last executing test programs:

10.705555317s ago: executing program 1 (id=5368):
r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
write$auto_console_fops_tty_io(r0, &(0x7f00000004c0)="4add69b6440843b6e6688a2b5ad9df2669e6f9cd236532b20ed763ac8caf4bde4c30b530ac6ebbff950e1a647d6a08a1b55dde5a409b4b715d7d298664380724fa174efe0ed017ffd6a1e17e51826ebd6ce6213a412f329a1f143f9629443e10c1ad4ea8f37f291debbdb36251d93f673ab867e99724bb21cf7177e0ad8dc9638a47429b3344", 0x86)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000040), r1)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x63a9aa5e00aa1846, 0x0)

10.452735429s ago: executing program 1 (id=5370):
r0 = socket(0x0, 0x2, 0x100)
ioperm$auto(0x0, 0x5ad2, 0x808)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
pread64$auto(r0, 0x0, 0x100, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r2 = socket(0x21, 0x3, 0x9)
r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$auto_NBD_CMD_STATUS(r3, 0x0, 0x40)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0x1d, 0x8fd6, 0x400000000000948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x3, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x83, 0x0, 0x6945, 0xeb1, 0x405, 0x8000)
unshare$auto(0x40000080)
process_mrelease$auto(0xffffffffffffffff, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0x9, 0xb5, 0x200, 0x4, 0x4, 0xffffffffffffffff, 0xa, "2af051b26b658a20d8dc6b36c83ce63f", 0x0, 0xffffffffffffffff, 0x5, 0x7, 0x7, 0x6}, 0x10)
bpf$auto(0x1b, &(0x7f0000000380)=@task_fd_query={0x0, 0xffffffffffffffff, 0x400002, 0x5, 0x4, 0x8, r2, 0x8, 0x4}, 0x92)
openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, 0x0, 0x50b41, 0x0)
msync$auto(0x1ffff000, 0x18000003f000000, 0x400000004)
open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84)
mount$auto(0x0, &(0x7f0000001500)='./file0\x00', &(0x7f0000001540)='cifs\x00', 0x8002, 0x0)
mincore$auto(0x1000, 0x8001, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x59, 0x0)
openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000000)='/dev/usbmon0\x00', 0x640, 0x0)

8.635479641s ago: executing program 0 (id=5377):
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/thread-self/net/netfilter/nf_log\x00', 0x101000, 0x0)
socket(0x2, 0x2, 0x1)
bind$auto(0x3, &(0x7f0000000040)=@ethernet, 0x1)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0)
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
mmap$auto(0x0, 0x5810, 0xffb, 0x8000000008011, 0x3, 0x0)
ioctl$auto_SNDCTL_DSP_SPEED(r1, 0xc0045002, 0x0)
madvise$auto(0x0, 0x2003f0, 0x15)
preadv$auto(0x40000000000003, 0x0, 0x6, 0x3f, 0x5)
r2 = openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000003640)='/proc/self/numa_maps\x00', 0x40080, 0x0)
mmap$auto(0x0, 0xdb3, 0xdf, 0xeb1, 0x401, 0x8000)
r3 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x400008, 0x2, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x4, 0x14000000000df, 0x40eb2, r3, 0x300000000000)
lseek$auto(r2, 0x7ff, 0x1)
pread64$auto(r0, 0x0, 0x8, 0xffff)

7.594383689s ago: executing program 0 (id=5378):
mmap$auto(0x8000000000000000, 0x2020009, 0x0, 0xeb1, 0xfffffffffffffffa, 0x3ff)
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/flags\x00', 0x101142, 0x0)
socket(0x10, 0x2, 0x0)
fstat$auto(r0, &(0x7f0000000000)={0x5, 0x80000003, 0x1, 0x100, 0x0, 0x0, 0x0, 0xffffffffffffff91, 0x8000fd3, 0x2, 0xef, 0x4, 0x80040000081, 0xfffffffffffffff9, 0x2, 0xfffffffffffffff7, 0x63})
syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYBLOB="1a0027"], 0x1ac}, 0x1, 0x0, 0x0, 0x4001}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x4048841)
sendmmsg$auto(r0, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0x8c4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x10001, 0x1)
r1 = socket(0x2, 0x1, 0x106)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/asound/card1/pcm1p/sub0/status\x00', 0x20100, 0x0)
pread64$auto(r2, 0x0, 0x1, 0x2)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x3}, 0x55)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmsg$auto_NL80211_CMD_GET_MPATH(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x18}, 0x1, 0x0, 0x0, 0x4000004}, 0x8000)
write$auto(0x3, 0x0, 0x7fffffff)
mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000)
write$auto(0xca, 0x0, 0x1ff)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000340), 0x108800, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, 0x0, 0x100, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x2, 0x2)
r4 = prctl$auto_PR_SCHED_CORE_GET(0x7fffffff, 0x0, 0xffffffffffffffff, 0x5a, 0x1)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'pimreg\x00'})
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x80102, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
unshare$auto(0x40000080)

7.57230677s ago: executing program 1 (id=5379):
mmap$auto(0x0, 0x2020009, 0x3, 0x8000000000000011, 0xfffffffffffffffa, 0x8000)
mq_notify$auto(0xffffffffffffffff, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000)
socket(0x2b, 0x1, 0x7)
mmap$auto(0x0, 0x800, 0xdc, 0xcb1, 0x401, 0x8000)
mmap$auto(0x0, 0x9, 0x4, 0x8b72, 0x1000000002, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x9, 0xeb1, 0xfffefffffffffffa, 0x8000)
getsockopt$auto(r0, 0x10e, 0xb, 0x0, 0x0)
rseq$auto(&(0x7f0000000340)={0xe, 0x401, 0x0, 0x806, 0xffffffff, 0x2}, 0x8000, 0x0, 0x8000006)
close_range$auto(0x2, 0x8, 0x0)
madvise$auto(0x110c234000, 0x1, 0x9)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
msgget$auto(0x0, 0x5)
msgsnd$auto(0x0, &(0x7f0000000000)={0x1, 0x5}, 0x8, 0x7)
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x80f02, 0x0)
ioctl$auto_SNDCTL_DSP_SETFMT(r1, 0xc0045005, &(0x7f0000000100))
readv$auto(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x17}, 0x187)
msgsnd$auto(0x0, &(0x7f0000000600)={0x7fc, 0x7}, 0x400, 0x2)
msgrcv$auto(0x0, 0x0, 0x4bd, 0x1, 0xf1)
ioctl$auto_XFS_IOC_FREESP64(0xffffffffffffffff, 0x40305825, &(0x7f0000000040)={0xc, 0xb5, 0x2, 0x9, 0xdd1f})
ioctl$auto_SG_SET_DEBUG(0xffffffffffffffff, 0x227e, &(0x7f00000003c0)="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")
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
write$auto(0x1, 0x0, 0x80000000)
preadv$auto(0x40000000000003, &(0x7f0000000240)={0x0, 0xfffffffd}, 0x6, 0xc, 0x1)
r2 = socket(0x2b, 0x1, 0x1)
ioctl$auto_PPPIOCSMRU(0xffffffffffffffff, 0xc004743e, 0x0)
sendmsg$auto_NFC_CMD_DEP_LINK_DOWN(r2, 0x0, 0x20000001)

7.518648656s ago: executing program 2 (id=5380):
read$auto(0xffffffffffffffff, 0x0, 0x20)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0)
ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
fsopen$auto(0x0, 0x1)
write$auto_drm_edid_fops_drm_debugfs(0xffffffffffffffff, 0x0, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xd4, 0x8000)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0xfffffffd, 0x401bf, 0x7, 0x3c, 0x65f, 0x1ffde, 0x5, 0x3, 0x2, 0x9, 0x3, 0x6, 0x4, 0xb2, 0x80000000009, 0x6, 0xdec3, 0xb, 0x4, 0x0, 0x7, 0x2000, 0x203, 0x0, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x3, 0x0, 0x0, 0x185c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4]}, 0x1fe, 0xd)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000826bd7000fedbdf25030000000600070008000000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a00010000000000000000000a0001000000000000000000060006004000000006000600070000000a00"], 0x6c}, 0x1, 0x0, 0x0, 0x40080}, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x100)
openat$auto_tracing_free_buffer_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/free_buffer\x00', 0x501082, 0x0)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x44801)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
close_range$auto(0x2, 0x8, 0x0)
pipe$auto(0x0)
setresuid$auto(0x8, 0x0, 0x4)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)

7.281045569s ago: executing program 2 (id=5381):
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
write$auto(0x3, 0x0, 0x5c8)
mmap$auto(0x0, 0x5810, 0xffb, 0x8000000008011, 0x3, 0x0)
socket(0x2, 0x3, 0xa)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/scsi/sg/allow_dio\x00', 0x101181, 0x0)
bpf$auto(0xfffffffe, &(0x7f00000001c0)=@query={@target_fd, 0x8, 0x3, 0x5, 0xff, @count=0xe35c, 0x0, 0x5, 0x80000000000006, 0xd9, 0xffffffff}, 0x6f2)
io_uring_setup$auto(0x8, &(0x7f0000000140)={0x3ff, 0x3, 0x9, 0x10001, 0x12, 0xc05, 0xffffffffffffffff, [0x7ff, 0xfff, 0x8], {0x9, 0x1, 0x69, 0x0, 0x400, 0x3, 0x3fe0, 0x26c, 0x1000000000e8}, {0x2, 0x2, 0x54f1, 0x0, 0x101, 0xff, 0x8d8, 0xa, 0x3}})
sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="01"], 0x14}, 0x1, 0x0, 0x0, 0x20040800}, 0x24004000)
r0 = socket(0x10, 0x2, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000001340)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x240008c5}, 0xc0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80502, 0x0)

6.65509214s ago: executing program 2 (id=5382):
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
waitid$auto_P_ALL(0x0, 0xe, &(0x7f0000000380)={@_si_pad}, 0x4, &(0x7f0000000400)={{0x7fff, 0xe7}, {0x0, 0x100}, 0x0, 0x5, 0x8c47, 0xffffffffffff5607, 0x6, 0x0, 0x8000000000000000, 0x6, 0x8, 0xfffffffffffffff9, 0xd, 0xf, 0x9})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_taskstats(&(0x7f0000000140), r1)
r3 = gettid()
sendmsg$auto_TASKSTATS_CMD_GET(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x1c, r2, 0xa01, 0x70bd2b, 0x25dfdbfb, {}, [@TASKSTATS_CMD_ATTR_PID={0x8, 0x1, r3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x2400c8c1}, 0x20008010)
sendmsg$auto_IPVS_CMD_GET_INFO(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000004c0)={0x1264, 0x0, 0x20, 0x70bd2a, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x2}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x7}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x9b7}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x1b}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x963e}, @IPVS_CMD_ATTR_SERVICE={0x1225, 0x1, 0x0, 0x1, [@typed={0x8, 0x12e, 0x0, 0x0, @ipv4=@multicast1}, @typed={0xd5, 0x121, 0x0, 0x0, @binary="fe143a117f37bbbee2e2ec516ff446a3929c1aa53cfa0a95fa6af10642d3ea0bbb5886e0452aa47d3f476779de4559af87b630e0a8c419eb89b9828e784f9843acb112cd6f15a27ab2081d827321ffdd64f42fe891f78362fd4d0c13d376ccca2f259a6b250686f900e281aeb41bba08e50b6de76941b59e784153155e3889c872881586c969e48320ed88209c617d1500b3b6b8153a9ab30cffb683b1a939fb7a205f65f4e57ee03b3f13d0ef5e326fdb3bbe79b6d9d17c2c1b3423f22ced80e4bb00389846008c29172d43f4aa988893"}, @generic="67eb3a91ecb026773d17b9dce914e11b53967ecb51757806ed0398faedb348410e9f85ac4d8e0a63886bfc398ab0c2b56b73cdd13548807f10090f2384b820525232560c6e3eb14268b0f9ad2a70597fbe5f274f4e42ae72f8bb3ec2cd92c9f838e384121fc44e83fd0dc22f10a5f0e43573b2e1dde229a143057eadb49bf203baa76c0aef2aeb152c564cdb5c731b76a3eed6969f100321d0e94c19dc8589a16a745515d96952369378ca4373248bf8fa3185c3443f734ad7048c714cd16740590538f192445062115d260a32600e2f5eef68caf541b92e124cf130c5b4b66f962b4e5eab7639a866f35421972e7c1e6b", @nested={0x1050, 0x2b, 0x0, 0x1, [@typed={0x3d, 0x6, 0x0, 0x0, @binary="01e76199050ae64a5e3a09249466e61fc251b6cc63b6ef61afa92e1c80562ec64e2993815663cffb1afb0c45b911164f7f0183c5019dda913e"}, @nested={0x4, 0x3}, @generic="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", @typed={0x8, 0x73, 0x0, 0x0, @fd}]}]}]}, 0x1264}, 0x1, 0x0, 0x0, 0x24008880}, 0x4101)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
socket(0x2, 0x1, 0x0)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000340)='/dev/input/event0\x00', 0x40000, 0x0)
unshare$auto(0x40000080)
ioctl$auto_OTPERASE(r0, 0x400c4d19, &(0x7f0000000280)={0xbc98, 0x1, 0x7c})
socket(0x2b, 0x1, 0x1)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x24044011}, 0x800)
sendmmsg$auto(0x3, &(0x7f00000000c0)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

5.940201799s ago: executing program 3 (id=5383):
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
r0 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
socket(0x2, 0x3, 0xa)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/self/net/ip6_tables_targets\x00', 0x608100, 0x0)
r1 = openat$auto_sco_debugfs_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x242, 0x0)
read$auto_sco_debugfs_fops_(r1, &(0x7f0000000140)=""/211, 0xd3)
bind$auto(0x3, 0x0, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
prctl$auto(0x16, 0x2, 0x2, 0x4000000d, 0x100)
pread64$auto(r0, &(0x7f0000000200)='/proc/self/net/ip6_tables_targets\x00', 0x34b, 0x10000)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)

4.791431291s ago: executing program 0 (id=5384):
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
ioctl$auto(r0, 0x5608, 0x1)

4.430408371s ago: executing program 1 (id=5385):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0)
mmap$auto(0x0, 0x810004, 0xfff, 0x8000000008012, 0x3, 0x8000)
write$auto(0x3, 0x0, 0xfffffdef)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/cgroup.events\x00', 0x60640, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0}, 0x8000)
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
ioctl$auto_CEC_G_MODE(0xffffffffffffffff, 0x80046108, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000240)={'macvlan1\x00'})
futimesat$auto(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)={0x40, 0xffffffffffffffff})
connect$auto(0x3, 0x0, 0x54)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
ioctl$auto_PPPIOCSPASS(0xffffffffffffffff, 0x40107447, &(0x7f0000000040)={0x6, 0x0})
io_uring_setup$auto(0x6, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_HWSIM_CMD_DEL_RADIO(r1, 0x0, 0x10)
shmctl$auto_SHM_STAT_ANY(0x7ff, 0xf, &(0x7f0000000180)={{0x16000000, 0xee01, 0xee01, 0x7, 0x12000, 0x9, 0x5}, 0xf, 0xfffffffffffffffd, 0x3f, 0xc, @inferred, @raw=0x7d9, 0x9, 0x0, 0x0, &(0x7f0000000400)="a34eb4a0705a20bda8e0ce259e84b73c4a5550243e5b618e87ce093cbedb7e656fa5f6b0b358a7536e48d3cd6127e84ecfe1bf644f6a3c26ddd9f016bb0c716fadfb01"})
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x200004, 0x15)
set_mempolicy_home_node$auto(0x0, 0x10001, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)

4.287341576s ago: executing program 0 (id=5386):
futex_wait$auto(0x0, 0x2, 0x1, 0x2, &(0x7f0000000040)={0x8, 0x10000000001}, 0x0)
r0 = socket(0x10, 0x2, 0x0)
splice$auto(r0, 0x0, r0, &(0x7f0000000100)=0x8, 0x100, 0x2)
msgctl$auto(0x6, 0x3, &(0x7f00000001c0)={{0x1, 0xffffffffffffffff, 0xee01, 0x6, 0x0, 0x6, 0x3}, 0x0, 0x0, 0x8, 0x9, 0x6, 0x205, 0x5b73, 0x49, 0x9, 0x2})
syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f0000000140), 0xffffffffffffffff)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
mmap$auto(0x0, 0x2020007, 0xffffffffffffffff, 0x8000000000000eb1, 0xffffffffffffffff, 0x8000)
openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f00000002c0), 0x40000, 0x0)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0000, 0x0)
ioctl$auto(r1, 0x2, 0x9)
ioctl$auto(0x3, 0x40104d01, r1)
r2 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x2000, 0x0)
ioctl$auto_EVIOCSCLOCKID(r2, 0x400445a0, &(0x7f0000000000)=0x1)
ioctl$auto(0xffffffffffffffff, 0x4004550c, 0xffffffffffffffff)
r3 = io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x2000d, 0x4000000200df, 0xeb1, 0x404, 0xd)
r4 = socket(0x11, 0x80003, 0x300)
setsockopt$auto(r4, 0x107, 0x12, 0x0, 0x4)
syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000002680), 0xffffffffffffffff)
ioctl$auto(0x3, 0x1276, r3)
close_range$auto(0x2, 0x8, 0x0)
fcntl$auto(r3, 0xfffffffd, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0x2000040080000004, 0xe)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48090}, 0x0)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3)

4.158788905s ago: executing program 3 (id=5387):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
io_uring_setup$auto(0x6, 0x0)
socket(0xa, 0x2, 0x88)
setsockopt$auto(0x3, 0x1, 0xf, 0x0, 0x9)
connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x1}, 0x55)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x405, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/platform/dummy_hcd.4/usb5/urbnum\x00', 0x82000, 0x0)
read$auto(r0, 0x0, 0x4401)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
io_uring_setup$auto(0x4bf15e08, &(0x7f0000000000)={0x401, 0x8, 0xfe, 0x6fb3, 0x8a, 0x9, 0xffffffffffffffff, [0x3, 0x9, 0x7f], {0x2, 0x7, 0x3032, 0xe, 0xf, 0x5, 0x5, 0xfffffff9, 0xf08a2b3}, {0x0, 0xfc, 0x6, 0x0, 0x0, 0xf89, 0x9, 0x2, 0x8}})
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x1, 0x106)
pipe$auto(0x0)
vmsplice$auto(0x4, &(0x7f0000000040)={0x0, 0x2}, 0x2, 0x5)
mmap$auto(0x0, 0x40009, 0xffffffff, 0x9b72, 0x7, 0x28000)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0xc800)
adjtimex$auto(&(0x7f00000005c0)={0xffff, 0x0, 0x6, 0x9, 0x7, 0x7f, 0xfff, 0x0, 0xc15, 0x9, 0x592efafe, {0x3, 0xffffffffffffff57}, 0x100000001, 0x3, 0x857e, 0x5, 0x0, 0x3, 0x9, 0x240000000000, 0x400000, 0x10000, 0x7ff})
r1 = socket(0xa, 0x5, 0x84)
sendto$auto(r1, 0x0, 0xfef4, 0x7f, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe8000"}, 0x1c)

3.613862014s ago: executing program 3 (id=5388):
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x1e, 0x1, 0x0)
socket(0x28, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
execveat$auto(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) (fail_nth: 13)

3.568729771s ago: executing program 0 (id=5389):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/per_cpu/cpu0/buffer_size_kb\x00', 0x24080, 0x0)
r1 = syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000001140), r0)
sendmsg$auto_WG_CMD_SET_DEVICE(r0, &(0x7f00000028c0)={0x0, 0x0, &(0x7f0000002880)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c009e64796f7a461eac380000", @ANYRES16=r1, @ANYBLOB="210026bd7000fadbdf2501000000040008801400020077673000"/38], 0x2c}, 0x1, 0x0, 0x0, 0x841}, 0x0)
r2 = fcntl$auto_F_DUPFD_CLOEXEC(0xffffffffffffffff, 0x406, 0xffffffffffffffff)
getsockopt$auto_SO_RCVBUF(r2, 0x3, 0x8, &(0x7f0000000000)='#\x00', &(0x7f0000000040))
mprotect$auto(0xa67, 0x8000000000000000, 0xfffffffffffffffc)
lstat$auto(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x9, 0x5, 0x9, 0x1, 0xee00, <r3=>0xee01, 0x0, 0x7, 0x4945, 0x4, 0x7ff, 0x6, 0x8001, 0x8000000000000001, 0x100000000, 0x13, 0x101})
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x3, 0x1ff, 0x1001, 0x5, 0x717e, 0x1ffde, 0x7, 0x3, 0xd, 0x2, 0x80003, 0x4, 0x1ffffffffffd, 0xb4, 0xfffffffffffffffe, 0x7, 0x10002, 0x7f, 0x2a2, 0x2, 0xa, 0x22000, 0x200, 0x4, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000000000]}, 0x1fe, 0xd)
r4 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r4, 0xfffffffffffffd03, &(0x7f00000001c0))
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x8)
openat$auto_proc_gid_map_operations_base(0xffffffffffffff9c, 0x0, 0x0, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
setpriority$auto(0x4000000001, 0x100000001, 0x6)
mmap$auto(0x2000000, 0x400008, 0xdf, 0x9b72, 0x100000000002, 0x8000)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x1, 0x0)
rseq$auto(0x0, 0x47fffd, 0x0, 0x6)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
setgroups$auto(0xe32, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r5 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000040), 0x8300, 0x0)
ioctl$auto_RTC_PIE_ON(r5, 0x7005, 0x0)
readv$auto(r5, &(0x7f00000004c0)={0x0, 0x2004}, 0x5)
setresgid$auto(0x9, r3, 0xffffffffffffffff)
ioctl$auto_SNDRV_PCM_IOCTL_PVERSION2(r2, 0x80044100, &(0x7f00000000c0)=0xfffffffd)

3.094328625s ago: executing program 2 (id=5390):
socket(0x2, 0x1, 0x0)
setresgid$auto(0x800, 0xee01, 0xffffffffffffffff)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
capset$auto(0x0, 0x0)
r0 = openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
r1 = openat$auto_proc_pid_set_comm_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/comm\x00', 0x2, 0x0)
write$auto(r1, 0x0, 0x20000000000a)
close_range$auto(0x2, r0, 0x0)
setresgid$auto(0x0, 0x0, 0x0)
mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x503000, 0xbf)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x7fff)
semtimedop$auto(0x8000000b, &(0x7f0000000000)={0x0, 0x6, 0x1004}, 0x3, 0x0)
close_range$auto(r2, r2, 0x1ff)
r3 = socketpair$auto(0x1, 0x9, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x64842, 0x0)
r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000011c0)='/dev/ptyq3\x00', 0x40001, 0x0)
write$auto(0x3, 0x0, 0x7fffffff)
r5 = socket(0x1d, 0x2, 0x5)
mmap$auto(0x0, 0x400008, 0xb, 0x9b72, 0x2, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
fanotify_init$auto(0x5, 0x2000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
waitid$auto_P_PIDFD(0x3, r2, &(0x7f0000000100)={@_si_pad}, 0x4, &(0x7f0000000180)={{0x3, 0x9}, {0x8001, 0x6}, 0x5, 0x2, 0x8, 0x2, 0x100000000, 0x8, 0xfffffffffffffff6, 0x80000000, 0x8, 0xb0b, 0x7, 0x6, 0x7, 0x9})
clone$auto(0x20003b46, 0x7, 0x0, 0x0, 0x2)
ioctl$auto(r5, 0xc000f703, r3)
ioctl$auto_TIOCSETD2(r4, 0x5423, 0x0)

