last executing test programs:

55.831900817s ago: executing program 0 (id=6959):
setreuid$auto(0x9, 0x3)
mount_setattr$auto(0x3, 0x0, 0x0, 0xc9, 0x20)
r0 = socket(0x10, 0x3, 0x6)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000440), 0xffffffffffffffff)
faccessat2$auto(0x58b6, 0x2, 0x7, 0x9)
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT25(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000640)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002cbd7000fbdbdf251b000000e1000200c152e60123202137148890fea6cb65e9716fd22afc65569c89b0cc3fd6892cb7632b4b92d9d57d71c4e037d9020275016968b99f04c014dfafc68ec4a10a1fbed75f93636c1490d79b3da4319017a7e812ea3ebf16bd030eaf17a60bc9968e411609988bc5f46887166db560442ede05665eb3059f35d59a4f7b2efc79fe6467e5a120cfaa9c77ad7372918038c19a6e48456eda0fded5f900de64772ff230c7614826fbae94b37a15c71921a6be9507594c386cd67e2ddae8c9f116395b6cfe998acdd4df951ffdbe6807094ae2ba99fae83acaa9dde82ce0d515452e000000"], 0xf8}}, 0x8000)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000004c0), r0)
sendmsg$auto_NL80211_CMD_FRAME231(r0, &(0x7f0000000580)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x4000204}, 0xc, &(0x7f0000000540)={&(0x7f0000000500)={0x2c, r2, 0x400, 0x70bd2c, 0x25dfdbfe, {}, [@NL80211_ATTR_PREV_BSSID={0x16, 0x4f, "89196996814e770f0b4ef6bb525d24aa4023"}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4008081}, 0x40)
r3 = syz_genetlink_get_family_id$auto_TIPCv2(&(0x7f0000000040), r0)
sendmsg$auto_TIPC_NL_NET_SET451(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000380)={&(0x7f0000000080)={0x2dc, r3, 0x8, 0x70bd28, 0x25dfdbfd, {}, [@TIPC_NLA_NET={0xd4, 0x7, "6d8b2406cb4b9e5617b2440e715c17c2fd561185e3a10eca05f69cb6e1f8132009bf109388d853ae287f04239d317efc6cbb0fd12d49f4d5187cdba22871171719608229ae940e0a12d2d72c24f602e7e530306c34b5b5b61f1e1a05cc7c927a5dc6d49361bd6c2503a4236ae97b6ecb80c69ce5d1629cb4aa472044012a761627ea5d65f96091f47d8d22c974145a8c756c6578ce33bbc1349fbf3cde57d7e083e5734a7c61722853ff5fae24a242f671e29b41609fc8a47db7bf3ba7c072fcb780ac76ecd8757f3226629d68ca4858"}, @TIPC_NLA_MON={0x78, 0x9, "f8fe6ebb319a8c773b6565e416bb4522a0385c180beeacb9d210bcfbcd52b86d035257278f8d10e5f7caa650d309e96945578f0d67965ae96cf0a5c634d8a84e2c1ba85e659325856f547e5455aaaa3e5c900dcf504fe0e02529087fb0a989ab5dc4e3dcd352ee5b67e91607e7882cf28945cad8"}, @TIPC_NLA_NET={0xb6, 0x7, "03ed7e0f50754bb2b8c27268048b56efd5fc76ed0e483104c08d74211c7e264700eaa02a47cbf11116496b4a6c770bbc2ccfcd639b56d54e92432e68647a8debc83b26d41e24c919ff330ec9aaa50578f441c2eedab7c66d2b797b41b2458384b905772051c73fade8fdeee4fc0d52e25fddb56993250d77b4d130cf3695656b9382227624fba700e1945215c5a5079da71dfa4ca1b3cece4a7ee64aa49731b842339ac4f5980da6571db6c6f22078677748"}, @TIPC_NLA_NODE={0xc3, 0x6, "4fd0a6364956a6a3feca375748cd72849080076b1f01d07d4932b5708f56f9062d20fa676df80297708b0da3d21a669ba511ff8c8d5f1abaf370693893d652b558a554eb4d1d225ba7a4b5b26aaebd78d93920d73a3085de3d27f3495befcc6364fdd0e4c41b4e5446e781598e1d1337fa5c445519309e2f06107d28039a791a901b6c097beb7478783ca0fbac902beecb6ee656da7b92a74b4a64d5692c2edcebd66033c0ac8ceba825aef7a38f6de68b457e48bd44bfe14b8e98d9ddbded"}]}, 0x2dc}}, 0x4)
ioperm$auto(0x9, 0xffffffff00000000, 0x4)

55.596376028s ago: executing program 0 (id=6961):
syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/pid_for_children\x00')
mmap$auto(0x0, 0x8, 0xdf, 0x409b72, 0x2, 0x8000)
semget$auto(0x6, 0x10, 0x7fffffffffffffff)
socket(0x1, 0x1, 0x0)
ioctl$auto(0x1, 0x541b, 0x8)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
io_uring_setup$auto(0x8000000003ff, 0x5)
socket$nl_generic(0x10, 0x3, 0x10)
open(0x0, 0x22240, 0x154)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
write$auto(0x3, 0x0, 0xfdef)
socket(0x2, 0x1, 0x0)
r0 = socket(0x10, 0x3, 0x6)
mmap$auto(0x0, 0x20007, 0xdf, 0x10000000eb1, 0x8, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x27f1)
getpeername$auto(0x800000000003, 0x8000bb3d, 0x9)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/cgroup\x00')
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x27f1)
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT25(r0, 0x0, 0x8000)
recvmmsg$auto(0x82, 0x105, 0x2, 0x8, 0x3a)

55.335813586s ago: executing program 0 (id=6962):
mmap$auto(0x0, 0x8, 0x2, 0x9b72, 0x2, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
io_uring_setup$auto(0x6, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
fcntl$auto(0x1, 0x25, 0x2)
open(0x0, 0x595200, 0xdd)
set_mempolicy$auto(0x0, 0x1, 0x919)
mmap$auto(0x0, 0x9, 0x72, 0x8b72, 0x2, 0x8000)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x8000000000000000, 0x10, 0x9, 0x15, 0x4, 0x8)
get_robust_list$auto(0x0, 0xfffffffffffffff9, 0xe)
mq_notify$auto(0x1, 0x5)
io_uring_setup$auto(0x6, 0xc)
getrlimit$auto(0x7, 0x5)
io_uring_setup$auto(0x8001, 0x8)
setitimer$auto(0x2, 0x5, 0x7ff)

55.106583656s ago: executing program 0 (id=6964):
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x20009, 0x386, 0xeb1, 0x401, 0x8000)
mmap$auto(0xffffffffffffffff, 0x7, 0x0, 0x19, 0x7f, 0x12000000000)
ioperm$auto(0x7, 0x6, 0x2)
mbind$auto(0x0, 0x91d2, 0x4, 0xe8a5, 0x6, 0x2)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'ip_vti0\x00'})
mmap$auto(0x80000, 0xc67, 0x3, 0x15, 0x1, 0x3)
open(&(0x7f0000000040)='./cgroup.cpu/cpuset.cpus\x00', 0x161742, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x100000001, 0x8000)
statx$auto(0x100000001, 0x9, 0x1000, 0x7f000, 0xd3)

54.863840513s ago: executing program 0 (id=6965):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async)
move_pages$auto(0x1, 0x2000000000003, 0xff, 0x0, 0x1, 0x8000000000000000)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x61, 0x100001000000003, 0x9b72, 0x2, 0x8000) (async)
getsockopt$auto(0x3, 0x200000000001, 0x41, 0x0, 0x7fe) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
mlock$auto(0xfbe8, 0x5f626901) (async)
madvise$auto(0x0, 0xffffffffffff0005, 0x19) (async)
set_mempolicy$auto(0x4, 0x0, 0x919) (async)
clone$auto(0x3b46, 0x0, 0x2, 0x5, 0x8) (async)
socket(0x2, 0x1, 0x106) (async)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
inotify_init$auto() (async)
sendmsg$auto_SMC_NETLINK_REMOVE_UEID420(r0, 0x0, 0x10) (async)
mmap$auto(0x0, 0xfff, 0xdf, 0x9b72, 0x7, 0x28000) (async)
close_range$auto(0x6, 0xb0, 0x6) (async)
semctl$auto(0x1ff, 0x2, 0x13, 0x4) (async)
pselect6$auto(0x6, 0x5, 0x5, 0x7, 0x7fff, 0x0)
socket(0xa, 0x5, 0x0) (async)
setsockopt$auto(0x5, 0x6, 0x22, 0x4, 0x8d)
set_mempolicy$auto(0x9, 0xfff, 0x90) (async)
execve$auto(0xfffffffffffff001, 0x2, 0x6)

52.363964814s ago: executing program 0 (id=6975):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
sendmsg$auto_NL80211_CMD_UNEXPECTED_FRAME313(0xffffffffffffffff, 0x0, 0x5)
pwritev2$auto(0x10000000000000, 0x8, 0x2, 0xffffffffffffe62a, 0x2, 0x80000000007e)
syz_genetlink_get_family_id$auto_802_15_4_MAC(0x0, 0xffffffffffffffff)
open(&(0x7f0000004080)='./file0\x00', 0x40, 0x23)
socket(0x1d, 0x2, 0x6)
socket(0x2, 0x3, 0x6)
close_range$auto(0x7, 0xfffffffffffffff8, 0x2)
landlock_add_rule$auto(0x6, 0xe, 0x100, 0x0)
pwritev2$auto(0x8db9, 0x7f, 0x0, 0x9, 0x5, 0xfffffffffffffff9)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x5, 0x2)
io_uring_setup$auto(0x5, 0xb43)

26.461584914s ago: executing program 3 (id=7062):
prctl$auto(0x10000000018, 0x5, 0x4, 0x20000000009, 0x0) (async)
prctl$auto(0x10000000018, 0x5, 0x4, 0x20000000009, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000) (async)
mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000)
mmap$auto(0x8000, 0x7, 0x3, 0x16, 0x45d, 0xd) (async)
mmap$auto(0x8000, 0x7, 0x3, 0x16, 0x45d, 0xd)
mmap$auto(0x0, 0x9, 0x3ff57693, 0x9b72, 0x2, 0x8000000000008000)
clock_nanosleep$auto(0xffffffef, 0x2, 0x9, 0xff)
copy_file_range$auto(0x2, 0x3fc, 0x8000000000000, 0xde67, 0x2, 0x2)
socket(0x1, 0x2, 0x0)
socket(0x2b, 0x1, 0x1)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) (async)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
setsockopt$auto(0x4, 0x0, 0x61, 0x480c, 0x2000000)
lsm_set_self_attr$auto(0x3, 0x2, 0x9e1d, 0x8000000000000000) (async)
lsm_set_self_attr$auto(0x3, 0x2, 0x9e1d, 0x8000000000000000)
mprotect$auto(0x2, 0x6, 0x0) (async)
mprotect$auto(0x2, 0x6, 0x0)
r1 = syz_genetlink_get_family_id$auto_SMC_GEN_NETLINK(&(0x7f0000000f40), r0)
socketpair$auto(0x7fffffffffffffff, 0x6, 0x2, 0x4)
fcntl$auto(0xda, 0x4, 0xffffffff)
sendmsg$auto_SMC_NETLINK_REMOVE_UEID420(r0, &(0x7f0000001140)={0x0, 0x0, &(0x7f0000001100)={&(0x7f0000000f80)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="01002b9d7000fcdbfcf511"], 0x14}, 0x1, 0x0, 0x0, 0x4010}, 0x10)
socket(0x29, 0xa, 0x1)

26.20762804s ago: executing program 3 (id=7063):
mlockall$auto(0x7)
mmap$auto(0x0, 0x20009, 0x8, 0xeb1, 0x1000401, 0x4a)
sched_getparam$auto(0x1, 0xfff)
setfsgid$auto(0x6)
sendmsg$auto_NL80211_CMD_ASSOCIATE208(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0xf4e46fb82b3880e8}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4001}, 0x4000000)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
r0 = syz_genetlink_get_family_id$auto_MAC80211_HWSIM(&(0x7f0000000880), 0xffffffffffffffff)
madvise$auto(0x5, 0x0, 0x40)
r1 = socket(0x10, 0x2, 0x0)
sendmsg$auto_HWSIM_CMD_GET_RADIO78(r1, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={&(0x7f0000000040)=ANY=[@ANYBLOB="3400000eb146a78e3d301da26d", @ANYRES16=r0, @ANYBLOB="310f29bd7004fcdbdf2506000000"], 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x4004802)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
sched_getparam$auto(0x8, 0x4)
r2 = socket(0x2, 0x3, 0x4)
semctl$auto(0x1ff, 0x2, 0x13, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/time_for_children\x00')
sync_file_range$auto(0xa79, 0x9a1, 0x3, 0xffffffffffffffff)
syz_open_procfs$namespace(0x0, &(0x7f0000000380)='ns/cgroup\x00')
mmap$auto(0x0, 0xfe6, 0x3a75, 0x9b72, 0x2, 0x8000)
sendmsg$auto_NL80211_CMD_TDLS_MGMT310(r3, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000100)={&(0x7f0000000980)={0x80c, 0x0, 0x2, 0x70bd25, 0x25dfdbff, {}, [@NL80211_ATTR_MLD_ADDR={0x1e, 0x13a, "cf3dc9019d5f51eac28ca729842c7a78732168f22ff7fedb883a"}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x9}, @NL80211_ATTR_IE_ASSOC_RESP={0x7bb, 0x80, "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"}, @NL80211_ATTR_KEY_SEQ={0xb, 0xa, "3ccc7afb42aa19"}, @NL80211_ATTR_STA_VLAN={0x8, 0x14, 0x4}]}, 0x80c}, 0x1, 0x0, 0x0, 0x20000800}, 0x20000000)
ioctl$auto(0x20000000000003, 0x1, 0x8)
socketpair$auto(0xfffffffffffff000, 0x8, 0x8, 0x8)
sendmsg$auto_NL80211_CMD_SET_WOWLAN299(r2, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80c0}, 0x20000884)

25.485206742s ago: executing program 3 (id=7064):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
prctl$auto(0x28, 0x7, 0x8100000000, 0x3, 0x2)
open(&(0x7f0000000800)='./file0\x00', 0x103c40, 0x50)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x801, 0x100)
socket(0x11, 0x3, 0x2)
getsockopt$auto(0x6, 0x10e, 0x7, 0x401, 0xa)
fstatfs$auto(0x3, 0x8)
set_mempolicy$auto(0x6, 0x9, 0xf)
init_module$auto(0x5, 0x101, 0xf0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x2000, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000)
clone$auto(0x8000000000000000, 0x4, 0x200, 0x1, 0x3)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
fstatfs$auto(0x7e772a4b, 0xffff)
set_mempolicy$auto(0x400, 0x9, 0x1)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x3, 0x15)
clone$auto(0x1, 0x6, 0x7ff, 0x5, 0x18)
uname$auto(0x10)
init_module$auto(0x7f, 0x4, 0x7)

23.373752737s ago: executing program 3 (id=7072):
mlockall$auto(0x7)
mmap$auto(0x0, 0x20009, 0x8, 0xeb1, 0x1000401, 0x4a)
sched_getparam$auto(0x1, 0xfff)
setfsgid$auto(0x6)
sendmsg$auto_NL80211_CMD_ASSOCIATE208(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0xf4e46fb82b3880e8}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4001}, 0x4000000)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
r0 = syz_genetlink_get_family_id$auto_MAC80211_HWSIM(&(0x7f0000000880), 0xffffffffffffffff)
madvise$auto(0x5, 0x0, 0x40)
r1 = socket(0x10, 0x2, 0x0)
sendmsg$auto_HWSIM_CMD_GET_RADIO78(r1, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={&(0x7f0000000040)=ANY=[@ANYBLOB="3400000eb146a78e3d301da26d", @ANYRES16=r0, @ANYBLOB="310f29bd7004fcdbdf2506000000"], 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x4004802)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
sched_getparam$auto(0x8, 0x4)
r2 = socket(0x2, 0x3, 0x4)
semctl$auto(0x1ff, 0x2, 0x13, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/time_for_children\x00')
sync_file_range$auto(0xa79, 0x9a1, 0x3, 0xffffffffffffffff)
syz_open_procfs$namespace(0x0, &(0x7f0000000380)='ns/cgroup\x00')
mmap$auto(0x0, 0xfe6, 0x3a75, 0x9b72, 0x2, 0x8000)
sendmsg$auto_NL80211_CMD_TDLS_MGMT310(r3, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000100)={&(0x7f0000000980)={0x80c, 0x0, 0x2, 0x70bd25, 0x25dfdbff, {}, [@NL80211_ATTR_MLD_ADDR={0x1e, 0x13a, "cf3dc9019d5f51eac28ca729842c7a78732168f22ff7fedb883a"}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x9}, @NL80211_ATTR_IE_ASSOC_RESP={0x7bb, 0x80, "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"}, @NL80211_ATTR_KEY_SEQ={0xb, 0xa, "3ccc7afb42aa19"}, @NL80211_ATTR_STA_VLAN={0x8, 0x14, 0x4}]}, 0x80c}, 0x1, 0x0, 0x0, 0x20000800}, 0x20000000)
ioctl$auto(0x20000000000003, 0x1, 0x8)
socketpair$auto(0xfffffffffffff000, 0x8, 0x8, 0x8)
sendmsg$auto_NL80211_CMD_SET_WOWLAN299(r2, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80c0}, 0x20000884)

23.138105811s ago: executing program 3 (id=7075):
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
socket(0x2, 0x1, 0x106)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x27f1)
write$auto(0x5, 0x800, 0x80000001)
write$auto(0x6, 0x230d, 0xfdef)
socket$nl_generic(0x10, 0x3, 0x10)
open(&(0x7f0000004080)='./file0\x00', 0x40, 0x23)
recvfrom$auto(0x5, 0x5634, 0xffffffff, 0xf86c, 0xfffffffffffffffd, 0x6)
r0 = socket(0x29, 0x2, 0x0)
syz_genetlink_get_family_id$auto_HSR(&(0x7f0000000200), 0xffffffffffffffff)
setsockopt$auto(0xb, 0x4, 0x17, 0x4808, 0x82)
syz_genetlink_get_family_id$auto_NLBL_MGMT(&(0x7f0000000040), r0)
sendmsg$auto_NLBL_MGMT_C_LISTALL365(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x1, 0x0, 0x0, 0x40000}, 0x4000)

22.839766334s ago: executing program 3 (id=7077):
mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10) (async)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'syz_tun\x00'}) (async)
socket$nl_generic(0x10, 0x3, 0x10)
recvfrom$auto(0x0, 0xe, 0x1, 0x800000000, 0x0, 0x4) (async)
splice$auto(0x4, 0x0, 0x6, 0x0, 0x1000, 0xf) (async)
utime$auto(0x3, 0x20000000000006)
setrlimit$auto(0x1000000007, 0x3) (async)
mmap$auto(0x5, 0x0, 0x1, 0x13, 0x58c1, 0x0) (async)
socket(0x1d, 0x2, 0x2) (async)
clone$auto(0x40083b42, 0x5c84, 0xdb, 0x6, 0x100000000000f)
socket(0x1e, 0x2, 0x0)
eventfd$auto(0x2)

3.956743243s ago: executing program 2 (id=7144):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb5, 0x401, 0x7ffc) (async)
clone$auto(0x7, 0x7fffffffffffffff, 0xfffffffffffffffa, 0x6, 0x1) (async)
mlock$auto(0xfbe8, 0x5f626901) (async)
mlock$auto(0x4, 0x8)
mlock$auto(0x7c88, 0x7fff)

3.688784118s ago: executing program 2 (id=7146):
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
socket(0x2, 0x1, 0x106)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x27f1)
write$auto(0x5, 0x800, 0x80000001)
recvfrom$auto(0x5, 0x5634, 0xffffffff, 0xf86c, 0xfffffffffffffffd, 0x6)
r0 = socket(0x29, 0x2, 0x0)
syz_genetlink_get_family_id$auto_HSR(&(0x7f0000000200), 0xffffffffffffffff)
setsockopt$auto(0xb, 0x4, 0x17, 0x4808, 0x82)
syz_genetlink_get_family_id$auto_NLBL_MGMT(&(0x7f0000000040), r0)
sendmsg$auto_NLBL_MGMT_C_LISTALL365(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x1, 0x0, 0x0, 0x40000}, 0x4000)

2.424415439s ago: executing program 2 (id=7150):
socket(0xa, 0x2, 0x0)
mmap$auto(0x0, 0x9, 0xdf, 0xeb1, 0x401, 0x8000)
getsockopt$auto(0x3, 0x0, 0x6, 0x0, 0x5)
process_vm_readv$auto(0x1ff, 0x2d, 0x7553, 0x0, 0x1, 0x8001)
fanotify_init$auto(0x7, 0x2)

