 16772 Comm: syz.1.2427 Not tainted 6.15.0-rc4-syzkaller-00147-gebd297a2affa #0 PREEMPT(full) 
[  724.256299][T16772] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  724.256313][T16772] Call Trace:
[  724.256320][T16772]  <TASK>
[  724.256328][T16772]  dump_stack_lvl+0x16c/0x1f0
[  724.256363][T16772]  should_fail_ex+0x512/0x640
[  724.256395][T16772]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  724.256437][T16772]  should_failslab+0xc2/0x120
[  724.256465][T16772]  __kmalloc_cache_noprof+0x6a/0x3e0
[  724.256519][T16772]  ? snd_pcm_hw_param_first+0x30d/0x6f0
[  724.256548][T16772]  ? snd_pcm_hw_param_near.constprop.0+0x72f/0x8e0
[  724.256578][T16772]  ? snd_pcm_hw_param_near.constprop.0+0xbc/0x8e0
[  724.256613][T16772]  snd_pcm_hw_param_near.constprop.0+0xbc/0x8e0
[  724.256651][T16772]  ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10
[  724.256683][T16772]  ? __asan_memset+0x23/0x50
[  724.256715][T16772]  ? calc_src_frames.isra.0+0x187/0x1d0
[  724.256746][T16772]  ? calc_dst_frames.constprop.0.isra.0+0x103/0x130
[  724.256785][T16772]  snd_pcm_oss_change_params_locked+0x1398/0x3b40
[  724.256829][T16772]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  724.256862][T16772]  ? snd_pcm_oss_sync+0x30c/0x840
[  724.256909][T16772]  snd_pcm_oss_make_ready_locked+0xb7/0x130
[  724.256942][T16772]  snd_pcm_oss_sync+0x32e/0x840
[  724.256975][T16772]  ? __pfx_snd_pcm_oss_release+0x10/0x10
[  724.257005][T16772]  snd_pcm_oss_release+0x28b/0x310
[  724.257039][T16772]  ? __pfx_snd_pcm_oss_release+0x10/0x10
[  724.257069][T16772]  __fput+0x3ff/0xb70
[  724.257100][T16772]  task_work_run+0x14d/0x240
[  724.257135][T16772]  ? __pfx_task_work_run+0x10/0x10
[  724.257168][T16772]  ? __pfx___do_sys_close_range+0x10/0x10
[  724.257188][T16772]  ? rcu_is_watching+0x12/0xc0
[  724.257219][T16772]  syscall_exit_to_user_mode+0x27b/0x2a0
[  724.257250][T16772]  do_syscall_64+0xda/0x230
[  724.257281][T16772]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  724.257303][T16772] RIP: 0033:0x7fad2418e969
[  724.257320][T16772] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  724.257341][T16772] RSP: 002b:00007fad2508f038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  724.257360][T16772] RAX: 0000000000000000 RBX: 00007fad243b6160 RCX: 00007fad2418e969
[  724.257374][T16772] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  724.257387][T16772] RBP: 00007fad24210ab1 R08: 0000000000000000 R09: 0000000000000000
[  724.257400][T16772] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  724.257412][T16772] R13: 0000000000000000 R14: 00007fad243b6160 R15: 00007ffd0b947568
[  724.257440][T16772]  </TASK>
[  724.526920][    C0] vkms_vblank_simulate: vblank timer overrun
[  725.079576][T16781] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2429'.
[  725.235278][T16785] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2432'.
[  725.257010][T16784] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2431'.
[  725.663762][   T30] audit: type=1800 audit(4294967680.560:16): pid=16794 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2434" name="file0" dev="tmpfs" ino=3007 res=0 errno=0
[  726.344202][T16812] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input35
[  726.771284][T16816] FAULT_INJECTION: forcing a failure.
[  726.771284][T16816] name failslab, interval 1, probability 0, space 0, times 0
[  726.828889][T16816] CPU: 0 UID: 0 PID: 16816 Comm: syz.4.2438 Not tainted 6.15.0-rc4-syzkaller-00147-gebd297a2affa #0 PREEMPT(full) 
[  726.828925][T16816] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  726.828939][T16816] Call Trace:
[  726.828946][T16816]  <TASK>
[  726.828954][T16816]  dump_stack_lvl+0x16c/0x1f0
[  726.828991][T16816]  should_fail_ex+0x512/0x640
[  726.829032][T16816]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  726.829075][T16816]  should_failslab+0xc2/0x120
[  726.829105][T16816]  __kmalloc_cache_noprof+0x6a/0x3e0
[  726.829147][T16816]  ? sctp_endpoint_new+0x11f/0xcd0
[  726.829190][T16816]  sctp_endpoint_new+0x11f/0xcd0
[  726.829229][T16816]  sctp_init_sock+0xe2d/0x1330
[  726.829265][T16816]  ? __pfx_sctp_v6_init_sock+0x10/0x10
[  726.829300][T16816]  sctp_v6_init_sock+0x16/0x70
[  726.829331][T16816]  ? __pfx_sctp_v6_init_sock+0x10/0x10
[  726.829381][T16816]  inet6_create+0xb2d/0x1300
[  726.829405][T16816]  ? inet6_create+0x7f/0x1300
[  726.829431][T16816]  __sock_create+0x335/0x8d0
[  726.829482][T16816]  inet_ctl_sock_create+0x94/0x230
[  726.829512][T16816]  ? __pfx_inet_ctl_sock_create+0x10/0x10
[  726.829539][T16816]  ? lockdep_init_map_type+0x5c/0x280
[  726.829572][T16816]  ? do_init_timer+0xc9/0x110
[  726.829596][T16816]  ? __pfx_sctp_ctrlsock_init+0x10/0x10
[  726.829624][T16816]  sctp_ctrlsock_init+0x40/0xf0
[  726.829655][T16816]  ops_init+0x1df/0x5f0
[  726.829683][T16816]  setup_net+0x21e/0x850
[  726.829710][T16816]  ? __pfx_setup_net+0x10/0x10
[  726.829734][T16816]  ? lockdep_init_map_type+0x5c/0x280
[  726.829765][T16816]  ? __pfx_down_read_killable+0x10/0x10
[  726.829801][T16816]  ? debug_mutex_init+0x37/0x70
[  726.829839][T16816]  copy_net_ns+0x2a6/0x5f0
[  726.829872][T16816]  create_new_namespaces+0x3ea/0xad0
[  726.829902][T16816]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  726.829929][T16816]  ksys_unshare+0x45b/0xa40
[  726.829958][T16816]  ? __pfx_ksys_unshare+0x10/0x10
[  726.829986][T16816]  ? xfd_validate_state+0x5d/0x180
[  726.830031][T16816]  ? rcu_is_watching+0x12/0xc0
[  726.830058][T16816]  __x64_sys_unshare+0x31/0x40
[  726.830087][T16816]  do_syscall_64+0xcd/0x230
[  726.830120][T16816]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  726.830142][T16816] RIP: 0033:0x7faa04f8e969
[  726.830160][T16816] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  726.830185][T16816] RSP: 002b:00007faa05e93038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  726.830205][T16816] RAX: ffffffffffffffda RBX: 00007faa051b5fa0 RCX: 00007faa04f8e969
[  726.830220][T16816] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  726.830233][T16816] RBP: 00007faa05010ab1 R08: 0000000000000000 R09: 0000000000000000
[  726.830248][T16816] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  726.830261][T16816] R13: 0000000000000000 R14: 00007faa051b5fa0 R15: 00007ffd683c0688
[  726.830288][T16816]  </TASK>
[  727.117384][    C0] vkms_vblank_simulate: vblank timer overrun
[  727.650599][T16823] netlink: 338 bytes leftover after parsing attributes in process `syz.0.2439'.
[  727.732901][T16823] veth1_macvtap: left allmulticast mode
[  727.740762][T16823] veth1_macvtap: left promiscuous mode
[  728.263562][T16834] random: crng reseeded on system resumption
[  728.530530][T16827] Invalid ELF header magic: != ELF
[  728.928994][T16849] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2445'.
[  729.783970][T16863] FAULT_INJECTION: forcing a failure.
[  729.783970][T16863] name fail_futex, interval 1, probability 0, space 0, times 0
[  729.906165][T16863] CPU: 0 UID: 0 PID: 16863 Comm: syz.0.2449 Not tainted 6.15.0-rc4-syzkaller-00147-gebd297a2affa #0 PREEMPT(full) 
[  729.906197][T16863] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  729.906210][T16863] Call Trace:
[  729.906218][T16863]  <TASK>
[  729.906226][T16863]  dump_stack_lvl+0x16c/0x1f0
[  729.906259][T16863]  should_fail_ex+0x512/0x640
[  729.906293][T16863]  get_futex_key+0x49e/0x1000
[  729.906313][T16863]  ? __pfx_ext4_page_mkwrite+0x10/0x10
[  729.906348][T16863]  ? __pfx_get_futex_key+0x10/0x10
[  729.906365][T16863]  ? do_pte_missing+0x569/0x3fb0
[  729.906387][T16863]  ? __handle_mm_fault+0x1010/0x2a40
[  729.906409][T16863]  futex_wake+0xe7/0x4e0
[  729.906436][T16863]  ? __pfx_futex_wake+0x10/0x10
[  729.906464][T16863]  ? lock_vma_under_rcu+0x47d/0x970
[  729.906494][T16863]  ? lock_vma_under_rcu+0x47d/0x970
[  729.906528][T16863]  do_futex+0x1e3/0x350
[  729.906549][T16863]  ? __pfx_do_futex+0x10/0x10
[  729.906570][T16863]  ? count_memcg_events_mm.constprop.0+0x138/0x340
[  729.906602][T16863]  __x64_sys_futex+0x1e0/0x4c0
[  729.906627][T16863]  ? __pfx___x64_sys_futex+0x10/0x10
[  729.906658][T16863]  do_syscall_64+0xcd/0x230
[  729.906687][T16863]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  729.906707][T16863] RIP: 0033:0x7f2a6d58e969
[  729.906723][T16863] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  729.906742][T16863] RSP: 002b:00007ffed7aa1e28 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  729.906760][T16863] RAX: ffffffffffffffda RBX: 00007f2a6d7b6088 RCX: 00007f2a6d58e969
[  729.906774][T16863] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f2a6d7b6088
[  729.906793][T16863] RBP: 0000000000000001 R08: 0000000000000000 R09: 00000017d7aa211f
[  729.906806][T16863] R10: 00007f2a6d7b5fa0 R11: 0000000000000246 R12: 00007f2a6d7b608c
[  729.906818][T16863] R13: 00007f2a6d7b6080 R14: 0000000000000bee R15: 0000000000000003
[  729.906842][T16863]  </TASK>
[  730.109092][    C0] vkms_vblank_simulate: vblank timer overrun
[  730.777749][T16877] FAULT_INJECTION: forcing a failure.