2.963273163s ago: executing program 3 (id=5391):
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/scsi/sg/def_reserved_size\x00', 0x0, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000000300)=""/236, 0xec)
ppoll$auto(&(0x7f0000000000)={<r2=>r0, 0x40}, 0x2, 0x0, 0x0, 0x8)
read$auto_nsim_dev_trap_fa_cookie_fops_dev(r2, &(0x7f0000000300)=""/208, 0xd0)
mmap$auto(0x0, 0x20009, 0xdf, 0x7f, 0xffffffffffffffff, 0x8000)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x809, 0x3, 0x22, 0x940, 0x1ffde, 0x3, 0x3, 0x8000003, 0x9, 0x5, 0x0, 0x4, 0xb0, 0x7, 0x2, 0x3, 0x5, 0x7, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8]}, 0x7, 0x281)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/dev_snmp6/wlan0\x00', 0x424b42, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sysfs$auto(0x2, 0x14, 0x0)
fsopen$auto(0x0, 0x1)
close_range$auto(0x2, 0x8, 0x0)
socketpair$auto(0x1e, 0x5, 0x80000000, 0x0)
socket(0xa, 0x5, 0x0)
socket(0xa, 0x801, 0x84)
connect$auto(0x3, 0x0, 0x55)
listen$auto(0x3, 0x807d)
r3 = open(&(0x7f0000000000)='./cgroup.cpu/cgroup.procs\x00', 0x2000, 0xb5d1af1605322c72)
r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x20000, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x1000000008000)
read$auto(r5, 0x0, 0x20)
writev$auto(r4, &(0x7f0000000200)={0x0, 0x3}, 0x3)
connect$auto(0x3, 0x0, 0x54)
open_by_handle_at$auto(r3, &(0x7f0000000040)={0x6, 0x100fe, "970000000000"}, 0x2)

2.288162684s ago: executing program 3 (id=5392):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2, 0x2, 0x0)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x70001f4)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/zram0/comp_algorithm\x00', 0x20b42, 0x0)
write$auto(r0, 0x0, 0x3)

1.53115871s ago: executing program 1 (id=5393):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/block/loop13/queue/max_sectors_kb\x00', 0x109206, 0x0)
socket(0xa, 0x5, 0x0)
openat$auto_tun_fops_tun(0xffffffffffffff9c, 0x0, 0x2002, 0x0)
mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000)
r1 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/scsi/sg/debug\x00', 0x40, 0x0)
read$auto_proc_iter_file_ops_compat_inode(r1, &(0x7f0000000180)=""/286, 0x11e)
r2 = socket(0x2b, 0x1, 0x1)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, 0x0, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-touch0\x00', 0xe0800, 0x0)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001040)='/sys/devices/virtual/block/ram7/queue/chunk_sectors\x00', 0x80800, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000000180)=""/187, 0xbb)
r5 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
syz_genetlink_get_family_id$auto_taskstats(&(0x7f0000000100), r5)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0xfffffffffffff001, 0x948b, 0x3, 0xecc4, 0xfffe, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
ioprio_set$auto(0x2, 0x80000000, 0x8)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000007c0), r2)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x15, 0x5, 0x0)
connect$auto(0x3, &(0x7f00000000c0), 0x55)
mmap$auto(0x0, 0x4020009, 0xdf, 0x72, 0xffffffffffffffff, 0x8000)
r6 = openat$auto_nsim_dev_trap_fa_cookie_fops_dev(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim3/trap_flow_action_cookie\x00', 0x2202, 0x0)
write$auto(r6, 0x0, 0x1)
r7 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000040), 0x40, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_GPARAMS(r7, 0x40485404, &(0x7f0000000080)={{0x7fff, 0xf992, 0x86e, 0x7, 0x1}, 0x5, 0x9, "1567d323d189ff5cff29d20e84c6d3f56187b68097d4d7232a9d378d0eedbd82"})
read$auto(r0, 0x0, 0x8)

1.372559137s ago: executing program 3 (id=5394):
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f0026bd7000fcdbdf9907"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='./cgroup.cpu/hugetlb.1GB.limit_in_bytes\x00', 0x109c40, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000001c00)=""/4111, 0x100f)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df45"], 0x1ac}}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='V'], 0x1ac}}, 0x40000)
r1 = socket(0x10, 0x2, 0x0)
r2 = socket(0x1d, 0x3, 0x1)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bpf$auto(0x0, 0x0, 0x6f4)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
init_module$auto(0x0, 0xffff9, 0x0)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4)
setsockopt$auto(r2, 0x65, 0x1, 0x0, 0x0)
r3 = openat$auto_udmabuf_fops_udmabuf(0xffffffffffffff9c, &(0x7f0000000000), 0x20100, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
mbind$auto(0xf000, 0x1, 0x1, 0x0, 0x7fff, 0x2)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x20000000000006, 0x2)
utimensat$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xfffffffb)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
mbind$auto(0xffffffffffff7fff, 0x1, 0x800, &(0x7f0000000040)=0x3, 0x5, 0x8)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000000100), r4)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/loop15/queue/scheduler\x00', 0x0, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0xc01)
sendmsg$auto_SMC_PNETID_ADD(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYBLOB="25650443657868ec4a5fdfa2c59c514005a270ab5f4852fa7c3c18167da7faddc07f607c6d45171a57fc32a761883465a982ed93e01d31522c58d4502195f8934d84718d1f0a67241e9f7a11b66ca7b1ad026ab1f67882e29e45cc09eb189853dd6d6e61491eaf9043ea2f5eb0cc820b042f483bb83fe63c2986db6489c22de05ebfb82715fa859530c0a98696836f164e99ea43be113455c06698f99b505ab894415e6705120422803c4a933b4480afb3c30acde9e791f1831ac5beffa8f084f8eb9aba1bdfe209", @ANYBLOB="638429bd700200000000000000030c0002007393627f6d038718b5797a5f74756e000c000100"], 0x2c}, 0x1, 0x0, 0x0, 0x24000805}, 0x1c054)
ioctl$auto_UDMABUF_CREATE(r3, 0x40187542, &(0x7f0000000080)={r3, 0x867c, 0x0, 0x200000008000})
sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x2e000000, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000002c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008)

1.259069186s ago: executing program 2 (id=5395):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xbfb, 0x8000000008011, 0x3, 0x8000) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mlock$auto(0x1000, 0x6)
write$auto(0x3, 0x0, 0x80100082)
mmap$auto(0x0, 0x400008, 0xdf, 0x38, 0x6, 0x8000) (async)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_CGROUPSTATS_CMD_GET(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="13000000", @ANYRES16=0x0, @ANYBLOB="2586f2bd7000fedbdf2504000000080001"], 0x1c}, 0x1, 0x0, 0x0, 0x400c9d0}, 0x4080)
r2 = socket(0x10, 0x2, 0x14)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000002fc0)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000000a14"], 0x14}, 0x1, 0x0, 0x0, 0x80c3}, 0x0) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0xffffffffffffff14, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYRES8=r1], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x200440c0) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4c084}, 0x51)
sendmmsg$auto(r2, &(0x7f0000000080)={{0x0, 0x8001c01, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x1}, 0x7}, 0x3d55, 0x0)
ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0) (async)
statmount$auto(&(0x7f0000000080)={0x100, @raw=0x3ff, 0x6, 0x9, 0x6}, &(0x7f00000000c0)={0x10000, 0xf0, 0x7, 0xa6, 0x7, 0x2, 0x3, 0x3, 0x6, 0x0, 0x3, 0xb8, 0x1, 0xffffffffffffff80, 0x0, 0x9, 0x7, 0x4, 0x3, 0x1, 0x492a, 0x4, 0x5, 0x7, 0x8, 0x2, 0x0, 0x5, 0x2, 0xffff, 0x4, [0x78, 0x8, 0x3, 0x1ff, 0x0, 0x1000, 0x4, 0xfffffffffffffff7, 0x9, 0x6, 0x4, 0x3, 0x3, 0x28000000, 0x8, 0x6, 0x3e5ee8e0, 0xa0b, 0x0, 0x1c, 0x9, 0x81, 0x5, 0x9, 0x6, 0x4, 0xd8ff, 0x5, 0xc7, 0x6, 0x8, 0x54, 0xb265, 0x6, 0x1, 0x0, 0x6, 0x382, 0x4, 0x7fff, 0x1, 0xf, 0x5c0], "f4ad9c5dc782810dd2d8234092231e13216b327af6d5c98179cb420c8e84acef522bc2821873b9155589993e2b9a76476061003db8010672774fcd6b4cb330803a5cc10540e2b4f611afda47feb8a384f870cc19bfdf"}, 0x101, 0x719)

955.046067ms ago: executing program 0 (id=5396):
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
waitid$auto_P_ALL(0x0, 0xe, &(0x7f0000000380)={@_si_pad}, 0x4, &(0x7f0000000400)={{0x7fff, 0xe7}, {0x0, 0x100}, 0x0, 0x5, 0x8c47, 0xffffffffffff5607, 0x6, 0x0, 0x8000000000000000, 0x6, 0x8, 0xfffffffffffffff9, 0xd, 0xf, 0x9})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_taskstats(&(0x7f0000000140), r1)
r3 = gettid()
sendmsg$auto_TASKSTATS_CMD_GET(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x1c, r2, 0xa01, 0x70bd2b, 0x25dfdbfb, {}, [@TASKSTATS_CMD_ATTR_PID={0x8, 0x1, r3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x2400c8c1}, 0x20008010)
sendmsg$auto_IPVS_CMD_GET_INFO(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000004c0)={0x1264, 0x0, 0x20, 0x70bd2a, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x2}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x7}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x9b7}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x1b}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x963e}, @IPVS_CMD_ATTR_SERVICE={0x1225, 0x1, 0x0, 0x1, [@typed={0x8, 0x12e, 0x0, 0x0, @ipv4=@multicast1}, @typed={0xd5, 0x121, 0x0, 0x0, @binary="fe143a117f37bbbee2e2ec516ff446a3929c1aa53cfa0a95fa6af10642d3ea0bbb5886e0452aa47d3f476779de4559af87b630e0a8c419eb89b9828e784f9843acb112cd6f15a27ab2081d827321ffdd64f42fe891f78362fd4d0c13d376ccca2f259a6b250686f900e281aeb41bba08e50b6de76941b59e784153155e3889c872881586c969e48320ed88209c617d1500b3b6b8153a9ab30cffb683b1a939fb7a205f65f4e57ee03b3f13d0ef5e326fdb3bbe79b6d9d17c2c1b3423f22ced80e4bb00389846008c29172d43f4aa988893"}, @generic="67eb3a91ecb026773d17b9dce914e11b53967ecb51757806ed0398faedb348410e9f85ac4d8e0a63886bfc398ab0c2b56b73cdd13548807f10090f2384b820525232560c6e3eb14268b0f9ad2a70597fbe5f274f4e42ae72f8bb3ec2cd92c9f838e384121fc44e83fd0dc22f10a5f0e43573b2e1dde229a143057eadb49bf203baa76c0aef2aeb152c564cdb5c731b76a3eed6969f100321d0e94c19dc8589a16a745515d96952369378ca4373248bf8fa3185c3443f734ad7048c714cd16740590538f192445062115d260a32600e2f5eef68caf541b92e124cf130c5b4b66f962b4e5eab7639a866f35421972e7c1e6b", @nested={0x1050, 0x2b, 0x0, 0x1, [@typed={0x3d, 0x6, 0x0, 0x0, @binary="01e76199050ae64a5e3a09249466e61fc251b6cc63b6ef61afa92e1c80562ec64e2993815663cffb1afb0c45b911164f7f0183c5019dda913e"}, @nested={0x4, 0x3}, @generic="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", @typed={0x8, 0x73, 0x0, 0x0, @fd}]}]}]}, 0x1264}, 0x1, 0x0, 0x0, 0x24008880}, 0x4101)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
socket(0x2, 0x1, 0x0)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000340)='/dev/input/event0\x00', 0x40000, 0x0)
unshare$auto(0x40000080)
ioctl$auto_OTPERASE(r0, 0x400c4d19, &(0x7f0000000280)={0xbc98, 0x1, 0x7c})
socket(0x2b, 0x1, 0x1)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x24044011}, 0x800)
sendmmsg$auto(0x3, &(0x7f00000000c0)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

387.312758ms ago: executing program 2 (id=5397):
mmap$auto(0x1800000000001, 0x4000007fff, 0x10000000000e3, 0xeb1, 0xffffffffffffffff, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x880080, 0x0)
bpf$auto(0x40000e, &(0x7f00000002c0)=@bpf_attr_4={0x2, <r1=>r0, 0x800001, r0}, 0x5)
read$auto_kernfs_file_fops_kernfs_internal(r0, 0x0, 0x0)
r2 = open(0x0, 0x2629c3, 0x0)
preadv$auto(0x3, &(0x7f0000000040)={0x0, 0x8000000}, 0x3, 0xf8, 0x10)
sendmsg$auto_OVS_VPORT_CMD_DEL(r1, 0x0, 0x44844)
r3 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/oom_adj\x00', 0x1, 0x0)
read$auto(r3, 0x0, 0x1f40)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/virtual/block/loop12/queue/nr_requests\x00', 0x80302, 0x0)
mmap$auto(0x0, 0x4, 0x80000000000000df, 0x10004000eb1, 0x8, 0x8002008000)
read$auto(r4, 0x0, 0xf30)
write$auto(0x3, 0x0, 0xffd8)
r5 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x0, 0x0)
sendmsg$auto_NL80211_CMD_GET_INTERFACE(r2, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000180)={&(0x7f0000000280)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB="0956feb11fa823ac510530d808002bbd7000fc606ebb000000006b7cdbdf000000000000000000070000"], 0x24}, 0x1, 0x0, 0x0, 0x80}, 0x24004000)
openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, &(0x7f0000000380)='/sys/kernel/debug/kvm/nested_run\x00', 0x58b7e9610e2adb71, 0x0)
writev$auto(r5, &(0x7f0000000200)={0x0, 0x7}, 0x5)
gettid()
openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000000080), 0x10001, 0x0)
mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000)
prctl$auto(0x3, 0x1, 0x4, 0x5, 0x7)
close_range$auto(0xffffffffffffffff, 0x8, 0x2)
socket(0x2, 0x5, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
socket(0x2, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000240), 0x105041, 0x0)

0s ago: executing program 1 (id=5398):
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0x2000040080000004, 0xe)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0)
mmap$auto(0x3000000, 0xfff, 0xdf, 0x9b72, 0x400, 0x28000)

kernel console output (not intermixed with test programs):