1.912135697s ago: executing program 2 (id=7154):
readahead$auto(0x1, 0x1000, 0x2)
readahead$auto(0x800, 0x8, 0x4)
readahead$auto(0x9, 0x0, 0x644c)
readahead$auto(0x2, 0xf, 0x10000)
readahead$auto(0x9, 0x8, 0x0)
readahead$auto(0x79a62c16, 0x68, 0x8)
readahead$auto(0xff, 0xd, 0x2)
readahead$auto(0x400, 0x0, 0x2)
readahead$auto(0x6, 0x7, 0x400)
readahead$auto(0x6, 0x81, 0x0)
readahead$auto(0x0, 0x368d25c5, 0x7)
readahead$auto(0x4, 0x1, 0x3)
readahead$auto(0xfff, 0x4, 0x3)
readahead$auto(0x4, 0xfffffffffffffff9, 0x8)
r0 = syz_genetlink_get_family_id$auto_nfc(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_NFC_CMD_DEP_LINK_UP183(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40001081}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x24, r0, 0x100, 0x70bd27, 0x25dfdbfc, {}, [@NFC_ATTR_VENDOR_ID={0x8, 0x1d, 0x4}, @NFC_ATTR_DEVICE_POWERED={0x5, 0xc, 0x5}]}, 0x24}, 0x1, 0x0, 0x0, 0x4080}, 0x800)
readahead$auto(0x401, 0x5, 0x3ff)
readahead$auto(0xa, 0x0, 0x4)
readahead$auto(0xaf, 0xe6, 0x2)
readahead$auto(0x5, 0x8, 0x7)
readahead$auto(0x648, 0xd87a, 0xffffffffffffffff)
readahead$auto(0x0, 0x9, 0x2)
readahead$auto(0x3, 0x4, 0x194b)
readahead$auto(0xffff, 0x10001, 0x1d)
readahead$auto(0x0, 0x8, 0x3)
readahead$auto(0x2, 0x3ca, 0x6)
readahead$auto(0xffff, 0x1de2, 0x0)
readahead$auto(0x100000001, 0xc, 0x27f)
readahead$auto(0x7fff, 0x0, 0x5)
readahead$auto(0xa8c, 0x8001, 0x0)

1.552040301s ago: executing program 1 (id=7157):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
getresgid$auto(0x10, 0x9, 0x7fff)
semctl$auto(0x1ff, 0x2, 0x13, 0x1)
r0 = socket(0x22, 0xb, 0xfffffff9) (async, rerun: 64)
r1 = syz_genetlink_get_family_id$auto_TASKSTATS(&(0x7f0000000040), 0xffffffffffffffff) (rerun: 64)
sendmsg$auto_CGROUPSTATS_CMD_GET19(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd28, 0x25dfdbfb, {}, [@CGROUPSTATS_CMD_ATTR_FD={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8051}, 0x815) (async)
io_uring_setup$auto(0x40000000c55, 0x10)

1.451989461s ago: executing program 2 (id=7158):
mlockall$auto(0x7)
mmap$auto(0x0, 0x20009, 0x8, 0xeb1, 0x1000401, 0x4a)
sched_getparam$auto(0x1, 0xfff)
setfsgid$auto(0x6)
sendmsg$auto_NL80211_CMD_ASSOCIATE208(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0xf4e46fb82b3880e8}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4001}, 0x4000000)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
r0 = syz_genetlink_get_family_id$auto_MAC80211_HWSIM(&(0x7f0000000880), 0xffffffffffffffff)
madvise$auto(0x5, 0x0, 0x40)
r1 = socket(0x10, 0x2, 0x0)
sendmsg$auto_HWSIM_CMD_GET_RADIO78(r1, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={&(0x7f0000000040)=ANY=[@ANYBLOB="3400000eb146a78e3d301da26d", @ANYRES16=r0, @ANYBLOB="310f29bd7004fcdbdf2506000000"], 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x4004802)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
sched_getparam$auto(0x8, 0x4)
r2 = socket(0x2, 0x3, 0x4)
semctl$auto(0x1ff, 0x2, 0x13, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/time_for_children\x00')
sync_file_range$auto(0xa79, 0x9a1, 0x3, 0xffffffffffffffff)
syz_open_procfs$namespace(0x0, &(0x7f0000000380)='ns/cgroup\x00')
mmap$auto(0x0, 0xfe6, 0x3a75, 0x9b72, 0x2, 0x8000)
sendmsg$auto_NL80211_CMD_TDLS_MGMT310(r3, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000100)={&(0x7f0000000980)={0x58, 0x0, 0x2, 0x70bd25, 0x25dfdbff, {}, [@NL80211_ATTR_MLD_ADDR={0x1e, 0x13a, "cf3dc9019d5f51eac28ca729842c7a78732168f22ff7fedb883a"}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x9}, @NL80211_ATTR_KEY_SEQ={0x11, 0xa, "3ccc7afb42aa19d1c6b46552ba"}, @NL80211_ATTR_STA_VLAN={0x8, 0x14, 0x4}]}, 0x58}, 0x1, 0x0, 0x0, 0x20000800}, 0x20000000)
ioctl$auto(0x20000000000003, 0x1, 0x8)
socketpair$auto(0xfffffffffffff000, 0x8, 0x8, 0x8)
sendmsg$auto_NL80211_CMD_SET_WOWLAN299(r2, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80c0}, 0x20000884)

629.869338ms ago: executing program 2 (id=7159):
madvise$auto(0x0, 0x7fffffffffffffff, 0xa) (async, rerun: 32)
mmap$auto(0x200000000000, 0x8, 0x1000000004, 0x9b72, 0x4000, 0x8000) (async, rerun: 32)
mmap$auto(0x0, 0x5, 0xdf, 0x9b72, 0x2, 0x8000) (async, rerun: 32)
clone$auto(0x8000000000000000, 0x104, 0x200, 0x1, 0x100000000) (async, rerun: 32)
madvise$auto(0x0, 0x3, 0x15) (async, rerun: 64)
clone$auto(0x1002, 0x9, 0x10000200001, 0x3, 0x9) (rerun: 64)

555.723281ms ago: executing program 1 (id=7160):
mmap$auto(0x0, 0x8, 0xdf, 0x409b72, 0x2, 0x8000)
semget$auto(0x6, 0x10, 0x7fffffffffffffff)
open(&(0x7f0000000040)='./cgroup.cpu/cpuset.cpus\x00', 0x361f43, 0x0)
fanotify_init$auto(0x2, 0x2)
socket(0x10, 0x3, 0x6)
socket(0x10, 0x2, 0x9)
sendfile$auto(0x6, 0x3, 0x0, 0xc01)
r0 = socket(0x18, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
mmap$auto(0x0, 0x2000a, 0x4000000000df, 0x15, 0xa91, 0x8000)
mq_open$auto(0x7, 0x1, 0x3, 0x5)
mmap$auto(0x0, 0x6, 0x1000000004, 0x9b72, 0x2, 0x8000)
clone$auto(0xd111, 0x6, 0x1000000002, 0xc, 0xfffd)
vmsplice$auto(0xf, 0x100000001, 0x40000000000000e, 0x6)
io_uring_setup$auto(0x3ff, 0x3)
socket(0x2, 0x2, 0x0)
socket(0x10, 0x3, 0x6)
mmap$auto(0x47768e13, 0x8, 0xe0, 0x400000000018, 0x8, 0x18022)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
mincore$auto(0x0, 0x8000000000005b, 0x2)
mbind$auto(0x1000, 0x8, 0x5, 0x9, 0x9, 0x1)
fork$auto()
mmap$auto(0xf000, 0x8, 0x1000000003, 0x2009b72, 0x2, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
sched_getscheduler$auto(0x1ff)
sendmsg$auto_VDPA_CMD_DEV_NEW460(r0, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000180)={&(0x7f0000000240)=ANY=[@ANYRES16=0x0, @ANYRES16=0x0, @ANYBLOB="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"], 0xa0}, 0x1, 0x0, 0x0, 0xc810}, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/cgroup\x00')
socket$nl_generic(0x10, 0x3, 0x10)

492.934221ms ago: executing program 1 (id=7161):
syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/pid_for_children\x00')
mmap$auto(0x0, 0x8, 0xdf, 0x409b72, 0x2, 0x8000)
semget$auto(0x6, 0x10, 0x8000000000000002)
socket(0x1, 0x1, 0x0)
ioctl$auto(0x1, 0x541b, 0x8)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_IOAM6(&(0x7f0000000540), 0xffffffffffffffff)
sendmsg$auto_IOAM6_CMD_NS_SET_SCHEMA115(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r1, 0x1, 0x70bd2d, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x804}, 0x40000)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
io_uring_setup$auto(0x3ff, 0x3)
socket(0x2, 0x1, 0x0)
r2 = socket(0x10, 0x3, 0x6)
mmap$auto(0x0, 0x20007, 0xdf, 0x10000000eb1, 0x8, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/cgroup\x00')
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x27f1)
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT25(r2, 0x0, 0x8000)
recvmmsg$auto(0x3, 0x8, 0x7, 0x8, 0x3a)

311.95331ms ago: executing program 1 (id=7162):
socket(0x22, 0x2, 0x24)
ioperm$auto(0x3, 0x5, 0x149)
statmount$auto(0x1, 0x1, 0x8000000000000000, 0xfffffffffffffffe)
socket(0x28, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x5, 0x0)
mmap$auto(0x0, 0x9, 0x72, 0x8b72, 0x2, 0x8000)
semctl$auto(0x1ff, 0x2, 0x13, 0x1)
getsockopt$auto(0x6, 0x84, 0x4, 0x8000000000401, 0x2)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
semctl$auto(0x1ff, 0x2, 0x13, 0x4)
migrate_pages$auto(0x1, 0xc, 0x9, 0x7)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000002700), 0xffffffffffffffff)
sendmsg$auto_NBD_CMD_RECONFIGURE160(r0, &(0x7f00000027c0)={0x0, 0x0, &(0x7f0000002780)={&(0x7f0000000000)={0x1c, r1, 0x1, 0x70bd2c, 0x25dfdbfb, {}, [@NBD_ATTR_INDEX={0x8, 0x1, 0x2070}]}, 0x1c}}, 0x884)

67.861223ms ago: executing program 1 (id=7163):
mmap$auto(0x0, 0x9, 0x72, 0x8b72, 0x2, 0x8000)
mmap$auto(0x8, 0x6, 0x5, 0x18, 0x314, 0x8cf5)
uname$auto(0x10)
msgsnd$auto(0x8000000000000000, 0xcf, 0x2000, 0x400)
msgsnd$auto(0x7, 0x6, 0x30000000000, 0x9)

0s ago: executing program 1 (id=7164):
mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000) (async)
mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000)
socket(0xa, 0x3, 0x6)
setsockopt$auto(0x3, 0x29, 0x36, 0xe33, 0x90)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nfsd(&(0x7f00000001c0), 0xffffffffffffffff) (async)
r1 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$auto_NFSD_CMD_THREADS_SET201(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)={0x24, r1, 0x1, 0x70bd26, 0x25dfdbff, {}, [@NFSD_A_SERVER_LEASETIME={0x8, 0x3, 0xaf}, @NFSD_A_SERVER_THREADS={0x8, 0x1, 0x10001}]}, 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x4)

kernel console output (not intermixed with test programs):