[  730.777749][T16877] name failslab, interval 1, probability 0, space 0, times 0
[  730.880486][T16877] CPU: 0 UID: 0 PID: 16877 Comm: syz.0.2451 Not tainted 6.15.0-rc4-syzkaller-00147-gebd297a2affa #0 PREEMPT(full) 
[  730.880519][T16877] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  730.880533][T16877] Call Trace:
[  730.880540][T16877]  <TASK>
[  730.880549][T16877]  dump_stack_lvl+0x16c/0x1f0
[  730.880585][T16877]  should_fail_ex+0x512/0x640
[  730.880617][T16877]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  730.880647][T16877]  should_failslab+0xc2/0x120
[  730.880675][T16877]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  730.880700][T16877]  ? __proc_create+0xc3/0x8c0
[  730.880725][T16877]  ? __proc_create+0x2ce/0x8c0
[  730.880754][T16877]  __proc_create+0x2ce/0x8c0
[  730.880781][T16877]  ? __pfx___proc_create+0x10/0x10
[  730.880817][T16877]  proc_create_reg+0x7d/0x180
[  730.880855][T16877]  proc_create_net_data+0x8e/0x1b0
[  730.880884][T16877]  ? __pfx_proc_create_net_data+0x10/0x10
[  730.880918][T16877]  ? __pfx_phonet_init_net+0x10/0x10
[  730.880953][T16877]  phonet_init_net+0x66/0x120
[  730.880987][T16877]  ops_init+0x1df/0x5f0
[  730.881016][T16877]  setup_net+0x21e/0x850
[  730.881045][T16877]  ? __pfx_setup_net+0x10/0x10
[  730.881071][T16877]  ? lockdep_init_map_type+0x5c/0x280
[  730.881102][T16877]  ? __pfx_down_read_killable+0x10/0x10
[  730.881141][T16877]  ? debug_mutex_init+0x37/0x70
[  730.881191][T16877]  copy_net_ns+0x2a6/0x5f0
[  730.881222][T16877]  create_new_namespaces+0x3ea/0xad0
[  730.881252][T16877]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  730.881288][T16877]  ksys_unshare+0x45b/0xa40
[  730.881316][T16877]  ? __pfx_ksys_unshare+0x10/0x10
[  730.881342][T16877]  ? xfd_validate_state+0x5d/0x180
[  730.881377][T16877]  ? rcu_is_watching+0x12/0xc0
[  730.881419][T16877]  __x64_sys_unshare+0x31/0x40
[  730.881448][T16877]  do_syscall_64+0xcd/0x230
[  730.881479][T16877]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  730.881501][T16877] RIP: 0033:0x7f2a6d58e969
[  730.881518][T16877] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  730.881540][T16877] RSP: 002b:00007f2a6e3f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  730.881560][T16877] RAX: ffffffffffffffda RBX: 00007f2a6d7b5fa0 RCX: 00007f2a6d58e969
[  730.881575][T16877] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  730.881588][T16877] RBP: 00007f2a6d610ab1 R08: 0000000000000000 R09: 0000000000000000
[  730.881602][T16877] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  730.881615][T16877] R13: 0000000000000000 R14: 00007f2a6d7b5fa0 R15: 00007ffed7aa1cc8
[  730.881641][T16877]  </TASK>
[  732.074080][T16894] netlink: 342 bytes leftover after parsing attributes in process `syz.4.2457'.
[  732.248488][T16897] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2456'.
[  732.382959][T16903] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2458'.
[  732.962232][T16908] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input36
[  739.144350][T16972] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied.
[  739.263949][T16985] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(3)
[  739.418363][T16982] ima: policy update failed
[  739.426115][   T30] audit: type=1802 audit(4294967694.320:17): pid=16982 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.4.2483" res=0 errno=0
[  740.522884][T17000] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2488'.
[  740.646143][T17004] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(3)
[  740.769140][T17007] netlink: 342 bytes leftover after parsing attributes in process `syz.0.2498'.
[  741.314409][T17023] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2493'.
[  741.952907][T17036] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2496'.
[  742.114349][T17036] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  742.185725][T17036] batman_adv: batadv0: Removing interface: batadv_slave_0
[  742.230789][T17036] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  742.289472][T17036] batman_adv: batadv0: Removing interface: batadv_slave_1
[  742.730953][T17053] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input37
[  743.142364][T17060] random: crng reseeded on system resumption
[  743.981447][T17068] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2507'.
[  744.043606][T17037] Bluetooth: hci0: command 0x0406 tx timeout
[  744.479362][T17037] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  744.489124][T17037] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  744.497415][T17037] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  744.505238][T17037] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  744.512971][T17037] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  745.509081][T17073] chnl_net:caif_netlink_parms(): no params data found
[  745.702829][T17092] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(3)
[  745.794415][T17073] bridge0: port 1(bridge_slave_0) entered blocking state
[  745.814884][T17073] bridge0: port 1(bridge_slave_0) entered disabled state
[  745.833263][T17073] bridge_slave_0: entered allmulticast mode
[  745.843246][T17073] bridge_slave_0: entered promiscuous mode
[  745.870577][T17073] bridge0: port 2(bridge_slave_1) entered blocking state
[  745.881225][T17073] bridge0: port 2(bridge_slave_1) entered disabled state
[  745.915788][T17073] bridge_slave_1: entered allmulticast mode
[  745.933813][T17073] bridge_slave_1: entered promiscuous mode
[  746.139353][T17073] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  746.159548][T17099] netlink: 342 bytes leftover after parsing attributes in process `syz.4.2512'.
[  746.221391][T17073] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  746.476311][T17073] team0: Port device team_slave_0 added
[  746.522771][T17073] team0: Port device team_slave_1 added
[  746.595558][T12974] Bluetooth: hci2: command tx timeout
[  746.916999][T17073] batman_adv: batadv0: Adding interface: batadv_slave_0
[  746.962118][T17073] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  746.988083][    C0] vkms_vblank_simulate: vblank timer overrun
[  747.091114][T17073] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  747.163050][T17073] batman_adv: batadv0: Adding interface: batadv_slave_1
[  747.198271][T17073] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  747.224246][    C0] vkms_vblank_simulate: vblank timer overrun
[  747.326532][T17073] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  747.502278][T17073] hsr_slave_0: entered promiscuous mode
[  747.527818][T17073] hsr_slave_1: entered promiscuous mode
[  748.349958][T17073] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  748.502634][T17073] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  748.675635][T12974] Bluetooth: hci2: command tx timeout
[  748.749142][T17073] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  748.773711][T17131] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(3)
[  748.912991][T17073] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  749.712200][T17073] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  749.865859][T17073] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  750.232994][T17073] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  750.318569][T17073] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  750.755774][T12974] Bluetooth: hci2: command tx timeout
[  751.269336][T17073] 8021q: adding VLAN 0 to HW filter on device bond0
[  751.373954][T17073] 8021q: adding VLAN 0 to HW filter on device team0
[  751.607457][T17175] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(3)
[  751.699397][T10338] bridge0: port 1(bridge_slave_0) entered blocking state
[  751.706682][T10338] bridge0: port 1(bridge_slave_0) entered forwarding state
[  751.854797][T10338] bridge0: port 2(bridge_slave_1) entered blocking state
[  751.861979][T10338] bridge0: port 2(bridge_slave_1) entered forwarding state
[  752.202613][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  752.209078][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  752.835780][T12974] Bluetooth: hci2: command tx timeout
[  752.961970][T17073] 8021q: adding VLAN 0 to HW filter on device batadv0
[  752.984158][T17194] netlink: 342 bytes leftover after parsing attributes in process `syz.4.2537'.
[  753.237008][T17073] veth0_vlan: entered promiscuous mode
[  753.290652][T17073] veth1_vlan: entered promiscuous mode
[  753.298214][T17199] random: crng reseeded on system resumption
[  753.558799][T17073] veth0_macvtap: entered promiscuous mode
[  753.678594][T17073] veth1_macvtap: entered promiscuous mode
[  753.780754][T17073] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  753.845711][T17073] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  753.893889][T17073] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  753.941536][T17073] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  753.981350][T17073] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  754.023989][T17073] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  754.068048][T17073] batman_adv: batadv0: Interface activated: batadv_slave_0
[  754.121747][T17073] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  754.169980][T17073] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  754.209788][T17073] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  754.244603][T17073] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  754.301074][T17073] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  754.345573][T17073] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  754.398261][T17073] batman_adv: batadv0: Interface activated: batadv_slave_1
[  754.497576][T17073] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  754.543761][T17073] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  754.578526][T17073] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  754.612418][T17073] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  754.982083][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  755.034944][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  755.153310][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  755.200616][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  755.661527][T17228] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(3)
[  756.025628][T17238] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2546'.
