last executing test programs:

4m45.408797154s ago: executing program 2 (id=479):
bpf$auto(0x0, &(0x7f0000000780)=@link_update={0xa, @new_map_fd=<r0=>0x5, 0x4007, @old_prog_fd=<r1=>0x13b}, 0x800)
mmap$auto(0xfffffffffffff51c, 0x20009, 0x20005000000800e2, 0xeb5, 0xffffffffffffffff, 0x9)
unshare$auto(0x40000080)
fallocate$auto(0x8000000000000003, 0x0, 0xd, 0xcbd5d)
socket(0x11, 0x4, 0x0)
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x2b56429414146056, 0x0)
sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f0000001240)={&(0x7f0000001140)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000001200)={&(0x7f00000011c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="200027bd7000fedbdf2502000000"], 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x20000001)
write$auto(r2, &(0x7f0000000040)='7\x00\\\x80\x04|\x03\xcb\x12\xfa\b\x1c\xc7k\x00\x0e\v9\xb5j\x00\x04\xc8\x1fa\x1c\x1a\x05 \xfdr/D\xbf\x98\x06\xe5\xf6\x8d\x1fX\xe5\xbc\xbc\"}$', 0x7fffffff)
ioctl$auto_SNDCTL_DSP_SETFMT(r2, 0xc0045005, &(0x7f0000000040))
r3 = openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/numa_maps\x00', 0x80, 0x0)
read$auto_proc_sessionid_operations_base(r3, &(0x7f00000000c0)=""/4096, 0x1000)
fcntl$auto_F_SETFD(r3, 0x2, 0xffffffffffffffff)
sendfile$auto(0x6, r3, 0x0, 0xfdef)
mmap$auto(0x400000000000719, 0xba1a, 0x8, 0x813, r3, 0x808)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000010c0)='/sys/devices/platform/dummy_udc.0/udc/dummy_udc.0/is_a_peripheral\x00', 0x42200, 0x0)
io_setup$auto(0x80002, 0x0)
openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
io_uring_register$auto_IORING_REGISTER_SEND_MSG_RING(0xffffffffffffffff, 0x1f, &(0x7f00000030c0), 0x7)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/usb/usbmon/9t\x00', 0xa00, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0xa101, 0x0)
name_to_handle_at$auto(r1, 0x0, 0x0, 0x0, 0x202)
getsockopt$auto_SO_PRIORITY(0xffffffffffffffff, 0x5, 0xc, &(0x7f0000000080)='\"\x81=\x00\xfdhhZ\xa0\x16\xda`\x00\x00\x00\x00\x00\x00\x00\xe0\x18\x98\x99\x00\x00\xbf\x04\xd7', 0x0)
r4 = socket(0x4, 0x4, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
mmap$auto(0xffffffffffffff55, 0x5, 0xdf, 0xeb2, r3, 0x6)
recvmmsg$auto(r4, 0x0, 0x10000, 0x6, 0x0)
sysfs$auto(0x2, 0x2, 0x0)
mmap$auto(0x13359b90, 0xd, 0xfffffffffffffffd, 0x13, r3, 0x200000000005e)
unshare$auto(0x40000080)

4m43.81165048s ago: executing program 2 (id=484):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$auto_OVS_CT_LIMIT_CMD_DEL(r0, &(0x7f0000003480)={0x0, 0x0, &(0x7f0000003440)={&(0x7f0000000fc0)={0x4c, r1, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x4}, @OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x34, 0x1, 0x0, 0x1, [@nested={0x2e, 0x2f, 0x0, 0x1, [@generic, @nested={0x4, 0xf7}, @generic="2bb6aff7fd45", @nested={0x20, 0x126, 0x0, 0x1, [@typed={0x8, 0x123, 0x0, 0x0, @pid}, @nested={0x4, 0x13}, @generic, @typed={0xc, 0xec, 0x0, 0x0, @u64}, @nested={0x4, 0x56}]}]}]}]}, 0x4c}, 0x1, 0x0, 0xffff0000, 0x40c4}, 0xc000)

4m43.62236148s ago: executing program 2 (id=486):
r0 = openat$auto_proc_projid_map_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/projid_map\x00', 0x141800, 0x0)
read$auto(r0, &(0x7f0000000100)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x3)
mmap$auto(0x3, 0x2020009, 0x100000001, 0x15, 0xffffffffffffffff, 0x9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mq_notify$auto(0xffffffffffffffff, &(0x7f0000000000)={@sival_int=0x7ff, @inferred, 0x1, @_sigev_thread={0x0, 0x0}})
mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000)
r1 = socket(0xa, 0x1, 0x84)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x28082, 0x0)
mmap$auto(0x0, 0x9, 0x400000072, 0x8b72, 0x1000000002, 0x8000)
socket(0x2, 0xa, 0x106)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000002c0)='./cgroup.cpu/memory.kmem.tcp.limit_in_bytes\x00', 0xc2481, 0x0)
writev$auto(r2, &(0x7f0000000080)={0x0, 0x6}, 0x3)
mmap$auto(0x800000000000000, 0x20007, 0x100000000df, 0x18, r1, 0x9)
mmap$auto(0x0, 0x1, 0x4000000000df, 0xeb1, 0x401, 0x8002)
rseq$auto(&(0x7f0000000340)={0xe, 0x401, 0x0, 0x806, 0xffffffff, 0x2}, 0x8000, 0x0, 0x8000006)
close_range$auto(0x2, 0x8, 0x0)
madvise$auto(0x2, 0x7, 0x22)
mmap$auto(0x6, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0xfffffffffffffff7)
unshare$auto(0x200)
msgget$auto(0x0, 0x5)
msgsnd$auto(0x0, &(0x7f0000000000)={0x1, 0x5}, 0x8, 0x7)
close_range$auto(0x2, 0x8000, 0x0)
socket(0x2, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)

4m43.168073584s ago: executing program 2 (id=488):
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/mountinfo\x00', 0x101000, 0x0)
r0 = io_uring_setup$auto(0x86, 0x0)
r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000001280)='/dev/v4l-subdev0\x00', 0x101000, 0x0)
ioctl$auto(r1, 0xc0205648, r0)

4m43.096802074s ago: executing program 2 (id=489):
getsockopt$auto_SO_ERROR(0xffffffffffffffff, 0x40004, 0x4, &(0x7f0000000140)=',\x00(\xf4^\x7f\x15\xf9Y\xc8\xda\x85\xfc\xd8\x16O\xd7\x949\x88Xl\xb2j([W\f\xfa\x02\x00\x00\x00\x00\x00\x00\x00\xb3\x8b\xd1k\xcd\xb9\xad\xb8\x8aCqK\xd0\xa6=\xbfO\xa2W\'\xe9\x9e*\xab\f\x8fn\xd9\xcbc\xd6\xaa\xff\x01\xa9\xea\xed\xc1\xdftw\xa4\xab\x00\xae7;%vo\xec\xaeDr\x01X', &(0x7f0000000200)=0xfffffffe)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000010c0), 0xffffffffffffffff)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/fs/cifs/LinuxExtensionsEnabled\x00', 0x842, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xa0440, 0x0)
r3 = socket(0x1d, 0x5, 0x88)
getsockopt$auto(r3, 0x1, 0x40, &(0x7f00000000c0)='\x05/\xc3:\x00', &(0x7f0000000100)=0x5)
read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000080)=""/64, 0x40)
adjtimex$auto(&(0x7f00000006c0)={0xf332b6c, 0x0, 0x0, 0xfffffffffffffffd, 0x4e8, 0xfffffffffffffffd, 0x6, 0x0, 0x1, 0x0, 0x8, {0x100000001, 0x10000}, 0x1, 0x2, 0xfffffffffffffffd, 0x6, 0x0, 0x10000080000004, 0x81, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x804})
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000500)='/dev/video0\x00', 0x0, 0x0)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r4, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
r5 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x6, 0xdf, 0x400009b72, 0x2, 0x80000000)
unshare$auto(0x40000080)
socket(0x15, 0x5, 0x0)
r6 = openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/psaux\x00', 0x2, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
write$auto_mousedev_fops_mousedev(r6, &(0x7f00000000c0), 0x0)
read$auto_mon_fops_text_t_mon_text(r5, &(0x7f0000000040)=""/64, 0x40)
clock_adjtime$auto(0x6bc8, &(0x7f00000005c0)={0x7, 0x0, 0x8, 0x8000000000000001, 0x7, 0xfffffffffffffff7, 0x6, 0x0, 0x2, 0x2, 0x1, {0xf, 0x7}, 0x82ba, 0x7ff, 0x59d, 0x5, 0x0, 0x8000000000000000, 0x100000000, 0xa567, 0x9, 0x7, 0x1000})
select$auto(0x6, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x200000000007, 0xd, 0x1, 0x948b, 0x3, 0x7f, 0x3, 0x3, 0x9, 0x80000001, 0x7, 0x6d3f, 0x9, 0x9, 0xfffffffffffffffd]}, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
socket(0xf, 0x3, 0x2)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/cifs/LookupCacheEnabled\x00', 0x7, 0x0)
getpriority$auto_PRIO_PGRP(0x1, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
sendmsg$auto_CTRL_CMD_GETPOLICY(r0, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000001180)={&(0x7f0000001100)={0x1c, r1, 0x301, 0x70bd25, 0x25dfdbff, {}, [@CTRL_ATTR_FAMILY_NAME={0x8, 0x2, '${,\x00'}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000800}, 0xc040810)

4m41.366514494s ago: executing program 2 (id=492):
r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/004/001\x00', 0x42, 0x0)
ioctl$auto_USBDEVFS_SETINTERFACE(r0, 0x80085504, &(0x7f0000000040)={0x1ff, 0x7fff})
bpf$auto(0x0, &(0x7f0000000780)=@link_update={r0, @new_prog_fd=r0, 0x4007, @old_map_fd=r0}, 0x1)
mmap$auto(0x0, 0x20009, 0x20004000000000df, 0xeb1, 0xffffffffffffffff, 0x9)
r1 = socket(0x2, 0x1, 0x106)
setsockopt$auto(r1, 0x1, 0x40, &(0x7f0000000200)='\x00\x89e\xad\x97\xc5E\xea=\x0f\xf4\xba4\x05>y/21\xfd\'\xc7\x1c\xaeV`\xc7^\x05\"H\xb8\x12\x99\x1fF\xdc\xc4\x02FV\x04D&9?\xa8d\xc97B\x9f)\xc6\xbb\x15_\xfd\xa5\xaf\xf8\xb8\x8a\x186\xa9\x0eY;\x9a\xe32T\xddn\xa6zK\xef\xf7\x04\x81\xb4\xb7;\x12\x1ch$\xbd\xd1x\x15\xa8\x9c\xba\x83\xa7\xbdwf8\xc03z|\xcd\xbc\xa1+8\xcet\x960\a\x80\x88!\x9e\x96\xcd\xb5dB\xc1L\xb2\xb1\xe6\xf9\x92\xd4\xcd\v0|G\xb7\xc3+\xb5\xa9\xb4E>ry\x8d(\xcb\xadaH<-h\xef8\x0678]`\x1f\xe5\\\x9c\xb4\xbd 6\x9fP\x16\xb5\xa1.;d\xf5F7TgT\x908=l\x89\x05\x03\xcb\x04\x9c\x0e\x04\xb5a\xe6\xa6\x13\xf8\xb2\xe1\xab\vI;\x10\xa7\xcc\x84\x1d\xff(\x1c\x99\x90M\xba\xfe\xaa\x8e\x83\x98\xbb8\xc3\x02\x8d(\xb0\x9c@n\xb7\xd3TF\xc7\x7f\x11\x9e\x00\x00\x00\x00\x00', 0xbb)
close_range$auto(0x2, 0xa, 0x0)
unshare$auto(0x40000080)
fallocate$auto(0x8000000000000003, 0x0, 0xd, 0xcbd5d)
r2 = socket(0x12, 0x4, 0x440a)
r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20b42, 0x0)
write$auto(r3, &(0x7f0000000040)='7\x00\\\x80\x04|\x03\xcb\x12\xfa\b\x1c\xc7k\x00\x0e\v9\xb5j\x00\x04\xc8\x1fa\x1c\x1a\x05 \xfdr/D\xbf\x98\x06\xe5\xf6\x8d\x1fX\xe5\xbc\xbc\"}$', 0x7fffffff)
ioctl$auto_SNDCTL_DSP_SETFMT(r3, 0xc0045005, &(0x7f0000000040))
sendfile$auto(0x6, 0x3, 0x0, 0xfdef)
mmap$auto(0x2000000000000, 0xfffffffffffffffe, 0x8, 0x810, 0xffffffffffffffff, 0x5d63)
io_setup$auto(0x80002, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
setrlimit$auto(0x1000000007, 0x0)
socket(0x2a, 0x2, 0x0)
r4 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
io_uring_register$auto_IORING_REGISTER_SEND_MSG_RING(0xffffffffffffffff, 0x1f, &(0x7f00000030c0), 0x7)
ioctl$auto_SNDRV_PCM_IOCTL_FORWARD2(r4, 0x40084149, &(0x7f0000001080)=0x7)
mmap$auto(0x1, 0x110, 0x200000000000dc, 0x15, 0x401, 0x17)
openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/usb/usbmon/9t\x00', 0xa00, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0xa101, 0x0)
socket(0x11, 0x80003, 0x300)
sendmsg$auto_NFC_CMD_STOP_POLL(r2, &(0x7f0000001200)={0x0, 0x0, &(0x7f00000011c0)={0x0, 0x44}, 0x1, 0x0, 0x0, 0x20008050}, 0x4048041)
socket(0x10, 0x2, 0xc)
openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/usb/usbmon/36u\x00', 0x26040, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0)

4m26.283867337s ago: executing program 32 (id=492):
r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/004/001\x00', 0x42, 0x0)
ioctl$auto_USBDEVFS_SETINTERFACE(r0, 0x80085504, &(0x7f0000000040)={0x1ff, 0x7fff})
bpf$auto(0x0, &(0x7f0000000780)=@link_update={r0, @new_prog_fd=r0, 0x4007, @old_map_fd=r0}, 0x1)
mmap$auto(0x0, 0x20009, 0x20004000000000df, 0xeb1, 0xffffffffffffffff, 0x9)
r1 = socket(0x2, 0x1, 0x106)
setsockopt$auto(r1, 0x1, 0x40, &(0x7f0000000200)='\x00\x89e\xad\x97\xc5E\xea=\x0f\xf4\xba4\x05>y/21\xfd\'\xc7\x1c\xaeV`\xc7^\x05\"H\xb8\x12\x99\x1fF\xdc\xc4\x02FV\x04D&9?\xa8d\xc97B\x9f)\xc6\xbb\x15_\xfd\xa5\xaf\xf8\xb8\x8a\x186\xa9\x0eY;\x9a\xe32T\xddn\xa6zK\xef\xf7\x04\x81\xb4\xb7;\x12\x1ch$\xbd\xd1x\x15\xa8\x9c\xba\x83\xa7\xbdwf8\xc03z|\xcd\xbc\xa1+8\xcet\x960\a\x80\x88!\x9e\x96\xcd\xb5dB\xc1L\xb2\xb1\xe6\xf9\x92\xd4\xcd\v0|G\xb7\xc3+\xb5\xa9\xb4E>ry\x8d(\xcb\xadaH<-h\xef8\x0678]`\x1f\xe5\\\x9c\xb4\xbd 6\x9fP\x16\xb5\xa1.;d\xf5F7TgT\x908=l\x89\x05\x03\xcb\x04\x9c\x0e\x04\xb5a\xe6\xa6\x13\xf8\xb2\xe1\xab\vI;\x10\xa7\xcc\x84\x1d\xff(\x1c\x99\x90M\xba\xfe\xaa\x8e\x83\x98\xbb8\xc3\x02\x8d(\xb0\x9c@n\xb7\xd3TF\xc7\x7f\x11\x9e\x00\x00\x00\x00\x00', 0xbb)
close_range$auto(0x2, 0xa, 0x0)
unshare$auto(0x40000080)
fallocate$auto(0x8000000000000003, 0x0, 0xd, 0xcbd5d)
r2 = socket(0x12, 0x4, 0x440a)
r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20b42, 0x0)
write$auto(r3, &(0x7f0000000040)='7\x00\\\x80\x04|\x03\xcb\x12\xfa\b\x1c\xc7k\x00\x0e\v9\xb5j\x00\x04\xc8\x1fa\x1c\x1a\x05 \xfdr/D\xbf\x98\x06\xe5\xf6\x8d\x1fX\xe5\xbc\xbc\"}$', 0x7fffffff)
ioctl$auto_SNDCTL_DSP_SETFMT(r3, 0xc0045005, &(0x7f0000000040))
sendfile$auto(0x6, 0x3, 0x0, 0xfdef)
mmap$auto(0x2000000000000, 0xfffffffffffffffe, 0x8, 0x810, 0xffffffffffffffff, 0x5d63)
io_setup$auto(0x80002, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
setrlimit$auto(0x1000000007, 0x0)
socket(0x2a, 0x2, 0x0)
r4 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
io_uring_register$auto_IORING_REGISTER_SEND_MSG_RING(0xffffffffffffffff, 0x1f, &(0x7f00000030c0), 0x7)
ioctl$auto_SNDRV_PCM_IOCTL_FORWARD2(r4, 0x40084149, &(0x7f0000001080)=0x7)
mmap$auto(0x1, 0x110, 0x200000000000dc, 0x15, 0x401, 0x17)
openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/usb/usbmon/9t\x00', 0xa00, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0xa101, 0x0)
socket(0x11, 0x80003, 0x300)
sendmsg$auto_NFC_CMD_STOP_POLL(r2, &(0x7f0000001200)={0x0, 0x0, &(0x7f00000011c0)={0x0, 0x44}, 0x1, 0x0, 0x0, 0x20008050}, 0x4048041)
socket(0x10, 0x2, 0xc)
openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/usb/usbmon/36u\x00', 0x26040, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0)

2m56.499909763s ago: executing program 1 (id=857):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socketpair$auto(0x1e, 0x5, 0x80000000, 0x0)
r0 = socket(0xa, 0x5, 0x0)
socket(0xa, 0x801, 0x84)
connect$auto(0x3, 0x0, 0x55)
listen$auto(0x3, 0x81)
setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8)
r1 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/fs/ext4/sda1/es_shrinker_info\x00', 0x8880, 0x0)
read$auto_proc_iter_file_ops_compat_inode(r1, &(0x7f0000000040)=""/27, 0x1b)
r2 = accept$auto(0x3, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x3)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x305c80, 0x0)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), r0)
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(0xffffffffffffffff, &(0x7f00000011c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000001180)={&(0x7f0000000100)={0x1060, r3, 0x300, 0x70bd25, 0x25dfdbff, {}, [@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x1}, @NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}, @NL80211_ATTR_VHT_CAPABILITY={0x1004, 0x9d, "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"}, @NL80211_ATTR_NETNS_FD={0x8, 0xdb, r2}, @NL80211_ATTR_P2P_OPPPS={0x5, 0xa3, 0x7}, @NL80211_ATTR_TDLS_OPERATION={0x5, 0x8a, 0x4}, @NL80211_ATTR_KEY_SEQ={0xb, 0xa, "030156427dee3d"}, @NL80211_ATTR_TXQ_MEMORY_LIMIT={0x8, 0x10b, 0x1}, @NL80211_ATTR_BSS_CTS_PROT={0x5, 0x1c, 0x7}, @NL80211_ATTR_MLO_RECONF_REM_LINKS={0x6, 0x14f, 0x1}]}, 0x1060}, 0x1, 0x0, 0x0, 0x2004c080}, 0x8000)

2m56.333286033s ago: executing program 1 (id=860):
r0 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
capget$auto(&(0x7f0000000000)={0x0, 0xffffffffffffffff}, &(0x7f0000000100)={0x7, 0x200, 0x7ff})
mbind$auto(0xefd5, 0x4, 0xa8, &(0x7f00000000c0)=0x10001, 0x543300ea, 0x10)
sendmsg$auto_OVS_FLOW_CMD_GET(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)={0x8c, r0, 0x1, 0x70bd29, 0x25dfdbfb, {}, [@OVS_FLOW_ATTR_MASK={0x6d, 0x7, 0x0, 0x1, [@generic="a4bad98cee9a7f9585bbb453749dd346bb7b7faca4d1562306847e978179b4533172669cb7aea92d9c11cb273ec240859ccffd9c0f61b4b9e62c43334cadd396690c5b15c81243214fadcd4c1f9cfa9cdffd1518cbb1fdba45e363814b18f18c17", @typed={0x8, 0x130, 0x0, 0x0, @u32=0xf54}]}, @OVS_FLOW_ATTR_KEY={0x8, 0x1, 0x0, 0x1, [@typed={0x4, 0x16}]}]}, 0x8c}, 0x1, 0x0, 0x0, 0x40010}, 0x885)

2m56.061589717s ago: executing program 1 (id=861):
r0 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, 0x0, 0x40440, 0x0)
read$auto_proc_single_file_operations_base(r0, &(0x7f0000000040)=""/9, 0x9)

2m55.67076946s ago: executing program 1 (id=864):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0xd, 0x2020009, 0x5, 0xeb1, 0xffffffffffffffff, 0x8000)
r0 = socket(0x2, 0x3, 0xa)
connect$auto(r0, &(0x7f00000000c0), 0x55)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r1 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000001a80)='/dev/bus/usb/001/001\x00', 0x29202, 0x0)
mmap$auto(0x2000, 0x80009, 0xb, 0x8000000008011, r1, 0x0)
mbind$auto(0x8000, 0x7f, 0x2, &(0x7f0000000280)=0x20000000000000fb, 0x3, 0x1)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x55)
r2 = socket(0x2, 0x3, 0xa)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8)
connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0xe000)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)={0x0, 0xfffffffffffffd70}, 0x1, 0x0, 0x0, 0x44000}, 0x20000091)
mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0x4)
socket(0x10, 0x3, 0x6)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x7ff, 0x9, 0x63, 0x0, 0x0, 0x0, 0x8, 0x200, 0x800000000100002, 0x40000406, 0x2, 0xc, 0x2, 0x11, 0x6, 0x7})
syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYRES8], 0x1ac}, 0x1, 0x0, 0x0, 0x2000c000}, 0x4004)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xee46}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x9fe)
ustat$auto(0x20000801, &(0x7f0000000000)={0xbff, 0x2, "be5705f65205", "064885ca64ad"})
socket$nl_generic(0x10, 0x3, 0x10)

2m53.894468813s ago: executing program 1 (id=870):
select$auto(0xe, 0xfffffffffffffffe, 0x0, 0x0, 0x0)
mmap$auto(0x1, 0x20006, 0x4000000000df, 0x1e, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x200000000007)
r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x18b800, 0x0)
pread64$auto(r0, 0x0, 0x8100000041, 0x413e)
rt_sigqueueinfo$auto(0x1, 0x7, &(0x7f0000000040)={@siginfo_0_0={0x0, 0x5, 0xfffffffb, @_sigpoll={0x52, 0x7}}})
prlimit64$auto(0xffffffffffffffff, 0x80000003, 0x0, 0x0)

2m53.453413686s ago: executing program 1 (id=874):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r1)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYBLOB="2a9aba00", @ANYRES16=r2, @ANYBLOB="18062abd7000ffdbdf251f0000000400d800"], 0x18}}, 0x8000)
r3 = gettid()
tkill$auto(r3, 0x7)
r4 = getpgid$auto(0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_SET_BSS(r0, &(0x7f0000001500)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000014c0)={&(0x7f0000000040)={0x1458, r2, 0x30c, 0x70bd2d, 0x25dfdbfe, {}, [@NL80211_ATTR_STA_FLAGS={0x12bb, 0x11, 0x0, 0x1, [@nested={0x10ca, 0x4c, 0x0, 0x1, [@nested={0x4, 0x77}, @typed={0x8, 0xb7, 0x0, 0x0, @pid=r3}, @generic="a1605bac00bbf6141c31842e823ce7742ce2c38bddfb5d290db733f15a818231889616c7b632cd72c56fd45600445b0b73f2dc7df74e497f35661041f62b5c1f5a4b80a6558be358be837f09901ca6845648a2872a8d51607d19ad41129d23e9e92f205a6f97875351b8f3246def1a410658e13803792a6d514d8f0392f93c967d9c7f1a71fdf93cb75f60c02b14c8bb5b460138b137620f5ce8e49355c01542723926819c9bad808406ffbfd74771d2d54546c68b4158d22f24", @generic="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"]}, @generic="84d06986228c35128750b83ea20d7170734d1ab2eb8cbf5a3e79c7174e9737bfb600cd7a1de72de5abc3ef8be7a63888ec376fe2b1ed589951d0871505086cab855d00a70a5593a4b02124617cd0e47d2c1882edd795d10c9f413c3df087735a7b89aff15991d54110669c2b0e0032f7e82a39332aa8f18696373765266a9e04a5c0c1d219d31e5e06bea0186cea4b25620d65dcbff0dea7e62fe52493ec73438417b7a5509887132e1ce7f7968c97492fdeef64692929ad84e8e64c02830b1f6550726ae78c794498fe1e138eea0723de189d655dc2f1c747a6835d5515a025888f75f5d87f5b86c6bd1cb0cd99665548", @generic, @generic="b3af00e6dcb0b801f40607438da1268af390a58d486411f4423d1bb82c46941a9edc97d2bb2ea0015a748af746bb795b5d16f7f21e196b41cb8a974965ea142a3f8c32d9a39e4b15f2a6afc1954b9fc7665fe94a966bb0e0be63d02eeda83dedbfc1", @nested={0x82, 0xa3, 0x0, 0x1, [@typed={0x8, 0x4b, 0x0, 0x0, @uid=0xffffffffffffffff}, @generic="de64673aaa7132f28d98db5c2a997cf25f7b1e4f9e9fde7b6f16fea45b25b00cf105891efc70114a1473c21134c92520b10065509727c9f4f30870c0658f37086ff7fd64bf1232e9ab4e509b768e42eb4733ab74a0f40fc067db84d2830c137f76a49eb8c48b150bbf069287cd4e8e6653b798b78506"]}, @typed={0x14, 0x38, 0x0, 0x0, @ipv6=@private0}]}, @NL80211_ATTR_MBSSID_ELEMS={0x185, 0x133, 0x0, 0x1, [@typed={0x8, 0x7d, 0x0, 0x0, @pid=r4}, @typed={0xd8, 0x12c, 0x0, 0x0, @binary="bc02517a9b2e5d076f613352884eb63f25df23412c29081847bfc2ff814a043d545890157d5fcf6c7839c7a5c2eb43503b23a1648ecd575179de4f75107adda0f630a15528935189333d3cdc4ba9972206c30014f85e3a07e51a6321a154f32250a9badec408bd0e17f1154330023455a60b8a00cc17a5aeb1b954bd132aea9bcc548e772cf6afe9ca9a31bff23da2411f9b246f7db86219f7657919d5932872bf452ad1d68884c61e80c9827f6a119a0b921466279d56ec572a71853444b625afd63b6dcd6c6f46be2d364d839cbd4b71793e97"}, @typed={0x8, 0x7d, 0x0, 0x0, @u32=0xac}, @nested={0xc, 0x2a, 0x0, 0x1, [@nested={0x4, 0x39}, @generic, @nested={0x4, 0x49}]}, @generic="ce420ee95c27d90911233586cbe7f90fa4fe84d88c356c4412fd1b2faa7272ff6827b5f6564c961cc0ed7092032c584a4f34a7623066df7f47f99de5937c2c0de2360c41f78b16e01fda0c028e9b53d43ec8b08d478e8aac42c4251c0f59ef537bf7916d669c608e869d09adde58742d7a99a00586caedd1fb044eec9f79165c1113a8cbaf2e0716ca9d2ecc68"]}]}, 0x1458}, 0x1, 0x0, 0x0, 0x800}, 0x44000)
r5 = socketcall$auto_SYS_SOCKETPAIR(0x8, 0x0)
r6 = prctl$auto(0x7, 0x8, 0x0, 0x2, 0x1)
splice$auto(r5, &(0x7f0000001d00)=0x1, r6, 0x0, 0x6, 0x2)
socket(0x2, 0xda24bfb47c54d09a, 0xfffffffc)

2m52.449695104s ago: executing program 33 (id=874):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r1)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYBLOB="2a9aba00", @ANYRES16=r2, @ANYBLOB="18062abd7000ffdbdf251f0000000400d800"], 0x18}}, 0x8000)
r3 = gettid()
tkill$auto(r3, 0x7)
r4 = getpgid$auto(0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_SET_BSS(r0, &(0x7f0000001500)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000014c0)={&(0x7f0000000040)={0x1458, r2, 0x30c, 0x70bd2d, 0x25dfdbfe, {}, [@NL80211_ATTR_STA_FLAGS={0x12bb, 0x11, 0x0, 0x1, [@nested={0x10ca, 0x4c, 0x0, 0x1, [@nested={0x4, 0x77}, @typed={0x8, 0xb7, 0x0, 0x0, @pid=r3}, @generic="a1605bac00bbf6141c31842e823ce7742ce2c38bddfb5d290db733f15a818231889616c7b632cd72c56fd45600445b0b73f2dc7df74e497f35661041f62b5c1f5a4b80a6558be358be837f09901ca6845648a2872a8d51607d19ad41129d23e9e92f205a6f97875351b8f3246def1a410658e13803792a6d514d8f0392f93c967d9c7f1a71fdf93cb75f60c02b14c8bb5b460138b137620f5ce8e49355c01542723926819c9bad808406ffbfd74771d2d54546c68b4158d22f24", @generic="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"]}, @generic="84d06986228c35128750b83ea20d7170734d1ab2eb8cbf5a3e79c7174e9737bfb600cd7a1de72de5abc3ef8be7a63888ec376fe2b1ed589951d0871505086cab855d00a70a5593a4b02124617cd0e47d2c1882edd795d10c9f413c3df087735a7b89aff15991d54110669c2b0e0032f7e82a39332aa8f18696373765266a9e04a5c0c1d219d31e5e06bea0186cea4b25620d65dcbff0dea7e62fe52493ec73438417b7a5509887132e1ce7f7968c97492fdeef64692929ad84e8e64c02830b1f6550726ae78c794498fe1e138eea0723de189d655dc2f1c747a6835d5515a025888f75f5d87f5b86c6bd1cb0cd99665548", @generic, @generic="b3af00e6dcb0b801f40607438da1268af390a58d486411f4423d1bb82c46941a9edc97d2bb2ea0015a748af746bb795b5d16f7f21e196b41cb8a974965ea142a3f8c32d9a39e4b15f2a6afc1954b9fc7665fe94a966bb0e0be63d02eeda83dedbfc1", @nested={0x82, 0xa3, 0x0, 0x1, [@typed={0x8, 0x4b, 0x0, 0x0, @uid=0xffffffffffffffff}, @generic="de64673aaa7132f28d98db5c2a997cf25f7b1e4f9e9fde7b6f16fea45b25b00cf105891efc70114a1473c21134c92520b10065509727c9f4f30870c0658f37086ff7fd64bf1232e9ab4e509b768e42eb4733ab74a0f40fc067db84d2830c137f76a49eb8c48b150bbf069287cd4e8e6653b798b78506"]}, @typed={0x14, 0x38, 0x0, 0x0, @ipv6=@private0}]}, @NL80211_ATTR_MBSSID_ELEMS={0x185, 0x133, 0x0, 0x1, [@typed={0x8, 0x7d, 0x0, 0x0, @pid=r4}, @typed={0xd8, 0x12c, 0x0, 0x0, @binary="bc02517a9b2e5d076f613352884eb63f25df23412c29081847bfc2ff814a043d545890157d5fcf6c7839c7a5c2eb43503b23a1648ecd575179de4f75107adda0f630a15528935189333d3cdc4ba9972206c30014f85e3a07e51a6321a154f32250a9badec408bd0e17f1154330023455a60b8a00cc17a5aeb1b954bd132aea9bcc548e772cf6afe9ca9a31bff23da2411f9b246f7db86219f7657919d5932872bf452ad1d68884c61e80c9827f6a119a0b921466279d56ec572a71853444b625afd63b6dcd6c6f46be2d364d839cbd4b71793e97"}, @typed={0x8, 0x7d, 0x0, 0x0, @u32=0xac}, @nested={0xc, 0x2a, 0x0, 0x1, [@nested={0x4, 0x39}, @generic, @nested={0x4, 0x49}]}, @generic="ce420ee95c27d90911233586cbe7f90fa4fe84d88c356c4412fd1b2faa7272ff6827b5f6564c961cc0ed7092032c584a4f34a7623066df7f47f99de5937c2c0de2360c41f78b16e01fda0c028e9b53d43ec8b08d478e8aac42c4251c0f59ef537bf7916d669c608e869d09adde58742d7a99a00586caedd1fb044eec9f79165c1113a8cbaf2e0716ca9d2ecc68"]}]}, 0x1458}, 0x1, 0x0, 0x0, 0x800}, 0x44000)
r5 = socketcall$auto_SYS_SOCKETPAIR(0x8, 0x0)
r6 = prctl$auto(0x7, 0x8, 0x0, 0x2, 0x1)
splice$auto(r5, &(0x7f0000001d00)=0x1, r6, 0x0, 0x6, 0x2)
socket(0x2, 0xda24bfb47c54d09a, 0xfffffffc)

