last executing test programs:

7m27.696379844s ago: executing program 3 (id=3197):
r0 = socket(0x2a, 0x2, 0x8c)
mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/ifb0/statistics/tx_fifo_errors\x00', 0x0, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000080)=""/58, 0x3a)
move_pages$auto(0x0, 0x91, 0x0, 0x0, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x89fc, &(0x7f0000000140)={'ip_vti0\x00'})

7m27.372509253s ago: executing program 3 (id=3200):
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x608100, 0x0)
bind$auto(0x3, 0x0, 0x6a)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socketpair$auto(0x3, 0x4, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
open(0x0, 0x22240, 0x55)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/fb0\x00', 0x20401, 0x0)
openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f00000032c0)='/dev/mtd0\x00', 0x22801, 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14aabc)
open(&(0x7f0000000000)='./file0\x00', 0x40440, 0x40)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
r1 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
ioctl$auto(r0, 0x541c, r1)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$auto(0x3, 0x80046f45, r2)

7m26.987329186s ago: executing program 3 (id=3203):
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0x60641, 0x0)
write$auto_proc_gid_map_operations_base(r0, 0x0, 0x0)
r1 = socket(0x1e, 0x805, 0x0)
mremap$auto(0x0, 0x4000007, 0x3fd7, 0x3, 0x20000020000000)
statmount$auto(&(0x7f0000000040)={0xaadf, @raw=0x1ff, 0x100, 0xfffffffffffffc00, 0x3}, &(0x7f0000000080)={0x9, 0x0, 0x2, 0x9, 0x8efd, 0x7, 0x2786, 0x6, 0xad4, 0x24, 0x0, 0xfff, 0x3, 0x5, 0x8, 0x10, 0x7fffffffffffffff, 0x892, 0xa0e, 0x730, 0x9, 0x3, 0x5, 0x6, 0x7f, 0x22, 0x5, 0x6, 0x4, 0xffffffff, 0xdcb, [0x2, 0x1, 0xb768, 0x80, 0xc12, 0x8, 0x1, 0x3ff, 0xffffffffffffffff, 0xd, 0x4, 0x400, 0x1, 0x9, 0xdf, 0x2, 0x45, 0x400, 0xffffffffffffffff, 0xaa, 0x100, 0xb, 0x5, 0xa2, 0x1, 0x4, 0xffffffff, 0x100, 0x3, 0xe87, 0x9716, 0x7, 0xcb, 0x4, 0x3, 0x8, 0xdf0d, 0x0, 0x6, 0x6, 0xb93, 0x8, 0x2], "889c6517dedbda801134e0eca883874f3bbf1a173c45ba86cc787ade8f77269d3c273df52f682ace45757faab3f54cf559393049e36f6e0ef76253837d8b0cdb52446b13a0f6b13bca055d1a56282888b651206c93"}, 0xffffffff, 0x6)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='/sys/devices/virtual/net/nr5/queues/rx-0/rps_flow_cnt\x00', 0x182b02, 0x0)
openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0)
sendfile$auto(r2, r2, 0x0, 0x3)
connect$auto(r1, &(0x7f0000000000)=@tipc=@id={0x1e, 0x3, 0x2, {0x4e20}}, 0x10)

7m26.643385819s ago: executing program 3 (id=3204):
socket(0x2, 0x1, 0x0)
r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r1 = bpf$auto(0x0, &(0x7f0000000100)=@bpf_attr_5={@target_fd=0x5, 0x7f, 0x9c, 0x7b2, 0x1, @relative_id=0x4, 0x80}, 0x96)
bpf$auto(0xffffffff, 0x0, 0xb)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0)
r2 = openat$auto_ftrace_avail_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/available_events\x00', 0x0, 0x0)
preadv$auto(r2, &(0x7f0000000100)={&(0x7f0000000200), 0x82}, 0x8, 0xd62a, 0x5)
sendmsg$auto_NL80211_CMD_NEW_MPATH(r1, &(0x7f00000000c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8800010}, 0xc, &(0x7f0000000080)={&(0x7f0000000600)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="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"], 0x150}, 0x1, 0x0, 0x0, 0x1b6efac7cd8fe165}, 0x8010)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x3, 0x7)
ioctl$auto_FIONBIO(r2, 0x5421, 0x2)
openat$auto_cgwb_debug_stats_fops_(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/debug/bdi/1:11/wb_stats\x00', 0x100, 0x0)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x5, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
pkey_free$auto(0xfffffffd)

7m25.360639809s ago: executing program 3 (id=3210):
r0 = socket(0x1e, 0x805, 0x0)
mremap$auto(0x0, 0x4000007, 0x3fd7, 0x3, 0x20000020000000)
statmount$auto(&(0x7f0000000040)={0xaadf, @raw=0x1ff, 0x100, 0xfffffffffffffc00, 0x6}, &(0x7f0000000440)={0x9, 0x0, 0x2, 0x52e9f872, 0x8efd, 0x7, 0x2786, 0x6, 0xad8, 0x24, 0x0, 0xfff, 0x3, 0x5, 0x8, 0x10, 0x7fffffffffffffff, 0x896, 0xa0e, 0x730, 0x9, 0x3, 0x5, 0xa, 0x7f, 0x22, 0x5, 0xa, 0x7, 0xffffffff, 0xdcb, [0x2, 0x1, 0xb767, 0x1, 0xc12, 0x8, 0x1, 0x3ff, 0xffffffffffffffff, 0xd, 0x4, 0x400, 0x1, 0x9, 0x8000000000000000, 0x4, 0x45, 0x400, 0xffffffffffffffff, 0xaa, 0x100, 0xb, 0x5, 0xa2, 0x1, 0x4, 0xffffffff, 0x100, 0x3, 0xe87, 0x9716, 0x7, 0xcb, 0x4, 0x3, 0x8, 0xdf0d, 0x0, 0x6, 0x6, 0xb93, 0x8, 0x2], "889c6517dedbda801134e0eca883874f3bbf1a173c45ba86cc787ade8f77269d3c273df52f682ace45757faab3f54cf559393049e36f6e0ef76253837d8b0cdb52446b13a0f6b13bca055d1a56282888b651206c93"}, 0xffffffff, 0x6)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='/sys/devices/virtual/net/nr5/queues/rx-0/rps_flow_cnt\x00', 0x182b02, 0x0)
r2 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/tty/ldiscs\x00', 0x2, 0x0)
pread64$auto(r2, &(0x7f00000002c0)='\x00', 0xffff, 0xb2)
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_BATADV_CMD_SET_MESH(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x4000}, 0x20044000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000)
msgctl$auto(0x3, 0x401, &(0x7f0000000340)={{0x9, <r3=>0xffffffffffffffff, 0xee01, 0xfff, 0x3, 0x1, 0x8}, &(0x7f0000000100)=0xf8, &(0x7f0000000140)=0x1, 0xffffffffffffffff, 0x1, 0x5, 0x2, 0x6, 0x5, 0x7f, 0x10, @raw=0x7f, @raw=0x10000})
fchown$auto(r1, r3, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r4)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000001c0)={'wlan0\x00', <r6=>0x0})
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)={0x2c, r5, 0xd0d58b333228212f, 0x70bd2c, 0x25dfdbfc, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r6}, @NL80211_ATTR_SCAN_FREQ_KHZ={0x10, 0x124, 0x0, 0x1, [@typed={0x8, 0x113, 0x0, 0x0, @u32=0x24f4f0}, @generic="b0a2d45e"]}]}, 0x2c}}, 0x400c080)
openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0)
sendfile$auto(r1, r1, 0x0, 0x3)
connect$auto(r0, &(0x7f0000000000)=@tipc=@id={0x1e, 0x3, 0x2, {0x4e20}}, 0x10)