[  756.197359][T17238] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  756.244525][T17238] batman_adv: batadv0: Removing interface: batadv_slave_0
[  756.289454][T17238] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  756.308397][T17246] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input40
[  756.335216][T17238] batman_adv: batadv0: Removing interface: batadv_slave_1
[  757.954687][   T30] audit: type=1800 audit(4294967712.850:18): pid=17272 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2559" name="file0" dev="tmpfs" ino=611 res=0 errno=0
[  758.125762][T17277] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(3)
[  759.861646][T17304] nfsd: Unknown parameter '^B�-'
[  759.886753][T17304] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(3561097310.45.4294967293), cmd(3)
[  760.688250][T17319] Invalid ELF header magic: != ELF
[  761.046743][T17322] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input41
[  761.220427][T17326] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(3)
[  761.620227][T17335] random: crng reseeded on system resumption
[  762.750335][T17354] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input42
[  762.853496][T17358] usb usb34: usbfs: process 17358 (syz.0.2582) did not claim interface 0 before use
[  762.896919][T17359] netlink: 338 bytes leftover after parsing attributes in process `syz.2.2584'.
[  763.030439][T17359] veth1_macvtap: left promiscuous mode
[  763.114567][T17363] vivid-009: =================  START STATUS  =================
[  763.172779][T17363] vivid-009: Enable Output Cropping: true grabbed
[  763.221683][T17363] vivid-009: Enable Output Composing: true grabbed
[  763.289192][T17363] vivid-009: Enable Output Scaler: true grabbed
[  763.335691][T17363] vivid-009: Tx RGB Quantization Range: Automatic grabbed
[  763.380676][T17363] vivid-009: Transmit Mode: HDMI grabbed
[  763.417376][T17363] vivid-009: Hotplug Present: 0x00000000
[  763.450298][T17363] vivid-009: RxSense Present: 0x00000000
[  763.509441][T17363] vivid-009: EDID Present: 0x00000000
[  763.558448][T17363] vivid-009: ==================  END STATUS  ==================
[  765.798059][T17401] nfsd: Unknown parameter '^B�-'
[  765.886418][T17401] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(3561097310.45.4294967293), cmd(3)
[  766.142951][   T30] audit: type=1800 audit(4294967721.040:19): pid=17416 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.2603" name="file0" dev="tmpfs" ino=1468 res=0 errno=0
[  766.650335][T17427] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  768.128850][T10335] team0: left allmulticast mode
[  768.133756][T10335] team_slave_0: left allmulticast mode
[  768.189572][T10335] team_slave_1: left allmulticast mode
[  768.237799][T10335] team0: left promiscuous mode
[  768.242587][T10335] team_slave_0: left promiscuous mode
[  768.335904][T10335] team_slave_1: left promiscuous mode
[  768.342892][T10335] bridge0: port 2(team0) entered disabled state
[  768.456158][T10335] bridge_slave_0: left allmulticast mode
[  768.494101][T10335] bridge_slave_0: left promiscuous mode
[  768.545204][T10335] bridge0: port 1(bridge_slave_0) entered disabled state
[  768.983216][T17457] vivid-007: =================  START STATUS  =================
[  768.991797][T17461] random: crng reseeded on system resumption
[  769.002242][T17450] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2612'.
[  769.041853][T17457] vivid-007: Generate PTS: true
[  769.077390][T17457] vivid-007: Generate SCR: true
[  769.082279][T17457] tpg source WxH: 640x360 (Y'CbCr)
[  769.134390][T17457] tpg field: 1
[  769.173158][T17457] tpg crop: (0,0)/640x360
[  769.219922][T17457] tpg compose: (0,0)/640x360
[  769.224547][T17457] tpg colorspace: 8
[  769.306848][T17457] tpg transfer function: 0/0
[  769.311466][T17457] tpg Y'CbCr encoding: 0/0
[  769.346839][T17457] tpg quantization: 0/0
[  769.377043][T17457] tpg RGB range: 0/2
[  769.380954][T17457] vivid-007: ==================  END STATUS  ==================
[  769.636976][   T30] audit: type=1800 audit(4294967724.540:20): pid=17469 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2619" name="file0" dev="tmpfs" ino=3185 res=0 errno=0
[  770.408818][T10335] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  770.429526][T10335] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  770.450941][T10335] bond0 (unregistering): Released all slaves
[  770.488300][T17478] netlink: 146 bytes leftover after parsing attributes in process `syz.0.2620'.
[  771.559689][T17500] FAULT_INJECTION: forcing a failure.
[  771.559689][T17500] name failslab, interval 1, probability 0, space 0, times 0
[  771.630229][T17500] CPU: 0 UID: 0 PID: 17500 Comm: syz.2.2629 Not tainted 6.15.0-rc4-syzkaller-00147-gebd297a2affa #0 PREEMPT(full) 
[  771.630259][T17500] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  771.630271][T17500] Call Trace:
[  771.630278][T17500]  <TASK>
[  771.630286][T17500]  dump_stack_lvl+0x16c/0x1f0
[  771.630318][T17500]  should_fail_ex+0x512/0x640
[  771.630347][T17500]  ? __kmalloc_noprof+0xbf/0x510
[  771.630371][T17500]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  771.630403][T17500]  should_failslab+0xc2/0x120
[  771.630428][T17500]  __kmalloc_noprof+0xd2/0x510
[  771.630448][T17500]  ? __pfx___mutex_trylock_common+0x10/0x10
[  771.630483][T17500]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  771.630519][T17500]  genl_family_rcv_msg_doit+0xbf/0x2f0
[  771.630549][T17500]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  771.630577][T17500]  ? __pfx___mutex_lock+0x10/0x10
[  771.630603][T17500]  ? genl_get_cmd+0x194/0x580
[  771.630635][T17500]  ? __local_bh_enable_ip+0xa4/0x120
[  771.630658][T17500]  ? __dev_queue_xmit+0x896/0x43e0
[  771.630688][T17500]  ? __radix_tree_lookup+0x21f/0x2c0
[  771.630717][T17500]  genl_rcv_msg+0x55c/0x800
[  771.630748][T17500]  ? __pfx_genl_rcv_msg+0x10/0x10
[  771.630775][T17500]  ? __pfx___dev_queue_xmit+0x10/0x10
[  771.630806][T17500]  ? __pfx_ctrl_getfamily+0x10/0x10
[  771.630836][T17500]  ? __lock_acquire+0xaa4/0x1ba0
[  771.630868][T17500]  netlink_rcv_skb+0x16a/0x440
[  771.630900][T17500]  ? __pfx_genl_rcv_msg+0x10/0x10
[  771.630930][T17500]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  771.630970][T17500]  ? __pfx_down_read+0x10/0x10
[  771.631000][T17500]  ? netlink_deliver_tap+0x1ae/0xd30
[  771.631027][T17500]  genl_rcv+0x28/0x40
[  771.631051][T17500]  netlink_unicast+0x53a/0x7f0
[  771.631078][T17500]  ? __pfx_netlink_unicast+0x10/0x10
[  771.631109][T17500]  netlink_sendmsg+0x8d1/0xdd0
[  771.631138][T17500]  ? __pfx_netlink_sendmsg+0x10/0x10
[  771.631171][T17500]  __sys_sendto+0x495/0x510
[  771.631191][T17500]  ? __pfx___sys_sendto+0x10/0x10
[  771.631219][T17500]  ? count_memcg_events_mm.constprop.0+0x138/0x340
[  771.631266][T17500]  __x64_sys_sendto+0xe0/0x1c0
[  771.631284][T17500]  ? do_syscall_64+0x91/0x230
[  771.631311][T17500]  ? lockdep_hardirqs_on+0x7c/0x110
[  771.631337][T17500]  do_syscall_64+0xcd/0x230
[  771.631366][T17500]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  771.631387][T17500] RIP: 0033:0x7f8d569907fc
[  771.631403][T17500] Code: 2a 5f 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 70 5f 02 00 48 8b
[  771.631425][T17500] RSP: 002b:00007f8d577ebec0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  771.631444][T17500] RAX: ffffffffffffffda RBX: 00007f8d577ebfc0 RCX: 00007f8d569907fc
[  771.631458][T17500] RDX: 0000000000000020 RSI: 00007f8d577ec010 RDI: 0000000000000006
[  771.631471][T17500] RBP: 0000000000000000 R08: 00007f8d577ebf14 R09: 000000000000000c
[  771.631483][T17500] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000006
[  771.631496][T17500] R13: 00007f8d577ebf68 R14: 00007f8d577ec010 R15: 0000000000000000
[  771.631522][T17500]  </TASK>
[  771.934672][    C0] vkms_vblank_simulate: vblank timer overrun
[  772.514178][T10335] hsr_slave_0: left promiscuous mode
[  772.539659][T10335] hsr_slave_1: left promiscuous mode
[  772.572253][T10335] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  772.619054][T10335] batman_adv: batadv0: Removing interface: batadv_slave_0
[  772.697978][T10335] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  772.747031][T10335] batman_adv: batadv0: Removing interface: batadv_slave_1
[  772.844881][T10335] veth1_macvtap: left allmulticast mode
[  772.880788][T10335] veth1_macvtap: left promiscuous mode
[  772.909829][T10335] veth0_macvtap: left promiscuous mode
[  773.044409][T17535] CIFS mount error: No usable UNC path provided in device string!