1m30.991050594s ago: executing program 0 (id=1137):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$auto_CTRL_CMD_GETFAMILY2(r0, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x44, r1, 0x200, 0x70bd2c, 0x25dfdbfd, {}, [@CTRL_ATTR_FAMILY_NAME={0x1e, 0x2, './cgroup.net/devices.deny\x00'}, @CTRL_ATTR_FAMILY_NAME={0x5, 0x2, '\x00'}, @CTRL_ATTR_FAMILY_NAME={0x6, 0x2, '#\x00'}]}, 0x44}, 0x1, 0x0, 0x0, 0x40}, 0x10)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.net/devices.deny\x00', 0x8ea182, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000000)='B', 0x1)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x4c000, 0x0)

1m30.752960819s ago: executing program 0 (id=1138):
unshare$auto(0x40000080)
setreuid$auto(0xffffffffffffffff, 0x8)
write$auto(0xffffffffffffffff, &(0x7f0000000100)='\xff\x9b\a\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc7k\xccK\xc9\xeeM\xd3@\xfb\x84M\xe0\xadWX\x90\t\x00\x00\x00\x00\tU7@\xe8\xc4\xdfC\xb4\x1a\xc2w(\x001\x18xF!!ju\xcc{z\x82\x99\x93)\xec\xfa\xb8\xbd\xf5.\xd6\n(\x90\xad\xee\xcf\xe0\xf7u\xfe\xc7>\x8d\x80\xb8\x7f^\x81\x1f.6\x04\x10Rbf\v\xd6w4Z\xe4\xc8\xe6$\xf3\xb3\t%\x8a\x17\xb3JB\xed$+oN*\xcc}\xe7B\x01\xd0M\x9d\x00', 0x2)

1m30.121745324s ago: executing program 0 (id=1139):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
getrandom$auto(0x0, 0x6000000, 0x3)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0x80900, 0x0)
openat$auto_ftrace_system_enable_fops_trace_events(0xffffffffffffff9c, 0x0, 0x20a01, 0x0)
ioctl$auto_BLKFLSBUF(r1, 0x1261, 0x0)
mmap$auto(0xb2, 0x14, 0xffb, 0x8000000008015, r0, 0x8000)
write$auto(0x3, 0x0, 0xfffffdef)
r2 = socket(0x10, 0x2, 0x4)
mmap$auto(0x0, 0x2000d, 0x4000000200df, 0xeb1, 0x404, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x804}, 0x800)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x3, 0x9}, 0x7}, 0x3, 0xe4a1)
io_uring_setup$auto(0x3501, &(0x7f0000000080)={0x80, 0x1000, 0x8, 0x5, 0x3, 0xfffffff1, r0, [0xbc, 0xffff, 0x40], {0x81, 0x9, 0x0, 0x80000000, 0x3, 0x101, 0xffff, 0x0, 0x6}, {0x7, 0xa, 0xf, 0x7fff, 0x3, 0x0, 0x0, 0xfffffffa, 0xc}})
ioctl$auto_BLKTRACETEARDOWN(r1, 0x1276, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x11, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
r4 = ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0xa, 0x3, 0x3c)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/tty48\x00', 0x880, 0x0)
ioctl$auto(r4, 0x560c, r2)
madvise$auto(0x0, 0x20499d, 0x9)
socket$nl_generic(0x10, 0x3, 0x10)
open_tree$auto(0xffffffffffffffff, 0x0, 0x74ee)

1m28.168885726s ago: executing program 0 (id=1149):
open_by_handle_at$auto(0xffffff9c, &(0x7f0000000040)={0x2, 0x2, 'Ll'}, 0x2) (async)
open_by_handle_at$auto(0xffffff9c, &(0x7f0000000040)={0x2, 0x2, 'Ll'}, 0x2)
getitimer$auto_ITIMER_PROF(0x2, &(0x7f0000000000)={{0xdc, 0x9}, {0x8fab, 0xc9}})
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x40001, 0x0)
ioctl$auto(r0, 0x80045430, 0xffffffffffffffff)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) (async)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r1, 0x0, 0x20)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000100)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x80800, 0x0)
unshare$auto(0xd36f) (async)
unshare$auto(0xd36f)

1m27.933302883s ago: executing program 0 (id=1151):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_ftrace_system_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/events/vmalloc/enable\x00', 0x74000, 0x0) (async)
openat$auto_ftrace_system_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/events/vmalloc/enable\x00', 0x74000, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) (async)
r0 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
write$auto(0xffffffffffffffff, 0x0, 0x81) (async)
write$auto(0xffffffffffffffff, 0x0, 0x81)
acct$auto(&(0x7f0000000000)='/dev/fb0\x00') (async)
acct$auto(&(0x7f0000000000)='/dev/fb0\x00')
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
r1 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, 0x0, 0x102, 0x0)
write$auto_console_fops_tty_io(r1, 0x0, 0x0) (async)
write$auto_console_fops_tty_io(r1, 0x0, 0x0)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73) (async)
socket(0x2, 0x80002, 0x73)
r2 = syz_genetlink_get_family_id$auto_nfc(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$auto_NFC_CMD_START_POLL(r0, &(0x7f0000001240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000011c0)={&(0x7f0000000180)={0x1018, r2, 0x2, 0x70bd27, 0x25dfdbfe, {}, [@NFC_ATTR_SE_APDU={0x1004, 0x19, "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"}]}, 0x1018}, 0x1, 0x0, 0x0, 0x4000000}, 0x1)
read$auto_rng_chrdev_ops_core(0xffffffffffffffff, &(0x7f0000001200)=""/22, 0x16)
socket(0xa, 0x2, 0x88)
openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f0026bd7000fcdbdf9907"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4)
close_range$auto(0x2, 0x8, 0x0)
socket(0x29, 0x2, 0x100)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='U'], 0x1ac}}, 0x4004) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='U'], 0x1ac}}, 0x4004)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc6}, 0x1, 0x0, 0x2, 0x9}, 0x7}, 0x3, 0x0)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
getrusage$auto(0x0, 0x0)
madvise$auto(0x0, 0x2003f0, 0x15)

1m26.915898193s ago: executing program 0 (id=1157):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/pnp0/00:01/options\x00', 0x0, 0x0) (async)
mmap$auto(0x0, 0x4020007, 0x6, 0xeb1, 0x401, 0x8000) (async)
sysfs$auto(0x2, 0x3f, 0x0) (async, rerun: 64)
r1 = fsopen$auto(0x0, 0x1) (rerun: 64)
fsconfig$auto(r1, 0x8, 0x0, 0x0, 0x0)
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio1\x00', 0x20b42, 0x0) (async, rerun: 32)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) (async, rerun: 32)
r3 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
read$auto(r3, 0x0, 0x1f40)
r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r4, &(0x7f0000000240)={0x0, 0x7}, 0x3)
shmctl$auto_SHM_UNLOCK(0x2, 0xc, 0x0) (async, rerun: 64)
write$auto(0xffffffffffffffff, 0x0, 0x3) (async, rerun: 64)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/system/node/node1/hugepages/hugepages-1048576kB/demote\x00', 0x183841, 0x0)
write$auto(r5, &(0x7f0000000080)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbbOO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(', 0x4)
write$auto(r2, 0x0, 0x100085) (async, rerun: 32)
sendmsg$auto_NLBL_CALIPSO_C_LISTALL(r1, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x34, 0x0, 0x10, 0x70bd27, 0x25dfdbfc, {}, [@NLBL_CALIPSO_A_MTYPE={0x8, 0x2, 0x40}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x9415}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0xfff}, @NLBL_CALIPSO_A_MTYPE={0x8, 0x2, 0x40}]}, 0x34}}, 0x0) (async, rerun: 32)
write$auto(r0, &(0x7f0000000140)='/sys/devices/pnp0/00:01/options\x00', 0x7ff) (async)
close_range$auto(0x2, 0x8, 0x0) (async, rerun: 32)
r6 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x3c, r8, 0x1b, 0x70bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0xc, 0x3, 0x0, 0x1, [@typed={0x8, 0xc, 0x0, 0x0, @fd=r7}]}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f17790485908286dd"}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) (async)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000100)={{0x0, 0x4, 0x0, 0x2, 0x0, 0x20000}, 0x4}, 0x1f8, 0xb07e) (async, rerun: 64)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) (async, rerun: 64)
read$auto(0x3, 0x0, 0x1f40)

1m13.345097413s ago: executing program 4 (id=1218):
r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r2=>0x0})
r3 = socket(0x11, 0x3, 0x300)
bind$auto(0x3, &(0x7f0000000040)=@llc={0x1a, 0x100, 0x6, 0x92, 0x8, 0x9, @random="b8c8bb06799e"}, 0x5)
timer_create$auto(0x7, &(0x7f0000000380)={@sival_int=0x4, @raw=0x9, 0x7, @_sigev_thread={&(0x7f00000002c0)=&(0x7f0000000240)=0x1, &(0x7f0000000300)="337d840b595f9e47471819891b106aff9404ecadac9593cd799b7a6a794ffc7d2f6c6577f5986789282aeeec71947b604189a261bac089a364db77ddc3a43f9868074a139a4762d95d348518779bebce"}}, &(0x7f00000003c0)=0x7)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_SMC_NETLINK_DISABLE_SEID(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="14000000", @ANYRES16=r5, @ANYBLOB="013b"], 0x14}, 0x1, 0x0, 0x0, 0x880}, 0x810)
r6 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x28082, 0x0)
ioctl$auto(r6, 0x40044d0e, 0x8)
sendmsg$auto_SMC_NETLINK_DISABLE_SEID(r3, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000100)={0x60, r5, 0x300, 0x70bd25, 0x25dfdbfe, {}, "2c5ea4a0f6ff83cdcfe9c8d8fdc0e1cc9a8c101a26779d3e33750792fcf1196c1d3dc9561f134f72aaca1a724accf830c81beb757aa868eea19827ac37ce4e92761a4ee71a8c3d4cb9ba95"}, 0x60}, 0x1, 0x0, 0x0, 0x20004880}, 0x20040018)
sendmsg$auto_NL80211_CMD_SET_WIPHY(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYRESHEX=r4, @ANYRES16=r0, @ANYBLOB="9b005d3d2428f5ff1a6a42f6390bb100081333a9d82cc0e700", @ANYRES32=r2], 0x24}, 0x1, 0x0, 0x0, 0x24004080}, 0x20040894)

1m13.223322306s ago: executing program 4 (id=1219):
socket(0x11, 0x80003, 0x300) (async)
socket(0x11, 0x80003, 0x300)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/class/ubi/version\x00', 0x400, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000080)=""/58, 0x3a)
sysfs$auto(0x2, 0xfffffffffffffffc, 0x0)
r1 = fsopen$auto(0x0, 0x1)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/sequencer\x00', 0x103, 0x0)
ioctl$auto_SNDCTL_SYNTH_MEMAVL(r1, 0xc004510e, &(0x7f0000000200)="2dbdd3ddab53cd5effd62d22641f22158972ab866beb992b45ff2c3425a74bbc223f18d1ac920b72f53a8750c698eae30c24bef6cb06c7121756d7cdb7fcced8170d7e51cfa44fc8b560d5e88448784d02e8c37c84a47375e6ee74edba71b8")
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/rpc/auth.rpcsec.context/channel\x00', 0x101002, 0x0)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x24c802, 0x0) (async)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x24c802, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) (async)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0xffffffffffffffff, 0x8, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) (async)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) (async)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r3) (async)
ioctl$auto(0x3, 0xae41, r3)
ioctl$auto_KVM_CREATE_VM(r2, 0xae80, 0x0)
mmap$auto(0x0, 0x7fff, 0x3, 0xeb0, 0xfffffffffffffffa, 0x208000)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x70, 0xdf, 0x9b72, 0x2, 0x80000000008000)
unshare$auto(0x40000080)
mknod$auto(&(0x7f0000000080)='u[,&*}\x00\a\x00\x00\x00?\xa4\x1fN\xa1~5Z\xc7\r\f}M4\xa8m\xe6\x19[11\xab\xff-E\xac9(\xb4O\xa0t4h\x9f-gn\x1f\x01\x00\x00\x00\x00\x00\x00\x00\xaeR\x81\r_\x0e\x19\b\x85\bvv(e\xdax)\t\x15\xf6\xc8\xee\x04\x16\xc1\x9a!\x87I7\x8cD&zg\xb0a\xab|E\xde\x14\xee[\xc8\xc0\xa8Nh\x0f\xa3\xdbT\xb3\xb8\xd2F\xa0\xc4]\xaf\xc43&\xe4\x01\x05\xd2\x15\xf8\xf1!\x9d\x92\xbbH\xd3^aD\x87\xd8\xe7\xd2\xf3[r\xc5S&}D[\x97\xf1\xd9\xf8Y\x1c\x03\x84\xb4\xd7\x16\x19\xe5\x17\x10\xd8fcG:\xfbY8\x17w\x98?\x03@\xe5\x02\x05\x93h\xb9\xf7\xef\x84\x8aGlN\a\x1e\x00\x00\x00\x00\x00\x00\x00\xf1p\xeb\xe9(%\x89\xef\x85\xdfr\xce\x00\x00\x00\x00\xff\x00\xa2M\'d\x12\x1c\x12\xca\xa5_\x8d\xdf\xc5\x8d\x19?\xfc~\xb3X\x14\xa7\xa9M\x87\xfcTW\x1bR\xbci\x8d\x8aNEO\xb3~~\xa8\xa6\x894\x80;s\xb7\xa3V\x1b\x14|\x9e\xd4\x05\x85\x0f!\xab-E\'\x97Y\xb7\xe8fMv_\xf8\xa0S\xef\xb7\b\xe7!T.g\x92\x87\t$\x06\xa4\xfb\x83\x8c\x17^\x82\xe7\xd3\xf6q\x1a\xa0\xf82[W\x90\xdd\xe3\xde\xa9\xde\x94`-\x9a\x1e}\xebO*\xb85,v.\xfc5\xba?vlt\xda%\x06a\x15I\x1f\xe3\x05+\x810T2\xf9\x9b\xc7\xd1<w\xd3:\x835\xac\r\x06\xc9\xc1HG\x1c\xd4J\x8aZ%+\xe6/~\xd6\xe1[+Z\xb1\x8d\xc5\x9b\xcfhb\'\x80\xeb7%>\t\x03\xf2\x8d\x8a\x90\xb54\bH<9\xf1\x91 D\x85g,\xaa\xca\xcd\xd5\xcb\x9a\xb1j\xf2F\xce\x14\x92\xf9\xd7\xec\xc5\x1e\x8aq2\xce\x881f\xd7\xd4\x9e\xf6\xb6P\x01\xe8T\xb5X\xb9d-I\xd6\x91\xc3\xe2\x88S\x82l=\x02t$p\t\x8cY\x06\r\x83\xb0\x86\xc6\x84\x1c\xce\xb6\xf0\xdfC\x9fj<\xfe\xa4\x1f\x82L\xe4\x13+H\x00\x00\x00\x00\x00\x00\x00\x01M\x16\xa0\xbeB6\xfb\xa2-\x17\x93Q\x9fKusl5\xa2$M\xb4\x18\x1db\xf3\xce\x8c\xe5Rna\xd5\xbbQ\xc7\xa7+\vH\xc1l\x1bIv\xe8_\x00', 0x1081, 0x8)
r4 = socket(0x18, 0x1, 0x5)
getsockopt$auto(r4, 0x0, 0x33, 0xfffffffffffffffe, 0x0) (async)
r5 = getsockopt$auto(r4, 0x0, 0x33, 0xfffffffffffffffe, 0x0)
uname$auto(0x0)
write$auto(0xffffffffffffffff, 0x0, 0x3) (async)
write$auto(0xffffffffffffffff, 0x0, 0x3)
openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/debug/ieee80211/phy10/netdev:wlan0/stations/08:02:11:00:00:01/aid\x00', 0x802, 0x0) (async)
openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/debug/ieee80211/phy10/netdev:wlan0/stations/08:02:11:00:00:01/aid\x00', 0x802, 0x0)
sendmsg$auto_NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="5e48fedc", @ANYRES16=0x0, @ANYRES8=r5], 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x4048041)
clock_gettime$auto(0x80000000, 0x0) (async)
clock_gettime$auto(0x80000000, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000ac0)='u[,&*}\x00\a\x00\x00\x00?\xa4\x1fN\xa1~5Z\xc7\r\f}M4\xa8m\xe6\x19[11\xab\xff-E\xac9(\xb4O\xa0t4h\x9f-gn\x1f\x01\x00\x00\x00\x00\x00\x00\x00\xaeR\x81\r_\x0e\x19\b\x85\bvv(e\xdax)\t\x15\xf6\xc8\xee\x04\x16\xc1\x9a!\x87I7\x8cD&zg\xb0a\xab|E\xde\x14\xee[\xc8\xc0\xa8Nh\x0f\xa3\xdbT\xb3\xb8\xd2F\xa0\xc4]\xaf\xc43&\xe4\x01\x05\xd2\x15\xf8\xf1!\x9d\x92\xbbH\xd3^aD\x87\xd8\xe7\xd2\xf3[r\xc5S&}D[\x97\xf1\xd9\xf8Y\x1c\x03\x84\xb4\xd7\x16\x19\xe5\x17\x10\xd8fcG:\xfbY8\x17w\x98?\x03@\xe5\x02\x05\x93h\xb9\xf7\xef\x84\x8aGlN\a\x1e\x00\x00\x00\x00\x00\x00\x00\xf1p\xeb\xe9(%\x89\xef\x85\xdfr\xce\x00\x00\x00\x00\xff\x00\xa2M\'d\x12\x1c\x12\xca\xa5_\x8d\xdf\xc5\x8d\x19?\xfc~\xb3X\x14\xa7\xa9M\x87\xfcTW\x1bR\xbci\x8d\x8aNEO\xb3~~\xa8\xa6\x894\x80;s\xb7\xa3V\x1b\x14|\x9e\xd4\x05\x85\x0f!\xab-E\'\x97Y\xb7\xe8fMv_\xf8\xa0S\xef\xb7\b\xe7!T.g\x92\x87\t$\x06\xa4\xfb\x83\x8c\x17^\x82\xe7\xd3\xf6q\x1a\xa0\xf82[W\x90\xdd\xe3\xde\xa9\xde\x94`-\x9a\x1e}\xebO*\xb85,v.\xfc5\xba?vlt\xda%\x06a\x15I\x1f\xe3\x05+\x810T2\xf9\x9b\xc7\xd1<w\xd3:\x835\xac\r\x06\xc9\xc1HG\x1c\xd4J\x8aZ%+\xe6/~\xd6\xe1[+Z\xb1\x8d\xc5\x9b\xcfhb\'\x80\xeb7%>\t\x03\xf2\x8d\x8a\x90\xb54\bH<9\xf1\x91 D\x85g,\xaa\xca\xcd\xd5\xcb\x9a\xb1j\xf2F\xce\x14\x92\xf9\xd7\xec\xc5\x1e\x8aq2\xce\x881f\xd7\xd4\x9e\xf6\xb6P\x01\xe8T\xb5X\xb9d-I\xd6\x91\xc3\xe2\x88S\x82l=\x02t$p\t\x8cY\x06\r\x83\xb0\x86\xc6\x84\x1c\xce\xb6\xf0\xdfC\x9fj<\xfe\xa4\x1f\x82L\xe4\x13+H\x00\x00\x00\x00\x00\x00\x00\x01M\x16\xa0\xbeB6\xfb\xa2-\x17\x93Q\x9fKusl5\xa2$M\xb4\x18\x1db\xf3\xce\x8c\xe5Rna\xd5\xbbQ\xc7\xa7+\vH\xc1l\x1bIv\xe8_\x00', 0x6c000, 0x63)
acct$auto(&(0x7f0000000580)='u[,&*}\x00\a\x00\x00\x00?\xa4\x1fN\xa1~5Z\xc7\r\f}M4\xa8m\xe6\x19[11\xab\xff-E\xac9(\xb4O\xa0t4h\x9f-gn\x1f\x0f\x18\xc5\x82-s\x83\xe6\xaeR\x81\r_\x0e\x19\x12\x85\bvf(e\xday)\t\x15\xf6\xc8\x9a!\x87I7\x8cD&zg\xb0a\xab|E\xde\x14\xee[\xc8\xc0\xa8Nh\x0f\xa3\xdbT\xb3\xb8\xd2F\xa0\xc4]\xaf\xc43&\xe4\x01\x05\xd2\x15\xf8\xf1!\x9d\x92\xbbHL9aD\xb4\x80\xed\xba>\"\xb6\x7f\xa3f\x1d@\x85\x059\xb0\x15kD\x8b\n\xd8$\x9c\a\xa1\x87\x84uA\xd8\xe7\xd2\xf3[r\xc5S&}D[\x97\xf1\xd9\xf8Y\x03\x84\xb4\xd7\x16\x19\xe5\x17\x10\xd8fcG:\xfbY8\x17w\x98?\x03@\xe5\x027B3/\x82\xda\x8c\xa5\xa9T\xden\xb5\xc2\x05\xad\x9c\xda\n.S\xcb\x10\x9d\xbc\x9a>\xd0\xb9\xae\x85\t\xc2\xd1\x16M\xef\x90\xcc\x19%s\x93\xa2\x9a\x06\x95\xe3\xa8C\xea\x9e\x0e\x82`\xe4\x0eZ\xac\xab_\xbd\xf3\x12\x1a\x9f\xeb{\xe3\x9d\xb6\x83H\x04\x1a\x7f\xc2\x178\xd1%\'\xd8D\xf9\xc9\xfe\x89\xa6\xdbR\xe3y\x9e\xe8:\xd8\x91\xe67t')

1m11.694842252s ago: executing program 34 (id=1157):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/pnp0/00:01/options\x00', 0x0, 0x0) (async)
mmap$auto(0x0, 0x4020007, 0x6, 0xeb1, 0x401, 0x8000) (async)
sysfs$auto(0x2, 0x3f, 0x0) (async, rerun: 64)
r1 = fsopen$auto(0x0, 0x1) (rerun: 64)
fsconfig$auto(r1, 0x8, 0x0, 0x0, 0x0)
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio1\x00', 0x20b42, 0x0) (async, rerun: 32)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) (async, rerun: 32)
r3 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
read$auto(r3, 0x0, 0x1f40)
r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r4, &(0x7f0000000240)={0x0, 0x7}, 0x3)
shmctl$auto_SHM_UNLOCK(0x2, 0xc, 0x0) (async, rerun: 64)
write$auto(0xffffffffffffffff, 0x0, 0x3) (async, rerun: 64)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/system/node/node1/hugepages/hugepages-1048576kB/demote\x00', 0x183841, 0x0)
write$auto(r5, &(0x7f0000000080)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbbOO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(', 0x4)
write$auto(r2, 0x0, 0x100085) (async, rerun: 32)
sendmsg$auto_NLBL_CALIPSO_C_LISTALL(r1, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x34, 0x0, 0x10, 0x70bd27, 0x25dfdbfc, {}, [@NLBL_CALIPSO_A_MTYPE={0x8, 0x2, 0x40}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x9415}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0xfff}, @NLBL_CALIPSO_A_MTYPE={0x8, 0x2, 0x40}]}, 0x34}}, 0x0) (async, rerun: 32)
write$auto(r0, &(0x7f0000000140)='/sys/devices/pnp0/00:01/options\x00', 0x7ff) (async)
close_range$auto(0x2, 0x8, 0x0) (async, rerun: 32)
r6 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x3c, r8, 0x1b, 0x70bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0xc, 0x3, 0x0, 0x1, [@typed={0x8, 0xc, 0x0, 0x0, @fd=r7}]}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f17790485908286dd"}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) (async)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000100)={{0x0, 0x4, 0x0, 0x2, 0x0, 0x20000}, 0x4}, 0x1f8, 0xb07e) (async, rerun: 64)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) (async, rerun: 64)
read$auto(0x3, 0x0, 0x1f40)

1m11.687110476s ago: executing program 4 (id=1223):
unshare$auto(0x40000080)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), 0xffffffffffffffff)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r0 = openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
write$auto_ima_measure_policy_ops_ima_fs(r0, &(0x7f0000000000)='#', 0x1)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r3 = socket(0x11, 0x3, 0x2)
r4 = getsockopt$auto(r3, 0x107, 0xb, 0x0, 0x0)
ioctl$auto_BTRFS_IOC_QUOTA_CTL(r4, 0xc0109428, &(0x7f0000000300)={0x100000001})
close_range$auto(r0, r2, 0x6)
r5 = fanotify_init$auto(0x5, 0x2000000000002)
r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0000, 0x0)
ioctl$auto(r6, 0x2, 0x9)
ioctl$auto(0x3, 0x400c4d07, r6)
setsockopt$auto(r1, 0x2, 0xd, &(0x7f0000000040)='\x00\x15\x8d\xca`\xbcgY\xd2w\xf6\xaedN\xfb\xc2_\xf54\xb4zo\xed\x88\xeb\xcfi\x81%\r\xc2\x17\xb1\xaf\xd2\f\xfd\xfd\x1e[Iy\xec\xca\x8b\xde\xdcV\x17\xb0\xc7\xd4\x00\x00\x00\x00\x0f\xd7\x8f\x1d\xa2\xf1ia\x00'/81, 0x70000000)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), r1)
r7 = socket(0x2, 0x2, 0x0)
sendmmsg$auto(r7, &(0x7f00000001c0)={{&(0x7f0000000240)="163efbb8e7a07ca72cbc44b169bde344ad5274c697359b8043c54d6265a79cb19d9b25cef516ab23f70091f3e47f1abad850c9e56591efd55f1dd10b0f088b1c7a02368e2e5a8583fbff891cead404e0c3cdb6eefcd35e6d822243c340278709f8b9f219af5b020e917ec2df1c24f375cdee49f15b1ce5e47a95099e404a798c02921241df26cc9fb25b516ac2ecbb1969b35411cc88726b3ed5899a8a48780ea617431af6cef109c0ef101765aa6aed12bcd37ed29c1b72fd4d1d6271bc1c", 0x7, &(0x7f0000000180)={&(0x7f0000000000)="86b1e536929057a3fb6980f2be131ed79dd6", 0x8}, 0x0, &(0x7f0000000340)="6a4b06cf5f500fff6b3f129af4a0095e087cb5b7cdb49df840089b1449ad777550fc6f80780a505c6e79efc84c3a2d0c1e7049c73caca75e521f386360dc248b41d013ae8e50ccec482f7b8a2baebee0ad2b3c3818b1f64cb7c96e886c4602db450419235d54786a3ac13d9b63d94fa1374516a740615e20490a476d08e217a7af6a2dc8f97f84f05d49b22a39460ea94fd217ad6bd990ba86ee84b84872b68568a0dd705beadd393ab088c8f2ef3434c8a6144637", 0x5, 0x2}, 0x9}, 0x2, 0x3)
bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_4={0x9, r7, 0x1}, 0xd)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/ifb0/phys_port_name\x00', 0x189600, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000001500), r8)
sendmsg$auto_NET_SHAPER_CMD_GROUP(r1, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000100)={0x1c, r9, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@NET_SHAPER_A_IFINDEX={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x44080}, 0x20040014)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
getcpu$auto(0x0, &(0x7f0000000200)=0x7fff, 0x0)
sendmsg$auto_NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(r5, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x1c, 0x0, 0x800, 0x70bd26, 0x25dfdbfd, {}, [@NL80211_ATTR_STA_AID={0x6, 0x10, 0x5}]}, 0xd}, 0x1, 0x0, 0x0, 0x2}, 0x20004000)

1m10.187303448s ago: executing program 4 (id=1226):
r0 = socket(0xa, 0x801, 0x84)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
socket(0x2, 0x3, 0x100)
r1 = socket(0x10, 0x2, 0x0)
r2 = io_uring_setup$auto(0x400d, 0x0)
setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
r4 = openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/kvm/mmu_pde_zapped\x00', 0x2100, 0x0)
read$auto_stat_fops_per_vm_kvm_main(r4, 0x0, 0x0)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ttyq2\x00', 0x102, 0x0)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
r5 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f00000000c0), r1)
r6 = gettid()
sendmsg$auto_OVS_DP_CMD_DEL(r2, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="000128bd7000ffdbdf2502000000070001002440000008000200", @ANYRES32=r6, @ANYBLOB="0800050004000000bc8bd4c774b3675ad27166623466e21845a375b593614fd7515a021c04d13c086e1a30fb52faf93b0e1d49d77c2f36dda675bef0b2d6b0fc2f68774083ab7d611928d05875b64c17b9336fda7eb487f8d8837e"], 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x60000005)
setsockopt$auto(r0, 0x10000000084, 0x7e, 0x0, 0xc)
socket(0xa, 0x801, 0x84) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) (async)
socket(0x2, 0x3, 0x100) (async)
socket(0x10, 0x2, 0x0) (async)
io_uring_setup$auto(0x400d, 0x0) (async)
setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88) (async)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) (async)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) (async)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) (async)
openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/kvm/mmu_pde_zapped\x00', 0x2100, 0x0) (async)
read$auto_stat_fops_per_vm_kvm_main(r4, 0x0, 0x0) (async)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ttyq2\x00', 0x102, 0x0) (async)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) (async)
syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f00000000c0), r1) (async)
gettid() (async)
sendmsg$auto_OVS_DP_CMD_DEL(r2, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="000128bd7000ffdbdf2502000000070001002440000008000200", @ANYRES32=r6, @ANYBLOB="0800050004000000bc8bd4c774b3675ad27166623466e21845a375b593614fd7515a021c04d13c086e1a30fb52faf93b0e1d49d77c2f36dda675bef0b2d6b0fc2f68774083ab7d611928d05875b64c17b9336fda7eb487f8d8837e"], 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x60000005) (async)
setsockopt$auto(r0, 0x10000000084, 0x7e, 0x0, 0xc) (async)

1m9.523901884s ago: executing program 4 (id=1228):
mmap$auto(0x0, 0x2000d, 0x4000000000df, 0xeb1, 0x404, 0x8000)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x1000, 0x940, 0x7ff, 0x3, 0x6, 0x2, 0x9, 0x5, 0x2, 0x4, 0xb0, 0x7, 0x2, 0x3, 0x5, 0x7, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2b8b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd]}, 0x1fe, 0x7)
r0 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_PHY_GET(0xffffffffffffffff, &(0x7f0000003200)={0x0, 0x0, &(0x7f00000031c0)={&(0x7f0000000180)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010326bd7000ffdbdf252d"], 0x20}, 0x1, 0x0, 0x0, 0x2404c012}, 0x80)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
clone$auto(0x9001, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x6)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
r1 = openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/dri/vkms/name\x00', 0x8e0a00, 0x0)
read$auto_drm_debugfs_entry_fops_drm_debugfs(r1, &(0x7f0000000180)=""/4125, 0x101d)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
r2 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)

1m8.951111299s ago: executing program 4 (id=1229):
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x4000085}, 0x4000804)
mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000)
writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1)
r0 = accept$auto(0xffffffffffffffff, &(0x7f0000000080)=@qipcrtr={0x2a, 0x2, 0x7ffe}, &(0x7f0000000140)=0x7fff)
ioctl$auto(0x1, 0x541b, r0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/virtual/net/rose14/dev_port\x00', 0x1d9401, 0x0)
write$auto(r1, 0x0, 0x800f)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x1, 0x9, 0x63, 0x0, 0x0, 0x0, 0x0, 0x40000000000f, 0x1000, 0xfffffffffffffffd, 0x7ffffffb, 0x9, 0xffffffff7ffffffc, 0x9, 0x7, 0x200000100103})
close_range$auto(0xffffffffffffffff, 0x8, 0x3)
landlock_create_ruleset$auto(&(0x7f0000000000)={0x8000000000000006, 0x3fd, 0x7}, 0x9, 0x3)
openat$auto_trace_options_core_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/options/trace_printk_dest\x00', 0x121082, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/rose11/tx_queue_len\x00', 0x0, 0x0)
mmap$auto(0x0, 0x10000, 0x4000000000db, 0xeb1, 0x2, 0x8000)
read$auto(r2, 0x0, 0x20)
write$auto(0x3, 0x0, 0x7fffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
ioctl$auto(0x3, 0x400454ca, 0x38)
mmap$auto(0x0, 0x9, 0x2, 0x40eb2, 0x401, 0x300000000000)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/irq/12/hwirq\x00', 0x2000, 0x0)
read$auto(r4, 0x0, 0x20)
write$auto(0x3, 0x0, 0x81)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/fs/bcache/register_quiet\x00', 0x401, 0x0)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f00000000c0), r5)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="1098385d", @ANYRES16=r6, @ANYBLOB="01002dbd7000f9dbdf250100000005001300320000000500070058000000080009000800000008000a000800000008001700", @ANYRES8=r3, @ANYBLOB], 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x24000000)