7m25.219834898s ago: executing program 3 (id=3212):
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x608100, 0x0)
bind$auto(0x3, 0x0, 0x6a)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socketpair$auto(0x3, 0x4, 0x8000000000000000, 0x0)
memfd_create$auto(&(0x7f00000008c0)='/sys/kernel/debug/x86/boot_params/data\x00', 0x0)
fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d)
mmap$auto(0x0, 0x20007, 0x4000000000df, 0xeb1, 0x401, 0xfffffffffffffffb)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
move_pages$auto(0x0, 0x2000000000003, 0x0, 0x0, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x89fc, &(0x7f0000000040)={'gre0\x00'})
pwrite64$auto(0xffffffffffffffff, 0x0, 0x6bc, 0x5)
sysfs$auto(0x3, 0x401, 0x0)
r1 = socket(0x18, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x80047453, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
clone$auto(0x2, 0x40000f, 0x0, 0x0, 0x10000000003)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
r2 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000001cc0), 0x101440, 0x0)
r3 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000240)='/dev/video37\x00', 0x8a240, 0x0)
ioctl$auto(r3, 0x5646, r3)
read$auto_v4l2_fops_v4l2_dev(r3, 0x0, 0x0)
ioctl$auto_v4l2_fops_v4l2_dev(r3, 0x8, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r2, 0x40345410, &(0x7f0000000140)={{0x1, 0xfffffffd, 0x2007fd, 0xffffffff, 0xfffffffb}, "0dd7fd00d6d51700001000"})
ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r2, 0x40345410, 0x0)
msync$auto(0x5, 0x7, 0x9)
madvise$auto(0x0, 0x8000000000000000, 0x15)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x6, 0x3ff, 0x4)

7m10.108097176s ago: executing program 32 (id=3212):
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x608100, 0x0)
bind$auto(0x3, 0x0, 0x6a)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socketpair$auto(0x3, 0x4, 0x8000000000000000, 0x0)
memfd_create$auto(&(0x7f00000008c0)='/sys/kernel/debug/x86/boot_params/data\x00', 0x0)
fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d)
mmap$auto(0x0, 0x20007, 0x4000000000df, 0xeb1, 0x401, 0xfffffffffffffffb)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
move_pages$auto(0x0, 0x2000000000003, 0x0, 0x0, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x89fc, &(0x7f0000000040)={'gre0\x00'})
pwrite64$auto(0xffffffffffffffff, 0x0, 0x6bc, 0x5)
sysfs$auto(0x3, 0x401, 0x0)
r1 = socket(0x18, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x80047453, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
clone$auto(0x2, 0x40000f, 0x0, 0x0, 0x10000000003)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
r2 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000001cc0), 0x101440, 0x0)
r3 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000240)='/dev/video37\x00', 0x8a240, 0x0)
ioctl$auto(r3, 0x5646, r3)
read$auto_v4l2_fops_v4l2_dev(r3, 0x0, 0x0)
ioctl$auto_v4l2_fops_v4l2_dev(r3, 0x8, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r2, 0x40345410, &(0x7f0000000140)={{0x1, 0xfffffffd, 0x2007fd, 0xffffffff, 0xfffffffb}, "0dd7fd00d6d51700001000"})
ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r2, 0x40345410, 0x0)
msync$auto(0x5, 0x7, 0x9)
madvise$auto(0x0, 0x8000000000000000, 0x15)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x6, 0x3ff, 0x4)

9.113828777s ago: executing program 4 (id=4753):
ioctl$auto(0xffffffffffffffff, 0xf6, 0xffffffffffffffff)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/sys/net/ipv4/neigh/veth1_to_team/ucast_solicit\x00', 0x208200, 0x0)
unshare$auto(0x40000080)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000001700), r0)
sendmsg$auto_NETDEV_CMD_DEV_GET(r0, &(0x7f0000001840)={0x0, 0x0, &(0x7f0000001800)={&(0x7f00000017c0)={0x14, r1, 0x301, 0x70bd26, 0x25dfdbfe}, 0x14}, 0x1, 0xf0ffff, 0x0, 0x4005}, 0x28044004)
read$auto(0xffffffffffffffff, 0x0, 0x9)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r0)
io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7ffffffc, 0xd, 0x3000, 0x6, 0x7, 0x400a, 0xffffffffffffffff, [], {0x6, 0x6, 0x8c48, 0x29b, 0x3, 0x7f, 0x104, 0x6, 0x3}, {0x100, 0x1, 0x2052, 0x85, 0x2, 0x1a7b870a, 0x76c5, 0x8, 0x100000000}})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)=ANY=[@ANYBLOB="010000005668de0d1d53003750275fe67a8a37f8517ffd979377571887f116c761a530c62aa3b455584f0fa3ca101d4a61b4c57491fad52125284074ccfd328e2362588d9032484c256823c5e6b51029d1db3232bcad33e862b4fe31288868998e04e2c26d2cb4e810c4e2ff42c900c6dc0aeb3f672535a9fffc22340a", @ANYRES16=r3, @ANYBLOB="010027bd7000f9dbdf2501000000080009000100000008000a000800000008001700", @ANYRES32, @ANYBLOB="0600020004000000"], 0x34}}, 0x4000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
r4 = openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000d00), 0x60100, 0x0)
read$auto_vhci_fops_hci_vhci(r4, &(0x7f0000000d40)=""/16, 0x10)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'syz_tun\x00'})
sendmsg$auto_ETHTOOL_MSG_DEBUG_GET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80}, 0x20000010)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x200007, 0x19)
socket$nl_generic(0x10, 0x3, 0x10)
recvfrom$auto(0x4, 0x0, 0x1, 0x3ffffd, 0x0, 0x0)
socket(0x10, 0x2, 0x0)
ioctl$auto_TIOCGICOUNT(0xffffffffffffffff, 0x545d, 0x0)
bind$auto(0x3, 0x0, 0x6a)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x8, 0x80000000000000df, 0x10004000eb1, 0x8, 0x8000008000)
ioperm$auto(0x6, 0x6, 0xfffffffd)

6.877432458s ago: executing program 2 (id=4760):
mmap$auto(0x0, 0x42000a, 0xdf, 0xeb1, 0xffffffffffffffff, 0xfffffffb)
r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0)
ioctl$auto(r0, 0x80045515, 0xffffffffffffffff) (async, rerun: 32)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) (async, rerun: 32)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x3, 0xff) (async)
socket(0xa, 0x801, 0x84) (async)
getsockopt$auto(0x100000006, 0x0, 0x5, 0xfffffffffffffffe, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x204000, 0x0)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0xc76, 0x8000) (async)
mmap$auto(0x8000, 0xfffffffffffffffe, 0x4000000000df, 0x16, 0x402, 0x2)
setdomainname$auto(0x0, 0x6)