[  773.044409][T17535] 
[  773.171319][T17535] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  773.826939][T17542] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(3)
[  773.988028][T10335] team0 (unregistering): Port device team_slave_1 removed
[  774.054496][T10335] team0 (unregistering): Port device team_slave_0 removed
[  776.151894][T17037] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  776.163390][T17037] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  776.172738][T17037] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  776.181980][T17037] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  776.192983][T17037] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  777.064006][T17562] chnl_net:caif_netlink_parms(): no params data found
[  777.480470][T17562] bridge0: port 1(bridge_slave_0) entered blocking state
[  777.509359][T17562] bridge0: port 1(bridge_slave_0) entered disabled state
[  777.535650][T17562] bridge_slave_0: entered allmulticast mode
[  777.557476][T17562] bridge_slave_0: entered promiscuous mode
[  777.584222][T17562] bridge0: port 2(bridge_slave_1) entered blocking state
[  777.613932][T17562] bridge0: port 2(bridge_slave_1) entered disabled state
[  777.652810][T17562] bridge_slave_1: entered allmulticast mode
[  777.678707][T17562] bridge_slave_1: entered promiscuous mode
[  777.878780][T17562] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  777.943390][T17562] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  778.228494][T17562] team0: Port device team_slave_0 added
[  778.268364][T17562] team0: Port device team_slave_1 added
[  778.284923][T17037] Bluetooth: hci1: command tx timeout
[  778.468189][T17562] batman_adv: batadv0: Adding interface: batadv_slave_0
[  778.475150][T17562] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  778.501165][    C0] vkms_vblank_simulate: vblank timer overrun
[  778.667158][T17562] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  778.747263][T17607] netlink: 338 bytes leftover after parsing attributes in process `syz.0.2661'.
[  778.758907][T17562] batman_adv: batadv0: Adding interface: batadv_slave_1
[  778.785642][T17562] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  778.872037][T17562] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  779.080900][T17562] hsr_slave_0: entered promiscuous mode
[  779.111274][T17562] hsr_slave_1: entered promiscuous mode
[  779.144477][T17562] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  779.178770][T17610] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2662'.
[  779.197640][T17562] Cannot create hsr debugfs directory
[  779.955297][T17562] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  780.356937][T17037] Bluetooth: hci1: command tx timeout
[  780.459463][T17562] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  780.681591][T17562] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  780.788527][T17562] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  781.259901][T17562] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  781.292546][T17562] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  781.330649][T17562] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  781.374124][T17562] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  781.649416][T17562] 8021q: adding VLAN 0 to HW filter on device bond0
[  781.693871][T17562] 8021q: adding VLAN 0 to HW filter on device team0
[  781.728106][T10335] bridge0: port 1(bridge_slave_0) entered blocking state
[  781.735297][T10335] bridge0: port 1(bridge_slave_0) entered forwarding state
[  781.777552][T10335] bridge0: port 2(bridge_slave_1) entered blocking state
[  781.784819][T10335] bridge0: port 2(bridge_slave_1) entered forwarding state
[  782.373233][T17562] 8021q: adding VLAN 0 to HW filter on device batadv0
[  782.439114][T17037] Bluetooth: hci1: command tx timeout
[  782.538047][T17562] veth0_vlan: entered promiscuous mode
[  782.571596][T17562] veth1_vlan: entered promiscuous mode
[  782.702150][T17562] veth0_macvtap: entered promiscuous mode
[  782.760513][T17562] veth1_macvtap: entered promiscuous mode
[  782.866134][T17562] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  782.921934][T17562] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  782.969770][T17562] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  783.032522][T17562] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  783.082275][T17562] batman_adv: batadv0: Interface activated: batadv_slave_0
[  783.142182][T17562] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  783.209599][T17562] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  783.268064][T17562] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  783.307036][T17562] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  783.360434][T17562] batman_adv: batadv0: Interface activated: batadv_slave_1
[  783.404228][T17562] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  783.448481][T17562] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  783.485276][T17562] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  783.521299][T17562] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  784.029314][T10335] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  784.073746][T10335] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  784.341703][T11547] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  784.385030][T11547] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  784.515705][T17037] Bluetooth: hci1: command tx timeout
[  785.990303][T17679] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2679'.
[  786.075171][T17688] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2684'.
[  786.184680][T17688] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(1851878519.48.0), cmd(3)
[  788.808455][T17738] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(3)
[  788.894101][T17739] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2700'.
[  790.968811][T17768] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2710'.
[  791.148433][T17775] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2712'.
[  794.118652][T17819] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2724'.
[  794.261601][T17823] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input46
[  794.949144][T17832] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input47
[  795.082609][T17834] FAULT_INJECTION: forcing a failure.
[  795.082609][T17834] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  795.258746][T17834] CPU: 0 UID: 0 PID: 17834 Comm: syz.2.2730 Not tainted 6.15.0-rc4-syzkaller-00147-gebd297a2affa #0 PREEMPT(full) 
[  795.258775][T17834] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  795.258788][T17834] Call Trace:
[  795.258795][T17834]  <TASK>
[  795.258802][T17834]  dump_stack_lvl+0x16c/0x1f0
[  795.258832][T17834]  should_fail_ex+0x512/0x640
[  795.258862][T17834]  _copy_from_user+0x2e/0xd0
[  795.258891][T17834]  input_event_from_user+0xb9/0x290
[  795.258917][T17834]  ? __pfx_input_event_from_user+0x10/0x10
[  795.258949][T17834]  uinput_write+0xbe7/0xff0
[  795.258982][T17834]  ? __pfx_uinput_write+0x10/0x10
[  795.259011][T17834]  ? bpf_lsm_file_permission+0x9/0x10
[  795.259041][T17834]  ? security_file_permission+0x71/0x210
[  795.259066][T17834]  ? rw_verify_area+0xcf/0x680
[  795.259097][T17834]  vfs_write+0x25c/0x1180
[  795.259113][T17834]  ? __pfx_uinput_write+0x10/0x10
[  795.259144][T17834]  ? __pfx_vfs_write+0x10/0x10
[  795.259160][T17834]  ? find_held_lock+0x2b/0x80
[  795.259179][T17834]  ? __fget_files+0x204/0x3c0
[  795.259212][T17834]  ? __fget_files+0x20e/0x3c0
[  795.259247][T17834]  ksys_write+0x205/0x240
[  795.259265][T17834]  ? __pfx_ksys_write+0x10/0x10
[  795.259290][T17834]  do_syscall_64+0xcd/0x230
[  795.259328][T17834]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  795.259348][T17834] RIP: 0033:0x7f8d5698e969
[  795.259364][T17834] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  795.259384][T17834] RSP: 002b:00007f8d577cc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  795.259402][T17834] RAX: ffffffffffffffda RBX: 00007f8d56bb6080 RCX: 00007f8d5698e969
[  795.259415][T17834] RDX: 000000007fffffff RSI: 0000000000000000 RDI: 0000000000000003
[  795.259427][T17834] RBP: 00007f8d577cc090 R08: 0000000000000000 R09: 0000000000000000
[  795.259439][T17834] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  795.259451][T17834] R13: 0000000000000001 R14: 00007f8d56bb6080 R15: 00007ffe7c784428
[  795.259476][T17834]  </TASK>
[  795.466410][    C0] vkms_vblank_simulate: vblank timer overrun
[  795.695568][T17839] netlink: zone id is out of range
[  795.807759][T17839] input: jNǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input48
[  796.202832][T17847] random: crng reseeded on system resumption
[  797.791366][T17876] netlink: 338 bytes leftover after parsing attributes in process `syz.0.2742'.
[  799.044842][T17903] random: crng reseeded on system resumption
[  799.150664][T17906] FAULT_INJECTION: forcing a failure.
[  799.150664][T17906] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  799.266697][T17906] CPU: 0 UID: 0 PID: 17906 Comm: syz.1.2751 Not tainted 6.15.0-rc4-syzkaller-00147-gebd297a2affa #0 PREEMPT(full) 
[  799.266728][T17906] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  799.266740][T17906] Call Trace:
[  799.266747][T17906]  <TASK>
[  799.266754][T17906]  dump_stack_lvl+0x16c/0x1f0
[  799.266786][T17906]  should_fail_ex+0x512/0x640
[  799.266816][T17906]  _copy_from_user+0x2e/0xd0
[  799.266846][T17906]  kstrtouint_from_user+0xd6/0x1d0
[  799.266868][T17906]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  799.266889][T17906]  ? __lock_acquire+0xaa4/0x1ba0
[  799.266925][T17906]  proc_fail_nth_write+0x83/0x250
[  799.266952][T17906]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  799.266991][T17906]  vfs_write+0x25c/0x1180
[  799.267008][T17906]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  799.267041][T17906]  ? __pfx___mutex_lock+0x10/0x10
[  799.267067][T17906]  ? __pfx_vfs_write+0x10/0x10
[  799.267093][T17906]  ? __fget_files+0x20e/0x3c0
[  799.267131][T17906]  ksys_write+0x12a/0x240
[  799.267149][T17906]  ? __pfx_ksys_write+0x10/0x10
[  799.267166][T17906]  ? rcu_is_watching+0x12/0xc0
[  799.267192][T17906]  do_syscall_64+0xcd/0x230
[  799.267221][T17906]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  799.267243][T17906] RIP: 0033:0x7f0130b8d41f
[  799.267258][T17906] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  799.267279][T17906] RSP: 002b:00007f012e9f6030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  799.267297][T17906] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f0130b8d41f
[  799.267311][T17906] RDX: 0000000000000001 RSI: 00007f012e9f60a0 RDI: 0000000000000004
[  799.267323][T17906] RBP: 00007f012e9f6090 R08: 0000000000000000 R09: 0000000000000000
[  799.267336][T17906] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  799.267348][T17906] R13: 0000000000000000 R14: 00007f0130db6080 R15: 00007ffe7b6aaf08
[  799.267373][T17906]  </TASK>
[  801.517038][T17939] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(3)
[  801.742885][T17942] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2762'.
[  802.781034][T17961] random: crng reseeded on system resumption
[  804.355260][T17991] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2778'.
[  804.448849][T17991] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input50
[  804.983904][T18006] FAULT_INJECTION: forcing a failure.