53.744320557s ago: executing program 35 (id=1229):
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x4000085}, 0x4000804)
mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000)
writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1)
r0 = accept$auto(0xffffffffffffffff, &(0x7f0000000080)=@qipcrtr={0x2a, 0x2, 0x7ffe}, &(0x7f0000000140)=0x7fff)
ioctl$auto(0x1, 0x541b, r0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/virtual/net/rose14/dev_port\x00', 0x1d9401, 0x0)
write$auto(r1, 0x0, 0x800f)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x1, 0x9, 0x63, 0x0, 0x0, 0x0, 0x0, 0x40000000000f, 0x1000, 0xfffffffffffffffd, 0x7ffffffb, 0x9, 0xffffffff7ffffffc, 0x9, 0x7, 0x200000100103})
close_range$auto(0xffffffffffffffff, 0x8, 0x3)
landlock_create_ruleset$auto(&(0x7f0000000000)={0x8000000000000006, 0x3fd, 0x7}, 0x9, 0x3)
openat$auto_trace_options_core_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/options/trace_printk_dest\x00', 0x121082, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/rose11/tx_queue_len\x00', 0x0, 0x0)
mmap$auto(0x0, 0x10000, 0x4000000000db, 0xeb1, 0x2, 0x8000)
read$auto(r2, 0x0, 0x20)
write$auto(0x3, 0x0, 0x7fffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
ioctl$auto(0x3, 0x400454ca, 0x38)
mmap$auto(0x0, 0x9, 0x2, 0x40eb2, 0x401, 0x300000000000)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/irq/12/hwirq\x00', 0x2000, 0x0)
read$auto(r4, 0x0, 0x20)
write$auto(0x3, 0x0, 0x81)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/fs/bcache/register_quiet\x00', 0x401, 0x0)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f00000000c0), r5)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="1098385d", @ANYRES16=r6, @ANYBLOB="01002dbd7000f9dbdf250100000005001300320000000500070058000000080009000800000008000a000800000008001700", @ANYRES8=r3, @ANYBLOB], 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x24000000)

6.074805403s ago: executing program 5 (id=1430):
setsockopt$auto_SO_RXQ_OVFL(0xffffffffffffffff, 0x26c, 0x28, &(0x7f0000000000)='/proc/sys/net/core/rps_default_mask\x00', 0x931e009)
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/core/rps_default_mask\x00', 0x82, 0x0)
setreuid$auto(0xffffffffffffffff, 0x8)
setsockopt$auto_SO_RCVTIMEO_NEW(r0, 0x6, 0x42, &(0x7f0000000080)='/proc/sys/net/core/rps_default_mask\x00', 0xff)
write$auto(r0, 0x0, 0x2)

5.756867352s ago: executing program 5 (id=1432):
r0 = landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x3, 0x3}, 0x18, 0x0)
bpf$auto(0x0, &(0x7f00000003c0)=@task_fd_query={0x5, r0, 0x802, 0x3, 0x0, 0x0, r0, 0x800000000000000}, 0x6d4)
mmap$auto(0x0, 0x202000b, 0x80000003, 0xeb1, 0xfffffffffffffffa, 0x40000008000)
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio1\x00', 0x8000, 0x0)
read$auto(r1, 0x0, 0x9)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x3, 0x400008, 0xdf, 0x9b72, 0x2, 0x2)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/dev\x00', 0x40100, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x2020009, 0x100003, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)=ANY=[@ANYRES8], 0x24}, 0x1, 0x0, 0x0, 0x20040014}, 0x2600c880)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0xa, 0x2, 0x73)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
socket(0x2, 0x80002, 0x73)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000000), r2)
sendmsg$auto_IOAM6_CMD_ADD_SCHEMA(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000480)={0x20, r3, 0x1, 0x70bd2a, 0x25dfdbfb, {0x4, 0x0, 0x900}, [@IOAM6_ATTR_SC_DATA={0x4}, @IOAM6_ATTR_SC_ID={0x8, 0x4, 0x9}]}, 0x20}, 0x1, 0x3000700, 0x0, 0x1}, 0x8010)
bind$auto(0x3, &(0x7f0000000080), 0x6b)
connect$auto(0x3, &(0x7f00000000c0), 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0xe000)
ioctl$auto(0x3, 0x80000541b, 0x38)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
mkdir$auto(&(0x7f0000000040)='./file0\x00', 0x8001)
mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140), 0x4, 0x0)
mount$auto(0x0, &(0x7f0000000000)='}[,&*}\x00', 0x0, 0x3375, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$auto(0x3, 0x80106f53, r4)
socket(0x1e, 0x805, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x60840, 0x0)

4.664221989s ago: executing program 5 (id=1435):
r0 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/smaps_rollup\x00', 0x40000, 0x0)
bpf$auto(0x6, 0xffffffffffffffff, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0xfff, 0x5, 0x10, 0x0)
ioprio_set$auto(0x3, 0x0, 0x4b34)
socket(0x15, 0x5, 0x0)
madvise$auto(0x1ffff000, 0x7, 0x100000000)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x8000000000008000)
mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000)
sysfs$auto(0x2, 0x4d, 0x0)
fsopen$auto(0x0, 0x1)
syz_genetlink_get_family_id$auto_macsec(0x0, 0xffffffffffffffff)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2)
clone$auto(0x9001, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x6)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
prctl$auto(0x43, 0x17, 0x0, 0x0, 0x0)
pselect6$auto(0xffffffff, 0x0, &(0x7f0000000180)={[0x182, 0x9bbb, 0x0, 0x3, 0x58, 0xb5, 0x8, 0x400, 0x6, 0x4, 0x7ff, 0xa5, 0x2, 0x7dde, 0xed1b, 0x8c5]}, 0x0, 0x0, 0x0)
flock$auto(0xffffffffffffffff, 0x8000)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x8001, 0x2)
shmget$auto(0xa, 0x10563, 0x568d1af2)
read$auto_proc_pid_maps_operations_internal(r0, &(0x7f00000010c0)=""/4096, 0x1000)
close_range$auto(0x2, 0x8000, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x6, 0x0)
socket(0xa, 0x1, 0x6)
socket(0x11, 0x80003, 0x300)

3.860652579s ago: executing program 6 (id=1439):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x6, 0x0)
r0 = socket(0xa, 0x1, 0x84)
getsockopt$auto(r0, 0x0, 0x53, 0x0, 0x0)
r1 = socket(0x2b, 0x1, 0x1)
r2 = open(&(0x7f0000000000)='./cgroup\x00', 0x0, 0x64)
fchdir$auto(r2)
setsockopt$auto(r1, 0x29, 0x2, &(0x7f0000000880)='\x15!\xa8^J/\xddCx4!\x00\xd3\x8f\xff\x1b\x01\x1e\xe2\xa8\xd6\xd9\xc0\xa2\x0f\x88\xb1e\x8a\xd8?\xfe\xda\xc4\xef\xff(i\xc6@\xf2Vw\xbe\x1c$\xddm\x8a\x9d\x91_\vBj\x0eQ\xce\x16\'C\x8c\x01\x80\x92u\xd5\xb8\\\x82,\xe2=y\x9bR\xbcn\xa0c\x16~\x86\"t\x00\x00\x00\x00\xe4\xa5\xfe\xb5h\xae\xec%\xf9\x94>\xd6,\xf3\x98\'\xb0\t~~\xb4\x98\xbb3=A\x9c\x17\xaa\xce\fh-M\xdb-\x15VX\xfe\xca+\xb5\x95\xb3JL\x0fl\xe84\xbd\xa3nO\x9f\xfa\xb1\x06$\b$i3\x83\xd7\x06\xd6\x1e\xdbB\x9bb\x1cXC\x8c\x8b\xd9\xff\xf2Bf\x99!Z\x13\xff\xca\xf3e\x015\x9b\x86\xd6$\x1a\r3\x91\xb7\x942\xeb\xadVA\xfc\x1f\xbf1\xb7T\xc1\xbf\xc0\xc2\xfc\xe8w\xd33\xb2,\xb0\x9fA3\xc2\xa2\x1cM\x825\x94U\xbbNeb\xd2\xa9\x0f\xed\x8b\xea\xfa\x8a\x04.\xffMIw\x0f\xd6\xae^\xd2\xf1j\xcb\r\xa4\x1d0d\xca\x81\x9c\x80GL\x0e\xe6\x19\x8au\x1a7\xc5|\xf6\x1e\xe00\xc6\"\x83\x1c\xa2\x9e\a\x1c\xea\xa3\x9c\xe1BF\x05b\xf6\xdcf\x04\xd9B\xb9\x98\x9cq\xbd\xfb\xb5~\xf2\x8d\x9f`\xec\xd0\xafY\xcf\x84', 0x18000110)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa}, 0x55)

3.826378621s ago: executing program 3 (id=1440):
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
fanotify_init$auto(0x65, 0x2)
r0 = pipe$auto(0x0)
dup2$auto(0x5, 0x4)
write$auto(0x6, 0x0, 0x100000001)
splice$auto(0x4, 0x0, r0, 0x0, 0x80000001, 0x9)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
fstat$auto(0xffffffffffffffff, &(0x7f0000000000)={0x5, 0x9, 0x0, 0x103, 0xee01, 0x0, 0x0, 0xffffffffffffff91, 0xfffffffffffffffd, 0x8000000002, 0xec, 0x4, 0x200000000000002, 0x1, 0x7ff, 0xfffffffffffffff8})
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB='!\x00\''], 0x1ac}, 0x1, 0x0, 0x0, 0x44}, 0x40090)
r1 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r1, &(0x7f0000000080)={{0x0, 0x8002, &(0x7f00000002c0)={0x0, 0xc4}, 0x2, 0x0, 0x0, 0x1}, 0x5}, 0x3, 0x0)
r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/core/rps_default_mask\x00', 0x82, 0x0)
setreuid$auto(0xffffffffffffffff, 0x8)
write$auto(r2, 0x0, 0x2)

3.607170618s ago: executing program 6 (id=1442):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
madvise$auto(0x0, 0x200007, 0x8)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x0, 0x2)
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000001100)='/proc/bus/pci/00/03.0\x00', 0xa0581, 0x0)
write$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f0000001140)="8cbdca", 0x3)
writev$auto(r0, &(0x7f0000001d40)={0x0, 0x2}, 0x6)
epoll_create$auto(0x4)
r1 = socket(0x2, 0x1, 0x100)
getsockopt$auto(r1, 0x0, 0x42, 0x0, &(0x7f00000000c0)=0x1e)
getsockopt$auto_SO_ERROR(r1, 0x6, 0x4, 0x0, 0x0)
getsockopt$auto(r1, 0x4, 0xffffffff, 0x0, &(0x7f0000000000)=0x3)
madvise$auto(0x0, 0x2003f0, 0x15)
r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x40000, 0x0)
ioctl$auto_SNDCTL_SYNTH_MEMAVL(r2, 0xc004510e, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), r3)
sendmsg$auto_NL80211_CMD_FLUSH_PMKSA(r3, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x14, r4, 0x2, 0x70bd28, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x2004805}, 0x1)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket(0x10, 0x2, 0x0)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, 0x0, 0x10004010)
sendmmsg$auto(0x3, 0x0, 0x3, 0x0)
r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/pci/00/01.3\x00', 0x100, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r5, &(0x7f0000000040)=""/183, 0xb7)
read$auto(0x3, 0x0, 0x80)
readv$auto(0x3, &(0x7f00000004c0)={0x0, 0xab8}, 0x4a)

3.169416295s ago: executing program 7 (id=1443):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x3fd, 0x8000)
r0 = ioctl$auto_TUNSETOWNER(0xffffffffffffffff, 0x400454cc, &(0x7f0000000000)=0xfffffffa)
read$auto_ftrace_set_event_fops_trace_events(r0, &(0x7f0000000040)=""/1, 0x1) (async)
read$auto_ftrace_set_event_fops_trace_events(r0, &(0x7f0000000040)=""/1, 0x1)
prctl$auto(0x6, 0xe, 0x0, 0x68, 0xee43)
io_uring_setup$auto(0x3, 0x0) (async)
io_uring_setup$auto(0x3, 0x0)
close_range$auto(0x2, 0xa, 0x0)
epoll_ctl$auto(0x5, 0x1, 0x8000000000000000, 0x0)
r1 = socket(0x2, 0x2, 0x0)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) (async)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(r1, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54) (async)
connect$auto(r1, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54)
sendmmsg$auto(0x3, 0x0, 0x9a8, 0x1)

2.973317831s ago: executing program 5 (id=1444):
socket$nl_generic(0x10, 0x3, 0x10) (async)
r0 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000bc0), 0xffffffffffffffff) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'veth1_to_bond\x00'})
sendmsg$auto_BATADV_CMD_GET_TRANSTABLE_LOCAL(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={0x44, r0, 0x305, 0x70bd23, 0x25dfdbfb, {}, [@BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x2}, @BATADV_ATTR_TT_FLAGS={0x8, 0x15, 0x4}, @BATADV_ATTR_TT_LAST_TTVN={0x5, 0x12, 0x1}, @BATADV_ATTR_ACTIVE={0x4}, @BATADV_ATTR_BLA_ADDRESS={0xa, 0x1f, @broadcast}, @BATADV_ATTR_DAT_CACHE_VID={0x6, 0x25, 0x9}]}, 0x44}, 0x1, 0x0, 0x0, 0x18}, 0x4000040)

2.840760018s ago: executing program 7 (id=1445):
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
socket$nl_generic(0x11, 0x3, 0x10)
mmap$auto(0x0, 0x9, 0xc00000072, 0x8b72, 0x1000000002, 0x8000)
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/net/ip_vs_conn\x00', 0xf00, 0x0)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000200)='/dev/dri/card1\x00', 0x6082, 0x0)
r1 = socket(0xa, 0x2, 0x0)
r2 = openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000180), 0x80080, 0x0)
ioctl$auto_LOOP_CTL_ADD(r2, 0x4c80, 0x0)
setsockopt$auto(r1, 0x29, 0xb, 0x0, 0xca6)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu1/online\x00', 0x62, 0x0)
write$auto(r3, &(0x7f0000000440)='Y\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r5 = socket(0x2, 0x1, 0x0)
setsockopt$auto(r5, 0x6, 0x1f, 0x0, 0x3d)
r6 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r6, @ANYBLOB="01002bbd7000fcdbdf2504"], 0x1c}}, 0x4044820)
readv$auto(0x3, 0x0, 0x23a8c70effffffe)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_fault_around_bytes_fops_(0xffffffffffffff9c, &(0x7f0000000100), 0x2282, 0x0)
close_range$auto(0x2, 0x8, 0x0)
ioctl$auto_SIOCSIFHWADDR2(0xffffffffffffffff, 0x8924, &(0x7f00000005c0)="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")
madvise$auto(0x0, 0x20000a, 0x4)
pread64$auto(r0, 0x0, 0x594c, 0x7)
r7 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000001a80)='/dev/bus/usb/001/001\x00', 0x29202, 0x0)
mmap$auto(0x2000, 0x80009, 0xb, 0x8000000008011, r7, 0x0)
sendmsg$auto_BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000c80)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16, @ANYBLOB="7d472dbd700049b5", @ANYRES32], 0x1c}, 0x1, 0x0, 0x0, 0x8}, 0x4000044)
r8 = socket(0x10, 0x2, 0x4)
sendmsg$auto_NFSD_CMD_THREADS_SET(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400c72da808bf8d5feacf8510"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c001)

2.83800427s ago: executing program 6 (id=1446):
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x8f3b7a51b80ebc01, 0x0)
write$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f00000003c0)="22e030b1f1193fd495b7432f5493d1187f016e4838a0a6c56fbfa2f370311662e39dc20de5c1184cf39787ac657b4a454b6ba4d1ee032dc8199463097233f8594827ae3e7bdfda7f2163bde7698f2e6fc4b1f42ef93bb3e4cadcb573c49710804b003370e754f106630ed8fa0754f14f2fd7441c4edcdbeb21f8e71a8a07b4e7ac3ef2faa97dd39548c3c1dc62f80bb2878706ccc829e1c6d9bff3f4455ec091aa6c27350cb83cef590ff5025caa372b2be22f0af688db6092f792202315", 0xbe)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)

2.826556073s ago: executing program 3 (id=1447):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket(0xa, 0x1, 0x100)
modify_ldt$auto(0x1, 0x0, 0x10)
setsockopt$auto(0x400000000000003, 0x7, 0x1b, 0x0, 0x56b)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyd1\x00', 0x40, 0x0)
mmap$auto(0xc, 0x20009, 0x5, 0xeb1, 0x405, 0x8000)
openat$auto_force_devcoredump_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000c40)='/sys/kernel/debug/bluetooth/hci0/force_devcoredump\x00', 0x2, 0x0)
write$auto(0x3, 0x0, 0xffd8)
unshare$auto(0x40000080)
rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
r0 = socket(0x2, 0x3, 0x6)
bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_0={0x1, 0x7, 0x2817, 0x4, 0x200004, 0xffffffffffffffff, 0xa, '\x00', 0x0, <r1=>0xffffffffffffffff, 0x8, 0x7, 0x5, 0x8}, 0x10)
r2 = getpid()
process_vm_readv$auto(r2, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x4, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x5, 0x0)
memfd_create$auto(0x0, 0x2)
ioctl$sock_SIOCGIFINDEX(r0, 0x401c5820, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x20002, 0x0)
ioctl$auto_KVM_GET_SUPPORTED_HV_CPUID(r3, 0xc008aec1, &(0x7f0000000100)={0x8})
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
process_mrelease$auto(0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
pwritev2$auto(r1, &(0x7f0000000140)={&(0x7f0000000c80)="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", 0x2}, 0x7fffffffffffffff, 0x6, 0x4, 0x1)
openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, 0x0, 0x50b41, 0x0)

2.667852846s ago: executing program 5 (id=1448):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, <r0=>0x21eb, 0x7ff, 0x6, 0xa, 0x1000009, <r1=>0x5f, 0x0, 0x3}, 0x6f3)
sendmmsg$auto(r0, &(0x7f0000000000)={{0x0, 0x6, 0x0, 0x106, 0x0, 0x1, 0x3}, 0x57177fc5}, 0x9, 0x0) (async)
sendmmsg$auto(r0, &(0x7f0000000000)={{0x0, 0x6, 0x0, 0x106, 0x0, 0x1, 0x3}, 0x57177fc5}, 0x9, 0x0)
r2 = socket(0xa, 0x2, 0x88)
bpf$auto(0x0, &(0x7f0000000000)=@link_update={r2, @new_prog_fd=0x4, 0x4, @old_map_fd=r0}, 0xa3)
r3 = socketpair$auto(0x1e, 0x1, 0xffffffff, 0x0)
r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0)
r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000400), r3)
sendmsg$auto_NL80211_CMD_NEW_MPATH(r3, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x20, r5, 0x300, 0x70bd2b, 0x25dfdbfc, {}, [@NL80211_ATTR_WIPHY_TX_POWER_LEVEL={0x8, 0x62, 0x1}, @NL80211_ATTR_TX_NO_CCK_RATE={0x4}]}, 0x20}}, 0x40004) (async)
sendmsg$auto_NL80211_CMD_NEW_MPATH(r3, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x20, r5, 0x300, 0x70bd2b, 0x25dfdbfc, {}, [@NL80211_ATTR_WIPHY_TX_POWER_LEVEL={0x8, 0x62, 0x1}, @NL80211_ATTR_TX_NO_CCK_RATE={0x4}]}, 0x20}}, 0x40004)
ioctl$auto_TIOCSETD2(r4, 0x5423, 0x0) (async)
ioctl$auto_TIOCSETD2(r4, 0x5423, 0x0)
ioctl$auto_TCFLSH2(r4, 0x80047456, 0x0) (async)
ioctl$auto_TCFLSH2(r4, 0x80047456, 0x0)
ioctl$auto_TIOCSTI2(r4, 0x5412, &(0x7f0000000000)='[_')
ioctl$auto_TIOCSTI2(r4, 0x5412, 0x0)
ioctl$auto_TIOCSTI2(r4, 0x5412, 0x0)
mmap$auto(0x0, 0x20006, 0x4000000000df, 0xeb1, 0x400, 0x8000)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x1ff, 0x7, 0xd, 0x7181, 0x1ffde, 0x7, 0x3, 0x9, 0x9, 0x3, 0x0, 0x1, 0xb4, 0x9, 0x8, 0x10003, 0x80, 0x3, 0x0, 0xa, 0x22000, 0x200, 0x0, 0x84, 0x8001, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1]}, 0x4, 0xd)
socket(0x10, 0x2, 0x0) (async)
r6 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df45"], 0x1ac}}, 0x0) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df45"], 0x1ac}}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) (async)
sendmsg$auto_NL80211_CMD_GET_REG(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
recvmmsg$auto(r6, &(0x7f0000000100)={{0x0, 0x400004, &(0x7f0000000080)={&(0x7f0000000380)="ece7d58e21d0499bc94636208e9d6b", 0xcb}, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0) (async)
recvmmsg$auto(r6, &(0x7f0000000100)={{0x0, 0x400004, &(0x7f0000000080)={&(0x7f0000000380)="ece7d58e21d0499bc94636208e9d6b", 0xcb}, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0)
r7 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYRES16=r7], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYRES16=r1, @ANYBLOB="1c"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
socket$nl_generic(0x10, 0x3, 0x10)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
clock_adjtime$auto(0x1, &(0x7f0000000280)={0xfff, 0x0, 0x6fb, 0x40003, 0x7, 0x4, 0x8227, 0x0, 0x2, 0x0, 0x8, {0x7, 0x800}, 0x101, 0xf8, 0xa, 0xd94, 0x0, 0x1, 0x7, 0x6, 0xa9, 0x3, 0xfffffffe}) (async)
clock_adjtime$auto(0x1, &(0x7f0000000280)={0xfff, 0x0, 0x6fb, 0x40003, 0x7, 0x4, 0x8227, 0x0, 0x2, 0x0, 0x8, {0x7, 0x800}, 0x101, 0xf8, 0xa, 0xd94, 0x0, 0x1, 0x7, 0x6, 0xa9, 0x3, 0xfffffffe})
setsockopt$auto_SO_MARK(r4, 0xfffffffa, 0x24, &(0x7f0000000500)='nl80211\x00', 0x9) (async)
setsockopt$auto_SO_MARK(r4, 0xfffffffa, 0x24, &(0x7f0000000500)='nl80211\x00', 0x9)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/afs/sysname\x00', 0x80002, 0x0)

2.577230703s ago: executing program 6 (id=1449):
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0)
write$auto_tty_fops_tty_io(r0, &(0x7f0000000580)="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", 0x567)

2.128016706s ago: executing program 5 (id=1450):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
r0 = socket(0x2, 0x5, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0x2, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1a000}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f0000000000)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x1}, 0x2, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socketpair$auto(0xfffffffd, 0x5, 0x9, 0x0)
unshare$auto(0x40000080)
setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x2, 0x1, 0x0)
socketpair$auto(0xfffffffd, 0x5, 0xffffffff, 0x0)
unshare$auto(0x40000080)
setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd)
open(&(0x7f0000000100)='./file0\x00', 0x123102, 0x100)

2.12715197s ago: executing program 6 (id=1458):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
socket(0x2, 0x801, 0x106)
syz_clone(0x120000, 0x0, 0x0, 0x0, 0x0, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x2, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/platform/vkms/graphics/fb0/state\x00', 0xc2481, 0x0)
write$auto(r0, 0x0, 0x19)
acct$auto(&(0x7f0000000000)='/dev/fb0\x00')
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/007/001\x00', 0x2901, 0x0)
madvise$auto(0x0, 0x200007, 0x8)
socket(0x2, 0x1, 0x100)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x40000, 0x0)

1.932275946s ago: executing program 3 (id=1451):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
getsockopt$auto_SO_BUF_LOCK(r0, 0x8, 0x48, &(0x7f0000000080)='nl80211\x00', &(0x7f00000000c0)=0x9)
sendmsg$auto_NL80211_CMD_VENDOR(r0, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000140)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="050727bd7000fb002a0140000000dde6a48c7c9dfae4b24db72318a3e060d5154c210000000000000000"], 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x80)
r2 = pipe$auto(0x0)
socket(0xa, 0x2, 0x3a)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x5, 0x802, 0x3)
socket(0x10, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
fchmod$auto(r2, 0x6)
r4 = socket(0x10, 0x2, 0xc)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="44de858d", @ANYRESDEC, @ANYRES8=r3, @ANYRES8], 0x18}, 0x1, 0x1f00000000000000}, 0x200080c0)
r5 = open(&(0x7f0000000000)='./cgroup\x00', 0x0, 0x64)
fchdir$auto(r5)
mkdir$auto(&(0x7f0000000480)='./cgroup\x00', 0x6)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$auto_WG_CMD_SET_DEVICE(r6, &(0x7f00000028c0)={0x0, 0x0, &(0x7f0000002880)={&(0x7f0000000400)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="210026bd70f0e4e75312e01b430014000200bb9be375dc7c3c6b98cea477673000000000000000000000000000060006004e200000"], 0x30}, 0x1, 0x0, 0x0, 0x80}, 0x80)
sendmsg$auto_WG_CMD_GET_DEVICE(r5, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, r7, 0x800, 0x70bd27, 0x25dfdbfe, {}, [@WGDEVICE_A_FWMARK={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x4014)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='./cgroup/cgroup.type\x00', 0x103042, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mknod$auto(&(0x7f0000000080)='}[,&*}\x00', 0xe6c, 0x17)
llistxattr$auto(&(0x7f0000000040)='}[,&*}\x00', 0x0, 0x7)
rmdir$auto(&(0x7f0000000300)='./cgroup\x00')
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
select$auto(0x4, 0x0, &(0x7f0000000340)={[0x209c, 0x40000000e9e, 0x7, 0x9, 0x33, 0x100000001, 0xa, 0xf, 0x1, 0x6, 0x3, 0x8000000d59, 0x8, 0x100000ff, 0x3, 0x80080001]}, 0x0, 0x0)

1.861808021s ago: executing program 7 (id=1452):
r0 = landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x3, 0x3}, 0x18, 0x0)
bpf$auto(0x0, &(0x7f00000003c0)=@task_fd_query={0x5, r0, 0x802, 0x3, 0x100000000000000, 0x0, r0, 0x800000000000000}, 0x6d4)

1.509346888s ago: executing program 7 (id=1453):
mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000)
r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0)
ioctl$auto_PPPIOCSMRU(r0, 0xc004743e, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x181881, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x28641, 0x0)
close_range$auto(0x2, 0x8, 0x0)
ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000040)={0x6, 0x0})
ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000080)={0x9, &(0x7f0000000000)={0x50, 0xf4, 0xb0}})
writev$auto(r0, &(0x7f0000000200)={0x0, 0x7f}, 0x5)

1.222393317s ago: executing program 3 (id=1454):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
ioctl$auto_TIOCSETD2(0xffffffffffffffff, 0x5423, &(0x7f0000000080))
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
io_uring_setup$auto(0x6, 0x0)
socket(0x2, 0x2, 0x1)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r0 = socket(0x11, 0x80003, 0x300)
setsockopt$auto(r0, 0x107, 0x1, 0x0, 0x8004)
socket(0xa, 0x801, 0x84)
r1 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
execveat$auto(r1, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
socket(0x10, 0x2, 0x14)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r4=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000400)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01002dbd7000fddbdf250800030008000300", @ANYRES32=r4, @ANYRESOCT], 0x24}, 0x1, 0x0, 0x0, 0x5c5fd097f751b33e}, 0x80)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/module/apparmor/parameters/path_max\x00', 0x80, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f00000000c0)=""/17, 0x11)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r6 = open(0x0, 0x22240, 0x155)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000000100), r6)
sendmsg$auto_NET_SHAPER_CMD_GET(r7, &(0x7f0000000200)={&(0x7f0000000040), 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x2c, r8, 0x0, 0x70bd2d, 0x25dfdbff, {}, [@NET_SHAPER_A_IFINDEX={0x8, 0x8, r4}, @NET_SHAPER_A_IFINDEX={0x8, 0x8, r4}, @NET_SHAPER_A_IFINDEX={0x8, 0x8, r4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x300408c0}, 0x880)
r9 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
execveat$auto(r9, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
setsockopt$auto(0x3, 0x1, 0x3d, 0x0, 0x8)

781.222395ms ago: executing program 7 (id=1455):
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/core/rps_default_mask\x00', 0x82, 0x0)
setreuid$auto(0xffffffffffffffff, 0x8)
mmap$auto(0x0, 0x2020009, 0x3, 0xe91, 0xfffffffffffffffa, 0x8000)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
r2 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x400008, 0x3, 0x9b72, 0x2, 0x8000)
write$auto(0x4, 0x0, 0x100082)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0xa00, 0x0, 0xfffffffffffffffd)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS0\x00', 0x1, 0x0)
ioctl$auto(r3, 0x5408, r3)
r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x48041, 0x0)
write$auto_proc_reg_file_ops_compat_inode(r4, 0x0, 0x0)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x405, 0x8000)
getrandom$auto(0x0, 0xe06, 0x3)
close_range$auto(0x0, r1, 0x2)
socket(0x2, 0x1, 0x0)
socket(0x3, 0x0, 0x101)
ioctl$auto(0x1, 0x8983, 0x8)
openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x82802, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x8081, 0x0)
close_range$auto(0x2, 0x8, 0x0)
setsockopt$auto(0xffffffffffffffff, 0x29, 0x37, 0x0, 0x2000112)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
open(&(0x7f0000000140)='./file0\x00', 0x40, 0xa2)
fanotify_init$auto(0xffff9e0c, 0x1)
r5 = openat$auto_vga_arb_device_fops_vgaarb(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$auto_vga_arb_device_fops_vgaarb(r5, &(0x7f00000005c0)="d06f0b0b4950fa2645c5a15eea0b104db2ce9ae78d314ca52c728e27440d1e2aedf6559febee2b79f2beba9981e0659269ce6def59c8e06ce6ec059aa7fd8abd", 0x40)
ioctl$auto(r1, 0x5609, r2)
write$auto(r0, 0x0, 0x2)

499.107341ms ago: executing program 7 (id=1456):
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/security/tomoyo/exception_policy\x00', 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0x14, 0xfffffffffffffffa, 0x6)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, 0x0, 0xa2741, 0x0)
mmap$auto(0x3, 0x200000000005, 0xdf, 0xeb5, 0x401, 0x8001) (async)
mmap$auto(0x3, 0x200000000005, 0xdf, 0xeb5, 0x401, 0x8001)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000080)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x4000000000007, 0x2505}, 0x7fe}, 0x4, 0x1000)
socket(0x29, 0x2, 0x0) (async)
r0 = socket(0x29, 0x2, 0x0)
r1 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000)
recvmmsg$auto(r1, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0)
ioctl$auto(r0, 0x8b0f, 0x24) (async)
ioctl$auto(r0, 0x8b0f, 0x24)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x40000008000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/nbd2/queue/io_timeout\x00', 0x129882, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto(0x3, 0x40246f4c, 0x38) (async)
ioctl$auto(0x3, 0x40246f4c, 0x38)
unshare$auto(0x40000080)
ioctl$auto_RTC_WKALM_SET(0xffffffffffffffff, 0x4028700f, &(0x7f0000000000)={0x1, 0x3, {0x8005, 0x3, 0x2, 0x7, 0x2, 0x73, 0xfffffffd, 0x10003, 0x3}})
sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc000}, 0x2404c800) (async)
sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc000}, 0x2404c800)
kexec_load$auto(0x5, 0x2, &(0x7f0000000040)={@kbuf=0x0, 0xfff, 0x4800c000, 0x800c000}, 0x4) (async)
kexec_load$auto(0x5, 0x2, &(0x7f0000000040)={@kbuf=0x0, 0xfff, 0x4800c000, 0x800c000}, 0x4)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
timerfd_create$auto(0x9, 0x0) (async)
timerfd_create$auto(0x9, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84)
openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000080)='/proc/kpageflags\x00', 0x2, 0x0)
readv$auto(0x3, &(0x7f00000000c0)={0x0, 0x101d0}, 0x400)