6.409956301s ago: executing program 1 (id=4761):
mmap$auto(0x0, 0xa00006, 0x2, 0x100000000013, 0x602, 0x300000000000)
mmap$auto(0x0, 0x4020009, 0x400000000000de, 0xeb1, 0x401, 0x8000)
socket(0x11, 0x3, 0x6)
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/ptype\x00', 0x101000, 0x0)
setreuid$auto(0x0, 0x0)
pread64$auto(r0, 0x0, 0x8, 0xffff)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000340), r1)
sendmsg$auto_TIPC_NL_NET_SET(r1, &(0x7f00000079c0)={0x0, 0x0, &(0x7f0000007980)={&(0x7f0000000380)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010028bd7000ffdbdf250f0000000c00078008000500", @ANYRES32=0xee00, @ANYBLOB="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"], 0x20}, 0x1, 0x0, 0x0, 0x40010}, 0x802)
mlock$auto(0x102, 0x80006)
mlockall$auto(0x800000000000005)
madvise$auto(0x0, 0x200007, 0x19)
mlockall$auto(0x7)
r3 = openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/config/nullb/features\x00', 0x501000, 0x0)
close_range$auto(0xffffffffffffffff, r3, 0xba)
read$auto(0xffffffffffffffff, &(0x7f0000000080)='\x00', 0x80)
socket(0xa, 0x806, 0x0)
pipe$auto(0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000003680)={'wlan0\x00'})
sendmsg$auto_NL80211_CMD_NEW_KEY(r5, &(0x7f00000048c0)={0x0, 0x0, &(0x7f0000004880)={0x0}, 0x1, 0x0, 0x0, 0x40000}, 0x890)
dup2$auto(0x5, 0x4)
ioctl$auto_IOCTL_VMCI_VERSION(0xffffffffffffffff, 0x79f, 0x4)
migrate_pages$auto(0x0, 0x3, &(0x7f0000000100)=0x5, &(0x7f0000000140)=0x2)
unshare$auto(0x40000080)

6.311327383s ago: executing program 2 (id=4763):
mmap$auto(0x0, 0x5, 0x6, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup\x00', 0x151600, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r1, 0x0, 0x20)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000500)='/proc/thread-self/fail-nth\x00', 0x400802, 0x0)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x184b01, 0x0)
fchmod$auto(r0, 0x9)
setreuid$auto(0x4, 0x8)
rmdir$auto(&(0x7f0000000300)='./cgroup\x00')
statmount$auto(0x0, &(0x7f0000000180)={0x8000008, 0x1, 0x1000009, 0x3, 0x26, 0x940, 0x1ffde, 0x5, 0x6, 0x3ff, 0x9, 0x400005, 0xfff, 0x4, 0xb0, 0x8, 0x9, 0x3, 0x5, 0x80000000000000, 0x0, 0xf7ffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8]}, 0xfffff7fffffffffa, 0x7e)
socket(0xa, 0x5, 0x800000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket(0xa, 0x3, 0x6)
clone$auto(0x20003b46, 0x22, 0x0, 0x0, 0x2)
socket(0x2, 0x5, 0x3)
setsockopt$auto(0x3, 0x10000000084, 0x17, 0x0, 0x3ff)
socket(0x10, 0x2, 0x0)
unshare$auto(0x40000080)
r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001d00), 0xffffffffffffffff)
pwrite64$auto(0xc8, 0x0, 0x4e, 0x3)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000006900)='/sys/kernel/config/target/dbroot\x00', 0x189002, 0x0)
write$auto(r5, &(0x7f0000000100)='/dev/audio1\x00', 0x100000a3d7)
sendmsg$auto_ETHTOOL_MSG_PHY_GET(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01002dbd7000fcdbdf250200000018000180140002006d616376746170300000000000000000ff0a0a43cbdac0b284874852d91740d720c6e0bcb53e99f0308807dd920e609fce45b243db7d133472b6a5a65941e3ca2c03a7def36bdeeac216ad9d28001ff84ed13551fa1846fc515f275ed1135937fdd965cea0bdec24990b2db41eb1b5198d4ef17871bf51efcf536cfbb0f15426143f7bc6f38e840d6422fb7ec7d65b7176ccb30fd2811ad125e6b7664a3973f9ca948acc2707b643e7e0c765502b29c1561b3cb93f7c1d6af2503eaec0c1b804c64a32f19fb5bbb2c05bdbdf48a9ba3ca3a3e0c2a5c3e38d0d48e38f59e798da87f52fddd24afa550dd1160caa57c505d3acaba06dc2fda885098dea989ca54797f7f6fd78ad63847271cef1d26ef3447c3894d71a9a5e109b1c88e308a27847f855a588005c5ff6fcd98d976688a5a674049e83606fbd7a336de4cfcbb550d601de6203c5184a412dfd80673ab0cbeba1e956c7ebad9f74ce94aaa0f14fd7a80000"], 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x400c0)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
memfd_create$auto(0x0, 0x72dc)
fallocate$auto(0x3, 0x0, 0xe, 0x8ec5)

5.372980189s ago: executing program 1 (id=4764):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000002ac0), r0)
r2 = epoll_create$auto(0x2)
epoll_pwait2$auto(r2, 0x0, 0x8, &(0x7f0000002780)={0x0, 0x6}, 0x0, 0x8)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$auto_NL802154_CMD_GET_SEC_KEY(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r4, @ANYBLOB="a3ff2dbd7000fdd9df2516000000"], 0x14}, 0x1, 0x0, 0x0, 0x40040}, 0x40c0)
r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
ioctl$auto(r5, 0x5608, 0x1)
openat$auto_adf_ctl_ops_adf_ctl_drv(0xffffffffffffff9c, &(0x7f0000000040), 0x22b80, 0x0)
ioctl$auto(0x3, 0x80000541b, 0x38)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000140)={'ip6tnl0\x00', <r6=>0x0})
r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/block/nbd8/queue/atomic_write_max_bytes\x00', 0x8000, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r7, &(0x7f0000000440)=""/195, 0xc3)
sendmsg$auto_NL802154_CMD_GET_WPAN_PHY(r0, &(0x7f0000002bc0)={0x0, 0x0, &(0x7f0000002b80)={&(0x7f0000000000)=ANY=[@ANYRES16=r7, @ANYRES16=r1, @ANYBLOB="831f2abd7000fcdbdf5fa2de130008000300", @ANYRES32=r6, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x20004041}, 0x40004)

5.347716488s ago: executing program 4 (id=4765):
ioctl$auto(0xffffffffffffffff, 0xf6, 0xffffffffffffffff)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/sys/net/ipv4/neigh/veth1_to_team/ucast_solicit\x00', 0x208200, 0x0)
unshare$auto(0x40000080)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000001700), r0)
sendmsg$auto_NETDEV_CMD_DEV_GET(r0, &(0x7f0000001840)={0x0, 0x0, &(0x7f0000001800)={&(0x7f00000017c0)={0x14, r1, 0x301, 0x70bd26, 0x25dfdbfe}, 0x14}, 0x1, 0xf0ffff, 0x0, 0x4005}, 0x28044004)
read$auto(0xffffffffffffffff, 0x0, 0x9)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r0)
io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7ffffffc, 0xd, 0x3000, 0x6, 0x7, 0x400a, 0xffffffffffffffff, [], {0x6, 0x6, 0x8c48, 0x29b, 0x3, 0x7f, 0x104, 0x6, 0x3}, {0x100, 0x1, 0x2052, 0x85, 0x2, 0x1a7b870a, 0x76c5, 0x8, 0x100000000}})
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
madvise$auto(0x40000, 0x8000000000000000, 0x15)
r2 = openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000d00), 0x60100, 0x0)
read$auto_vhci_fops_hci_vhci(r2, &(0x7f0000000d40)=""/16, 0x10)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'syz_tun\x00'})
sendmsg$auto_ETHTOOL_MSG_DEBUG_GET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80}, 0x20000010)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x200007, 0x19)
socket$nl_generic(0x10, 0x3, 0x10)
recvfrom$auto(0x4, 0x0, 0x1, 0x3ffffd, 0x0, 0x0)
socket(0x10, 0x2, 0x0)
ioctl$auto_TIOCGICOUNT(0xffffffffffffffff, 0x545d, 0x0)
bind$auto(0x3, 0x0, 0x6a)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x8, 0x80000000000000df, 0x10004000eb1, 0x8, 0x8000008000)
ioperm$auto(0x6, 0x6, 0xfffffffd)