[  804.983904][T18006] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  805.058434][T18006] CPU: 0 UID: 0 PID: 18006 Comm: syz.0.2782 Not tainted 6.15.0-rc4-syzkaller-00147-gebd297a2affa #0 PREEMPT(full) 
[  805.058462][T18006] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  805.058475][T18006] Call Trace:
[  805.058482][T18006]  <TASK>
[  805.058489][T18006]  dump_stack_lvl+0x16c/0x1f0
[  805.058520][T18006]  should_fail_ex+0x512/0x640
[  805.058552][T18006]  _copy_from_iter+0x477/0x15b0
[  805.058594][T18006]  ? __pfx__copy_from_iter+0x10/0x10
[  805.058622][T18006]  ? kmem_cache_alloc_noprof+0x21e/0x3b0
[  805.058645][T18006]  ? __asan_memset+0x23/0x50
[  805.058677][T18006]  ? __build_skb_around+0x278/0x3b0
[  805.058710][T18006]  ? __build_skb+0x6e/0x90
[  805.058729][T18006]  ? is_vmalloc_addr+0x30/0x40
[  805.058753][T18006]  netlink_sendmsg+0x829/0xdd0
[  805.058781][T18006]  ? __pfx_netlink_sendmsg+0x10/0x10
[  805.058813][T18006]  ____sys_sendmsg+0xa95/0xc70
[  805.058843][T18006]  ? __pfx_____sys_sendmsg+0x10/0x10
[  805.058874][T18006]  ? __pfx__kstrtoull+0x10/0x10
[  805.058901][T18006]  ___sys_sendmsg+0x134/0x1d0
[  805.058924][T18006]  ? __pfx____sys_sendmsg+0x10/0x10
[  805.058956][T18006]  ? find_held_lock+0x2b/0x80
[  805.058991][T18006]  __sys_sendmmsg+0x200/0x420
[  805.059015][T18006]  ? __pfx___sys_sendmmsg+0x10/0x10
[  805.059044][T18006]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  805.059082][T18006]  ? fput+0x70/0xf0
[  805.059104][T18006]  ? ksys_write+0x1b9/0x240
[  805.059122][T18006]  ? __pfx_ksys_write+0x10/0x10
[  805.059139][T18006]  ? rcu_is_watching+0x12/0xc0
[  805.059161][T18006]  __x64_sys_sendmmsg+0x9c/0x100
[  805.059182][T18006]  ? lockdep_hardirqs_on+0x7c/0x110
[  805.059207][T18006]  do_syscall_64+0xcd/0x230
[  805.059235][T18006]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  805.059256][T18006] RIP: 0033:0x7f2a6d58e969
[  805.059271][T18006] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  805.059291][T18006] RSP: 002b:00007f2a6e3f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  805.059309][T18006] RAX: ffffffffffffffda RBX: 00007f2a6d7b5fa0 RCX: 00007f2a6d58e969
[  805.059323][T18006] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000003
[  805.059335][T18006] RBP: 00007f2a6e3f6090 R08: 0000000000000000 R09: 0000000000000000
[  805.059347][T18006] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000001
[  805.059359][T18006] R13: 0000000000000000 R14: 00007f2a6d7b5fa0 R15: 00007ffed7aa1cc8
[  805.059384][T18006]  </TASK>
[  805.307035][    C0] vkms_vblank_simulate: vblank timer overrun
[  805.483282][T18016] FAULT_INJECTION: forcing a failure.
[  805.483282][T18016] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  805.496478][T18016] CPU: 0 UID: 0 PID: 18016 Comm: syz.4.2787 Not tainted 6.15.0-rc4-syzkaller-00147-gebd297a2affa #0 PREEMPT(full) 
[  805.496505][T18016] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  805.496517][T18016] Call Trace:
[  805.496524][T18016]  <TASK>
[  805.496536][T18016]  dump_stack_lvl+0x16c/0x1f0
[  805.496566][T18016]  should_fail_ex+0x512/0x640
[  805.496598][T18016]  _copy_from_user+0x2e/0xd0
[  805.496628][T18016]  core_sys_select+0x35a/0xbe0
[  805.496665][T18016]  ? __pfx_core_sys_select+0x10/0x10
[  805.496700][T18016]  ? proc_fail_nth_write+0x9f/0x250
[  805.496749][T18016]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  805.496783][T18016]  kern_select+0x15d/0x1e0
[  805.496813][T18016]  ? __pfx_kern_select+0x10/0x10
[  805.496847][T18016]  ? __pfx_ksys_write+0x10/0x10
[  805.496865][T18016]  ? rcu_is_watching+0x12/0xc0
[  805.496887][T18016]  __x64_sys_select+0xbd/0x160
[  805.496917][T18016]  ? do_syscall_64+0x91/0x230
[  805.496943][T18016]  ? lockdep_hardirqs_on+0x7c/0x110
[  805.496968][T18016]  do_syscall_64+0xcd/0x230
[  805.496997][T18016]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  805.497017][T18016] RIP: 0033:0x7faa04f8e969
[  805.497032][T18016] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  805.497052][T18016] RSP: 002b:00007faa05e93038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017
[  805.497070][T18016] RAX: ffffffffffffffda RBX: 00007faa051b5fa0 RCX: 00007faa04f8e969
[  805.497084][T18016] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000e
[  805.497096][T18016] RBP: 00007faa05e93090 R08: 0000000000000000 R09: 0000000000000000
[  805.497109][T18016] R10: 00002000000002c0 R11: 0000000000000246 R12: 0000000000000001
[  805.497121][T18016] R13: 0000000000000000 R14: 00007faa051b5fa0 R15: 00007ffd683c0688
[  805.497146][T18016]  </TASK>
[  806.883428][T18041] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(3)
[  807.644280][T18068] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2802'.
[  808.777047][T18085] FAULT_INJECTION: forcing a failure.
[  808.777047][T18085] name failslab, interval 1, probability 0, space 0, times 0
[  808.874091][T18085] CPU: 0 UID: 0 PID: 18085 Comm: syz.2.2810 Not tainted 6.15.0-rc4-syzkaller-00147-gebd297a2affa #0 PREEMPT(full) 
[  808.874121][T18085] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  808.874134][T18085] Call Trace:
[  808.874141][T18085]  <TASK>
[  808.874149][T18085]  dump_stack_lvl+0x16c/0x1f0
[  808.874180][T18085]  should_fail_ex+0x512/0x640
[  808.874213][T18085]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  808.874280][T18085]  should_failslab+0xc2/0x120
[  808.874307][T18085]  __kmalloc_cache_noprof+0x6a/0x3e0
[  808.874362][T18085]  ? find_held_lock+0x2b/0x80
[  808.874384][T18085]  ? mtdchar_open+0x1e5/0x320
[  808.874442][T18085]  mtdchar_open+0x1e5/0x320
[  808.874472][T18085]  ? __pfx_mtdchar_open+0x10/0x10
[  808.874500][T18085]  chrdev_open+0x231/0x6a0
[  808.874525][T18085]  ? __pfx_apparmor_file_open+0x10/0x10
[  808.874557][T18085]  ? __pfx_chrdev_open+0x10/0x10
[  808.874584][T18085]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  808.874626][T18085]  do_dentry_open+0x741/0x1c10
[  808.874650][T18085]  ? __pfx_chrdev_open+0x10/0x10
[  808.874681][T18085]  vfs_open+0x82/0x3f0
[  808.874715][T18085]  path_openat+0x1e5e/0x2d40
[  808.874751][T18085]  ? __pfx_path_openat+0x10/0x10
[  808.874781][T18085]  do_filp_open+0x20b/0x470
[  808.874804][T18085]  ? __pfx_do_filp_open+0x10/0x10
[  808.874847][T18085]  ? alloc_fd+0x471/0x7d0
[  808.874892][T18085]  do_sys_openat2+0x11b/0x1d0
[  808.874924][T18085]  ? __pfx_do_sys_openat2+0x10/0x10
[  808.874967][T18085]  __x64_sys_openat+0x174/0x210
[  808.875000][T18085]  ? __pfx___x64_sys_openat+0x10/0x10
[  808.875035][T18085]  ? rcu_is_watching+0x12/0xc0
[  808.875065][T18085]  do_syscall_64+0xcd/0x230
[  808.875100][T18085]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  808.875124][T18085] RIP: 0033:0x7f8d5698e969
[  808.875144][T18085] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  808.875167][T18085] RSP: 002b:00007f8d577ed038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  808.875190][T18085] RAX: ffffffffffffffda RBX: 00007f8d56bb5fa0 RCX: 00007f8d5698e969
[  808.875206][T18085] RDX: 0000000000028082 RSI: 0000200000000400 RDI: ffffffffffffff9c
[  808.875222][T18085] RBP: 00007f8d56a10ab1 R08: 0000000000000000 R09: 0000000000000000
[  808.875237][T18085] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  808.875251][T18085] R13: 0000000000000000 R14: 00007f8d56bb5fa0 R15: 00007ffe7c784428
[  808.875280][T18085]  </TASK>
[  809.387783][T18091] random: crng reseeded on system resumption
[  809.696395][T18096] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2813'.
[  810.480222][T18112] FAULT_INJECTION: forcing a failure.