7889] [U] 
[ 1794.610364][T27889] [U] 
[ 1794.613146][T27889] [U] 
[ 1794.615893][T27889] [U] 
[ 1794.618627][T27889] [U] 
[ 1795.222387][T27908] FAULT_INJECTION: forcing a failure.
[ 1795.222387][T27908] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1795.333276][T27908] CPU: 1 UID: 0 PID: 27908 Comm: syz.2.4929 Tainted: G     U              6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[ 1795.333322][T27908] Tainted: [U]=USER
[ 1795.333331][T27908] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1795.333348][T27908] Call Trace:
[ 1795.333358][T27908]  <TASK>
[ 1795.333369][T27908]  dump_stack_lvl+0x16c/0x1f0
[ 1795.333416][T27908]  should_fail_ex+0x512/0x640
[ 1795.333464][T27908]  _copy_to_user+0x32/0xd0
[ 1795.333493][T27908]  snd_pcm_oss_read2+0x294/0x410
[ 1795.333542][T27908]  ? __pfx_snd_pcm_oss_read2+0x10/0x10
[ 1795.333584][T27908]  ? snd_pcm_kernel_ioctl+0x267/0x2e0
[ 1795.333617][T27908]  ? snd_pcm_oss_prepare+0x11e/0x220
[ 1795.333663][T27908]  snd_pcm_oss_read+0x5d3/0x760
[ 1795.333714][T27908]  ? __pfx_snd_pcm_oss_read+0x10/0x10
[ 1795.333759][T27908]  vfs_readv+0x6bf/0x8a0
[ 1795.333796][T27908]  ? __pfx_vfs_readv+0x10/0x10
[ 1795.333866][T27908]  ? __fget_files+0x20e/0x3c0
[ 1795.333889][T27908]  ? __fget_files+0x140/0x3c0
[ 1795.333924][T27908]  ? do_readv+0x132/0x330
[ 1795.333946][T27908]  do_readv+0x132/0x330
[ 1795.333970][T27908]  ? __pfx_do_readv+0x10/0x10
[ 1795.334012][T27908]  do_syscall_64+0xcd/0x230
[ 1795.334057][T27908]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1795.334085][T27908] RIP: 0033:0x7f5233b8e969
[ 1795.334106][T27908] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1795.334134][T27908] RSP: 002b:00007f52349ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000013
[ 1795.334160][T27908] RAX: ffffffffffffffda RBX: 00007f5233db6240 RCX: 00007f5233b8e969
[ 1795.334177][T27908] RDX: 0000000000000001 RSI: 0000200000000a80 RDI: 0000000000000003
[ 1795.334195][T27908] RBP: 00007f52349ee090 R08: 0000000000000000 R09: 0000000000000000
[ 1795.334213][T27908] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1795.334230][T27908] R13: 0000000000000001 R14: 00007f5233db6240 R15: 00007ffc305b0fa8
[ 1795.334267][T27908]  </TASK>
[ 1796.308822][T27921] FAULT_INJECTION: forcing a failure.
[ 1796.308822][T27921] name failslab, interval 1, probability 0, space 0, times 0
[ 1796.344617][T27921] CPU: 0 UID: 0 PID: 27921 Comm: syz.3.4934 Tainted: G     U              6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[ 1796.344667][T27921] Tainted: [U]=USER
[ 1796.344678][T27921] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1796.344697][T27921] Call Trace:
[ 1796.344707][T27921]  <TASK>
[ 1796.344719][T27921]  dump_stack_lvl+0x16c/0x1f0
[ 1796.344769][T27921]  should_fail_ex+0x512/0x640
[ 1796.344813][T27921]  ? fs_reclaim_acquire+0xae/0x150
[ 1796.344871][T27921]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[ 1796.344917][T27921]  should_failslab+0xc2/0x120
[ 1796.344955][T27921]  __kmalloc_noprof+0xd2/0x510
[ 1796.344999][T27921]  tomoyo_realpath_from_path+0xc2/0x6e0
[ 1796.345055][T27921]  tomoyo_check_open_permission+0x2ab/0x3c0
[ 1796.345093][T27921]  ? init_file+0x93/0x4c0
[ 1796.345127][T27921]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[ 1796.345166][T27921]  ? exportfs_decode_fh_raw+0x703/0x890
[ 1796.345195][T27921]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1796.345260][T27921]  ? do_raw_spin_lock+0x12c/0x2b0
[ 1796.345315][T27921]  tomoyo_file_open+0x6b/0x90
[ 1796.345347][T27921]  security_file_open+0x84/0x1e0
[ 1796.345390][T27921]  do_dentry_open+0x596/0x1c10
[ 1796.345424][T27921]  ? lockdep_init_map_type+0x5c/0x280
[ 1796.345469][T27921]  vfs_open+0x82/0x3f0
[ 1796.345512][T27921]  dentry_open+0x71/0xd0
[ 1796.345550][T27921]  get_name+0x2c6/0x480
[ 1796.345578][T27921]  ? __pfx_get_name+0x10/0x10
[ 1796.345608][T27921]  ? __pfx_filldir_one+0x10/0x10
[ 1796.345636][T27921]  ? find_held_lock+0x2b/0x80
[ 1796.345688][T27921]  ? __pfx_reconnect_path+0x10/0x10
[ 1796.345717][T27921]  ? __pfx_kernfs_fh_to_parent+0x10/0x10
[ 1796.345771][T27921]  exportfs_decode_fh_raw+0x703/0x890
[ 1796.345799][T27921]  ? __pfx_vfs_dentry_acceptable+0x10/0x10
[ 1796.345854][T27921]  ? __pfx_exportfs_decode_fh_raw+0x10/0x10
[ 1796.345937][T27921]  do_handle_open+0x75e/0xb70
[ 1796.345985][T27921]  ? __pfx_do_handle_open+0x10/0x10
[ 1796.346027][T27921]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1796.346066][T27921]  ? xfd_validate_state+0x5d/0x180
[ 1796.346097][T27921]  ? rcu_is_watching+0x12/0xc0
[ 1796.346136][T27921]  ? do_syscall_64+0xcd/0x230
[ 1796.346179][T27921]  do_syscall_64+0xcd/0x230
[ 1796.346226][T27921]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1796.346255][T27921] RIP: 0033:0x7eff1118e969
[ 1796.346278][T27921] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1796.346307][T27921] RSP: 002b:00007eff11fae038 EFLAGS: 00000246 ORIG_RAX: 0000000000000130
[ 1796.346335][T27921] RAX: ffffffffffffffda RBX: 00007eff113b6080 RCX: 00007eff1118e969
[ 1796.346355][T27921] RDX: 0000000000000002 RSI: 0000200000000040 RDI: 0000000000000004
[ 1796.346373][T27921] RBP: 00007eff11210ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1796.346391][T27921] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1796.346408][T27921] R13: 0000000000000000 R14: 00007eff113b6080 R15: 00007ffcb74b31c8
[ 1796.346446][T27921]  </TASK>
[ 1796.363308][T27921] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1796.811442][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[ 1796.819429][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[ 1797.003278][T27928] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4936'.
[ 1797.023665][T27930] netlink: 'syz.2.4937': attribute type 1 has an invalid length.
[ 1797.153981][T27931] [U] 
[ 1797.156715][T27931] [U] hŠ+ZÙß&iæùÍ#e
[ 1797.160560][T27931] [U] 
[ 1797.163264][T27931] [U] 
[ 1797.165960][T27931] [U] 
[ 1797.183048][T27931] [U] 
[ 1797.185767][T27931] [U] 
[ 1797.188468][T27931] [U] 
[ 1797.191176][T27931] [U] 
[ 1797.225041][T27931] [U] 
[ 1797.227756][T27931] [U] 
[ 1797.230572][T27931] [U] 
[ 1797.233306][T27931] [U] 
[ 1797.277909][T27931] [U] 
[ 1797.280642][T27931] [U] 
[ 1797.283377][T27931] [U] 
[ 1797.286121][T27931] [U] 
[ 1797.324055][T27931] [U] 
[ 1797.326840][T27931] [U] 
[ 1797.329596][T27931] [U] 
[ 1797.332346][T27931] [U] 
[ 1797.371277][T27931] [U] 
[ 1797.374048][T27931] [U] 
[ 1797.376991][T27931] [U] 
[ 1797.379756][T27931] [U] 
[ 1797.416584][T27931] [U] 
[ 1797.419342][T27931] [U] 
[ 1797.422089][T27931] [U] 
[ 1797.424813][T27931] [U] 
[ 1797.482984][T27931] [U] 
[ 1797.485822][T27931] [U] 
[ 1797.488536][T27931] [U] 
[ 1797.491246][T27931] [U] 
[ 1797.529974][T27931] [U] 
[ 1797.532752][T27931] [U] 
[ 1797.535524][T27931] [U] 
[ 1797.538275][T27931] [U] 
[ 1797.575974][T27931] [U] 
[ 1797.578726][T27931] [U] 
[ 1797.581457][T27931] [U] 
[ 1797.584175][T27931] [U] 
[ 1797.622805][T27931] [U] 
[ 1797.625575][T27931] [U] 
[ 1797.628315][T27931] [U] 
[ 1797.631071][T27931] [U] 
[ 1797.666618][T27931] [U] 
[ 1797.669381][T27931] [U] 
[ 1797.672122][T27931] [U] 
[ 1797.674878][T27931] [U] 
[ 1797.843249][T27931] [U] 
[ 1797.846025][T27931] [U] 
[ 1797.848762][T27931] [U] 
[ 1797.851545][T27931] [U] 
[ 1797.889885][T27931] [U] 
[ 1797.892648][T27931] [U] 
[ 1797.895420][T27931] [U] 
[ 1797.898168][T27931] [U] 
[ 1797.901215][T27931] [U] 
[ 1797.903951][T27931] [U] 
[ 1797.906678][T27931] [U] 
[ 1797.909436][T27931] [U] 
[ 1798.103606][T27931] [U] 
[ 1798.106357][T27931] [U] 
[ 1798.109060][T27931] [U] 
[ 1798.111758][T27931] [U] 
[ 1798.115506][T27931] [U] 
[ 1798.118248][T27931] [U] 
[ 1798.120990][T27931] [U] 
[ 1798.123737][T27931] [U] 
[ 1799.057778][ T5834] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1799.071352][ T5834] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1799.082475][ T5834] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1799.093102][ T5834] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1799.102406][ T5834] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1799.549714][T27954] FAULT_INJECTION: forcing a failure.
[ 1799.549714][T27954] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1799.733001][T27954] CPU: 0 UID: 0 PID: 27954 Comm: syz.0.4940 Tainted: G     U              6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[ 1799.733047][T27954] Tainted: [U]=USER
[ 1799.733056][T27954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1799.733073][T27954] Call Trace:
[ 1799.733083][T27954]  <TASK>
[ 1799.733094][T27954]  dump_stack_lvl+0x16c/0x1f0
[ 1799.733159][T27954]  should_fail_ex+0x512/0x640
[ 1799.733210][T27954]  _copy_from_user+0x2e/0xd0
[ 1799.733259][T27954]  get_bitmap+0x6d/0x110
[ 1799.733294][T27954]  get_nodes+0x169/0x210
[ 1799.733336][T27954]  ? __pfx_get_nodes+0x10/0x10
[ 1799.733369][T27954]  ? __fget_files+0x20e/0x3c0
[ 1799.733405][T27954]  kernel_migrate_pages+0x89/0x750
[ 1799.733446][T27954]  ? __pfx_kernel_migrate_pages+0x10/0x10
[ 1799.733486][T27954]  ? ksys_write+0x1b9/0x240
[ 1799.733516][T27954]  ? __pfx_ksys_write+0x10/0x10
[ 1799.733553][T27954]  __x64_sys_migrate_pages+0x96/0x100
[ 1799.733594][T27954]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1799.733645][T27954]  do_syscall_64+0xcd/0x230
[ 1799.733690][T27954]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1799.733719][T27954] RIP: 0033:0x7f14dc98e969
[ 1799.733740][T27954] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1799.733768][T27954] RSP: 002b:00007f14dd730038 EFLAGS: 00000246 ORIG_RAX: 0000000000000100
[ 1799.733795][T27954] RAX: ffffffffffffffda RBX: 00007f14dcbb5fa0 RCX: 00007f14dc98e969
[ 1799.733814][T27954] RDX: 0000200000000780 RSI: 0000000000000082 RDI: 0000000000000000
[ 1799.733831][T27954] RBP: 00007f14dd730090 R08: 0000000000000000 R09: 0000000000000000
[ 1799.733848][T27954] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1799.733865][T27954] R13: 0000000000000001 R14: 00007f14dcbb5fa0 R15: 00007ffcc08e2438
[ 1799.733901][T27954]  </TASK>
[ 1799.924784][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1800.275653][T27948] random: crng reseeded on system resumption
[ 1800.296147][T27948] FAULT_INJECTION: forcing a failure.
[ 1800.296147][T27948] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1800.366081][T27948] CPU: 0 UID: 0 PID: 27948 Comm: syz.1.4944 Tainted: G     U              6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[ 1800.366125][T27948] Tainted: [U]=USER
[ 1800.366134][T27948] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1800.366151][T27948] Call Trace:
[ 1800.366160][T27948]  <TASK>
[ 1800.366170][T27948]  dump_stack_lvl+0x16c/0x1f0
[ 1800.366217][T27948]  should_fail_ex+0x512/0x640
[ 1800.366273][T27948]  should_fail_alloc_page+0xe7/0x130
[ 1800.366312][T27948]  prepare_alloc_pages+0x3c2/0x610
[ 1800.366355][T27948]  ? rcu_is_watching+0x12/0xc0
[ 1800.366384][T27948]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[ 1800.366425][T27948]  ? stack_trace_save+0x8e/0xc0
[ 1800.366453][T27948]  ? __pfx_stack_trace_save+0x10/0x10
[ 1800.366480][T27948]  ? stack_depot_save_flags+0x28/0xa50
[ 1800.366524][T27948]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1800.366561][T27948]  ? kasan_save_stack+0x42/0x60
[ 1800.366588][T27948]  ? kasan_save_stack+0x33/0x60
[ 1800.366614][T27948]  ? kasan_save_track+0x14/0x30
[ 1800.366648][T27948]  ? vfs_open+0x82/0x3f0
[ 1800.366681][T27948]  ? path_openat+0x1e5e/0x2d40
[ 1800.366707][T27948]  ? do_filp_open+0x20b/0x470
[ 1800.366735][T27948]  ? do_sys_openat2+0x11b/0x1d0
[ 1800.366772][T27948]  ? __x64_sys_openat+0x174/0x210
[ 1800.366812][T27948]  ? do_syscall_64+0xcd/0x230
[ 1800.366853][T27948]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1800.366888][T27948]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1800.366928][T27948]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1800.366971][T27948]  ? policy_nodemask+0xea/0x4e0
[ 1800.367011][T27948]  alloc_pages_mpol+0x1fb/0x550
[ 1800.367050][T27948]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1800.367100][T27948]  alloc_pages_noprof+0x131/0x390
[ 1800.367139][T27948]  get_zeroed_page_noprof+0x14/0x50
[ 1800.367182][T27948]  get_image_page+0x18/0x190
[ 1800.367211][T27948]  alloc_rtree_node+0x3c/0xb0
[ 1800.367241][T27948]  memory_bm_create+0x515/0x810
[ 1800.367292][T27948]  create_basic_memory_bitmaps+0xc1/0x680
[ 1800.367333][T27948]  snapshot_open+0x235/0x2b0
[ 1800.367368][T27948]  ? __pfx_snapshot_open+0x10/0x10
[ 1800.367404][T27948]  misc_open+0x35d/0x420
[ 1800.367431][T27948]  ? __pfx_misc_open+0x10/0x10
[ 1800.367458][T27948]  chrdev_open+0x231/0x6a0
[ 1800.367490][T27948]  ? __pfx_apparmor_file_open+0x10/0x10
[ 1800.367531][T27948]  ? __pfx_chrdev_open+0x10/0x10
[ 1800.367566][T27948]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[ 1800.367620][T27948]  do_dentry_open+0x741/0x1c10
[ 1800.367652][T27948]  ? __pfx_chrdev_open+0x10/0x10
[ 1800.367693][T27948]  vfs_open+0x82/0x3f0
[ 1800.367736][T27948]  path_openat+0x1e5e/0x2d40
[ 1800.367780][T27948]  ? __pfx_path_openat+0x10/0x10
[ 1800.367820][T27948]  do_filp_open+0x20b/0x470
[ 1800.367851][T27948]  ? __pfx_do_filp_open+0x10/0x10
[ 1800.367909][T27948]  ? alloc_fd+0x471/0x7d0
[ 1800.367947][T27948]  do_sys_openat2+0x11b/0x1d0
[ 1800.367987][T27948]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1800.368045][T27948]  __x64_sys_openat+0x174/0x210
[ 1800.368085][T27948]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1800.368129][T27948]  ? rcu_is_watching+0x12/0xc0
[ 1800.368168][T27948]  do_syscall_64+0xcd/0x230
[ 1800.368217][T27948]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1800.368245][T27948] RIP: 0033:0x7f12e318e969
[ 1800.368274][T27948] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1800.368304][T27948] RSP: 002b:00007f12e3f58038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1800.368333][T27948] RAX: ffffffffffffffda RBX: 00007f12e33b5fa0 RCX: 00007f12e318e969
[ 1800.368353][T27948] RDX: 0000000000184b01 RSI: 0000200000000000 RDI: ffffffffffffff9c
[ 1800.368373][T27948] RBP: 00007f12e3210ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1800.368392][T27948] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1800.368411][T27948] R13: 0000000000000000 R14: 00007f12e33b5fa0 R15: 00007fff956fa868
[ 1800.368451][T27948]  </TASK>
[ 1800.752073][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1801.220429][ T5834] Bluetooth: hci0: command tx timeout
[ 1801.286547][T12666] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1801.315938][T12658] EXT4-fs (sda1): Delayed block allocation failed for inode 2026 at logical offset 2 with max blocks 7 with error 117
[ 1801.342758][T12658] EXT4-fs (sda1): This should not happen!! Data will be lost
[ 1801.342758][T12658] 
[ 1801.394397][T27945] chnl_net:caif_netlink_parms(): no params data found
[ 1801.561969][T12666] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1801.886409][T12666] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1801.924266][T27945] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1801.941761][T27945] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1801.972316][T27945] bridge_slave_0: entered allmulticast mode
[ 1801.994814][T27945] bridge_slave_0: entered promiscuous mode
[ 1802.118085][T12666] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1802.165333][T27945] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1802.178386][T27945] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1802.195126][T27945] bridge_slave_1: entered allmulticast mode
[ 1802.206665][T27945] bridge_slave_1: entered promiscuous mode
[ 1802.407753][T27945] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1802.427910][T27945] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1802.658915][T27945] team0: Port device team_slave_0 added
[ 1802.706020][T27945] team0: Port device team_slave_1 added
[ 1802.880943][T27945] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1802.900915][T27945] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1802.933990][T27945] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1802.996019][T27945] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1803.025153][T27945] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1803.134427][T27945] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1803.288386][ T5834] Bluetooth: hci0: command tx timeout
[ 1804.302287][T12666] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1804.329269][T12666] bond0 (unregistering): Released all slaves
[ 1804.525358][T27945] hsr_slave_0: entered promiscuous mode
[ 1804.532194][T27945] hsr_slave_1: entered promiscuous mode
[ 1804.545346][T27945] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1804.566661][T27945] Cannot create hsr debugfs directory
[ 1804.614493][T28020] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4957'.
[ 1805.089887][T28030] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4958'.
[ 1805.363036][ T5834] Bluetooth: hci0: command tx timeout
[ 1805.792814][T12666] hsr_slave_0: left promiscuous mode
[ 1805.828492][T12666] hsr_slave_1: left promiscuous mode
[ 1805.843475][T12666] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1805.861125][T12666] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1805.887614][T12666] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1805.906585][T12666] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1805.939427][T12666] veth1_macvtap: left promiscuous mode
[ 1805.951815][T12666] veth1_vlan: left promiscuous mode
[ 1805.958194][T12666] veth0_vlan: left promiscuous mode
[ 1806.769148][T28051] tc_dump_action: action bad kind
[ 1807.442887][ T5834] Bluetooth: hci0: command tx timeout
[ 1808.324915][   T30] audit: type=1804 audit(4294968431.645:75): pid=28083 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.4967" name="/newroot/81/file0" dev="tmpfs" ino=444 res=1 errno=0
[ 1808.382954][   T30] audit: type=1800 audit(4294968431.665:76): pid=28083 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.4967" name="file0" dev="tmpfs" ino=444 res=0 errno=0
[ 1808.725907][T27945] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 1808.747317][T27945] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 1808.777328][T27945] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 1808.811064][T27945] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 1808.975664][T27945] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1809.040157][T27945] 8021q: adding VLAN 0 to HW filter on device team0
[ 1809.112832][T28101] FAULT_INJECTION: forcing a failure.
[ 1809.112832][T28101] name failslab, interval 1, probability 0, space 0, times 0
[ 1809.127411][T28101] CPU: 1 UID: 0 PID: 28101 Comm: syz.1.4969 Tainted: G     U              6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[ 1809.127455][T28101] Tainted: [U]=USER
[ 1809.127465][T28101] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1809.127481][T28101] Call Trace:
[ 1809.127491][T28101]  <TASK>
[ 1809.127510][T28101]  dump_stack_lvl+0x16c/0x1f0
[ 1809.127560][T28101]  should_fail_ex+0x512/0x640
[ 1809.127605][T28101]  ? fs_reclaim_acquire+0xae/0x150
[ 1809.127654][T28101]  ? tomoyo_encode2+0x100/0x3e0
[ 1809.127698][T28101]  should_failslab+0xc2/0x120
[ 1809.127735][T28101]  __kmalloc_noprof+0xd2/0x510
[ 1809.127781][T28101]  tomoyo_encode2+0x100/0x3e0
[ 1809.127831][T28101]  tomoyo_encode+0x29/0x50
[ 1809.127872][T28101]  tomoyo_realpath_from_path+0x18f/0x6e0
[ 1809.127920][T28101]  ? tomoyo_profile+0x47/0x60
[ 1809.127953][T28101]  tomoyo_path_number_perm+0x245/0x580
[ 1809.127990][T28101]  ? tomoyo_path_number_perm+0x237/0x580
[ 1809.128032][T28101]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1809.128073][T28101]  ? find_held_lock+0x2b/0x80
[ 1809.128139][T28101]  ? find_held_lock+0x2b/0x80
[ 1809.128168][T28101]  ? hook_file_ioctl_common+0x145/0x410
[ 1809.128212][T28101]  ? __fget_files+0x20e/0x3c0
[ 1809.128247][T28101]  security_file_ioctl+0x9b/0x240
[ 1809.128290][T28101]  __x64_sys_ioctl+0xb7/0x200
[ 1809.128337][T28101]  do_syscall_64+0xcd/0x230
[ 1809.128386][T28101]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1809.128416][T28101] RIP: 0033:0x7f12e318e969
[ 1809.128440][T28101] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1809.128469][T28101] RSP: 002b:00007f12e3f37038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1809.128503][T28101] RAX: ffffffffffffffda RBX: 00007f12e33b6080 RCX: 00007f12e318e969
[ 1809.128523][T28101] RDX: fffffffffffff4e0 RSI: 0000000000005760 RDI: 0000000000000003
[ 1809.128541][T28101] RBP: 00007f12e3f37090 R08: 0000000000000000 R09: 0000000000000000
[ 1809.128559][T28101] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1809.128577][T28101] R13: 0000000000000000 R14: 00007f12e33b6080 R15: 00007fff956fa868
[ 1809.128617][T28101]  </TASK>
[ 1809.129043][T28101] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1809.388496][T23636] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1809.395740][T23636] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1809.432628][T12666] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1809.439814][T12666] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1810.545922][T27945] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1810.848921][T27945] veth0_vlan: entered promiscuous mode
[ 1810.900597][T27945] veth1_vlan: entered promiscuous mode
[ 1811.182675][T27945] veth0_macvtap: entered promiscuous mode
[ 1811.207723][T27945] veth1_macvtap: entered promiscuous mode
[ 1811.298818][T27945] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1811.315976][T27945] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1811.353676][T28154] FAULT_INJECTION: forcing a failure.