5.113813143s ago: executing program 0 (id=4766):
io_uring_setup$auto(0x1, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
ioctl$auto_UBI_IOCDET(0xffffffffffffffff, 0x40046f41, 0x0)
unshare$auto(0x40000080)
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
ioctl$auto_SNDCTL_DSP_SPEED(r0, 0xc0045002, 0x0)
ppoll$auto(&(0x7f0000000000)={r0, 0x40}, 0x2, 0x0, 0x0, 0x8)
ioctl$auto_SNDCTL_DSP_SYNC(r0, 0x5001, 0xfffffffffffffffc)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8400)
socket(0xa, 0x1, 0x100)
ioperm$auto(0x7, 0x5ad2, 0x8)
modify_ldt$auto(0x1, 0x0, 0x10)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40, 0x0)
gettid()
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r1 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000140), 0x8040, 0x0)
io_uring_setup$auto(0xc, 0x0)
ioctl$auto_dvb_demux_fops_dmxdev(r1, 0x403c6f2b, 0x0)
readv$auto(0x3, &(0x7f00000002c0)={0x0, 0x8}, 0x8)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
read$auto(r1, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
pread64$auto(r2, &(0x7f0000000040)='\x00\x00\x00\x88\xde\x90\a\'\x9bM\xa0\x848\xbbz(\xe9\x05<\x82\xfe\xe2\xf6 \x0f8\xfb\xa7\xb4\xa0\x9e\xcb\xec\x9e{W\xed>\xe7l\xcb\x90\\/\x84\x99!*\xe3\x99}x\xd4\xa5D\xfa\xe5\xf9od^\xa6', 0x7ff, 0x400)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
socket(0x21, 0x3, 0x9)
prctl$auto(0x3e, 0x1, 0x0, 0x9, 0x1000)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0)
write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)

4.723832592s ago: executing program 2 (id=4767):
unshare$auto(0x40000080)
mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r0 = socket(0xa, 0x1, 0x100)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/net/bond0/bonding/primary_reselect\x00', 0x1e2142, 0x0)
sendfile$auto(r1, r1, 0x0, 0x7fff)
unshare$auto(0xa4)
setsockopt$auto(0x400000000000003, 0x29, 0x1b, 0x0, 0x56b)
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x20b42, 0x0)
ioctl$auto_SNDCTL_DSP_SPEED(r2, 0xc0045002, 0x0)
r3 = socket(0x10, 0x2, 0xc)
unshare$auto(0x40000080)
r4 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x490ac2, 0x0)
write$auto(r4, &(0x7f0000000200)='/de\xef\xe7audio1\x00', 0xa3d9)
r5 = syz_genetlink_get_family_id$auto_nlctrl(0x0, 0xffffffffffffffff)
sendmsg$auto_CTRL_CMD_GETPOLICY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB='q\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="4cb245184f86db27df250a000a"], 0xf8}}, 0x10004010)
sendmsg$auto_CTRL_CMD_GETPOLICY(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x64f4040a6ccda016}, 0xc, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="fffffffd", @ANYRES16=r5, @ANYBLOB="00012cbd7000fcdbdf250a00000005000200000000000600010061c5000008000a000c000000060001005d00000008000a001803000006000100b438000008000a000100010008000a000200000008000a0006000000"], 0x5c}, 0x1, 0x0, 0x0, 0x220088c0}, 0x40)
ioctl$auto_SNDCTL_SEQ_GETINCOUNT(r4, 0x80045105, &(0x7f00000002c0)="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")
ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r2, 0xc004500a, &(0x7f00000003c0))
syz_clone(0x800000, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x6, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000002)
bpf$auto_BPF_PROG_GET_FD_BY_ID(0xd, 0x0, 0x0)
mmap$auto(0x0, 0x2020008, 0x1000000000000007, 0xeb1, 0x0, 0x1008000)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x801, 0x84)
io_uring_setup$auto(0xffffffff, 0x0)
mmap$auto(0x0, 0x1000000009, 0x2, 0x8000000008011, 0x3, 0x0)
move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
io_uring_enter$auto(0x3, 0x0, 0x1, 0x3, 0x0, 0x2)
io_uring_enter$auto(0x3, 0x1, 0x2688, 0x5, 0x0, 0x7)