[  810.480222][T18112] name failslab, interval 1, probability 0, space 0, times 0
[  810.537827][T18112] CPU: 0 UID: 0 PID: 18112 Comm: syz.4.2818 Not tainted 6.15.0-rc4-syzkaller-00147-gebd297a2affa #0 PREEMPT(full) 
[  810.537860][T18112] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  810.537874][T18112] Call Trace:
[  810.537882][T18112]  <TASK>
[  810.537890][T18112]  dump_stack_lvl+0x16c/0x1f0
[  810.537924][T18112]  should_fail_ex+0x512/0x640
[  810.537959][T18112]  should_failslab+0xc2/0x120
[  810.537986][T18112]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  810.538011][T18112]  ? skb_clone+0x190/0x3f0
[  810.538038][T18112]  skb_clone+0x190/0x3f0
[  810.538062][T18112]  netlink_deliver_tap+0xabd/0xd30
[  810.538096][T18112]  netlink_unicast+0x5df/0x7f0
[  810.538130][T18112]  ? __pfx_netlink_unicast+0x10/0x10
[  810.538154][T18112]  ? __build_skb_around+0x278/0x3b0
[  810.538190][T18112]  ? __build_skb+0x6e/0x90
[  810.538217][T18112]  ? is_vmalloc_addr+0x30/0x40
[  810.538244][T18112]  netlink_sendmsg+0x8d1/0xdd0
[  810.538276][T18112]  ? __pfx_netlink_sendmsg+0x10/0x10
[  810.538314][T18112]  ____sys_sendmsg+0xa95/0xc70
[  810.538348][T18112]  ? __pfx_____sys_sendmsg+0x10/0x10
[  810.538396][T18112]  ? __pfx__kstrtoull+0x10/0x10
[  810.538435][T18112]  ___sys_sendmsg+0x134/0x1d0
[  810.538458][T18112]  ? __pfx____sys_sendmsg+0x10/0x10
[  810.538491][T18112]  ? find_held_lock+0x2b/0x80
[  810.538526][T18112]  __sys_sendmmsg+0x200/0x420
[  810.538550][T18112]  ? __pfx___sys_sendmmsg+0x10/0x10
[  810.538580][T18112]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  810.538618][T18112]  ? fput+0x70/0xf0
[  810.538641][T18112]  ? ksys_write+0x1b9/0x240
[  810.538659][T18112]  ? __pfx_ksys_write+0x10/0x10
[  810.538676][T18112]  ? rcu_is_watching+0x12/0xc0
[  810.538698][T18112]  __x64_sys_sendmmsg+0x9c/0x100
[  810.538719][T18112]  ? lockdep_hardirqs_on+0x7c/0x110
[  810.538744][T18112]  do_syscall_64+0xcd/0x230
[  810.538773][T18112]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  810.538793][T18112] RIP: 0033:0x7faa04f8e969
[  810.538809][T18112] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  810.538828][T18112] RSP: 002b:00007faa05e93038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  810.538846][T18112] RAX: ffffffffffffffda RBX: 00007faa051b5fa0 RCX: 00007faa04f8e969
[  810.538860][T18112] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000003
[  810.538872][T18112] RBP: 00007faa05e93090 R08: 0000000000000000 R09: 0000000000000000
[  810.538884][T18112] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000001
[  810.538897][T18112] R13: 0000000000000000 R14: 00007faa051b5fa0 R15: 00007ffd683c0688
[  810.538922][T18112]  </TASK>
[  811.153846][T18125] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2822'.
[  811.421953][T18136] FAULT_INJECTION: forcing a failure.
[  811.421953][T18136] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  811.492800][T18136] CPU: 0 UID: 0 PID: 18136 Comm: syz.1.2824 Not tainted 6.15.0-rc4-syzkaller-00147-gebd297a2affa #0 PREEMPT(full) 
[  811.492830][T18136] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  811.492842][T18136] Call Trace:
[  811.492849][T18136]  <TASK>
[  811.492857][T18136]  dump_stack_lvl+0x16c/0x1f0
[  811.492887][T18136]  should_fail_ex+0x512/0x640
[  811.492919][T18136]  should_fail_alloc_page+0xe7/0x130
[  811.492946][T18136]  prepare_alloc_pages+0x3c2/0x610
[  811.492981][T18136]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[  811.493007][T18136]  ? look_up_lock_class+0x59/0x150
[  811.493032][T18136]  ? look_up_lock_class+0x59/0x150
[  811.493058][T18136]  ? look_up_lock_class+0x59/0x150
[  811.493084][T18136]  ? register_lock_class+0x41/0x4c0
[  811.493112][T18136]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  811.493144][T18136]  ? __lock_acquire+0xaa4/0x1ba0
[  811.493174][T18136]  ? __lock_acquire+0xaa4/0x1ba0
[  811.493202][T18136]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  811.493231][T18136]  ? policy_nodemask+0xea/0x4e0
[  811.493257][T18136]  alloc_pages_mpol+0x1fb/0x550
[  811.493283][T18136]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  811.493308][T18136]  ? find_held_lock+0x2b/0x80
[  811.493330][T18136]  alloc_pages_noprof+0x131/0x390
[  811.493354][T18136]  ? __pfx___pollwait+0x10/0x10
[  811.493382][T18136]  get_free_pages_noprof+0xc/0x40
[  811.493408][T18136]  __pollwait+0x295/0x490
[  811.493438][T18136]  ? __pfx___pollwait+0x10/0x10
[  811.493466][T18136]  usbdev_poll+0x7b/0x220
[  811.493497][T18136]  ? __pfx_usbdev_poll+0x10/0x10
[  811.493524][T18136]  do_select+0xd67/0x17d0
[  811.493571][T18136]  ? __pfx_do_select+0x10/0x10
[  811.493602][T18136]  ? __pfx___pollwait+0x10/0x10
[  811.493634][T18136]  ? __pfx_pollwake+0x10/0x10
[  811.493668][T18136]  ? __pfx_pollwake+0x10/0x10
[  811.493699][T18136]  ? __pfx_pollwake+0x10/0x10
[  811.493730][T18136]  ? __pfx_pollwake+0x10/0x10
[  811.493760][T18136]  ? __pfx_pollwake+0x10/0x10
[  811.493791][T18136]  ? __pfx_pollwake+0x10/0x10
[  811.493822][T18136]  ? __pfx_pollwake+0x10/0x10
[  811.493852][T18136]  ? __pfx_pollwake+0x10/0x10
[  811.493883][T18136]  ? __pfx_pollwake+0x10/0x10
[  811.493914][T18136]  ? find_held_lock+0x2b/0x80
[  811.493931][T18136]  ? __might_fault+0xe3/0x190
[  811.493952][T18136]  ? __might_fault+0xe3/0x190
[  811.493971][T18136]  ? __might_fault+0x13b/0x190
[  811.493999][T18136]  ? core_sys_select+0x440/0xbe0
[  811.494026][T18136]  core_sys_select+0x440/0xbe0
[  811.494059][T18136]  ? __pfx_core_sys_select+0x10/0x10
[  811.494093][T18136]  ? proc_fail_nth_write+0x9f/0x250
[  811.494143][T18136]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  811.494177][T18136]  kern_select+0x15d/0x1e0
[  811.494207][T18136]  ? __pfx_kern_select+0x10/0x10
[  811.494240][T18136]  ? __pfx_ksys_write+0x10/0x10
[  811.494258][T18136]  ? rcu_is_watching+0x12/0xc0
[  811.494279][T18136]  __x64_sys_select+0xbd/0x160
[  811.494326][T18136]  ? do_syscall_64+0x91/0x230
[  811.494353][T18136]  ? lockdep_hardirqs_on+0x7c/0x110
[  811.494379][T18136]  do_syscall_64+0xcd/0x230
[  811.494410][T18136]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  811.494432][T18136] RIP: 0033:0x7f0130b8e969
[  811.494448][T18136] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  811.494468][T18136] RSP: 002b:00007f013191b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017
[  811.494488][T18136] RAX: ffffffffffffffda RBX: 00007f0130db5fa0 RCX: 00007f0130b8e969
[  811.494502][T18136] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000e
[  811.494515][T18136] RBP: 00007f013191b090 R08: 0000000000000000 R09: 0000000000000000
[  811.494528][T18136] R10: 00002000000002c0 R11: 0000000000000246 R12: 0000000000000001
[  811.494541][T18136] R13: 0000000000000000 R14: 00007f0130db5fa0 R15: 00007ffe7b6aaf08
[  811.494567][T18136]  </TASK>
[  812.353728][T18140] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(3)
[  812.389582][T18141] sock: sock_timestamping_bind_phc: sock not bind to device
[  813.389868][T18153] FAULT_INJECTION: forcing a failure.
[  813.389868][T18153] name fail_futex, interval 1, probability 0, space 0, times 0
[  813.457795][T18153] CPU: 0 UID: 0 PID: 18153 Comm: syz.0.2831 Not tainted 6.15.0-rc4-syzkaller-00147-gebd297a2affa #0 PREEMPT(full) 
[  813.457824][T18153] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  813.457836][T18153] Call Trace:
[  813.457843][T18153]  <TASK>
[  813.457851][T18153]  dump_stack_lvl+0x16c/0x1f0
[  813.457882][T18153]  should_fail_ex+0x512/0x640
[  813.457912][T18153]  get_futex_key+0xabc/0x1000
[  813.457934][T18153]  ? __pfx_get_futex_key+0x10/0x10
[  813.457961][T18153]  futex_wake+0xe7/0x4e0
[  813.457982][T18153]  ? rcu_is_watching+0x12/0xc0
[  813.458002][T18153]  ? __pfx_futex_wake+0x10/0x10
[  813.458035][T18153]  do_futex+0x1e3/0x350
[  813.458055][T18153]  ? __pfx_do_futex+0x10/0x10
[  813.458073][T18153]  ? __might_fault+0xe3/0x190
[  813.458102][T18153]  mm_release+0x24e/0x300
[  813.458123][T18153]  do_exit+0x898/0x2c30
[  813.458147][T18153]  ? __pfx_futex_wake_mark+0x10/0x10
[  813.458174][T18153]  ? __pfx_do_exit+0x10/0x10
[  813.458199][T18153]  ? do_raw_spin_lock+0x12c/0x2b0
[  813.458226][T18153]  ? find_held_lock+0x2b/0x80
[  813.458254][T18153]  do_group_exit+0xd3/0x2a0
[  813.458286][T18153]  get_signal+0x2673/0x26d0
[  813.458317][T18153]  ? __pfx_get_signal+0x10/0x10
[  813.458339][T18153]  ? do_futex+0x122/0x350
[  813.458360][T18153]  ? __pfx_do_futex+0x10/0x10
[  813.458383][T18153]  arch_do_signal_or_restart+0x8f/0x7a0
[  813.458413][T18153]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  813.458448][T18153]  ? syscall_user_dispatch+0x78/0x140
[  813.458482][T18153]  syscall_exit_to_user_mode+0x150/0x2a0
[  813.458511][T18153]  do_syscall_64+0xda/0x230
[  813.458539][T18153]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  813.458560][T18153] RIP: 0033:0x7f2a6d58e969
[  813.458575][T18153] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  813.458595][T18153] RSP: 002b:00007f2a6e3f60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  813.458614][T18153] RAX: fffffffffffffe00 RBX: 00007f2a6d7b5fa8 RCX: 00007f2a6d58e969
[  813.458627][T18153] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f2a6d7b5fa8
[  813.458640][T18153] RBP: 00007f2a6d7b5fa0 R08: 0000000000000000 R09: 0000000000000000
[  813.458652][T18153] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2a6d7b5fac
[  813.458665][T18153] R13: 0000000000000000 R14: 00007ffed7aa1be0 R15: 00007ffed7aa1cc8
[  813.458689][T18153]  </TASK>
[  813.698775][    C0] vkms_vblank_simulate: vblank timer overrun
[  814.056050][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  814.062375][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  815.109796][T18178] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(3)
[  815.489468][T18187] netlink: del zone limit has 4 unknown bytes
[  815.598902][T18187] Line length is too long: Should be less than 4094
[  816.044281][T18185] netlink: zone id is out of range
[  816.057894][T18197] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2841'.