[ 1811.353676][T28154] name failslab, interval 1, probability 0, space 0, times 0
[ 1811.412526][T27945] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1811.431475][T28154] CPU: 0 UID: 0 PID: 28154 Comm: syz.2.4977 Tainted: G     U              6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[ 1811.431531][T28154] Tainted: [U]=USER
[ 1811.431543][T28154] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1811.431575][T28154] Call Trace:
[ 1811.431586][T28154]  <TASK>
[ 1811.431600][T28154]  dump_stack_lvl+0x16c/0x1f0
[ 1811.431662][T28154]  should_fail_ex+0x512/0x640
[ 1811.431706][T28154]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1811.431746][T28154]  should_failslab+0xc2/0x120
[ 1811.431784][T28154]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1811.431820][T28154]  ? alloc_empty_file+0x55/0x1e0
[ 1811.431868][T28154]  alloc_empty_file+0x55/0x1e0
[ 1811.431909][T28154]  dentry_open+0x46/0xd0
[ 1811.431949][T28154]  get_name+0x2c6/0x480
[ 1811.431978][T28154]  ? __pfx_get_name+0x10/0x10
[ 1811.432008][T28154]  ? __pfx_filldir_one+0x10/0x10
[ 1811.432038][T28154]  ? find_held_lock+0x2b/0x80
[ 1811.432091][T28154]  ? __pfx_reconnect_path+0x10/0x10
[ 1811.432120][T28154]  ? __pfx_kernfs_fh_to_parent+0x10/0x10
[ 1811.432174][T28154]  exportfs_decode_fh_raw+0x703/0x890
[ 1811.432203][T28154]  ? __pfx_vfs_dentry_acceptable+0x10/0x10
[ 1811.432254][T28154]  ? __pfx_exportfs_decode_fh_raw+0x10/0x10
[ 1811.432339][T28154]  do_handle_open+0x75e/0xb70
[ 1811.432386][T28154]  ? __pfx_do_handle_open+0x10/0x10
[ 1811.432428][T28154]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1811.432467][T28154]  ? xfd_validate_state+0x5d/0x180
[ 1811.432498][T28154]  ? rcu_is_watching+0x12/0xc0
[ 1811.432536][T28154]  ? do_syscall_64+0xcd/0x230
[ 1811.432580][T28154]  do_syscall_64+0xcd/0x230
[ 1811.432629][T28154]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1811.432660][T28154] RIP: 0033:0x7f5233b8e969
[ 1811.432684][T28154] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1811.432714][T28154] RSP: 002b:00007f5234a30038 EFLAGS: 00000246 ORIG_RAX: 0000000000000130
[ 1811.432742][T28154] RAX: ffffffffffffffda RBX: 00007f5233db6080 RCX: 00007f5233b8e969
[ 1811.432763][T28154] RDX: 0000000000000002 RSI: 0000200000000040 RDI: 0000000000000004
[ 1811.432782][T28154] RBP: 00007f5233c10ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1811.432801][T28154] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1811.432820][T28154] R13: 0000000000000000 R14: 00007f5233db6080 R15: 00007ffc305b0fa8
[ 1811.432858][T28154]  </TASK>
[ 1811.548328][T27945] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1812.181236][T27945] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1812.191248][T27945] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1812.491933][T28169] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4979'.
[ 1812.770158][T28169] veth0_macvtap: left promiscuous mode
[ 1812.808230][T23633] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1812.847340][T23633] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1812.984432][T23639] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1812.992286][T23639] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1814.964148][T28219] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4985'.
[ 1815.159637][T28228] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4988'.
[ 1815.327017][T28232] FAULT_INJECTION: forcing a failure.
[ 1815.327017][T28232] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1815.370563][T28232] CPU: 1 UID: 0 PID: 28232 Comm: syz.1.4989 Tainted: G     U              6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[ 1815.370614][T28232] Tainted: [U]=USER
[ 1815.370626][T28232] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1815.370646][T28232] Call Trace:
[ 1815.370657][T28232]  <TASK>
[ 1815.370670][T28232]  dump_stack_lvl+0x16c/0x1f0
[ 1815.370724][T28232]  should_fail_ex+0x512/0x640
[ 1815.370782][T28232]  _copy_from_user+0x2e/0xd0
[ 1815.370838][T28232]  load_msg+0x19e/0x4a0
[ 1815.370895][T28232]  do_mq_timedsend+0x3d7/0xc40
[ 1815.370937][T28232]  ? __pfx_do_mq_timedsend+0x10/0x10
[ 1815.370982][T28232]  ? __mutex_unlock_slowpath+0x161/0x6a0
[ 1815.371041][T28232]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1815.371100][T28232]  ? __fget_files+0x20e/0x3c0
[ 1815.371143][T28232]  __x64_sys_mq_timedsend+0x1cd/0x260
[ 1815.371181][T28232]  ? ksys_write+0x1b9/0x240
[ 1815.371215][T28232]  ? __pfx___x64_sys_mq_timedsend+0x10/0x10
[ 1815.371253][T28232]  ? rcu_is_watching+0x12/0xc0
[ 1815.371298][T28232]  do_syscall_64+0xcd/0x230
[ 1815.371354][T28232]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1815.371388][T28232] RIP: 0033:0x7f12e318e969
[ 1815.371414][T28232] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1815.371447][T28232] RSP: 002b:00007f12e3f58038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f2
[ 1815.371479][T28232] RAX: ffffffffffffffda RBX: 00007f12e33b5fa0 RCX: 00007f12e318e969
[ 1815.371502][T28232] RDX: 0000000000002000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1815.371523][T28232] RBP: 00007f12e3f58090 R08: 0000000000000000 R09: 0000000000000000
[ 1815.371545][T28232] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[ 1815.371577][T28232] R13: 0000000000000000 R14: 00007f12e33b5fa0 R15: 00007fff956fa868
[ 1815.371627][T28232]  </TASK>
[ 1816.018843][T28248] FAULT_INJECTION: forcing a failure.
[ 1816.018843][T28248] name failslab, interval 1, probability 0, space 0, times 0
[ 1816.062371][T28248] CPU: 1 UID: 0 PID: 28248 Comm: syz.1.4993 Tainted: G     U              6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[ 1816.062415][T28248] Tainted: [U]=USER
[ 1816.062425][T28248] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1816.062441][T28248] Call Trace:
[ 1816.062450][T28248]  <TASK>
[ 1816.062461][T28248]  dump_stack_lvl+0x16c/0x1f0
[ 1816.062509][T28248]  should_fail_ex+0x512/0x640
[ 1816.062556][T28248]  should_failslab+0xc2/0x120
[ 1816.062592][T28248]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1816.062626][T28248]  ? skb_clone+0x190/0x3f0
[ 1816.062667][T28248]  skb_clone+0x190/0x3f0
[ 1816.062708][T28248]  netlink_deliver_tap+0xabd/0xd30
[ 1816.062753][T28248]  netlink_unicast+0x6b2/0x7f0
[ 1816.062797][T28248]  ? __pfx_netlink_unicast+0x10/0x10
[ 1816.062833][T28248]  ? find_held_lock+0x2b/0x80
[ 1816.062861][T28248]  ? tcp_metrics_nl_cmd_get+0x712/0xe90
[ 1816.062911][T28248]  tcp_metrics_nl_cmd_get+0x868/0xe90
[ 1816.062959][T28248]  ? __pfx_tcp_metrics_nl_cmd_get+0x10/0x10
[ 1816.063012][T28248]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[ 1816.063065][T28248]  ? genl_family_rcv_msg_doit+0x206/0x2f0
[ 1816.063107][T28248]  genl_family_rcv_msg_doit+0x206/0x2f0
[ 1816.063154][T28248]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1816.063198][T28248]  ? genl_get_cmd+0x194/0x580
[ 1816.063248][T28248]  ? __local_bh_enable_ip+0xa4/0x120
[ 1816.063281][T28248]  ? __dev_queue_xmit+0x896/0x43e0
[ 1816.063306][T28248]  ? __radix_tree_lookup+0x21f/0x2c0
[ 1816.063352][T28248]  genl_rcv_msg+0x55c/0x800
[ 1816.063400][T28248]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1816.063441][T28248]  ? __pfx___dev_queue_xmit+0x10/0x10
[ 1816.063469][T28248]  ? __pfx_tcp_metrics_nl_cmd_get+0x10/0x10
[ 1816.063507][T28248]  ? __lock_acquire+0xaa4/0x1ba0
[ 1816.063552][T28248]  netlink_rcv_skb+0x16a/0x440
[ 1816.063591][T28248]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1816.063635][T28248]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1816.063693][T28248]  ? __pfx_down_read+0x10/0x10
[ 1816.063724][T28248]  ? netlink_deliver_tap+0x1ae/0xd30
[ 1816.063766][T28248]  genl_rcv+0x28/0x40
[ 1816.063804][T28248]  netlink_unicast+0x53d/0x7f0
[ 1816.063846][T28248]  ? __pfx_netlink_unicast+0x10/0x10
[ 1816.063883][T28248]  ? __lock_acquire+0xaa4/0x1ba0
[ 1816.063938][T28248]  netlink_sendmsg+0x8d1/0xdd0
[ 1816.063984][T28248]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1816.064036][T28248]  ____sys_sendmsg+0xa95/0xc70
[ 1816.064079][T28248]  ? copy_msghdr_from_user+0x10a/0x160
[ 1816.064114][T28248]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1816.064175][T28248]  ___sys_sendmsg+0x134/0x1d0
[ 1816.064212][T28248]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1816.064296][T28248]  __sys_sendmsg+0x16d/0x220
[ 1816.064333][T28248]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1816.064380][T28248]  ? rcu_is_watching+0x12/0xc0
[ 1816.064419][T28248]  do_syscall_64+0xcd/0x230
[ 1816.064465][T28248]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1816.064494][T28248] RIP: 0033:0x7f12e318e969
[ 1816.064516][T28248] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1816.064544][T28248] RSP: 002b:00007f12e3f58038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1816.064570][T28248] RAX: ffffffffffffffda RBX: 00007f12e33b5fa0 RCX: 00007f12e318e969
[ 1816.064589][T28248] RDX: 0000000000000000 RSI: 0000200000000380 RDI: 0000000000000003
[ 1816.064606][T28248] RBP: 00007f12e3f58090 R08: 0000000000000000 R09: 0000000000000000
[ 1816.064624][T28248] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1816.064641][T28248] R13: 0000000000000000 R14: 00007f12e33b5fa0 R15: 00007fff956fa868
[ 1816.064678][T28248]  </TASK>
[ 1817.006500][T28257] netlink: 25 bytes leftover after parsing attributes in process `syz.1.4994'.
[ 1818.412108][T28275] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4997'.
[ 1818.853363][T28287] FAULT_INJECTION: forcing a failure.
[ 1818.853363][T28287] name failslab, interval 1, probability 0, space 0, times 0
[ 1818.901836][T28287] CPU: 0 UID: 0 PID: 28287 Comm: syz.2.5003 Tainted: G     U              6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[ 1818.901885][T28287] Tainted: [U]=USER
[ 1818.901897][T28287] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1818.901915][T28287] Call Trace:
[ 1818.901926][T28287]  <TASK>
[ 1818.901938][T28287]  dump_stack_lvl+0x16c/0x1f0
[ 1818.901990][T28287]  should_fail_ex+0x512/0x640
[ 1818.902035][T28287]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1818.902075][T28287]  should_failslab+0xc2/0x120
[ 1818.902114][T28287]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1818.902146][T28287]  ? find_held_lock+0x2b/0x80
[ 1818.902175][T28287]  ? skb_clone+0x190/0x3f0
[ 1818.902218][T28287]  skb_clone+0x190/0x3f0
[ 1818.902257][T28287]  netlink_broadcast_filtered+0xb19/0xf10
[ 1818.902308][T28287]  ? sprintf+0xcc/0x100
[ 1818.902347][T28287]  ? __pfx_netlink_broadcast_filtered+0x10/0x10
[ 1818.902397][T28287]  ? netlink_has_listeners+0x20f/0x430
[ 1818.902440][T28287]  netlink_broadcast+0x39/0x50
[ 1818.902479][T28287]  kobject_uevent_env+0xc6a/0x1870
[ 1818.902520][T28287]  ? bus_to_subsys+0x131/0x160
[ 1818.902571][T28287]  device_add+0x10dd/0x1a70
[ 1818.902618][T28287]  ? __pfx_device_add+0x10/0x10
[ 1818.902665][T28287]  ? kfree+0x252/0x4d0
[ 1818.902710][T28287]  device_create_groups_vargs+0x1f8/0x270
[ 1818.902760][T28287]  device_create+0xed/0x130
[ 1818.902804][T28287]  ? __pfx_device_create+0x10/0x10
[ 1818.902848][T28287]  ? do_init_timer+0xc9/0x110
[ 1818.902881][T28287]  ? ieee80211_roc_setup+0x136/0x270
[ 1818.902926][T28287]  ? ieee80211_alloc_hw_nm+0x231/0x2260
[ 1818.902964][T28287]  mac80211_hwsim_new_radio+0x369/0x54d0
[ 1818.903031][T28287]  ? __asan_memset+0x23/0x50
[ 1818.903061][T28287]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[ 1818.903120][T28287]  hwsim_new_radio_nl+0xb51/0x12c0
[ 1818.903172][T28287]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[ 1818.903231][T28287]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[ 1818.903281][T28287]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[ 1818.903337][T28287]  genl_family_rcv_msg_doit+0x206/0x2f0
[ 1818.903384][T28287]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1818.903430][T28287]  ? trace_cap_capable+0x18d/0x200
[ 1818.903471][T28287]  ? bpf_lsm_capable+0x9/0x10
[ 1818.903502][T28287]  ? security_capable+0x7e/0x260
[ 1818.903536][T28287]  ? ns_capable+0xd7/0x110
[ 1818.903571][T28287]  genl_rcv_msg+0x55c/0x800
[ 1818.903619][T28287]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1818.903674][T28287]  ? __pfx___dev_queue_xmit+0x10/0x10
[ 1818.903705][T28287]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[ 1818.903756][T28287]  ? __lock_acquire+0xaa4/0x1ba0
[ 1818.903804][T28287]  netlink_rcv_skb+0x16a/0x440
[ 1818.903843][T28287]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1818.903890][T28287]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1818.903950][T28287]  ? __pfx_down_read+0x10/0x10
[ 1818.903980][T28287]  ? netlink_deliver_tap+0x1ae/0xd30
[ 1818.904024][T28287]  genl_rcv+0x28/0x40
[ 1818.904065][T28287]  netlink_unicast+0x53d/0x7f0
[ 1818.904110][T28287]  ? __pfx_netlink_unicast+0x10/0x10
[ 1818.904147][T28287]  ? __lock_acquire+0xaa4/0x1ba0
[ 1818.904196][T28287]  netlink_sendmsg+0x8d1/0xdd0
[ 1818.904243][T28287]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1818.904299][T28287]  ____sys_sendmsg+0xa95/0xc70
[ 1818.904347][T28287]  ? copy_msghdr_from_user+0x10a/0x160
[ 1818.904383][T28287]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1818.904448][T28287]  ___sys_sendmsg+0x134/0x1d0
[ 1818.904487][T28287]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1818.904572][T28287]  __sys_sendmsg+0x16d/0x220
[ 1818.904610][T28287]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1818.904655][T28287]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1818.904699][T28287]  ? rcu_is_watching+0x12/0xc0
[ 1818.904739][T28287]  do_syscall_64+0xcd/0x230
[ 1818.904791][T28287]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1818.904820][T28287] RIP: 0033:0x7f5233b8e969
[ 1818.904844][T28287] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1818.904873][T28287] RSP: 002b:00007f5234a51038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1818.904901][T28287] RAX: ffffffffffffffda RBX: 00007f5233db5fa0 RCX: 00007f5233b8e969
[ 1818.904921][T28287] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000007
[ 1818.904940][T28287] RBP: 00007f5233c10ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1818.904957][T28287] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1818.904974][T28287] R13: 0000000000000000 R14: 00007f5233db5fa0 R15: 00007ffc305b0fa8
[ 1818.905013][T28287]  </TASK>
[ 1820.439846][T28298] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input51
[ 1822.395354][T28339] afs: Bad value for 'source'
[ 1822.936128][T28352] netlink: 28 bytes leftover after parsing attributes in process `syz.0.5017'.
[ 1823.009806][T28354] FAULT_INJECTION: forcing a failure.
[ 1823.009806][T28354] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1823.050296][T28354] CPU: 1 UID: 0 PID: 28354 Comm: syz.1.5018 Tainted: G     U              6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[ 1823.050344][T28354] Tainted: [U]=USER
[ 1823.050354][T28354] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1823.050371][T28354] Call Trace:
[ 1823.050381][T28354]  <TASK>
[ 1823.050392][T28354]  dump_stack_lvl+0x16c/0x1f0
[ 1823.050465][T28354]  should_fail_ex+0x512/0x640
[ 1823.050522][T28354]  should_fail_alloc_page+0xe7/0x130
[ 1823.050575][T28354]  prepare_alloc_pages+0x3c2/0x610
[ 1823.050634][T28354]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[ 1823.050682][T28354]  ? do_raw_spin_lock+0x12c/0x2b0
[ 1823.050746][T28354]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1823.050792][T28354]  ? kvm_mmu_notifier_invalidate_range_start+0x742/0xb00
[ 1823.050839][T28354]  ? kvm_mmu_notifier_invalidate_range_start+0x761/0xb00
[ 1823.050884][T28354]  ? __lock_acquire+0xaa4/0x1ba0
[ 1823.050929][T28354]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1823.050979][T28354]  ? policy_nodemask+0xea/0x4e0
[ 1823.051024][T28354]  alloc_pages_mpol+0x1fb/0x550
[ 1823.051069][T28354]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1823.051125][T28354]  alloc_pages_noprof+0x131/0x390
[ 1823.051168][T28354]  __pmd_alloc+0x3f/0x870
[ 1823.051222][T28354]  move_page_tables+0x2877/0x3f60
[ 1823.051273][T28354]  ? __pfx_copy_vma+0x10/0x10
[ 1823.051320][T28354]  ? __pfx_move_page_tables+0x10/0x10
[ 1823.051360][T28354]  ? register_lock_class+0x41/0x4c0
[ 1823.051404][T28354]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 1823.051463][T28354]  ? __lock_acquire+0x5ca/0x1ba0
[ 1823.051510][T28354]  copy_vma_and_data+0x216/0x810
[ 1823.051570][T28354]  ? __pfx_copy_vma_and_data+0x10/0x10
[ 1823.051626][T28354]  ? __vma_enter_locked+0x163/0x3f0
[ 1823.051665][T28354]  ? find_held_lock+0x2b/0x80
[ 1823.051694][T28354]  ? move_vma+0x536/0x1740
[ 1823.051736][T28354]  move_vma+0x548/0x1740
[ 1823.051776][T28354]  ? __pfx_move_vma+0x10/0x10
[ 1823.051814][T28354]  ? mm_get_unmapped_area_vmflags+0x97/0xe0
[ 1823.051858][T28354]  ? cap_mmap_addr+0x4b/0x120
[ 1823.051887][T28354]  ? bpf_lsm_mmap_addr+0x9/0x10
[ 1823.051911][T28354]  ? security_mmap_addr+0x6c/0x1e0
[ 1823.051950][T28354]  ? __get_unmapped_area+0x26a/0x440
[ 1823.051998][T28354]  ? vrm_set_new_addr+0x208/0x290
[ 1823.052034][T28354]  __do_sys_mremap+0xe38/0x15d0
[ 1823.052073][T28354]  ? __pfx___do_sys_mremap+0x10/0x10
[ 1823.052108][T28354]  ? __mutex_unlock_slowpath+0x161/0x6a0
[ 1823.052157][T28354]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1823.052207][T28354]  ? __fget_files+0x20e/0x3c0
[ 1823.052247][T28354]  ? rcu_is_watching+0x12/0xc0
[ 1823.052285][T28354]  do_syscall_64+0xcd/0x230
[ 1823.052331][T28354]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1823.052359][T28354] RIP: 0033:0x7f12e318e969
[ 1823.052381][T28354] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1823.052408][T28354] RSP: 002b:00007f12e3f58038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019
[ 1823.052434][T28354] RAX: ffffffffffffffda RBX: 00007f12e33b5fa0 RCX: 00007f12e318e969
[ 1823.052452][T28354] RDX: 0000000000000004 RSI: 0000000000000004 RDI: 00000000fffff000
[ 1823.052469][T28354] RBP: 00007f12e3f58090 R08: 00000001001ff000 R09: 0000000000000000
[ 1823.052487][T28354] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000001
[ 1823.052504][T28354] R13: 0000000000000000 R14: 00007f12e33b5fa0 R15: 00007fff956fa868
[ 1823.052546][T28354]  </TASK>
[ 1824.483515][T28368] Bluetooth: hci2: command 0x0406 tx timeout
[ 1825.634011][T28387] FAULT_INJECTION: forcing a failure.
[ 1825.634011][T28387] name failslab, interval 1, probability 0, space 0, times 0
[ 1825.646757][T28387] CPU: 0 UID: 0 PID: 28387 Comm: syz.1.5025 Tainted: G     U              6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[ 1825.646794][T28387] Tainted: [U]=USER
[ 1825.646805][T28387] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1825.646823][T28387] Call Trace:
[ 1825.646835][T28387]  <TASK>
[ 1825.646843][T28387]  dump_stack_lvl+0x16c/0x1f0
[ 1825.646879][T28387]  should_fail_ex+0x512/0x640
[ 1825.646911][T28387]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1825.646938][T28387]  should_failslab+0xc2/0x120
[ 1825.646965][T28387]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1825.646990][T28387]  ? alloc_empty_file+0x55/0x1e0
[ 1825.647021][T28387]  alloc_empty_file+0x55/0x1e0
[ 1825.647050][T28387]  dentry_open+0x46/0xd0
[ 1825.647077][T28387]  get_name+0x2c6/0x480
[ 1825.647097][T28387]  ? __pfx_get_name+0x10/0x10
[ 1825.647119][T28387]  ? __pfx_filldir_one+0x10/0x10
[ 1825.647138][T28387]  ? find_held_lock+0x2b/0x80
[ 1825.647175][T28387]  ? __pfx_reconnect_path+0x10/0x10
[ 1825.647195][T28387]  ? __pfx_kernfs_fh_to_parent+0x10/0x10
[ 1825.647232][T28387]  exportfs_decode_fh_raw+0x703/0x890
[ 1825.647252][T28387]  ? __pfx_vfs_dentry_acceptable+0x10/0x10
[ 1825.647287][T28387]  ? __pfx_exportfs_decode_fh_raw+0x10/0x10
[ 1825.647344][T28387]  do_handle_open+0x75e/0xb70
[ 1825.647377][T28387]  ? __pfx_do_handle_open+0x10/0x10
[ 1825.647405][T28387]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1825.647432][T28387]  ? xfd_validate_state+0x5d/0x180
[ 1825.647477][T28387]  ? rcu_is_watching+0x12/0xc0
[ 1825.647505][T28387]  ? do_syscall_64+0xcd/0x230
[ 1825.647537][T28387]  do_syscall_64+0xcd/0x230
[ 1825.647591][T28387]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1825.647615][T28387] RIP: 0033:0x7f12e318e969
[ 1825.647633][T28387] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1825.647656][T28387] RSP: 002b:00007f12e3f37038 EFLAGS: 00000246 ORIG_RAX: 0000000000000130
[ 1825.647677][T28387] RAX: ffffffffffffffda RBX: 00007f12e33b6080 RCX: 00007f12e318e969
[ 1825.647693][T28387] RDX: 0000000000000002 RSI: 0000200000000040 RDI: 0000000000000004
[ 1825.647708][T28387] RBP: 00007f12e3210ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1825.647723][T28387] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1825.647737][T28387] R13: 0000000000000000 R14: 00007f12e33b6080 R15: 00007fff956fa868
[ 1825.647766][T28387]  </TASK>
[ 1826.162846][T25277] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[ 1828.610898][T12682] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1828.839463][T12682] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1829.195498][T12682] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1829.312358][ T5834] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1829.324251][ T5834] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1829.338174][ T5834] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1829.360552][ T5834] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1829.369395][ T5834] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1829.411197][T12682] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1830.359688][T12682] bridge_slave_1: left allmulticast mode