4.275092055s ago: executing program 1 (id=4768):
mmap$auto(0x3, 0x2020009, 0x100000001, 0x7fffffff, 0xfffffffffffffffa, 0x8001)
r0 = bpf$auto(0x0, 0x0, 0xd)
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x1, 0x0, 0x0, 0x40000}, 0x80)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000080)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x4000000000007, 0xa505}, 0x800}, 0x4, 0x4008)
sigaltstack$auto(&(0x7f00000000c0)={&(0x7f0000000280)="a6e72669ada50daf35276d4bf5f1e106d09679be72ddb40b40d208ed47edc241362cc6d41cb2d10b1bce1a6ebf88000d66a5d56f2fe4f3441d667328e674cf010b7ce99a151762d3a63d10fb24e130adcae8efe3e2cd72869b59e5cc75e1f1ac2e5e8037ea6db5d244210a1abac27886f1d94f0dde6f1c30edd40e504da0130eae0852ae77e11271051e828c880acb663cc512ec7e62e8600397f389006b210ded0abae26d807e943c353878c897fb96bb7d6ccc3c1e160c09c80bf17f96275a34af8e1c67b54bdadca1a02c22b8dfb2f1bb", 0x10, 0xffff}, &(0x7f0000000440)={&(0x7f0000000380)="06111a38178a4b9b6e1fdaa4cbc1acb50e0eef268a2c62dd040620dbbd3f0b25bf423a56ead27ce280b7161860a83c4bfe4b03c34bfe15588e91639800887b74c676fa42a097679fe84871021d8e6ced84950058087ecfc4b5654f0350c180044c180ff1e31e114d0000d226ee9647103fe17ef97f481bf4e380a133bd75068c3a0db61d2c777b22", 0x9, 0x5})
r1 = socket(0x10, 0x2, 0x4)
r2 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f00000004c0), r1)
shmctl$auto_SHM_UNLOCK(0x3, 0xc, &(0x7f0000000580)={{0x200, <r3=>0xffffffffffffffff, 0xffffffffffffffff, 0x9, 0x2, 0xd, 0x8}, 0xd, 0x2, 0x7f, 0xe315, @raw=0x6, @raw=0xffffffff, 0x8, 0x0, &(0x7f0000000500)="de2583563bd5c9345d1f7449b0", &(0x7f0000000540)="a7eea079"})
newfstatat$auto(0xffffffffffffffff, &(0x7f0000000600)='./file0\x00', &(0x7f0000000640)={0x5, 0x80, 0x1000, 0x4, <r4=>0xee01, 0xee00, 0x0, 0x6, 0xfffffffffffffffc, 0x5b3a16c7, 0x4, 0x8, 0x7, 0xb8, 0xce, 0x2, 0x5}, 0x3ff)
r5 = gettid()
process_vm_readv$auto(r5, &(0x7f0000000040)={0x0, 0x2}, 0x4, &(0x7f00000000c0)={0x0, 0x100000000000002}, 0x3, 0x0)
r6 = openat$auto_urandom_fops_random(0xffffffffffffff9c, &(0x7f0000000700), 0x92102, 0x0)
sendmsg$auto_NL802154_CMD_SET_CHANNEL(r0, &(0x7f0000000a40)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000a00)={&(0x7f0000000e00)={0x5cc, r2, 0x100, 0x70bd2d, 0x25dfdbfb, {}, [@NL802154_ATTR_LBT_MODE={0x5, 0x13, 0x7}, @NL802154_ATTR_PEER={0x5a5, 0x28, 0x0, 0x1, [@typed={0x8, 0x4e, 0x0, 0x0, @uid=r3}, @nested={0x3e4, 0x1, 0x0, 0x1, [@generic="a9cb3d10dbbcb8e6b8c9eb5de5436e6e48b915e0c9d969072366f1654e508b3ff521b6333c92b084157ad20b235246305f907be4300dc2b057dd9836c6e23fb80c7c5fda9b21a851223604bfc068ea1b573e8b5ccae4dde7069c711bf3d871c40bf234e467f8e208802b6b481ecaf455a38132a1c3e27043597e4a780eaf5ddf5cbd26c71337", @nested={0x4, 0x95}, @nested={0x4, 0xdb}, @typed={0xf, 0x94, 0x0, 0x0, @binary="543339fd7a0d1f2b68c8a1"}, @nested={0x4, 0x33}, @typed={0x14, 0x11d, 0x0, 0x0, @ipv6=@private0}, @generic="aaab2d07926ab3b0bb30cd4484ad3a6d752c01baeaa3fd5231da70352d0f583d063c758f9757232c40dd673edaa6fa491322f0d116bd0fa7171c493f7e174b2345bac991a38adc1adab97d4c90dab28c46a77945d1751b51ecca17aa719af7e5efa159f73a46d444f244250ec01cb156bb249af13dbb9045a62296ce6188271ab35450b2d099808ebe744de9802db9ca4e18e78bd7424d46ff76130d09ae0e7b3601432c6fee2ab960ae49f405c3", @nested={0x4, 0x19}, @nested={0x274, 0xe, 0x0, 0x1, [@nested={0x260, 0x67, 0x0, 0x1, [@generic="53bf42425ae5a2e9dbddff176c29b0e99975685b8fbaa00222c785a37227e6090ff736000b9df232b891a26e0fcd8f86", @typed={0x8, 0x76, 0x0, 0x0, @pid=r5}, @typed={0xe8, 0x19, 0x0, 0x0, @binary="c116582deb25b815f9e63a88523566e16544c6b6d92a6d74276cbdbde7c810c0dcd080e7a12aaa998cf6c2898570ca5b190c081e4e63d1df7ecbb33d07ba584979e6681aa17ee722429a51d68615e338c5e58ed6787c8efdbee28779230f360b502bdd8e452794c0c11bc1f70c10b6c5049ae74c24718797081d480791d7c18f8766668a56df19e8b087da157d403f2d838c9e8bebfbdabe9967019946c79167be4d6c7f76f4f7866836452da0403834ce36ef7fac089796e60978b53af22f44a0571ed9ac096528a4573fb17fe9c37b3107d62cc96f2796936a8f0f6eb7b6ffdfbd0424"}, @nested={0x134, 0x130, 0x0, 0x1, [@typed={0xa, 0x18, 0x0, 0x0, @str='%+):\xa7\x00'}, @nested={0x4, 0x8e}, @typed={0x4, 0x2b}, @typed={0x14, 0xe9, 0x0, 0x0, @ipv6=@empty}, @typed={0x8, 0x4f, 0x0, 0x0, @uid=r3}, @typed={0xef, 0x5, 0x0, 0x0, @binary="5c3aaa2116c01236d76f59ea6cae5a46c77b6ba292830f911045e2a527bca5346be17618c540336922a64974bd5b4cd6aaf1f2bdeb8f6b5efaa366e069ce3c776acb4756156c63cba798bdbf611bb62b9014f7d5a6b095dcd75c79b722de5460f5d797a341b29f4b04b61ece5728703fcd4b73abc81d1704fd2f4667aac7c720e9d3e93343f6980c3d62167df244902adfbe2082bc82b1d424984ad7089b079de1154828a4106210db9fc9b28077c851c6a4dd6cbdbcffa63f1738b4664ba35b34a799c61e066f8a139dbc7d65aa0f142d878509189247798f1ba8846ec1fd1b7d489b0393bcb711fdc21f"}, @typed={0x8, 0x5b, 0x0, 0x0, @fd=r6}, @nested={0x4, 0xe0}, @nested={0x4, 0x151}]}, @typed={0x8, 0x8f, 0x0, 0x0, @fd=r6}]}, @nested={0x10, 0x5e, 0x0, 0x1, [@typed={0xc, 0x2d, 0x0, 0x0, @u64=0x6}]}]}, @nested={0x4, 0x107}]}, @typed={0x8, 0x78, 0x0, 0x0, @uid=r4}, @nested={0x148, 0x143, 0x0, 0x1, [@generic="4cd04a21eeccfd5ae6903aa3fd3310cc3cd7589c27420e64b589c5d34de9d6b60d8e25ac76e603a2857540a6119b3f7f00646c09c7286b8382eb4c8b4ead251919acd4f6393df8206af6a5cfd5cdafd27678ca88167d906a0a180b54e1dcbc85587655a17dac6d9afe959502ccce3982a29f7a802eb38008391b277a179068f620cbff599cd53d69289e2ff1d9159eea574fd8d8b6dc2517633c2086d31de22d6e7e797a63c7602fac08f8dd200be4e0229759bed0e2277fd0bc0156", @generic="de0a87d66e27438b0399d99bf1b210c56d705073b811fa4804e615cd7d8a1e572e011257947bcb4cacc95b804a778f666a8b50da3b1bd3fdc7e44b2416dba0f6d01dadf954d78ff500447ce91680c2a8d7aefa7bf54ef65f670e974b6b7041b8be07a94d859ee12cb26207baa0448316e60e4a956221057e5ac5b2b61e0d4f75e67949788ffa983e"]}, @typed={0x6, 0x0, 0x0, 0x0, @str='-\x00'}, @generic="8a8503be72015b4f05855c05d56c8c4d577c3d65f6fb74e7b46f4287d928db8f5633f85b9f1a20f03c997ec14911e6f2f11d3b7e53a94ea5d7e9b65ca43ec396cba4229df0c041b46764a93b969ae026903be9b57bbe90374f5a6668a6"]}, @NL802154_ATTR_SHORT_ADDR={0x6, 0xa, 0xb5bb}]}, 0x5cc}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
r7 = socket(0x11, 0x3, 0x9)
capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48})
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x6, 0x0)
setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88)
sendmmsg$auto(r7, &(0x7f00000001c0)={{&(0x7f0000000000), 0x1aa, &(0x7f0000000100)={0x0, 0x49}, 0x5, 0x0, 0x5, 0x1000}, 0x5}, 0x2, 0x100)
sendmsg$auto_OVS_FLOW_CMD_GET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="010029bd7000fbdbdf2502ff"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x800)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x2404c000)
write$auto(r1, &(0x7f0000000000)='-\x00', 0x2fb)
r8 = socket(0x29, 0x2, 0x0)
r9 = socket(0x10, 0x2, 0x0)
pipe$auto(0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r9, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}, 0x1, 0x0, 0x0, 0x2000}, 0x40000)
read$auto_ftrace_enable_fops_trace_events(0xffffffffffffffff, &(0x7f00000001c0)=""/92, 0x5c)
recvmmsg$auto(r9, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0)
ioctl$auto(r8, 0x89f3, 0x24)