bond_slave_1): Enslaving as an active interface with an up link
[ 1624.677697][T30225] FAULT_INJECTION: forcing a failure.
[ 1624.677697][T30225] name failslab, interval 1, probability 0, space 0, times 0
[ 1624.706280][T30225] CPU: 0 UID: 0 PID: 30225 Comm: syz.0.6066 Not tainted 6.11.0-syzkaller-01609-ga4ebad655b98 #0
[ 1624.716763][T30225] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1624.726860][T30225] Call Trace:
[ 1624.730173][T30225]  <TASK>
[ 1624.733133][T30225]  dump_stack_lvl+0x16c/0x1f0
[ 1624.737922][T30225]  should_fail_ex+0x497/0x5b0
[ 1624.742661][T30225]  ? fs_reclaim_acquire+0xae/0x160
[ 1624.747842][T30225]  should_failslab+0xc2/0x120
[ 1624.752566][T30225]  __kmalloc_noprof+0xcb/0x410
[ 1624.757383][T30225]  ? __wake_up+0x3f/0x60
[ 1624.761690][T30225]  sk_prot_alloc+0x1a8/0x2a0
[ 1624.766340][T30225]  sk_alloc+0x36/0xb90
[ 1624.770484][T30225]  ? __pfx_genl_release+0x10/0x10
[ 1624.775563][T30225]  __netlink_create+0x5e/0x2c0
[ 1624.780384][T30225]  ? __wake_up+0x3f/0x60
[ 1624.784704][T30225]  netlink_create+0x3a4/0x630
[ 1624.789439][T30225]  ? __pfx_genl_bind+0x10/0x10
[ 1624.794255][T30225]  ? __pfx_genl_unbind+0x10/0x10
[ 1624.799256][T30225]  __sock_create+0x32e/0x800
[ 1624.803908][T30225]  __sys_socket+0x14f/0x260
[ 1624.808474][T30225]  ? __pfx___sys_socket+0x10/0x10
[ 1624.813559][T30225]  ? do_user_addr_fault+0x83d/0x13f0
[ 1624.818917][T30225]  __x64_sys_socket+0x72/0xb0
[ 1624.823651][T30225]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1624.828935][T30225]  do_syscall_64+0xcd/0x250
[ 1624.833495][T30225]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1624.839462][T30225] RIP: 0033:0x7f290e97fe17
[ 1624.843928][T30225] Code: f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1624.863680][T30225] RSP: 002b:00007f290f7f9fa8 EFLAGS: 00000286 ORIG_RAX: 0000000000000029
[ 1624.872147][T30225] RAX: ffffffffffffffda RBX: 00007f290eb35f80 RCX: 00007f290e97fe17
[ 1624.880165][T30225] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010
[ 1624.888168][T30225] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000
[ 1624.896180][T30225] R10: 0000000000000000 R11: 0000000000000286 R12: 0000000000000001
[ 1624.904189][T30225] R13: 0000000000000000 R14: 00007f290eb35f80 R15: 00007ffc67e850a8
[ 1624.912225][T30225]  </TASK>
[ 1624.921292][T25288] Bluetooth: hci2: command tx timeout
[ 1625.941809][T30138] team0: Port device team_slave_0 added
[ 1625.988965][T30138] team0: Port device team_slave_1 added
[ 1626.292498][   T64] hsr_slave_0: left promiscuous mode
[ 1626.320972][   T64] hsr_slave_1: left promiscuous mode
[ 1626.343773][   T64] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1626.354806][   T64] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1626.385846][   T64] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1626.393362][   T64] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1626.756558][   T64] veth1_macvtap: left promiscuous mode
[ 1626.762242][   T64] veth0_macvtap: left promiscuous mode
[ 1626.804422][   T64] veth1_vlan: left promiscuous mode
[ 1626.809885][   T64] veth0_vlan: left promiscuous mode
[ 1629.479786][T30260] Invalid ELF header magic: != ELF
[ 1629.769640][T29903] syz.1.5984 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1630.416274][T29903] CPU: 1 UID: 0 PID: 29903 Comm: syz.1.5984 Not tainted 6.11.0-syzkaller-01609-ga4ebad655b98 #0
[ 1630.426771][T29903] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1630.436868][T29903] Call Trace:
[ 1630.440173][T29903]  <TASK>
[ 1630.443134][T29903]  dump_stack_lvl+0x16c/0x1f0
[ 1630.447877][T29903]  dump_header+0x101/0x900
[ 1630.452355][T29903]  oom_kill_process+0x270/0xa60
[ 1630.457265][T29903]  out_of_memory+0x343/0x16b0
[ 1630.461991][T29903]  ? find_held_lock+0x20/0x110
[ 1630.466813][T29903]  ? __pfx_out_of_memory+0x10/0x10
[ 1630.471983][T29903]  ? find_held_lock+0x2d/0x110
[ 1630.476834][T29903]  mem_cgroup_out_of_memory+0x207/0x270
[ 1630.482441][T29903]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1630.488562][T29903]  ? do_raw_spin_unlock+0x172/0x230
[ 1630.493801][T29903]  try_charge_memcg+0x5b9/0xaf0
[ 1630.498702][T29903]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1630.504120][T29903]  ? get_mem_cgroup_from_mm+0x129/0x5f0
[ 1630.509717][T29903]  __mem_cgroup_charge+0x99/0x270
[ 1630.514770][T29903]  shmem_alloc_and_add_folio+0x214/0xce0
[ 1630.520441][T29903]  ? filemap_get_entry+0x1b2/0x3c0
[ 1630.525586][T29903]  ? __pfx_filemap_get_entry+0x10/0x10
[ 1630.531102][T29903]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[ 1630.537306][T29903]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1630.543244][T29903]  ? __shmem_is_huge+0x213/0x300
[ 1630.548222][T29903]  shmem_get_folio_gfp+0xa62/0x15e0
[ 1630.553482][T29903]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[ 1630.559159][T29903]  shmem_write_begin+0x15a/0x360
[ 1630.564142][T29903]  ? __pfx_shmem_write_begin+0x10/0x10
[ 1630.569636][T29903]  ? balance_dirty_pages_ratelimited_flags+0x92/0x1270
[ 1630.576536][T29903]  generic_perform_write+0x312/0xaa0
[ 1630.581865][T29903]  ? __pfx_generic_perform_write+0x10/0x10
[ 1630.587744][T29903]  ? __pfx_generic_write_checks+0x10/0x10
[ 1630.593509][T29903]  shmem_file_write_iter+0x114/0x140
[ 1630.598830][T29903]  ? __pfx_shmem_file_write_iter+0x10/0x10
[ 1630.604672][T29903]  __kernel_write_iter+0x310/0xa80
[ 1630.609820][T29903]  ? __pfx___kernel_write_iter+0x10/0x10
[ 1630.615483][T29903]  ? get_dump_page+0x15c/0x220
[ 1630.620285][T29903]  ? copy_mc_enhanced_fast_string+0xa/0x13
[ 1630.626139][T29903]  dump_user_range+0x389/0x8a0
[ 1630.630956][T29903]  ? __pfx_dump_user_range+0x10/0x10
[ 1630.636281][T29903]  ? dump_align+0xa3/0xd0
[ 1630.640643][T29903]  ? __pfx_writenote+0x10/0x10
[ 1630.645445][T29903]  elf_core_dump+0x2727/0x3810
[ 1630.650239][T29903]  ? hlock_class+0x4e/0x130
[ 1630.654780][T29903]  ? __pfx_elf_core_dump+0x10/0x10
[ 1630.659926][T29903]  ? kasan_save_stack+0x42/0x60
[ 1630.664799][T29903]  ? kasan_save_stack+0x33/0x60
[ 1630.669661][T29903]  ? __kasan_kmalloc+0xaa/0xb0
[ 1630.674443][T29903]  ? __kmalloc_node_noprof+0x211/0x440
[ 1630.680022][T29903]  ? __kvmalloc_node_noprof+0x9d/0x1a0
[ 1630.685508][T29903]  ? irqentry_exit_to_user_mode+0x13f/0x280
[ 1630.691440][T29903]  ? asm_exc_page_fault+0x26/0x30
[ 1630.696495][T29903]  ? 0xffffffffff600000
[ 1630.700736][T29903]  ? do_coredump+0x29f9/0x3dd0
[ 1630.705529][T29903]  do_coredump+0x29f9/0x3dd0
[ 1630.710162][T29903]  ? __pfx_do_coredump+0x10/0x10
[ 1630.715176][T29903]  ? find_held_lock+0x2d/0x110
[ 1630.719989][T29903]  get_signal+0x237c/0x26d0
[ 1630.724526][T29903]  ? force_sig_fault+0xad/0xf0
[ 1630.729322][T29903]  ? __pfx_get_signal+0x10/0x10
[ 1630.734231][T29903]  arch_do_signal_or_restart+0x90/0x7e0
[ 1630.739849][T29903]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 1630.746064][T29903]  ? __bad_area_nosemaphore+0x334/0x6a0
[ 1630.751672][T29903]  ? do_user_addr_fault+0x920/0x13f0
[ 1630.757027][T29903]  irqentry_exit_to_user_mode+0x13f/0x280
[ 1630.762781][T29903]  asm_exc_page_fault+0x26/0x30
[ 1630.767668][T29903] RIP: 0033:0x7fce0257df01
[ 1630.772111][T29903] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 <c3> 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f
[ 1630.791762][T29903] RSP: 002b:0000000000000004 EFLAGS: 00010217
[ 1630.797861][T29903] RAX: 0000000000000000 RBX: 00007fce02736058 RCX: 00007fce0257def9
[ 1630.805851][T29903] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 00000000000003ff
[ 1630.813841][T29903] RBP: 00007fce025f0b76 R08: 0000000000008001 R09: 0000000000000000
[ 1630.821831][T29903] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000000
[ 1630.829818][T29903] R13: 0000000000000001 R14: 00007fce02736058 R15: 00007fff204fa0e8
[ 1630.837826][T29903]  </TASK>
[ 1631.117088][T29903] memory: usage 307200kB, limit 307200kB, failcnt 17152
[ 1631.196463][T29903] memory+swap: usage 432196kB, limit 9007199254740988kB, failcnt 0
[ 1631.247644][T29903] kmem: usage 3536kB, limit 9007199254740988kB, failcnt 0
[ 1631.264448][T30279] delete_channel: no stack
[ 1631.276138][T29903] Memory cgroup stats for /syz1:
[ 1631.276532][T29903] cache 310509568
[ 1631.336498][T29903] rss 442368
[ 1631.339766][T29903] rss_huge 0
[ 1631.343006][T29903] shmem 310349824
[ 1631.434778][T29903] mapped_file 98304
[ 1631.438653][T29903] dirty 98304
[ 1631.441966][T29903] writeback 0
[ 1631.514119][T29903] workingset_refault_anon 5327
[ 1631.519093][T29903] workingset_refault_file 426
[ 1631.523803][T29903] swap 127995904
[ 1631.564087][T29903] swapcached 0
[ 1631.567537][T29903] pgpgin 2027925
[ 1631.571131][T29903] pgpgout 1954053
[ 1631.617217][T29903] pgfault 409816
[ 1631.620834][T29903] pgmajfault 1709
[ 1631.674221][T29903] inactive_anon 219009024
[ 1631.678633][T29903] active_anon 91783168
[ 1631.725763][T29903] inactive_file 159744
[ 1631.729927][T29903] active_file 0
[ 1631.733414][T29903] unevictable 0
[ 1631.799573][T29903] hierarchical_memory_limit 314572800
[ 1631.820641][T29903] hierarchical_memsw_limit 9223372036854771712
[ 1631.854203][T29903] total_cache 310509568
[ 1631.934918][T29903] total_rss 442368
[ 1631.938710][T29903] total_rss_huge 0
[ 1631.942465][T29903] total_shmem 310349824
[ 1632.007503][T29903] total_mapped_file 98304
[ 1632.011903][T29903] total_dirty 98304
[ 1632.028077][T29903] total_writeback 0
[ 1632.031949][T29903] total_workingset_refault_anon 5327
[ 1632.104389][T29903] total_workingset_refault_file 426
[ 1632.109745][T29903] total_swap 127995904
[ 1632.113850][T29903] total_swapcached 0
[ 1632.252545][T29903] total_pgpgin 2027925
[ 1632.321606][T29903] total_pgpgout 1954053
[ 1632.784421][T29903] total_pgfault 409816
[ 1632.788554][T29903] total_pgmajfault 1709
[ 1632.792733][T29903] total_inactive_anon 219009024
[ 1633.052581][ T4624] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1633.064178][ T4624] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1633.074116][ T4624] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1633.084802][ T4624] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1633.108022][ T4624] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[ 1633.127572][ T4624] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1633.454042][T29903] total_active_anon 91783168
[ 1633.458737][T29903] total_inactive_file 159744
[ 1633.463351][T29903] total_active_file 0
[ 1634.030402][T29903] total_unevictable 0
[ 1634.141826][T29903] anon_cost 0
[ 1634.403811][T29903] file_cost 0
[ 1634.486075][T29903] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.5984,pid=29889,uid=0
[ 1635.205845][ T4624] Bluetooth: hci4: command tx timeout
[ 1635.335158][T29903] Memory cgroup out of memory: Killed process 29889 (syz.1.5984) total-vm:91400kB, anon-rss:616kB, file-rss:38016kB, shmem-rss:0kB, UID:0 pgtables:148kB oom_score_adj:1000
[ 1637.276384][ T4624] Bluetooth: hci4: command tx timeout
[ 1638.174634][   T64] team0 (unregistering): Port device team_slave_1 removed
[ 1639.355608][ T4624] Bluetooth: hci4: command tx timeout
[ 1639.718435][   T64] team0 (unregistering): Port device team_slave_0 removed
[ 1641.439223][ T4624] Bluetooth: hci4: command tx timeout
[ 1642.823604][T25288] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1642.835266][T25288] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1642.843695][T25288] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1642.855258][T30138] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1642.862284][T30138] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1642.882257][T25288] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1642.890999][T30138] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1642.911793][T25288] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 1642.924681][T30138] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1642.927458][T25288] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1642.935958][T30138] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1643.002118][T30138] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1643.605973][T30138] hsr_slave_0: entered promiscuous mode
[ 1643.654908][T30138] hsr_slave_1: entered promiscuous mode
[ 1643.697048][T30138] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1643.708435][T30138] Cannot create hsr debugfs directory
[ 1644.606699][   T64] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1644.782967][   T64] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1644.938894][   T64] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1645.036811][ T4624] Bluetooth: hci1: command tx timeout
[ 1645.178491][   T64] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1645.331668][T30335] chnl_net:caif_netlink_parms(): no params data found
[ 1645.766977][T30308] chnl_net:caif_netlink_parms(): no params data found
[ 1646.303023][T30335] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1646.331285][T30335] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1646.338853][T30335] bridge_slave_0: entered allmulticast mode
[ 1646.347512][T30335] bridge_slave_0: entered promiscuous mode
[ 1646.488296][   T64] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1646.523175][T30335] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1646.530882][T30335] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1646.538540][T30335] bridge_slave_1: entered allmulticast mode
[ 1646.547899][T30335] bridge_slave_1: entered promiscuous mode
[ 1646.672711][   T64] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1646.746991][T30335] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1646.842191][   T64] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1646.862964][T30335] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1646.875567][T30308] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1646.882939][T30308] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1646.891825][T30308] bridge_slave_0: entered allmulticast mode
[ 1646.908594][T30308] bridge_slave_0: entered promiscuous mode
[ 1646.921533][T30308] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1646.938321][T30308] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1646.946201][T30308] bridge_slave_1: entered allmulticast mode
[ 1646.954578][T30308] bridge_slave_1: entered promiscuous mode
[ 1647.058163][   T64] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1647.106820][T30308] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1647.121870][T25288] Bluetooth: hci1: command tx timeout
[ 1647.141741][T30335] team0: Port device team_slave_0 added
[ 1647.153011][T30335] team0: Port device team_slave_1 added
[ 1647.191937][T30308] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1647.371208][T30308] team0: Port device team_slave_0 added
[ 1647.379209][T30335] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1647.387698][T30335] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1647.434334][T30335] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1647.476283][T30308] team0: Port device team_slave_1 added
[ 1647.569501][T30335] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1647.585691][T30335] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1647.644352][T30335] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1647.885143][T30138] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1647.920587][T30138] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1647.958372][T30308] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1647.974269][T30308] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1648.022660][T30308] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1648.048679][T30308] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1648.056025][T30308] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1648.082716][T30308] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1648.272512][T30138] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1648.342495][T30335] hsr_slave_0: entered promiscuous mode
[ 1648.366383][T30335] hsr_slave_1: entered promiscuous mode
[ 1648.384489][T30335] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1648.392134][T30335] Cannot create hsr debugfs directory
[ 1648.440835][T30138] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1648.655687][   T64] bridge_slave_1: left allmulticast mode
[ 1648.661395][   T64] bridge_slave_1: left promiscuous mode
[ 1648.684954][   T64] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1648.697209][   T64] bridge_slave_0: left allmulticast mode
[ 1648.702899][   T64] bridge_slave_0: left promiscuous mode
[ 1648.725528][   T64] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1648.768362][   T64] bridge_slave_1: left allmulticast mode
[ 1648.776050][   T64] bridge_slave_1: left promiscuous mode
[ 1648.781900][   T64] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1648.832498][   T64] bridge_slave_0: left allmulticast mode
[ 1648.838872][   T64] bridge_slave_0: left promiscuous mode
[ 1648.854543][   T64] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1649.196187][T25288] Bluetooth: hci1: command tx timeout
[ 1650.553406][   T64] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1650.607868][   T64] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1650.636461][   T64] bond0 (unregistering): Released all slaves
[ 1650.925826][   T64] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1650.949107][   T64] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1650.987823][   T64] bond0 (unregistering): Released all slaves
[ 1651.152265][T30308] hsr_slave_0: entered promiscuous mode
[ 1651.194927][T30308] hsr_slave_1: entered promiscuous mode
[ 1651.208231][T30308] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1651.232384][T30308] Cannot create hsr debugfs directory
[ 1651.283550][T25288] Bluetooth: hci1: command tx timeout
[ 1651.340074][T30430] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6112'.
[ 1654.022808][T30138] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1654.110907][   T64] hsr_slave_0: left promiscuous mode
[ 1654.121061][   T64] hsr_slave_1: left promiscuous mode
[ 1654.155555][   T64] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1654.173591][   T64] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1654.214894][   T64] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1654.222364][   T64] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1654.323522][   T64] hsr_slave_0: left promiscuous mode
[ 1654.366308][   T64] hsr_slave_1: left promiscuous mode
[ 1654.404916][   T64] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1654.412525][   T64] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1654.448512][   T64] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1654.464238][   T64] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1654.544228][   T64] veth1_macvtap: left promiscuous mode
[ 1654.549885][   T64] veth0_macvtap: left promiscuous mode
[ 1654.573698][   T64] veth1_vlan: left promiscuous mode
[ 1654.579301][   T64] veth0_vlan: left promiscuous mode
[ 1654.611017][   T64] veth1_macvtap: left promiscuous mode
[ 1654.617006][   T64] veth0_macvtap: left promiscuous mode
[ 1654.624493][   T64] veth1_vlan: left promiscuous mode
[ 1654.629927][   T64] veth0_vlan: left promiscuous mode
[ 1656.225487][   T64] team0 (unregistering): Port device team_slave_1 removed
[ 1656.285521][   T64] team0 (unregistering): Port device team_slave_0 removed
[ 1657.625214][   T64] team0 (unregistering): Port device team_slave_1 removed
[ 1657.691528][   T64] team0 (unregistering): Port device team_slave_0 removed
[ 1658.372592][T30138] 8021q: adding VLAN 0 to HW filter on device team0
[ 1658.421343][T24436] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1658.428646][T24436] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1658.539095][T24432] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1658.546401][T24432] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1658.914754][T30308] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 1659.126233][T30308] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 1659.169488][T30308] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 1659.272400][T30308] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 1660.072076][T30138] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1660.480159][T30335] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1660.534517][T30308] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1660.551370][T30335] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1660.592593][T30335] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1660.663147][T30335] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1660.709941][T30138] veth0_vlan: entered promiscuous mode
[ 1660.757406][T30308] 8021q: adding VLAN 0 to HW filter on device team0
[ 1660.807601][   T64] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1660.814992][   T64] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1660.861977][   T64] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1660.869261][   T64] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1660.919128][T30138] veth1_vlan: entered promiscuous mode
[ 1661.241634][T30138] veth0_macvtap: entered promiscuous mode
[ 1661.304630][T30138] veth1_macvtap: entered promiscuous mode