276.465246ms ago: executing program 3 (id=1457):
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x8f3b7a51b80ebc01, 0x0)
write$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f00000003c0)="22e030b1f1193fd495b7432f5493d1187f016e4838a0a6c56fbfa2f370311662e39dc20de5c1184cf39787ac657b4a454b6ba4d1ee032dc8199463097233f8594827ae3e7bdfda7f2163bde7698f2e6fc4b1f42ef93bb3e4cadcb573c49710804b003370e754f106630ed8fa0754f14f2fd7441c4edcdbeb21f8e71a8a07b4e7ac3ef2faa97dd39548c3c1dc62f80bb2878706ccc829e1c6d9bff3f4455ec091aa6c27350cb83cef590ff5025caa372b2be22f0af688db6092f792202315", 0xbe)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)

229.634272ms ago: executing program 6 (id=1459):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
socket(0x2, 0x801, 0x106)
syz_clone(0x120000, 0x0, 0x0, 0x0, 0x0, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x2, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/platform/vkms/graphics/fb0/state\x00', 0xc2481, 0x0)
write$auto(r0, 0x0, 0x19)
acct$auto(&(0x7f0000000000)='/dev/fb0\x00')
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/007/001\x00', 0x2901, 0x0)
madvise$auto(0x0, 0x200007, 0x8)
socket(0x2, 0x1, 0x100)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x40000, 0x0)

0s ago: executing program 3 (id=1460):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x3, 0x1, 0x1)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0xffff, 0x20000000)
setsockopt$auto(0x3, 0x1, 0x2f, 0x0, 0x9)
write$auto(0x3, 0x0, 0x100082)

kernel console output (not intermixed with test programs):

262.319790][ T8641] CPU: 1 UID: 0 PID: 8641 Comm: syz.1.579 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[  262.319854][ T8641] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  262.319872][ T8641] Call Trace:
[  262.319882][ T8641]  <TASK>
[  262.319893][ T8641]  dump_stack_lvl+0x16c/0x1f0
[  262.319933][ T8641]  should_fail_ex+0x512/0x640
[  262.319992][ T8641]  get_futex_key+0x49e/0x1000
[  262.320021][ T8641]  ? __lock_acquire+0xaa4/0x1ba0
[  262.320061][ T8641]  ? __pfx_get_futex_key+0x10/0x10
[  262.320104][ T8641]  futex_wait_setup+0x78/0x290
[  262.320155][ T8641]  __futex_wait+0x266/0x3c0
[  262.320197][ T8641]  ? __pfx___futex_wait+0x10/0x10
[  262.320239][ T8641]  ? __pfx_futex_wake_mark+0x10/0x10
[  262.320278][ T8641]  ? ktime_add_safe+0x60/0x70
[  262.320316][ T8641]  futex_wait+0xe8/0x380
[  262.320348][ T8641]  ? __pfx_futex_wait+0x10/0x10
[  262.320378][ T8641]  ? __lock_acquire+0xaa4/0x1ba0
[  262.320412][ T8641]  ? __pfx_hrtimer_wakeup+0x10/0x10
[  262.320459][ T8641]  do_futex+0x229/0x350
[  262.320486][ T8641]  ? __pfx_do_futex+0x10/0x10
[  262.320509][ T8641]  ? rcu_is_watching+0x12/0xc0
[  262.320531][ T8641]  ? ktime_get+0x200/0x310
[  262.320556][ T8641]  ? lockdep_hardirqs_on+0x7c/0x110
[  262.320585][ T8641]  ? read_tsc+0x9/0x20
[  262.320621][ T8641]  __x64_sys_futex+0x1e0/0x4c0
[  262.320652][ T8641]  ? __pfx___x64_sys_futex+0x10/0x10
[  262.320680][ T8641]  ? rcu_is_watching+0x12/0xc0
[  262.320710][ T8641]  do_syscall_64+0xcd/0x230
[  262.320744][ T8641]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  262.320769][ T8641] RIP: 0033:0x7f41d338e969
[  262.320788][ T8641] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  262.320817][ T8641] RSP: 002b:00007ffe5ab6e598 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  262.320841][ T8641] RAX: ffffffffffffffda RBX: 000000000004006d RCX: 00007f41d338e969
[  262.320857][ T8641] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f41d35b5fac
[  262.320872][ T8641] RBP: 0000000000000032 R08: 00007f41d4171000 R09: 000000085ab6e88f
[  262.320888][ T8641] R10: 00007ffe5ab6e690 R11: 0000000000000246 R12: 00007f41d35b5fac
[  262.320903][ T8641] R13: 00007ffe5ab6e690 R14: 000000000004009f R15: 00007ffe5ab6e6b0
[  262.320934][ T8641]  </TASK>
[  262.324527][ T8565] bridge0: port 1(bridge_slave_0) entered disabled state
[  262.413706][ T8646] FAULT_INJECTION: forcing a failure.
[  262.413706][ T8646] name failslab, interval 1, probability 0, space 0, times 0
[  262.474146][ T8565] bridge_slave_0: entered allmulticast mode
[  262.586081][ T8646] CPU: 1 UID: 0 PID: 8646 Comm: syz.3.580 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[  262.586122][ T8646] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  262.586139][ T8646] Call Trace:
[  262.586149][ T8646]  <TASK>
[  262.586159][ T8646]  dump_stack_lvl+0x16c/0x1f0
[  262.586200][ T8646]  should_fail_ex+0x512/0x640
[  262.586242][ T8646]  ? fs_reclaim_acquire+0xae/0x150
[  262.586290][ T8646]  ? tomoyo_encode2+0x100/0x3e0
[  262.586329][ T8646]  should_failslab+0xc2/0x120
[  262.586367][ T8646]  __kmalloc_noprof+0xd2/0x510
[  262.586398][ T8646]  ? d_absolute_path+0x136/0x1a0
[  262.586441][ T8646]  tomoyo_encode2+0x100/0x3e0
[  262.586489][ T8646]  tomoyo_encode+0x29/0x50
[  262.586528][ T8646]  tomoyo_realpath_from_path+0x18f/0x6e0
[  262.586575][ T8646]  tomoyo_path_number_perm+0x245/0x580
[  262.586603][ T8646]  ? tomoyo_path_number_perm+0x237/0x580
[  262.586635][ T8646]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  262.586667][ T8646]  ? find_held_lock+0x2b/0x80
[  262.586721][ T8646]  ? hook_file_ioctl_common+0x145/0x410
[  262.586763][ T8646]  security_file_ioctl+0x9b/0x240
[  262.586796][ T8646]  __x64_sys_ioctl+0xb7/0x200
[  262.586833][ T8646]  do_syscall_64+0xcd/0x230
[  262.586867][ T8646]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  262.586892][ T8646] RIP: 0033:0x7f77aa18e969
[  262.586912][ T8646] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  262.586943][ T8646] RSP: 002b:00007f77ab02d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  262.586966][ T8646] RAX: ffffffffffffffda RBX: 00007f77aa3b5fa0 RCX: 00007f77aa18e969
[  262.586983][ T8646] RDX: 0000000000000001 RSI: 00000000c0205648 RDI: 0000000000000002
[  262.586998][ T8646] RBP: 00007f77ab02d090 R08: 0000000000000000 R09: 0000000000000000
[  262.587012][ T8646] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  262.587027][ T8646] R13: 0000000000000000 R14: 00007f77aa3b5fa0 R15: 00007ffd0456f508
[  262.587059][ T8646]  </TASK>
[  262.587084][ T8646] ERROR: Out of memory at tomoyo_realpath_from_path.
[  262.588526][ T5144] Bluetooth: hci4: command tx timeout
[  262.782747][ T8565] bridge_slave_0: entered promiscuous mode
[  262.875818][ T8565] bridge0: port 2(bridge_slave_1) entered blocking state
[  262.888631][ T8565] bridge0: port 2(bridge_slave_1) entered disabled state
[  262.902573][ T8565] bridge_slave_1: entered allmulticast mode
[  262.921771][ T8565] bridge_slave_1: entered promiscuous mode
[  263.175429][ T8565] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  263.221736][ T8565] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  263.254243][   T12] hsr_slave_0: left promiscuous mode
[  263.271296][   T12] hsr_slave_1: left promiscuous mode
[  263.277717][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  263.293899][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  263.308840][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  263.317037][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  263.372337][   T12] veth1_macvtap: left promiscuous mode
[  263.378291][   T12] veth0_macvtap: left promiscuous mode
[  263.399036][   T12] veth1_vlan: left promiscuous mode
[  263.404612][   T12] veth0_vlan: left promiscuous mode
[  263.487589][ T8665] FAULT_INJECTION: forcing a failure.
[  263.487589][ T8665] name failslab, interval 1, probability 0, space 0, times 0
[  263.511926][ T8665] CPU: 0 UID: 0 PID: 8665 Comm: syz.3.583 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[  263.511980][ T8665] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  263.511994][ T8665] Call Trace:
[  263.512002][ T8665]  <TASK>
[  263.512012][ T8665]  dump_stack_lvl+0x16c/0x1f0
[  263.512045][ T8665]  should_fail_ex+0x512/0x640
[  263.512091][ T8665]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  263.512147][ T8665]  ? __pfx_blk_mq_debugfs_open+0x10/0x10
[  263.512181][ T8665]  should_failslab+0xc2/0x120
[  263.512210][ T8665]  __kmalloc_cache_noprof+0x6a/0x3e0
[  263.512247][ T8665]  ? single_open+0x4d/0x1f0
[  263.512278][ T8665]  ? __pfx_blk_mq_debugfs_open+0x10/0x10
[  263.512306][ T8665]  ? __pfx_blk_mq_debugfs_show+0x10/0x10
[  263.512327][ T8665]  single_open+0x4d/0x1f0
[  263.512356][ T8665]  blk_mq_debugfs_open+0x14a/0x250
[  263.512383][ T8665]  full_proxy_open_regular+0x1b6/0x360
[  263.512415][ T8665]  do_dentry_open+0x741/0x1c10
[  263.512438][ T8665]  ? __pfx_full_proxy_open_regular+0x10/0x10
[  263.512472][ T8665]  vfs_open+0x82/0x3f0
[  263.512505][ T8665]  path_openat+0x1e5e/0x2d40
[  263.512541][ T8665]  ? __pfx_path_openat+0x10/0x10
[  263.512570][ T8665]  do_filp_open+0x20b/0x470
[  263.512591][ T8665]  ? __pfx_do_filp_open+0x10/0x10
[  263.512634][ T8665]  ? alloc_fd+0x471/0x7d0
[  263.512677][ T8665]  do_sys_openat2+0x11b/0x1d0
[  263.512707][ T8665]  ? __pfx_do_sys_openat2+0x10/0x10
[  263.512739][ T8665]  ? __pfx___might_resched+0x10/0x10
[  263.512772][ T8665]  __x64_sys_openat+0x174/0x210
[  263.512803][ T8665]  ? __pfx___x64_sys_openat+0x10/0x10
[  263.512835][ T8665]  ? rcu_is_watching+0x12/0xc0
[  263.512871][ T8665]  do_syscall_64+0xcd/0x230
[  263.512903][ T8665]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  263.512927][ T8665] RIP: 0033:0x7f77aa18e969
[  263.512952][ T8665] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  263.512974][ T8665] RSP: 002b:00007f77ab02d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  263.512996][ T8665] RAX: ffffffffffffffda RBX: 00007f77aa3b5fa0 RCX: 00007f77aa18e969
[  263.513010][ T8665] RDX: 0000000000143642 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  263.513025][ T8665] RBP: 00007f77aa210ab1 R08: 0000000000000000 R09: 0000000000000000
[  263.513038][ T8665] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  263.513051][ T8665] R13: 0000000000000000 R14: 00007f77aa3b5fa0 R15: 00007ffd0456f508
[  263.513080][ T8665]  </TASK>
[  264.067543][ T5144] Bluetooth: hci2: ISO packet too small
[  264.346431][   T12] team0 (unregistering): Port device team_slave_1 removed
[  264.402524][   T12] team0 (unregistering): Port device team_slave_0 removed
[  264.668678][ T5144] Bluetooth: hci4: command tx timeout
[  265.107081][ T8565] team0: Port device team_slave_0 added
[  265.159995][ T8565] team0: Port device team_slave_1 added
[  265.335202][ T8565] batman_adv: batadv0: Adding interface: batadv_slave_0
[  265.348020][ T8565] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  265.382622][ T8565] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  265.433169][ T8565] batman_adv: batadv0: Adding interface: batadv_slave_1
[  265.443204][ T8565] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  265.472614][ T8565] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  265.644042][ T8565] hsr_slave_0: entered promiscuous mode
[  265.658011][ T8565] hsr_slave_1: entered promiscuous mode
[  265.675713][ T8565] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  265.695975][ T8565] Cannot create hsr debugfs directory
[  266.748976][ T5144] Bluetooth: hci4: command tx timeout
[  266.757497][ T8565] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  266.825350][ T8565] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  266.892091][ T8565] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  266.958328][ T8565] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  267.534735][ T8723] tipc: Started in network mode
[  267.549079][ T8723] tipc: Node identity ee00, cluster identity 4711
[  267.556784][ T8723] tipc: Node number set to 60928
[  267.638189][ T8565] 8021q: adding VLAN 0 to HW filter on device bond0
[  267.784067][ T8565] 8021q: adding VLAN 0 to HW filter on device team0
[  267.806957][ T1147] bridge0: port 1(bridge_slave_0) entered blocking state
[  267.814736][ T1147] bridge0: port 1(bridge_slave_0) entered forwarding state
[  267.945996][ T7730] bridge0: port 2(bridge_slave_1) entered blocking state
[  267.953303][ T7730] bridge0: port 2(bridge_slave_1) entered forwarding state
[  268.867326][ T8758] device-mapper: ioctl: device name cannot contain '/'
[  269.609096][ T8565] 8021q: adding VLAN 0 to HW filter on device batadv0
[  270.766517][ T8565] veth0_vlan: entered promiscuous mode
[  270.852060][ T8565] veth1_vlan: entered promiscuous mode
[  271.046753][ T8565] veth0_macvtap: entered promiscuous mode
[  271.115850][ T8565] veth1_macvtap: entered promiscuous mode
[  271.182049][ T8565] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  271.222854][ T8565] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  271.246889][ T8565] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  271.257995][ T8565] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  271.271423][ T8565] batman_adv: batadv0: Interface activated: batadv_slave_0
[  271.285569][ T8565] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  271.296112][ T8565] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  271.327553][ T8565] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  271.345315][ T8565] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  271.367655][ T8565] batman_adv: batadv0: Interface activated: batadv_slave_1
[  271.381285][ T8565] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  271.400776][ T8565] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  271.410114][ T8565] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  271.437503][ T8565] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  271.776925][ T7725] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  271.807226][ T7725] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  272.062640][ T7726] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  272.080484][ T7726] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  272.696387][ T8855] netlink: 20 bytes leftover after parsing attributes in process `syz.4.561'.
[  274.845410][ T8885] FAULT_INJECTION: forcing a failure.
[  274.845410][ T8885] name fail_futex, interval 1, probability 0, space 0, times 0
[  274.893474][ T8885] CPU: 1 UID: 0 PID: 8885 Comm: syz.1.613 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[  274.893520][ T8885] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  274.893541][ T8885] Call Trace:
[  274.893551][ T8885]  <TASK>
[  274.893563][ T8885]  dump_stack_lvl+0x16c/0x1f0
[  274.893608][ T8885]  should_fail_ex+0x512/0x640
[  274.893659][ T8885]  get_futex_key+0x49e/0x1000
[  274.893695][ T8885]  ? __pfx_get_futex_key+0x10/0x10
[  274.893740][ T8885]  futex_wake+0xe7/0x4e0
[  274.893783][ T8885]  ? __pfx_futex_wake+0x10/0x10
[  274.893830][ T8885]  ? kmem_cache_free+0x2d4/0x4d0
[  274.893861][ T8885]  ? fd_install+0x225/0x750
[  274.893903][ T8885]  ? putname+0x154/0x1a0
[  274.893946][ T8885]  do_futex+0x1e3/0x350
[  274.893980][ T8885]  ? __pfx_do_futex+0x10/0x10
[  274.894025][ T8885]  __x64_sys_futex+0x1e0/0x4c0
[  274.894072][ T8885]  ? __x64_sys_openat+0x174/0x210
[  274.894118][ T8885]  ? __pfx___x64_sys_futex+0x10/0x10
[  274.894156][ T8885]  ? rcu_is_watching+0x12/0xc0
[  274.894195][ T8885]  do_syscall_64+0xcd/0x230
[  274.894238][ T8885]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  274.894270][ T8885] RIP: 0033:0x7f41d338e969
[  274.894296][ T8885] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  274.894328][ T8885] RSP: 002b:00007f41d412e0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  274.894359][ T8885] RAX: ffffffffffffffda RBX: 00007f41d35b6168 RCX: 00007f41d338e969
[  274.894382][ T8885] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f41d35b616c
[  274.894403][ T8885] RBP: 00007f41d35b6160 R08: 00007f41d4171000 R09: 0000000000000000
[  274.894424][ T8885] R10: 000000000000000b R11: 0000000000000246 R12: 00007f41d35b616c
[  274.894445][ T8885] R13: 0000000000000000 R14: 00007ffe5ab6e350 R15: 00007ffe5ab6e438
[  274.894486][ T8885]  </TASK>
[  276.442581][ T8906] CIFS mount error: No usable UNC path provided in device string!
[  276.442581][ T8906] 
[  276.453022][ T8906] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  278.102896][ T8941] netlink: 28 bytes leftover after parsing attributes in process `syz.3.623'.
[  278.141912][ T8941] bridge0: port 2(bridge_slave_1) entered disabled state
[  278.219816][ T8946] Invalid ELF header magic: != ELF
[  278.439503][ T8941] bridge_slave_1 (unregistering): left allmulticast mode
[  278.458521][ T8941] bridge_slave_1 (unregistering): left promiscuous mode
[  278.477669][ T8941] bridge0: port 2(bridge_slave_1) entered disabled state
[  278.675099][ T8958] CIFS: VFS: Unsupported security flags: 0x10
[  281.540459][ T9004] CIFS mount error: No usable UNC path provided in device string!
[  281.540459][ T9004] 
[  281.587646][ T9004] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  281.866483][ T9010] ptrace attach of "./syz-executor exec"[5830] was attempted by "./syz-executor exec"[9010]
[  282.241230][ T9016] CIFS mount error: No usable UNC path provided in device string!
[  282.241230][ T9016] 
[  282.258936][ T9016] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  282.938628][ T9029] FAULT_INJECTION: forcing a failure.
[  282.938628][ T9029] name failslab, interval 1, probability 0, space 0, times 0
[  282.958737][ T9029] CPU: 1 UID: 0 PID: 9029 Comm: syz.1.632 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[  282.958781][ T9029] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  282.958798][ T9029] Call Trace:
[  282.958808][ T9029]  <TASK>
[  282.958819][ T9029]  dump_stack_lvl+0x16c/0x1f0
[  282.958862][ T9029]  should_fail_ex+0x512/0x640
[  282.958902][ T9029]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  282.958953][ T9029]  should_failslab+0xc2/0x120
[  282.958990][ T9029]  __kmalloc_cache_noprof+0x6a/0x3e0
[  282.959040][ T9029]  ? snd_seq_oss_readq_new+0x4a/0x2c0
[  282.959091][ T9029]  snd_seq_oss_readq_new+0x4a/0x2c0
[  282.959142][ T9029]  snd_seq_oss_open+0x54b/0xa20
[  282.959185][ T9029]  odev_open+0x6f/0x90
[  282.959216][ T9029]  ? __pfx_odev_open+0x10/0x10
[  282.959246][ T9029]  soundcore_open+0x409/0x580
[  282.959282][ T9029]  ? __pfx_soundcore_open+0x10/0x10
[  282.959314][ T9029]  chrdev_open+0x231/0x6a0
[  282.959345][ T9029]  ? __pfx_apparmor_file_open+0x10/0x10
[  282.959384][ T9029]  ? __pfx_chrdev_open+0x10/0x10
[  282.959419][ T9029]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  282.959470][ T9029]  do_dentry_open+0x741/0x1c10
[  282.959511][ T9029]  ? __pfx_chrdev_open+0x10/0x10
[  282.959549][ T9029]  vfs_open+0x82/0x3f0
[  282.959589][ T9029]  path_openat+0x1e5e/0x2d40
[  282.959629][ T9029]  ? __pfx_path_openat+0x10/0x10
[  282.959666][ T9029]  do_filp_open+0x20b/0x470
[  282.959697][ T9029]  ? __pfx_do_filp_open+0x10/0x10
[  282.959756][ T9029]  ? alloc_fd+0x471/0x7d0
[  282.959814][ T9029]  do_sys_openat2+0x11b/0x1d0
[  282.959852][ T9029]  ? __pfx_do_sys_openat2+0x10/0x10
[  282.959890][ T9029]  ? __pfx___might_resched+0x10/0x10
[  282.959926][ T9029]  __x64_sys_openat+0x174/0x210
[  282.959964][ T9029]  ? __pfx___x64_sys_openat+0x10/0x10
[  282.960006][ T9029]  ? rcu_is_watching+0x12/0xc0
[  282.960048][ T9029]  do_syscall_64+0xcd/0x230
[  282.960096][ T9029]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  282.960128][ T9029] RIP: 0033:0x7f41d338e969
[  282.960154][ T9029] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  282.960186][ T9029] RSP: 002b:00007f41d4170038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  282.960217][ T9029] RAX: ffffffffffffffda RBX: 00007f41d35b5fa0 RCX: 00007f41d338e969
[  282.960239][ T9029] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  282.960260][ T9029] RBP: 00007f41d3410ab1 R08: 0000000000000000 R09: 0000000000000000
[  282.960279][ T9029] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  282.960298][ T9029] R13: 0000000000000000 R14: 00007f41d35b5fa0 R15: 00007ffe5ab6e438
[  282.960341][ T9029]  </TASK>
[  283.365931][ T9035] FAULT_INJECTION: forcing a failure.
[  283.365931][ T9035] name failslab, interval 1, probability 0, space 0, times 0
[  283.366026][ T9035] CPU: 1 UID: 0 PID: 9035 Comm: syz.3.638 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[  283.366071][ T9035] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  283.366090][ T9035] Call Trace:
[  283.366101][ T9035]  <TASK>
[  283.366113][ T9035]  dump_stack_lvl+0x16c/0x1f0
[  283.366159][ T9035]  should_fail_ex+0x512/0x640
[  283.366205][ T9035]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  283.366262][ T9035]  ? __pfx_blk_mq_debugfs_open+0x10/0x10
[  283.366297][ T9035]  should_failslab+0xc2/0x120
[  283.366337][ T9035]  __kmalloc_cache_noprof+0x6a/0x3e0
[  283.366404][ T9035]  ? single_open+0x4d/0x1f0
[  283.366447][ T9035]  ? __pfx_blk_mq_debugfs_open+0x10/0x10
[  283.366482][ T9035]  ? __pfx_blk_mq_debugfs_show+0x10/0x10
[  283.366514][ T9035]  single_open+0x4d/0x1f0
[  283.366556][ T9035]  blk_mq_debugfs_open+0x14a/0x250
[  283.366595][ T9035]  full_proxy_open_regular+0x1b6/0x360
[  283.366639][ T9035]  do_dentry_open+0x741/0x1c10
[  283.366674][ T9035]  ? __pfx_full_proxy_open_regular+0x10/0x10
[  283.366724][ T9035]  vfs_open+0x82/0x3f0
[  283.366771][ T9035]  path_openat+0x1e5e/0x2d40
[  283.366811][ T9035]  ? __pfx___schedule+0x10/0x10
[  283.366850][ T9035]  ? __pfx_path_openat+0x10/0x10
[  283.366897][ T9035]  do_filp_open+0x20b/0x470
[  283.366927][ T9035]  ? __pfx_do_filp_open+0x10/0x10
[  283.366989][ T9035]  ? alloc_fd+0x471/0x7d0
[  283.367050][ T9035]  do_sys_openat2+0x11b/0x1d0
[  283.367092][ T9035]  ? __pfx_do_sys_openat2+0x10/0x10
[  283.367150][ T9035]  __x64_sys_openat+0x174/0x210
[  283.367193][ T9035]  ? __pfx___x64_sys_openat+0x10/0x10
[  283.367238][ T9035]  ? rcu_is_watching+0x12/0xc0
[  283.367278][ T9035]  do_syscall_64+0xcd/0x230
[  283.367321][ T9035]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  283.367352][ T9035] RIP: 0033:0x7f77aa18e969
[  283.367386][ T9035] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  283.367419][ T9035] RSP: 002b:00007f77aafca038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  283.367450][ T9035] RAX: ffffffffffffffda RBX: 00007f77aa3b6240 RCX: 00007f77aa18e969
[  283.367472][ T9035] RDX: 0000000000143642 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  283.367492][ T9035] RBP: 00007f77aa210ab1 R08: 0000000000000000 R09: 0000000000000000
[  283.367513][ T9035] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  283.367532][ T9035] R13: 0000000000000000 R14: 00007f77aa3b6240 R15: 00007ffd0456f508
[  283.367576][ T9035]  </TASK>
[  283.869127][ T9044] mmap: syz.1.634 (9044): VmData 39563264 exceed data ulimit 3. Update limits or use boot option ignore_rlimit_data.
[  283.924615][ T9044] netlink: 'syz.1.634': attribute type 22 has an invalid length.
[  283.924645][ T9044] netlink: 330 bytes leftover after parsing attributes in process `syz.1.634'.
[  284.608368][ T5832] Bluetooth: hci2: unexpected event for opcode 0x7c89
[  286.137551][ T9091] FAULT_INJECTION: forcing a failure.
[  286.137551][ T9091] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  286.173074][ T9091] CPU: 1 UID: 0 PID: 9091 Comm: syz.4.641 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[  286.173122][ T9091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  286.173141][ T9091] Call Trace:
[  286.173151][ T9091]  <TASK>
[  286.173164][ T9091]  dump_stack_lvl+0x16c/0x1f0
[  286.173208][ T9091]  should_fail_ex+0x512/0x640
[  286.173267][ T9091]  should_fail_alloc_page+0xe7/0x130
[  286.173311][ T9091]  prepare_alloc_pages+0x3c2/0x610
[  286.173360][ T9091]  ? rcu_is_watching+0x12/0xc0
[  286.173393][ T9091]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[  286.173435][ T9091]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  286.173478][ T9091]  ? __lock_acquire+0xaa4/0x1ba0
[  286.173526][ T9091]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  286.173567][ T9091]  ? lock_acquire+0x179/0x350
[  286.173614][ T9091]  ? find_next_iomem_res+0x1c6/0x4f0
[  286.173658][ T9091]  ? do_raw_read_unlock+0x44/0xe0
[  286.173704][ T9091]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  286.173748][ T9091]  ? policy_nodemask+0xea/0x4e0
[  286.173790][ T9091]  alloc_pages_mpol+0x1fb/0x550
[  286.173830][ T9091]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  286.173871][ T9091]  ? __pti_set_user_pgtbl+0xf1/0x190
[  286.173920][ T9091]  ? __pfx___pti_set_user_pgtbl+0x10/0x10
[  286.173975][ T9091]  alloc_pages_noprof+0x131/0x390
[  286.174015][ T9091]  get_zeroed_page_noprof+0x14/0x50
[  286.174058][ T9091]  machine_kexec_prepare+0xc15/0xf90
[  286.174114][ T9091]  ? __pfx_machine_kexec_prepare+0x10/0x10
[  286.174165][ T9091]  ? __pfx_alloc_pgt_page+0x10/0x10
[  286.174233][ T9091]  do_kexec_load+0x664/0x8d0
[  286.174290][ T9091]  ? __pfx_do_kexec_load+0x10/0x10
[  286.174340][ T9091]  ? _copy_from_user+0x59/0xd0
[  286.174393][ T9091]  __x64_sys_kexec_load+0x1bf/0x230
[  286.174444][ T9091]  do_syscall_64+0xcd/0x230
[  286.174488][ T9091]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  286.174521][ T9091] RIP: 0033:0x7ff7fd58e969
[  286.174547][ T9091] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  286.174580][ T9091] RSP: 002b:00007ff7fe344038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[  286.174610][ T9091] RAX: ffffffffffffffda RBX: 00007ff7fd7b5fa0 RCX: 00007ff7fd58e969
[  286.174632][ T9091] RDX: 0000200000000080 RSI: 0000000000000002 RDI: 00000000000000ff
[  286.174652][ T9091] RBP: 00007ff7fd610ab1 R08: 0000000000000000 R09: 0000000000000000
[  286.174673][ T9091] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000000
[  286.174693][ T9091] R13: 0000000000000000 R14: 00007ff7fd7b5fa0 R15: 00007fffaa590368
[  286.174734][ T9091]  </TASK>
[  287.530626][ T9109] netlink: 28 bytes leftover after parsing attributes in process `syz.1.646'.
[  287.564012][ T9109] bridge0: port 2(bridge_slave_1) entered disabled state
[  287.761307][ T9110] Invalid ELF header magic: != ELF
[  287.842727][ T9109] bridge_slave_1 (unregistering): left allmulticast mode
[  287.908993][ T9109] bridge_slave_1 (unregistering): left promiscuous mode
[  287.916152][ T9109] bridge0: port 2(bridge_slave_1) entered disabled state
[  289.201369][ T9135] FAULT_INJECTION: forcing a failure.
[  289.201369][ T9135] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  289.258656][ T9135] CPU: 1 UID: 0 PID: 9135 Comm: syz.1.652 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[  289.258709][ T9135] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  289.258727][ T9135] Call Trace:
[  289.258738][ T9135]  <TASK>
[  289.258750][ T9135]  dump_stack_lvl+0x16c/0x1f0
[  289.258796][ T9135]  should_fail_ex+0x512/0x640
[  289.258849][ T9135]  should_fail_alloc_page+0xe7/0x130
[  289.258892][ T9135]  prepare_alloc_pages+0x3c2/0x610
[  289.258956][ T9135]  ? rcu_is_watching+0x12/0xc0
[  289.258992][ T9135]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[  289.259033][ T9135]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  289.259077][ T9135]  ? __lock_acquire+0xaa4/0x1ba0
[  289.259127][ T9135]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  289.259170][ T9135]  ? lock_acquire+0x179/0x350
[  289.259216][ T9135]  ? find_next_iomem_res+0x1c6/0x4f0
[  289.259261][ T9135]  ? do_raw_read_unlock+0x44/0xe0
[  289.259311][ T9135]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  289.259358][ T9135]  ? policy_nodemask+0xea/0x4e0
[  289.259400][ T9135]  alloc_pages_mpol+0x1fb/0x550
[  289.259440][ T9135]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  289.259481][ T9135]  ? __pti_set_user_pgtbl+0xf1/0x190
[  289.259531][ T9135]  ? __pfx___pti_set_user_pgtbl+0x10/0x10
[  289.259587][ T9135]  alloc_pages_noprof+0x131/0x390
[  289.259628][ T9135]  get_zeroed_page_noprof+0x14/0x50
[  289.259672][ T9135]  machine_kexec_prepare+0xc15/0xf90
[  289.259728][ T9135]  ? __pfx_machine_kexec_prepare+0x10/0x10
[  289.259781][ T9135]  ? __pfx_alloc_pgt_page+0x10/0x10
[  289.259846][ T9135]  do_kexec_load+0x664/0x8d0
[  289.259897][ T9135]  ? __pfx_do_kexec_load+0x10/0x10
[  289.259956][ T9135]  ? _copy_from_user+0x59/0xd0
[  289.260008][ T9135]  __x64_sys_kexec_load+0x1bf/0x230
[  289.260061][ T9135]  do_syscall_64+0xcd/0x230
[  289.260105][ T9135]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  289.260138][ T9135] RIP: 0033:0x7f41d338e969
[  289.260165][ T9135] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  289.260199][ T9135] RSP: 002b:00007f41d4170038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[  289.260232][ T9135] RAX: ffffffffffffffda RBX: 00007f41d35b5fa0 RCX: 00007f41d338e969
[  289.260254][ T9135] RDX: 0000200000000080 RSI: 0000000000000002 RDI: 00000000000000ff
[  289.260274][ T9135] RBP: 00007f41d3410ab1 R08: 0000000000000000 R09: 0000000000000000
[  289.260293][ T9135] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000000
[  289.260312][ T9135] R13: 0000000000000000 R14: 00007f41d35b5fa0 R15: 00007ffe5ab6e438
[  289.260354][ T9135]  </TASK>
[  294.803744][ T9248] vivid-007: =================  START STATUS  =================
[  294.811547][ T9248] vivid-007: Generate PTS: true
[  294.816569][ T9248] vivid-007: Generate SCR: true
[  294.826714][ T9248] tpg source WxH: 640x360 (Y'CbCr)
[  294.831939][ T9248] tpg field: 1
[  294.835319][ T9248] tpg crop: (0,0)/640x360
[  294.842880][ T9248] tpg compose: (0,0)/640x360
[  294.853020][ T9248] tpg colorspace: 8
[  294.858716][ T9248] tpg transfer function: 0/0
[  294.863399][ T9248] tpg Y'CbCr encoding: 0/0
[  294.868294][ T9248] tpg quantization: 0/0
[  294.892694][ T9248] tpg RGB range: 0/2
[  294.911638][ T9248] vivid-007: ==================  END STATUS  ==================
[  297.465782][ T9298] FAULT_INJECTION: forcing a failure.
[  297.465782][ T9298] name fail_futex, interval 1, probability 0, space 0, times 0
[  297.479487][ T9298] CPU: 1 UID: 0 PID: 9298 Comm: syz.4.673 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[  297.479530][ T9298] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  297.479549][ T9298] Call Trace:
[  297.479560][ T9298]  <TASK>
[  297.479571][ T9298]  dump_stack_lvl+0x16c/0x1f0
[  297.479627][ T9298]  should_fail_ex+0x512/0x640
[  297.479680][ T9298]  should_fail_futex+0x4c/0x60
[  297.479714][ T9298]  futex_lock_pi_atomic+0x101/0xdb0
[  297.479764][ T9298]  futex_lock_pi+0x2ee/0x7b0
[  297.479813][ T9298]  ? __pfx_futex_lock_pi+0x10/0x10
[  297.479870][ T9298]  ? plist_check_head+0xa3/0x150
[  297.479920][ T9298]  ? find_held_lock+0x2b/0x80
[  297.479965][ T9298]  ? futex_wake+0x18d/0x4e0
[  297.480009][ T9298]  ? __pfx_futex_wake_mark+0x10/0x10
[  297.480058][ T9298]  ? do_writev+0x218/0x330
[  297.480116][ T9298]  do_futex+0x11a/0x350
[  297.480151][ T9298]  ? __pfx_do_futex+0x10/0x10
[  297.480182][ T9298]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  297.480237][ T9298]  __x64_sys_futex+0x1e0/0x4c0
[  297.480278][ T9298]  ? __pfx___x64_sys_futex+0x10/0x10
[  297.480316][ T9298]  ? rcu_is_watching+0x12/0xc0
[  297.480357][ T9298]  do_syscall_64+0xcd/0x230
[  297.480401][ T9298]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  297.480434][ T9298] RIP: 0033:0x7ff7fd58e969
[  297.480460][ T9298] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  297.480490][ T9298] RSP: 002b:00007ff7fe344038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  297.480522][ T9298] RAX: ffffffffffffffda RBX: 00007ff7fd7b5fa0 RCX: 00007ff7fd58e969
[  297.480544][ T9298] RDX: 0000000000000009 RSI: 0000000000000006 RDI: 0000000000000000
[  297.480563][ T9298] RBP: 00007ff7fd610ab1 R08: 0000000000000000 R09: 0000000000000006
[  297.480582][ T9298] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  297.480609][ T9298] R13: 0000000000000000 R14: 00007ff7fd7b5fa0 R15: 00007fffaa590368
[  297.480651][ T9298]  </TASK>
[  297.699823][ T9302] netlink: 28 bytes leftover after parsing attributes in process `syz.4.673'.
[  299.761706][ T9348] netlink: 8 bytes leftover after parsing attributes in process `syz.0.678'.
[  299.809364][ T9348] netlink: 32 bytes leftover after parsing attributes in process `syz.0.678'.
[  299.885477][ T9348] device-mapper: ioctl: Unable to rename non-existent device,  to „
[  300.856548][ T9385] openvswitch: netlink: Key type 261 is out of range max 32
[  307.118678][ T9490] netlink: 8 bytes leftover after parsing attributes in process `syz.1.699'.
[  307.356919][ T9503] openvswitch: netlink: Key 5 has unexpected len 4 expected 2
[  307.401743][ T9500] netlink: 4 bytes leftover after parsing attributes in process `syz.0.702'.
[  307.735809][ T9511] bond0: option all_slaves_active: invalid value ()
[  307.843453][ T9515] netlink: 4 bytes leftover after parsing attributes in process `syz.0.705'.
[  311.337119][ T9561] netlink: 342 bytes leftover after parsing attributes in process `syz.0.716'.
[  311.351945][ T9561] netlink: 342 bytes leftover after parsing attributes in process `syz.0.716'.
[  312.943247][ T9588] netlink: 8 bytes leftover after parsing attributes in process `syz.4.722'.
[  313.042013][ T9588] netlink: 32 bytes leftover after parsing attributes in process `syz.4.722'.
[  313.067850][ T9588] device-mapper: ioctl: Unable to rename non-existent device,  to „
[  318.368087][ T9664] mkiss: ax0: crc mode is auto.
[  318.658135][ T9665] can: request_module (can-proto-3) failed.
[  319.758215][ T9686] netlink: 326 bytes leftover after parsing attributes in process `syz.1.743'.
[  320.974326][ T9707] FAULT_INJECTION: forcing a failure.
[  320.974326][ T9707] name failslab, interval 1, probability 0, space 0, times 0
[  321.004401][ T9712] random: crng reseeded on system resumption
[  321.028072][ T9707] CPU: 0 UID: 0 PID: 9707 Comm: syz.0.748 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[  321.028119][ T9707] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  321.028138][ T9707] Call Trace:
[  321.028148][ T9707]  <TASK>
[  321.028161][ T9707]  dump_stack_lvl+0x16c/0x1f0
[  321.028207][ T9707]  should_fail_ex+0x512/0x640
[  321.028250][ T9707]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  321.028307][ T9707]  should_failslab+0xc2/0x120
[  321.028345][ T9707]  __kmalloc_cache_noprof+0x6a/0x3e0
[  321.028403][ T9707]  ? snd_seq_port_connect+0x61/0x550
[  321.028445][ T9707]  snd_seq_port_connect+0x61/0x550
[  321.028480][ T9707]  ? _raw_read_unlock+0x28/0x50
[  321.028514][ T9707]  ? check_subscription_permission.isra.0+0xf5/0x240
[  321.028559][ T9707]  snd_seq_ioctl_subscribe_port+0x211/0x450
[  321.028604][ T9707]  ? __pfx_snd_seq_ioctl_subscribe_port+0x10/0x10
[  321.028663][ T9707]  snd_seq_kernel_client_ctl+0x107/0x1c0
[  321.028708][ T9707]  snd_seq_oss_midi_open+0x442/0x660
[  321.028759][ T9707]  ? __pfx_snd_seq_oss_midi_open+0x10/0x10
[  321.028820][ T9707]  ? lockdep_hardirqs_on+0x7c/0x110
[  321.028857][ T9707]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  321.028899][ T9707]  snd_seq_oss_synth_setup_midi+0x131/0x580
[  321.028967][ T9707]  snd_seq_oss_open+0x893/0xa20
[  321.029016][ T9707]  odev_open+0x6f/0x90
[  321.029047][ T9707]  ? __pfx_odev_open+0x10/0x10
[  321.029080][ T9707]  soundcore_open+0x409/0x580
[  321.029119][ T9707]  ? __pfx_soundcore_open+0x10/0x10
[  321.029152][ T9707]  chrdev_open+0x231/0x6a0
[  321.029184][ T9707]  ? __pfx_apparmor_file_open+0x10/0x10
[  321.029224][ T9707]  ? __pfx_chrdev_open+0x10/0x10
[  321.029261][ T9707]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  321.029317][ T9707]  do_dentry_open+0x741/0x1c10
[  321.029351][ T9707]  ? __pfx_chrdev_open+0x10/0x10
[  321.029394][ T9707]  vfs_open+0x82/0x3f0
[  321.029440][ T9707]  path_openat+0x1e5e/0x2d40
[  321.029487][ T9707]  ? __pfx_path_openat+0x10/0x10
[  321.029530][ T9707]  do_filp_open+0x20b/0x470
[  321.029562][ T9707]  ? __pfx_do_filp_open+0x10/0x10
[  321.029624][ T9707]  ? alloc_fd+0x471/0x7d0
[  321.029686][ T9707]  do_sys_openat2+0x11b/0x1d0
[  321.029729][ T9707]  ? __pfx_do_sys_openat2+0x10/0x10
[  321.029774][ T9707]  ? __pfx___might_resched+0x10/0x10
[  321.029820][ T9707]  __x64_sys_openat+0x174/0x210
[  321.029864][ T9707]  ? __pfx___x64_sys_openat+0x10/0x10
[  321.029910][ T9707]  ? rcu_is_watching+0x12/0xc0
[  321.029958][ T9707]  do_syscall_64+0xcd/0x230
[  321.030004][ T9707]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  321.030037][ T9707] RIP: 0033:0x7fdcd6d8e969
[  321.030062][ T9707] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  321.030093][ T9707] RSP: 002b:00007fdcd7c7a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  321.030124][ T9707] RAX: ffffffffffffffda RBX: 00007fdcd6fb5fa0 RCX: 00007fdcd6d8e969
[  321.030146][ T9707] RDX: 0000000000000080 RSI: 0000200000000500 RDI: ffffffffffffff9c
[  321.030168][ T9707] RBP: 00007fdcd6e10ab1 R08: 0000000000000000 R09: 0000000000000000
[  321.030188][ T9707] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  321.030208][ T9707] R13: 0000000000000000 R14: 00007fdcd6fb5fa0 R15: 00007fffe5cfb0e8
[  321.030251][ T9707]  </TASK>
[  321.787470][ T9722] openvswitch: netlink: Key type 261 is out of range max 32
[  322.153895][ T9726] bond0: option all_slaves_active: invalid value ()
[  322.426642][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  322.433362][ T1301] ieee802154 phy1 wpan1: encryption failed: -22