3.948034691s ago: executing program 0 (id=4769):
syz_genetlink_get_family_id$auto_netdev(0x0, 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x4000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
unshare$auto(0x40000080)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/block/nullb0/queue/read_ahead_kb\x00', 0x400, 0x0)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x3, 0x6, 0x0, 0x7fffffffffffffff, 0x368e, 0x2, {0x100000000, 0x4}, 0xff, 0x0, 0xfffffffffffffffd, 0x8000, 0x0, 0x8002000c, 0x81, 0x6, 0x30, 0xdeb1, 0x805})
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
r3 = socket(0x15, 0x5, 0x0)
ustat$auto(0x801, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'macvlan0\x00'})
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000006c0)='/sys/devices/platform/i8042/serio0/softraw\x00', 0x141042, 0x0)
write$auto(r4, &(0x7f0000000000)='\x01\x00^\xa2\x02\x00\x00\x00\x00\x00\xd8l\x00\x00\x00\x00\x00\x00\xbd\xc5_%\xc1\xa3\xd0\x95Hq\xf4a\xb5\x1b\xad0\x10\x19b\xbf\xb7\xa5`\x97\xddzG\x01[{\x17\x05I\xe0\xb1d\x00\x00\x00\x00L\xe6&[\xa9X6\x7f\xec\x94\xdal\xa1\xbb\x86\x9c\xc2\xef\x02\r9%\x06\xc5\'b%m_\x96A\"\xdd\xe40\xa7\xc3\x9ah\xf3B\xc2z\xf8\r\f[\xe5\x9dK\xe1\x99\x86\xfc\xac\x9f\x8a\x00\x00\x00', 0x3)
bpf$auto(0x0, 0x0, 0x6f4)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x80000000000001ff)
listmount$auto(&(0x7f0000000040)={0x200, @inferred=r1, 0x7f, 0x81, 0x400}, &(0x7f0000000140)=0x10000, 0xf, 0x5)
syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f00000001c0), r0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'ip_vti0\x00'})
r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/afs/rootcell\x00', 0x1cb842, 0x0)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000540)='/sys/devices/virtual/net/rose10/statistics/tx_aborted_errors\x00', 0x300, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r6, &(0x7f0000000580)=""/222, 0xde)
write$auto(r5, &(0x7f0000000300)='*o\xd3\xa49\xaf\xa9\xe4\xe17\x12\xb3Z\x17I\x82\xdc\xbeiw\xc1\xd1\x8d\x9b\r\x9aR\xe7\x9f\xd8\xab\x16`f\nT\xaa\xfap \xe6\xdaV\xdeD\x8dR5\xd2\xe58\n\xff\x19+\xeb\xb3+\xf6\xc6\a\x00\x00\x00\xf1A\xa5\x95\x1fk\x1f\xff\x99gP\x9e\x88\x97]\x93\xf4\xdd<\xe7p\x0e\xd4C\xdc\x84\v\xafz\xfd\x81\xa3\xb2\xbb\xa4\xd9\xf2P\xa8\xe9\x8f\x13\xa7\x98\x85\xf8\v\aB\xfc\xfa\x14E\xb8y\x884<\xa7\xffyb\x8a\b\xbb\x1b\x13W\xe3\xf7\xd8\x83\xc9\xd7\x8c', 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000200), r3)
socket(0x2, 0x6, 0x0)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'wlan0\x00'})

3.703891226s ago: executing program 1 (id=4770):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
ioctl$auto_SNDCTL_DSP_SETFRAGMENT(0xffffffffffffffff, 0xc004500a, 0x0)
ppoll$auto(0x0, 0x7f, 0x0, 0x0, 0x8)
set_mempolicy$auto(0xa, 0x0, 0x4)
mbind$auto(0x2000, 0x100000004, 0x400100000000, 0x0, 0x6, 0x2)
openat$auto_tracing_err_log_fops_trace(0xffffffffffffff9c, &(0x7f0000000440)='/sys/kernel/debug/tracing/error_log\x00', 0x603, 0x0)
r0 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000980)='/proc/self/pagemap\x00', 0x2, 0x0)
read$auto(r0, 0x0, 0x39b8)

3.411775806s ago: executing program 2 (id=4771):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc2481, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff)
epoll_create$auto(0x4)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000)
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, <r0=>0x21eb, 0x7ff, 0x3ff, 0x0, 0x3, 0x5f, 0x0, 0x3}, 0x6f3)
r1 = openat$auto_msr_fops_msr(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cpu/1/msr\x00', 0xf82, 0x0)
readv$auto(r1, &(0x7f00000000c0)={0x0, 0x101d0}, 0x400)
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
fsopen$auto(&(0x7f0000000000)='nlctrl\x00', 0x3)
mmap$auto(0xfff, 0xfffffffffffffbff, 0x4, 0xdbd, r0, 0x1)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
mmap$auto(0x0, 0x9, 0x400000072, 0x8b72, 0x1000000002, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
clone$auto(0x21002, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x9)