[ 1661.530729][T30138] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1661.564493][T30138] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1661.602626][T30138] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1661.622610][T30138] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1661.645829][T30138] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1661.674743][T30138] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1661.693999][T30138] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1661.724056][T30138] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1661.733930][T30138] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1661.764802][T30138] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1661.779271][T30138] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1661.836914][T30138] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1661.874141][T30138] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1661.902870][T30138] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1661.944018][T30138] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1661.967959][T30138] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1661.982736][T30138] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1662.008367][T30138] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1662.032737][T30138] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1662.044307][T30138] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1662.064783][T30138] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1662.081990][T30138] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1662.102321][T30335] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1662.122844][T30138] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1662.135723][T30138] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1662.145347][T30138] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1662.155578][T30138] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1662.281154][T30335] 8021q: adding VLAN 0 to HW filter on device team0
[ 1662.359080][T25401] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1662.366402][T25401] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1662.469823][T29118] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1662.477199][T29118] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1662.516685][T30308] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1662.753263][T29118] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1662.776305][T29118] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1663.004202][T24432] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1663.012166][T24432] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1663.232231][T30308] veth0_vlan: entered promiscuous mode
[ 1663.312263][T30308] veth1_vlan: entered promiscuous mode
[ 1663.522058][T30308] veth0_macvtap: entered promiscuous mode
[ 1663.586191][T30308] veth1_macvtap: entered promiscuous mode
[ 1663.689734][T30308] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1663.710929][T30308] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1663.731056][T30308] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1663.754189][T30308] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1663.768745][T30308] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1663.797304][T30308] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1663.824225][T30308] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1663.837102][T30308] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1663.855616][T30308] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1663.880533][T30308] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1663.893190][T30308] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1663.904420][T30308] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1663.926035][T30308] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1663.980804][T30308] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1664.034022][T30308] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1664.043907][T30308] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1664.076633][T30308] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1664.094006][T30308] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1664.125846][T30308] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1664.144343][T30308] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1664.169613][T30308] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1664.196990][T30308] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1664.221608][T30308] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1664.242672][T30308] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1664.263544][T30308] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1664.286828][T30308] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1664.337873][T30308] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1664.365926][T30308] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1664.385793][T30308] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1664.407210][T30308] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1664.546164][T30335] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1664.992610][T30335] veth0_vlan: entered promiscuous mode
[ 1665.022077][T29118] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1665.064232][T29118] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1665.193570][T24432] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1665.212853][T30335] veth1_vlan: entered promiscuous mode
[ 1665.248252][T24432] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1665.381815][T30335] veth0_macvtap: entered promiscuous mode
[ 1665.439194][T30335] veth1_macvtap: entered promiscuous mode
[ 1665.555761][T30335] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1665.588995][T30335] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1665.626374][T30335] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1665.684131][T30335] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1665.716633][T30335] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1665.758182][T30335] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1665.787686][T30335] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1665.825815][T30335] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1665.860340][T30335] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1665.889137][T30335] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1665.917180][T30614] FAULT_INJECTION: forcing a failure.
[ 1665.917180][T30614] name failslab, interval 1, probability 0, space 0, times 0
[ 1665.921112][T30335] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1665.981372][T30335] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1666.003038][T30335] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1666.004103][T30614] CPU: 1 UID: 0 PID: 30614 Comm: syz.1.6089 Not tainted 6.11.0-syzkaller-01609-ga4ebad655b98 #0
[ 1666.023953][T30614] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1666.026028][T30335] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1666.034037][T30614] Call Trace:
[ 1666.034053][T30614]  <TASK>
[ 1666.034068][T30614]  dump_stack_lvl+0x16c/0x1f0
[ 1666.034122][T30614]  should_fail_ex+0x497/0x5b0
[ 1666.034172][T30614]  ? fs_reclaim_acquire+0xae/0x160
[ 1666.064753][T30614]  should_failslab+0xc2/0x120
[ 1666.069498][T30614]  __kmalloc_noprof+0xcb/0x410
[ 1666.074332][T30614]  ? rcu_is_watching+0x12/0xc0
[ 1666.079163][T30614]  tomoyo_encode2+0x100/0x3e0
[ 1666.083891][T30614]  tomoyo_realpath_from_path+0x1a7/0x710
[ 1666.088790][T30335] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1666.089560][T30614]  ? tomoyo_profile+0x47/0x60
[ 1666.101473][T30614]  tomoyo_path_number_perm+0x245/0x5b0
[ 1666.107000][T30614]  ? tomoyo_path_number_perm+0x232/0x5b0
[ 1666.112714][T30614]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1666.118768][T30614]  ? proc_fail_nth_write+0xa0/0x260
[ 1666.124069][T30614]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1666.129355][T30614]  ? native_tss_update_io_bitmap+0x2ec/0x610
[ 1666.135418][T30614]  security_file_ioctl+0x75/0xc0
[ 1666.140436][T30614]  __x64_sys_ioctl+0xbb/0x220
[ 1666.145196][T30614]  do_syscall_64+0xcd/0x250
[ 1666.149752][T30614]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1666.155706][T30614] RIP: 0033:0x7faa6337def9
[ 1666.160170][T30614] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1666.179833][T30614] RSP: 002b:00007faa64157038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1666.180613][T30335] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1666.188275][T30614] RAX: ffffffffffffffda RBX: 00007faa63535f80 RCX: 00007faa6337def9
[ 1666.188301][T30614] RDX: 0000000000000008 RSI: 000000000000541b RDI: 0000000000000001
[ 1666.188323][T30614] RBP: 00007faa64157090 R08: 0000000000000000 R09: 0000000000000000
[ 1666.188345][T30614] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1666.188366][T30614] R13: 0000000000000000 R14: 00007faa63535f80 R15: 00007ffd785a00b8
[ 1666.188429][T30614]  </TASK>
[ 1666.247684][T30614] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1666.284894][T30335] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1666.295002][T30335] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1666.305852][T30335] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1666.316952][T30335] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1666.327792][T30335] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1666.337705][T30335] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1666.348307][T30335] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1666.358347][T30335] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1666.374165][T30335] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1666.386087][T30335] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1666.401329][T30335] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1666.411253][T30335] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1666.421919][T30335] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1666.456711][T30335] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1666.506445][T30335] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1666.526130][T30335] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1666.564042][T30335] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1666.615695][T30335] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1667.249931][T25400] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1667.292239][T25400] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1667.453291][T25401] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1667.478116][T25401] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1668.610713][T30686] FAULT_INJECTION: forcing a failure.
[ 1668.610713][T30686] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1668.736000][T30686] CPU: 1 UID: 0 PID: 30686 Comm: syz.2.6149 Not tainted 6.11.0-syzkaller-01609-ga4ebad655b98 #0
[ 1668.746507][T30686] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1668.756653][T30686] Call Trace:
[ 1668.759948][T30686]  <TASK>
[ 1668.762890][T30686]  dump_stack_lvl+0x16c/0x1f0
[ 1668.767632][T30686]  should_fail_ex+0x497/0x5b0
[ 1668.772347][T30686]  ? fs_reclaim_acquire+0xae/0x160
[ 1668.777502][T30686]  should_fail_alloc_page+0xe7/0x130
[ 1668.782818][T30686]  prepare_alloc_pages.constprop.0+0x16f/0x560
[ 1668.789024][T30686]  __alloc_pages_noprof+0x194/0x2460
[ 1668.794354][T30686]  ? __pfx_mark_lock+0x10/0x10
[ 1668.799168][T30686]  ? hlock_class+0x4e/0x130
[ 1668.803694][T30686]  ? __lock_acquire+0xbdd/0x3cb0
[ 1668.808670][T30686]  ? __pfx___alloc_pages_noprof+0x10/0x10
[ 1668.814422][T30686]  ? hlock_class+0x4e/0x130
[ 1668.818950][T30686]  ? __lock_acquire+0xbdd/0x3cb0
[ 1668.823939][T30686]  ? __lock_acquire+0xbdd/0x3cb0
[ 1668.828933][T30686]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1668.834875][T30686]  ? policy_nodemask+0xea/0x4e0
[ 1668.839769][T30686]  alloc_pages_mpol_noprof+0x275/0x610
[ 1668.845262][T30686]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[ 1668.851295][T30686]  ? find_held_lock+0x2d/0x110
[ 1668.856101][T30686]  folio_alloc_mpol_noprof+0x36/0xd0
[ 1668.861418][T30686]  shmem_alloc_folio+0x135/0x160
[ 1668.866397][T30686]  shmem_alloc_and_add_folio+0x19c/0xce0
[ 1668.872076][T30686]  ? filemap_get_entry+0x1b2/0x3c0
[ 1668.877220][T30686]  ? __pfx_filemap_get_entry+0x10/0x10
[ 1668.882727][T30686]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[ 1668.888950][T30686]  ? shmem_allowable_huge_orders+0x2c9/0x340
[ 1668.894971][T30686]  shmem_get_folio_gfp+0xa62/0x15e0
[ 1668.900201][T30686]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[ 1668.905876][T30686]  ? __pfx_lock_acquire+0x10/0x10
[ 1668.910938][T30686]  shmem_fault+0x205/0xaf0
[ 1668.915382][T30686]  ? __pfx_shmem_fault+0x10/0x10
[ 1668.920369][T30686]  ? rcu_read_unlock+0x2d/0xb0
[ 1668.925191][T30686]  ? __pfx_lock_release+0x10/0x10
[ 1668.930269][T30686]  ? pte_offset_map_nolock+0xfe/0x1c0
[ 1668.935684][T30686]  __do_fault+0x10a/0x490
[ 1668.940043][T30686]  ? __pfx_filemap_map_pages+0x10/0x10
[ 1668.945539][T30686]  __handle_mm_fault+0x3c6b/0x5480
[ 1668.950691][T30686]  ? __pfx_mt_find+0x10/0x10
[ 1668.955319][T30686]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1668.960853][T30686]  ? find_vma+0xc0/0x140
[ 1668.965124][T30686]  ? __pfx_find_vma+0x10/0x10
[ 1668.969829][T30686]  handle_mm_fault+0x498/0xa60
[ 1668.974647][T30686]  ? spurious_kernel_fault+0x361/0x3c0
[ 1668.980156][T30686]  do_user_addr_fault+0x7a3/0x13f0
[ 1668.985318][T30686]  exc_page_fault+0x5c/0xc0
[ 1668.989857][T30686]  asm_exc_page_fault+0x26/0x30
[ 1668.994742][T30686] RIP: 0010:__put_user_4+0x11/0x20
[ 1668.999885][T30686] Code: 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90
[ 1669.019514][T30686] RSP: 0018:ffffc900044379d8 EFLAGS: 00050202
[ 1669.025605][T30686] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000008
[ 1669.033596][T30686] RDX: ffff88803ca01e00 RSI: ffffffff88d9f606 RDI: ffffffff8bb07180
[ 1669.041595][T30686] RBP: 0000000000000000 R08: 0000000000000000 R09: fffffbfff2022f8b
[ 1669.049593][T30686] R10: ffffffff90117c5f R11: 0000000000000000 R12: 0000000000000008
[ 1669.057583][T30686] R13: 1ffff92000886f3c R14: 000000000000541b R15: 0000000000000002
[ 1669.065631][T30686]  ? sk_ioctl+0x1c6/0x360
[ 1669.070000][T30686]  sk_ioctl+0x1d2/0x360
[ 1669.074227][T30686]  ? __pfx_sk_ioctl+0x10/0x10
[ 1669.078930][T30686]  ? hlock_class+0x4e/0x130
[ 1669.083454][T30686]  ? mark_lock+0xb5/0xc60
[ 1669.087821][T30686]  pn_socket_ioctl+0x66/0x360
[ 1669.092530][T30686]  sock_do_ioctl+0x116/0x280
[ 1669.097156][T30686]  ? __pfx_sock_do_ioctl+0x10/0x10
[ 1669.102341][T30686]  ? find_held_lock+0x2d/0x110
[ 1669.107135][T30686]  ? tomoyo_path_number_perm+0x292/0x5b0
[ 1669.112813][T30686]  sock_ioctl+0x22e/0x6c0
[ 1669.117174][T30686]  ? __pfx_sock_ioctl+0x10/0x10
[ 1669.122076][T30686]  ? tomoyo_path_number_perm+0x467/0x5b0
[ 1669.127757][T30686]  ? tomoyo_path_number_perm+0x190/0x5b0
[ 1669.133476][T30686]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1669.139504][T30686]  ? __pfx_sock_ioctl+0x10/0x10
[ 1669.144392][T30686]  do_vfs_ioctl+0x688/0x1a90
[ 1669.149009][T30686]  ? __pfx_do_vfs_ioctl+0x10/0x10
[ 1669.154082][T30686]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1669.159315][T30686]  ? __fget_light+0x173/0x210
[ 1669.164041][T30686]  ? bpf_lsm_file_ioctl+0x9/0x10
[ 1669.169011][T30686]  __x64_sys_ioctl+0x116/0x220
[ 1669.173805][T30686]  do_syscall_64+0xcd/0x250
[ 1669.178337][T30686]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1669.184263][T30686] RIP: 0033:0x7fdcdc17def9
[ 1669.188699][T30686] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1669.208350][T30686] RSP: 002b:00007fdcdcf6d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1669.216789][T30686] RAX: ffffffffffffffda RBX: 00007fdcdc336058 RCX: 00007fdcdc17def9
[ 1669.224817][T30686] RDX: 0000000000000008 RSI: 000000000000541b RDI: 0000000000000001
[ 1669.232806][T30686] RBP: 00007fdcdcf6d090 R08: 0000000000000000 R09: 0000000000000000
[ 1669.240793][T30686] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1669.248785][T30686] R13: 0000000000000000 R14: 00007fdcdc336058 R15: 00007fff276e4688
[ 1669.256795][T30686]  </TASK>
[ 1670.327230][T30727] netlink: 16 bytes leftover after parsing attributes in process `syz.3.6160'.
[ 1671.074721][T30740] ptrace attach of "./syz-executor exec"[29379] was attempted by "./syz-executor exec"[30740]
[ 1673.226087][T30778] FAULT_INJECTION: forcing a failure.
[ 1673.226087][T30778] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1673.421993][T30778] CPU: 0 UID: 0 PID: 30778 Comm: syz.0.6167 Not tainted 6.11.0-syzkaller-01609-ga4ebad655b98 #0
[ 1673.432503][T30778] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1673.442591][T30778] Call Trace:
[ 1673.445948][T30778]  <TASK>
[ 1673.448937][T30778]  dump_stack_lvl+0x16c/0x1f0
[ 1673.453655][T30778]  should_fail_ex+0x497/0x5b0
[ 1673.458370][T30778]  _copy_to_user+0x30/0xc0
[ 1673.462805][T30778]  simple_read_from_buffer+0xd0/0x160
[ 1673.468217][T30778]  proc_fail_nth_read+0x19e/0x280
[ 1673.473283][T30778]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1673.478866][T30778]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1673.484447][T30778]  vfs_read+0x1d4/0xbd0
[ 1673.488677][T30778]  ? __pfx_vfs_read+0x10/0x10
[ 1673.493394][T30778]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1673.498638][T30778]  ? __fget_light+0x173/0x210
[ 1673.503359][T30778]  ksys_read+0x12f/0x260
[ 1673.507636][T30778]  ? __pfx_ksys_read+0x10/0x10
[ 1673.512445][T30778]  do_syscall_64+0xcd/0x250
[ 1673.517007][T30778]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1673.522929][T30778] RIP: 0033:0x7f0b9f57c93c
[ 1673.527375][T30778] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[ 1673.547009][T30778] RSP: 002b:00007f0ba0422030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1673.555444][T30778] RAX: ffffffffffffffda RBX: 00007f0b9f736058 RCX: 00007f0b9f57c93c
[ 1673.563434][T30778] RDX: 000000000000000f RSI: 00007f0ba04220a0 RDI: 0000000000000002
[ 1673.571439][T30778] RBP: 00007f0ba0422090 R08: 0000000000000000 R09: 0000000000000000
[ 1673.579429][T30778] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1673.587422][T30778] R13: 0000000000000000 R14: 00007f0b9f736058 R15: 00007fff6f98b688
[ 1673.595427][T30778]  </TASK>
[ 1673.765165][T30791] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6175'.
[ 1673.857272][ T1272] ieee802154 phy0 wpan0: encryption failed: -22
[ 1673.863723][ T1272] ieee802154 phy1 wpan1: encryption failed: -22
[ 1676.400400][T30833] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6188'.
[ 1676.575446][T30829] netlink: get zone limit has 4 unknown bytes
[ 1676.983854][T30845] netlink: 4224 bytes leftover after parsing attributes in process `syz.3.6192'.
[ 1681.046830][T25288] Bluetooth: hci0: command 0x0406 tx timeout
[ 1684.280942][T30944] nbd: must specify a size in bytes for the device
[ 1687.615503][T30994] Invalid ELF header magic: != ELF
[ 1689.861572][T31019] can: request_module (can-proto-4) failed.
[ 1690.688080][T31025] can: request_module (can-proto-4) failed.
[ 1693.632843][   T64] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1694.507105][   T64] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1694.879320][   T64] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1695.289433][T25288] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1695.304510][T25288] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1695.313426][T25288] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1695.343105][T25288] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1695.364590][T25288] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 1695.372547][T25288] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1695.508600][   T64] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1695.795624][T31078] FAULT_INJECTION: forcing a failure.
[ 1695.795624][T31078] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1695.818926][T31078] CPU: 0 UID: 0 PID: 31078 Comm: syz.0.6260 Not tainted 6.11.0-syzkaller-01609-ga4ebad655b98 #0
[ 1695.829501][T31078] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1695.839589][T31078] Call Trace:
[ 1695.842896][T31078]  <TASK>
[ 1695.845873][T31078]  dump_stack_lvl+0x16c/0x1f0
[ 1695.850619][T31078]  should_fail_ex+0x497/0x5b0
[ 1695.855364][T31078]  _copy_to_user+0x30/0xc0
[ 1695.859826][T31078]  simple_read_from_buffer+0xd0/0x160
[ 1695.865265][T31078]  proc_fail_nth_read+0x19e/0x280
[ 1695.870347][T31078]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1695.875949][T31078]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1695.881549][T31078]  vfs_read+0x1d4/0xbd0
[ 1695.885758][T31078]  ? __fdget_pos+0xeb/0x180
[ 1695.890322][T31078]  ? __pfx_vfs_read+0x10/0x10
[ 1695.895075][T31078]  ? __pfx___mutex_lock+0x10/0x10
[ 1695.900161][T31078]  ? __fget_files+0x256/0x400
[ 1695.904916][T31078]  ksys_read+0x12f/0x260
[ 1695.909220][T31078]  ? __pfx_ksys_read+0x10/0x10
[ 1695.914055][T31078]  do_syscall_64+0xcd/0x250
[ 1695.918619][T31078]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1695.924588][T31078] RIP: 0033:0x7f0b9f57c93c
[ 1695.929124][T31078] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[ 1695.948796][T31078] RSP: 002b:00007f0ba0443030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1695.957250][T31078] RAX: ffffffffffffffda RBX: 00007f0b9f735f80 RCX: 00007f0b9f57c93c