[ 1830.377238][T12682] bridge_slave_1: left promiscuous mode
[ 1830.412969][T12682] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1830.458227][T12682] bridge_slave_0: left allmulticast mode
[ 1830.470911][T12682] bridge_slave_0: left promiscuous mode
[ 1830.496577][T12682] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1831.173428][T12682] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1831.187273][T12682] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1831.198541][T12682] bond0 (unregistering): Released all slaves
[ 1831.240167][T28429] chnl_net:caif_netlink_parms(): no params data found
[ 1831.443051][ T5834] Bluetooth: hci0: command tx timeout
[ 1831.880113][T28429] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1831.901247][T28429] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1831.909619][T28429] bridge_slave_0: entered allmulticast mode
[ 1831.923810][T28429] bridge_slave_0: entered promiscuous mode
[ 1832.040936][T12682] hsr_slave_0: left promiscuous mode
[ 1832.064058][T12682] hsr_slave_1: left promiscuous mode
[ 1832.076008][T12682] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1832.083860][T12682] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1832.105133][T12682] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1832.116036][T12682] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1832.189335][T12682] veth1_macvtap: left promiscuous mode
[ 1832.194951][T12682] veth0_macvtap: left promiscuous mode
[ 1832.211154][T12682] veth1_vlan: left promiscuous mode
[ 1832.217179][T12682] veth0_vlan: left promiscuous mode
[ 1833.478904][T12682] team0 (unregistering): Port device team_slave_1 removed
[ 1833.524823][ T5834] Bluetooth: hci0: command tx timeout
[ 1833.549542][T12682] team0 (unregistering): Port device team_slave_0 removed
[ 1834.602199][T28491] netlink: 'syz.1.5049': attribute type 1 has an invalid length.
[ 1835.402859][T28429] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1835.415218][T28429] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1835.452944][T28429] bridge_slave_1: entered allmulticast mode
[ 1835.478703][T28429] bridge_slave_1: entered promiscuous mode
[ 1835.603217][ T5834] Bluetooth: hci0: command tx timeout
[ 1835.627055][T28429] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1835.729601][T28429] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1836.271185][T28429] team0: Port device team_slave_0 added
[ 1836.326211][T28429] team0: Port device team_slave_1 added
[ 1836.725243][T28429] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1836.752616][T28429] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1837.606865][T28429] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1837.640603][T28429] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1837.670468][T28429] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1837.706397][ T5834] Bluetooth: hci0: command tx timeout
[ 1837.746157][T28429] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1837.960758][T28503] HfR: entered promiscuous mode
[ 1838.399777][T28429] hsr_slave_0: entered promiscuous mode
[ 1838.421135][T28429] hsr_slave_1: entered promiscuous mode
[ 1838.453263][T28429] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1838.460864][T28429] Cannot create hsr debugfs directory
[ 1838.938520][T28521] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5056'.
[ 1838.956814][T28521] Format for adding new device is "id port_count num_queues" (uint uint unit).
[ 1839.866513][T28539] FAULT_INJECTION: forcing a failure.
[ 1839.866513][T28539] name failslab, interval 1, probability 0, space 0, times 0
[ 1839.968475][T28539] CPU: 1 UID: 0 PID: 28539 Comm: syz.1.5060 Tainted: G     U              6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[ 1839.968524][T28539] Tainted: [U]=USER
[ 1839.968533][T28539] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1839.968551][T28539] Call Trace:
[ 1839.968560][T28539]  <TASK>
[ 1839.968573][T28539]  dump_stack_lvl+0x16c/0x1f0
[ 1839.968621][T28539]  should_fail_ex+0x512/0x640
[ 1839.968664][T28539]  ? fs_reclaim_acquire+0xae/0x150
[ 1839.968713][T28539]  ? tomoyo_encode2+0x100/0x3e0
[ 1839.968756][T28539]  should_failslab+0xc2/0x120
[ 1839.968794][T28539]  __kmalloc_noprof+0xd2/0x510
[ 1839.968824][T28539]  ? d_absolute_path+0x136/0x1a0
[ 1839.968868][T28539]  tomoyo_encode2+0x100/0x3e0
[ 1839.968917][T28539]  tomoyo_encode+0x29/0x50
[ 1839.968960][T28539]  tomoyo_realpath_from_path+0x18f/0x6e0
[ 1839.969017][T28539]  tomoyo_check_open_permission+0x2ab/0x3c0
[ 1839.969063][T28539]  ? init_file+0x93/0x4c0
[ 1839.969100][T28539]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[ 1839.969138][T28539]  ? exportfs_decode_fh_raw+0x703/0x890
[ 1839.969168][T28539]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1839.969234][T28539]  ? do_raw_spin_lock+0x12c/0x2b0
[ 1839.969289][T28539]  tomoyo_file_open+0x6b/0x90
[ 1839.969321][T28539]  security_file_open+0x84/0x1e0
[ 1839.969364][T28539]  do_dentry_open+0x596/0x1c10
[ 1839.969399][T28539]  ? lockdep_init_map_type+0x5c/0x280
[ 1839.969445][T28539]  vfs_open+0x82/0x3f0
[ 1839.969494][T28539]  dentry_open+0x71/0xd0
[ 1839.969534][T28539]  get_name+0x2c6/0x480
[ 1839.969562][T28539]  ? __pfx_get_name+0x10/0x10
[ 1839.969592][T28539]  ? __pfx_filldir_one+0x10/0x10
[ 1839.969621][T28539]  ? find_held_lock+0x2b/0x80
[ 1839.969674][T28539]  ? __pfx_reconnect_path+0x10/0x10
[ 1839.969704][T28539]  ? __pfx_kernfs_fh_to_parent+0x10/0x10
[ 1839.969758][T28539]  exportfs_decode_fh_raw+0x703/0x890
[ 1839.969786][T28539]  ? __pfx_vfs_dentry_acceptable+0x10/0x10
[ 1839.969835][T28539]  ? __pfx_exportfs_decode_fh_raw+0x10/0x10
[ 1839.969914][T28539]  do_handle_open+0x75e/0xb70
[ 1839.969961][T28539]  ? __pfx_do_handle_open+0x10/0x10
[ 1839.970002][T28539]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1839.970040][T28539]  ? xfd_validate_state+0x5d/0x180
[ 1839.970077][T28539]  ? rcu_is_watching+0x12/0xc0
[ 1839.970116][T28539]  ? do_syscall_64+0xcd/0x230
[ 1839.970161][T28539]  do_syscall_64+0xcd/0x230
[ 1839.970209][T28539]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1839.970239][T28539] RIP: 0033:0x7f12e318e969
[ 1839.970262][T28539] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1839.970291][T28539] RSP: 002b:00007f12e3f37038 EFLAGS: 00000246 ORIG_RAX: 0000000000000130
[ 1839.970319][T28539] RAX: ffffffffffffffda RBX: 00007f12e33b6080 RCX: 00007f12e318e969
[ 1839.970337][T28539] RDX: 0000000000000002 RSI: 0000200000000040 RDI: 0000000000000004
[ 1839.970355][T28539] RBP: 00007f12e3210ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1839.970374][T28539] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1839.970391][T28539] R13: 0000000000000000 R14: 00007f12e33b6080 R15: 00007fff956fa868
[ 1839.970430][T28539]  </TASK>
[ 1840.423251][T28539] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1841.764951][T28553] FAULT_INJECTION: forcing a failure.
[ 1841.764951][T28553] name failslab, interval 1, probability 0, space 0, times 0
[ 1841.778071][T28553] CPU: 1 UID: 0 PID: 28553 Comm: syz.0.5064 Tainted: G     U              6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[ 1841.778118][T28553] Tainted: [U]=USER
[ 1841.778129][T28553] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1841.778147][T28553] Call Trace:
[ 1841.778158][T28553]  <TASK>
[ 1841.778169][T28553]  dump_stack_lvl+0x16c/0x1f0
[ 1841.778219][T28553]  should_fail_ex+0x512/0x640
[ 1841.778258][T28553]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1841.778286][T28553]  should_failslab+0xc2/0x120
[ 1841.778313][T28553]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1841.778338][T28553]  ? alloc_empty_file+0x55/0x1e0
[ 1841.778369][T28553]  alloc_empty_file+0x55/0x1e0
[ 1841.778397][T28553]  dentry_open+0x46/0xd0
[ 1841.778424][T28553]  get_name+0x2c6/0x480
[ 1841.778444][T28553]  ? __pfx_get_name+0x10/0x10
[ 1841.778465][T28553]  ? __pfx_filldir_one+0x10/0x10
[ 1841.778485][T28553]  ? find_held_lock+0x2b/0x80
[ 1841.778521][T28553]  ? __pfx_reconnect_path+0x10/0x10
[ 1841.778541][T28553]  ? __pfx_kernfs_fh_to_parent+0x10/0x10
[ 1841.778578][T28553]  exportfs_decode_fh_raw+0x703/0x890
[ 1841.778598][T28553]  ? __pfx_vfs_dentry_acceptable+0x10/0x10
[ 1841.778642][T28553]  ? __pfx_exportfs_decode_fh_raw+0x10/0x10
[ 1841.778693][T28553]  do_handle_open+0x75e/0xb70
[ 1841.778726][T28553]  ? __pfx_do_handle_open+0x10/0x10
[ 1841.778754][T28553]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1841.778781][T28553]  ? xfd_validate_state+0x5d/0x180
[ 1841.778802][T28553]  ? rcu_is_watching+0x12/0xc0
[ 1841.778828][T28553]  ? do_syscall_64+0xcd/0x230
[ 1841.778858][T28553]  do_syscall_64+0xcd/0x230
[ 1841.778892][T28553]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1841.778913][T28553] RIP: 0033:0x7f14dc98e969
[ 1841.778929][T28553] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1841.778950][T28553] RSP: 002b:00007f14dd70f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000130
[ 1841.778970][T28553] RAX: ffffffffffffffda RBX: 00007f14dcbb6080 RCX: 00007f14dc98e969
[ 1841.778984][T28553] RDX: 0000000000000002 RSI: 0000200000000040 RDI: 0000000000000004
[ 1841.778997][T28553] RBP: 00007f14dca10ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1841.779009][T28553] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1841.779021][T28553] R13: 0000000000000000 R14: 00007f14dcbb6080 R15: 00007ffcc08e2438
[ 1841.779047][T28553]  </TASK>
[ 1842.017822][T28552] netlink: 28 bytes leftover after parsing attributes in process `syz.1.5063'.
[ 1842.484506][T28429] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 1842.552395][T28429] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 1842.654893][T28429] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 1842.735699][T28429] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 1843.226825][T28429] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1843.312090][T28429] 8021q: adding VLAN 0 to HW filter on device team0
[ 1843.359582][T12666] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1843.366795][T12666] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1843.461513][T23639] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1843.468748][T23639] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1844.328863][T28429] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1844.405265][T28429] veth0_vlan: entered promiscuous mode
[ 1844.438572][T28429] veth1_vlan: entered promiscuous mode
[ 1844.512911][T28429] veth0_macvtap: entered promiscuous mode
[ 1844.528324][T28429] veth1_macvtap: entered promiscuous mode
[ 1844.577494][T28429] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1844.616387][T28429] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1844.639846][T28429] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1844.655827][T28429] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1844.667307][T28429] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1844.677842][T28429] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1844.745282][T28582] nvme_fabrics: unknown parameter or missing value '7' in ctrl creation request
[ 1844.856761][T23636] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1844.872828][T23636] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1844.931287][T23636] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1844.947569][T23636] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1846.470993][T28603] FAULT_INJECTION: forcing a failure.
[ 1846.470993][T28603] name failslab, interval 1, probability 0, space 0, times 0
[ 1846.500347][T28603] CPU: 1 UID: 0 PID: 28603 Comm: syz.3.5074 Tainted: G     U              6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[ 1846.500397][T28603] Tainted: [U]=USER
[ 1846.500425][T28603] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1846.500447][T28603] Call Trace:
[ 1846.500458][T28603]  <TASK>
[ 1846.500472][T28603]  dump_stack_lvl+0x16c/0x1f0
[ 1846.500529][T28603]  should_fail_ex+0x512/0x640
[ 1846.500578][T28603]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1846.500624][T28603]  should_failslab+0xc2/0x120
[ 1846.500668][T28603]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1846.500710][T28603]  ? security_file_alloc+0x34/0x2b0
[ 1846.500765][T28603]  security_file_alloc+0x34/0x2b0
[ 1846.500813][T28603]  init_file+0x93/0x4c0
[ 1846.500855][T28603]  alloc_empty_file+0x73/0x1e0
[ 1846.500901][T28603]  dentry_open+0x46/0xd0
[ 1846.500946][T28603]  get_name+0x2c6/0x480
[ 1846.500978][T28603]  ? __pfx_get_name+0x10/0x10
[ 1846.501013][T28603]  ? __pfx_filldir_one+0x10/0x10
[ 1846.501046][T28603]  ? find_held_lock+0x2b/0x80
[ 1846.501110][T28603]  ? __pfx_reconnect_path+0x10/0x10
[ 1846.501143][T28603]  ? __pfx_kernfs_fh_to_parent+0x10/0x10
[ 1846.501203][T28603]  exportfs_decode_fh_raw+0x703/0x890
[ 1846.501244][T28603]  ? __pfx_vfs_dentry_acceptable+0x10/0x10
[ 1846.501303][T28603]  ? __pfx_exportfs_decode_fh_raw+0x10/0x10
[ 1846.501392][T28603]  do_handle_open+0x75e/0xb70
[ 1846.501445][T28603]  ? __pfx_do_handle_open+0x10/0x10
[ 1846.501493][T28603]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1846.501537][T28603]  ? xfd_validate_state+0x5d/0x180
[ 1846.501591][T28603]  ? rcu_is_watching+0x12/0xc0
[ 1846.501641][T28603]  ? do_syscall_64+0xcd/0x230
[ 1846.501684][T28603]  do_syscall_64+0xcd/0x230
[ 1846.501731][T28603]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1846.501760][T28603] RIP: 0033:0x7f06e0d8e969
[ 1846.501783][T28603] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1846.501813][T28603] RSP: 002b:00007f06e1bab038 EFLAGS: 00000246 ORIG_RAX: 0000000000000130
[ 1846.501839][T28603] RAX: ffffffffffffffda RBX: 00007f06e0fb6080 RCX: 00007f06e0d8e969
[ 1846.501858][T28603] RDX: 0000000000000002 RSI: 0000200000000040 RDI: 0000000000000004
[ 1846.501876][T28603] RBP: 00007f06e0e10ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1846.501895][T28603] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1846.501913][T28603] R13: 0000000000000000 R14: 00007f06e0fb6080 R15: 00007ffcdf518738
[ 1846.501950][T28603]  </TASK>
[ 1849.578554][T28642] netlink: 28 bytes leftover after parsing attributes in process `syz.3.5082'.
[ 1850.165540][T28609] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1850.202985][T28609] Bluetooth: hci2: Opcode 0x0406 failed: -4
[ 1850.270989][T28609] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1850.289352][T28609] Bluetooth: hci3: Opcode 0x0406 failed: -4
[ 1850.358218][T28609] Bluetooth: hci3: Opcode 0x0406 failed: -4
[ 1850.403128][ T5834] Bluetooth: hci2: command 0x0406 tx timeout
[ 1850.443829][T28609] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1850.482658][T28609] Bluetooth: hci4: Opcode 0x0406 failed: -4
[ 1850.553632][T28609] Bluetooth: hci4: Opcode 0x0406 failed: -4
[ 1850.609864][T28609] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1850.632897][T28609] Bluetooth: hci0: Opcode 0x0406 failed: -4
[ 1850.732346][T28609] Bluetooth: hci0: Opcode 0x0406 failed: -4
[ 1851.846791][T28671] FAULT_INJECTION: forcing a failure.
[ 1851.846791][T28671] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1851.922842][T28671] CPU: 1 UID: 0 PID: 28671 Comm: syz.0.5089 Tainted: G     U              6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[ 1851.922886][T28671] Tainted: [U]=USER
[ 1851.922895][T28671] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1851.922911][T28671] Call Trace:
[ 1851.922920][T28671]  <TASK>
[ 1851.922931][T28671]  dump_stack_lvl+0x16c/0x1f0
[ 1851.922985][T28671]  should_fail_ex+0x512/0x640
[ 1851.923035][T28671]  _copy_to_user+0x32/0xd0
[ 1851.923064][T28671]  simple_read_from_buffer+0xcb/0x170
[ 1851.923113][T28671]  proc_fail_nth_read+0x197/0x270
[ 1851.923156][T28671]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1851.923200][T28671]  ? rw_verify_area+0xcf/0x680
[ 1851.923242][T28671]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1851.923285][T28671]  vfs_read+0x1de/0xc70
[ 1851.923318][T28671]  ? __pfx___mutex_lock+0x10/0x10
[ 1851.923364][T28671]  ? __pfx_vfs_read+0x10/0x10
[ 1851.923402][T28671]  ? __fget_files+0x20e/0x3c0
[ 1851.923440][T28671]  ksys_read+0x12a/0x240
[ 1851.923468][T28671]  ? __pfx_ksys_read+0x10/0x10
[ 1851.923493][T28671]  ? rcu_is_watching+0x12/0xc0
[ 1851.923531][T28671]  do_syscall_64+0xcd/0x230
[ 1851.923578][T28671]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1851.923607][T28671] RIP: 0033:0x7f14dc98d37c
[ 1851.923629][T28671] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1851.923657][T28671] RSP: 002b:00007f14dd730030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1851.923683][T28671] RAX: ffffffffffffffda RBX: 00007f14dcbb5fa0 RCX: 00007f14dc98d37c
[ 1851.923703][T28671] RDX: 000000000000000f RSI: 00007f14dd7300a0 RDI: 0000000000000009
[ 1851.923719][T28671] RBP: 00007f14dd730090 R08: 0000000000000000 R09: 0000000000000000
[ 1851.923737][T28671] R10: 00002000000002c0 R11: 0000000000000246 R12: 0000000000000001
[ 1851.923756][T28671] R13: 0000000000000000 R14: 00007f14dcbb5fa0 R15: 00007ffcc08e2438
[ 1851.923793][T28671]  </TASK>
[ 1852.352874][ T5834] Bluetooth: hci3: command 0x0c1a tx timeout
[ 1852.482943][ T5834] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1852.489028][ T5834] Bluetooth: hci2: command 0x0406 tx timeout
[ 1852.642804][ T5834] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1854.402897][ T5834] Bluetooth: hci3: command 0x0c1a tx timeout
[ 1854.567194][ T5834] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1854.722861][ T5834] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1856.091653][T28725] netlink: 16 bytes leftover after parsing attributes in process `syz.2.5102'.
[ 1856.109133][T28725] tc_dump_action: action bad kind
[ 1856.482990][ T5834] Bluetooth: hci3: command 0x0c1a tx timeout
[ 1856.642913][ T5834] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1856.802825][ T5834] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1856.838656][ T5834] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[ 1857.408287][T28737] FAULT_INJECTION: forcing a failure.
[ 1857.408287][T28737] name failslab, interval 1, probability 0, space 0, times 0
[ 1857.604677][T28737] CPU: 0 UID: 0 PID: 28737 Comm: syz.0.5105 Tainted: G     U              6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[ 1857.604713][T28737] Tainted: [U]=USER
[ 1857.604720][T28737] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1857.604733][T28737] Call Trace:
[ 1857.604740][T28737]  <TASK>
[ 1857.604748][T28737]  dump_stack_lvl+0x16c/0x1f0
[ 1857.604785][T28737]  should_fail_ex+0x512/0x640
[ 1857.604815][T28737]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[ 1857.604846][T28737]  should_failslab+0xc2/0x120
[ 1857.604872][T28737]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[ 1857.604904][T28737]  ? devinet_init_net+0xc3/0x910
[ 1857.604937][T28737]  kmemdup_noprof+0x29/0x60
[ 1857.604965][T28737]  devinet_init_net+0xc3/0x910
[ 1857.604995][T28737]  ? __pfx_devinet_init_net+0x10/0x10
[ 1857.605023][T28737]  ops_init+0x1e2/0x5f0
[ 1857.605052][T28737]  setup_net+0x21e/0x850
[ 1857.605081][T28737]  ? __pfx_setup_net+0x10/0x10
[ 1857.605106][T28737]  ? lockdep_init_map_type+0x5c/0x280
[ 1857.605136][T28737]  ? __pfx_down_read_killable+0x10/0x10
[ 1857.605159][T28737]  ? debug_mutex_init+0x37/0x70
[ 1857.605181][T28737]  copy_net_ns+0x2a6/0x5f0
[ 1857.605213][T28737]  create_new_namespaces+0x3ea/0xad0
[ 1857.605250][T28737]  unshare_nsproxy_namespaces+0xc0/0x1f0
[ 1857.605277][T28737]  ksys_unshare+0x45b/0xa40
[ 1857.605306][T28737]  ? __pfx_ksys_unshare+0x10/0x10
[ 1857.605334][T28737]  ? xfd_validate_state+0x5d/0x180
[ 1857.605355][T28737]  ? rcu_is_watching+0x12/0xc0
[ 1857.605380][T28737]  __x64_sys_unshare+0x31/0x40
[ 1857.605408][T28737]  do_syscall_64+0xcd/0x230
[ 1857.605441][T28737]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1857.605462][T28737] RIP: 0033:0x7f14dc98e969
[ 1857.605478][T28737] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1857.605498][T28737] RSP: 002b:00007f14da7f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1857.605516][T28737] RAX: ffffffffffffffda RBX: 00007f14dcbb6160 RCX: 00007f14dc98e969
[ 1857.605530][T28737] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 1857.605543][T28737] RBP: 00007f14dca10ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1857.605555][T28737] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1857.605567][T28737] R13: 0000000000000000 R14: 00007f14dcbb6160 R15: 00007ffcc08e2438
[ 1857.605594][T28737]  </TASK>
[ 1858.247342][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[ 1858.258737][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[ 1861.708671][T28794] aoe: could not set interface list: too many interfaces
[ 1864.570085][T28805] lo: entered allmulticast mode
[ 1864.575157][T28805] lo: left allmulticast mode
[ 1865.185954][T28820] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1867.291430][T28842] FAULT_INJECTION: forcing a failure.
[ 1867.291430][T28842] name failslab, interval 1, probability 0, space 0, times 0
[ 1867.322002][T28842] CPU: 0 UID: 0 PID: 28842 Comm: syz.3.5128 Tainted: G     U              6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[ 1867.322047][T28842] Tainted: [U]=USER
[ 1867.322058][T28842] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1867.322076][T28842] Call Trace:
[ 1867.322086][T28842]  <TASK>
[ 1867.322098][T28842]  dump_stack_lvl+0x16c/0x1f0
[ 1867.322148][T28842]  should_fail_ex+0x512/0x640