3.02962405s ago: executing program 4 (id=4772):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec18\x00', 0x900, 0x0)
ioctl$auto_CEC_S_MODE(r0, 0x40046109, &(0x7f0000002c40)=0xd0)
ioctl$auto_CEC_DQEVENT(r0, 0xc0506107, 0x0)
ioctl$auto_CEC_DQEVENT(r0, 0xc0506107, &(0x7f0000000280)={0x4, 0x3, 0xa, @state_change={0xc, 0x6, 0x8}})
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80502, 0x0)
ioctl$auto_SNDCTL_DSP_SPEED(r1, 0xc0045002, &(0x7f00000000c0))
prctl$auto_PR_GET_SPECULATION_CTRL(0x34, 0x10, 0xffffffffffffffff, 0x8000, 0x8acb)
write$auto(0xffffffffffffffff, 0x0, 0x7)
r2 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC1\x00', 0x20400, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_READ(r2, 0xc4c85512, &(0x7f00000012c0)={{@raw=0x3, 0x1, 0x6d2e99e8, 0x6, "0582a820061b5c51a65a6dd72b0b15addbdf55cb4b0f2381f2673e3a1ebe21e1bf1b26f0db7b62b67bd764f9"}, 0x0, @integer64=@value_ptr=0x0, "528d458095d42b72adda0cac2d45bdaacfc82245992af763188bf00ab57d5d73b094925aa92857fd2f672f85343275f80841c6ca41e93023ab4510269ed959a79a789527276d90375018fc08050559d8936b8d72087a5689d4338da78b8b8bdcea8188ca43202fb78dacb3fea1258074885c899d75cd52751f9be959d90fa5c2"})
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x80102, 0x0)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000140), 0x1a3780, 0x0)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x80000, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x80000000, 0x5f, 0x80000001, 0x7, 0x6d3f, 0x7, 0x2, 0xfffffffffffffffe]}, 0x0)
write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
r4 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000640)='/dev/snd/controlC0\x00', 0x80, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_WRITE(r4, 0xc4c85513, &(0x7f0000000700)={{@raw=0xb, 0x7f, 0x2, 0x406, "26cb83211ffd7f6567850e138dd717bfeb7ab5c55e35d9811b26db6e6f8c5d7d57cdda7ca056a2a31e5dfe27"}, 0x0, @integer64=@value=[0x0, 0x1, 0x2, 0x8000, 0x5, 0x4, 0x2, 0xffff, 0x7, 0xffffffff, 0x5, 0xff, 0xe94, 0xb, 0x8, 0xfff, 0x2, 0x7, 0x2, 0x3be, 0x4, 0xd8a, 0x1, 0xa3, 0x6af, 0xb, 0x7ffffffc, 0x7fffffffffffffff, 0x6, 0x6, 0x9, 0x8, 0x4, 0x9, 0xcf, 0x40000000403, 0x6, 0x1, 0x3, 0x1, 0x6, 0x0, 0x5, 0x3, 0xffff, 0x548, 0xc, 0xe4, 0x7, 0x4, 0x1, 0x951, 0xe0000000000000, 0x6, 0x9, 0x0, 0x6, 0x4000000000000003, 0xb, 0x82c1, 0x4436, 0x0, 0xc1, 0x5], "1cd4f43065c34bdcb5fa6160f24c5f3eb5328361438ff4cd82ad2e9771421debdad4d39a52fc70b9012aff448a8b4a75e7c5126dc116dd8f5751e93614151d5a4f55a63e9ba1ad1e6542796d2a1cd644b0d756001b66abab0c0fd3b4287befd247e5410bef4c186120b5bed4ab64ffeb4b7c5a69166021a8814332515a657e93"})
getsockopt$auto_SO_TXREHASH(r4, 0x1, 0x4a, &(0x7f0000000000)='/dev/snd/controlC0\x00', &(0x7f0000000040)=0x6)
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
bpf$auto(0x5, &(0x7f0000000100)=@bpf_attr_3={0x6, 0x5, 0xffffffffffff8001, 0x9, 0x8, 0x7ff, 0x2, 0x9, 0x6, "4e963b0004000000000800", 0x0, 0x401, 0xffffffffffffffff, 0x4, 0x4, 0x1, 0x5, 0x865, 0x6, 0x19, @attach_prog_fd, 0x9, 0x7fffffffffffffff, 0x4, 0x2, 0x6}, 0x201)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x2, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x0, 0xffffffffffffffff, 0x801, 0x10008, 0x400, 0x1000049, 0xffffffffffffffff, 0x20000000000804, 0x3}, 0x6f3)

2.771499554s ago: executing program 0 (id=4773):
mmap$auto(0x0, 0x20009, 0xd9, 0xeb1, 0x401, 0x7ffc)
close_range$auto(0x2, 0x8, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x3, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4000894}, 0x800)
bpf$auto(0x0, &(0x7f00000001c0)=@test={<r1=>0xffffffffffffffff, 0xb, 0xfffff0b6, 0xffff, 0x84, 0xac1, 0x2, 0x3624239c, 0xfffff5b2, 0x3bb, 0x8000007, 0xffff, 0x6, 0x81, 0x68198}, 0x6f3)
sendmsg$auto_ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000001700)={0x0, 0x0, &(0x7f00000016c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="d4000000", @ANYRES16=0x0, @ANYBLOB="100027bd7000fbdbdf2518000000200001800247ee841fac0000140002007665746831000000000000000000000008000700630100000000000000000000940002803d00488013b37090badc49d6dc93876646d25a4d297d01cd3b7da38d12889cc5070000003dc42d0a3c0a14c7b46428910708003600", @ANYRES32=0x0, @ANYBLOB="0400b3800000003d003b800400a4800c009a00008000000000000004008680c16ab1b1b39dcaa14b6af7dcc011b43cf706e562811c62b28a702b72e0a87126700294f2350000000c000180080003"], 0xd4}, 0x1, 0x0, 0x0, 0x20000010}, 0x404c001)
sendmsg$auto_ETHTOOL_MSG_WOL_SET(0xffffffffffffffff, &(0x7f0000002cc0)={0x0, 0x0, &(0x7f0000002c80)={&(0x7f0000000180)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYBLOB="010027"], 0x2c}, 0x1, 0x0, 0x0, 0x4801}, 0x0)
r2 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000026d00)='/dev/dri/card1\x00', 0x2000, 0x0)
ioctl$auto(r2, 0x64cf, 0x1df)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="12"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x36bd, 0x9}, 0x7}, 0x3, 0x0)
bpf$auto_BPF_LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000300)=@raw_tracepoint={0x4, <r3=>r1}, 0x7fe0000)
r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000001100)='/proc/bus/pci/00/03.0\x00', 0xa0581, 0x0)
write$auto_proc_reg_file_ops_compat_inode(r4, &(0x7f0000001140)="8cbdca", 0x3)
writev$auto(r4, &(0x7f0000001d40)={0x0, 0x2}, 0x6)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/net/rpc/use-gss-proxy\x00', 0x48041, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r5 = socket(0x10, 0x2, 0x0)
sendmsg$auto_IPVS_CMD_GET_SERVICE(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001100)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="04cdc361e2723e"], 0x14}, 0x1, 0x0, 0x0, 0x4004080}, 0x0)
recvmmsg$auto(r5, &(0x7f0000000140)={{0x0, 0x4, &(0x7f0000000080)={0x0, 0x803}, 0x5, 0x0, 0x2, 0x8}, 0x800}, 0x10a, 0x8, 0x0)
close_range$auto(0xffffffffffffffff, r3, 0x3)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
r6 = socket(0x11, 0x3, 0x2)
ioctl$sock_SIOCGIFINDEX(r6, 0x8955, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000080), r7)
sendmsg$auto_BATADV_CMD_GET_MCAST_FLAGS(r7, 0x0, 0x20000000)
pread64$auto(r7, &(0x7f00000004c0)='./cgroup/cgroup.freeze\x00', 0x0, 0x7)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), r0)