[ 1695.965258][T31078] RDX: 000000000000000f RSI: 00007f0ba04430a0 RDI: 0000000000000003
[ 1695.973264][T31078] RBP: 00007f0ba0443090 R08: 0000000000000000 R09: 0000000000000000
[ 1695.981267][T31078] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1695.989266][T31078] R13: 0000000000000000 R14: 00007f0b9f735f80 R15: 00007fff6f98b688
[ 1695.997284][T31078]  </TASK>
[ 1696.603573][T31069] chnl_net:caif_netlink_parms(): no params data found
[ 1696.962236][   T64] bridge_slave_1: left allmulticast mode
[ 1696.974075][   T64] bridge_slave_1: left promiscuous mode
[ 1696.979948][   T64] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1697.092153][   T64] bridge_slave_0: left allmulticast mode
[ 1697.101110][   T64] bridge_slave_0: left promiscuous mode
[ 1697.107659][   T64] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1697.435410][ T4624] Bluetooth: hci2: command tx timeout
[ 1697.954120][T31103] netlink: 'syz.0.6269': attribute type 11 has an invalid length.
[ 1699.195290][   T64] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1699.356257][   T64] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1699.514319][ T4624] Bluetooth: hci2: command tx timeout
[ 1699.517627][   T64] bond0 (unregistering): Released all slaves
[ 1700.246444][T31135] svc: failed to register nfsdv3 RPC service (errno 111).
[ 1700.311896][T31135] svc: failed to register nfsaclv3 RPC service (errno 111).
[ 1700.336548][T31069] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1700.366610][T31069] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1700.384178][T31069] bridge_slave_0: entered allmulticast mode
[ 1700.392437][T31069] bridge_slave_0: entered promiscuous mode
[ 1700.652121][T31069] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1700.668845][T31069] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1700.723175][T31069] bridge_slave_1: entered allmulticast mode
[ 1700.739126][T31069] bridge_slave_1: entered promiscuous mode
[ 1701.140250][T31069] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1701.188850][T31069] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1701.595098][ T4624] Bluetooth: hci2: command tx timeout
[ 1702.315869][T31069] team0: Port device team_slave_0 added
[ 1702.359141][T31069] team0: Port device team_slave_1 added
[ 1703.190739][T31069] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1703.217854][T31069] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1703.294931][T31069] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1703.614543][   T64] hsr_slave_0: left promiscuous mode
[ 1703.675882][ T4624] Bluetooth: hci2: command tx timeout
[ 1703.856770][   T64] hsr_slave_1: left promiscuous mode
[ 1703.872699][   T64] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1703.885889][   T64] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1704.010744][   T64] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1704.028631][   T64] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1704.229574][   T64] veth1_macvtap: left promiscuous mode
[ 1704.242411][   T64] veth0_macvtap: left promiscuous mode
[ 1704.257446][   T64] veth1_vlan: left promiscuous mode
[ 1704.268747][   T64] veth0_vlan: left promiscuous mode
[ 1707.447054][   T64] team0 (unregistering): Port device team_slave_1 removed
[ 1707.583187][   T64] team0 (unregistering): Port device team_slave_0 removed
[ 1708.911815][T31069] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1708.921105][T31069] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1708.948748][T31069] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1709.425189][T31069] hsr_slave_0: entered promiscuous mode
[ 1709.466919][T31069] hsr_slave_1: entered promiscuous mode
[ 1709.524152][T31069] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1709.531792][T31069] Cannot create hsr debugfs directory
[ 1710.066397][T31260] netlink: zone id is out of range
[ 1710.071605][T31260] netlink: zone id is out of range
[ 1712.127596][T31069] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1712.203754][T31069] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1712.280020][T31069] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1712.353261][T31069] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1712.880116][T31069] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1713.002179][T31069] 8021q: adding VLAN 0 to HW filter on device team0
[ 1713.043984][T24436] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1713.051250][T24436] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1713.099539][T24436] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1713.106876][T24436] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1714.042607][T31069] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1714.262185][T31069] veth0_vlan: entered promiscuous mode
[ 1714.327325][T31069] veth1_vlan: entered promiscuous mode
[ 1714.452289][T31069] veth0_macvtap: entered promiscuous mode
[ 1714.512647][T31069] veth1_macvtap: entered promiscuous mode
[ 1714.605497][T31069] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1714.628093][T31069] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1714.644519][T31069] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1714.665225][T31069] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1714.686766][T31069] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1714.714247][T31069] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1714.734974][T31069] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1714.761971][T31069] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1714.783552][T31069] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1714.809393][T31069] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1714.827528][T31069] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1714.847296][T31069] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1714.888008][T31069] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1714.921318][T31069] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1714.966537][T31069] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1715.014684][T31069] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1715.043356][T31069] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1715.054121][T31069] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1715.074462][T31069] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1715.090028][T31069] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1715.135701][T31069] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1715.174453][T31069] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1715.214117][T31069] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1715.234047][T31069] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1715.251035][T31069] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1715.261912][T31069] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1715.272922][T31069] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1715.294616][T31069] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1715.305204][T31069] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1715.326989][T31069] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1715.388434][T31069] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1715.405416][T31069] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1715.415053][T31069] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1715.440236][T31069] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1715.874508][T24436] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1715.882395][T24436] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1716.037973][T29118] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1716.084113][T29118] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1719.251937][T31480] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6361'.
[ 1719.304935][T31480] nbd: must specify a device to reconfigure
[ 1723.084598][T31602] Invalid ELF header magic: != ELF
[ 1723.232055][T31613] Invalid ELF header magic: != ELF
[ 1724.234957][T31651] FAULT_INJECTION: forcing a failure.
[ 1724.234957][T31651] name failslab, interval 1, probability 0, space 0, times 0
[ 1724.274656][T31651] CPU: 1 UID: 0 PID: 31651 Comm: syz.0.6413 Not tainted 6.11.0-syzkaller-01609-ga4ebad655b98 #0
[ 1724.285165][T31651] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1724.295260][T31651] Call Trace:
[ 1724.298571][T31651]  <TASK>
[ 1724.301587][T31651]  dump_stack_lvl+0x16c/0x1f0
[ 1724.306328][T31651]  should_fail_ex+0x497/0x5b0
[ 1724.311065][T31651]  ? fs_reclaim_acquire+0xae/0x160
[ 1724.316227][T31651]  should_failslab+0xc2/0x120
[ 1724.320934][T31651]  __kmalloc_noprof+0xcb/0x410
[ 1724.325734][T31651]  ? __pfx_lock_acquire+0x10/0x10
[ 1724.330819][T31651]  tomoyo_realpath_from_path+0xbf/0x710
[ 1724.336393][T31651]  ? tomoyo_profile+0x47/0x60
[ 1724.341104][T31651]  tomoyo_path_number_perm+0x245/0x5b0
[ 1724.346602][T31651]  ? tomoyo_path_number_perm+0x232/0x5b0
[ 1724.352280][T31651]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1724.358298][T31651]  ? proc_fail_nth_write+0xa0/0x260
[ 1724.363567][T31651]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1724.368816][T31651]  ? __fget_light+0x173/0x210
[ 1724.373565][T31651]  security_file_ioctl+0x75/0xc0
[ 1724.378560][T31651]  __x64_sys_ioctl+0xbb/0x220
[ 1724.383265][T31651]  do_syscall_64+0xcd/0x250
[ 1724.387819][T31651]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1724.393748][T31651] RIP: 0033:0x7f0b9f57def9
[ 1724.398188][T31651] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1724.417830][T31651] RSP: 002b:00007f0ba0443038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1724.426271][T31651] RAX: ffffffffffffffda RBX: 00007f0b9f735f80 RCX: 00007f0b9f57def9
[ 1724.434274][T31651] RDX: 0000000000000008 RSI: 000000000000541b RDI: 0000000000000001
[ 1724.442277][T31651] RBP: 00007f0ba0443090 R08: 0000000000000000 R09: 0000000000000000
[ 1724.450268][T31651] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1724.458255][T31651] R13: 0000000000000000 R14: 00007f0b9f735f80 R15: 00007fff6f98b688
[ 1724.466262][T31651]  </TASK>
[ 1724.664580][T31651] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1726.738697][T31707] svc: failed to register nfsdv3 RPC service (errno 512).
[ 1726.764372][T31707] svc: failed to register nfsaclv3 RPC service (errno 512).
[ 1731.718521][T31870] FAULT_INJECTION: forcing a failure.
[ 1731.718521][T31870] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1731.748850][T31870] CPU: 1 UID: 0 PID: 31870 Comm: syz.1.6500 Not tainted 6.11.0-syzkaller-01609-ga4ebad655b98 #0
[ 1731.759432][T31870] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1731.769530][T31870] Call Trace:
[ 1731.772846][T31870]  <TASK>
[ 1731.775817][T31870]  dump_stack_lvl+0x16c/0x1f0
[ 1731.780573][T31870]  should_fail_ex+0x497/0x5b0
[ 1731.785318][T31870]  ? fs_reclaim_acquire+0xae/0x160
[ 1731.790515][T31870]  should_fail_alloc_page+0xe7/0x130
[ 1731.795860][T31870]  prepare_alloc_pages.constprop.0+0x16f/0x560
[ 1731.802089][T31870]  __alloc_pages_noprof+0x194/0x2460
[ 1731.807430][T31870]  ? __pfx_mark_lock+0x10/0x10
[ 1731.812250][T31870]  ? __lock_acquire+0xbdd/0x3cb0
[ 1731.817255][T31870]  ? __pfx___alloc_pages_noprof+0x10/0x10
[ 1731.823029][T31870]  ? hlock_class+0x4e/0x130
[ 1731.827583][T31870]  ? mark_lock+0xb5/0xc60
[ 1731.832013][T31870]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1731.837981][T31870]  ? policy_nodemask+0xea/0x4e0
[ 1731.842891][T31870]  alloc_pages_mpol_noprof+0x275/0x610
[ 1731.848416][T31870]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[ 1731.854468][T31870]  pte_alloc_one+0x20/0x370
[ 1731.859017][T31870]  __do_fault+0x320/0x490
[ 1731.863414][T31870]  ? __pfx_filemap_map_pages+0x10/0x10
[ 1731.868948][T31870]  __handle_mm_fault+0x3c6b/0x5480
[ 1731.874124][T31870]  ? __pfx_mt_find+0x10/0x10
[ 1731.878771][T31870]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1731.884308][T31870]  ? find_vma+0xc0/0x140
[ 1731.888598][T31870]  ? __pfx_find_vma+0x10/0x10
[ 1731.893329][T31870]  handle_mm_fault+0x498/0xa60
[ 1731.898147][T31870]  ? spurious_kernel_fault+0x361/0x3c0
[ 1731.903662][T31870]  do_user_addr_fault+0x7a3/0x13f0
[ 1731.908846][T31870]  exc_page_fault+0x5c/0xc0
[ 1731.913410][T31870]  asm_exc_page_fault+0x26/0x30
[ 1731.918340][T31870] RIP: 0010:__put_user_4+0x11/0x20
[ 1731.923541][T31870] Code: 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90
[ 1731.943208][T31870] RSP: 0018:ffffc90004987900 EFLAGS: 00050202
[ 1731.949328][T31870] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000008
[ 1731.957351][T31870] RDX: ffff8880345fbc00 RSI: ffffffff88d9f606 RDI: ffffffff8bb07180
[ 1731.965374][T31870] RBP: 0000000000000000 R08: 0000000000000000 R09: fffffbfff2022f8b
[ 1731.973388][T31870] R10: ffffffff90117c5f R11: 0000000000000000 R12: 0000000000000008
[ 1731.981399][T31870] R13: 1ffff92000930f21 R14: 000000000000541b R15: 0000000000000002
[ 1731.989427][T31870]  ? sk_ioctl+0x1c6/0x360
[ 1731.993827][T31870]  sk_ioctl+0x1d2/0x360
[ 1731.998039][T31870]  ? __pfx_sk_ioctl+0x10/0x10
[ 1732.002772][T31870]  ? tomoyo_path_number_perm+0x467/0x5b0
[ 1732.008475][T31870]  ? kasan_save_stack+0x42/0x60
[ 1732.013382][T31870]  inet6_ioctl+0x1c7/0x2b0
[ 1732.017837][T31870]  ? __x64_sys_ioctl+0xbb/0x220
[ 1732.022719][T31870]  ? do_syscall_64+0xcd/0x250
[ 1732.027433][T31870]  ? __pfx_inet6_ioctl+0x10/0x10
[ 1732.032420][T31870]  ? hlock_class+0x4e/0x130
[ 1732.036981][T31870]  ? mark_lock+0xb5/0xc60
[ 1732.041389][T31870]  ? __pfx_mark_lock+0x10/0x10
[ 1732.046221][T31870]  sock_do_ioctl+0x116/0x280
[ 1732.050870][T31870]  ? __pfx_sock_do_ioctl+0x10/0x10
[ 1732.056050][T31870]  ? find_held_lock+0x2d/0x110
[ 1732.060876][T31870]  ? tomoyo_path_number_perm+0x292/0x5b0
[ 1732.066570][T31870]  sock_ioctl+0x22e/0x6c0
[ 1732.070947][T31870]  ? __pfx_sock_ioctl+0x10/0x10
[ 1732.075848][T31870]  ? tomoyo_path_number_perm+0x467/0x5b0
[ 1732.081552][T31870]  ? tomoyo_path_number_perm+0x190/0x5b0
[ 1732.087256][T31870]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1732.093299][T31870]  ? __pfx_sock_ioctl+0x10/0x10
[ 1732.098196][T31870]  do_vfs_ioctl+0x688/0x1a90
[ 1732.102840][T31870]  ? __pfx_do_vfs_ioctl+0x10/0x10
[ 1732.107938][T31870]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1732.113193][T31870]  ? __fget_light+0x173/0x210
[ 1732.117921][T31870]  ? bpf_lsm_file_ioctl+0x9/0x10
[ 1732.122901][T31870]  __x64_sys_ioctl+0x116/0x220
[ 1732.127720][T31870]  do_syscall_64+0xcd/0x250
[ 1732.132271][T31870]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1732.138221][T31870] RIP: 0033:0x7faa6337def9
[ 1732.142674][T31870] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1732.162351][T31870] RSP: 002b:00007faa64157038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1732.170834][T31870] RAX: ffffffffffffffda RBX: 00007faa63535f80 RCX: 00007faa6337def9
[ 1732.178848][T31870] RDX: 0000000000000008 RSI: 000000000000541b RDI: 0000000000000001
[ 1732.186857][T31870] RBP: 00007faa64157090 R08: 0000000000000000 R09: 0000000000000000
[ 1732.194872][T31870] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1732.202895][T31870] R13: 0000000000000000 R14: 00007faa63535f80 R15: 00007ffd785a00b8
[ 1732.210922][T31870]  </TASK>
[ 1732.856734][T31899] FAULT_INJECTION: forcing a failure.
[ 1732.856734][T31899] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1732.883890][T31899] CPU: 1 UID: 0 PID: 31899 Comm: syz.1.6512 Not tainted 6.11.0-syzkaller-01609-ga4ebad655b98 #0
[ 1732.894396][T31899] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1732.904497][T31899] Call Trace:
[ 1732.907819][T31899]  <TASK>
[ 1732.910773][T31899]  dump_stack_lvl+0x16c/0x1f0
[ 1732.915498][T31899]  should_fail_ex+0x497/0x5b0
[ 1732.920227][T31899]  ? fs_reclaim_acquire+0xae/0x160
[ 1732.925406][T31899]  should_fail_alloc_page+0xe7/0x130
[ 1732.930727][T31899]  prepare_alloc_pages.constprop.0+0x16f/0x560
[ 1732.936920][T31899]  __alloc_pages_noprof+0x194/0x2460
[ 1732.942264][T31899]  ? __pfx_mark_lock+0x10/0x10
[ 1732.947072][T31899]  ? hlock_class+0x4e/0x130
[ 1732.951604][T31899]  ? mark_lock+0xb5/0xc60
[ 1732.955976][T31899]  ? __pfx___alloc_pages_noprof+0x10/0x10
[ 1732.961751][T31899]  ? __lock_acquire+0xbdd/0x3cb0
[ 1732.966737][T31899]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1732.972666][T31899]  ? policy_nodemask+0xea/0x4e0
[ 1732.977546][T31899]  alloc_pages_mpol_noprof+0x275/0x610
[ 1732.983052][T31899]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[ 1732.989062][T31899]  ? find_held_lock+0x2d/0x110
[ 1732.993853][T31899]  folio_alloc_mpol_noprof+0x36/0xd0
[ 1732.999175][T31899]  shmem_alloc_folio+0x135/0x160
[ 1733.004163][T31899]  shmem_alloc_and_add_folio+0x19c/0xce0
[ 1733.009841][T31899]  ? filemap_get_entry+0x1b2/0x3c0
[ 1733.014988][T31899]  ? __pfx_filemap_get_entry+0x10/0x10
[ 1733.020500][T31899]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[ 1733.026690][T31899]  ? shmem_allowable_huge_orders+0x2c9/0x340
[ 1733.032706][T31899]  shmem_get_folio_gfp+0xa62/0x15e0
[ 1733.037940][T31899]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[ 1733.043630][T31899]  ? __pfx_mark_lock+0x10/0x10
[ 1733.048443][T31899]  shmem_fault+0x205/0xaf0
[ 1733.052879][T31899]  ? __pfx_shmem_fault+0x10/0x10
[ 1733.057832][T31899]  ? __pfx_lock_release+0x10/0x10
[ 1733.062887][T31899]  ? __mod_memcg_lruvec_state+0x242/0x5e0
[ 1733.068628][T31899]  ? mark_held_locks+0x9f/0xe0
[ 1733.073415][T31899]  ? pte_alloc_one+0x298/0x370
[ 1733.078219][T31899]  __do_fault+0x10a/0x490
[ 1733.082581][T31899]  ? __pfx_filemap_map_pages+0x10/0x10
[ 1733.088061][T31899]  __handle_mm_fault+0x3c6b/0x5480
[ 1733.093206][T31899]  ? __pfx_mt_find+0x10/0x10
[ 1733.097832][T31899]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1733.103337][T31899]  ? find_vma+0xc0/0x140
[ 1733.107597][T31899]  ? __pfx_find_vma+0x10/0x10
[ 1733.112296][T31899]  handle_mm_fault+0x498/0xa60
[ 1733.117087][T31899]  ? spurious_kernel_fault+0x361/0x3c0
[ 1733.122567][T31899]  do_user_addr_fault+0x7a3/0x13f0
[ 1733.127748][T31899]  exc_page_fault+0x5c/0xc0
[ 1733.132296][T31899]  asm_exc_page_fault+0x26/0x30
[ 1733.137182][T31899] RIP: 0010:__put_user_4+0x11/0x20
[ 1733.142318][T31899] Code: 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90
[ 1733.161942][T31899] RSP: 0018:ffffc9000484f900 EFLAGS: 00050202
[ 1733.168029][T31899] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000008
[ 1733.176021][T31899] RDX: ffff888068808000 RSI: ffffffff88d9f606 RDI: ffffffff8bb07180
[ 1733.184019][T31899] RBP: 0000000000000000 R08: 0000000000000000 R09: fffffbfff2022f8b
[ 1733.192010][T31899] R10: ffffffff90117c5f R11: 0000000000000000 R12: 0000000000000008
[ 1733.200005][T31899] R13: 1ffff92000909f21 R14: 000000000000541b R15: 0000000000000002
[ 1733.208009][T31899]  ? sk_ioctl+0x1c6/0x360
[ 1733.212387][T31899]  sk_ioctl+0x1d2/0x360
[ 1733.216569][T31899]  ? __pfx_sk_ioctl+0x10/0x10
[ 1733.221269][T31899]  ? tomoyo_path_number_perm+0x467/0x5b0
[ 1733.226928][T31899]  ? kasan_save_stack+0x42/0x60
[ 1733.231808][T31899]  inet6_ioctl+0x1c7/0x2b0
[ 1733.236285][T31899]  ? __x64_sys_ioctl+0xbb/0x220
[ 1733.241152][T31899]  ? do_syscall_64+0xcd/0x250
[ 1733.245852][T31899]  ? __pfx_inet6_ioctl+0x10/0x10
[ 1733.250812][T31899]  ? hlock_class+0x4e/0x130
[ 1733.255333][T31899]  ? mark_lock+0xb5/0xc60
[ 1733.259699][T31899]  ? __pfx_mark_lock+0x10/0x10
[ 1733.264509][T31899]  sock_do_ioctl+0x116/0x280
[ 1733.269158][T31899]  ? __pfx_sock_do_ioctl+0x10/0x10
[ 1733.274321][T31899]  ? find_held_lock+0x2d/0x110
[ 1733.279125][T31899]  ? tomoyo_path_number_perm+0x292/0x5b0
[ 1733.284812][T31899]  sock_ioctl+0x22e/0x6c0
[ 1733.289177][T31899]  ? __pfx_sock_ioctl+0x10/0x10
[ 1733.294053][T31899]  ? tomoyo_path_number_perm+0x467/0x5b0
[ 1733.299730][T31899]  ? tomoyo_path_number_perm+0x190/0x5b0
[ 1733.305405][T31899]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1733.311443][T31899]  ? __pfx_sock_ioctl+0x10/0x10
[ 1733.316351][T31899]  do_vfs_ioctl+0x688/0x1a90
[ 1733.320968][T31899]  ? __pfx_do_vfs_ioctl+0x10/0x10
[ 1733.326044][T31899]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1733.331279][T31899]  ? __fget_light+0x173/0x210
[ 1733.336013][T31899]  ? bpf_lsm_file_ioctl+0x9/0x10
[ 1733.341000][T31899]  __x64_sys_ioctl+0x116/0x220
[ 1733.345800][T31899]  do_syscall_64+0xcd/0x250
[ 1733.350333][T31899]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1733.356265][T31899] RIP: 0033:0x7faa6337def9
[ 1733.360702][T31899] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1733.380347][T31899] RSP: 002b:00007faa64157038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1733.388797][T31899] RAX: ffffffffffffffda RBX: 00007faa63535f80 RCX: 00007faa6337def9
[ 1733.396790][T31899] RDX: 0000000000000008 RSI: 000000000000541b RDI: 0000000000000001
[ 1733.404782][T31899] RBP: 00007faa64157090 R08: 0000000000000000 R09: 0000000000000000
[ 1733.412772][T31899] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1733.420763][T31899] R13: 0000000000000000 R14: 00007faa63535f80 R15: 00007ffd785a00b8
[ 1733.428771][T31899]  </TASK>
[ 1734.319704][T31938] FAULT_INJECTION: forcing a failure.