[  816.082676][T18185] netlink: zone id is out of range
[  816.092755][T18185] netlink: zone id is out of range
[  816.118597][T18185] netlink: zone id is out of range
[  816.177739][T18185] netlink: zone id is out of range
[  816.182876][T18185] netlink: zone id is out of range
[  816.225497][T18185] netlink: zone id is out of range
[  816.251404][T18185] netlink: zone id is out of range
[  816.289701][T18185] netlink: zone id is out of range
[  816.384177][T18204] random: crng reseeded on system resumption
[  817.516548][T18219] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input51
[  820.226128][T18256] netlink: 338 bytes leftover after parsing attributes in process `syz.0.2861'.
[  820.460151][T18260] FAULT_INJECTION: forcing a failure.
[  820.460151][T18260] name failslab, interval 1, probability 0, space 0, times 0
[  820.530520][T18260] CPU: 0 UID: 0 PID: 18260 Comm: syz.0.2863 Not tainted 6.15.0-rc4-syzkaller-00147-gebd297a2affa #0 PREEMPT(full) 
[  820.530550][T18260] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  820.530563][T18260] Call Trace:
[  820.530571][T18260]  <TASK>
[  820.530578][T18260]  dump_stack_lvl+0x16c/0x1f0
[  820.530609][T18260]  should_fail_ex+0x512/0x640
[  820.530638][T18260]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  820.530675][T18260]  should_failslab+0xc2/0x120
[  820.530700][T18260]  __kmalloc_cache_noprof+0x6a/0x3e0
[  820.530733][T18260]  ? find_held_lock+0x2b/0x80
[  820.530751][T18260]  ? mtdchar_open+0x1e5/0x320
[  820.530779][T18260]  mtdchar_open+0x1e5/0x320
[  820.530804][T18260]  ? __pfx_mtdchar_open+0x10/0x10
[  820.530827][T18260]  chrdev_open+0x231/0x6a0
[  820.530854][T18260]  ? __pfx_apparmor_file_open+0x10/0x10
[  820.530881][T18260]  ? __pfx_chrdev_open+0x10/0x10
[  820.530904][T18260]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  820.530940][T18260]  do_dentry_open+0x741/0x1c10
[  820.530961][T18260]  ? __pfx_chrdev_open+0x10/0x10
[  820.530987][T18260]  vfs_open+0x82/0x3f0
[  820.531016][T18260]  path_openat+0x1e5e/0x2d40
[  820.531044][T18260]  ? __pfx_path_openat+0x10/0x10
[  820.531070][T18260]  do_filp_open+0x20b/0x470
[  820.531089][T18260]  ? __pfx_do_filp_open+0x10/0x10
[  820.531126][T18260]  ? alloc_fd+0x471/0x7d0
[  820.531164][T18260]  do_sys_openat2+0x11b/0x1d0
[  820.531191][T18260]  ? __pfx_do_sys_openat2+0x10/0x10
[  820.531228][T18260]  __x64_sys_openat+0x174/0x210
[  820.531256][T18260]  ? __pfx___x64_sys_openat+0x10/0x10
[  820.531285][T18260]  ? rcu_is_watching+0x12/0xc0
[  820.531310][T18260]  do_syscall_64+0xcd/0x230
[  820.531341][T18260]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  820.531361][T18260] RIP: 0033:0x7f2a6d58e969
[  820.531377][T18260] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  820.531398][T18260] RSP: 002b:00007f2a6e3f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  820.531418][T18260] RAX: ffffffffffffffda RBX: 00007f2a6d7b5fa0 RCX: 00007f2a6d58e969
[  820.531433][T18260] RDX: 0000000000028082 RSI: 0000200000000400 RDI: ffffffffffffff9c
[  820.531446][T18260] RBP: 00007f2a6d610ab1 R08: 0000000000000000 R09: 0000000000000000
[  820.531459][T18260] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  820.531471][T18260] R13: 0000000000000000 R14: 00007f2a6d7b5fa0 R15: 00007ffed7aa1cc8
[  820.531496][T18260]  </TASK>
[  822.934345][T18282] random: crng reseeded on system resumption
[  824.003102][T18302] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2876'.
[  825.083168][T18319] random: crng reseeded on system resumption
[  825.768299][T18336] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2886'.
[  826.369738][T18346] FAULT_INJECTION: forcing a failure.
[  826.369738][T18346] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  826.457210][T18346] CPU: 0 UID: 0 PID: 18346 Comm: syz.4.2890 Not tainted 6.15.0-rc4-syzkaller-00147-gebd297a2affa #0 PREEMPT(full) 
[  826.457239][T18346] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  826.457252][T18346] Call Trace:
[  826.457258][T18346]  <TASK>
[  826.457266][T18346]  dump_stack_lvl+0x16c/0x1f0
[  826.457297][T18346]  should_fail_ex+0x512/0x640
[  826.457329][T18346]  _copy_from_user+0x2e/0xd0
[  826.457360][T18346]  copy_msghdr_from_user+0x98/0x160
[  826.457382][T18346]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  826.457415][T18346]  ___sys_sendmsg+0xfe/0x1d0
[  826.457437][T18346]  ? __pfx____sys_sendmsg+0x10/0x10
[  826.457487][T18346]  __sys_sendmsg+0x16d/0x220
[  826.457509][T18346]  ? __pfx___sys_sendmsg+0x10/0x10
[  826.457537][T18346]  ? rcu_is_watching+0x12/0xc0
[  826.457562][T18346]  do_syscall_64+0xcd/0x230
[  826.457592][T18346]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  826.457612][T18346] RIP: 0033:0x7faa04f8e969
[  826.457627][T18346] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  826.457646][T18346] RSP: 002b:00007faa05e93038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  826.457665][T18346] RAX: ffffffffffffffda RBX: 00007faa051b5fa0 RCX: 00007faa04f8e969
[  826.457679][T18346] RDX: 0000000004000080 RSI: 0000200000000780 RDI: 0000000000000003
[  826.457691][T18346] RBP: 00007faa05e93090 R08: 0000000000000000 R09: 0000000000000000
[  826.457704][T18346] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  826.457715][T18346] R13: 0000000000000000 R14: 00007faa051b5fa0 R15: 00007ffd683c0688
[  826.457740][T18346]  </TASK>
[  826.737876][T18350] netlink: 338 bytes leftover after parsing attributes in process `syz.2.2892'.
[  827.357473][T18367] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2897'.
[  829.024038][T18415] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(3)
[  829.208479][T18420] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(3)
[  829.918745][T18430] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2911'.
[  830.457216][T18439] random: crng reseeded on system resumption
[  831.391435][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  831.401812][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  832.064028][T18459] bond0: option all_slaves_active: invalid value (]\/)
[  832.541183][T18484] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(3)
[  832.994506][T18490] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2923'.