syzkaller
syzkaller login: [  325.713531][ T9779] netlink: 342 bytes leftover after parsing attributes in process `syz.1.761'.
[  325.972990][ T9785] syz.4.762 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  329.154458][ T9845] sctp: Changing rto_alpha or rto_beta may lead to suboptimal rtt/srtt estimations!
[  329.178825][ T9849] netlink: 28 bytes leftover after parsing attributes in process `syz.4.775'.
[  329.273221][ T9849] bond0: (slave bond_slave_1): Releasing backup interface
[  329.764436][ T9865] netlink: 342 bytes leftover after parsing attributes in process `syz.3.779'.
[  330.399201][ T9868] [U] 
[  330.402101][ T9868] [U] 
[  330.404873][ T9868] [U] 
[  330.407631][ T9868] [U] 
[  330.442441][ T9868] [U] 
[  330.445260][ T9868] [U] 
[  330.448021][ T9868] [U] 
[  330.450777][ T9868] [U] 
[  330.468811][ T9868] [U] 
[  330.471707][ T9868] [U] 
[  330.474460][ T9868] [U] 
[  330.477214][ T9868] [U] 
[  330.494062][ T9868] [U] 
[  330.496967][ T9868] [U] 
[  330.499731][ T9868] [U] 
[  330.502491][ T9868] [U] 
[  330.530482][ T9870] [U] 
[  331.418908][ T9873] random: crng reseeded on system resumption
[  331.493382][ T9893] netlink: zone id is out of range
[  331.523665][ T9893] netlink: zone id is out of range
[  331.533788][ T9893] netlink: zone id is out of range
[  331.551937][ T9893] netlink: zone id is out of range
[  334.850823][ T9955] sd 0:0:1:0: PR command failed: 1026
[  334.868543][ T9955] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  334.884987][ T9955] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  337.888517][T10034] sp0: Synchronizing with TNC
[  338.615043][T10047] usb usb8: usbfs: interface 0 claimed by hub while 'syz.3.809' sets config #5
[  339.882005][T10080] openvswitch: netlink: Key type 280 is out of range max 32
[  339.912627][   T30] audit: type=1804 audit(6040711168.061:6): pid=10080 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.818" name=2F6E6577726F6F742F3139332F08 dev="tmpfs" ino=1048 res=1 errno=0
[  341.158716][T10115] program syz.4.828 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  341.668912][T10126] netlink: 'syz.1.829': attribute type 10 has an invalid length.
[  341.676687][T10126] netlink: 330 bytes leftover after parsing attributes in process `syz.1.829'.
[  343.602398][T10151] mkiss: ax0: crc mode is auto.
[  344.443046][T10167] netlink: 4 bytes leftover after parsing attributes in process `syz.1.838'.
[  344.469349][T10173] ubi0: attaching mtd0
[  344.684288][T10173] ubi0: scanning is finished
[  344.753213][T10173] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record
[  345.165207][T10173] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  346.223707][T10208] mkiss: ax0: crc mode is auto.
[  346.953172][T10223] sp0: Synchronizing with TNC
[  347.784503][T10244] ubi0: attaching mtd0
[  347.807730][T10244] ubi0: scanning is finished
[  347.813302][T10244] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record
[  347.927609][T10244] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  348.120621][T10251] netlink: 334 bytes leftover after parsing attributes in process `syz.4.862'.
[  349.350922][T10265] sp0: Synchronizing with TNC
[  351.935779][ T7730] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  352.331008][ T7730] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  352.521854][ T5144] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  352.531439][ T5144] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  352.540979][ T5144] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  352.550765][ T5144] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  352.558754][ T5144] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  352.594420][ T7730] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  352.654707][T10304] sp0: Synchronizing with TNC
[  352.806465][ T7730] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  353.175609][T10313] netlink: 'syz.0.878': attribute type 11 has an invalid length.
[  353.438737][ T7730] bridge_slave_0: left allmulticast mode
[  353.453233][ T7730] bridge_slave_0: left promiscuous mode
[  353.481787][ T7730] bridge0: port 1(bridge_slave_0) entered disabled state
[  354.658806][ T5144] Bluetooth: hci0: command tx timeout
[  354.985160][ T7730] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  355.009431][ T7730] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  355.033024][ T7730] bond0 (unregistering): Released all slaves
[  355.116382][T10307] chnl_net:caif_netlink_parms(): no params data found
[  355.354080][ T7730] tipc: Left network mode
[  355.810007][T10307] bridge0: port 1(bridge_slave_0) entered blocking state
[  355.838619][T10307] bridge0: port 1(bridge_slave_0) entered disabled state
[  355.869662][T10350] program syz.0.884 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  355.879772][T10307] bridge_slave_0: entered allmulticast mode
[  355.887767][T10307] bridge_slave_0: entered promiscuous mode
[  355.962564][T10307] bridge0: port 2(bridge_slave_1) entered blocking state
[  355.988998][T10307] bridge0: port 2(bridge_slave_1) entered disabled state
[  356.000930][T10307] bridge_slave_1: entered allmulticast mode
[  356.022125][T10307] bridge_slave_1: entered promiscuous mode
[  356.403517][T10307] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  356.498127][T10343] mkiss: ax0: crc mode is auto.
[  356.504575][T10307] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  356.738634][ T5144] Bluetooth: hci0: command tx timeout
[  356.882598][T10307] team0: Port device team_slave_0 added
[  357.061314][T10307] team0: Port device team_slave_1 added
[  357.339166][T10307] batman_adv: batadv0: Adding interface: batadv_slave_0
[  357.346178][T10307] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  357.398479][T10307] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  357.438127][T10307] batman_adv: batadv0: Adding interface: batadv_slave_1
[  357.453524][T10307] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  357.523899][T10307] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  358.318081][T10307] hsr_slave_0: entered promiscuous mode
[  358.367044][T10307] hsr_slave_1: entered promiscuous mode
[  358.381032][T10307] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  358.398547][T10307] Cannot create hsr debugfs directory
[  358.418743][T10383] netlink: 28 bytes leftover after parsing attributes in process `syz.3.888'.
[  358.797093][ T7730] hsr_slave_0: left promiscuous mode
[  358.808635][ T7730] hsr_slave_1: left promiscuous mode
[  358.818956][ T5144] Bluetooth: hci0: command tx timeout
[  358.826306][ T7730] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  358.845595][ T7730] batman_adv: batadv0: Removing interface: batadv_slave_0
[  358.876096][ T7730] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  358.885237][ T7730] batman_adv: batadv0: Removing interface: batadv_slave_1
[  358.983287][ T7730] veth1_macvtap: left promiscuous mode
[  358.998534][ T7730] veth0_macvtap: left promiscuous mode
[  359.893817][ T7730] team0 (unregistering): Port device team_slave_1 removed
[  360.034375][ T7730] team0 (unregistering): Port device team_slave_0 removed
[  360.899542][ T5144] Bluetooth: hci0: command tx timeout
[  361.327509][T10403] netlink: 4 bytes leftover after parsing attributes in process `syz.4.891'.
[  361.494953][T10401] netlink: 25 bytes leftover after parsing attributes in process `syz.4.891'.
[  361.873508][T10307] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  361.957197][T10307] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  362.015895][T10307] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  362.044986][T10307] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  362.534826][T10307] 8021q: adding VLAN 0 to HW filter on device bond0
[  362.845069][T10307] 8021q: adding VLAN 0 to HW filter on device team0
[  362.980835][ T7731] bridge0: port 1(bridge_slave_0) entered blocking state
[  362.988058][ T7731] bridge0: port 1(bridge_slave_0) entered forwarding state
[  363.647371][ T7725] bridge0: port 2(bridge_slave_1) entered blocking state
[  363.654684][ T7725] bridge0: port 2(bridge_slave_1) entered forwarding state
[  364.512915][T10307] 8021q: adding VLAN 0 to HW filter on device batadv0
[  364.581257][T10451] sp0: Synchronizing with TNC
[  365.557901][T10307] veth0_vlan: entered promiscuous mode
[  365.721366][T10307] veth1_vlan: entered promiscuous mode
[  365.847897][T10307] veth0_macvtap: entered promiscuous mode
[  366.154784][T10307] veth1_macvtap: entered promiscuous mode
[  366.213129][T10307] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  366.227256][T10307] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  366.251175][T10307] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  366.272622][T10307] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  366.329083][T10307] batman_adv: batadv0: Interface activated: batadv_slave_0
[  366.412310][T10307] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  366.445668][T10307] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  366.478538][T10307] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  366.503317][T10307] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  366.526142][T10307] batman_adv: batadv0: Interface activated: batadv_slave_1
[  366.630853][T10307] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  366.669386][T10504] pty pty83: ldisc open failed (-12), clearing slot 83
[  366.676412][T10307] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  366.716012][T10307] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  366.752508][T10307] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  367.548580][ T7731] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  367.578194][ T7731] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  367.767525][ T7730] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  367.818450][ T7730] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  368.296832][T10529] ptrace attach of "./syz-executor exec"[5838] was attempted by "./syz-executor exec"[10529]
[  368.589253][T10532] sp0: Synchronizing with TNC
[  370.555039][ T5144] Bluetooth: hci1: unexpected event 0x35 length: 13 > 6
[  370.623704][ T5144] Bluetooth: hci1: unexpected event 0x35 length: 13 > 6
[  372.132033][T10611] FAULT_INJECTION: forcing a failure.
[  372.132033][T10611] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  372.154532][T10611] CPU: 0 UID: 0 PID: 10611 Comm: syz.3.918 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[  372.154575][T10611] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  372.154593][T10611] Call Trace:
[  372.154602][T10611]  <TASK>
[  372.154613][T10611]  dump_stack_lvl+0x16c/0x1f0
[  372.154656][T10611]  should_fail_ex+0x512/0x640
[  372.154705][T10611]  _copy_from_user+0x2e/0xd0
[  372.154754][T10611]  memdup_user+0x6b/0xe0
[  372.154793][T10611]  dev_config+0x174/0x1580
[  372.154829][T10611]  ? __pfx_dev_config+0x10/0x10
[  372.154869][T10611]  vfs_write+0x25c/0x1180
[  372.154895][T10611]  ? __pfx_dev_config+0x10/0x10
[  372.154930][T10611]  ? __pfx___mutex_lock+0x10/0x10
[  372.154969][T10611]  ? __pfx_vfs_write+0x10/0x10
[  372.155009][T10611]  ? __fget_files+0x20e/0x3c0
[  372.155069][T10611]  ksys_write+0x12a/0x240
[  372.155096][T10611]  ? __pfx_ksys_write+0x10/0x10
[  372.155122][T10611]  ? rcu_is_watching+0x12/0xc0
[  372.155170][T10611]  do_syscall_64+0xcd/0x230
[  372.155212][T10611]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  372.155243][T10611] RIP: 0033:0x7f77aa18e969
[  372.155268][T10611] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  372.155300][T10611] RSP: 002b:00007f77ab02d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  372.155328][T10611] RAX: ffffffffffffffda RBX: 00007f77aa3b5fa0 RCX: 00007f77aa18e969
[  372.155348][T10611] RDX: 0000000000000081 RSI: 0000000000000000 RDI: 0000000000000003
[  372.155367][T10611] RBP: 00007f77ab02d090 R08: 0000000000000000 R09: 0000000000000000
[  372.155385][T10611] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  372.155479][T10611] R13: 0000000000000000 R14: 00007f77aa3b5fa0 R15: 00007ffd0456f508
[  372.155524][T10611]  </TASK>
[  373.426579][ T5144] Bluetooth: hci1: unexpected event 0x3d length: 726 > 14
[  373.974003][T10654] FAULT_INJECTION: forcing a failure.
[  373.974003][T10654] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  374.058872][T10654] CPU: 0 UID: 0 PID: 10654 Comm: syz.0.930 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[  374.058907][T10654] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  374.058928][T10654] Call Trace:
[  374.058936][T10654]  <TASK>
[  374.058944][T10654]  dump_stack_lvl+0x16c/0x1f0
[  374.058977][T10654]  should_fail_ex+0x512/0x640
[  374.059013][T10654]  _copy_to_user+0x32/0xd0
[  374.059049][T10654]  simple_read_from_buffer+0xcb/0x170
[  374.059084][T10654]  proc_fail_nth_read+0x197/0x270
[  374.059117][T10654]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  374.059150][T10654]  ? rw_verify_area+0xcf/0x680
[  374.059182][T10654]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  374.059214][T10654]  vfs_read+0x1de/0xc70
[  374.059238][T10654]  ? __pfx___mutex_lock+0x10/0x10
[  374.059266][T10654]  ? __pfx_vfs_read+0x10/0x10
[  374.059293][T10654]  ? __fget_files+0x20e/0x3c0
[  374.059336][T10654]  ksys_read+0x12a/0x240
[  374.059356][T10654]  ? __pfx_ksys_read+0x10/0x10
[  374.059374][T10654]  ? rcu_is_watching+0x12/0xc0
[  374.059402][T10654]  do_syscall_64+0xcd/0x230
[  374.059433][T10654]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  374.059456][T10654] RIP: 0033:0x7fdcd6d8d37c
[  374.059473][T10654] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  374.059496][T10654] RSP: 002b:00007fdcd7c7a030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  374.059517][T10654] RAX: ffffffffffffffda RBX: 00007fdcd6fb5fa0 RCX: 00007fdcd6d8d37c
[  374.059532][T10654] RDX: 000000000000000f RSI: 00007fdcd7c7a0a0 RDI: 0000000000000004
[  374.059546][T10654] RBP: 00007fdcd7c7a090 R08: 0000000000000000 R09: 0000000000000000
[  374.059560][T10654] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  374.059573][T10654] R13: 0000000000000000 R14: 00007fdcd6fb5fa0 R15: 00007fffe5cfb0e8
[  374.059602][T10654]  </TASK>
[  374.525181][T10659] FAULT_INJECTION: forcing a failure.
[  374.525181][T10659] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  374.589743][T10659] CPU: 1 UID: 0 PID: 10659 Comm: syz.3.931 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[  374.589778][T10659] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  374.589791][T10659] Call Trace:
[  374.589799][T10659]  <TASK>
[  374.589807][T10659]  dump_stack_lvl+0x16c/0x1f0
[  374.589839][T10659]  should_fail_ex+0x512/0x640
[  374.589874][T10659]  _copy_to_user+0x32/0xd0
[  374.589911][T10659]  simple_read_from_buffer+0xcb/0x170
[  374.589948][T10659]  proc_fail_nth_read+0x197/0x270
[  374.589981][T10659]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  374.590015][T10659]  ? rw_verify_area+0xcf/0x680
[  374.590047][T10659]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  374.590079][T10659]  vfs_read+0x1de/0xc70
[  374.590103][T10659]  ? __pfx___mutex_lock+0x10/0x10
[  374.590131][T10659]  ? __pfx_vfs_read+0x10/0x10
[  374.590159][T10659]  ? __fget_files+0x20e/0x3c0
[  374.590202][T10659]  ksys_read+0x12a/0x240
[  374.590222][T10659]  ? __pfx_ksys_read+0x10/0x10
[  374.590241][T10659]  ? rcu_is_watching+0x12/0xc0
[  374.590270][T10659]  do_syscall_64+0xcd/0x230
[  374.590299][T10659]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  374.590322][T10659] RIP: 0033:0x7f77aa18d37c
[  374.590339][T10659] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  374.590360][T10659] RSP: 002b:00007f77ab02d030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  374.590380][T10659] RAX: ffffffffffffffda RBX: 00007f77aa3b5fa0 RCX: 00007f77aa18d37c
[  374.590395][T10659] RDX: 000000000000000f RSI: 00007f77ab02d0a0 RDI: 0000000000000004
[  374.590408][T10659] RBP: 00007f77ab02d090 R08: 0000000000000000 R09: 0000000000000000
[  374.590421][T10659] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  374.590433][T10659] R13: 0000000000000000 R14: 00007f77aa3b5fa0 R15: 00007ffd0456f508
[  374.590461][T10659]  </TASK>
[  374.784599][    C1] vkms_vblank_simulate: vblank timer overrun
[  375.109126][T10670] usb usb38: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  375.140673][T10670] vhci_hcd: default hub control req: 0000 v0000 i0000 l0
[  376.984334][T10722] netlink: 330 bytes leftover after parsing attributes in process `syz.5.943'.
[  377.093308][T10722] : renamed from bond0 (while UP)
[  379.375218][ T5832] Bluetooth: hci0: unexpected subevent 0x01 length: 122 > 18
[  380.818731][ T5835] Bluetooth: hci4: command 0x0406 tx timeout
[  382.200856][T10836] input: jJǸ-�¶š9ã%vø“û¨l�ÐQ 	J86Ö‘ as /devices/virtual/input/input8
[  383.866658][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  383.874743][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  384.444874][T10887] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  386.310240][T10924] Invalid ELF header magic: != ELF
[  386.348191][T10929] ima: policy update failed
[  386.387787][   T30] audit: type=1802 audit(4294967340.127:7): pid=10929 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.4.981" res=0 errno=0
[  386.961703][T10943] netlink: 9784 bytes leftover after parsing attributes in process `syz.0.984'.
[  388.571928][T10971] FAULT_INJECTION: forcing a failure.
[  388.571928][T10971] name failslab, interval 1, probability 0, space 0, times 0
[  388.585044][T10971] CPU: 0 UID: 0 PID: 10971 Comm: syz.4.985 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[  388.585090][T10971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  388.585109][T10971] Call Trace:
[  388.585120][T10971]  <TASK>
[  388.585132][T10971]  dump_stack_lvl+0x16c/0x1f0
[  388.585178][T10971]  should_fail_ex+0x512/0x640
[  388.585221][T10971]  ? fs_reclaim_acquire+0xae/0x150
[  388.585275][T10971]  ? tomoyo_encode2+0x100/0x3e0
[  388.585316][T10971]  should_failslab+0xc2/0x120
[  388.585356][T10971]  __kmalloc_noprof+0xd2/0x510
[  388.585391][T10971]  ? tomoyo_encode2+0xca/0x3e0
[  388.585441][T10971]  tomoyo_encode2+0x100/0x3e0
[  388.585491][T10971]  tomoyo_encode+0x29/0x50
[  388.585532][T10971]  tomoyo_realpath_from_path+0x18f/0x6e0
[  388.585588][T10971]  tomoyo_check_open_permission+0x2ab/0x3c0
[  388.585627][T10971]  ? finish_task_switch.isra.0+0x221/0xc10
[  388.585660][T10971]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  388.585745][T10971]  ? find_held_lock+0x2b/0x80
[  388.585788][T10971]  tomoyo_file_open+0x6b/0x90
[  388.585841][T10971]  security_file_open+0x84/0x1e0
[  388.585884][T10971]  do_dentry_open+0x596/0x1c10
[  388.585939][T10971]  vfs_open+0x82/0x3f0
[  388.585988][T10971]  path_openat+0x1e5e/0x2d40
[  388.586036][T10971]  ? __pfx_path_openat+0x10/0x10
[  388.586079][T10971]  do_filp_open+0x20b/0x470
[  388.586111][T10971]  ? __pfx_do_filp_open+0x10/0x10
[  388.586175][T10971]  ? alloc_fd+0x471/0x7d0
[  388.586237][T10971]  do_sys_openat2+0x11b/0x1d0
[  388.586280][T10971]  ? __pfx_do_sys_openat2+0x10/0x10
[  388.586326][T10971]  ? __pfx___might_resched+0x10/0x10
[  388.586373][T10971]  __x64_sys_openat+0x174/0x210
[  388.586417][T10971]  ? __pfx___x64_sys_openat+0x10/0x10
[  388.586464][T10971]  ? rcu_is_watching+0x12/0xc0
[  388.586507][T10971]  do_syscall_64+0xcd/0x230
[  388.586552][T10971]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  388.586585][T10971] RIP: 0033:0x7ff7fd58e969
[  388.586611][T10971] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  388.586644][T10971] RSP: 002b:00007ff7fb3f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  388.586672][T10971] RAX: ffffffffffffffda RBX: 00007ff7fd7b6160 RCX: 00007ff7fd58e969
[  388.586693][T10971] RDX: 0000000000143642 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  388.586713][T10971] RBP: 00007ff7fd610ab1 R08: 0000000000000000 R09: 0000000000000000
[  388.586733][T10971] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  388.586753][T10971] R13: 0000000000000000 R14: 00007ff7fd7b6160 R15: 00007fffaa590368
[  388.586795][T10971]  </TASK>
[  388.586838][T10971] ERROR: Out of memory at tomoyo_realpath_from_path.
[  391.125434][T11000] netlink: 28 bytes leftover after parsing attributes in process `syz.4.990'.
[  391.951739][T11044] sp0: Synchronizing with TNC
[  392.132662][T11052] Setting dangerous option i915.mitigations - tainting kernel
[  394.450095][ T5144] Bluetooth: hci4: unexpected subevent 0x01 length: 123 > 18
[  394.457853][ T5144] Bluetooth: hci4: Invalid handle: 0xe200 > 0x0eff
[  396.328060][T11113] FAULT_INJECTION: forcing a failure.
[  396.328060][T11113] name failslab, interval 1, probability 0, space 0, times 0