[ 1734.319704][T31938] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1734.354090][T31938] CPU: 1 UID: 0 PID: 31938 Comm: syz.0.6522 Not tainted 6.11.0-syzkaller-01609-ga4ebad655b98 #0
[ 1734.364592][T31938] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1734.374696][T31938] Call Trace:
[ 1734.378012][T31938]  <TASK>
[ 1734.380978][T31938]  dump_stack_lvl+0x16c/0x1f0
[ 1734.385711][T31938]  should_fail_ex+0x497/0x5b0
[ 1734.390435][T31938]  _copy_to_user+0x30/0xc0
[ 1734.394877][T31938]  simple_read_from_buffer+0xd0/0x160
[ 1734.400287][T31938]  proc_fail_nth_read+0x19e/0x280
[ 1734.405381][T31938]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1734.410966][T31938]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1734.416543][T31938]  vfs_read+0x1d4/0xbd0
[ 1734.420724][T31938]  ? __pfx_vfs_read+0x10/0x10
[ 1734.425452][T31938]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1734.430681][T31938]  ? __fget_light+0x173/0x210
[ 1734.435409][T31938]  ksys_read+0x12f/0x260
[ 1734.439707][T31938]  ? __pfx_ksys_read+0x10/0x10
[ 1734.444521][T31938]  do_syscall_64+0xcd/0x250
[ 1734.449055][T31938]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1734.454977][T31938] RIP: 0033:0x7f0b9f57c93c
[ 1734.459419][T31938] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[ 1734.479063][T31938] RSP: 002b:00007f0ba0443030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1734.487516][T31938] RAX: ffffffffffffffda RBX: 00007f0b9f735f80 RCX: 00007f0b9f57c93c
[ 1734.495506][T31938] RDX: 000000000000000f RSI: 00007f0ba04430a0 RDI: 0000000000000002
[ 1734.503494][T31938] RBP: 00007f0ba0443090 R08: 0000000000000000 R09: 0000000000000000
[ 1734.511494][T31938] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1734.519483][T31938] R13: 0000000000000000 R14: 00007f0b9f735f80 R15: 00007fff6f98b688
[ 1734.527494][T31938]  </TASK>
[ 1735.279952][ T1272] ieee802154 phy0 wpan0: encryption failed: -22
[ 1735.304004][ T1272] ieee802154 phy1 wpan1: encryption failed: -22
[ 1735.760633][T31990] openvswitch: netlink: Message has 136 unknown bytes.
[ 1737.683316][T32069] FAULT_INJECTION: forcing a failure.
[ 1737.683316][T32069] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1737.714130][T32069] CPU: 0 UID: 0 PID: 32069 Comm: syz.0.6566 Not tainted 6.11.0-syzkaller-01609-ga4ebad655b98 #0
[ 1737.724624][T32069] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1737.734747][T32069] Call Trace:
[ 1737.738081][T32069]  <TASK>
[ 1737.741050][T32069]  dump_stack_lvl+0x16c/0x1f0
[ 1737.745784][T32069]  should_fail_ex+0x497/0x5b0
[ 1737.750543][T32069]  _copy_to_user+0x30/0xc0
[ 1737.755030][T32069]  __x64_sys_rt_sigaction+0x202/0x310
[ 1737.760462][T32069]  ? __pfx___x64_sys_rt_sigaction+0x10/0x10
[ 1737.766417][T32069]  ? ksys_write+0x1ab/0x260
[ 1737.771026][T32069]  do_syscall_64+0xcd/0x250
[ 1737.775572][T32069]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1737.781497][T32069] RIP: 0033:0x7f0b9f57def9
[ 1737.785934][T32069] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1737.805576][T32069] RSP: 002b:00007f0ba0443038 EFLAGS: 00000246 ORIG_RAX: 000000000000000d
[ 1737.814018][T32069] RAX: ffffffffffffffda RBX: 00007f0b9f735f80 RCX: 00007f0b9f57def9
[ 1737.822006][T32069] RDX: 0000000000000007 RSI: 0000000000000003 RDI: 0000000000000040
[ 1737.829991][T32069] RBP: 00007f0ba0443090 R08: 0000000000000000 R09: 0000000000000000
[ 1737.837984][T32069] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000001
[ 1737.845978][T32069] R13: 0000000000000000 R14: 00007f0b9f735f80 R15: 00007fff6f98b688
[ 1737.853994][T32069]  </TASK>
[ 1738.890157][T32116] FAULT_INJECTION: forcing a failure.
[ 1738.890157][T32116] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1738.949473][T32116] CPU: 1 UID: 0 PID: 32116 Comm: syz.1.6578 Not tainted 6.11.0-syzkaller-01609-ga4ebad655b98 #0
[ 1738.959977][T32116] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1738.970084][T32116] Call Trace:
[ 1738.973390][T32116]  <TASK>
[ 1738.976392][T32116]  dump_stack_lvl+0x16c/0x1f0
[ 1738.981121][T32116]  should_fail_ex+0x497/0x5b0
[ 1738.985873][T32116]  _copy_to_user+0x30/0xc0
[ 1738.990340][T32116]  simple_read_from_buffer+0xd0/0x160
[ 1738.995778][T32116]  proc_fail_nth_read+0x19e/0x280
[ 1739.000866][T32116]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1739.006467][T32116]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1739.012072][T32116]  vfs_read+0x1d4/0xbd0
[ 1739.016275][T32116]  ? __fdget_pos+0xeb/0x180
[ 1739.020843][T32116]  ? do_sigaction+0x450/0x8c0
[ 1739.025566][T32116]  ? __pfx_vfs_read+0x10/0x10
[ 1739.030289][T32116]  ? __pfx___mutex_lock+0x10/0x10
[ 1739.035373][T32116]  ? __fget_files+0x256/0x400
[ 1739.040093][T32116]  ksys_read+0x12f/0x260
[ 1739.044375][T32116]  ? __pfx_ksys_read+0x10/0x10
[ 1739.049182][T32116]  do_syscall_64+0xcd/0x250
[ 1739.053722][T32116]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1739.059644][T32116] RIP: 0033:0x7faa6337c93c
[ 1739.064083][T32116] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[ 1739.083719][T32116] RSP: 002b:00007faa64157030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1739.092160][T32116] RAX: ffffffffffffffda RBX: 00007faa63535f80 RCX: 00007faa6337c93c
[ 1739.100147][T32116] RDX: 000000000000000f RSI: 00007faa641570a0 RDI: 0000000000000003
[ 1739.108136][T32116] RBP: 00007faa64157090 R08: 0000000000000000 R09: 0000000000000000
[ 1739.116122][T32116] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000001
[ 1739.124106][T32116] R13: 0000000000000000 R14: 00007faa63535f80 R15: 00007ffd785a00b8
[ 1739.132112][T32116]  </TASK>
[ 1739.960004][T24445] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1740.026516][T32145] FAULT_INJECTION: forcing a failure.
[ 1740.026516][T32145] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1740.050443][T32145] CPU: 1 UID: 0 PID: 32145 Comm: syz.0.6588 Not tainted 6.11.0-syzkaller-01609-ga4ebad655b98 #0
[ 1740.061030][T32145] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1740.071125][T32145] Call Trace:
[ 1740.074439][T32145]  <TASK>
[ 1740.077402][T32145]  dump_stack_lvl+0x16c/0x1f0
[ 1740.082148][T32145]  should_fail_ex+0x497/0x5b0
[ 1740.086904][T32145]  _copy_from_user+0x30/0xf0
[ 1740.091547][T32145]  kern_select+0xc1/0x1e0
[ 1740.095942][T32145]  ? __pfx_kern_select+0x10/0x10
[ 1740.100944][T32145]  ? __pfx_ksys_write+0x10/0x10
[ 1740.105852][T32145]  __x64_sys_select+0xbd/0x160
[ 1740.110661][T32145]  ? do_syscall_64+0x91/0x250
[ 1740.115387][T32145]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1740.120664][T32145]  do_syscall_64+0xcd/0x250
[ 1740.125237][T32145]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1740.131186][T32145] RIP: 0033:0x7f0b9f57def9
[ 1740.135640][T32145] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1740.155299][T32145] RSP: 002b:00007f0ba0443038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017
[ 1740.163764][T32145] RAX: ffffffffffffffda RBX: 00007f0b9f735f80 RCX: 00007f0b9f57def9
[ 1740.171789][T32145] RDX: 0000000000000003 RSI: 0000000000000009 RDI: 0000000000000008
[ 1740.179805][T32145] RBP: 00007f0ba0443090 R08: 0000000000000006 R09: 0000000000000000
[ 1740.187816][T32145] R10: 0000000000000080 R11: 0000000000000246 R12: 0000000000000001
[ 1740.195823][T32145] R13: 0000000000000000 R14: 00007f0b9f735f80 R15: 00007fff6f98b688
[ 1740.203855][T32145]  </TASK>
[ 1740.452264][T24445] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1740.732646][T24445] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1740.979515][T24445] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1741.251577][T32173] FAULT_INJECTION: forcing a failure.
[ 1741.251577][T32173] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1741.294110][T32173] CPU: 1 UID: 0 PID: 32173 Comm: syz.3.6599 Not tainted 6.11.0-syzkaller-01609-ga4ebad655b98 #0
[ 1741.304610][T32173] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1741.314719][T32173] Call Trace:
[ 1741.318021][T32173]  <TASK>
[ 1741.320969][T32173]  dump_stack_lvl+0x16c/0x1f0
[ 1741.325691][T32173]  should_fail_ex+0x497/0x5b0
[ 1741.330446][T32173]  _copy_from_user+0x30/0xf0
[ 1741.335083][T32173]  core_sys_select+0x2b6/0xa10
[ 1741.339911][T32173]  ? __pfx_core_sys_select+0x10/0x10
[ 1741.345261][T32173]  ? ktime_get_ts64+0x106/0x2a0
[ 1741.350190][T32173]  ? ktime_get_ts64+0x1ad/0x2a0
[ 1741.355099][T32173]  kern_select+0x15e/0x1e0
[ 1741.359587][T32173]  ? __pfx_kern_select+0x10/0x10
[ 1741.364584][T32173]  ? __pfx_ksys_write+0x10/0x10
[ 1741.369513][T32173]  __x64_sys_select+0xbd/0x160
[ 1741.374329][T32173]  ? do_syscall_64+0x91/0x250
[ 1741.379054][T32173]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1741.384403][T32173]  do_syscall_64+0xcd/0x250
[ 1741.388967][T32173]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1741.394945][T32173] RIP: 0033:0x7fc66cb7def9
[ 1741.399397][T32173] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1741.419057][T32173] RSP: 002b:00007fc66d991038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017
[ 1741.427512][T32173] RAX: ffffffffffffffda RBX: 00007fc66cd35f80 RCX: 00007fc66cb7def9
[ 1741.435519][T32173] RDX: 0000000000000003 RSI: 0000000000000009 RDI: 0000000000000008
[ 1741.443552][T32173] RBP: 00007fc66d991090 R08: 0000000000000006 R09: 0000000000000000
[ 1741.451558][T32173] R10: 0000000000000080 R11: 0000000000000246 R12: 0000000000000001
[ 1741.459560][T32173] R13: 0000000000000000 R14: 00007fc66cd35f80 R15: 00007ffcadf6b7b8
[ 1741.467586][T32173]  </TASK>
[ 1741.504373][T24445] bridge_slave_1: left allmulticast mode
[ 1741.510106][T24445] bridge_slave_1: left promiscuous mode
[ 1741.518727][T24445] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1741.566489][T24445] bridge_slave_0: left allmulticast mode
[ 1741.572233][T24445] bridge_slave_0: left promiscuous mode
[ 1741.601710][T24445] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1742.099789][T25288] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1742.111858][T25288] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1742.126688][T25288] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1742.141517][T25288] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1742.194350][T25288] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 1742.202733][T25288] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1743.265546][T24445] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1743.324277][T24445] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1743.384735][T24445] bond0 (unregistering): Released all slaves
[ 1744.314738][T25288] Bluetooth: hci2: command tx timeout
[ 1744.578899][T32262] Invalid ELF header magic: != ELF
[ 1744.663405][T24445] hsr_slave_0: left promiscuous mode
[ 1744.745359][T24445] hsr_slave_1: left promiscuous mode
[ 1744.790278][T24445] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1744.814101][T24445] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1744.843034][T24445] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1744.864145][T24445] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1744.980909][T24445] veth1_macvtap: left promiscuous mode
[ 1744.990047][T32276] netlink: 280 bytes leftover after parsing attributes in process `syz.0.6628'.
[ 1744.999209][T24445] veth0_macvtap: left promiscuous mode
[ 1744.999609][T24445] veth1_vlan: left promiscuous mode
[ 1744.999855][T24445] veth0_vlan: left promiscuous mode
[ 1746.394200][T25288] Bluetooth: hci2: command tx timeout
[ 1747.764753][T24445] team0 (unregistering): Port device team_slave_1 removed
[ 1747.986390][T24445] team0 (unregistering): Port device team_slave_0 removed
[ 1748.474592][T25288] Bluetooth: hci2: command tx timeout
[ 1749.390407][T32382] could not allocate digest TFM handle 
[ 1750.368178][T32433] svc: failed to register nfsdv3 RPC service (errno 111).
[ 1750.386367][T32433] svc: failed to register nfsaclv3 RPC service (errno 111).
[ 1750.554231][T25288] Bluetooth: hci2: command tx timeout
[ 1751.107892][T32198] chnl_net:caif_netlink_parms(): no params data found
[ 1751.788833][T32198] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1751.818517][T32198] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1751.851947][T32198] bridge_slave_0: entered allmulticast mode
[ 1751.886467][T32198] bridge_slave_0: entered promiscuous mode
[ 1751.926627][T32198] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1751.933893][T32198] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1751.961758][T32198] bridge_slave_1: entered allmulticast mode
[ 1752.024093][T32198] bridge_slave_1: entered promiscuous mode
[ 1752.297084][T32198] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1752.360443][T32198] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1752.599066][T32198] team0: Port device team_slave_0 added
[ 1752.648169][T32198] team0: Port device team_slave_1 added
[ 1752.817387][T32198] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1752.847795][T32198] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1752.914032][T32198] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1752.948446][T32198] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1752.984010][T32198] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1753.069353][T32198] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1753.438263][T32198] hsr_slave_0: entered promiscuous mode
[ 1753.493799][T32198] hsr_slave_1: entered promiscuous mode
[ 1753.544453][T32198] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1753.552096][T32198] Cannot create hsr debugfs directory
[ 1753.874944][T32575] FAULT_INJECTION: forcing a failure.
[ 1753.874944][T32575] name failslab, interval 1, probability 0, space 0, times 0
[ 1753.913737][T32575] CPU: 1 UID: 0 PID: 32575 Comm: syz.1.6739 Not tainted 6.11.0-syzkaller-01609-ga4ebad655b98 #0
[ 1753.924320][T32575] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1753.934442][T32575] Call Trace:
[ 1753.937756][T32575]  <TASK>
[ 1753.940766][T32575]  dump_stack_lvl+0x16c/0x1f0
[ 1753.945497][T32575]  should_fail_ex+0x497/0x5b0
[ 1753.950236][T32575]  ? fs_reclaim_acquire+0xae/0x160
[ 1753.955413][T32575]  should_failslab+0xc2/0x120
[ 1753.960130][T32575]  __kmalloc_node_noprof+0xd1/0x440
[ 1753.965380][T32575]  ? __kvmalloc_node_noprof+0x9d/0x1a0
[ 1753.970906][T32575]  __kvmalloc_node_noprof+0x9d/0x1a0
[ 1753.976240][T32575]  io_uring_setup+0x4f4/0x36c0
[ 1753.981090][T32575]  ? __pfx_io_uring_setup+0x10/0x10
[ 1753.986359][T32575]  ? ksys_write+0x1ab/0x260
[ 1753.990916][T32575]  ? __pfx_ksys_write+0x10/0x10
[ 1753.995829][T32575]  __x64_sys_io_uring_setup+0x98/0x140
[ 1754.001336][T32575]  do_syscall_64+0xcd/0x250
[ 1754.005886][T32575]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1754.011857][T32575] RIP: 0033:0x7faa6337def9
[ 1754.016324][T32575] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1754.035976][T32575] RSP: 002b:00007faa64157038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9
[ 1754.044438][T32575] RAX: ffffffffffffffda RBX: 00007faa63535f80 RCX: 00007faa6337def9
[ 1754.052444][T32575] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000008001
[ 1754.060533][T32575] RBP: 00007faa64157090 R08: 0000000000000000 R09: 0000000000000000
[ 1754.068540][T32575] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1754.076549][T32575] R13: 0000000000000000 R14: 00007faa63535f80 R15: 00007ffd785a00b8
[ 1754.084589][T32575]  </TASK>
[ 1754.395006][T32590] FAULT_INJECTION: forcing a failure.
[ 1754.395006][T32590] name failslab, interval 1, probability 0, space 0, times 0
[ 1754.444181][T32590] CPU: 1 UID: 0 PID: 32590 Comm: syz.3.6743 Not tainted 6.11.0-syzkaller-01609-ga4ebad655b98 #0
[ 1754.454781][T32590] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1754.464906][T32590] Call Trace:
[ 1754.468207][T32590]  <TASK>
[ 1754.471155][T32590]  dump_stack_lvl+0x16c/0x1f0
[ 1754.475872][T32590]  should_fail_ex+0x497/0x5b0
[ 1754.480596][T32590]  ? fs_reclaim_acquire+0xae/0x160
[ 1754.485745][T32590]  should_failslab+0xc2/0x120
[ 1754.490448][T32590]  __kmalloc_noprof+0xcb/0x410
[ 1754.495262][T32590]  ? __pfx_lock_acquire+0x10/0x10
[ 1754.500329][T32590]  tomoyo_realpath_from_path+0xbf/0x710
[ 1754.505925][T32590]  ? tomoyo_profile+0x47/0x60
[ 1754.510649][T32590]  tomoyo_path_perm+0x273/0x480
[ 1754.515535][T32590]  ? tomoyo_path_perm+0x25f/0x480
[ 1754.520612][T32590]  ? __pfx_tomoyo_path_perm+0x10/0x10
[ 1754.526061][T32590]  ? __pfx_mark_lock+0x10/0x10
[ 1754.530879][T32590]  ? hlock_class+0x4e/0x130
[ 1754.535411][T32590]  ? __lock_acquire+0x1620/0x3cb0
[ 1754.540481][T32590]  security_inode_getattr+0xf4/0x160
[ 1754.545814][T32590]  vfs_getattr+0x36/0xb0
[ 1754.550101][T32590]  vfs_statx_path+0x36/0x390
[ 1754.554749][T32590]  do_statx_fd+0x124/0x210
[ 1754.559201][T32590]  ? __pfx_do_statx_fd+0x10/0x10
[ 1754.564184][T32590]  ? __pfx___might_resched+0x10/0x10
[ 1754.569505][T32590]  ? fput+0x32/0x390
[ 1754.573453][T32590]  ? __might_fault+0xe3/0x190
[ 1754.578191][T32590]  __x64_sys_statx+0x24c/0x290
[ 1754.582988][T32590]  do_syscall_64+0xcd/0x250
[ 1754.587523][T32590]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1754.593447][T32590] RIP: 0033:0x7fc66cb7def9
[ 1754.597901][T32590] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1754.617567][T32590] RSP: 002b:00007fc66d970038 EFLAGS: 00000246 ORIG_RAX: 000000000000014c
[ 1754.626024][T32590] RAX: ffffffffffffffda RBX: 00007fc66cd36058 RCX: 00007fc66cb7def9
[ 1754.634023][T32590] RDX: 0000000000001000 RSI: 0000000000000009 RDI: 0000000100000001
[ 1754.642017][T32590] RBP: 00007fc66d970090 R08: 00000000000000d3 R09: 0000000000000000
[ 1754.650014][T32590] R10: 000000000007f000 R11: 0000000000000246 R12: 0000000000000001
[ 1754.658013][T32590] R13: 0000000000000000 R14: 00007fc66cd36058 R15: 00007ffcadf6b7b8
[ 1754.666030][T32590]  </TASK>
[ 1754.699172][T32590] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1755.490636][T32628] FAULT_INJECTION: forcing a failure.
[ 1755.490636][T32628] name failslab, interval 1, probability 0, space 0, times 0
[ 1755.533121][T32628] CPU: 1 UID: 0 PID: 32628 Comm: syz.0.6757 Not tainted 6.11.0-syzkaller-01609-ga4ebad655b98 #0
[ 1755.543634][T32628] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1755.553755][T32628] Call Trace:
[ 1755.557078][T32628]  <TASK>
[ 1755.560062][T32628]  dump_stack_lvl+0x16c/0x1f0
[ 1755.564810][T32628]  should_fail_ex+0x497/0x5b0
[ 1755.569551][T32628]  ? fs_reclaim_acquire+0xae/0x160
[ 1755.574726][T32628]  should_failslab+0xc2/0x120
[ 1755.579440][T32628]  __kmalloc_noprof+0xcb/0x410
[ 1755.584235][T32628]  ? rcu_is_watching+0x12/0xc0
[ 1755.589041][T32628]  tomoyo_encode2+0x100/0x3e0
[ 1755.593754][T32628]  tomoyo_realpath_from_path+0x1a7/0x710
[ 1755.599436][T32628]  ? tomoyo_profile+0x47/0x60
[ 1755.604172][T32628]  tomoyo_path_perm+0x273/0x480
[ 1755.609064][T32628]  ? tomoyo_path_perm+0x25f/0x480
[ 1755.614130][T32628]  ? __pfx_tomoyo_path_perm+0x10/0x10
[ 1755.619558][T32628]  ? __pfx_mark_lock+0x10/0x10
[ 1755.624396][T32628]  ? hlock_class+0x4e/0x130
[ 1755.628932][T32628]  ? __lock_acquire+0x1620/0x3cb0
[ 1755.634015][T32628]  security_inode_getattr+0xf4/0x160
[ 1755.639345][T32628]  vfs_getattr+0x36/0xb0
[ 1755.643628][T32628]  vfs_statx_path+0x36/0x390
[ 1755.648265][T32628]  do_statx_fd+0x124/0x210
[ 1755.652713][T32628]  ? __pfx_do_statx_fd+0x10/0x10
[ 1755.657704][T32628]  ? __pfx___might_resched+0x10/0x10
[ 1755.663058][T32628]  ? native_tss_update_io_bitmap+0x2ec/0x610
[ 1755.669085][T32628]  ? __might_fault+0xe3/0x190
[ 1755.673826][T32628]  __x64_sys_statx+0x24c/0x290
[ 1755.678637][T32628]  do_syscall_64+0xcd/0x250
[ 1755.683181][T32628]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1755.689112][T32628] RIP: 0033:0x7f0b9f57def9
[ 1755.693559][T32628] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1755.713196][T32628] RSP: 002b:00007f0ba0443038 EFLAGS: 00000246 ORIG_RAX: 000000000000014c
[ 1755.721627][T32628] RAX: ffffffffffffffda RBX: 00007f0b9f735f80 RCX: 00007f0b9f57def9
[ 1755.729629][T32628] RDX: 0000000000001000 RSI: 0000000000000009 RDI: 0000000100000001
[ 1755.737628][T32628] RBP: 00007f0ba0443090 R08: 00000000000000d3 R09: 0000000000000000
[ 1755.745610][T32628] R10: 000000000007f000 R11: 0000000000000246 R12: 0000000000000001
[ 1755.753597][T32628] R13: 0000000000000000 R14: 00007f0b9f735f80 R15: 00007fff6f98b688
[ 1755.761617][T32628]  </TASK>
[ 1755.805013][T32628] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1756.301041][T32644] FAULT_INJECTION: forcing a failure.
[ 1756.301041][T32644] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1756.337803][T32198] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1756.347338][T32644] CPU: 1 UID: 0 PID: 32644 Comm: syz.0.6762 Not tainted 6.11.0-syzkaller-01609-ga4ebad655b98 #0
[ 1756.357815][T32644] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1756.367914][T32644] Call Trace:
[ 1756.371229][T32644]  <TASK>
[ 1756.374195][T32644]  dump_stack_lvl+0x16c/0x1f0
[ 1756.378963][T32644]  should_fail_ex+0x497/0x5b0
[ 1756.383706][T32644]  _copy_from_user+0x30/0xf0
[ 1756.388353][T32644]  get_timespec64+0x8c/0x240
[ 1756.392995][T32644]  ? __pfx_get_timespec64+0x10/0x10
[ 1756.398275][T32644]  ? __fget_light+0x173/0x210
[ 1756.403014][T32644]  __x64_sys_recvmmsg+0x172/0x290
[ 1756.408103][T32644]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[ 1756.413720][T32644]  do_syscall_64+0xcd/0x250
[ 1756.418279][T32644]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1756.424231][T32644] RIP: 0033:0x7f0b9f57def9