[ 1867.322191][T28842]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[ 1867.322234][T28842]  should_failslab+0xc2/0x120
[ 1867.322272][T28842]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[ 1867.322312][T28842]  ? __ip_vs_sctp_init+0x37/0x80
[ 1867.322363][T28842]  kmemdup_noprof+0x29/0x60
[ 1867.322411][T28842]  ? __pfx___ip_vs_sctp_init+0x10/0x10
[ 1867.322456][T28842]  __ip_vs_sctp_init+0x37/0x80
[ 1867.322504][T28842]  ip_vs_protocol_net_init+0x191/0x300
[ 1867.322550][T28842]  __ip_vs_init+0x239/0x520
[ 1867.322581][T28842]  ? __pfx___ip_vs_init+0x10/0x10
[ 1867.322608][T28842]  ops_init+0x1e2/0x5f0
[ 1867.322649][T28842]  setup_net+0x21e/0x850
[ 1867.322695][T28842]  ? __pfx_setup_net+0x10/0x10
[ 1867.322732][T28842]  ? lockdep_init_map_type+0x5c/0x280
[ 1867.322773][T28842]  ? __pfx_down_read_killable+0x10/0x10
[ 1867.322809][T28842]  ? debug_mutex_init+0x37/0x70
[ 1867.322842][T28842]  copy_net_ns+0x2a6/0x5f0
[ 1867.322887][T28842]  create_new_namespaces+0x3ea/0xad0
[ 1867.322930][T28842]  unshare_nsproxy_namespaces+0xc0/0x1f0
[ 1867.322968][T28842]  ksys_unshare+0x45b/0xa40
[ 1867.323010][T28842]  ? __pfx_ksys_unshare+0x10/0x10
[ 1867.323049][T28842]  ? xfd_validate_state+0x5d/0x180
[ 1867.323080][T28842]  ? rcu_is_watching+0x12/0xc0
[ 1867.323117][T28842]  __x64_sys_unshare+0x31/0x40
[ 1867.323157][T28842]  do_syscall_64+0xcd/0x230
[ 1867.323205][T28842]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1867.323235][T28842] RIP: 0033:0x7f06e0d8e969
[ 1867.323258][T28842] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1867.323288][T28842] RSP: 002b:00007f06e1bcc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1867.323316][T28842] RAX: ffffffffffffffda RBX: 00007f06e0fb5fa0 RCX: 00007f06e0d8e969
[ 1867.323335][T28842] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 1867.323353][T28842] RBP: 00007f06e0e10ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1867.323370][T28842] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1867.323396][T28842] R13: 0000000000000000 R14: 00007f06e0fb5fa0 R15: 00007ffcdf518738
[ 1867.323433][T28842]  </TASK>
[ 1868.474210][T28864] netlink: 342 bytes leftover after parsing attributes in process `syz.3.5134'.
[ 1871.529999][T28910] nvme_fabrics: missing parameter 'transport=%s'
[ 1871.547509][T28910] nvme_fabrics: missing parameter 'nqn=%s'
[ 1871.754386][T28912] nvme_fabrics: missing parameter 'transport=%s'
[ 1871.761087][T28912] nvme_fabrics: missing parameter 'nqn=%s'
[ 1872.319563][T28922] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5147'.
[ 1872.363569][T28924] tc_dump_action: action bad kind
[ 1872.899209][T28933] FAULT_INJECTION: forcing a failure.
[ 1872.899209][T28933] name failslab, interval 1, probability 0, space 0, times 0
[ 1872.917259][T28933] CPU: 0 UID: 0 PID: 28933 Comm: syz.0.5152 Tainted: G     U              6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[ 1872.917315][T28933] Tainted: [U]=USER
[ 1872.917326][T28933] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1872.917347][T28933] Call Trace:
[ 1872.917360][T28933]  <TASK>
[ 1872.917374][T28933]  dump_stack_lvl+0x16c/0x1f0
[ 1872.917432][T28933]  should_fail_ex+0x512/0x640
[ 1872.917478][T28933]  ? __kmalloc_noprof+0xbf/0x510
[ 1872.917516][T28933]  ? vkms_crtc_atomic_check+0x3c5/0x880
[ 1872.917549][T28933]  should_failslab+0xc2/0x120
[ 1872.917588][T28933]  __kmalloc_noprof+0xd2/0x510
[ 1872.917621][T28933]  ? drm_atomic_add_affected_planes+0x32b/0x3f0
[ 1872.917683][T28933]  vkms_crtc_atomic_check+0x3c5/0x880
[ 1872.917733][T28933]  ? __pfx_vkms_crtc_atomic_check+0x10/0x10
[ 1872.917769][T28933]  drm_atomic_helper_check_planes+0x4da/0x900
[ 1872.917834][T28933]  drm_atomic_helper_check+0xae/0x190
[ 1872.917878][T28933]  vkms_atomic_check+0x1d9/0x250
[ 1872.917931][T28933]  ? __pfx_vkms_atomic_check+0x10/0x10
[ 1872.917990][T28933]  drm_atomic_check_only+0x19ca/0x3130
[ 1872.918078][T28933]  drm_atomic_commit+0x136/0x300
[ 1872.918128][T28933]  ? __pfx_drm_atomic_commit+0x10/0x10
[ 1872.918196][T28933]  ? __pfx___drm_printfn_info+0x10/0x10
[ 1872.918252][T28933]  ? drm_client_rotation+0x4d9/0x6a0
[ 1872.918300][T28933]  drm_client_modeset_commit_atomic+0x69d/0x7e0
[ 1872.918359][T28933]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[ 1872.918453][T28933]  drm_client_modeset_commit_locked+0x14d/0x580
[ 1872.918504][T28933]  drm_client_modeset_commit+0x4f/0x80
[ 1872.918545][T28933]  __drm_fb_helper_restore_fbdev_mode_unlocked+0x19f/0x200
[ 1872.918585][T28933]  ? __pfx_drm_fbdev_client_restore+0x10/0x10
[ 1872.918636][T28933]  drm_fbdev_client_restore+0x2c/0x40
[ 1872.918682][T28933]  drm_client_dev_restore+0x1f3/0x2a0
[ 1872.918729][T28933]  drm_release+0x2c4/0x360
[ 1872.918771][T28933]  ? __pfx_drm_release+0x10/0x10
[ 1872.918807][T28933]  __fput+0x3ff/0xb70
[ 1872.918856][T28933]  task_work_run+0x14d/0x240
[ 1872.918906][T28933]  ? __pfx_task_work_run+0x10/0x10
[ 1872.918954][T28933]  ? __pfx___do_sys_close_range+0x10/0x10
[ 1872.918983][T28933]  ? rcu_is_watching+0x12/0xc0
[ 1872.919020][T28933]  syscall_exit_to_user_mode+0x27b/0x2a0
[ 1872.919069][T28933]  do_syscall_64+0xda/0x230
[ 1872.919118][T28933]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1872.919156][T28933] RIP: 0033:0x7f14dc98e969
[ 1872.919180][T28933] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1872.919214][T28933] RSP: 002b:00007f14dd730038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[ 1872.919244][T28933] RAX: 0000000000000000 RBX: 00007f14dcbb5fa0 RCX: 00007f14dc98e969
[ 1872.919265][T28933] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[ 1872.919285][T28933] RBP: 00007f14dca10ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1872.919304][T28933] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1872.919323][T28933] R13: 0000000000000000 R14: 00007f14dcbb5fa0 R15: 00007ffcc08e2438
[ 1872.919364][T28933]  </TASK>
[ 1873.490965][T28940] vivid-003: =================  START STATUS  =================
[ 1873.694631][T28940] vivid-003: Radio HW Seek Mode: Bounded
[ 1873.700350][T28940] vivid-003: Radio Programmable HW Seek: false
[ 1873.743279][T28940] vivid-003: RDS Rx I/O Mode: Block I/O
[ 1873.766116][T28940] vivid-003: Generate RBDS Instead of RDS: false
[ 1873.791389][T28940] vivid-003: RDS Reception: true
[ 1873.844588][T28940] vivid-003: RDS Program Type: 0 inactive
[ 1873.930222][T28940] vivid-003: RDS PS Name:  inactive
[ 1874.023677][T28940] vivid-003: RDS Radio Text:  inactive
[ 1874.078973][T28940] vivid-003: RDS Traffic Announcement: false inactive
[ 1874.105446][T28940] vivid-003: RDS Traffic Program: false inactive
[ 1874.158821][T28940] vivid-003: RDS Music: false inactive
[ 1874.309936][T28940] vivid-003: ==================  END STATUS  ==================
[ 1875.416637][T28969] FAULT_INJECTION: forcing a failure.
[ 1875.416637][T28969] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1875.523747][T28969] CPU: 0 UID: 0 PID: 28969 Comm: syz.3.5158 Tainted: G     U              6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[ 1875.523791][T28969] Tainted: [U]=USER
[ 1875.523801][T28969] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1875.523817][T28969] Call Trace:
[ 1875.523827][T28969]  <TASK>
[ 1875.523837][T28969]  dump_stack_lvl+0x16c/0x1f0
[ 1875.523885][T28969]  should_fail_ex+0x512/0x640
[ 1875.523932][T28969]  should_fail_alloc_page+0xe7/0x130
[ 1875.523972][T28969]  prepare_alloc_pages+0x3c2/0x610
[ 1875.524024][T28969]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[ 1875.524061][T28969]  ? find_held_lock+0x2b/0x80
[ 1875.524091][T28969]  ? is_bpf_text_address+0x8a/0x1a0
[ 1875.524127][T28969]  ? bpf_ksym_find+0x124/0x1c0
[ 1875.524174][T28969]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 1875.524207][T28969]  ? is_bpf_text_address+0x94/0x1a0
[ 1875.524246][T28969]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1875.524279][T28969]  ? __kernel_text_address+0xd/0x40
[ 1875.524305][T28969]  ? unwind_get_return_address+0x59/0xa0
[ 1875.524340][T28969]  ? arch_stack_walk+0xa6/0x100
[ 1875.524382][T28969]  ? __lock_acquire+0x5ca/0x1ba0
[ 1875.524422][T28969]  ? stack_trace_save+0x8e/0xc0
[ 1875.524451][T28969]  ? __pfx_stack_trace_save+0x10/0x10
[ 1875.524480][T28969]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1875.524522][T28969]  ? policy_nodemask+0xea/0x4e0
[ 1875.524562][T28969]  alloc_pages_mpol+0x1fb/0x550
[ 1875.524600][T28969]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1875.524648][T28969]  folio_alloc_mpol_noprof+0x36/0x2f0
[ 1875.524698][T28969]  shmem_alloc_folio+0x135/0x160
[ 1875.524729][T28969]  shmem_alloc_and_add_folio+0x499/0xc20
[ 1875.524776][T28969]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[ 1875.524816][T28969]  ? shmem_allowable_huge_orders+0xcb/0x2f0
[ 1875.524859][T28969]  shmem_get_folio_gfp+0x687/0x1530
[ 1875.524903][T28969]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[ 1875.524941][T28969]  ? filemap_map_pages+0xf6c/0x1680
[ 1875.524983][T28969]  shmem_fault+0x1fe/0xa30
[ 1875.525019][T28969]  ? __pfx_shmem_fault+0x10/0x10
[ 1875.525061][T28969]  ? __pfx_filemap_map_pages+0x10/0x10
[ 1875.525109][T28969]  __do_fault+0x10d/0x490
[ 1875.525148][T28969]  do_pte_missing+0x1031/0x3fb0
[ 1875.525182][T28969]  ? __handle_mm_fault+0x1010/0x2a40
[ 1875.525218][T28969]  __handle_mm_fault+0x103d/0x2a40
[ 1875.525260][T28969]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1875.525312][T28969]  ? find_vma+0xbf/0x140
[ 1875.525350][T28969]  ? __pfx_find_vma+0x10/0x10
[ 1875.525395][T28969]  handle_mm_fault+0x3fe/0xad0
[ 1875.525433][T28969]  do_user_addr_fault+0x7a6/0x1370
[ 1875.525467][T28969]  ? rcu_is_watching+0x12/0xc0
[ 1875.525498][T28969]  exc_page_fault+0x5c/0xc0
[ 1875.525540][T28969]  asm_exc_page_fault+0x26/0x30
[ 1875.525567][T28969] RIP: 0010:__get_user_8+0x14/0x30
[ 1875.525602][T28969] Code: ca c3 cc cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 ba 00 f0 ff ff ff 7f 00 00 48 39 d0 48 0f 47 c2 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00
[ 1875.525628][T28969] RSP: 0018:ffffc9000bed7d60 EFLAGS: 00050287
[ 1875.525651][T28969] RAX: 0000000000001000 RBX: 0000000000000000 RCX: ffffc9000bed7d04
[ 1875.525677][T28969] RDX: 00007ffffffff000 RSI: ffffffff8220c9b0 RDI: ffffffff8bf47460
[ 1875.525697][T28969] RBP: 0000000000000200 R08: f9f0d9a003d2eb8b R09: 0000000000000001
[ 1875.525716][T28969] R10: 0000000000000000 R11: 0000000000000000 R12: 00000000ffffffff
[ 1875.525734][T28969] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1875.525763][T28969]  ? kernel_move_pages+0x330/0x13a0
[ 1875.525809][T28969]  kernel_move_pages+0x33e/0x13a0
[ 1875.525864][T28969]  ? __pfx_kernel_move_pages+0x10/0x10
[ 1875.525917][T28969]  ? fput+0x70/0xf0
[ 1875.525949][T28969]  ? ksys_write+0x1b9/0x240
[ 1875.525975][T28969]  ? __pfx_ksys_write+0x10/0x10
[ 1875.526009][T28969]  __x64_sys_move_pages+0xe0/0x1c0
[ 1875.526058][T28969]  ? do_syscall_64+0x91/0x230
[ 1875.526100][T28969]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1875.526141][T28969]  do_syscall_64+0xcd/0x230
[ 1875.526186][T28969]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1875.526214][T28969] RIP: 0033:0x7f06e0d8e969
[ 1875.526235][T28969] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1875.526263][T28969] RSP: 002b:00007f06e1b48038 EFLAGS: 00000246 ORIG_RAX: 0000000000000117
[ 1875.526288][T28969] RAX: ffffffffffffffda RBX: 00007f06e0fb6320 RCX: 00007f06e0d8e969
[ 1875.526306][T28969] RDX: 0000000000000000 RSI: 0000000000001002 RDI: 0000000000000000
[ 1875.526323][T28969] RBP: 00007f06e1b48090 R08: 0000000000000000 R09: 0000000000000002
[ 1875.526340][T28969] R10: 0000200000001140 R11: 0000000000000246 R12: 0000000000000001
[ 1875.526357][T28969] R13: 0000000000000001 R14: 00007f06e0fb6320 R15: 00007ffcdf518738
[ 1875.526395][T28969]  </TASK>
[ 1877.775865][T28983] nvme_fabrics: missing parameter 'transport=%s'
[ 1877.782355][T28983] nvme_fabrics: missing parameter 'nqn=%s'
[ 1887.257651][T29147] netlink: 28 bytes leftover after parsing attributes in process `syz.0.5199'.
[ 1889.020873][T29183] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5209'.
[ 1889.088560][T29177] zram: Removed device: zram0
[ 1890.087694][T29183] FAULT_INJECTION: forcing a failure.
[ 1890.087694][T29183] name failslab, interval 1, probability 0, space 0, times 0
[ 1890.162126][T29183] CPU: 1 UID: 0 PID: 29183 Comm: syz.1.5209 Tainted: G     U              6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[ 1890.162160][T29183] Tainted: [U]=USER
[ 1890.162167][T29183] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1890.162180][T29183] Call Trace:
[ 1890.162188][T29183]  <TASK>
[ 1890.162196][T29183]  dump_stack_lvl+0x16c/0x1f0
[ 1890.162235][T29183]  should_fail_ex+0x512/0x640
[ 1890.162266][T29183]  ? __kvmalloc_node_noprof+0x122/0x600
[ 1890.162292][T29183]  should_failslab+0xc2/0x120
[ 1890.162324][T29183]  __kvmalloc_node_noprof+0x135/0x600
[ 1890.162347][T29183]  ? net_generic+0xea/0x2a0
[ 1890.162389][T29183]  ? ip_set_net_init+0x89/0x1f0
[ 1890.162424][T29183]  ? __pfx_ip_set_net_init+0x10/0x10
[ 1890.162461][T29183]  ? ip_set_net_init+0x89/0x1f0
[ 1890.162490][T29183]  ip_set_net_init+0x89/0x1f0
[ 1890.162522][T29183]  ops_init+0x1e2/0x5f0
[ 1890.162554][T29183]  setup_net+0x21e/0x850
[ 1890.162584][T29183]  ? __pfx_setup_net+0x10/0x10
[ 1890.162610][T29183]  ? lockdep_init_map_type+0x5c/0x280
[ 1890.162640][T29183]  ? __pfx_down_read_killable+0x10/0x10
[ 1890.162685][T29183]  ? debug_mutex_init+0x37/0x70
[ 1890.162719][T29183]  copy_net_ns+0x2a6/0x5f0
[ 1890.162766][T29183]  create_new_namespaces+0x3ea/0xad0
[ 1890.162810][T29183]  unshare_nsproxy_namespaces+0xc0/0x1f0
[ 1890.162850][T29183]  ksys_unshare+0x45b/0xa40
[ 1890.162891][T29183]  ? __local_bh_enable+0x7a/0x90
[ 1890.162922][T29183]  ? __pfx_ksys_unshare+0x10/0x10
[ 1890.162971][T29183]  ? __pfx_handle_softirqs+0x10/0x10
[ 1890.163012][T29183]  __x64_sys_unshare+0x31/0x40
[ 1890.163053][T29183]  do_syscall_64+0xcd/0x230
[ 1890.163102][T29183]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1890.163133][T29183] RIP: 0033:0x7f12e318e969
[ 1890.163156][T29183] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1890.163186][T29183] RSP: 002b:00007f12e3f58038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1890.163213][T29183] RAX: ffffffffffffffda RBX: 00007f12e33b5fa0 RCX: 00007f12e318e969
[ 1890.163233][T29183] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 1890.163251][T29183] RBP: 00007f12e3210ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1890.163270][T29183] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1890.163286][T29183] R13: 0000000000000000 R14: 00007f12e33b5fa0 R15: 00007fff956fa868
[ 1890.163324][T29183]  </TASK>
[ 1890.400147][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1892.344595][T29227] FAULT_INJECTION: forcing a failure.
[ 1892.344595][T29227] name failslab, interval 1, probability 0, space 0, times 0
[ 1892.361294][T29227] CPU: 0 UID: 0 PID: 29227 Comm: syz.1.5221 Tainted: G     U              6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[ 1892.361348][T29227] Tainted: [U]=USER
[ 1892.361360][T29227] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1892.361380][T29227] Call Trace:
[ 1892.361391][T29227]  <TASK>
[ 1892.361404][T29227]  dump_stack_lvl+0x16c/0x1f0
[ 1892.361459][T29227]  should_fail_ex+0x512/0x640
[ 1892.361509][T29227]  ? __kmalloc_cache_noprof+0x57/0x3e0
[ 1892.361548][T29227]  should_failslab+0xc2/0x120
[ 1892.361589][T29227]  __kmalloc_cache_noprof+0x6a/0x3e0
[ 1892.361623][T29227]  ? devlink_fmsg_nest_common.part.0+0x48/0x1e0
[ 1892.361683][T29227]  devlink_fmsg_nest_common.part.0+0x48/0x1e0
[ 1892.361728][T29227]  devlink_fmsg_string_pair_put+0x17a/0x1b0
[ 1892.361773][T29227]  nsim_dev_dummy_reporter_dump+0x54/0xa0
[ 1892.361811][T29227]  devlink_health_do_dump+0x243/0x620
[ 1892.361864][T29227]  devlink_health_report+0x3c9/0x9c0
[ 1892.361913][T29227]  ? __pfx_devlink_health_report+0x10/0x10
[ 1892.361958][T29227]  ? _copy_from_user+0x59/0xd0
[ 1892.362012][T29227]  nsim_dev_health_break_write+0x166/0x210
[ 1892.362061][T29227]  ? __pfx_nsim_dev_health_break_write+0x10/0x10
[ 1892.362109][T29227]  full_proxy_write+0x13c/0x200
[ 1892.362148][T29227]  vfs_write+0x25c/0x1180
[ 1892.362174][T29227]  ? __pfx_full_proxy_write+0x10/0x10
[ 1892.362218][T29227]  ? __pfx___mutex_lock+0x10/0x10
[ 1892.362262][T29227]  ? __pfx_vfs_write+0x10/0x10
[ 1892.362302][T29227]  ? __fget_files+0x20e/0x3c0
[ 1892.362339][T29227]  ksys_write+0x12a/0x240
[ 1892.362368][T29227]  ? __pfx_ksys_write+0x10/0x10
[ 1892.362394][T29227]  ? rcu_is_watching+0x12/0xc0
[ 1892.362432][T29227]  do_syscall_64+0xcd/0x230
[ 1892.362478][T29227]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1892.362506][T29227] RIP: 0033:0x7f12e318e969
[ 1892.362529][T29227] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1892.362556][T29227] RSP: 002b:00007f12e3f58038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1892.362583][T29227] RAX: ffffffffffffffda RBX: 00007f12e33b5fa0 RCX: 00007f12e318e969
[ 1892.362620][T29227] RDX: 00000000000001ff RSI: 0000000000000000 RDI: 0000000000000006
[ 1892.362638][T29227] RBP: 00007f12e3210ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1892.362656][T29227] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1892.362685][T29227] R13: 0000000000000000 R14: 00007f12e33b5fa0 R15: 00007fff956fa868
[ 1892.362724][T29227]  </TASK>
[ 1892.606700][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1894.200816][   T30] audit: type=1807 audit(4294968517.515:77): UNKNOWN=0"û]$|Ë1jë0B|d™¹ýÓ‰OŸ¬+ö×/ÉéxÔóÈõWÓ¦–Ó^¸´gq%ḦrêOŽ res=0
[ 1894.222082][T29248] ima: policy update failed
[ 1894.278827][   T30] audit: type=1802 audit(4294968517.535:78): pid=29248 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.0.5226" res=0 errno=0
[ 1894.342285][   T30] audit: type=1802 audit(4294968517.545:79): pid=29248 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.5226" res=0 errno=0
[ 1895.179686][T29264] FAULT_INJECTION: forcing a failure.
[ 1895.179686][T29264] name failslab, interval 1, probability 0, space 0, times 0
[ 1895.218555][T29264] CPU: 0 UID: 0 PID: 29264 Comm: syz.1.5231 Tainted: G     U              6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[ 1895.218608][T29264] Tainted: [U]=USER
[ 1895.218619][T29264] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1895.218638][T29264] Call Trace:
[ 1895.218649][T29264]  <TASK>
[ 1895.218661][T29264]  dump_stack_lvl+0x16c/0x1f0
[ 1895.218715][T29264]  should_fail_ex+0x512/0x640
[ 1895.218759][T29264]  ? __kvmalloc_node_noprof+0x122/0x600
[ 1895.218798][T29264]  should_failslab+0xc2/0x120
[ 1895.218838][T29264]  __kvmalloc_node_noprof+0x135/0x600
[ 1895.218874][T29264]  ? alloc_fdtable+0xee/0x2b0
[ 1895.218928][T29264]  ? alloc_fdtable+0xee/0x2b0
[ 1895.218972][T29264]  alloc_fdtable+0xee/0x2b0
[ 1895.219021][T29264]  dup_fd+0x83b/0xb90
[ 1895.219049][T29264]  ? __pfx_audit_alloc+0x10/0x10
[ 1895.219098][T29264]  ? apparmor_task_alloc+0x2c2/0x3b0
[ 1895.219137][T29264]  copy_process+0x25c1/0x91a0
[ 1895.219178][T29264]  ? find_held_lock+0x2b/0x80
[ 1895.219220][T29264]  ? schedule+0x2d7/0x3a0
[ 1895.219283][T29264]  ? __pfx_copy_process+0x10/0x10
[ 1895.219323][T29264]  ? __pfx___futex_wait+0x10/0x10
[ 1895.219373][T29264]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1895.219433][T29264]  kernel_clone+0xfc/0x960
[ 1895.219476][T29264]  ? __pfx_kernel_clone+0x10/0x10
[ 1895.219537][T29264]  __do_sys_clone+0xce/0x120
[ 1895.219578][T29264]  ? __pfx___do_sys_clone+0x10/0x10
[ 1895.219637][T29264]  ? rcu_is_watching+0x12/0xc0
[ 1895.219678][T29264]  do_syscall_64+0xcd/0x230
[ 1895.219727][T29264]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1895.219758][T29264] RIP: 0033:0x7f12e318e969
[ 1895.219782][T29264] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1895.219812][T29264] RSP: 002b:00007f12e3f57fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 1895.219842][T29264] RAX: ffffffffffffffda RBX: 00007f12e33b5fa0 RCX: 00007f12e318e969
[ 1895.219862][T29264] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1895.219880][T29264] RBP: 00007f12e3210ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1895.219899][T29264] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1895.219917][T29264] R13: 0000000000000000 R14: 00007f12e33b5fa0 R15: 00007fff956fa868
[ 1895.219955][T29264]  </TASK>
[ 1895.447711][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1896.605836][T29287] FAULT_INJECTION: forcing a failure.
[ 1896.605836][T29287] name failslab, interval 1, probability 0, space 0, times 0
[ 1896.636137][T29287] CPU: 1 UID: 0 PID: 29287 Comm: syz.0.5238 Tainted: G     U              6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[ 1896.636181][T29287] Tainted: [U]=USER
[ 1896.636190][T29287] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1896.636206][T29287] Call Trace:
[ 1896.636216][T29287]  <TASK>
[ 1896.636227][T29287]  dump_stack_lvl+0x16c/0x1f0
[ 1896.636275][T29287]  should_fail_ex+0x512/0x640
[ 1896.636313][T29287]  ? __kmalloc_cache_node_noprof+0x5a/0x420
[ 1896.636349][T29287]  should_failslab+0xc2/0x120
[ 1896.636383][T29287]  __kmalloc_cache_node_noprof+0x6d/0x420
[ 1896.636415][T29287]  ? __get_vm_area_node+0x101/0x330
[ 1896.636464][T29287]  __get_vm_area_node+0x101/0x330
[ 1896.636508][T29287]  ? cgroup_rstat_updated+0x2a/0xb20
[ 1896.636559][T29287]  __vmalloc_node_range_noprof+0x277/0x1540
[ 1896.636588][T29287]  ? kernel_clone+0xfc/0x960
[ 1896.636623][T29287]  ? __mod_memcg_lruvec_state+0x533/0x760
[ 1896.636668][T29287]  ? find_held_lock+0x2b/0x80