[  396.444280][T11113] CPU: 0 UID: 0 PID: 11113 Comm: syz.0.1007 Tainted: G     U              6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[  396.444336][T11113] Tainted: [U]=USER
[  396.444348][T11113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  396.444366][T11113] Call Trace:
[  396.444377][T11113]  <TASK>
[  396.444389][T11113]  dump_stack_lvl+0x16c/0x1f0
[  396.444436][T11113]  should_fail_ex+0x512/0x640
[  396.444489][T11113]  should_failslab+0xc2/0x120
[  396.444529][T11113]  __kmalloc_cache_noprof+0x6a/0x3e0
[  396.444585][T11113]  ? cfmuxl_create+0x40/0x210
[  396.444626][T11113]  ? __pfx_caif_init_net+0x10/0x10
[  396.444665][T11113]  cfmuxl_create+0x40/0x210
[  396.444703][T11113]  cfcnfg_create+0x78/0x500
[  396.444739][T11113]  ? debug_mutex_init+0x37/0x70
[  396.444792][T11113]  ? __pfx_caif_init_net+0x10/0x10
[  396.444826][T11113]  caif_init_net+0x7d/0xe0
[  396.444861][T11113]  ops_init+0x1df/0x5f0
[  396.444901][T11113]  setup_net+0x21e/0x850
[  396.444938][T11113]  ? __pfx_setup_net+0x10/0x10
[  396.444970][T11113]  ? lockdep_init_map_type+0x5c/0x280
[  396.445016][T11113]  ? __pfx_down_read_killable+0x10/0x10
[  396.445066][T11113]  ? debug_mutex_init+0x37/0x70
[  396.445122][T11113]  copy_net_ns+0x2a6/0x5f0
[  396.445165][T11113]  create_new_namespaces+0x3ea/0xad0
[  396.445211][T11113]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  396.445252][T11113]  ksys_unshare+0x45b/0xa40
[  396.445330][T11113]  ? __pfx_ksys_unshare+0x10/0x10
[  396.445371][T11113]  ? xfd_validate_state+0x5d/0x180
[  396.445427][T11113]  ? rcu_is_watching+0x12/0xc0
[  396.445468][T11113]  __x64_sys_unshare+0x31/0x40
[  396.445512][T11113]  do_syscall_64+0xcd/0x230
[  396.445556][T11113]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  396.445589][T11113] RIP: 0033:0x7fdcd6d8e969
[  396.445614][T11113] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  396.445645][T11113] RSP: 002b:00007fdcd7c38038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  396.445676][T11113] RAX: ffffffffffffffda RBX: 00007fdcd6fb6160 RCX: 00007fdcd6d8e969
[  396.445698][T11113] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  396.445723][T11113] RBP: 00007fdcd6e10ab1 R08: 0000000000000000 R09: 0000000000000000
[  396.445743][T11113] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  396.445762][T11113] R13: 0000000000000000 R14: 00007fdcd6fb6160 R15: 00007fffe5cfb0e8
[  396.445804][T11113]  </TASK>
[  399.311295][T11144] FAULT_INJECTION: forcing a failure.
[  399.311295][T11144] name fail_futex, interval 1, probability 0, space 0, times 0
[  399.348489][T11144] CPU: 1 UID: 0 PID: 11144 Comm: syz.4.1011 Tainted: G     U              6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[  399.348546][T11144] Tainted: [U]=USER
[  399.348557][T11144] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  399.348576][T11144] Call Trace:
[  399.348586][T11144]  <TASK>
[  399.348598][T11144]  dump_stack_lvl+0x16c/0x1f0
[  399.348642][T11144]  should_fail_ex+0x512/0x640
[  399.348694][T11144]  get_futex_key+0x49e/0x1000
[  399.348733][T11144]  ? __pfx_get_futex_key+0x10/0x10
[  399.348780][T11144]  futex_wake+0xe7/0x4e0
[  399.348823][T11144]  ? __pfx_futex_wake+0x10/0x10
[  399.348868][T11144]  ? kmem_cache_free+0x2d4/0x4d0
[  399.348901][T11144]  ? fd_install+0x225/0x750
[  399.348945][T11144]  ? putname+0x154/0x1a0
[  399.348988][T11144]  do_futex+0x1e3/0x350
[  399.349023][T11144]  ? __pfx_do_futex+0x10/0x10
[  399.349079][T11144]  __x64_sys_futex+0x1e0/0x4c0
[  399.349120][T11144]  ? __pfx___x64_sys_futex+0x10/0x10
[  399.349159][T11144]  ? rcu_is_watching+0x12/0xc0
[  399.349200][T11144]  do_syscall_64+0xcd/0x230
[  399.349243][T11144]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  399.349275][T11144] RIP: 0033:0x7ff7fd58e969
[  399.349301][T11144] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  399.349333][T11144] RSP: 002b:00007ff7fe3230e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  399.349364][T11144] RAX: ffffffffffffffda RBX: 00007ff7fd7b6088 RCX: 00007ff7fd58e969
[  399.349386][T11144] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007ff7fd7b608c
[  399.349407][T11144] RBP: 00007ff7fd7b6080 R08: 00007ff7fe345000 R09: 0000000000000000
[  399.349428][T11144] R10: 000000000000000b R11: 0000000000000246 R12: 00007ff7fd7b608c
[  399.349448][T11144] R13: 0000000000000000 R14: 00007fffaa590280 R15: 00007fffaa590368
[  399.349490][T11144]  </TASK>
[  399.544197][    C1] vkms_vblank_simulate: vblank timer overrun
[  402.015945][T11212] sp0: Synchronizing with TNC
[  402.259278][T11214] FAULT_INJECTION: forcing a failure.
[  402.259278][T11214] name failslab, interval 1, probability 0, space 0, times 0
[  402.337554][T11214] CPU: 0 UID: 0 PID: 11214 Comm: syz.5.1024 Tainted: G     U              6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[  402.337607][T11214] Tainted: [U]=USER
[  402.337616][T11214] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  402.337634][T11214] Call Trace:
[  402.337643][T11214]  <TASK>
[  402.337655][T11214]  dump_stack_lvl+0x16c/0x1f0
[  402.337695][T11214]  should_fail_ex+0x512/0x640
[  402.337735][T11214]  ? __kmalloc_noprof+0xbf/0x510
[  402.337769][T11214]  ? __register_sysctl_table+0xea2/0x1900
[  402.337801][T11214]  should_failslab+0xc2/0x120
[  402.337844][T11214]  __kmalloc_noprof+0xd2/0x510
[  402.337875][T11214]  ? __register_sysctl_table+0xe8e/0x1900
[  402.337921][T11214]  __register_sysctl_table+0xea2/0x1900
[  402.337966][T11214]  ? __pfx___register_sysctl_table+0x10/0x10
[  402.338003][T11214]  ? setup_mq_sysctls+0x5d/0x230
[  402.338041][T11214]  ? __asan_memcpy+0x3c/0x60
[  402.338093][T11214]  setup_mq_sysctls+0x13d/0x230
[  402.338133][T11214]  copy_ipcs+0x479/0x610
[  402.338164][T11214]  ? copy_utsname+0xab/0x470
[  402.338206][T11214]  create_new_namespaces+0x20a/0xad0
[  402.338244][T11214]  ? security_capable+0x7e/0x260
[  402.338302][T11214]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  402.338356][T11214]  ksys_unshare+0x45b/0xa40
[  402.338399][T11214]  ? __pfx_ksys_unshare+0x10/0x10
[  402.338438][T11214]  ? xfd_validate_state+0x5d/0x180
[  402.338488][T11214]  ? rcu_is_watching+0x12/0xc0
[  402.338527][T11214]  __x64_sys_unshare+0x31/0x40
[  402.338569][T11214]  do_syscall_64+0xcd/0x230
[  402.338612][T11214]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  402.338646][T11214] RIP: 0033:0x7f3ba298e969
[  402.338671][T11214] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  402.338721][T11214] RSP: 002b:00007f3ba37e8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  402.338753][T11214] RAX: ffffffffffffffda RBX: 00007f3ba2bb5fa0 RCX: 00007f3ba298e969
[  402.338774][T11214] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000008000400
[  402.338794][T11214] RBP: 00007f3ba2a10ab1 R08: 0000000000000000 R09: 0000000000000000
[  402.338814][T11214] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  402.338840][T11214] R13: 0000000000000000 R14: 00007f3ba2bb5fa0 R15: 00007fff038dce08
[  402.338882][T11214]  </TASK>
[  402.835866][T11214] sysctl could not get directory: /fs -12
[  403.467588][T11245] lo: entered allmulticast mode
[  403.546110][T11246] lo: left allmulticast mode
[  403.712696][T11246] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  403.719608][T11246] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  404.406771][T11252] FAULT_INJECTION: forcing a failure.
[  404.406771][T11252] name fail_futex, interval 1, probability 0, space 0, times 0
[  404.444693][T11252] CPU: 0 UID: 0 PID: 11252 Comm: syz.5.1031 Tainted: G     U              6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[  404.444749][T11252] Tainted: [U]=USER
[  404.444759][T11252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  404.444777][T11252] Call Trace:
[  404.444788][T11252]  <TASK>
[  404.444799][T11252]  dump_stack_lvl+0x16c/0x1f0
[  404.444844][T11252]  should_fail_ex+0x512/0x640
[  404.444897][T11252]  get_futex_key+0x49e/0x1000
[  404.444934][T11252]  ? __pfx_get_futex_key+0x10/0x10
[  404.444965][T11252]  ? __pfx___schedule+0x10/0x10
[  404.445013][T11252]  futex_wait_setup+0x78/0x290
[  404.445065][T11252]  __futex_wait+0x266/0x3c0
[  404.445109][T11252]  ? __pfx___futex_wait+0x10/0x10
[  404.445159][T11252]  ? __pfx_futex_wake_mark+0x10/0x10
[  404.445216][T11252]  futex_wait+0xe8/0x380
[  404.445260][T11252]  ? __pfx_futex_wait+0x10/0x10
[  404.445311][T11252]  ? kmem_cache_free+0x2d4/0x4d0
[  404.445343][T11252]  ? fd_install+0x225/0x750
[  404.445391][T11252]  ? putname+0x154/0x1a0
[  404.445431][T11252]  do_futex+0x229/0x350
[  404.445465][T11252]  ? __pfx_do_futex+0x10/0x10
[  404.445512][T11252]  __x64_sys_futex+0x1e0/0x4c0
[  404.445552][T11252]  ? __pfx___x64_sys_futex+0x10/0x10
[  404.445591][T11252]  ? rcu_is_watching+0x12/0xc0
[  404.445632][T11252]  do_syscall_64+0xcd/0x230
[  404.445685][T11252]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  404.445719][T11252] RIP: 0033:0x7f3ba298e969
[  404.445746][T11252] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  404.445779][T11252] RSP: 002b:00007f3ba37a60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  404.445812][T11252] RAX: ffffffffffffffda RBX: 00007f3ba2bb6168 RCX: 00007f3ba298e969
[  404.445834][T11252] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f3ba2bb6168
[  404.445854][T11252] RBP: 00007f3ba2bb6160 R08: 0000000000000000 R09: 0000000000000000
[  404.445874][T11252] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3ba2bb616c
[  404.445895][T11252] R13: 0000000000000000 R14: 00007fff038dcd20 R15: 00007fff038dce08
[  404.445937][T11252]  </TASK>
[  405.960337][T11279] FAULT_INJECTION: forcing a failure.
[  405.960337][T11279] name failslab, interval 1, probability 0, space 0, times 0
[  405.982680][T11279] CPU: 1 UID: 0 PID: 11279 Comm: syz.4.1038 Tainted: G     U              6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[  405.982737][T11279] Tainted: [U]=USER
[  405.982749][T11279] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  405.982769][T11279] Call Trace:
[  405.982780][T11279]  <TASK>
[  405.982793][T11279]  dump_stack_lvl+0x16c/0x1f0
[  405.982838][T11279]  should_fail_ex+0x512/0x640
[  405.982885][T11279]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[  405.982932][T11279]  should_failslab+0xc2/0x120
[  405.982974][T11279]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  405.983017][T11279]  ? setup_mq_sysctls+0x5d/0x230
[  405.983061][T11279]  kmemdup_noprof+0x29/0x60
[  405.983103][T11279]  setup_mq_sysctls+0x5d/0x230
[  405.983148][T11279]  copy_ipcs+0x479/0x610
[  405.983181][T11279]  ? copy_utsname+0xab/0x470
[  405.983224][T11279]  create_new_namespaces+0x20a/0xad0
[  405.983260][T11279]  ? security_capable+0x7e/0x260
[  405.983314][T11279]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  405.983345][T11279]  ksys_unshare+0x45b/0xa40
[  405.983377][T11279]  ? __pfx_ksys_unshare+0x10/0x10
[  405.983406][T11279]  ? xfd_validate_state+0x5d/0x180
[  405.983445][T11279]  ? rcu_is_watching+0x12/0xc0
[  405.983475][T11279]  __x64_sys_unshare+0x31/0x40
[  405.983517][T11279]  do_syscall_64+0xcd/0x230
[  405.983571][T11279]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  405.983605][T11279] RIP: 0033:0x7ff7fd58e969
[  405.983631][T11279] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  405.983659][T11279] RSP: 002b:00007ff7fe344038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  405.983692][T11279] RAX: ffffffffffffffda RBX: 00007ff7fd7b5fa0 RCX: 00007ff7fd58e969
[  405.983712][T11279] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000008000400
[  405.983725][T11279] RBP: 00007ff7fd610ab1 R08: 0000000000000000 R09: 0000000000000000
[  405.983740][T11279] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  405.983753][T11279] R13: 0000000000000000 R14: 00007ff7fd7b5fa0 R15: 00007fffaa590368
[  405.983782][T11279]  </TASK>
[  406.197862][    C1] vkms_vblank_simulate: vblank timer overrun
[  409.431884][T11341] Invalid ELF header magic: != ELF
[  409.920566][T11360] openvswitch: netlink: Key type 261 is out of range max 32
[  411.710250][T11386] cifs: Unknown parameter ' '
[  411.901997][T11395] FAULT_INJECTION: forcing a failure.
[  411.901997][T11395] name failslab, interval 1, probability 0, space 0, times 0
[  411.950935][T11398] kafs: addr_prefs: Invalid Command
[  411.973257][T11395] CPU: 1 UID: 0 PID: 11395 Comm: syz.0.1069 Tainted: G     U              6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[  411.973311][T11395] Tainted: [U]=USER
[  411.973321][T11395] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  411.973339][T11395] Call Trace:
[  411.973349][T11395]  <TASK>
[  411.973360][T11395]  dump_stack_lvl+0x16c/0x1f0
[  411.973404][T11395]  should_fail_ex+0x512/0x640
[  411.973445][T11395]  ? __kmalloc_noprof+0xbf/0x510
[  411.973483][T11395]  ? kernfs_fop_write_iter+0x237/0x510
[  411.973522][T11395]  should_failslab+0xc2/0x120
[  411.973561][T11395]  __kmalloc_noprof+0xd2/0x510
[  411.973603][T11395]  kernfs_fop_write_iter+0x237/0x510
[  411.973650][T11395]  vfs_write+0x5ba/0x1180
[  411.973680][T11395]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  411.973723][T11395]  ? __pfx___mutex_lock+0x10/0x10
[  411.973761][T11395]  ? __pfx_vfs_write+0x10/0x10
[  411.973818][T11395]  ksys_write+0x12a/0x240
[  411.973847][T11395]  ? __pfx_ksys_write+0x10/0x10
[  411.973884][T11395]  ? rcu_is_watching+0x12/0xc0
[  411.973924][T11395]  do_syscall_64+0xcd/0x230
[  411.973967][T11395]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  411.973997][T11395] RIP: 0033:0x7fdcd6d8e969
[  411.974020][T11395] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  411.974051][T11395] RSP: 002b:00007fdcd7c7a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  411.974080][T11395] RAX: ffffffffffffffda RBX: 00007fdcd6fb5fa0 RCX: 00007fdcd6d8e969
[  411.974101][T11395] RDX: 0000000000000001 RSI: 0000200000000000 RDI: 0000000000000003
[  411.974119][T11395] RBP: 00007fdcd7c7a090 R08: 0000000000000000 R09: 0000000000000000
[  411.974138][T11395] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  411.974155][T11395] R13: 0000000000000000 R14: 00007fdcd6fb5fa0 R15: 00007fffe5cfb0e8
[  411.974197][T11395]  </TASK>
[  412.167007][    C1] vkms_vblank_simulate: vblank timer overrun
[  412.692515][T11415] netlink: 'syz.3.1075': attribute type 33 has an invalid length.
[  412.730573][T11415] netlink: 322 bytes leftover after parsing attributes in process `syz.3.1075'.
[  412.884308][T11418] FAULT_INJECTION: forcing a failure.
[  412.884308][T11418] name failslab, interval 1, probability 0, space 0, times 0
[  412.898015][T11418] CPU: 0 UID: 0 PID: 11418 Comm: syz.5.1072 Tainted: G     U              6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[  412.898171][T11418] Tainted: [U]=USER
[  412.898187][T11418] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  412.898208][T11418] Call Trace:
[  412.898223][T11418]  <TASK>
[  412.898238][T11418]  dump_stack_lvl+0x16c/0x1f0
[  412.898286][T11418]  should_fail_ex+0x512/0x640
[  412.898337][T11418]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  412.898378][T11418]  should_failslab+0xc2/0x120
[  412.898419][T11418]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  412.898451][T11418]  ? __proc_create+0xc3/0x8c0
[  412.898484][T11418]  ? __proc_create+0x2ce/0x8c0
[  412.898523][T11418]  __proc_create+0x2ce/0x8c0
[  412.898558][T11418]  ? __pfx___proc_create+0x10/0x10
[  412.898596][T11418]  ? _raw_write_unlock+0x28/0x50
[  412.898629][T11418]  ? proc_register+0x314/0x5f0
[  412.898779][T11418]  proc_create_reg+0x7d/0x180
[  412.898819][T11418]  ? __pfx_sctp_snmp_seq_show+0x10/0x10
[  412.898868][T11418]  proc_create_net_single+0x86/0x170
[  412.898910][T11418]  ? __pfx_proc_create_net_single+0x10/0x10
[  412.898966][T11418]  sctp_proc_init+0xaa/0x270
[  412.899009][T11418]  ? __pfx_sctp_defaults_init+0x10/0x10
[  412.899134][T11418]  sctp_defaults_init+0x74a/0xd80
[  412.899179][T11418]  ? __pfx_sctp_defaults_init+0x10/0x10
[  412.899222][T11418]  ops_init+0x1df/0x5f0
[  412.899258][T11418]  setup_net+0x21e/0x850
[  412.899296][T11418]  ? __pfx_setup_net+0x10/0x10
[  412.899327][T11418]  ? lockdep_init_map_type+0x5c/0x280
[  412.899384][T11418]  ? __pfx_down_read_killable+0x10/0x10
[  412.899439][T11418]  ? debug_mutex_init+0x37/0x70
[  412.899493][T11418]  copy_net_ns+0x2a6/0x5f0
[  412.899532][T11418]  create_new_namespaces+0x3ea/0xad0
[  412.899579][T11418]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  412.899620][T11418]  ksys_unshare+0x45b/0xa40
[  412.899666][T11418]  ? __pfx_ksys_unshare+0x10/0x10
[  412.899707][T11418]  ? xfd_validate_state+0x5d/0x180
[  412.899763][T11418]  ? rcu_is_watching+0x12/0xc0
[  412.899802][T11418]  __x64_sys_unshare+0x31/0x40
[  412.899847][T11418]  do_syscall_64+0xcd/0x230
[  412.899900][T11418]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  412.899934][T11418] RIP: 0033:0x7f3ba298e969
[  412.899963][T11418] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  412.899995][T11418] RSP: 002b:00007f3ba37a6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  412.900023][T11418] RAX: ffffffffffffffda RBX: 00007f3ba2bb6160 RCX: 00007f3ba298e969
[  412.900046][T11418] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  412.900065][T11418] RBP: 00007f3ba2a10ab1 R08: 0000000000000000 R09: 0000000000000000
[  412.900084][T11418] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  412.900103][T11418] R13: 0000000000000000 R14: 00007f3ba2bb6160 R15: 00007fff038dce08
[  412.900144][T11418]  </TASK>
[  413.868871][T11433] openvswitch: netlink: Key type 261 is out of range max 32
[  414.263511][T11439] bond0: option all_slaves_active: invalid value ()
[  414.900343][T11454] FAULT_INJECTION: forcing a failure.
[  414.900343][T11454] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  414.918774][T11454] CPU: 1 UID: 0 PID: 11454 Comm: syz.3.1080 Tainted: G     U              6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[  414.918825][T11454] Tainted: [U]=USER
[  414.918836][T11454] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  414.918855][T11454] Call Trace:
[  414.918865][T11454]  <TASK>
[  414.918877][T11454]  dump_stack_lvl+0x16c/0x1f0
[  414.918923][T11454]  should_fail_ex+0x512/0x640
[  414.919005][T11454]  _copy_from_iter+0x2a4/0x15b0
[  414.919064][T11454]  ? __pfx__copy_from_iter+0x10/0x10
[  414.919111][T11454]  ? rcu_is_watching+0x12/0xc0
[  414.919151][T11454]  ? trace_kmalloc+0x2b/0xd0
[  414.919191][T11454]  ? __kmalloc_noprof+0x242/0x510
[  414.919247][T11454]  kernfs_fop_write_iter+0x19a/0x510
[  414.919295][T11454]  vfs_write+0x5ba/0x1180
[  414.919327][T11454]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  414.919369][T11454]  ? __pfx___mutex_lock+0x10/0x10
[  414.919409][T11454]  ? __pfx_vfs_write+0x10/0x10
[  414.919467][T11454]  ksys_write+0x12a/0x240
[  414.919507][T11454]  ? __pfx_ksys_write+0x10/0x10
[  414.919535][T11454]  ? rcu_is_watching+0x12/0xc0
[  414.919575][T11454]  do_syscall_64+0xcd/0x230
[  414.919616][T11454]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  414.919649][T11454] RIP: 0033:0x7f77aa18e969
[  414.919673][T11454] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  414.919704][T11454] RSP: 002b:00007f77ab02d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  414.919733][T11454] RAX: ffffffffffffffda RBX: 00007f77aa3b5fa0 RCX: 00007f77aa18e969
[  414.919754][T11454] RDX: 0000000000000001 RSI: 0000200000000000 RDI: 0000000000000003
[  414.919773][T11454] RBP: 00007f77ab02d090 R08: 0000000000000000 R09: 0000000000000000
[  414.919793][T11454] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  414.919820][T11454] R13: 0000000000000000 R14: 00007f77aa3b5fa0 R15: 00007ffd0456f508
[  414.919863][T11454]  </TASK>
[  415.508747][T11463] sp0: Synchronizing with TNC
[  417.427525][T11483] netlink: 'syz.4.1087': attribute type 10 has an invalid length.
[  417.487918][T11483] netlink: 330 bytes leftover after parsing attributes in process `syz.4.1087'.
[  418.079861][T11494] Setting dangerous option i915.mitigations - tainting kernel
[  419.055696][T11498] mkiss: ax0: crc mode is auto.
[  419.470263][T11507] lo: entered allmulticast mode
[  419.626069][T11514] lo: left allmulticast mode
[  419.705816][T11514] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  419.712352][T11514] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  420.831847][T11535] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1099'.
[  420.846875][T11535] netlink: 25 bytes leftover after parsing attributes in process `syz.0.1099'.
[  420.965982][T11541] netlink: 140 bytes leftover after parsing attributes in process `syz.4.1101'.
[  421.002625][T11541] netlink: 2068 bytes leftover after parsing attributes in process `syz.4.1101'.
[  422.164804][T11558] sp0: Synchronizing with TNC