[ 1756.428735][T32644] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1756.448402][T32644] RSP: 002b:00007f0ba0443038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1756.456870][T32644] RAX: ffffffffffffffda RBX: 00007f0b9f735f80 RCX: 00007f0b9f57def9
[ 1756.464876][T32644] RDX: 0000000000000007 RSI: 0000000000000008 RDI: 0000000000000003
[ 1756.472877][T32644] RBP: 00007f0ba0443090 R08: 000000000000003a R09: 0000000000000000
[ 1756.480887][T32644] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000001
[ 1756.488895][T32644] R13: 0000000000000000 R14: 00007f0b9f735f80 R15: 00007fff6f98b688
[ 1756.496928][T32644]  </TASK>
[ 1756.512847][T32198] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1756.574505][T32198] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1756.606705][T32198] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1756.952963][T32661] FAULT_INJECTION: forcing a failure.
[ 1756.952963][T32661] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1757.003756][T32661] CPU: 1 UID: 0 PID: 32661 Comm: syz.1.6770 Not tainted 6.11.0-syzkaller-01609-ga4ebad655b98 #0
[ 1757.014264][T32661] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1757.024363][T32661] Call Trace:
[ 1757.027682][T32661]  <TASK>
[ 1757.030652][T32661]  dump_stack_lvl+0x16c/0x1f0
[ 1757.035396][T32661]  should_fail_ex+0x497/0x5b0
[ 1757.040146][T32661]  _copy_to_user+0x30/0xc0
[ 1757.044633][T32661]  poll_select_finish+0x33b/0x6b0
[ 1757.049748][T32661]  ? __pfx_poll_select_finish+0x10/0x10
[ 1757.055374][T32661]  kern_select+0x16f/0x1e0
[ 1757.059851][T32661]  ? __pfx_kern_select+0x10/0x10
[ 1757.064847][T32661]  ? __pfx_ksys_write+0x10/0x10
[ 1757.069760][T32661]  __x64_sys_select+0xbd/0x160
[ 1757.074585][T32661]  ? do_syscall_64+0x91/0x250
[ 1757.079308][T32661]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1757.084599][T32661]  do_syscall_64+0xcd/0x250
[ 1757.089155][T32661]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1757.095100][T32661] RIP: 0033:0x7faa6337def9
[ 1757.099582][T32661] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1757.119235][T32661] RSP: 002b:00007faa64157038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017
[ 1757.127704][T32661] RAX: ffffffffffffffda RBX: 00007faa63535f80 RCX: 00007faa6337def9
[ 1757.135739][T32661] RDX: 0000000000000003 RSI: 0000000000000009 RDI: 0000000000000008
[ 1757.143753][T32661] RBP: 00007faa64157090 R08: 0000000000000006 R09: 0000000000000000
[ 1757.151763][T32661] R10: 0000000000000080 R11: 0000000000000246 R12: 0000000000000001
[ 1757.159776][T32661] R13: 0000000000000000 R14: 00007faa63535f80 R15: 00007ffd785a00b8
[ 1757.167819][T32661]  </TASK>
[ 1757.179998][T32198] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1757.215374][T32198] 8021q: adding VLAN 0 to HW filter on device team0
[ 1757.239222][T24445] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1757.246630][T24445] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1757.325392][T32675] FAULT_INJECTION: forcing a failure.
[ 1757.325392][T32675] name failslab, interval 1, probability 0, space 0, times 0
[ 1757.351330][T24445] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1757.358647][T24445] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1757.364283][T32675] CPU: 1 UID: 0 PID: 32675 Comm: syz.3.6773 Not tainted 6.11.0-syzkaller-01609-ga4ebad655b98 #0
[ 1757.376315][T32675] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1757.386416][T32675] Call Trace:
[ 1757.389736][T32675]  <TASK>
[ 1757.392705][T32675]  dump_stack_lvl+0x16c/0x1f0
[ 1757.397434][T32675]  should_fail_ex+0x497/0x5b0
[ 1757.402162][T32675]  ? fs_reclaim_acquire+0xae/0x160
[ 1757.407358][T32675]  should_failslab+0xc2/0x120
[ 1757.412088][T32675]  __kmalloc_node_noprof+0xd1/0x440
[ 1757.417335][T32675]  ? __kvmalloc_node_noprof+0x9d/0x1a0
[ 1757.422833][T32675]  __kvmalloc_node_noprof+0x9d/0x1a0
[ 1757.428168][T32675]  io_uring_setup+0x6cf/0x36c0
[ 1757.432973][T32675]  ? __pfx_io_uring_setup+0x10/0x10
[ 1757.438217][T32675]  ? ksys_write+0x1ab/0x260
[ 1757.442763][T32675]  ? __pfx_ksys_write+0x10/0x10
[ 1757.447647][T32675]  __x64_sys_io_uring_setup+0x98/0x140
[ 1757.453135][T32675]  do_syscall_64+0xcd/0x250
[ 1757.457663][T32675]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1757.463591][T32675] RIP: 0033:0x7fc66cb7def9
[ 1757.468025][T32675] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1757.487656][T32675] RSP: 002b:00007fc66d991038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9
[ 1757.496101][T32675] RAX: ffffffffffffffda RBX: 00007fc66cd35f80 RCX: 00007fc66cb7def9
[ 1757.504100][T32675] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000008001
[ 1757.512100][T32675] RBP: 00007fc66d991090 R08: 0000000000000000 R09: 0000000000000000
[ 1757.520091][T32675] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1757.528080][T32675] R13: 0000000000000000 R14: 00007fc66cd35f80 R15: 00007ffcadf6b7b8
[ 1757.536093][T32675]  </TASK>
[ 1757.565364][T32679] FAULT_INJECTION: forcing a failure.
[ 1757.565364][T32679] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1757.593630][T32679] CPU: 0 UID: 0 PID: 32679 Comm: syz.1.6776 Not tainted 6.11.0-syzkaller-01609-ga4ebad655b98 #0
[ 1757.604136][T32679] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1757.614240][T32679] Call Trace:
[ 1757.617573][T32679]  <TASK>
[ 1757.620540][T32679]  dump_stack_lvl+0x16c/0x1f0
[ 1757.625287][T32679]  should_fail_ex+0x497/0x5b0
[ 1757.625878][T32198] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1757.630007][T32679]  ? fs_reclaim_acquire+0xae/0x160
[ 1757.640457][T32198] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1757.645429][T32679]  should_fail_alloc_page+0xe7/0x130
[ 1757.645477][T32679]  prepare_alloc_pages.constprop.0+0x16f/0x560
[ 1757.645545][T32679]  __alloc_pages_noprof+0x194/0x2460
[ 1757.645592][T32679]  ? tomoyo_check_open_permission+0x19d/0x3b0
[ 1757.645647][T32679]  ? __pfx_mark_lock+0x10/0x10
[ 1757.645693][T32679]  ? hlock_class+0x4e/0x130
[ 1757.645732][T32679]  ? hlock_class+0x4e/0x130
[ 1757.645766][T32679]  ? mark_lock+0xb5/0xc60
[ 1757.645814][T32679]  ? __pfx___alloc_pages_noprof+0x10/0x10
[ 1757.645860][T32679]  ? __pfx_mark_lock+0x10/0x10
[ 1757.645908][T32679]  ? __pfx_mark_lock+0x10/0x10
[ 1757.645954][T32679]  ? security_file_open+0x78/0x8b0
[ 1757.645997][T32679]  ? __lock_acquire+0xbdd/0x3cb0
[ 1757.646054][T32679]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1757.646113][T32679]  ? policy_nodemask+0xea/0x4e0
[ 1757.646157][T32679]  alloc_pages_mpol_noprof+0x275/0x610
[ 1757.646207][T32679]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[ 1757.646258][T32679]  ? find_held_lock+0x2d/0x110
[ 1757.749904][T32679]  folio_alloc_mpol_noprof+0x36/0xd0
[ 1757.755274][T32679]  shmem_alloc_folio+0x135/0x160
[ 1757.760284][T32679]  shmem_alloc_and_add_folio+0x19c/0xce0
[ 1757.765994][T32679]  ? filemap_get_entry+0x1b2/0x3c0
[ 1757.771170][T32679]  ? __pfx_filemap_get_entry+0x10/0x10
[ 1757.776687][T32679]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[ 1757.782924][T32679]  ? shmem_allowable_huge_orders+0x2c9/0x340
[ 1757.788963][T32679]  shmem_get_folio_gfp+0xa62/0x15e0
[ 1757.794227][T32679]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[ 1757.799920][T32679]  ? filemap_map_pages+0xeb6/0x1440
[ 1757.805182][T32679]  shmem_fault+0x205/0xaf0
[ 1757.809647][T32679]  ? __pfx_shmem_fault+0x10/0x10
[ 1757.814650][T32679]  ? __handle_mm_fault+0x3a9a/0x5480
[ 1757.820005][T32679]  ? __pfx_lock_release+0x10/0x10
[ 1757.825141][T32679]  __do_fault+0x10a/0x490
[ 1757.829521][T32679]  __handle_mm_fault+0x3b53/0x5480
[ 1757.834705][T32679]  ? __pfx_mt_find+0x10/0x10
[ 1757.839371][T32679]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1757.844911][T32679]  ? find_vma+0xc0/0x140
[ 1757.849203][T32679]  ? __pfx_find_vma+0x10/0x10
[ 1757.853936][T32679]  handle_mm_fault+0x498/0xa60
[ 1757.858765][T32679]  ? spurious_kernel_fault+0x361/0x3c0
[ 1757.864295][T32679]  do_user_addr_fault+0x7a3/0x13f0
[ 1757.869481][T32679]  exc_page_fault+0x5c/0xc0
[ 1757.874046][T32679]  asm_exc_page_fault+0x26/0x30
[ 1757.878953][T32679] RIP: 0010:rep_movs_alternative+0x30/0x70
[ 1757.884806][T32679] Code: f9 40 73 40 83 f9 08 73 21 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08
[ 1757.904462][T32679] RSP: 0018:ffffc90004affdb8 EFLAGS: 00050212
[ 1757.910557][T32679] RAX: 0000000000000001 RBX: 000000000000003a RCX: 0000000000000010
[ 1757.918554][T32679] RDX: fffff5200095ffc4 RSI: 000000000000003a RDI: ffffc90004affe10
[ 1757.926553][T32679] RBP: 0000000000000010 R08: 0000000000000001 R09: fffff5200095ffc3
[ 1757.934560][T32679] R10: ffffc90004affe1f R11: 0000000000000000 R12: 000000000000004a
[ 1757.942559][T32679] R13: ffffc90004affe10 R14: 0000000000000000 R15: 0000000000000008
[ 1757.950580][T32679]  _copy_from_user+0xc6/0xf0
[ 1757.955207][T32679]  get_timespec64+0x8c/0x240
[ 1757.959825][T32679]  ? __pfx_get_timespec64+0x10/0x10
[ 1757.965057][T32679]  ? __fget_light+0x173/0x210
[ 1757.969768][T32679]  __x64_sys_recvmmsg+0x172/0x290
[ 1757.974824][T32679]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[ 1757.980411][T32679]  do_syscall_64+0xcd/0x250
[ 1757.984955][T32679]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1757.990904][T32679] RIP: 0033:0x7faa6337def9
[ 1757.995350][T32679] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1758.015006][T32679] RSP: 002b:00007faa64157038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1758.023457][T32679] RAX: ffffffffffffffda RBX: 00007faa63535f80 RCX: 00007faa6337def9
[ 1758.031452][T32679] RDX: 0000000000000007 RSI: 0000000000000008 RDI: 0000000000000003
[ 1758.039446][T32679] RBP: 00007faa64157090 R08: 000000000000003a R09: 0000000000000000
[ 1758.047437][T32679] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000001
[ 1758.055422][T32679] R13: 0000000000000000 R14: 00007faa63535f80 R15: 00007ffd785a00b8
[ 1758.063451][T32679]  </TASK>
[ 1758.124245][ T4624] Bluetooth: hci4: command 0x0406 tx timeout
[ 1758.572253][T32711] FAULT_INJECTION: forcing a failure.
[ 1758.572253][T32711] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1758.599515][T32711] CPU: 1 UID: 0 PID: 32711 Comm: syz.1.6783 Not tainted 6.11.0-syzkaller-01609-ga4ebad655b98 #0
[ 1758.610017][T32711] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1758.620118][T32711] Call Trace:
[ 1758.623440][T32711]  <TASK>
[ 1758.626404][T32711]  dump_stack_lvl+0x16c/0x1f0
[ 1758.631142][T32711]  should_fail_ex+0x497/0x5b0
[ 1758.635887][T32711]  _copy_to_user+0x30/0xc0
[ 1758.640365][T32711]  simple_read_from_buffer+0xd0/0x160
[ 1758.645814][T32711]  proc_fail_nth_read+0x19e/0x280
[ 1758.650917][T32711]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1758.656530][T32711]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1758.662139][T32711]  vfs_read+0x1d4/0xbd0
[ 1758.666391][T32711]  ? __fdget_pos+0xeb/0x180
[ 1758.670950][T32711]  ? __pfx_poll_select_finish+0x10/0x10
[ 1758.676546][T32711]  ? __pfx_vfs_read+0x10/0x10
[ 1758.681270][T32711]  ? __pfx___mutex_lock+0x10/0x10
[ 1758.686354][T32711]  ? __fget_files+0x256/0x400
[ 1758.691110][T32711]  ksys_read+0x12f/0x260
[ 1758.695410][T32711]  ? __pfx_ksys_read+0x10/0x10
[ 1758.700238][T32711]  do_syscall_64+0xcd/0x250
[ 1758.704799][T32711]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1758.710756][T32711] RIP: 0033:0x7faa6337c93c
[ 1758.715213][T32711] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[ 1758.734869][T32711] RSP: 002b:00007faa64157030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1758.743350][T32711] RAX: ffffffffffffffda RBX: 00007faa63535f80 RCX: 00007faa6337c93c
[ 1758.751384][T32711] RDX: 000000000000000f RSI: 00007faa641570a0 RDI: 0000000000000007
[ 1758.759398][T32711] RBP: 00007faa64157090 R08: 0000000000000000 R09: 0000000000000000
[ 1758.767410][T32711] R10: 0000000000000080 R11: 0000000000000246 R12: 0000000000000001
[ 1758.775442][T32711] R13: 0000000000000000 R14: 00007faa63535f80 R15: 00007ffd785a00b8
[ 1758.783491][T32711]  </TASK>
[ 1758.959738][T32198] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1759.193993][T32198] veth0_vlan: entered promiscuous mode
[ 1759.272661][T32198] veth1_vlan: entered promiscuous mode
[ 1759.480908][T32198] veth0_macvtap: entered promiscuous mode
[ 1759.531272][T32198] veth1_macvtap: entered promiscuous mode
[ 1759.674067][T32198] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1759.705989][T32198] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1759.752676][T32198] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1759.811772][T32198] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1759.834236][T32198] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1759.854419][T32198] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1759.894182][T32198] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1759.925845][T32198] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1759.943964][T32198] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1759.975290][T32198] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1760.003967][T32198] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1760.044123][T32198] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1760.067014][T32198] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1760.097931][T32198] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1760.139633][T32198] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1760.199935][T32198] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1760.230927][T32198] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1760.261688][T32198] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1760.304303][T32198] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1760.334205][T32198] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1760.384033][T32198] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1760.415677][T32198] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1760.461486][T32198] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1760.514430][T32198] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1760.537126][T32198] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1760.570355][T32198] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1760.624088][T32198] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1760.654098][T32198] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1760.688908][T32198] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1760.757472][T32198] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1760.830787][T32198] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1760.873120][T32198] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1760.924452][T32198] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1760.933251][T32198] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1761.549994][T25406] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1761.574135][T25406] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1761.744102][T25405] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1761.752010][T25405] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1764.084356][  T440] netlink: 32 bytes leftover after parsing attributes in process `syz.3.6839'.
[ 1766.646396][  T535] nbd: must specify at least one socket
[ 1768.074424][T29250] Bluetooth: hci1: command 0x0406 tx timeout
[ 1768.617427][  T611] FAULT_INJECTION: forcing a failure.
[ 1768.617427][  T611] name failslab, interval 1, probability 0, space 0, times 0
[ 1768.660517][  T611] CPU: 0 UID: 0 PID: 611 Comm: syz.1.6899 Not tainted 6.11.0-syzkaller-01609-ga4ebad655b98 #0
[ 1768.670842][  T611] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1768.680945][  T611] Call Trace:
[ 1768.684265][  T611]  <TASK>
[ 1768.687227][  T611]  dump_stack_lvl+0x16c/0x1f0
[ 1768.691963][  T611]  should_fail_ex+0x497/0x5b0
[ 1768.696713][  T611]  ? fs_reclaim_acquire+0xae/0x160
[ 1768.701904][  T611]  should_failslab+0xc2/0x120
[ 1768.706632][  T611]  __kmalloc_node_noprof+0xd1/0x440
[ 1768.711879][  T611]  ? __kvmalloc_node_noprof+0x9d/0x1a0
[ 1768.717405][  T611]  __kvmalloc_node_noprof+0x9d/0x1a0
[ 1768.722752][  T611]  io_uring_setup+0x9b0/0x36c0
[ 1768.727589][  T611]  ? __pfx_io_uring_setup+0x10/0x10
[ 1768.732863][  T611]  ? ksys_write+0x1ab/0x260
[ 1768.737442][  T611]  ? __pfx_ksys_write+0x10/0x10
[ 1768.742368][  T611]  __x64_sys_io_uring_setup+0x98/0x140
[ 1768.747882][  T611]  do_syscall_64+0xcd/0x250
[ 1768.752435][  T611]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1768.758381][  T611] RIP: 0033:0x7faa6337def9
[ 1768.762837][  T611] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1768.782500][  T611] RSP: 002b:00007faa64157038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9
[ 1768.790965][  T611] RAX: ffffffffffffffda RBX: 00007faa63535f80 RCX: 00007faa6337def9
[ 1768.799000][  T611] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000008001
[ 1768.807010][  T611] RBP: 00007faa64157090 R08: 0000000000000000 R09: 0000000000000000
[ 1768.815015][  T611] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1768.823023][  T611] R13: 0000000000000000 R14: 00007faa63535f80 R15: 00007ffd785a00b8
[ 1768.831055][  T611]  </TASK>
[ 1769.819763][  T651] delete_channel: no stack
[ 1774.087989][  T783] nbd: must specify at least one socket
[ 1774.519217][  T786] kmem_cache_create_usercopy(nfsd_file) failed with error -22
[ 1774.624001][  T786] CPU: 0 UID: 0 PID: 786 Comm: syz.2.6939 Not tainted 6.11.0-syzkaller-01609-ga4ebad655b98 #0
[ 1774.634341][  T786] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1774.644435][  T786] Call Trace:
[ 1774.647742][  T786]  <TASK>
[ 1774.650699][  T786]  dump_stack_lvl+0x16c/0x1f0
[ 1774.655435][  T786]  kmem_cache_create_usercopy+0x12b/0x3b0
[ 1774.661224][  T786]  kmem_cache_create+0x11/0x20
[ 1774.666063][  T786]  nfsd_file_cache_init+0xd5/0x450
[ 1774.671319][  T786]  nfsd_svc+0x542/0x970
[ 1774.675545][  T786]  nfsd_nl_threads_set_doit+0x52c/0xbc0
[ 1774.681148][  T786]  genl_family_rcv_msg_doit+0x202/0x2f0
[ 1774.686764][  T786]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1774.692908][  T786]  ? security_capable+0x98/0xd0
[ 1774.697828][  T786]  genl_rcv_msg+0x565/0x800
[ 1774.702427][  T786]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1774.707526][  T786]  ? __pfx_nfsd_nl_threads_set_doit+0x10/0x10
[ 1774.713675][  T786]  netlink_rcv_skb+0x165/0x410
[ 1774.718507][  T786]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1774.723596][  T786]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1774.728960][  T786]  ? down_read+0xc9/0x330
[ 1774.733358][  T786]  ? __pfx_down_read+0x10/0x10
[ 1774.738174][  T786]  ? netlink_deliver_tap+0x1ae/0xcf0
[ 1774.743515][  T786]  genl_rcv+0x28/0x40
[ 1774.747530][  T786]  netlink_unicast+0x53c/0x7f0
[ 1774.752331][  T786]  ? __pfx_netlink_unicast+0x10/0x10
[ 1774.757663][  T786]  ? __phys_addr_symbol+0x30/0x80
[ 1774.762752][  T786]  ? __check_object_size+0x497/0x720
[ 1774.768083][  T786]  netlink_sendmsg+0x8b8/0xd70
[ 1774.772884][  T786]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1774.778212][  T786]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 1774.783558][  T786]  ____sys_sendmsg+0x9b4/0xb50
[ 1774.788355][  T786]  ? copy_msghdr_from_user+0x10b/0x160
[ 1774.793845][  T786]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1774.799163][  T786]  ? __pfx___futex_wait+0x10/0x10
[ 1774.804212][  T786]  ? __pfx___lock_acquire+0x10/0x10
[ 1774.809465][  T786]  ? do_wp_page+0xd11/0x3360
[ 1774.814112][  T786]  ___sys_sendmsg+0x135/0x1e0
[ 1774.818841][  T786]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1774.824107][  T786]  ? __fget_light+0x173/0x210
[ 1774.828819][  T786]  __sys_sendmsg+0x117/0x1f0
[ 1774.833452][  T786]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1774.838605][  T786]  ? __x64_sys_futex+0x1e1/0x4c0
[ 1774.843594][  T786]  do_syscall_64+0xcd/0x250
[ 1774.848694][  T786]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1774.854625][  T786] RIP: 0033:0x7f89b557def9
[ 1774.859071][  T786] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1774.878720][  T786] RSP: 002b:00007f89b63a4038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1774.887147][  T786] RAX: ffffffffffffffda RBX: 00007f89b5735f80 RCX: 00007f89b557def9
[ 1774.895129][  T786] RDX: 0000000000000004 RSI: 0000000020000280 RDI: 0000000000000005
[ 1774.903128][  T786] RBP: 00007f89b55f0b76 R08: 0000000000000000 R09: 0000000000000000
[ 1774.911120][  T786] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1774.919125][  T786] R13: 0000000000000000 R14: 00007f89b5735f80 R15: 00007ffde42bef28
[ 1774.927145][  T786]  </TASK>
[ 1775.234036][  T786] nfsd: unable to create nfsd_file_slab
[ 1777.500187][  T845] tc_dump_action: action bad kind
[ 1781.515719][  T915] Invalid ELF header magic: != ELF
[ 1782.995157][T29250] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1783.016272][T29250] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1783.024698][T29250] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1783.034623][T29250] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1783.043450][T29250] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 1783.054545][T29250] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1784.500028][T24446] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1785.124083][T25288] Bluetooth: hci1: command tx timeout