[ 1896.636700][T29287]  ? rcu_is_watching+0x12/0xc0
[ 1896.636728][T29287]  ? kernel_clone+0xfc/0x960
[ 1896.636772][T29287]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1896.636819][T29287]  ? __memcg_slab_post_alloc_hook+0x4d0/0x940
[ 1896.636872][T29287]  ? rcu_is_watching+0x12/0xc0
[ 1896.636901][T29287]  ? kernel_clone+0xfc/0x960
[ 1896.636935][T29287]  __vmalloc_node_noprof+0x74/0xa0
[ 1896.636962][T29287]  ? kernel_clone+0xfc/0x960
[ 1896.637001][T29287]  copy_process+0x2ead/0x91a0
[ 1896.637036][T29287]  ? _kstrtoull+0x145/0x200
[ 1896.637069][T29287]  ? __pfx__kstrtoull+0x10/0x10
[ 1896.637110][T29287]  ? find_held_lock+0x2b/0x80
[ 1896.637151][T29287]  ? __pfx_copy_process+0x10/0x10
[ 1896.637199][T29287]  ? find_held_lock+0x2b/0x80
[ 1896.637244][T29287]  kernel_clone+0xfc/0x960
[ 1896.637283][T29287]  ? __pfx_kernel_clone+0x10/0x10
[ 1896.637335][T29287]  ? __mutex_unlock_slowpath+0x161/0x6a0
[ 1896.637384][T29287]  __do_sys_clone+0xce/0x120
[ 1896.637421][T29287]  ? __pfx___do_sys_clone+0x10/0x10
[ 1896.637474][T29287]  ? ksys_write+0x1b9/0x240
[ 1896.637502][T29287]  ? __pfx_ksys_write+0x10/0x10
[ 1896.637528][T29287]  ? rcu_is_watching+0x12/0xc0
[ 1896.637565][T29287]  do_syscall_64+0xcd/0x230
[ 1896.637612][T29287]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1896.637640][T29287] RIP: 0033:0x7f14dc98e969
[ 1896.637662][T29287] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1896.637690][T29287] RSP: 002b:00007f14dd72ffe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 1896.637716][T29287] RAX: ffffffffffffffda RBX: 00007f14dcbb5fa0 RCX: 00007f14dc98e969
[ 1896.637735][T29287] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1896.637752][T29287] RBP: 00007f14dd730090 R08: 0000000000000000 R09: 0000000000000000
[ 1896.637769][T29287] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1896.637786][T29287] R13: 0000000000000000 R14: 00007f14dcbb5fa0 R15: 00007ffcc08e2438
[ 1896.637823][T29287]  </TASK>
[ 1896.640098][T29287] warn_alloc: 1 callbacks suppressed
[ 1896.640115][T29287] syz.0.5238: vmalloc error: size 32768, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[ 1896.963160][T29287] CPU: 1 UID: 0 PID: 29287 Comm: syz.0.5238 Tainted: G     U              6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[ 1896.963198][T29287] Tainted: [U]=USER
[ 1896.963206][T29287] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1896.963222][T29287] Call Trace:
[ 1896.963231][T29287]  <TASK>
[ 1896.963241][T29287]  dump_stack_lvl+0x16c/0x1f0
[ 1896.963287][T29287]  warn_alloc+0x248/0x3a0
[ 1896.963322][T29287]  ? __pfx_warn_alloc+0x10/0x10
[ 1896.963355][T29287]  ? rcu_is_watching+0x12/0xc0
[ 1896.963383][T29287]  ? trace_kmalloc+0x2b/0xd0
[ 1896.963420][T29287]  ? __kmalloc_cache_node_noprof+0x272/0x420
[ 1896.963456][T29287]  ? __kasan_kmalloc+0x8a/0xb0
[ 1896.963488][T29287]  ? __get_vm_area_node+0x208/0x330
[ 1896.963540][T29287]  __vmalloc_node_range_noprof+0xd31/0x1540
[ 1896.963568][T29287]  ? __mod_memcg_lruvec_state+0x533/0x760
[ 1896.963614][T29287]  ? find_held_lock+0x2b/0x80
[ 1896.963646][T29287]  ? rcu_is_watching+0x12/0xc0
[ 1896.963675][T29287]  ? kernel_clone+0xfc/0x960
[ 1896.963720][T29287]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1896.963765][T29287]  ? __memcg_slab_post_alloc_hook+0x4d0/0x940
[ 1896.963819][T29287]  ? rcu_is_watching+0x12/0xc0
[ 1896.963848][T29287]  ? kernel_clone+0xfc/0x960
[ 1896.963879][T29287]  __vmalloc_node_noprof+0x74/0xa0
[ 1896.963906][T29287]  ? kernel_clone+0xfc/0x960
[ 1896.963940][T29287]  copy_process+0x2ead/0x91a0
[ 1896.963977][T29287]  ? _kstrtoull+0x145/0x200
[ 1896.964011][T29287]  ? __pfx__kstrtoull+0x10/0x10
[ 1896.964053][T29287]  ? find_held_lock+0x2b/0x80
[ 1896.964091][T29287]  ? __pfx_copy_process+0x10/0x10
[ 1896.964141][T29287]  ? find_held_lock+0x2b/0x80
[ 1896.964186][T29287]  kernel_clone+0xfc/0x960
[ 1896.964225][T29287]  ? __pfx_kernel_clone+0x10/0x10
[ 1896.964277][T29287]  ? __mutex_unlock_slowpath+0x161/0x6a0
[ 1896.964325][T29287]  __do_sys_clone+0xce/0x120
[ 1896.964362][T29287]  ? __pfx___do_sys_clone+0x10/0x10
[ 1896.964415][T29287]  ? ksys_write+0x1b9/0x240
[ 1896.964444][T29287]  ? __pfx_ksys_write+0x10/0x10
[ 1896.964471][T29287]  ? rcu_is_watching+0x12/0xc0
[ 1896.964509][T29287]  do_syscall_64+0xcd/0x230
[ 1896.964555][T29287]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1896.964585][T29287] RIP: 0033:0x7f14dc98e969
[ 1896.964608][T29287] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1896.964636][T29287] RSP: 002b:00007f14dd72ffe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 1896.964662][T29287] RAX: ffffffffffffffda RBX: 00007f14dcbb5fa0 RCX: 00007f14dc98e969
[ 1896.964682][T29287] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1896.964700][T29287] RBP: 00007f14dd730090 R08: 0000000000000000 R09: 0000000000000000
[ 1896.964718][T29287] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1896.964736][T29287] R13: 0000000000000000 R14: 00007f14dcbb5fa0 R15: 00007ffcc08e2438
[ 1896.964772][T29287]  </TASK>
[ 1896.964782][T29287] Mem-Info:
[ 1897.272765][T29287] active_anon:27211 inactive_anon:6 isolated_anon:0
[ 1897.272765][T29287]  active_file:6143 inactive_file:54930 isolated_file:0
[ 1897.272765][T29287]  unevictable:768 dirty:930 writeback:0
[ 1897.272765][T29287]  slab_reclaimable:14494 slab_unreclaimable:102725
[ 1897.272765][T29287]  mapped:26750 shmem:1364 pagetables:847
[ 1897.272765][T29287]  sec_pagetables:0 bounce:0
[ 1897.272765][T29287]  kernel_misc_reclaimable:0
[ 1897.272765][T29287]  free:1304024 free_pcp:169 free_cma:0
[ 1897.393711][T29287] Node 0 active_anon:106744kB inactive_anon:24kB active_file:24572kB inactive_file:219588kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:107000kB dirty:3720kB writeback:0kB shmem:3920kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10480kB pagetables:3288kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1897.483053][T29287] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:132kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1897.514308][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1897.610733][T29287] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1897.637917][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1897.724899][T29287] lowmem_reserve[]: 0 2484 2486 2486 2486
[ 1897.830189][T29287] Node 0 DMA32 free:1288692kB boost:0kB min:34356kB low:42944kB high:51532kB reserved_highatomic:0KB active_anon:112928kB inactive_anon:24kB active_file:24572kB inactive_file:217764kB unevictable:1536kB writepending:3724kB present:3129332kB managed:2544152kB mlocked:0kB bounce:0kB free_pcp:1952kB local_pcp:312kB free_cma:0kB
[ 1897.916203][T29287] lowmem_reserve[]: 0 0 1 1 1
[ 1897.921156][T29287] Node 0 Normal free:24kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:0kB inactive_file:1824kB unevictable:0kB writepending:0kB present:1048580kB managed:1900kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB
[ 1897.950002][T29287] lowmem_reserve[]: 0 0 0 0 0
[ 1897.954818][T29287] Node 1 Normal free:3909820kB boost:0kB min:55520kB low:69400kB high:83280kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:132kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1897.984006][T29287] lowmem_reserve[]: 0 0 0 0 0
[ 1897.988793][T29287] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 1898.009533][T29287] Node 0 DMA32: 2339*4kB (UME) 1863*8kB (UME) 1074*16kB (UM) 1101*32kB (UME) 815*64kB (UME) 427*128kB (UME) 304*256kB (UM) 213*512kB (UM) 132*1024kB (UM) 12*2048kB (UME) 186*4096kB (UM) = 1291972kB
[ 1898.041953][T29287] Node 0 Normal: 0*4kB 1*8kB (M) 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 24kB
[ 1898.057905][T29287] Node 1 Normal: 239*4kB (UME) 62*8kB (UME) 45*16kB (UME) 192*32kB (UME) 111*64kB (UME) 29*128kB (UME) 22*256kB (UME) 12*512kB (UME) 2*1024kB (UM) 3*2048kB (UE) 945*4096kB (M) = 3909820kB
[ 1898.079818][T29287] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1898.090720][T29287] Node 0 hugepages_total=3 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1898.105330][T29287] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1898.115095][T29287] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1898.124493][T29287] 62465 total pagecache pages
[ 1898.129281][T29287] 31 pages in swap cache
[ 1898.133784][T29287] Free swap  = 122944kB
[ 1898.138046][T29287] Total swap = 124996kB
[ 1898.142295][T29287] 2097051 pages RAM
[ 1898.146228][T29287] 0 pages HighMem/MovableOnly
[ 1898.151020][T29287] 428907 pages reserved
[ 1898.155330][T29287] 0 pages cma reserved
[ 1899.449646][T29313] EXT4-fs (sda1): Delayed block allocation failed for inode 2027 at logical offset 915 with max blocks 8 with error 117
[ 1899.562740][T29313] EXT4-fs (sda1): This should not happen!! Data will be lost
[ 1899.562740][T29313] 
[ 1899.609311][   T30] audit: type=1804 audit(4294968522.925:80): pid=29319 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.5246" name="/newroot/41/file0" dev="tmpfs" ino=228 res=1 errno=0
[ 1899.686206][   T30] audit: type=1800 audit(4294968522.955:81): pid=29319 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.5246" name="file0" dev="tmpfs" ino=228 res=0 errno=0
[ 1904.146622][T29398] FAULT_INJECTION: forcing a failure.
[ 1904.146622][T29398] name failslab, interval 1, probability 0, space 0, times 0
[ 1904.159444][T29398] CPU: 0 UID: 0 PID: 29398 Comm: syz.0.5266 Tainted: G     U              6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[ 1904.159487][T29398] Tainted: [U]=USER
[ 1904.159497][T29398] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1904.159513][T29398] Call Trace:
[ 1904.159523][T29398]  <TASK>
[ 1904.159534][T29398]  dump_stack_lvl+0x16c/0x1f0
[ 1904.159581][T29398]  should_fail_ex+0x512/0x640
[ 1904.159620][T29398]  ? __kvmalloc_node_noprof+0x122/0x600
[ 1904.159656][T29398]  should_failslab+0xc2/0x120
[ 1904.159698][T29398]  __kvmalloc_node_noprof+0x135/0x600
[ 1904.159731][T29398]  ? seq_read_iter+0x826/0x12c0
[ 1904.159781][T29398]  ? seq_read_iter+0x826/0x12c0
[ 1904.159820][T29398]  seq_read_iter+0x826/0x12c0
[ 1904.159863][T29398]  ? __mutex_trylock_common+0xe9/0x250
[ 1904.159914][T29398]  kernfs_fop_read_iter+0x40f/0x5a0
[ 1904.159952][T29398]  ? rw_verify_area+0xcf/0x680
[ 1904.159999][T29398]  vfs_read+0x8cb/0xc70
[ 1904.160032][T29398]  ? __pfx___mutex_lock+0x10/0x10
[ 1904.160077][T29398]  ? __pfx_vfs_read+0x10/0x10
[ 1904.160130][T29398]  ksys_read+0x12a/0x240
[ 1904.160159][T29398]  ? __pfx_ksys_read+0x10/0x10
[ 1904.160184][T29398]  ? syscall_user_dispatch+0x78/0x140
[ 1904.160239][T29398]  do_syscall_64+0xcd/0x230
[ 1904.160286][T29398]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1904.160315][T29398] RIP: 0033:0x7f14dc98e969
[ 1904.160337][T29398] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1904.160365][T29398] RSP: 002b:00007f14dd730038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1904.160392][T29398] RAX: ffffffffffffffda RBX: 00007f14dcbb5fa0 RCX: 00007f14dc98e969
[ 1904.160417][T29398] RDX: 00000000000000c0 RSI: 0000200000001100 RDI: 0000000000000004
[ 1904.160453][T29398] RBP: 00007f14dd730090 R08: 0000000000000000 R09: 0000000000000000
[ 1904.160475][T29398] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1904.160496][T29398] R13: 0000000000000000 R14: 00007f14dcbb5fa0 R15: 00007ffcc08e2438
[ 1904.160542][T29398]  </TASK>
[ 1905.176993][T29411] FAULT_INJECTION: forcing a failure.
[ 1905.176993][T29411] name failslab, interval 1, probability 0, space 0, times 0
[ 1905.243682][T29411] CPU: 0 UID: 0 PID: 29411 Comm: syz.2.5267 Tainted: G     U              6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[ 1905.243735][T29411] Tainted: [U]=USER
[ 1905.243745][T29411] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1905.243764][T29411] Call Trace:
[ 1905.243774][T29411]  <TASK>
[ 1905.243787][T29411]  dump_stack_lvl+0x16c/0x1f0
[ 1905.243839][T29411]  should_fail_ex+0x512/0x640
[ 1905.243885][T29411]  ? __kmalloc_noprof+0xbf/0x510
[ 1905.243923][T29411]  ? kobject_get_path+0xd2/0x2a0
[ 1905.243969][T29411]  should_failslab+0xc2/0x120
[ 1905.244008][T29411]  __kmalloc_noprof+0xd2/0x510
[ 1905.244062][T29411]  kobject_get_path+0xd2/0x2a0
[ 1905.244119][T29411]  kobject_uevent_env+0x289/0x1870
[ 1905.244151][T29411]  ? __pfx_dev_uevent_name+0x10/0x10
[ 1905.244188][T29411]  ? queue_work_on+0x12a/0x1f0
[ 1905.244215][T29411]  ? bus_to_subsys+0x131/0x160
[ 1905.244267][T29411]  driver_bound+0x164/0x230
[ 1905.244308][T29411]  device_bind_driver+0x3a/0x70
[ 1905.244344][T29411]  mac80211_hwsim_new_radio+0x3e5/0x54d0
[ 1905.244415][T29411]  ? __asan_memset+0x23/0x50
[ 1905.244447][T29411]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[ 1905.244511][T29411]  hwsim_new_radio_nl+0xb51/0x12c0
[ 1905.244566][T29411]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[ 1905.244630][T29411]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[ 1905.244683][T29411]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[ 1905.244744][T29411]  genl_family_rcv_msg_doit+0x206/0x2f0
[ 1905.244794][T29411]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1905.244842][T29411]  ? trace_cap_capable+0x18d/0x200
[ 1905.244886][T29411]  ? bpf_lsm_capable+0x9/0x10
[ 1905.244920][T29411]  ? security_capable+0x7e/0x260
[ 1905.244955][T29411]  ? ns_capable+0xd7/0x110
[ 1905.244993][T29411]  genl_rcv_msg+0x55c/0x800
[ 1905.245055][T29411]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1905.245103][T29411]  ? __pfx___dev_queue_xmit+0x10/0x10
[ 1905.245135][T29411]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[ 1905.245191][T29411]  ? __lock_acquire+0xaa4/0x1ba0
[ 1905.245242][T29411]  netlink_rcv_skb+0x16a/0x440
[ 1905.245305][T29411]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1905.245360][T29411]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1905.245424][T29411]  ? __pfx_down_read+0x10/0x10
[ 1905.245458][T29411]  ? netlink_deliver_tap+0x1ae/0xd30
[ 1905.245509][T29411]  genl_rcv+0x28/0x40
[ 1905.245555][T29411]  netlink_unicast+0x53d/0x7f0
[ 1905.245606][T29411]  ? __pfx_netlink_unicast+0x10/0x10
[ 1905.245649][T29411]  ? __lock_acquire+0xaa4/0x1ba0
[ 1905.245706][T29411]  netlink_sendmsg+0x8d1/0xdd0
[ 1905.245758][T29411]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1905.245822][T29411]  ____sys_sendmsg+0xa95/0xc70
[ 1905.245875][T29411]  ? copy_msghdr_from_user+0x10a/0x160
[ 1905.245917][T29411]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1905.245979][T29411]  ? try_to_wake_up+0xa2f/0x1680
[ 1905.246019][T29411]  ___sys_sendmsg+0x134/0x1d0
[ 1905.246072][T29411]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1905.246172][T29411]  __sys_sendmsg+0x16d/0x220
[ 1905.246216][T29411]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1905.246258][T29411]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1905.246308][T29411]  ? rcu_is_watching+0x12/0xc0
[ 1905.246355][T29411]  do_syscall_64+0xcd/0x230
[ 1905.246410][T29411]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1905.246456][T29411] RIP: 0033:0x7f5233b8e969
[ 1905.246482][T29411] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1905.246513][T29411] RSP: 002b:00007f5234a51038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1905.246543][T29411] RAX: ffffffffffffffda RBX: 00007f5233db5fa0 RCX: 00007f5233b8e969
[ 1905.246563][T29411] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000007
[ 1905.246582][T29411] RBP: 00007f5233c10ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1905.246601][T29411] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1905.246620][T29411] R13: 0000000000000000 R14: 00007f5233db5fa0 R15: 00007ffc305b0fa8
[ 1905.246660][T29411]  </TASK>
[ 1907.041320][T29424] FAULT_INJECTION: forcing a failure.
[ 1907.041320][T29424] name fail_futex, interval 1, probability 0, space 0, times 0
[ 1907.080661][T29424] CPU: 1 UID: 0 PID: 29424 Comm: syz.2.5269 Tainted: G     U              6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[ 1907.080701][T29424] Tainted: [U]=USER
[ 1907.080709][T29424] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1907.080723][T29424] Call Trace:
[ 1907.080730][T29424]  <TASK>
[ 1907.080739][T29424]  dump_stack_lvl+0x16c/0x1f0
[ 1907.080780][T29424]  should_fail_ex+0x512/0x640
[ 1907.080819][T29424]  get_futex_key+0x49e/0x1000
[ 1907.080847][T29424]  ? __pfx_get_futex_key+0x10/0x10
[ 1907.080883][T29424]  futex_wake+0xe7/0x4e0
[ 1907.080917][T29424]  ? rcu_is_watching+0x12/0xc0
[ 1907.080942][T29424]  ? __pfx_futex_wake+0x10/0x10
[ 1907.080984][T29424]  do_futex+0x1e3/0x350
[ 1907.081010][T29424]  ? __pfx_do_futex+0x10/0x10
[ 1907.081033][T29424]  ? __might_fault+0xe3/0x190
[ 1907.081068][T29424]  mm_release+0x24e/0x300
[ 1907.081095][T29424]  do_exit+0x898/0x2c30
[ 1907.081125][T29424]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1907.081163][T29424]  ? __pfx_do_exit+0x10/0x10
[ 1907.081195][T29424]  ? do_raw_spin_lock+0x12c/0x2b0
[ 1907.081230][T29424]  ? find_held_lock+0x2b/0x80
[ 1907.081258][T29424]  do_group_exit+0xd3/0x2a0
[ 1907.081293][T29424]  get_signal+0x2673/0x26d0
[ 1907.081323][T29424]  ? do_raw_spin_lock+0x12c/0x2b0
[ 1907.081357][T29424]  ? find_held_lock+0x2b/0x80
[ 1907.081384][T29424]  ? __pfx_get_signal+0x10/0x10
[ 1907.081410][T29424]  ? do_futex+0x122/0x350
[ 1907.081436][T29424]  ? __pfx_do_futex+0x10/0x10
[ 1907.081464][T29424]  arch_do_signal_or_restart+0x8f/0x7a0
[ 1907.081499][T29424]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 1907.081542][T29424]  ? rcu_is_watching+0x12/0xc0
[ 1907.081569][T29424]  syscall_exit_to_user_mode+0x150/0x2a0
[ 1907.081606][T29424]  do_syscall_64+0xda/0x230
[ 1907.081650][T29424]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1907.081674][T29424] RIP: 0033:0x7f5233b8e969
[ 1907.081693][T29424] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1907.081716][T29424] RSP: 002b:00007f5234a300e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1907.081737][T29424] RAX: fffffffffffffe00 RBX: 00007f5233db6088 RCX: 00007f5233b8e969
[ 1907.081760][T29424] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f5233db6088
[ 1907.081774][T29424] RBP: 00007f5233db6080 R08: 0000000000000000 R09: 0000000000000000
[ 1907.081788][T29424] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5233db608c
[ 1907.081802][T29424] R13: 0000000000000000 R14: 00007ffc305b0ec0 R15: 00007ffc305b0fa8
[ 1907.081832][T29424]  </TASK>
[ 1911.045476][T29487] FAULT_INJECTION: forcing a failure.
[ 1911.045476][T29487] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1911.104916][T29487] CPU: 0 UID: 0 PID: 29487 Comm: syz.3.5288 Tainted: G     U              6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[ 1911.104964][T29487] Tainted: [U]=USER
[ 1911.104974][T29487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1911.104992][T29487] Call Trace:
[ 1911.105002][T29487]  <TASK>
[ 1911.105013][T29487]  dump_stack_lvl+0x16c/0x1f0
[ 1911.105064][T29487]  should_fail_ex+0x512/0x640
[ 1911.105113][T29487]  _copy_to_user+0x32/0xd0
[ 1911.105144][T29487]  simple_read_from_buffer+0xcb/0x170
[ 1911.105192][T29487]  proc_fail_nth_read+0x197/0x270
[ 1911.105237][T29487]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1911.105284][T29487]  ? rw_verify_area+0xcf/0x680
[ 1911.105340][T29487]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1911.105381][T29487]  vfs_read+0x1de/0xc70
[ 1911.105414][T29487]  ? __pfx___mutex_lock+0x10/0x10
[ 1911.105456][T29487]  ? __pfx_vfs_read+0x10/0x10
[ 1911.105494][T29487]  ? __fget_files+0x20e/0x3c0
[ 1911.105518][T29487]  ? watch_queue_set_size+0x350/0x6b0
[ 1911.105572][T29487]  ksys_read+0x12a/0x240
[ 1911.105600][T29487]  ? __pfx_ksys_read+0x10/0x10
[ 1911.105647][T29487]  do_syscall_64+0xcd/0x230
[ 1911.105693][T29487]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1911.105723][T29487] RIP: 0033:0x7f06e0d8d37c
[ 1911.105746][T29487] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1911.105773][T29487] RSP: 002b:00007f06e1bcc030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1911.105803][T29487] RAX: ffffffffffffffda RBX: 00007f06e0fb5fa0 RCX: 00007f06e0d8d37c
[ 1911.105822][T29487] RDX: 000000000000000f RSI: 00007f06e1bcc0a0 RDI: 0000000000000004
[ 1911.105839][T29487] RBP: 00007f06e1bcc090 R08: 0000000000000000 R09: 0000000000000000
[ 1911.105857][T29487] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1911.105874][T29487] R13: 0000000000000000 R14: 00007f06e0fb5fa0 R15: 00007ffcdf518738
[ 1911.105910][T29487]  </TASK>
[ 1919.687221][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[ 1919.693777][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[ 1919.756245][T29631] FAULT_INJECTION: forcing a failure.
[ 1919.756245][T29631] name failslab, interval 1, probability 0, space 0, times 0
[ 1919.788936][T29631] CPU: 0 UID: 0 PID: 29631 Comm: syz.2.5324 Tainted: G     U              6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[ 1919.788984][T29631] Tainted: [U]=USER
[ 1919.788993][T29631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1919.789010][T29631] Call Trace:
[ 1919.789021][T29631]  <TASK>
[ 1919.789031][T29631]  dump_stack_lvl+0x16c/0x1f0
[ 1919.789081][T29631]  should_fail_ex+0x512/0x640
[ 1919.789131][T29631]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1919.789170][T29631]  should_failslab+0xc2/0x120
[ 1919.789209][T29631]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1919.789243][T29631]  ? __kernfs_new_node+0xd2/0x8a0
[ 1919.789277][T29631]  __kernfs_new_node+0xd2/0x8a0
[ 1919.789309][T29631]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1919.789348][T29631]  ? find_held_lock+0x2b/0x80
[ 1919.789379][T29631]  ? kernfs_root+0xee/0x2a0