[  833.729415][T18512] ==================================================================
[  833.737498][T18512] BUG: KASAN: slab-out-of-bounds in afs_proc_addr_prefs_write+0x13a9/0x15f0
[  833.746181][T18512] Read of size 1 at addr ffff888029f4cbe7 by task syz.2.2927/18512
[  833.754061][T18512] 
[  833.756379][T18512] CPU: 0 UID: 0 PID: 18512 Comm: syz.2.2927 Not tainted 6.15.0-rc4-syzkaller-00147-gebd297a2affa #0 PREEMPT(full) 
[  833.756405][T18512] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  833.756418][T18512] Call Trace:
[  833.756425][T18512]  <TASK>
[  833.756433][T18512]  dump_stack_lvl+0x116/0x1f0
[  833.756462][T18512]  print_report+0xc3/0x670
[  833.756487][T18512]  ? __virt_addr_valid+0x5e/0x590
[  833.756514][T18512]  ? __phys_addr+0xc6/0x150
[  833.756540][T18512]  ? afs_proc_addr_prefs_write+0x13a9/0x15f0
[  833.756565][T18512]  kasan_report+0xe0/0x110
[  833.756594][T18512]  ? afs_proc_addr_prefs_write+0x13a9/0x15f0
[  833.756622][T18512]  afs_proc_addr_prefs_write+0x13a9/0x15f0
[  833.756652][T18512]  ? __pfx_afs_proc_addr_prefs_write+0x10/0x10
[  833.756679][T18512]  ? find_held_lock+0x2b/0x80
[  833.756698][T18512]  ? __might_fault+0xe3/0x190
[  833.756720][T18512]  ? __might_fault+0xe3/0x190
[  833.756741][T18512]  ? __might_fault+0x13b/0x190
[  833.756769][T18512]  ? proc_simple_write+0x114/0x1b0
[  833.756794][T18512]  proc_simple_write+0x114/0x1b0
[  833.756819][T18512]  ? __pfx_proc_simple_write+0x10/0x10
[  833.756845][T18512]  proc_reg_write+0x23d/0x330
[  833.756865][T18512]  ? __pfx_proc_reg_write+0x10/0x10
[  833.756885][T18512]  vfs_writev+0x6c4/0xdc0
[  833.756916][T18512]  ? __pfx___mutex_trylock_common+0x10/0x10
[  833.756947][T18512]  ? __pfx_vfs_writev+0x10/0x10
[  833.756978][T18512]  ? __mutex_lock+0x1ca/0xb90
[  833.757005][T18512]  ? kmem_cache_free+0x2d4/0x4d0
[  833.757027][T18512]  ? __pfx___mutex_lock+0x10/0x10
[  833.757059][T18512]  ? __fget_files+0x20e/0x3c0
[  833.757094][T18512]  ? do_writev+0x132/0x330
[  833.757123][T18512]  do_writev+0x132/0x330
[  833.757154][T18512]  ? __pfx_do_writev+0x10/0x10
[  833.757185][T18512]  ? syscall_user_dispatch+0x78/0x140
[  833.757219][T18512]  do_syscall_64+0xcd/0x230
[  833.757247][T18512]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  833.757268][T18512] RIP: 0033:0x7f8d5698e969
[  833.757284][T18512] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  833.757304][T18512] RSP: 002b:00007f8d577ed038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  833.757323][T18512] RAX: ffffffffffffffda RBX: 00007f8d56bb5fa0 RCX: 00007f8d5698e969
[  833.757337][T18512] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000004
[  833.757350][T18512] RBP: 00007f8d56a10ab1 R08: 0000000000000000 R09: 0000000000000000
[  833.757363][T18512] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  833.757376][T18512] R13: 0000000000000000 R14: 00007f8d56bb5fa0 R15: 00007ffe7c784428
[  833.757397][T18512]  </TASK>
[  833.757404][T18512] 
[  834.017105][T18512] Allocated by task 18512:
[  834.021523][T18512]  kasan_save_stack+0x33/0x60
[  834.026227][T18512]  kasan_save_track+0x14/0x30
[  834.030900][T18512]  __kasan_kmalloc+0xaa/0xb0
[  834.035489][T18512]  __kmalloc_node_track_caller_noprof+0x221/0x510
[  834.041920][T18512]  memdup_user_nul+0x2b/0x120
[  834.046604][T18512]  proc_simple_write+0xc7/0x1b0
[  834.051458][T18512]  proc_reg_write+0x23d/0x330
[  834.056144][T18512]  vfs_writev+0x6c4/0xdc0
[  834.060482][T18512]  do_writev+0x132/0x330
[  834.064760][T18512]  do_syscall_64+0xcd/0x230
[  834.069301][T18512]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  834.075194][T18512] 
[  834.077525][T18512] The buggy address belongs to the object at ffff888029f4cbe0
[  834.077525][T18512]  which belongs to the cache kmalloc-8 of size 8
[  834.091225][T18512] The buggy address is located 0 bytes to the right of
[  834.091225][T18512]  allocated 7-byte region [ffff888029f4cbe0, ffff888029f4cbe7)
[  834.105537][T18512] 
[  834.107860][T18512] The buggy address belongs to the physical page:
[  834.114258][T18512] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x29f4c
[  834.123010][T18512] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  834.130108][T18512] page_type: f5(slab)
[  834.134083][T18512] raw: 00fff00000000000 ffff88801b441500 ffffea00009e5540 dead000000000002
[  834.142659][T18512] raw: 0000000000000000 0000000080800080 00000000f5000000 0000000000000000
[  834.151230][T18512] page dumped because: kasan: bad access detected
[  834.157630][T18512] page_owner tracks the page as allocated
[  834.163331][T18512] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52c00(GFP_NOIO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 52, tgid 52 (kworker/1:1), ts 21456770466, free_ts 0
[  834.181129][T18512]  post_alloc_hook+0x181/0x1b0
[  834.185896][T18512]  get_page_from_freelist+0x135c/0x3920
[  834.191447][T18512]  __alloc_frozen_pages_noprof+0x263/0x23a0
[  834.197340][T18512]  alloc_pages_mpol+0x1fb/0x550
[  834.202203][T18512]  new_slab+0x244/0x340
[  834.206369][T18512]  ___slab_alloc+0xd9c/0x1940
[  834.211050][T18512]  __slab_alloc.constprop.0+0x56/0xb0
[  834.216483][T18512]  __kmalloc_cache_noprof+0xfb/0x3e0
[  834.221791][T18512]  usb_control_msg+0xbc/0x4a0
[  834.226470][T18512]  hub_suspend+0x8a3/0xa80
[  834.230892][T18512]  usb_suspend_both+0x291/0x9c0
[  834.235747][T18512]  usb_runtime_suspend+0x49/0x180
[  834.240796][T18512]  __rpm_callback+0xc5/0x610
[  834.245389][T18512]  rpm_callback+0x1b7/0x200
[  834.249894][T18512]  rpm_suspend+0x2e1/0x11d0
[  834.254395][T18512]  __pm_runtime_suspend+0xba/0x1a0
[  834.259505][T18512] page_owner free stack trace missing
[  834.264863][T18512] 
[  834.267180][T18512] Memory state around the buggy address:
[  834.272809][T18512]  ffff888029f4ca80: fa fc fc fc 05 fc fc fc fa fc fc fc fa fc fc fc
[  834.280868][T18512]  ffff888029f4cb00: fa fc fc fc fa fc fc fc fa fc fc fc 05 fc fc fc
[  834.288928][T18512] >ffff888029f4cb80: fa fc fc fc fa fc fc fc 00 fc fc fc 07 fc fc fc
[  834.296975][T18512]                                                        ^
[  834.304155][T18512]  ffff888029f4cc00: fa fc fc fc 06 fc fc fc 06 fc fc fc 07 fc fc fc
[  834.312208][T18512]  ffff888029f4cc80: 06 fc fc fc 05 fc fc fc 07 fc fc fc 07 fc fc fc
[  834.320256][T18512] ==================================================================
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  835.713163][T18512] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  835.720420][T18512] CPU: 0 UID: 0 PID: 18512 Comm: syz.2.2927 Not tainted 6.15.0-rc4-syzkaller-00147-gebd297a2affa #0 PREEMPT(full) 
[  835.732498][T18512] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  835.742552][T18512] Call Trace:
[  835.745828][T18512]  <TASK>
[  835.748758][T18512]  dump_stack_lvl+0x3d/0x1f0
[  835.753355][T18512]  panic+0x71c/0x800
[  835.757257][T18512]  ? __pfx_panic+0x10/0x10
[  835.761677][T18512]  ? mark_held_locks+0x49/0x80
[  835.766449][T18512]  ? preempt_schedule_thunk+0x16/0x30
[  835.771830][T18512]  ? afs_proc_addr_prefs_write+0x13a9/0x15f0
[  835.777811][T18512]  ? preempt_schedule_common+0x44/0xc0
[  835.783274][T18512]  ? afs_proc_addr_prefs_write+0x13a9/0x15f0
[  835.789254][T18512]  check_panic_on_warn+0xab/0xb0
[  835.794197][T18512]  end_report+0x107/0x170
[  835.798528][T18512]  kasan_report+0xee/0x110
[  835.802948][T18512]  ? afs_proc_addr_prefs_write+0x13a9/0x15f0
[  835.808933][T18512]  afs_proc_addr_prefs_write+0x13a9/0x15f0
[  835.814749][T18512]  ? __pfx_afs_proc_addr_prefs_write+0x10/0x10
[  835.820938][T18512]  ? find_held_lock+0x2b/0x80
[  835.825625][T18512]  ? __might_fault+0xe3/0x190
[  835.830310][T18512]  ? __might_fault+0xe3/0x190
[  835.834989][T18512]  ? __might_fault+0x13b/0x190
[  835.839768][T18512]  ? proc_simple_write+0x114/0x1b0
[  835.844900][T18512]  proc_simple_write+0x114/0x1b0
[  835.849848][T18512]  ? __pfx_proc_simple_write+0x10/0x10
[  835.855312][T18512]  proc_reg_write+0x23d/0x330
[  835.859996][T18512]  ? __pfx_proc_reg_write+0x10/0x10
[  835.865200][T18512]  vfs_writev+0x6c4/0xdc0
[  835.869547][T18512]  ? __pfx___mutex_trylock_common+0x10/0x10
[  835.875456][T18512]  ? __pfx_vfs_writev+0x10/0x10
[  835.880331][T18512]  ? __mutex_lock+0x1ca/0xb90
[  835.885047][T18512]  ? kmem_cache_free+0x2d4/0x4d0
[  835.889992][T18512]  ? __pfx___mutex_lock+0x10/0x10
[  835.895029][T18512]  ? __fget_files+0x20e/0x3c0
[  835.899730][T18512]  ? do_writev+0x132/0x330
[  835.904152][T18512]  do_writev+0x132/0x330
[  835.908405][T18512]  ? __pfx_do_writev+0x10/0x10
[  835.913178][T18512]  ? syscall_user_dispatch+0x78/0x140
[  835.918561][T18512]  do_syscall_64+0xcd/0x230
[  835.923077][T18512]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  835.928972][T18512] RIP: 0033:0x7f8d5698e969
[  835.933392][T18512] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  835.953011][T18512] RSP: 002b:00007f8d577ed038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  835.961432][T18512] RAX: ffffffffffffffda RBX: 00007f8d56bb5fa0 RCX: 00007f8d5698e969
[  835.969407][T18512] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000004
[  835.977381][T18512] RBP: 00007f8d56a10ab1 R08: 0000000000000000 R09: 0000000000000000
[  835.985353][T18512] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  835.993338][T18512] R13: 0000000000000000 R14: 00007f8d56bb5fa0 R15: 00007ffe7c784428
[  836.001318][T18512]  </TASK>
[  836.004387][T18512] Kernel Offset: disabled
[  836.008722][T18512] Rebooting in 86400 seconds..