syzkaller
syzkaller login: [  425.203320][T11604] sp0: Synchronizing with TNC
[  425.484058][T11610] input: jJǸ-�¶š9ã%vø“û¨l�ÐQ 	J86Ö‘ as /devices/virtual/input/input13
[  425.658091][T11611] random: crng reseeded on system resumption
[  427.089514][T11623] zswap: compressor  not available
[  427.448804][T11639] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1126'.
[  429.381014][T11661] Setting dangerous option i915.mitigations - tainting kernel
[  432.008830][T11688] openvswitch: netlink: push_nsh: missing base or metadata attributes
[  432.438516][T11700] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1136'.
[  434.705814][T11740] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1143'.
[  435.435627][   T30] audit: type=1807 audit(4294967389.177:8): UNKNOWN=§ res=0
[  435.443044][T11751] ima: policy update failed
[  435.495756][   T30] audit: type=1802 audit(4294967389.197:9): pid=11751 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.3.1146" res=0 errno=0
[  435.575949][   T30] audit: type=1802 audit(4294967389.197:10): pid=11751 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.1146" res=0 errno=0
[  435.804299][T11757] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1148'.
[  436.844630][T11775] mkiss: ax0: crc mode is auto.
[  436.961769][T11775] FAULT_INJECTION: forcing a failure.
[  436.961769][T11775] name failslab, interval 1, probability 0, space 0, times 0
[  437.048653][T11775] CPU: 0 UID: 0 PID: 11775 Comm: syz.4.1154 Tainted: G     U              6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[  437.048702][T11775] Tainted: [U]=USER
[  437.048710][T11775] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  437.048728][T11775] Call Trace:
[  437.048738][T11775]  <TASK>
[  437.048749][T11775]  dump_stack_lvl+0x16c/0x1f0
[  437.048793][T11775]  should_fail_ex+0x512/0x640
[  437.048835][T11775]  ? fs_reclaim_acquire+0xae/0x150
[  437.048884][T11775]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  437.048926][T11775]  should_failslab+0xc2/0x120
[  437.048965][T11775]  __kmalloc_noprof+0xd2/0x510
[  437.049049][T11775]  tomoyo_realpath_from_path+0xc2/0x6e0
[  437.049095][T11775]  ? tomoyo_profile+0x47/0x60
[  437.049145][T11775]  tomoyo_path_number_perm+0x245/0x580
[  437.049180][T11775]  ? tomoyo_path_number_perm+0x237/0x580
[  437.049220][T11775]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  437.049259][T11775]  ? find_held_lock+0x2b/0x80
[  437.049324][T11775]  ? find_held_lock+0x2b/0x80
[  437.049352][T11775]  ? hook_file_ioctl_common+0x145/0x410
[  437.049395][T11775]  ? __fget_files+0x20e/0x3c0
[  437.049450][T11775]  security_file_ioctl+0x9b/0x240
[  437.049490][T11775]  __x64_sys_ioctl+0xb7/0x200
[  437.049534][T11775]  do_syscall_64+0xcd/0x230
[  437.049575][T11775]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  437.049606][T11775] RIP: 0033:0x7ff7fd58e969
[  437.049631][T11775] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  437.049661][T11775] RSP: 002b:00007ff7fe344038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  437.049690][T11775] RAX: ffffffffffffffda RBX: 00007ff7fd7b5fa0 RCX: 00007ff7fd58e969
[  437.049712][T11775] RDX: 0000000000000000 RSI: 0000000000008925 RDI: 0000000000000007
[  437.049731][T11775] RBP: 00007ff7fe344090 R08: 0000000000000000 R09: 0000000000000000
[  437.049750][T11775] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  437.049768][T11775] R13: 0000000000000000 R14: 00007ff7fd7b5fa0 R15: 00007fffaa590368
[  437.049809][T11775]  </TASK>
[  437.049846][T11775] ERROR: Out of memory at tomoyo_realpath_from_path.
[  437.318166][T11787] FAULT_INJECTION: forcing a failure.
[  437.318166][T11787] name fail_futex, interval 1, probability 0, space 0, times 0
[  437.548503][T11787] CPU: 1 UID: 0 PID: 11787 Comm: syz.0.1157 Tainted: G     U              6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[  437.548554][T11787] Tainted: [U]=USER
[  437.548564][T11787] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  437.548582][T11787] Call Trace:
[  437.548592][T11787]  <TASK>
[  437.548603][T11787]  dump_stack_lvl+0x16c/0x1f0
[  437.548645][T11787]  should_fail_ex+0x512/0x640
[  437.548686][T11787]  ? unwind_get_return_address+0x59/0xa0
[  437.548725][T11787]  get_futex_key+0x49e/0x1000
[  437.548759][T11787]  ? __pfx_get_futex_key+0x10/0x10
[  437.548791][T11787]  ? stack_trace_save+0x8e/0xc0
[  437.548820][T11787]  ? __pfx_stack_trace_save+0x10/0x10
[  437.548850][T11787]  ? stack_depot_save_flags+0x28/0xa50
[  437.548899][T11787]  futex_wait_setup+0x78/0x290
[  437.548943][T11787]  ? kasan_record_aux_stack+0xb8/0xd0
[  437.548992][T11787]  __futex_wait+0x266/0x3c0
[  437.549033][T11787]  ? __pfx___futex_wait+0x10/0x10
[  437.549079][T11787]  ? __pfx_futex_wake_mark+0x10/0x10
[  437.549135][T11787]  futex_wait+0xe8/0x380
[  437.549172][T11787]  ? __pfx_futex_wait+0x10/0x10
[  437.549239][T11787]  do_futex+0x229/0x350
[  437.549271][T11787]  ? __pfx_do_futex+0x10/0x10
[  437.549302][T11787]  ? find_held_lock+0x2b/0x80
[  437.549336][T11787]  __x64_sys_futex+0x1e0/0x4c0
[  437.549370][T11787]  ? __do_sys_close_range+0x278/0x730
[  437.549400][T11787]  ? __pfx___x64_sys_futex+0x10/0x10
[  437.549433][T11787]  ? __pfx___do_sys_close_range+0x10/0x10
[  437.549460][T11787]  ? rcu_is_watching+0x12/0xc0
[  437.549497][T11787]  do_syscall_64+0xcd/0x230
[  437.549543][T11787]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  437.549573][T11787] RIP: 0033:0x7fdcd6d8e969
[  437.549596][T11787] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  437.549626][T11787] RSP: 002b:00007fdcd7c7a0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  437.549653][T11787] RAX: ffffffffffffffda RBX: 00007fdcd6fb5fa8 RCX: 00007fdcd6d8e969
[  437.549673][T11787] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fdcd6fb5fa8
[  437.549691][T11787] RBP: 00007fdcd6fb5fa0 R08: 0000000000000000 R09: 0000000000000000
[  437.549709][T11787] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fdcd6fb5fac
[  437.549727][T11787] R13: 0000000000000000 R14: 00007fffe5cfb000 R15: 00007fffe5cfb0e8
[  437.549765][T11787]  </TASK>
[  437.792707][    C1] vkms_vblank_simulate: vblank timer overrun
[  438.213843][T11804] netlink: 'syz.4.1160': attribute type 2 has an invalid length.
[  438.253746][T11804] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1160'.
[  440.637915][T11841] mkiss: ax0: crc mode is auto.
[  440.704037][T11842] FAULT_INJECTION: forcing a failure.
[  440.704037][T11842] name failslab, interval 1, probability 0, space 0, times 0
[  440.769708][T11842] CPU: 1 UID: 0 PID: 11842 Comm: syz.3.1169 Tainted: G     U              6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[  440.769757][T11842] Tainted: [U]=USER
[  440.769766][T11842] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  440.769784][T11842] Call Trace:
[  440.769793][T11842]  <TASK>
[  440.769803][T11842]  dump_stack_lvl+0x16c/0x1f0
[  440.769846][T11842]  should_fail_ex+0x512/0x640
[  440.769886][T11842]  ? fs_reclaim_acquire+0xae/0x150
[  440.769933][T11842]  ? tomoyo_encode2+0x100/0x3e0
[  440.769970][T11842]  should_failslab+0xc2/0x120
[  440.770003][T11842]  __kmalloc_noprof+0xd2/0x510
[  440.770042][T11842]  tomoyo_encode2+0x100/0x3e0
[  440.770090][T11842]  tomoyo_encode+0x29/0x50
[  440.770130][T11842]  tomoyo_realpath_from_path+0x18f/0x6e0
[  440.770178][T11842]  ? tomoyo_profile+0x47/0x60
[  440.770229][T11842]  tomoyo_path_number_perm+0x245/0x580
[  440.770264][T11842]  ? tomoyo_path_number_perm+0x237/0x580
[  440.770304][T11842]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  440.770343][T11842]  ? find_held_lock+0x2b/0x80
[  440.770410][T11842]  ? find_held_lock+0x2b/0x80
[  440.770437][T11842]  ? hook_file_ioctl_common+0x145/0x410
[  440.770480][T11842]  ? __fget_files+0x20e/0x3c0
[  440.770532][T11842]  security_file_ioctl+0x9b/0x240
[  440.770572][T11842]  __x64_sys_ioctl+0xb7/0x200
[  440.770618][T11842]  do_syscall_64+0xcd/0x230
[  440.770660][T11842]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  440.770690][T11842] RIP: 0033:0x7f77aa18e969
[  440.770714][T11842] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  440.770744][T11842] RSP: 002b:00007f77ab00c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  440.770768][T11842] RAX: ffffffffffffffda RBX: 00007f77aa3b6080 RCX: 00007f77aa18e969
[  440.770785][T11842] RDX: 0000000000000000 RSI: 0000000000008925 RDI: 0000000000000007
[  440.770800][T11842] RBP: 00007f77ab00c090 R08: 0000000000000000 R09: 0000000000000000
[  440.770816][T11842] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  440.770833][T11842] R13: 0000000000000000 R14: 00007f77aa3b6080 R15: 00007ffd0456f508
[  440.770873][T11842]  </TASK>
[  440.772070][T11842] ERROR: Out of memory at tomoyo_realpath_from_path.
[  441.459874][T11857] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1174'.
[  442.175320][T11880] Invalid ELF header magic: != ELF
[  442.338156][T11884] mkiss: ax0: crc mode is auto.
[  442.466640][T11885] FAULT_INJECTION: forcing a failure.
[  442.466640][T11885] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  442.497047][T11885] CPU: 1 UID: 0 PID: 11885 Comm: syz.5.1182 Tainted: G     U              6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[  442.497099][T11885] Tainted: [U]=USER
[  442.497109][T11885] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  442.497127][T11885] Call Trace:
[  442.497137][T11885]  <TASK>
[  442.497148][T11885]  dump_stack_lvl+0x16c/0x1f0
[  442.497191][T11885]  should_fail_ex+0x512/0x640
[  442.497242][T11885]  _copy_to_user+0x32/0xd0
[  442.497292][T11885]  simple_read_from_buffer+0xcb/0x170
[  442.497342][T11885]  proc_fail_nth_read+0x197/0x270
[  442.497388][T11885]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  442.497433][T11885]  ? rw_verify_area+0xcf/0x680
[  442.497481][T11885]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  442.497524][T11885]  vfs_read+0x1de/0xc70
[  442.497559][T11885]  ? __pfx___mutex_lock+0x10/0x10
[  442.497606][T11885]  ? __pfx_vfs_read+0x10/0x10
[  442.497647][T11885]  ? __fget_files+0x20e/0x3c0
[  442.497709][T11885]  ksys_read+0x12a/0x240
[  442.497738][T11885]  ? __pfx_ksys_read+0x10/0x10
[  442.497763][T11885]  ? rcu_is_watching+0x12/0xc0
[  442.497816][T11885]  do_syscall_64+0xcd/0x230
[  442.497857][T11885]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  442.497888][T11885] RIP: 0033:0x7f3ba298d37c
[  442.497911][T11885] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  442.497941][T11885] RSP: 002b:00007f3ba37c7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  442.497970][T11885] RAX: ffffffffffffffda RBX: 00007f3ba2bb6080 RCX: 00007f3ba298d37c
[  442.497990][T11885] RDX: 000000000000000f RSI: 00007f3ba37c70a0 RDI: 0000000000000008
[  442.498008][T11885] RBP: 00007f3ba37c7090 R08: 0000000000000000 R09: 0000000000000000
[  442.498026][T11885] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  442.498047][T11885] R13: 0000000000000000 R14: 00007f3ba2bb6080 R15: 00007fff038dce08
[  442.498088][T11885]  </TASK>
[  442.690619][    C1] vkms_vblank_simulate: vblank timer overrun
[  443.394275][T11893] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1184'.
[  445.079705][T11908] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  445.109359][T11908] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  445.118195][T11908] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  445.127231][T11908] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  445.204463][T11908] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  445.231553][T11908] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  445.305571][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  445.312361][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  445.406954][T11908] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  445.475994][T11908] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  446.500852][ T5835] Bluetooth: hci1: command 0x0c1a tx timeout
[  446.902440][T11963] netlink: 158 bytes leftover after parsing attributes in process `syz.5.1194'.
[  447.138698][ T5835] Bluetooth: hci4: command 0x0406 tx timeout
[  447.138709][ T5144] Bluetooth: hci2: command 0x0c1a tx timeout
[  447.218894][ T5144] Bluetooth: hci0: command 0x0c1a tx timeout
[  447.512272][T11974] mkiss: ax0: crc mode is auto.
[  447.993644][T11986] netlink: 198 bytes leftover after parsing attributes in process `syz.5.1200'.
[  448.302509][T11992] FAULT_INJECTION: forcing a failure.
[  448.302509][T11992] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  448.315941][T11992] CPU: 1 UID: 0 PID: 11992 Comm: syz.5.1203 Tainted: G     U              6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[  448.315995][T11992] Tainted: [U]=USER
[  448.316007][T11992] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  448.316026][T11992] Call Trace:
[  448.316036][T11992]  <TASK>
[  448.316049][T11992]  dump_stack_lvl+0x16c/0x1f0
[  448.316093][T11992]  should_fail_ex+0x512/0x640
[  448.316153][T11992]  _copy_from_iter+0x2a4/0x15b0
[  448.316207][T11992]  ? __alloc_skb+0x200/0x380
[  448.316259][T11992]  ? __pfx__copy_from_iter+0x10/0x10
[  448.316310][T11992]  ? apparmor_capable+0x114/0x1d0
[  448.316357][T11992]  netlink_sendmsg+0x829/0xdd0
[  448.316400][T11992]  ? __pfx_netlink_sendmsg+0x10/0x10
[  448.316460][T11992]  ____sys_sendmsg+0xa95/0xc70
[  448.316503][T11992]  ? copy_msghdr_from_user+0x10a/0x160
[  448.316533][T11992]  ? __pfx_____sys_sendmsg+0x10/0x10
[  448.316594][T11992]  ___sys_sendmsg+0x134/0x1d0
[  448.316628][T11992]  ? __pfx____sys_sendmsg+0x10/0x10
[  448.316708][T11992]  __sys_sendmsg+0x16d/0x220
[  448.316741][T11992]  ? __pfx___sys_sendmsg+0x10/0x10
[  448.316771][T11992]  ? __x64_sys_futex+0x1e0/0x4c0
[  448.316817][T11992]  ? rcu_is_watching+0x12/0xc0
[  448.316858][T11992]  do_syscall_64+0xcd/0x230
[  448.316902][T11992]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  448.316935][T11992] RIP: 0033:0x7f3ba298e969
[  448.316960][T11992] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  448.316992][T11992] RSP: 002b:00007f3ba37e8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  448.317024][T11992] RAX: ffffffffffffffda RBX: 00007f3ba2bb5fa0 RCX: 00007f3ba298e969
[  448.317045][T11992] RDX: 0000000004000010 RSI: 0000200000000100 RDI: 0000000000000008
[  448.317066][T11992] RBP: 00007f3ba2a10ab1 R08: 0000000000000000 R09: 0000000000000000
[  448.317087][T11992] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  448.317106][T11992] R13: 0000000000000000 R14: 00007f3ba2bb5fa0 R15: 00007fff038dce08
[  448.317147][T11992]  </TASK>
[  448.522877][    C1] vkms_vblank_simulate: vblank timer overrun
[  448.958286][T11997] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1204'.
[  449.219583][ T5144] Bluetooth: hci4: command 0x0406 tx timeout
[  449.293604][T12008] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  449.293604][T12008] The task syz.4.1206 (12008) triggered the difference, watch for misbehavior.
[  449.321641][ T5144] Bluetooth: hci0: command 0x0c1a tx timeout
[  449.386666][T12010] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  449.637973][T12015] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0]
[  449.682638][T12017] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0]
[  450.275992][T12036] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1214'.
[  450.302608][T12036] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1214'.
[  450.743075][ T5144] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18
[  450.914267][T12047] mkiss: ax0: crc mode is auto.
[  451.387244][ T5144] Bluetooth: hci0: command 0x0c1a tx timeout
[  451.427827][T12061] can: request_module (can-proto-4) failed.
[  453.458610][ T5144] Bluetooth: hci0: command 0x0c1a tx timeout
[  453.504258][ T5835] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  453.515871][ T5835] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  453.527355][ T5835] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  453.540352][ T5835] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  453.549239][ T5835] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  453.655631][T12084] ima: policy update failed
[  453.660770][   T30] audit: type=1802 audit(4294967415.419:11): pid=12084 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.4.1223" res=0 errno=0
[  453.783807][T12099] sock: sock_timestamping_bind_phc: sock not bind to device
[  453.887086][T12101] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1226'.
[  453.960244][T12104] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1226'.
[  454.120086][T12094] chnl_net:caif_netlink_parms(): no params data found
[  454.409567][T12094] bridge0: port 1(bridge_slave_0) entered blocking state
[  454.426862][T12094] bridge0: port 1(bridge_slave_0) entered disabled state
[  454.435942][T12094] bridge_slave_0: entered allmulticast mode
[  454.446421][T12094] bridge_slave_0: entered promiscuous mode
[  454.477629][T12094] bridge0: port 2(bridge_slave_1) entered blocking state
[  454.498504][T12094] bridge0: port 2(bridge_slave_1) entered disabled state
[  454.505848][T12094] bridge_slave_1: entered allmulticast mode
[  454.517078][T12094] bridge_slave_1: entered promiscuous mode
[  454.645769][T12094] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  454.677866][T12094] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  454.849515][T12094] team0: Port device team_slave_0 added
[  454.863359][T12094] team0: Port device team_slave_1 added
[  455.066029][T12094] batman_adv: batadv0: Adding interface: batadv_slave_0
[  455.085653][T12094] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  455.148416][T12094] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  455.163816][T12094] batman_adv: batadv0: Adding interface: batadv_slave_1
[  455.211765][T12094] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  455.288431][T12094] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  455.473331][T12094] hsr_slave_0: entered promiscuous mode
[  455.489975][T12094] hsr_slave_1: entered promiscuous mode
[  455.620402][ T5835] Bluetooth: hci1: command tx timeout
[  455.738395][T12132] mkiss: ax0: crc mode is auto.
[  456.467051][T12094] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  456.529760][T12094] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  456.569188][T12094] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  456.588757][T12094] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  456.776580][T12140] sp0: Synchronizing with TNC
[  456.871594][T12094] 8021q: adding VLAN 0 to HW filter on device bond0
[  456.957275][T12094] 8021q: adding VLAN 0 to HW filter on device team0
[  457.004593][T11450] bridge0: port 1(bridge_slave_0) entered blocking state
[  457.011841][T11450] bridge0: port 1(bridge_slave_0) entered forwarding state
[  457.057371][T11450] bridge0: port 2(bridge_slave_1) entered blocking state
[  457.064666][T11450] bridge0: port 2(bridge_slave_1) entered forwarding state
[  457.247778][T12143] FAULT_INJECTION: forcing a failure.
[  457.247778][T12143] name failslab, interval 1, probability 0, space 0, times 0
[  457.271236][T12143] CPU: 1 UID: 0 PID: 12143 Comm: syz.5.1233 Tainted: G     U              6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[  457.271289][T12143] Tainted: [U]=USER
[  457.271299][T12143] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  457.271316][T12143] Call Trace:
[  457.271326][T12143]  <TASK>
[  457.271337][T12143]  dump_stack_lvl+0x16c/0x1f0
[  457.271379][T12143]  should_fail_ex+0x512/0x640
[  457.271420][T12143]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  457.271458][T12143]  should_failslab+0xc2/0x120
[  457.271503][T12143]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  457.271538][T12143]  ? getname_flags.part.0+0x4c/0x550
[  457.271584][T12143]  getname_flags.part.0+0x4c/0x550
[  457.271629][T12143]  getname_flags+0x93/0xf0
[  457.271677][T12143]  do_sys_openat2+0xb8/0x1d0
[  457.271717][T12143]  ? __pfx_do_sys_openat2+0x10/0x10
[  457.271763][T12143]  ? __fget_files+0x20e/0x3c0
[  457.271818][T12143]  __x64_sys_openat+0x174/0x210
[  457.271859][T12143]  ? __pfx___x64_sys_openat+0x10/0x10
[  457.271900][T12143]  ? ksys_write+0x1b9/0x240
[  457.271928][T12143]  ? rcu_is_watching+0x12/0xc0
[  457.271967][T12143]  do_syscall_64+0xcd/0x230
[  457.272009][T12143]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  457.272039][T12143] RIP: 0033:0x7f3ba298e969
[  457.272063][T12143] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  457.272093][T12143] RSP: 002b:00007f3ba37c7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  457.272123][T12143] RAX: ffffffffffffffda RBX: 00007f3ba2bb6080 RCX: 00007f3ba298e969
[  457.272144][T12143] RDX: 0000000000020b42 RSI: 00002000000000c0 RDI: ffffffffffffff9c
[  457.272164][T12143] RBP: 00007f3ba37c7090 R08: 0000000000000000 R09: 0000000000000000
[  457.272183][T12143] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  457.272201][T12143] R13: 0000000000000000 R14: 00007f3ba2bb6080 R15: 00007fff038dce08
[  457.272241][T12143]  </TASK>
[  457.700364][ T5835] Bluetooth: hci1: command tx timeout
[  457.852971][T12094] 8021q: adding VLAN 0 to HW filter on device batadv0
[  458.475641][T12162] openvswitch: netlink: Key type 29 is not supported
[  458.574950][T12094] veth0_vlan: entered promiscuous mode
[  458.604056][T12094] veth1_vlan: entered promiscuous mode
[  458.645738][T12094] veth0_macvtap: entered promiscuous mode
[  458.657883][T12094] veth1_macvtap: entered promiscuous mode
[  458.711141][T12094] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  458.734808][T12094] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  458.751942][T12094] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  458.772010][T12094] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  458.791902][T12094] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  458.812495][T12094] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  458.831152][T12094] batman_adv: batadv0: Interface activated: batadv_slave_0
[  458.886267][T12094] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  458.904652][T12094] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  458.915601][T12094] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  458.931264][T12094] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  458.943524][T12094] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  458.965399][T12094] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  458.980798][T12094] batman_adv: batadv0: Interface activated: batadv_slave_1
[  459.007724][T12094] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  459.019768][T12094] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  459.034131][T12094] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  459.046050][T12094] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  459.245098][ T3009] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  459.263060][ T3009] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  459.362457][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  459.384111][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  459.778578][ T5835] Bluetooth: hci1: command tx timeout
[  460.320256][T12171] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  460.330126][T12171] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  460.363862][T12171] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  460.389741][T12171] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  460.404113][T12171] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  460.456451][T12171] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  460.491617][T12171] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  460.561045][T12184] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_cmd_wq": -EINTR
[  461.618660][ T5835] Bluetooth: hci2: command 0x0c1a tx timeout
[  462.418562][ T5835] Bluetooth: hci1: command 0x0c1a tx timeout
[  462.424749][ T5144] Bluetooth: hci0: command 0x0c1a tx timeout
[  462.431855][ T5144] Bluetooth: hci4: command 0x0406 tx timeout
[  463.529299][T12212] ima: policy update failed
[  463.643830][   T30] audit: type=1802 audit(4294967425.329:12): pid=12212 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.1243" res=0 errno=0
[  463.669377][T12226] sp0: Synchronizing with TNC
[  463.698488][T12211] Bluetooth: hci2: command 0x0c1a tx timeout
[  464.500507][T12211] Bluetooth: hci1: command 0x0c1a tx timeout
[  466.578864][T12211] Bluetooth: hci1: command 0x0c1a tx timeout
[  466.871782][T12257] sp0: Synchronizing with TNC
[  467.076702][T12262] kafs: addr_prefs: Invalid Command
[  467.723149][T12270] can: request_module (can-proto-3) failed.
[  468.033439][T12276] random: crng reseeded on system resumption
[  468.282929][T12279] sp0: Synchronizing with TNC
[  471.491346][ T5832] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  471.501112][ T5832] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  471.509410][ T5832] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  471.534259][ T5832] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  471.546461][ T5832] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  472.382753][T12319] Invalid ELF header magic: != ELF
[  472.480955][T12311] chnl_net:caif_netlink_parms(): no params data found
[  472.901309][T12311] bridge0: port 1(bridge_slave_0) entered blocking state
[  472.920317][T12311] bridge0: port 1(bridge_slave_0) entered disabled state
[  472.932926][T12311] bridge_slave_0: entered allmulticast mode
[  472.955389][T12311] bridge_slave_0: entered promiscuous mode
[  472.984941][T12332] netlink: zone id is out of range
[  473.057837][T12311] bridge0: port 2(bridge_slave_1) entered blocking state
[  473.101457][T12311] bridge0: port 2(bridge_slave_1) entered disabled state
[  473.119205][T12311] bridge_slave_1: entered allmulticast mode
[  473.148746][T12311] bridge_slave_1: entered promiscuous mode
[  473.336567][T12340] block2mtd: error: cannot open device çinX‘©¼Ëò¨±ÂÚjFBçB>U»;߸³Ilk¬
[  473.384874][T12337] sp0: Synchronizing with TNC
[  473.622889][ T5832] Bluetooth: hci3: command tx timeout
[  473.689081][T12311] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  473.711317][T12311] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  474.141354][T12311] team0: Port device team_slave_0 added
[  474.190641][T12343] serio: Serial port pty64
[  474.238641][T12344] zero sized request
[  474.547006][T12311] team0: Port device team_slave_1 added
[  474.826962][T12311] batman_adv: batadv0: Adding interface: batadv_slave_0
[  474.849013][T12311] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  474.886493][T12311] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  474.976008][T12311] batman_adv: batadv0: Adding interface: batadv_slave_1
[  475.005877][T12311] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  475.074523][T12311] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  475.728416][ T5832] Bluetooth: hci3: command tx timeout
[  476.197004][T12311] hsr_slave_0: entered promiscuous mode
[  476.209503][T12311] hsr_slave_1: entered promiscuous mode
[  476.215972][T12311] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  476.237231][T12311] Cannot create hsr debugfs directory
[  477.778695][ T5832] Bluetooth: hci3: command tx timeout
[  477.823929][T12367] svc: failed to register nfsdv3 RPC service (errno 111).
[  477.900570][T12367] svc: failed to register nfsaclv3 RPC service (errno 111).
[  478.713423][T12311] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  478.846261][T12311] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  478.908438][T12311] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  478.952899][T12311] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  479.416469][T12311] 8021q: adding VLAN 0 to HW filter on device bond0
[  479.541170][T12311] 8021q: adding VLAN 0 to HW filter on device team0
[  479.585979][T11450] bridge0: port 1(bridge_slave_0) entered blocking state
[  479.593450][T11450] bridge0: port 1(bridge_slave_0) entered forwarding state
[  479.671312][T12386] sp0: Synchronizing with TNC
[  479.705305][T11450] bridge0: port 2(bridge_slave_1) entered blocking state
[  479.713072][T11450] bridge0: port 2(bridge_slave_1) entered forwarding state
[  479.866452][ T5832] Bluetooth: hci3: command tx timeout
[  480.651640][T12402] FAULT_INJECTION: forcing a failure.
[  480.651640][T12402] name failslab, interval 1, probability 0, space 0, times 0
[  480.697244][T12402] CPU: 0 UID: 0 PID: 12402 Comm: syz.3.1284 Tainted: G     U              6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[  480.697297][T12402] Tainted: [U]=USER
[  480.697307][T12402] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  480.697327][T12402] Call Trace:
[  480.697337][T12402]  <TASK>
[  480.697350][T12402]  dump_stack_lvl+0x16c/0x1f0
[  480.697397][T12402]  should_fail_ex+0x512/0x640
[  480.697446][T12402]  ? fs_reclaim_acquire+0xae/0x150
[  480.697496][T12402]  ? tomoyo_encode2+0x100/0x3e0
[  480.697537][T12402]  should_failslab+0xc2/0x120
[  480.697575][T12402]  __kmalloc_noprof+0xd2/0x510
[  480.697606][T12402]  ? d_absolute_path+0x136/0x1a0
[  480.697667][T12402]  tomoyo_encode2+0x100/0x3e0
[  480.697717][T12402]  tomoyo_encode+0x29/0x50
[  480.697877][T12402]  tomoyo_realpath_from_path+0x18f/0x6e0
[  480.697940][T12402]  tomoyo_check_open_permission+0x2ab/0x3c0
[  480.697979][T12402]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  480.698058][T12402]  ? do_raw_spin_lock+0x12c/0x2b0
[  480.698117][T12402]  tomoyo_file_open+0x6b/0x90
[  480.698168][T12402]  security_file_open+0x84/0x1e0
[  480.698211][T12402]  do_dentry_open+0x596/0x1c10
[  480.698257][T12402]  vfs_open+0x82/0x3f0
[  480.698302][T12402]  path_openat+0x1e5e/0x2d40
[  480.698348][T12402]  ? __pfx_path_openat+0x10/0x10
[  480.698390][T12402]  do_filp_open+0x20b/0x470
[  480.698421][T12402]  ? __pfx_do_filp_open+0x10/0x10
[  480.698483][T12402]  ? alloc_fd+0x471/0x7d0
[  480.698540][T12402]  do_sys_openat2+0x11b/0x1d0
[  480.698581][T12402]  ? __pfx_do_sys_openat2+0x10/0x10
[  480.698628][T12402]  ? __fget_files+0x20e/0x3c0
[  480.698682][T12402]  __x64_sys_openat+0x174/0x210
[  480.698724][T12402]  ? __pfx___x64_sys_openat+0x10/0x10
[  480.698764][T12402]  ? ksys_write+0x1b9/0x240
[  480.698804][T12402]  ? rcu_is_watching+0x12/0xc0
[  480.698843][T12402]  do_syscall_64+0xcd/0x230
[  480.698886][T12402]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  480.698918][T12402] RIP: 0033:0x7f77aa18e969
[  480.698944][T12402] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  480.698974][T12402] RSP: 002b:00007f77ab00c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  480.699002][T12402] RAX: ffffffffffffffda RBX: 00007f77aa3b6080 RCX: 00007f77aa18e969
[  480.699022][T12402] RDX: 0000000000020b42 RSI: 00002000000000c0 RDI: ffffffffffffff9c
[  480.699041][T12402] RBP: 00007f77ab00c090 R08: 0000000000000000 R09: 0000000000000000
[  480.699059][T12402] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  480.699078][T12402] R13: 0000000000000000 R14: 00007f77aa3b6080 R15: 00007ffd0456f508
[  480.699117][T12402]  </TASK>
[  480.733598][T12395] mkiss: ax0: crc mode is auto.
[  480.834626][T12402] ERROR: Out of memory at tomoyo_realpath_from_path.
[  480.919972][T12311] 8021q: adding VLAN 0 to HW filter on device batadv0
[  481.031231][T12404] netlink: 28 bytes leftover after parsing attributes in process `syz.6.1285'.
[  481.198260][T12404] bridge_slave_1: left allmulticast mode
[  481.204187][T12404] bridge_slave_1: left promiscuous mode
[  481.218982][T12404] bridge0: port 2(bridge_slave_1) entered disabled state
[  481.267694][T12404] bridge_slave_0: left allmulticast mode
[  481.274571][T12404] bridge_slave_0: left promiscuous mode
[  481.281895][T12404] bridge0: port 1(bridge_slave_0) entered disabled state
[  481.690011][T12415] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1286'.
[  481.837418][T11452] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  482.246406][T11452] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  482.524123][T11452] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  482.884271][T11452] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  482.970950][T12311] veth0_vlan: entered promiscuous mode
[  482.994706][T12311] veth1_vlan: entered promiscuous mode
[  483.233618][T12311] veth0_macvtap: entered promiscuous mode
[  483.322371][T12311] veth1_macvtap: entered promiscuous mode
[  483.488084][T12311] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  483.552816][T12311] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  483.579133][T12311] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  483.606032][T12311] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  483.667474][T12311] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  483.700295][T12311] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  483.768388][T12311] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  483.789406][T12311] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  483.815919][T12311] batman_adv: batadv0: Interface activated: batadv_slave_0
[  483.889397][T12311] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  483.917797][T12311] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  483.959015][T12311] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  483.988510][T12311] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  484.019097][T12311] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  484.038694][T12311] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  484.078353][T12311] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  484.110019][T12311] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  484.140260][T12311] batman_adv: batadv0: Interface activated: batadv_slave_1
[  484.219943][T12311] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  484.251969][T12311] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  484.300088][T12311] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  484.327691][T12311] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  484.357684][T11452] bridge_slave_1: left allmulticast mode
[  484.377312][T11452] bridge_slave_1: left promiscuous mode
[  484.392415][T11452] bridge0: port 2(bridge_slave_1) entered disabled state
[  484.432366][T12447] Invalid ELF header magic: != ELF
[  484.477833][T11452] bridge_slave_0: left allmulticast mode
[  484.502607][T11452] bridge_slave_0: left promiscuous mode
[  484.522986][T11452] bridge0: port 1(bridge_slave_0) entered disabled state
[  484.892286][T12453] Falling back ldisc for pty19.
[  486.332151][T11452] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  486.349731][T11452] bond0 (unregistering): Released all slaves
[  486.980356][ T1090] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  487.005654][ T1090] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  487.111747][ T1090] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  487.147123][ T1090] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  487.288371][T11452] hsr_slave_0: left promiscuous mode
[  487.297649][T11452] hsr_slave_1: left promiscuous mode
[  487.316820][T11452] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  487.350685][T11452] batman_adv: batadv0: Removing interface: batadv_slave_0
[  487.382580][T11452] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  487.401322][T11452] batman_adv: batadv0: Removing interface: batadv_slave_1
[  487.466721][T11452] veth1_macvtap: left promiscuous mode