[ 1919.789414][T29631]  kernfs_new_node+0x13c/0x1e0
[ 1919.789453][T29631]  __kernfs_create_file+0x53/0x350
[ 1919.789498][T29631]  sysfs_add_file_mode_ns+0x207/0x3c0
[ 1919.789555][T29631]  internal_create_group+0x578/0xf30
[ 1919.789594][T29631]  ? __pfx_internal_create_group+0x10/0x10
[ 1919.789640][T29631]  sysfs_slab_add+0x1a3/0x1e0
[ 1919.789673][T29631]  do_kmem_cache_create+0x530/0x730
[ 1919.789708][T29631]  ? __kmem_cache_create_args+0x205/0x390
[ 1919.789747][T29631]  __kmem_cache_create_args+0x225/0x390
[ 1919.789786][T29631]  mon_text_open+0x313/0x4f0
[ 1919.789833][T29631]  ? __pfx_mon_text_open+0x10/0x10
[ 1919.789878][T29631]  ? __debugfs_file_get+0x1fe/0x840
[ 1919.789912][T29631]  ? __pfx_mon_text_ctor+0x10/0x10
[ 1919.789958][T29631]  ? __pfx_apparmor_file_open+0x10/0x10
[ 1919.789996][T29631]  ? lockdown_is_locked_down+0x3f/0x130
[ 1919.790041][T29631]  ? bpf_lsm_locked_down+0x9/0x10
[ 1919.790078][T29631]  ? __pfx_mon_text_open+0x10/0x10
[ 1919.790128][T29631]  full_proxy_open_regular+0x1b9/0x360
[ 1919.790170][T29631]  do_dentry_open+0x741/0x1c10
[ 1919.790203][T29631]  ? __pfx_full_proxy_open_regular+0x10/0x10
[ 1919.790249][T29631]  vfs_open+0x82/0x3f0
[ 1919.790293][T29631]  path_openat+0x1e5e/0x2d40
[ 1919.790338][T29631]  ? __pfx_path_openat+0x10/0x10
[ 1919.790378][T29631]  do_filp_open+0x20b/0x470
[ 1919.790413][T29631]  ? __pfx_do_filp_open+0x10/0x10
[ 1919.790495][T29631]  ? alloc_fd+0x471/0x7d0
[ 1919.790540][T29631]  do_sys_openat2+0x11b/0x1d0
[ 1919.790587][T29631]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1919.790638][T29631]  ? __pfx___might_resched+0x10/0x10
[ 1919.790689][T29631]  __x64_sys_openat+0x174/0x210
[ 1919.790737][T29631]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1919.790789][T29631]  ? rcu_is_watching+0x12/0xc0
[ 1919.790837][T29631]  do_syscall_64+0xcd/0x230
[ 1919.790892][T29631]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1919.790927][T29631] RIP: 0033:0x7f5233b8e969
[ 1919.790953][T29631] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1919.790987][T29631] RSP: 002b:00007f5234a30038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1919.791018][T29631] RAX: ffffffffffffffda RBX: 00007f5233db6080 RCX: 00007f5233b8e969
[ 1919.791040][T29631] RDX: 0000000000000000 RSI: 0000200000000040 RDI: ffffffffffffff9c
[ 1919.791062][T29631] RBP: 00007f5233c10ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1919.791083][T29631] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1919.791111][T29631] R13: 0000000000000000 R14: 00007f5233db6080 R15: 00007ffc305b0fa8
[ 1919.791157][T29631]  </TASK>
[ 1920.186578][T29631] SLUB: Unable to add cache mon_text_ffff88807c03a000 to sysfs
[ 1920.877423][T29644] i2c i2c-0: delete_device: Can't find device in list
[ 1921.033862][T29647] nbd: couldn't find device at index 33904
[ 1922.207819][T29667] FAULT_INJECTION: forcing a failure.
[ 1922.207819][T29667] name fail_futex, interval 1, probability 0, space 0, times 0
[ 1922.245033][T29667] CPU: 0 UID: 0 PID: 29667 Comm: syz.1.5334 Tainted: G     U              6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[ 1922.245089][T29667] Tainted: [U]=USER
[ 1922.245100][T29667] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1922.245118][T29667] Call Trace:
[ 1922.245128][T29667]  <TASK>
[ 1922.245140][T29667]  dump_stack_lvl+0x16c/0x1f0
[ 1922.245191][T29667]  should_fail_ex+0x512/0x640
[ 1922.245235][T29667]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1922.245269][T29667]  get_futex_key+0x49e/0x1000
[ 1922.245305][T29667]  ? __pfx_get_futex_key+0x10/0x10
[ 1922.245350][T29667]  futex_wake+0xe7/0x4e0
[ 1922.245386][T29667]  ? find_held_lock+0x2b/0x80
[ 1922.245419][T29667]  ? __pfx_futex_wake+0x10/0x10
[ 1922.245462][T29667]  ? do_raw_spin_lock+0x12c/0x2b0
[ 1922.245505][T29667]  ? find_held_lock+0x2b/0x80
[ 1922.245533][T29667]  ? find_held_lock+0x2b/0x80
[ 1922.245576][T29667]  do_futex+0x1e3/0x350
[ 1922.245610][T29667]  ? __pfx_do_futex+0x10/0x10
[ 1922.245644][T29667]  ? mntput+0x10/0x90
[ 1922.245687][T29667]  ? do_handle_open+0x25b/0xb70
[ 1922.245734][T29667]  __x64_sys_futex+0x1e0/0x4c0
[ 1922.245772][T29667]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1922.245808][T29667]  ? rcu_is_watching+0x12/0xc0
[ 1922.245847][T29667]  do_syscall_64+0xcd/0x230
[ 1922.245896][T29667]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1922.245926][T29667] RIP: 0033:0x7f12e318e969
[ 1922.245949][T29667] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1922.245978][T29667] RSP: 002b:00007f12e3f370e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1922.246006][T29667] RAX: ffffffffffffffda RBX: 00007f12e33b6088 RCX: 00007f12e318e969
[ 1922.246026][T29667] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f12e33b608c
[ 1922.246045][T29667] RBP: 00007f12e33b6080 R08: 00007f12e3f59000 R09: 0000000000000000
[ 1922.246065][T29667] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007f12e33b608c
[ 1922.246084][T29667] R13: 0000000000000000 R14: 00007fff956fa780 R15: 00007fff956fa868
[ 1922.246122][T29667]  </TASK>
[ 1923.590860][T29687] could not allocate digest TFM handle 
[ 1923.739074][T29700] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5343'.
[ 1924.056161][T29700] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1924.069146][T29700] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1924.106688][T29700] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1924.145336][T29700] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1926.101900][T29728] netlink: 20 bytes leftover after parsing attributes in process `syz.1.5352'.
[ 1931.005296][T29809] FAULT_INJECTION: forcing a failure.
[ 1931.005296][T29809] name failslab, interval 1, probability 0, space 0, times 0
[ 1931.072890][T29809] CPU: 0 UID: 0 PID: 29809 Comm: syz.2.5371 Tainted: G     U              6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[ 1931.072941][T29809] Tainted: [U]=USER
[ 1931.072952][T29809] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1931.072971][T29809] Call Trace:
[ 1931.072982][T29809]  <TASK>
[ 1931.072995][T29809]  dump_stack_lvl+0x16c/0x1f0
[ 1931.073061][T29809]  should_fail_ex+0x512/0x640
[ 1931.073109][T29809]  ? fs_reclaim_acquire+0xae/0x150
[ 1931.073162][T29809]  ? tomoyo_encode2+0x100/0x3e0
[ 1931.073207][T29809]  should_failslab+0xc2/0x120
[ 1931.073248][T29809]  __kmalloc_noprof+0xd2/0x510
[ 1931.073284][T29809]  ? d_absolute_path+0x136/0x1a0
[ 1931.073349][T29809]  tomoyo_encode2+0x100/0x3e0
[ 1931.073404][T29809]  tomoyo_encode+0x29/0x50
[ 1931.073449][T29809]  tomoyo_realpath_from_path+0x18f/0x6e0
[ 1931.073510][T29809]  tomoyo_path_number_perm+0x245/0x580
[ 1931.073552][T29809]  ? tomoyo_path_number_perm+0x237/0x580
[ 1931.073599][T29809]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1931.073645][T29809]  ? find_held_lock+0x2b/0x80
[ 1931.073718][T29809]  ? find_held_lock+0x2b/0x80
[ 1931.073751][T29809]  ? hook_file_ioctl_common+0x145/0x410
[ 1931.073800][T29809]  ? __fget_files+0x20e/0x3c0
[ 1931.073839][T29809]  security_file_ioctl+0x9b/0x240
[ 1931.073884][T29809]  __x64_sys_ioctl+0xb7/0x200
[ 1931.073934][T29809]  do_syscall_64+0xcd/0x230
[ 1931.073987][T29809]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1931.074020][T29809] RIP: 0033:0x7f5233b8e969
[ 1931.074045][T29809] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1931.074083][T29809] RSP: 002b:00007f5234a51038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1931.074114][T29809] RAX: ffffffffffffffda RBX: 00007f5233db5fa0 RCX: 00007f5233b8e969
[ 1931.074136][T29809] RDX: 0000000000000004 RSI: 0000000000007003 RDI: 0000000000000003
[ 1931.074156][T29809] RBP: 00007f5234a51090 R08: 0000000000000000 R09: 0000000000000000
[ 1931.074176][T29809] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1931.074197][T29809] R13: 0000000000000000 R14: 00007f5233db5fa0 R15: 00007ffc305b0fa8
[ 1931.074241][T29809]  </TASK>
[ 1931.074677][T29809] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1932.457862][T29814] CIFS mount error: No usable UNC path provided in device string!
[ 1932.457862][T29814] 
[ 1932.477779][T29814] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 1933.772179][T29841] netlink: 326 bytes leftover after parsing attributes in process `syz.2.5380'.
[ 1934.854406][T29833] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5375'.
[ 1937.704770][T29872] FAULT_INJECTION: forcing a failure.
[ 1937.704770][T29872] name failslab, interval 1, probability 0, space 0, times 0
[ 1937.770485][T29872] CPU: 1 UID: 0 PID: 29872 Comm: syz.3.5388 Tainted: G     U              6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[ 1937.770555][T29872] Tainted: [U]=USER
[ 1937.770566][T29872] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1937.770585][T29872] Call Trace:
[ 1937.770596][T29872]  <TASK>
[ 1937.770609][T29872]  dump_stack_lvl+0x16c/0x1f0
[ 1937.770668][T29872]  should_fail_ex+0x512/0x640
[ 1937.770717][T29872]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1937.770762][T29872]  should_failslab+0xc2/0x120
[ 1937.770805][T29872]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1937.770845][T29872]  ? __pmd_alloc+0xc3/0x870
[ 1937.770902][T29872]  __pmd_alloc+0xc3/0x870
[ 1937.770957][T29872]  __handle_mm_fault+0x948/0x2a40
[ 1937.771005][T29872]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1937.771080][T29872]  handle_mm_fault+0x3fe/0xad0
[ 1937.771124][T29872]  __get_user_pages+0x771/0x36f0
[ 1937.771197][T29872]  ? __pfx___get_user_pages+0x10/0x10
[ 1937.771273][T29872]  get_user_pages_remote+0x258/0xb20
[ 1937.771339][T29872]  ? __pfx_get_user_pages_remote+0x10/0x10
[ 1937.771412][T29872]  get_arg_page+0xf4/0x310
[ 1937.771463][T29872]  ? __pfx_get_arg_page+0x10/0x10
[ 1937.771519][T29872]  ? up_write+0x1b2/0x520
[ 1937.771573][T29872]  copy_string_kernel+0x155/0x4a0
[ 1937.771645][T29872]  do_execveat_common.isra.0+0x2ed/0x610
[ 1937.771714][T29872]  __x64_sys_execveat+0xda/0x120
[ 1937.771746][T29872]  do_syscall_64+0xcd/0x230
[ 1937.771793][T29872]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1937.771822][T29872] RIP: 0033:0x7f06e0d8e969
[ 1937.771843][T29872] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1937.771869][T29872] RSP: 002b:00007f06e1bcc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 1937.771895][T29872] RAX: ffffffffffffffda RBX: 00007f06e0fb5fa0 RCX: 00007f06e0d8e969
[ 1937.771912][T29872] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[ 1937.771928][T29872] RBP: 00007f06e1bcc090 R08: 0000000000001000 R09: 0000000000000000
[ 1937.771945][T29872] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1937.771962][T29872] R13: 0000000000000000 R14: 00007f06e0fb5fa0 R15: 00007ffcdf518738
[ 1937.771998][T29872]  </TASK>
[ 1938.373710][T29882] FAULT_INJECTION: forcing a failure.
[ 1938.373710][T29882] name fail_futex, interval 1, probability 0, space 0, times 0
[ 1938.390191][T29882] CPU: 0 UID: 0 PID: 29882 Comm: syz.3.5391 Tainted: G     U              6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[ 1938.390238][T29882] Tainted: [U]=USER
[ 1938.390248][T29882] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1938.390267][T29882] Call Trace:
[ 1938.390278][T29882]  <TASK>
[ 1938.390290][T29882]  dump_stack_lvl+0x16c/0x1f0
[ 1938.390339][T29882]  should_fail_ex+0x512/0x640
[ 1938.390383][T29882]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1938.390418][T29882]  get_futex_key+0x49e/0x1000
[ 1938.390473][T29882]  ? __pfx_get_futex_key+0x10/0x10
[ 1938.390543][T29882]  futex_wake+0xe7/0x4e0
[ 1938.390584][T29882]  ? find_held_lock+0x2b/0x80
[ 1938.390622][T29882]  ? __pfx_futex_wake+0x10/0x10
[ 1938.390672][T29882]  ? do_raw_spin_lock+0x12c/0x2b0
[ 1938.390723][T29882]  ? find_held_lock+0x2b/0x80
[ 1938.390755][T29882]  ? find_held_lock+0x2b/0x80
[ 1938.390794][T29882]  do_futex+0x1e3/0x350
[ 1938.390833][T29882]  ? __pfx_do_futex+0x10/0x10
[ 1938.390873][T29882]  ? mntput+0x10/0x90
[ 1938.390923][T29882]  ? do_handle_open+0x25b/0xb70
[ 1938.390978][T29882]  __x64_sys_futex+0x1e0/0x4c0
[ 1938.391025][T29882]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1938.391066][T29882]  ? rcu_is_watching+0x12/0xc0
[ 1938.391113][T29882]  do_syscall_64+0xcd/0x230
[ 1938.391184][T29882]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1938.391220][T29882] RIP: 0033:0x7f06e0d8e969
[ 1938.391248][T29882] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1938.391285][T29882] RSP: 002b:00007f06e1bab0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1938.391317][T29882] RAX: ffffffffffffffda RBX: 00007f06e0fb6088 RCX: 00007f06e0d8e969
[ 1938.391339][T29882] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f06e0fb608c
[ 1938.391361][T29882] RBP: 00007f06e0fb6080 R08: 00007f06e1bcd000 R09: 0000000000000000
[ 1938.391385][T29882] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007f06e0fb608c
[ 1938.391407][T29882] R13: 0000000000000000 R14: 00007ffcdf518650 R15: 00007ffcdf518738
[ 1938.391451][T29882]  </TASK>
[ 1938.609617][T29877] ima: policy update failed
[ 1938.675447][   T30] audit: type=1802 audit(4294968561.935:82): pid=29877 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm=22050820 res=0 errno=0
[ 1938.862825][T29877] can: request_module (can-proto-5) failed.
[ 1939.253995][T29877] sp0: Synchronizing with TNC
[ 1940.021981][T29894] Invalid ELF header magic: != ELF
[ 1941.223043][T29914] 
[ 1941.225517][T29914] ======================================================
[ 1941.232570][T29914] WARNING: possible circular locking dependency detected
[ 1941.239615][T29914] 6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 Tainted: G     U             
[ 1941.248309][T29914] ------------------------------------------------------
[ 1941.255344][T29914] syz.2.5397/29914 is trying to acquire lock:
[ 1941.261418][T29914] ffff8880259d4058 (&q->elevator_lock){+.+.}-{4:4}, at: queue_requests_store+0x1c7/0x310
[ 1941.271295][T29914] 
[ 1941.271295][T29914] but task is already holding lock:
[ 1941.278667][T29914] ffff8880259d3b28 (&q->q_usage_counter(io)#29){++++}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20
[ 1941.289935][T29914] 
[ 1941.289935][T29914] which lock already depends on the new lock.
[ 1941.289935][T29914] 
[ 1941.300335][T29914] 
[ 1941.300335][T29914] the existing dependency chain (in reverse order) is:
[ 1941.309348][T29914] 
[ 1941.309348][T29914] -> #2 (&q->q_usage_counter(io)#29){++++}-{0:0}:
[ 1941.317977][T29914]        blk_alloc_queue+0x619/0x760
[ 1941.323281][T29914]        blk_mq_alloc_queue+0x179/0x290
[ 1941.328866][T29914]        __blk_mq_alloc_disk+0x29/0x120
[ 1941.334456][T29914]        loop_add+0x496/0xb70
[ 1941.339171][T29914]        loop_init+0x164/0x270
[ 1941.343954][T29914]        do_one_initcall+0x120/0x6e0
[ 1941.349259][T29914]        kernel_init_freeable+0x5c2/0x900
[ 1941.354995][T29914]        kernel_init+0x1c/0x2b0
[ 1941.359855][T29914]        ret_from_fork+0x48/0x80
[ 1941.364803][T29914]        ret_from_fork_asm+0x1a/0x30
[ 1941.370107][T29914] 
[ 1941.370107][T29914] -> #1 (fs_reclaim){+.+.}-{0:0}:
[ 1941.377339][T29914]        fs_reclaim_acquire+0x102/0x150
[ 1941.382904][T29914]        kmem_cache_alloc_noprof+0x53/0x3b0
[ 1941.388807][T29914]        __kernfs_new_node+0xd2/0x8a0
[ 1941.394189][T29914]        kernfs_new_node+0x13c/0x1e0
[ 1941.399487][T29914]        kernfs_create_dir_ns+0x4c/0x1a0
[ 1941.405132][T29914]        sysfs_create_dir_ns+0x13a/0x2b0
[ 1941.410794][T29914]        kobject_add_internal+0x2c4/0x9b0
[ 1941.416530][T29914]        kobject_add+0x16e/0x240
[ 1941.421484][T29914]        elv_register_queue+0xd3/0x2a0
[ 1941.426984][T29914]        blk_register_queue+0x3c4/0x560
[ 1941.432538][T29914]        add_disk_fwnode+0x911/0x13a0
[ 1941.437925][T29914]        nbd_dev_add+0x78e/0xbb0
[ 1941.442879][T29914]        nbd_init+0x181/0x320
[ 1941.447569][T29914]        do_one_initcall+0x120/0x6e0
[ 1941.452877][T29914]        kernel_init_freeable+0x5c2/0x900
[ 1941.458617][T29914]        kernel_init+0x1c/0x2b0
[ 1941.463477][T29914]        ret_from_fork+0x48/0x80
[ 1941.468433][T29914]        ret_from_fork_asm+0x1a/0x30
[ 1941.473746][T29914] 
[ 1941.473746][T29914] -> #0 (&q->elevator_lock){+.+.}-{4:4}:
[ 1941.481586][T29914]        __lock_acquire+0x1173/0x1ba0
[ 1941.486995][T29914]        lock_acquire+0x179/0x350
[ 1941.492035][T29914]        __mutex_lock+0x199/0xb90
[ 1941.497080][T29914]        queue_requests_store+0x1c7/0x310
[ 1941.502808][T29914]        queue_attr_store+0x270/0x310
[ 1941.508189][T29914]        sysfs_kf_write+0xef/0x150
[ 1941.513318][T29914]        kernfs_fop_write_iter+0x354/0x510
[ 1941.519151][T29914]        vfs_write+0x5bd/0x1180
[ 1941.524022][T29914]        ksys_write+0x12a/0x240
[ 1941.528885][T29914]        do_syscall_64+0xcd/0x230
[ 1941.533932][T29914]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1941.540351][T29914] 
[ 1941.540351][T29914] other info that might help us debug this:
[ 1941.540351][T29914] 
[ 1941.550583][T29914] Chain exists of:
[ 1941.550583][T29914]   &q->elevator_lock --> fs_reclaim --> &q->q_usage_counter(io)#29
[ 1941.550583][T29914] 
[ 1941.564357][T29914]  Possible unsafe locking scenario:
[ 1941.564357][T29914] 
[ 1941.571802][T29914]        CPU0                    CPU1
[ 1941.577164][T29914]        ----                    ----
[ 1941.582524][T29914]   lock(&q->q_usage_counter(io)#29);
[ 1941.587915][T29914]                                lock(fs_reclaim);
[ 1941.594426][T29914]                                lock(&q->q_usage_counter(io)#29);
[ 1941.602335][T29914]   lock(&q->elevator_lock);
[ 1941.606941][T29914] 
[ 1941.606941][T29914]  *** DEADLOCK ***
[ 1941.606941][T29914] 
[ 1941.615092][T29914] 6 locks held by syz.2.5397/29914:
[ 1941.620286][T29914]  #0: ffff88807906f438 (&f->f_pos_lock){+.+.}-{4:4}, at: fdget_pos+0x2a2/0x370
[ 1941.629365][T29914]  #1: ffff888030806420 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x240
[ 1941.638361][T29914]  #2: ffff88805ebcf888 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x510
[ 1941.648154][T29914]  #3: ffff888143773f08 (kn->active#367){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2b2/0x510
[ 1941.658303][T29914]  #4: ffff8880259d3b28 (&q->q_usage_counter(io)#29){++++}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20
[ 1941.670003][T29914]  #5: ffff8880259d3b60 (&q->q_usage_counter(queue)#25){+.+.}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20
[ 1941.681967][T29914] 
[ 1941.681967][T29914] stack backtrace:
[ 1941.687864][T29914] CPU: 0 UID: 0 PID: 29914 Comm: syz.2.5397 Tainted: G     U              6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[ 1941.687902][T29914] Tainted: [U]=USER
[ 1941.687909][T29914] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1941.687923][T29914] Call Trace:
[ 1941.687931][T29914]  <TASK>
[ 1941.687939][T29914]  dump_stack_lvl+0x116/0x1f0
[ 1941.687977][T29914]  print_circular_bug+0x275/0x350
[ 1941.688008][T29914]  check_noncircular+0x14c/0x170
[ 1941.688040][T29914]  __lock_acquire+0x1173/0x1ba0
[ 1941.688076][T29914]  lock_acquire+0x179/0x350
[ 1941.688107][T29914]  ? queue_requests_store+0x1c7/0x310
[ 1941.688132][T29914]  ? __pfx___might_resched+0x10/0x10
[ 1941.688177][T29914]  ? do_raw_spin_lock+0x12c/0x2b0
[ 1941.688216][T29914]  __mutex_lock+0x199/0xb90
[ 1941.688254][T29914]  ? queue_requests_store+0x1c7/0x310
[ 1941.688280][T29914]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 1941.688315][T29914]  ? queue_requests_store+0x1c7/0x310
[ 1941.688339][T29914]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1941.688375][T29914]  ? __pfx___mutex_lock+0x10/0x10
[ 1941.688417][T29914]  ? __pfx_autoremove_wake_function+0x10/0x10
[ 1941.688451][T29914]  ? queue_requests_store+0x1c7/0x310
[ 1941.688476][T29914]  queue_requests_store+0x1c7/0x310
[ 1941.688502][T29914]  ? __pfx_queue_requests_store+0x10/0x10
[ 1941.688530][T29914]  ? __mutex_trylock_common+0xe9/0x250
[ 1941.688565][T29914]  ? __pfx_queue_requests_store+0x10/0x10
[ 1941.688590][T29914]  queue_attr_store+0x270/0x310
[ 1941.688614][T29914]  ? __pfx_queue_attr_store+0x10/0x10
[ 1941.688645][T29914]  ? find_held_lock+0x2b/0x80
[ 1941.688668][T29914]  ? sysfs_file_kobj+0xe4/0x290
[ 1941.688705][T29914]  ? __pfx_queue_attr_store+0x10/0x10
[ 1941.688728][T29914]  sysfs_kf_write+0xef/0x150
[ 1941.688765][T29914]  kernfs_fop_write_iter+0x354/0x510
[ 1941.688798][T29914]  ? __pfx_sysfs_kf_write+0x10/0x10
[ 1941.688835][T29914]  vfs_write+0x5bd/0x1180
[ 1941.688865][T29914]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[ 1941.688899][T29914]  ? __pfx___mutex_lock+0x10/0x10
[ 1941.688936][T29914]  ? __pfx_vfs_write+0x10/0x10
[ 1941.688969][T29914]  ksys_write+0x12a/0x240
[ 1941.688993][T29914]  ? __pfx_ksys_write+0x10/0x10
[ 1941.689015][T29914]  ? rcu_is_watching+0x12/0xc0
[ 1941.689042][T29914]  do_syscall_64+0xcd/0x230
[ 1941.689081][T29914]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1941.689107][T29914] RIP: 0033:0x7f5233b8e969
[ 1941.689128][T29914] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1941.689154][T29914] RSP: 002b:00007f5234a51038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1941.689194][T29914] RAX: ffffffffffffffda RBX: 00007f5233db5fa0 RCX: 00007f5233b8e969
[ 1941.689213][T29914] RDX: 000000000000ffd8 RSI: 0000000000000000 RDI: 0000000000000003
[ 1941.689229][T29914] RBP: 00007f5233c10ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1941.689245][T29914] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1941.689273][T29914] R13: 0000000000000000 R14: 00007f5233db5fa0 R15: 00007ffc305b0fa8
[ 1941.689296][T29914]  </TASK>