[ 1785.834952][T24446] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1787.026960][T24446] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1787.205915][T25288] Bluetooth: hci1: command tx timeout
[ 1787.631499][  T932] chnl_net:caif_netlink_parms(): no params data found
[ 1788.478070][T24446] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1789.274069][T25288] Bluetooth: hci1: command tx timeout
[ 1789.493532][  T932] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1789.527648][  T932] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1789.560954][  T932] bridge_slave_0: entered allmulticast mode
[ 1789.584670][  T932] bridge_slave_0: entered promiscuous mode
[ 1789.605663][  T932] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1789.627618][  T932] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1789.638535][  T932] bridge_slave_1: entered allmulticast mode
[ 1789.673804][  T932] bridge_slave_1: entered promiscuous mode
[ 1789.916244][  T932] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1789.968639][  T932] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1791.032056][  T932] team0: Port device team_slave_0 added
[ 1791.068093][  T932] team0: Port device team_slave_1 added
[ 1791.354078][T25288] Bluetooth: hci1: command tx timeout
[ 1791.570627][ T1035] Invalid ELF header magic: != ELF
[ 1791.989483][T24446] bridge_slave_1: left allmulticast mode
[ 1792.018926][T24446] bridge_slave_1: left promiscuous mode
[ 1792.044594][T24446] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1792.399023][T24446] bridge_slave_0: left allmulticast mode
[ 1792.414017][T24446] bridge_slave_0: left promiscuous mode
[ 1792.419934][T24446] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1796.725710][ T1272] ieee802154 phy0 wpan0: encryption failed: -22
[ 1796.732254][ T1272] ieee802154 phy1 wpan1: encryption failed: -22
[ 1799.931893][T24446] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1800.161580][T24446] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1800.297097][T24446] bond0 (unregistering): Released all slaves
[ 1800.505315][  T932] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1800.525611][  T932] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1800.628124][  T932] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1800.722385][  T932] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1800.754001][  T932] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1800.844265][  T932] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1802.309846][  T932] hsr_slave_0: entered promiscuous mode
[ 1802.462416][  T932] hsr_slave_1: entered promiscuous mode
[ 1802.603658][  T932] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1802.633286][  T932] Cannot create hsr debugfs directory
[ 1805.384322][T24446] hsr_slave_0: left promiscuous mode
[ 1805.594403][T24446] hsr_slave_1: left promiscuous mode
[ 1805.849815][T24446] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1805.874100][T24446] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1806.028383][T24446] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1806.064050][T24446] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1806.313228][T24446] veth1_macvtap: left promiscuous mode
[ 1806.344085][T24446] veth0_macvtap: left promiscuous mode
[ 1806.374268][T24446] veth1_vlan: left promiscuous mode
[ 1806.384778][T24446] veth0_vlan: left promiscuous mode
[ 1812.579814][T24446] team0 (unregistering): Port device team_slave_1 removed
[ 1813.235783][T24446] team0 (unregistering): Port device team_slave_0 removed
[ 1821.974584][T29250] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1821.985406][T29250] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1822.002472][T29250] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1822.024532][T29250] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1822.033252][T29250] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 1822.044574][T29250] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1824.169417][T29250] Bluetooth: hci3: command tx timeout
[ 1824.772635][ T1473] netlink: 556 bytes leftover after parsing attributes in process `syz.2.7128'.
[ 1824.827358][ T1473] openvswitch: netlink: Message has 4096 unknown bytes.
[ 1826.244168][T29250] Bluetooth: hci3: command tx timeout
[ 1828.004961][  T932] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1828.275214][ T1516] netlink: 'syz.2.7139': attribute type 11 has an invalid length.
[ 1828.314154][T29250] Bluetooth: hci3: command tx timeout
[ 1828.429307][ T1431] chnl_net:caif_netlink_parms(): no params data found
[ 1828.461395][  T932] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1828.682534][  T932] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1829.136435][  T932] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1830.404353][T29250] Bluetooth: hci3: command tx timeout
[ 1830.486204][ T1431] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1830.496225][ T1431] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1830.503639][ T1431] bridge_slave_0: entered allmulticast mode
[ 1830.574309][ T1431] bridge_slave_0: entered promiscuous mode
[ 1830.603846][ T1431] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1830.665647][ T1431] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1830.689861][ T1431] bridge_slave_1: entered allmulticast mode
[ 1830.737973][ T1431] bridge_slave_1: entered promiscuous mode
[ 1831.062132][ T1431] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1831.119500][ T1431] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1831.427538][ T1431] team0: Port device team_slave_0 added
[ 1831.469856][ T1431] team0: Port device team_slave_1 added
[ 1831.796558][ T1431] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1831.803587][ T1431] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1831.903973][ T1431] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1832.006462][  T932] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1832.014716][ T1431] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1832.021715][ T1431] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1832.092713][ T1431] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1832.343107][  T932] 8021q: adding VLAN 0 to HW filter on device team0
[ 1832.502551][ T1431] hsr_slave_0: entered promiscuous mode
[ 1832.531903][ T1431] hsr_slave_1: entered promiscuous mode
[ 1832.551281][ T1431] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1832.584035][ T1431] Cannot create hsr debugfs directory
[ 1832.720964][T25406] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1832.728871][T25406] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1832.921508][T31633] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1832.928849][T31633] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1833.323434][T25405] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1833.550224][ T1634] delete_channel: no stack
[ 1833.732633][T25405] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1833.840270][ T1645] svc: failed to register nfsdv3 RPC service (errno 111).
[ 1833.855641][ T1645] svc: failed to register nfsaclv3 RPC service (errno 111).
[ 1833.871160][ T1645] ==================================================================
[ 1833.879265][ T1645] BUG: KASAN: slab-use-after-free in shrinker_free+0x3b7/0x430
[ 1833.886954][ T1645] Read of size 4 at addr ffff888028fd501c by task syz.1.7164/1645
[ 1833.894790][ T1645] 
[ 1833.897147][ T1645] CPU: 0 UID: 0 PID: 1645 Comm: syz.1.7164 Not tainted 6.11.0-syzkaller-01609-ga4ebad655b98 #0
[ 1833.907511][ T1645] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1833.917773][ T1645] Call Trace:
[ 1833.921074][ T1645]  <TASK>
[ 1833.924031][ T1645]  dump_stack_lvl+0x116/0x1f0
[ 1833.928768][ T1645]  print_report+0xc3/0x620
[ 1833.933228][ T1645]  ? __virt_addr_valid+0x5e/0x590
[ 1833.938297][ T1645]  ? __phys_addr+0xc6/0x150
[ 1833.942849][ T1645]  kasan_report+0xd9/0x110
[ 1833.947334][ T1645]  ? shrinker_free+0x3b7/0x430
[ 1833.952144][ T1645]  ? shrinker_free+0x3b7/0x430
[ 1833.956963][ T1645]  shrinker_free+0x3b7/0x430
[ 1833.961602][ T1645]  nfsd_file_cache_shutdown+0xbc/0x480
[ 1833.967115][ T1645]  nfsd_svc+0x6d4/0x970
[ 1833.971330][ T1645]  nfsd_nl_threads_set_doit+0x52c/0xbc0
[ 1833.976915][ T1645]  genl_family_rcv_msg_doit+0x202/0x2f0
[ 1833.982511][ T1645]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1833.988667][ T1645]  ? security_capable+0x98/0xd0
[ 1833.993591][ T1645]  genl_rcv_msg+0x565/0x800
[ 1833.998210][ T1645]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1834.003281][ T1645]  ? __pfx_nfsd_nl_threads_set_doit+0x10/0x10
[ 1834.009396][ T1645]  netlink_rcv_skb+0x165/0x410
[ 1834.014212][ T1645]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1834.019288][ T1645]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1834.024628][ T1645]  ? down_read+0xc9/0x330
[ 1834.029019][ T1645]  ? __pfx_down_read+0x10/0x10
[ 1834.033824][ T1645]  ? netlink_deliver_tap+0x1ae/0xcf0
[ 1834.039151][ T1645]  genl_rcv+0x28/0x40
[ 1834.043173][ T1645]  netlink_unicast+0x53c/0x7f0
[ 1834.047983][ T1645]  ? __pfx_netlink_unicast+0x10/0x10
[ 1834.053346][ T1645]  ? __phys_addr_symbol+0x30/0x80
[ 1834.058429][ T1645]  ? __check_object_size+0x497/0x720
[ 1834.063779][ T1645]  netlink_sendmsg+0x8b8/0xd70
[ 1834.068592][ T1645]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1834.073986][ T1645]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 1834.079330][ T1645]  ____sys_sendmsg+0x9b4/0xb50
[ 1834.084141][ T1645]  ? copy_msghdr_from_user+0x10b/0x160
[ 1834.089666][ T1645]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1834.094998][ T1645]  ? __pfx___futex_wait+0x10/0x10
[ 1834.100076][ T1645]  ? __pfx___lock_acquire+0x10/0x10
[ 1834.105334][ T1645]  ___sys_sendmsg+0x135/0x1e0
[ 1834.110081][ T1645]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1834.115365][ T1645]  ? __fget_light+0x173/0x210
[ 1834.120091][ T1645]  __sys_sendmsg+0x117/0x1f0
[ 1834.124757][ T1645]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1834.129929][ T1645]  ? __x64_sys_futex+0x1e1/0x4c0
[ 1834.134964][ T1645]  do_syscall_64+0xcd/0x250
[ 1834.139505][ T1645]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1834.145458][ T1645] RIP: 0033:0x7faa6337def9
[ 1834.149903][ T1645] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1834.169563][ T1645] RSP: 002b:00007faa64157038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1834.178015][ T1645] RAX: ffffffffffffffda RBX: 00007faa63535f80 RCX: 00007faa6337def9
[ 1834.186022][ T1645] RDX: 0000000000000004 RSI: 0000000020000280 RDI: 0000000000000004
[ 1834.194022][ T1645] RBP: 00007faa633f0b76 R08: 0000000000000000 R09: 0000000000000000
[ 1834.202027][ T1645] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1834.210032][ T1645] R13: 0000000000000000 R14: 00007faa63535f80 R15: 00007ffd785a00b8
[ 1834.218153][ T1645]  </TASK>
[ 1834.221193][ T1645] 
[ 1834.223529][ T1645] Allocated by task 932:
[ 1834.227806][ T1645]  kasan_save_stack+0x33/0x60
[ 1834.232520][ T1645]  kasan_save_track+0x14/0x30
[ 1834.237241][ T1645]  __kasan_kmalloc+0xaa/0xb0
[ 1834.241871][ T1645]  netdevice_event+0x368/0xa10
[ 1834.246679][ T1645]  notifier_call_chain+0xb9/0x410
[ 1834.251759][ T1645]  call_netdevice_notifiers_info+0xbe/0x140
[ 1834.257696][ T1645]  __dev_notify_flags+0x12d/0x2e0
[ 1834.262772][ T1645]  dev_change_flags+0x10c/0x160
[ 1834.267673][ T1645]  do_setlink+0x19dd/0x3ee0
[ 1834.272219][ T1645]  __rtnl_newlink+0xc3a/0x1920
[ 1834.277028][ T1645]  rtnl_newlink+0x67/0xa0
[ 1834.281410][ T1645]  rtnetlink_rcv_msg+0x3c7/0xea0
[ 1834.286402][ T1645]  netlink_rcv_skb+0x165/0x410
[ 1834.291205][ T1645]  netlink_unicast+0x53c/0x7f0
[ 1834.296001][ T1645]  netlink_sendmsg+0x8b8/0xd70
[ 1834.300799][ T1645]  __sys_sendto+0x47f/0x4e0
[ 1834.305353][ T1645]  __x64_sys_sendto+0xe0/0x1c0
[ 1834.310179][ T1645]  do_syscall_64+0xcd/0x250
[ 1834.314730][ T1645]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1834.320680][ T1645] 
[ 1834.323026][ T1645] Freed by task 24447:
[ 1834.327115][ T1645]  kasan_save_stack+0x33/0x60
[ 1834.331820][ T1645]  kasan_save_track+0x14/0x30
[ 1834.336525][ T1645]  kasan_save_free_info+0x3b/0x60
[ 1834.341601][ T1645]  poison_slab_object+0xf7/0x160
[ 1834.346576][ T1645]  __kasan_slab_free+0x32/0x50
[ 1834.351386][ T1645]  kfree+0x12a/0x3b0
[ 1834.355330][ T1645]  process_one_work+0x958/0x1ad0
[ 1834.360320][ T1645]  worker_thread+0x6c8/0xf00
[ 1834.364962][ T1645]  kthread+0x2c1/0x3a0
[ 1834.369063][ T1645]  ret_from_fork+0x45/0x80
[ 1834.373530][ T1645]  ret_from_fork_asm+0x1a/0x30
[ 1834.378348][ T1645] 
[ 1834.380706][ T1645] Last potentially related work creation:
[ 1834.386432][ T1645]  kasan_save_stack+0x33/0x60
[ 1834.391160][ T1645]  __kasan_record_aux_stack+0xba/0xd0
[ 1834.396582][ T1645]  insert_work+0x36/0x230
[ 1834.400981][ T1645]  __queue_work+0x3f8/0x1070
[ 1834.405619][ T1645]  queue_work_on+0x11a/0x140
[ 1834.410269][ T1645]  netdevice_event+0x736/0xa10
[ 1834.415068][ T1645]  notifier_call_chain+0xb9/0x410
[ 1834.420132][ T1645]  call_netdevice_notifiers_info+0xbe/0x140
[ 1834.426063][ T1645]  __dev_notify_flags+0x12d/0x2e0
[ 1834.431122][ T1645]  dev_change_flags+0x10c/0x160
[ 1834.436007][ T1645]  do_setlink+0x19dd/0x3ee0
[ 1834.440550][ T1645]  __rtnl_newlink+0xc3a/0x1920
[ 1834.445373][ T1645]  rtnl_newlink+0x67/0xa0
[ 1834.449745][ T1645]  rtnetlink_rcv_msg+0x3c7/0xea0
[ 1834.454771][ T1645]  netlink_rcv_skb+0x165/0x410
[ 1834.459644][ T1645]  netlink_unicast+0x53c/0x7f0
[ 1834.464447][ T1645]  netlink_sendmsg+0x8b8/0xd70
[ 1834.469253][ T1645]  __sys_sendto+0x47f/0x4e0
[ 1834.473804][ T1645]  __x64_sys_sendto+0xe0/0x1c0
[ 1834.478621][ T1645]  do_syscall_64+0xcd/0x250
[ 1834.483174][ T1645]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1834.489135][ T1645] 
[ 1834.491483][ T1645] The buggy address belongs to the object at ffff888028fd5000
[ 1834.491483][ T1645]  which belongs to the cache kmalloc-192 of size 192
[ 1834.505576][ T1645] The buggy address is located 28 bytes inside of
[ 1834.505576][ T1645]  freed 192-byte region [ffff888028fd5000, ffff888028fd50c0)
[ 1834.519335][ T1645] 
[ 1834.521687][ T1645] The buggy address belongs to the physical page:
[ 1834.528136][ T1645] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x28fd5
[ 1834.536930][ T1645] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 1834.544074][ T1645] page_type: 0xfdffffff(slab)
[ 1834.548803][ T1645] raw: 00fff00000000000 ffff88801ac413c0 ffffea0001a73c40 dead000000000002
[ 1834.557428][ T1645] raw: 0000000000000000 0000000000100010 00000001fdffffff 0000000000000000
[ 1834.566041][ T1645] page dumped because: kasan: bad access detected
[ 1834.572562][ T1645] page_owner tracks the page as allocated
[ 1834.578286][ T1645] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x152cc0(GFP_USER|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 5410, tgid 5410 (syz.1.34), ts 109471756318, free_ts 109358781361
[ 1834.597385][ T1645]  post_alloc_hook+0x2d1/0x350
[ 1834.602189][ T1645]  get_page_from_freelist+0x1351/0x2e50
[ 1834.607778][ T1645]  __alloc_pages_noprof+0x22b/0x2460
[ 1834.613130][ T1645]  alloc_slab_page+0x4e/0xf0
[ 1834.617769][ T1645]  new_slab+0x84/0x260
[ 1834.621866][ T1645]  ___slab_alloc+0xdac/0x1870
[ 1834.626576][ T1645]  __slab_alloc.constprop.0+0x56/0xb0
[ 1834.631991][ T1645]  __kmalloc_cache_noprof+0x2c5/0x310
[ 1834.637404][ T1645]  elf_core_dump+0x184/0x3810
[ 1834.642155][ T1645]  do_coredump+0x29f9/0x3dd0
[ 1834.646787][ T1645]  get_signal+0x237c/0x26d0
[ 1834.651321][ T1645]  arch_do_signal_or_restart+0x90/0x7e0
[ 1834.656904][ T1645]  irqentry_exit_to_user_mode+0x13f/0x280
[ 1834.662660][ T1645]  asm_exc_page_fault+0x26/0x30
[ 1834.667546][ T1645] page last free pid 5406 tgid 5406 stack trace:
[ 1834.673888][ T1645]  free_unref_page+0x64a/0xe40
[ 1834.678688][ T1645]  __put_partials+0x14c/0x170
[ 1834.683395][ T1645]  qlist_free_all+0x4e/0x140
[ 1834.688017][ T1645]  kasan_quarantine_reduce+0x192/0x1e0
[ 1834.693553][ T1645]  __kasan_slab_alloc+0x69/0x90
[ 1834.698456][ T1645]  __kmalloc_node_noprof+0x1c3/0x440
[ 1834.703788][ T1645]  alloc_slab_obj_exts+0x41/0xa0
[ 1834.708765][ T1645]  new_slab+0x20f/0x260
[ 1834.712970][ T1645]  ___slab_alloc+0xdac/0x1870
[ 1834.717680][ T1645]  __slab_alloc.constprop.0+0x56/0xb0
[ 1834.723086][ T1645]  kmem_cache_alloc_lru_noprof+0x2a7/0x2f0
[ 1834.728928][ T1645]  shmem_alloc_inode+0x25/0x50
[ 1834.733738][ T1645]  alloc_inode+0x5d/0x230
[ 1834.738122][ T1645]  new_inode+0x22/0x210
[ 1834.742319][ T1645]  shmem_get_inode+0x194/0xe90
[ 1834.747133][ T1645]  shmem_symlink+0xf4/0x6a0
[ 1834.751671][ T1645] 
[ 1834.754015][ T1645] Memory state around the buggy address:
[ 1834.759664][ T1645]  ffff888028fd4f00: 00 00 fc fc 00 00 fc fc 00 00 fc fc fa fb fc fc
[ 1834.767747][ T1645]  ffff888028fd4f80: 00 00 fc fc 00 00 fc fc fa fb fc fc 00 01 fc fc
[ 1834.775826][ T1645] >ffff888028fd5000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1834.783902][ T1645]                             ^
[ 1834.788839][ T1645]  ffff888028fd5080: fb fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[ 1834.796923][ T1645]  ffff888028fd5100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 1834.805018][ T1645] ==================================================================
[ 1834.887330][ T1645] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 1834.894592][ T1645] CPU: 1 UID: 0 PID: 1645 Comm: syz.1.7164 Not tainted 6.11.0-syzkaller-01609-ga4ebad655b98 #0
[ 1834.904959][ T1645] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1834.915041][ T1645] Call Trace:
[ 1834.918353][ T1645]  <TASK>
[ 1834.921309][ T1645]  dump_stack_lvl+0x3d/0x1f0
[ 1834.925951][ T1645]  panic+0x6dc/0x7c0
[ 1834.929876][ T1645]  ? __pfx_panic+0x10/0x10
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 1834.934343][ T1645]  ? preempt_schedule_thunk+0x1a/0x30
[ 1834.939763][ T1645]  ? preempt_schedule_common+0x44/0xc0
[ 1834.945280][ T1645]  ? check_panic_on_warn+0x1f/0xb0
[ 1834.950473][ T1645]  check_panic_on_warn+0xab/0xb0
[ 1834.955486][ T1645]  end_report+0x117/0x180
[ 1834.959890][ T1645]  kasan_report+0xe9/0x110
[ 1834.964365][ T1645]  ? shrinker_free+0x3b7/0x430
[ 1834.969205][ T1645]  ? shrinker_free+0x3b7/0x430
[ 1834.974017][ T1645]  shrinker_free+0x3b7/0x430
[ 1834.978661][ T1645]  nfsd_file_cache_shutdown+0xbc/0x480
[ 1834.984172][ T1645]  nfsd_svc+0x6d4/0x970
[ 1834.988386][ T1645]  nfsd_nl_threads_set_doit+0x52c/0xbc0
[ 1834.993990][ T1645]  genl_family_rcv_msg_doit+0x202/0x2f0
[ 1834.999595][ T1645]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1835.005714][ T1645]  ? security_capable+0x98/0xd0
[ 1835.010615][ T1645]  genl_rcv_msg+0x565/0x800
[ 1835.015170][ T1645]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1835.020229][ T1645]  ? __pfx_nfsd_nl_threads_set_doit+0x10/0x10
[ 1835.026332][ T1645]  netlink_rcv_skb+0x165/0x410
[ 1835.031136][ T1645]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1835.036199][ T1645]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1835.041526][ T1645]  ? down_read+0xc9/0x330
[ 1835.045892][ T1645]  ? __pfx_down_read+0x10/0x10
[ 1835.050696][ T1645]  ? netlink_deliver_tap+0x1ae/0xcf0
[ 1835.056042][ T1645]  genl_rcv+0x28/0x40
[ 1835.060070][ T1645]  netlink_unicast+0x53c/0x7f0
[ 1835.064872][ T1645]  ? __pfx_netlink_unicast+0x10/0x10
[ 1835.070194][ T1645]  ? __phys_addr_symbol+0x30/0x80
[ 1835.075288][ T1645]  ? __check_object_size+0x497/0x720
[ 1835.080644][ T1645]  netlink_sendmsg+0x8b8/0xd70
[ 1835.085455][ T1645]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1835.090782][ T1645]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 1835.096126][ T1645]  ____sys_sendmsg+0x9b4/0xb50
[ 1835.100934][ T1645]  ? copy_msghdr_from_user+0x10b/0x160
[ 1835.106449][ T1645]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1835.111776][ T1645]  ? __pfx___futex_wait+0x10/0x10
[ 1835.116866][ T1645]  ? __pfx___lock_acquire+0x10/0x10
[ 1835.122119][ T1645]  ___sys_sendmsg+0x135/0x1e0
[ 1835.126851][ T1645]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1835.132126][ T1645]  ? __fget_light+0x173/0x210
[ 1835.136844][ T1645]  __sys_sendmsg+0x117/0x1f0
[ 1835.141490][ T1645]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1835.146673][ T1645]  ? __x64_sys_futex+0x1e1/0x4c0
[ 1835.151657][ T1645]  do_syscall_64+0xcd/0x250
[ 1835.156197][ T1645]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1835.162147][ T1645] RIP: 0033:0x7faa6337def9
[ 1835.166597][ T1645] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1835.186239][ T1645] RSP: 002b:00007faa64157038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1835.194714][ T1645] RAX: ffffffffffffffda RBX: 00007faa63535f80 RCX: 00007faa6337def9
[ 1835.202719][ T1645] RDX: 0000000000000004 RSI: 0000000020000280 RDI: 0000000000000004
[ 1835.210718][ T1645] RBP: 00007faa633f0b76 R08: 0000000000000000 R09: 0000000000000000
[ 1835.218723][ T1645] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1835.226735][ T1645] R13: 0000000000000000 R14: 00007faa63535f80 R15: 00007ffd785a00b8
[ 1835.234752][ T1645]  </TASK>
[ 1835.238098][ T1645] Kernel Offset: disabled
[ 1835.242426][ T1645] Rebooting in 86400 seconds..