[  487.488662][T11452] veth0_macvtap: left promiscuous mode
[  487.494588][T11452] veth1_vlan: left promiscuous mode
[  487.504223][T11452] veth0_vlan: left promiscuous mode
[  487.739849][T12481] random: crng reseeded on system resumption
[  488.157514][T12485] netlink: 28 bytes leftover after parsing attributes in process `syz.6.1303'.
[  488.834333][T11452] team0 (unregistering): Port device team_slave_1 removed
[  488.921254][T11452] team0 (unregistering): Port device team_slave_0 removed
[  489.575995][T12485] veth0_macvtap: left promiscuous mode
[  489.599615][T12485] macvtap0: entered promiscuous mode
[  489.605000][T12485] macvtap0: entered allmulticast mode
[  490.398034][T12505] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1299'.
[  493.272279][T12565] device-mapper: ioctl: device name cannot contain '/'
[  494.223159][T12586] sp0: Synchronizing with TNC
[  495.131383][T12599] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1313'.
[  496.338370][   T30] audit: type=1800 audit(4294967458.089:13): pid=12629 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.1320" name="discovery_nqn" dev="configfs" ino=41127 res=0 errno=0
[  497.097330][T12644] netlink: zone id is out of range
[  497.114864][T12644] netlink: zone id is out of range
[  497.126091][T12644] netlink: zone id is out of range
[  497.160523][T12644] netlink: zone id is out of range
[  497.168547][T12644] netlink: zone id is out of range
[  497.378392][T12644] netlink: zone id is out of range
[  497.417764][T12644] netlink: zone id is out of range
[  497.498679][T12644] netlink: zone id is out of range
[  497.521801][T12644] netlink: zone id is out of range
[  497.589342][T12644] netlink: zone id is out of range
[  498.498104][T12670] nbd: must specify at least one socket
[  498.919689][T12700] device-mapper: ioctl: device name cannot contain '/'
[  499.157311][T12702] sp0: Synchronizing with TNC
[  499.947726][T12730] Unable to find swap-space signature
[  500.760103][   T30] audit: type=1326 audit(4294967462.509:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12740 comm="syz.5.1339" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f3ba298e969 code=0x0
[  500.781894][    C0] vkms_vblank_simulate: vblank timer overrun
[  501.261770][T12762] sp0: Synchronizing with TNC
[  501.963931][T12785] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1345'.
[  503.224638][T12808] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  504.777537][T12842] hub 8-0:1.0: USB hub found
[  504.791027][T12842] hub 8-0:1.0: 1 port detected
[  504.814557][T12855] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1364'.
[  505.357538][T12864] sp0: Synchronizing with TNC
[  505.952317][T12879] queue_state_write: unsupported operation ''
[  505.958494][T12879] queue_state_write: use 'run', 'start' or 'kick'
[  506.746990][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  506.753733][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  509.953845][T12971] sp0: Synchronizing with TNC
[  510.440011][T12963] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  510.449339][T12982] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1395'.
[  510.471257][T12963] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  510.488136][T12963] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  510.509482][T12963] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  510.521155][T12963] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  510.550584][T12963] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  511.171243][T13003] sp0: Synchronizing with TNC
[  511.813994][T13017] netlink: 28 bytes leftover after parsing attributes in process `syz.7.1403'.
[  511.939219][ T5832] Bluetooth: hci2: command 0x0c1a tx timeout
[  512.044184][T13017] bond0: (slave bond_slave_1): Releasing backup interface
[  512.499287][ T5832] Bluetooth: hci1: command 0x0c1a tx timeout
[  512.505429][T12211] Bluetooth: hci0: command 0x0c1a tx timeout
[  512.578917][ T5832] Bluetooth: hci3: command 0x0c1a tx timeout
[  512.586329][T13031] Invalid ELF header magic: != ELF
[  513.797293][T13052] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1410'.
[  514.658542][ T5832] Bluetooth: hci3: command 0x0c1a tx timeout
[  516.740349][ T5832] Bluetooth: hci3: command 0x0c1a tx timeout
[  519.090831][T12211] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18
[  520.264926][T13192] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1440'.
[  521.332845][T13226] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1445'.
[  521.448123][T13225] mkiss: ax0: crc mode is auto.
[  521.454859][T13225] netlink: 338 bytes leftover after parsing attributes in process `syz.5.1448'.
[  521.455456][T13224] netlink: 338 bytes leftover after parsing attributes in process `syz.5.1448'.
[  523.033371][T13270] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1454'.
[  543.515712][ T1090] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  543.601018][ T1090] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  543.706075][ T1090] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  543.861440][ T1090] bridge_slave_0: left allmulticast mode
[  543.869651][ T1090] bridge_slave_0: left promiscuous mode
[  543.875500][ T1090] bridge0: port 1(bridge_slave_0) entered disabled state
[  544.248835][ T1090] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  544.259922][ T1090] bond0 (unregistering): Released all slaves
[  544.631661][ T1090] hsr_slave_0: left promiscuous mode
[  544.637817][ T1090] hsr_slave_1: left promiscuous mode
[  544.674000][ T1090] veth1_macvtap: left promiscuous mode
[  544.679880][ T1090] veth0_macvtap: left promiscuous mode
[  544.686537][ T1090] veth1_vlan: left promiscuous mode
[  544.696870][ T1090] veth0_vlan: left promiscuous mode
[  545.203818][ T1090] team0 (unregistering): Port device team_slave_1 removed
[  568.185370][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  568.191850][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  629.624958][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  629.634102][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  684.021922][   T31] INFO: task jbd2/sda1-8:5166 blocked for more than 143 seconds.
[  684.029802][   T31]       Tainted: G     U              6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0
[  684.039491][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  684.049075][   T31] task:jbd2/sda1-8     state:D stack:26616 pid:5166  tgid:5166  ppid:2      task_flags:0x240040 flags:0x00004000
[  684.062262][   T31] Call Trace:
[  684.065592][   T31]  <TASK>
[  684.072005][   T31]  __schedule+0x116f/0x5de0
[  684.076585][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[  684.082755][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[  684.087789][   T31]  ? __pfx___schedule+0x10/0x10
[  684.092989][   T31]  ? find_held_lock+0x2b/0x80
[  684.097732][   T31]  ? schedule+0x2d7/0x3a0
[  684.102296][   T31]  schedule+0xe7/0x3a0
[  684.106444][   T31]  io_schedule+0xbf/0x130
[  684.111141][   T31]  bit_wait_io+0x15/0xe0
[  684.115702][   T31]  __wait_on_bit+0x62/0x180
[  684.123508][   T31]  ? __pfx_bit_wait_io+0x10/0x10
[  684.128618][   T31]  out_of_line_wait_on_bit+0xd9/0x110
[  684.134055][   T31]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[  684.143911][   T31]  ? __pfx_wake_bit_function+0x10/0x10
[  684.151298][   T31]  ? __pfx___might_resched+0x10/0x10
[  684.156659][   T31]  __wait_on_buffer+0x64/0x70
[  684.161824][   T31]  jbd2_journal_commit_transaction+0x382e/0x6830
[  684.168449][   T31]  ? __pfx_jbd2_journal_commit_transaction+0x10/0x10
[  684.175198][   T31]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  684.181279][   T31]  ? debug_object_deactivate+0x1ec/0x3a0
[  684.186976][   T31]  ? __pfx_debug_object_deactivate+0x10/0x10
[  684.193431][   T31]  ? find_held_lock+0x2b/0x80
[  684.198250][   T31]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  684.204645][   T31]  ? rcu_is_watching+0x12/0xc0
[  684.209728][   T31]  kjournald2+0x1f4/0x760
[  684.214154][   T31]  ? __pfx_kjournald2+0x10/0x10
[  684.219116][   T31]  ? find_held_lock+0x2b/0x80
[  684.223865][   T31]  ? __pfx_autoremove_wake_function+0x10/0x10
[  684.230110][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[  684.235381][   T31]  ? __kthread_parkme+0x19e/0x250
[  684.241072][   T31]  ? __pfx_kjournald2+0x10/0x10
[  684.246000][   T31]  kthread+0x3c2/0x780
[  684.250351][   T31]  ? __pfx_kthread+0x10/0x10
[  684.255538][   T31]  ? __pfx_kthread+0x10/0x10
[  684.260445][   T31]  ? __pfx_kthread+0x10/0x10
[  684.265101][   T31]  ? __pfx_kthread+0x10/0x10
[  684.270097][   T31]  ? rcu_is_watching+0x12/0xc0
[  684.274926][   T31]  ? __pfx_kthread+0x10/0x10
[  684.280147][   T31]  ret_from_fork+0x45/0x80
[  684.284661][   T31]  ? __pfx_kthread+0x10/0x10
[  684.289512][   T31]  ret_from_fork_asm+0x1a/0x30
[  684.294359][   T31]  </TASK>
[  684.297403][   T31] INFO: task syz-executor:5820 blocked for more than 143 seconds.
[  684.305837][   T31]       Tainted: G     U              6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0
[  684.315647][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  684.324376][   T31] task:syz-executor    state:D stack:23080 pid:5820  tgid:5820  ppid:5818   task_flags:0x440100 flags:0x00000002
[  684.336463][   T31] Call Trace:
[  684.340416][   T31]  <TASK>
[  684.344126][   T31]  __schedule+0x116f/0x5de0
[  684.348829][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[  684.353839][   T31]  ? __pfx___schedule+0x10/0x10
[  684.358891][   T31]  ? find_held_lock+0x2b/0x80
[  684.363630][   T31]  ? schedule+0x2d7/0x3a0
[  684.368044][   T31]  schedule+0xe7/0x3a0
[  684.372306][   T31]  io_schedule+0xbf/0x130
[  684.376685][   T31]  bit_wait_io+0x15/0xe0
[  684.381100][   T31]  __wait_on_bit+0x62/0x180
[  684.385661][   T31]  ? __pfx_bit_wait_io+0x10/0x10
[  684.390783][   T31]  out_of_line_wait_on_bit+0xd9/0x110
[  684.396220][   T31]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[  684.402294][   T31]  ? __pfx_wake_bit_function+0x10/0x10
[  684.407828][   T31]  do_get_write_access+0x93d/0x12a0
[  684.413192][   T31]  jbd2_journal_get_write_access+0x1d6/0x280
[  684.419664][   T31]  __ext4_journal_get_write_access+0x6a/0x340
[  684.425807][   T31]  ext4_reserve_inode_write+0x1be/0x320
[  684.431522][   T31]  __ext4_mark_inode_dirty+0x197/0x870
[  684.437048][   T31]  ? trace_kmem_cache_alloc+0x28/0xc0
[  684.442511][   T31]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[  684.449561][   T31]  ? rcu_is_watching+0x12/0xc0
[  684.454375][   T31]  ? trace_jbd2_handle_start+0x1a8/0x230
[  684.460103][   T31]  ? jbd2__journal_start+0xf6/0x6a0
[  684.465349][   T31]  ? __ext4_journal_start_sb+0x195/0x690
[  684.471142][   T31]  ? __ext4_journal_start_sb+0x19e/0x690
[  684.476849][   T31]  ? ext4_dirty_inode+0xa1/0x130
[  684.482006][   T31]  ? __pfx_ext4_dirty_inode+0x10/0x10
[  684.487433][   T31]  ext4_dirty_inode+0xd9/0x130
[  684.492349][   T31]  ? rcu_is_watching+0x12/0xc0
[  684.497175][   T31]  __mark_inode_dirty+0x1eb/0xe50
[  684.502394][   T31]  generic_update_time+0xcf/0xf0
[  684.507394][   T31]  file_update_time+0x17d/0x1c0
[  684.512526][   T31]  ext4_page_mkwrite+0x35e/0x1750
[  684.517605][   T31]  ? anon_pipe_read+0xc85/0x1210
[  684.522647][   T31]  ? __pfx_ext4_page_mkwrite+0x10/0x10
[  684.528269][   T31]  ? vm_normal_page+0x13b/0x2b0
[  684.533178][   T31]  ? find_held_lock+0x2b/0x80
[  684.537920][   T31]  ? find_held_lock+0x2b/0x80
[  684.543283][   T31]  do_page_mkwrite+0x171/0x380
[  684.549045][   T31]  do_wp_page+0xb9e/0x58e0
[  684.553756][   T31]  ? __pfx_do_wp_page+0x10/0x10
[  684.558777][   T31]  ? do_raw_spin_lock+0x12c/0x2b0
[  684.563870][   T31]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  684.569346][   T31]  ? ___pte_offset_map+0x1bc/0x540
[  684.574520][   T31]  __handle_mm_fault+0x1ada/0x2a40
[  684.579821][   T31]  ? __pfx___handle_mm_fault+0x10/0x10
[  684.585363][   T31]  ? lock_vma_under_rcu+0x47d/0x970
[  684.590673][   T31]  ? lock_vma_under_rcu+0x47d/0x970
[  684.595950][   T31]  handle_mm_fault+0x3fe/0xad0
[  684.600900][   T31]  do_user_addr_fault+0x60c/0x1370
[  684.606081][   T31]  exc_page_fault+0x5c/0xc0
[  684.610698][   T31]  asm_exc_page_fault+0x26/0x30
[  684.615604][   T31] RIP: 0033:0x7faaea2689c5
[  684.620193][   T31] RSP: 002b:00007ffc27ce9ef0 EFLAGS: 00010206
[  684.626303][   T31] RAX: 00007faae63828c0 RBX: 00007ffc27ce9ff0 RCX: 0000000000000000
[  684.634360][   T31] RDX: 00007faae63828bc RSI: 0000000000000008 RDI: 00007ffc27ce9ff0
[  684.642439][   T31] RBP: 00000000000003e6 R08: 0000000000000000 R09: 0000000000000000
[  684.651729][   T31] R10: 00007ffc27ce9fd0 R11: 0000000000000000 R12: 0000000000000000
[  684.659971][   T31] R13: 000000000007d740 R14: fffffffffff828c0 R15: 000000000007d740
[  684.668165][   T31]  </TASK>
[  684.672106][   T31] INFO: task kworker/u8:17:7729 blocked for more than 144 seconds.
[  684.680353][   T31]       Tainted: G     U              6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0
[  684.689696][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  684.698482][   T31] task:kworker/u8:17   state:D stack:23224 pid:7729  tgid:7729  ppid:2      task_flags:0x4248160 flags:0x00004000
[  684.710630][   T31] Workqueue: writeback wb_workfn (flush-8:0)
[  684.716678][   T31] Call Trace:
[  684.720063][   T31]  <TASK>
[  684.723029][   T31]  __schedule+0x116f/0x5de0
[  684.727593][   T31]  ? blk_mq_flush_plug_list+0x75a/0x1c70
[  684.733332][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[  684.738395][   T31]  ? __pfx___schedule+0x10/0x10
[  684.743299][   T31]  ? __blk_flush_plug+0x2f3/0x4b0
[  684.748449][   T31]  ? find_held_lock+0x2b/0x80
[  684.754114][   T31]  ? schedule+0x2d7/0x3a0
[  684.758875][   T31]  schedule+0xe7/0x3a0
[  684.763029][   T31]  io_schedule+0xbf/0x130
[  684.767381][   T31]  bit_wait_io+0x15/0xe0
[  684.771725][   T31]  __wait_on_bit_lock+0x112/0x1a0
[  684.776792][   T31]  ? __pfx_bit_wait_io+0x10/0x10
[  684.781825][   T31]  out_of_line_wait_on_bit_lock+0xd9/0x110
[  684.787679][   T31]  ? __pfx_out_of_line_wait_on_bit_lock+0x10/0x10
[  684.794176][   T31]  ? __pfx_wake_bit_function+0x10/0x10
[  684.799764][   T31]  ? __pfx___might_resched+0x10/0x10
[  684.805103][   T31]  __lock_buffer+0x67/0x70
[  684.809611][   T31]  do_get_write_access+0x8cd/0x12a0
[  684.814862][   T31]  ? jbd2_write_access_granted+0x61/0x3d0
[  684.820671][   T31]  jbd2_journal_get_write_access+0x1d6/0x280
[  684.826702][   T31]  __ext4_journal_get_write_access+0x6a/0x340
[  684.833189][   T31]  ext4_mb_mark_context+0x175/0xd40
[  684.838759][   T31]  ? find_held_lock+0x2b/0x80
[  684.843567][   T31]  ? __pfx_ext4_mb_mark_context+0x10/0x10
[  684.849378][   T31]  ext4_mb_mark_diskspace_used+0x466/0x8c0
[  684.856004][   T31]  ? ext4_mb_use_preallocated.constprop.0+0xec/0x1550
[  684.862925][   T31]  ? __pfx_ext4_mb_mark_diskspace_used+0x10/0x10
[  684.869832][   T31]  ? ext4_mb_new_blocks+0x977/0x4f00
[  684.875205][   T31]  ext4_mb_new_blocks+0xa5b/0x4f00
[  684.880500][   T31]  ? __pfx___might_resched+0x10/0x10
[  684.885876][   T31]  ? bh_uptodate_or_lock+0x3c/0x140
[  684.891152][   T31]  ? __read_extent_tree_block+0x2ca/0x640
[  684.896933][   T31]  ? __pfx_ext4_mb_new_blocks+0x10/0x10
[  684.902714][   T31]  ? ext4_ext_search_right+0x2c2/0xb90
[  684.908300][   T31]  ext4_ext_map_blocks+0x1b95/0x5d60
[  684.913638][   T31]  ? stack_trace_save+0x8e/0xc0
[  684.918623][   T31]  ? __pfx_stack_trace_save+0x10/0x10
[  684.924049][   T31]  ? __pfx_ext4_ext_map_blocks+0x10/0x10
[  684.929789][   T31]  ? __kasan_slab_alloc+0x89/0x90
[  684.934953][   T31]  ? ext4_do_writepages+0x1432/0x3490
[  684.940478][   T31]  ? __pfx___might_resched+0x10/0x10
[  684.945822][   T31]  ? __pfx_down_write+0x10/0x10
[  684.950758][   T31]  ? ext4_es_lookup_extent+0xc7/0xc50
[  684.957088][   T31]  ext4_map_blocks+0x45b/0x1390
[  684.962086][   T31]  ? __pfx_ext4_map_blocks+0x10/0x10
[  684.967425][   T31]  ? trace_kmem_cache_alloc+0x28/0xc0
[  684.972913][   T31]  ? kmem_cache_alloc_noprof+0x21e/0x3b0
[  684.979020][   T31]  ext4_do_writepages+0x1a2c/0x3490
[  684.984388][   T31]  ? __pfx_ext4_do_writepages+0x10/0x10
[  684.990062][   T31]  ? ext4_writepages+0x37a/0x7d0
[  684.995065][   T31]  ext4_writepages+0x37a/0x7d0
[  684.999961][   T31]  ? __pfx_ext4_writepages+0x10/0x10
[  685.005330][   T31]  ? blk_finish_plug+0x16/0xa0
[  685.010201][   T31]  ? __pfx_ext4_writepages+0x10/0x10
[  685.015554][   T31]  do_writepages+0x1b2/0x820
[  685.020263][   T31]  ? __pfx_do_writepages+0x10/0x10
[  685.025414][   T31]  ? __lock_acquire+0xaa4/0x1ba0
[  685.030448][   T31]  ? reacquire_held_locks+0xcd/0x1f0
[  685.035784][   T31]  __writeback_single_inode+0x160/0xfb0
[  685.041432][   T31]  ? __pfx___writeback_single_inode+0x10/0x10
[  685.047549][   T31]  ? do_raw_spin_unlock+0x172/0x230
[  685.052838][   T31]  writeback_sb_inodes+0x601/0xf90
[  685.058098][   T31]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  685.065468][   T31]  ? __pfx___up_read+0x10/0x10
[  685.071012][   T31]  ? __writeback_inodes_wb+0x104/0x2d0
[  685.076558][   T31]  __writeback_inodes_wb+0xf8/0x2d0
[  685.081891][   T31]  ? __pfx___writeback_inodes_wb+0x10/0x10
[  685.087845][   T31]  ? queue_io+0x3f6/0x520
[  685.092526][   T31]  wb_writeback+0x7f3/0xb70
[  685.097104][   T31]  ? __pfx_wb_writeback+0x10/0x10
[  685.102438][   T31]  ? get_nr_dirty_inodes+0x170/0x1e0
[  685.107802][   T31]  wb_workfn+0x8ca/0xbe0
[  685.112135][   T31]  ? try_to_wake_up+0x157/0x1680
[  685.117112][   T31]  ? __pfx_wb_workfn+0x10/0x10
[  685.122000][   T31]  ? rcu_is_watching+0x12/0xc0
[  685.126815][   T31]  process_one_work+0x9cc/0x1b70
[  685.131861][   T31]  ? __pfx_process_one_work+0x10/0x10
[  685.137339][   T31]  ? assign_work+0x1a0/0x250
[  685.142068][   T31]  worker_thread+0x6c8/0xf10
[  685.146747][   T31]  ? __pfx_worker_thread+0x10/0x10
[  685.151980][   T31]  kthread+0x3c2/0x780
[  685.156107][   T31]  ? __pfx_kthread+0x10/0x10
[  685.160809][   T31]  ? __pfx_kthread+0x10/0x10
[  685.166255][   T31]  ? __pfx_kthread+0x10/0x10
[  685.170981][   T31]  ? __pfx_kthread+0x10/0x10
[  685.175682][   T31]  ? rcu_is_watching+0x12/0xc0
[  685.180576][   T31]  ? __pfx_kthread+0x10/0x10
[  685.185220][   T31]  ret_from_fork+0x45/0x80
[  685.189737][   T31]  ? __pfx_kthread+0x10/0x10
[  685.194381][   T31]  ret_from_fork_asm+0x1a/0x30
[  685.199296][   T31]  </TASK>
[  685.202369][   T31] INFO: task syz.6.1459:13290 blocked for more than 144 seconds.
[  685.210466][   T31]       Tainted: G     U              6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0
[  685.219774][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  685.228534][   T31] task:syz.6.1459      state:D stack:27416 pid:13290 tgid:13290 ppid:12094  task_flags:0x440040 flags:0x00000004
[  685.240699][   T31] Call Trace:
[  685.243993][   T31]  <TASK>
[  685.246952][   T31]  __schedule+0x116f/0x5de0
[  685.251589][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[  685.256639][   T31]  ? __pfx___schedule+0x10/0x10
[  685.261644][   T31]  ? find_held_lock+0x2b/0x80
[  685.267245][   T31]  ? schedule+0x2d7/0x3a0
[  685.271730][   T31]  schedule+0xe7/0x3a0
[  685.275857][   T31]  io_schedule+0xbf/0x130
[  685.280297][   T31]  bit_wait_io+0x15/0xe0
[  685.284608][   T31]  __wait_on_bit+0x62/0x180
[  685.289385][   T31]  ? __pfx_bit_wait_io+0x10/0x10
[  685.294369][   T31]  out_of_line_wait_on_bit+0xd9/0x110
[  685.300465][   T31]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[  685.306731][   T31]  ? __pfx_wake_bit_function+0x10/0x10
[  685.312443][   T31]  do_get_write_access+0x93d/0x12a0
[  685.317716][   T31]  jbd2_journal_get_write_access+0x1d6/0x280
[  685.324087][   T31]  __ext4_journal_get_write_access+0x6a/0x340
[  685.330579][   T31]  ext4_reserve_inode_write+0x1be/0x320
[  685.336218][   T31]  __ext4_mark_inode_dirty+0x197/0x870
[  685.341844][   T31]  ? trace_kmem_cache_alloc+0x28/0xc0
[  685.347279][   T31]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[  685.353470][   T31]  ? rcu_is_watching+0x12/0xc0
[  685.358400][   T31]  ? trace_jbd2_handle_start+0x1a8/0x230
[  685.364058][   T31]  ? jbd2__journal_start+0xf6/0x6a0
[  685.369749][   T31]  ? __ext4_journal_start_sb+0x195/0x690
[  685.375535][   T31]  ? __ext4_journal_start_sb+0x19e/0x690
[  685.382000][   T31]  ? ext4_dirty_inode+0xa1/0x130
[  685.386989][   T31]  ? __pfx_ext4_dirty_inode+0x10/0x10
[  685.392488][   T31]  ext4_dirty_inode+0xd9/0x130
[  685.397304][   T31]  ? rcu_is_watching+0x12/0xc0
[  685.402214][   T31]  __mark_inode_dirty+0x1eb/0xe50
[  685.407450][   T31]  generic_update_time+0xcf/0xf0
[  685.412600][   T31]  file_update_time+0x17d/0x1c0
[  685.417522][   T31]  ext4_page_mkwrite+0x35e/0x1750
[  685.422723][   T31]  ? __pfx_ext4_page_mkwrite+0x10/0x10
[  685.428307][   T31]  do_page_mkwrite+0x171/0x380
[  685.433127][   T31]  do_pte_missing+0x29c/0x3fb0
[  685.437913][   T31]  ? __handle_mm_fault+0x1010/0x2a40
[  685.443336][   T31]  __handle_mm_fault+0x103d/0x2a40
[  685.448579][   T31]  ? __pfx___handle_mm_fault+0x10/0x10
[  685.454075][   T31]  ? lock_vma_under_rcu+0x47d/0x970
[  685.459553][   T31]  ? lock_vma_under_rcu+0x47d/0x970
[  685.464838][   T31]  handle_mm_fault+0x3fe/0xad0
[  685.470034][   T31]  do_user_addr_fault+0x60c/0x1370
[  685.475202][   T31]  exc_page_fault+0x5c/0xc0
[  685.479823][   T31]  asm_exc_page_fault+0x26/0x30
[  685.485287][   T31] RIP: 0033:0x7f8a4126eada
[  685.489809][   T31] RSP: 002b:00007ffc9b76e260 EFLAGS: 00010202
[  685.496115][   T31] RAX: 0000001b2f115000 RBX: 00007f8a420e5720 RCX: 0000001b2f114ff8
[  685.504473][   T31] RDX: 0000001b2eb2021c RSI: 0000000000000008 RDI: 00007f8a420e5720
[  685.512721][   T31] RBP: ffffffff81ff0feb R08: 00007f8a415b6038 R09: 00007f8a415a2000
[  685.521094][   T31] R10: 00007f8a409ff008 R11: 0000000000000002 R12: 0000000000000002
[  685.529141][   T31] R13: 000000000000038c R14: ffffffff81ff0286 R15: 0000000000000e3f
[  685.537160][   T31]  ? pcpu_memcg_post_alloc_hook+0x3d6/0x740
[  685.543242][   T31]  ? pcpu_alloc_noprof+0x9eb/0x1470
[  685.548623][   T31]  </TASK>
[  685.551843][   T31] INFO: task syz.3.1460:13295 blocked for more than 144 seconds.
[  685.559703][   T31]       Tainted: G     U              6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0
[  685.569030][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  685.577979][   T31] task:syz.3.1460      state:D stack:26488 pid:13295 tgid:13295 ppid:5838   task_flags:0x440040 flags:0x00000004
[  685.591245][   T31] Call Trace:
[  685.594573][   T31]  <TASK>
[  685.597526][   T31]  __schedule+0x116f/0x5de0
[  685.602209][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[  685.607316][   T31]  ? __pfx___schedule+0x10/0x10
[  685.612257][   T31]  ? find_held_lock+0x2b/0x80
[  685.617059][   T31]  ? schedule+0x2d7/0x3a0
[  685.621487][   T31]  schedule+0xe7/0x3a0
[  685.625601][   T31]  io_schedule+0xbf/0x130
[  685.630009][   T31]  bit_wait_io+0x15/0xe0
[  685.634308][   T31]  __wait_on_bit+0x62/0x180
[  685.638940][   T31]  ? __pfx_bit_wait_io+0x10/0x10
[  685.643944][   T31]  out_of_line_wait_on_bit+0xd9/0x110
[  685.649445][   T31]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[  685.655511][   T31]  ? __pfx_wake_bit_function+0x10/0x10
[  685.661075][   T31]  do_get_write_access+0x93d/0x12a0
[  685.666333][   T31]  jbd2_journal_get_write_access+0x1d6/0x280
[  685.672417][   T31]  __ext4_journal_get_write_access+0x6a/0x340
[  685.679004][   T31]  ext4_reserve_inode_write+0x1be/0x320
[  685.684634][   T31]  __ext4_mark_inode_dirty+0x197/0x870
[  685.690938][   T31]  ? trace_kmem_cache_alloc+0x28/0xc0
[  685.696477][   T31]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[  685.702697][   T31]  ? rcu_is_watching+0x12/0xc0
[  685.707595][   T31]  ? trace_jbd2_handle_start+0x1a8/0x230
[  685.713449][   T31]  ? jbd2__journal_start+0xf6/0x6a0
[  685.718723][   T31]  ? __ext4_journal_start_sb+0x195/0x690
[  685.724472][   T31]  ? __ext4_journal_start_sb+0x19e/0x690
[  685.730196][   T31]  ? ext4_dirty_inode+0xa1/0x130
[  685.735188][   T31]  ? __pfx_ext4_dirty_inode+0x10/0x10
[  685.740742][   T31]  ext4_dirty_inode+0xd9/0x130
[  685.745565][   T31]  ? rcu_is_watching+0x12/0xc0
[  685.750430][   T31]  __mark_inode_dirty+0x1eb/0xe50
[  685.755527][   T31]  generic_update_time+0xcf/0xf0
[  685.760611][   T31]  file_update_time+0x17d/0x1c0
[  685.765528][   T31]  ext4_page_mkwrite+0x35e/0x1750
[  685.770668][   T31]  ? __pfx_ext4_page_mkwrite+0x10/0x10
[  685.776497][   T31]  ? __pfx_filemap_map_pages+0x10/0x10
[  685.782079][   T31]  ? pte_alloc_one+0x2b1/0x380
[  685.786953][   T31]  do_page_mkwrite+0x171/0x380
[  685.792572][   T31]  do_pte_missing+0x29c/0x3fb0
[  685.797401][   T31]  __handle_mm_fault+0x103d/0x2a40
[  685.802672][   T31]  ? __pfx___handle_mm_fault+0x10/0x10
[  685.808180][   T31]  ? lock_vma_under_rcu+0x47d/0x970
[  685.813633][   T31]  ? lock_vma_under_rcu+0x47d/0x970
[  685.819080][   T31]  handle_mm_fault+0x3fe/0xad0
[  685.823901][   T31]  do_user_addr_fault+0x60c/0x1370
[  685.829099][   T31]  exc_page_fault+0x5c/0xc0
[  685.833650][   T31]  asm_exc_page_fault+0x26/0x30
[  685.838615][   T31] RIP: 0033:0x7f77aa06eada
[  685.843065][   T31] RSP: 002b:00007ffd0456f540 EFLAGS: 00010202
[  685.849219][   T31] RAX: 0000001b30520000 RBX: 00007f77aaee5720 RCX: 0000001b3051fff8
[  685.857258][   T31] RDX: 00000000003ffde8 RSI: 00000000003ffde8 RDI: 00007f77aaee5700
[  685.865825][   T31] RBP: ffffffff893a6f4b R08: 00007f77aa3b6118 R09: 00007f77aa3a2000
[  685.874158][   T31] R10: 00007f77a93fd008 R11: 0000000000000001 R12: 0000000000000001
[  685.882532][   T31] R13: 0000000000000001 R14: ffffffff893a6621 R15: 0000000000000001
[  685.890619][   T31]  ? __x64_sys_socket+0x11/0xb0
[  685.896051][   T31]  ? __ia32_sys_socketpair+0xfb/0x100
[  685.901616][   T31]  </TASK>
[  685.904678][   T31] 
[  685.904678][   T31] Showing all locks held in the system:
[  685.912483][   T31] 1 lock held by khungtaskd/31:
[  685.917491][   T31]  #0: ffffffff8e3bf440 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x36/0x1c0
[  685.927467][   T31] 6 locks held by kworker/u8:6/1090:
[  685.932838][   T31] 3 locks held by syz-executor/5820:
[  685.938167][   T31]  #0: ffff888028954088 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370
[  685.954387][   T31]  #1: ffff888033d66518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380
[  685.964121][   T31]  #2: ffff88803049a950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410
[  685.975214][   T31] 6 locks held by kworker/u8:17/7729:
[  685.980970][   T31]  #0: ffff88801c6f7948 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[  685.991900][   T31]  #1: ffffc9000458fd18 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[  686.004423][   T31]  #2: ffff888033d660e0 (&type->s_umount_key#31){++++}-{4:4}, at: super_trylock_shared+0x1e/0xf0
[  686.015160][   T31]  #3: ffff888030498b98 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: do_writepages+0x1b2/0x820
[  686.025777][   T31]  #4: ffff88803049a950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410
[  686.035527][   T31]  #5: ffff88807c768cb0 (&ei->i_data_sem){++++}-{4:4}, at: ext4_map_blocks+0x355/0x1390
[  686.045491][   T31] 3 locks held by kworker/0:3H/9544:
[  686.050896][   T31]  #0: ffff888021af5d48 ((wq_completion)kblockd){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[  686.061577][   T31]  #1: ffffc9000475fd18 ((work_completion)(&q->timeout_work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[  686.073474][   T31]  #2: ffffffff8e3ca978 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x280/0x3c0
[  686.083932][   T31] 2 locks held by getty/11570:
[  686.088843][   T31]  #0: ffff888035fc20a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80
[  686.099641][   T31]  #1: ffffc90011c732f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x41b/0x14f0
[  686.110210][   T31] 3 locks held by syz.6.1459/13290:
[  686.115440][   T31]  #0: ffff88805d166948 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370
[  686.124988][   T31]  #1: ffff888033d66518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380
[  686.134672][   T31]  #2: ffff88803049a950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410
[  686.144386][   T31] 3 locks held by syz.3.1460/13295:
[  686.149668][   T31]  #0: ffff88804e3f41c8 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370
[  686.159126][   T31]  #1: ffff888033d66518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380
[  686.168778][   T31]  #2: ffff88803049a950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410
[  686.178587][   T31] 
[  686.180956][   T31] =============================================
[  686.180956][   T31] 
[  686.191084][   T31] NMI backtrace for cpu 1
[  686.191116][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Tainted: G     U              6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[  686.191162][   T31] Tainted: [U]=USER
[  686.191172][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  686.191190][   T31] Call Trace:
[  686.191200][   T31]  <TASK>
[  686.191212][   T31]  dump_stack_lvl+0x116/0x1f0
[  686.191253][   T31]  nmi_cpu_backtrace+0x27b/0x390
[  686.191301][   T31]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  686.191337][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  686.191385][   T31]  nmi_trigger_cpumask_backtrace+0x29c/0x300
[  686.191441][   T31]  watchdog+0xf70/0x12c0
[  686.191489][   T31]  ? __pfx_watchdog+0x10/0x10
[  686.191526][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[  686.191565][   T31]  ? __kthread_parkme+0x19e/0x250
[  686.191622][   T31]  ? __pfx_watchdog+0x10/0x10
[  686.191662][   T31]  kthread+0x3c2/0x780
[  686.191706][   T31]  ? __pfx_kthread+0x10/0x10
[  686.191748][   T31]  ? __pfx_kthread+0x10/0x10
[  686.191789][   T31]  ? __pfx_kthread+0x10/0x10
[  686.191830][   T31]  ? __pfx_kthread+0x10/0x10
[  686.191869][   T31]  ? rcu_is_watching+0x12/0xc0
[  686.191898][   T31]  ? __pfx_kthread+0x10/0x10
[  686.191942][   T31]  ret_from_fork+0x45/0x80
[  686.191989][   T31]  ? __pfx_kthread+0x10/0x10
[  686.192034][   T31]  ret_from_fork_asm+0x1a/0x30
[  686.192096][   T31]  </TASK>
[  686.192107][   T31] Sending NMI from CPU 1 to CPUs 0:
[  686.337950][    C0] NMI backtrace for cpu 0
[  686.337972][    C0] CPU: 0 UID: 0 PID: 64 Comm: kworker/u8:4 Tainted: G     U              6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[  686.338010][    C0] Tainted: [U]=USER
[  686.338018][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  686.338035][    C0] Workqueue: events_unbound toggle_allocation_gate
[  686.338067][    C0] RIP: 0010:smp_call_function_many_cond+0x8c/0x1290
[  686.338108][    C0] Code: d2 0f 85 66 0f 00 00 44 8b 2d 74 a5 d6 0e 31 ff 44 89 ee e8 f6 0d 0c 00 45 85 ed 74 20 e8 ac 12 0c 00 65 44 8b 2d 4c b5 f4 11 <31> ff 44 89 ee e8 da 0d 0c 00 45 85 ed 0f 84 c6 05 00 00 e8 8c 12
[  686.338132][    C0] RSP: 0018:ffffc90001567938 EFLAGS: 00000293
[  686.338150][    C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff81ae982a
[  686.338167][    C0] RDX: ffff88801cfe0000 RSI: ffffffff81ae9834 RDI: 0000000000000005
[  686.338183][    C0] RBP: ffffffff90850e10 R08: 0000000000000005 R09: 0000000000000000
[  686.338203][    C0] R10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000003
[  686.338219][    C0] R13: 0000000000000000 R14: 0000000000000000 R15: ffffffff90853d94
[  686.338237][    C0] FS:  0000000000000000(0000) GS:ffff8881249ef000(0000) knlGS:0000000000000000
[  686.338262][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  686.338279][    C0] CR2: 00007f3fb4f37580 CR3: 000000000e180000 CR4: 00000000003526f0
[  686.338295][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  686.338309][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  686.338325][    C0] Call Trace:
[  686.338332][    C0]  <TASK>
[  686.338342][    C0]  ? __pfx_do_sync_core+0x10/0x10
[  686.338376][    C0]  ? __pfx_do_sync_core+0x10/0x10
[  686.338403][    C0]  on_each_cpu_cond_mask+0x40/0x90
[  686.338440][    C0]  text_poke_bp_batch+0x657/0x760
[  686.338471][    C0]  ? __kmalloc_node_track_caller_noprof+0xec/0x510
[  686.338503][    C0]  ? __pfx_text_poke_bp_batch+0x10/0x10
[  686.338533][    C0]  ? __jump_label_patch+0x1db/0x400
[  686.338569][    C0]  ? arch_jump_label_transform_queue+0xc0/0x120
[  686.338606][    C0]  ? find_held_lock+0x2b/0x80
[  686.338632][    C0]  text_poke_finish+0x30/0x40
[  686.338661][    C0]  arch_jump_label_transform_apply+0x1c/0x30
[  686.338697][    C0]  jump_label_update+0x376/0x550
[  686.338725][    C0]  static_key_disable_cpuslocked+0x158/0x1c0
[  686.338753][    C0]  static_key_disable+0x1a/0x20
[  686.338778][    C0]  toggle_allocation_gate+0x145/0x280
[  686.338805][    C0]  ? __pfx_toggle_allocation_gate+0x10/0x10
[  686.338833][    C0]  ? __pfx_autoremove_wake_function+0x10/0x10
[  686.338870][    C0]  ? rcu_is_watching+0x12/0xc0
[  686.338895][    C0]  process_one_work+0x9cc/0x1b70
[  686.338940][    C0]  ? __pfx_process_one_work+0x10/0x10
[  686.338983][    C0]  ? assign_work+0x1a0/0x250
[  686.339018][    C0]  worker_thread+0x6c8/0xf10
[  686.339063][    C0]  ? __pfx_worker_thread+0x10/0x10
[  686.339100][    C0]  kthread+0x3c2/0x780
[  686.339134][    C0]  ? __pfx_kthread+0x10/0x10
[  686.339166][    C0]  ? __pfx_kthread+0x10/0x10
[  686.339199][    C0]  ? __pfx_kthread+0x10/0x10
[  686.339232][    C0]  ? __pfx_kthread+0x10/0x10
[  686.339276][    C0]  ? rcu_is_watching+0x12/0xc0
[  686.339297][    C0]  ? __pfx_kthread+0x10/0x10
[  686.339329][    C0]  ret_from_fork+0x45/0x80
[  686.339365][    C0]  ? __pfx_kthread+0x10/0x10
[  686.339397][    C0]  ret_from_fork_asm+0x1a/0x30
[  686.339439][    C0]  </TASK>
[  686.339970][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[  686.339995][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Tainted: G     U              6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[  686.340043][   T31] Tainted: [U]=USER
[  686.340055][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  686.340073][   T31] Call Trace:
[  686.340085][   T31]  <TASK>
[  686.340096][   T31]  dump_stack_lvl+0x3d/0x1f0
[  686.340139][   T31]  panic+0x71c/0x800
[  686.340185][   T31]  ? __pfx_panic+0x10/0x10
[  686.340229][   T31]  ? preempt_schedule_thunk+0x16/0x30
[  686.340286][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  686.340336][   T31]  ? preempt_schedule_thunk+0x16/0x30
[  686.340390][   T31]  ? watchdog+0xdda/0x12c0
[  686.340432][   T31]  ? watchdog+0xdcd/0x12c0
[  686.340477][   T31]  watchdog+0xdeb/0x12c0
[  686.340527][   T31]  ? __pfx_watchdog+0x10/0x10
[  686.340566][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[  686.340614][   T31]  ? __kthread_parkme+0x19e/0x250
[  686.340654][   T31]  ? __pfx_watchdog+0x10/0x10
[  686.340695][   T31]  kthread+0x3c2/0x780
[  686.340741][   T31]  ? __pfx_kthread+0x10/0x10
[  686.340783][   T31]  ? __pfx_kthread+0x10/0x10
[  686.340845][   T31]  ? __pfx_kthread+0x10/0x10
[  686.340889][   T31]  ? __pfx_kthread+0x10/0x10
[  686.340936][   T31]  ? rcu_is_watching+0x12/0xc0
[  686.340967][   T31]  ? __pfx_kthread+0x10/0x10
[  686.341017][   T31]  ret_from_fork+0x45/0x80
[  686.341068][   T31]  ? __pfx_kthread+0x10/0x10
[  686.341113][   T31]  ret_from_fork_asm+0x1a/0x30
[  686.341180][   T31]  </TASK>
[  686.818013][   T31] Kernel Offset: disabled
[  686.822371][   T31] Rebooting in 86400 seconds..