2.605424004s ago: executing program 1 (id=4774):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000002400)='/sys/devices/virtual/mtd/mtd0/mtdblock0/ro\x00', 0x20000, 0x0)
syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000040), 0xffffffffffffffff)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
sysfs$auto(0x2, 0x10000000000002a, 0x0)
fsopen$auto(0x0, 0x1)
close_range$auto(0x2, 0x8, 0x0)
getdents$auto(r0, &(0x7f0000000100)={0x800, 0x6, 0x3, "694e35b9d41e181fcace6c00f28fdeb373a62873d9b2445d6f402374b30e6d89639b814a9306349576d6d59f6aa6b148bf30c1824e5867e9fbda6ba5356a05656ee3ab77904f800377786443351f953c2c3fc10af304b60e61b4f2ed74a3a55bcbf31611f6cea89dcd64277a4843d59dfc3b29c22050a0363c8d6d764d909a5620ee11fee823ee520398b761473fbe3adb79722e16dd4cc19af5ab19ec35df6439f000381eb1fb0176d6aa8de2d080e629f53833d92f7752d4d9755f42a330d234a94ae0e43636d168e6c6b277019f60d59732699fe3ec"}, 0x4c3)
close_range$auto(0x2, 0x8, 0xffffffff)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)={0x3c, r2, 0x1b, 0x70bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0xc, 0x3, 0x0, 0x1, [@nested={0x8, 0xc, 0x0, 0x1, [@nested={0x4, 0x3}]}]}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f17790485908286dd"}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x3c}, 0x1, 0x0, 0x0, 0x50}, 0xc800)
fanotify_init$auto(0x5, 0x2000000000002)
socket(0x26, 0x80805, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/fs/cifs/smbd_max_frmr_depth\x00', 0x40302, 0x0)
r3 = socket(0x10, 0x2, 0xc)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x200, 0x1)
r4 = socket(0x10, 0x2, 0xc)
sendmsg$auto_ETHTOOL_MSG_WOL_SET(0xffffffffffffffff, &(0x7f0000002cc0)={0x0, 0x0, &(0x7f0000002c80)={&(0x7f0000000340)=ANY=[@ANYBLOB="18000000", @ANYRES16=0x0, @ANYBLOB="010027bd7000fcdbdf2535493a2c040002"], 0x18}, 0x1, 0x0, 0x0, 0x801}, 0x4044)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="18000000", @ANYRES8=r3, @ANYRES8=r4], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x80)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54)
sendmsg$auto_NL802154_CMD_SET_PAN_ID(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00', @ANYRES16, @ANYBLOB="010027bd7000fddbdf250a0005000700000000000000080001"], 0x24}, 0x1, 0x0, 0x0, 0x4088}, 0x20000010)
sendmsg$auto_TIPC_NL_NET_SET(0xffffffffffffffff, &(0x7f00000079c0)={0x0, 0x0, &(0x7f0000007980)={&(0x7f0000000000)=ANY=[@ANYRES16=0x0, @ANYBLOB="01007050a7f82fc634b10f00003460fac93497d76d"], 0x1c}, 0x1, 0x0, 0x0, 0x40010}, 0x2)
futex_waitv$auto(&(0x7f0000000000)={0xf, 0x5d94, 0x4002, 0x4}, 0x91d97aa9, 0xfffffffc, 0x0, 0x62bd)
socket(0x10, 0x2, 0x0)
madvise$auto(0x80000001, 0x101, 0x1)

1.88805367s ago: executing program 4 (id=4775):
openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/vcs1\x00', 0x0, 0x0)
r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000180)='/dev/bus/usb/017/001\x00', 0x200, 0x0)
mmap$auto(0x2000, 0x9, 0x8, 0x8000000008011, r0, 0x0)
munmap$auto(0x0, 0xffffffff)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
bind$auto(0x3, 0x0, 0x6a)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/mm/transparent_hugepage/khugepaged/max_ptes_shared\x00', 0x20b42, 0x0)
sendfile$auto(r2, r2, 0x0, 0x4f64a1d2)
read$auto(r1, 0x0, 0x20)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/virtual/tty/tty1/power/autosuspend_delay_ms\x00', 0x0, 0x0)
r5 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video6\x00', 0x80383, 0x0)
ioctl$auto(r5, 0xc0045627, r5)
mmap$auto(0x0, 0x10000, 0x4000000000db, 0xeb1, 0x2, 0x8000)
read$auto(r4, 0x0, 0x20)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x3, 0xdf, 0x17, 0x2, 0x8000)
r6 = open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x82842, 0x85)
read$auto(r6, 0x0, 0x1)
r7 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/net/rpc/use-gss-proxy\x00', 0x48041, 0x0)
write$auto(r7, 0x0, 0x6)
r8 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r8, 0x0, 0x3)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS3\x00', 0x44000, 0x0)
syz_genetlink_get_family_id$auto_mac80211_hwsim(0x0, 0xffffffffffffffff)
io_setup$auto(0xffff, &(0x7f0000000580))
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000)

1.886834147s ago: executing program 0 (id=4783):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/tunl0/napi_defer_hard_irqs\x00', 0x28b42, 0x0)
sendfile$auto(r0, r0, 0x0, 0x4f64a1d2)
r1 = openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
writev$auto(r1, &(0x7f0000000380)={&(0x7f00000002c0)="ffaf25e5", 0xe0d}, 0x8)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x8a240, 0x75)
clock_nanosleep$auto(0x9, 0x0, &(0x7f0000000000)={0x0, 0x200}, 0x0)
openat$auto_tun_fops_tun(0xffffffffffffff9c, 0x0, 0x2002, 0x0)
mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000)
setsockopt$auto_SO_RESERVE_MEM(r1, 0x4, 0x49, &(0x7f0000000080)='\x00', 0x1)
socket(0x2b, 0x1, 0x1)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/dummy_udc.2/udc/dummy_udc.2/is_otg\x00', 0x80040, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r2, 0x0, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-touch0\x00', 0xe0800, 0x0)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0x10001, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x1000, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0)
unshare$auto(0x40000080)
unshare$auto(0x1)
r4 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000400)='/dev/cuse\x00', 0x1c1041, 0x0)
openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, 0x0, 0x300000, 0x0)
write$auto_fuse_dev_operations_fuse_i(r4, &(0x7f0000000440), 0x0)
socket(0x2, 0x1, 0x0)

1.605052295s ago: executing program 2 (id=4776):
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
r0 = io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(r0, 0xc, 0x0, 0x5)
r1 = ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap$auto(0x0, 0x4, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
setsockopt$auto(0xffffffffffffffff, 0x10000000084, 0x64, 0x0, 0xfff)
close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0xe)
r2 = open(0x0, 0x591002, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x28, 0x801, 0x0)
connect$auto(0x3, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2711}, 0x51)
socket(0xf, 0x3, 0x2)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0)
write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000100)={[0x1ff, 0x6, 0x1, 0xfffffffffffffff7, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000021, 0x7, 0x6d3e, 0x7fff, 0x2, 0x6]}, 0x0)
socket(0x1d, 0x2, 0x3)
close_range$auto(0x2, 0x8, 0x0)
read$auto(r2, 0x0, 0x6)
unshare$auto(0x40000080)
sendmsg$auto_NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, 0x0, 0x4008010)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xd4, 0x8000)
ioctl$auto_TIOCNOTTY2(r1, 0x5422, &(0x7f0000000000)="228ab99c4744e41d3bb273009c99168c95638762dd5e34d0419c79fcc0c109cfbc8bc7e5f30b306a424e4ef81a1bc68dfa4a83831a5dba34d4dff47f770a48ee86046b8f1a44607af871ce9a4ab7d579d2a52622f82636de9fe7fcf71cf3bebf881158e2e140bfc1dc15cf94c19ccf72867ab7738adcbef60559bee843693d5d94dfebe902b8935488464b63d3eb943f8fbc6379f641780f492e73bffe13fe472c59037e7e5e5724dd46b920edc6181ab73ee6f239c7c7bcf35a0f74f5d55f7b3240358e58f40b60ffc914a88ab96c8cd28415")
ioctl$auto(0x3, 0xae60, 0x10000000000402)
ioctl$auto(0x3, 0x8208ae63, 0x38)

704.706516ms ago: executing program 0 (id=4777):
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/bond0/accept_ra_defrtr\x00', 0x133003, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xb91, 0xfffffffffffffffa, 0x8000)
r0 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$auto_CTRL_CMD_GETFAMILY(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="700000a2", @ANYRES16=r0, @ANYBLOB="000127bd7000fcdbdf2503000000330002002f70726f632f7379732f6e65742f697076362f636f6e662f626f6e64302f6163636570745f72615f6465667274720000060001000f00000007000200285c0000050002000000000005000200000000000600010000010000"], 0x70}, 0x1, 0x0, 0x0, 0x20000844}, 0x4000)
openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/arch_status\x00', 0x40000, 0x0)
openat$auto_tracing_cpumask_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/tracing_cpumask\x00', 0x8042, 0x0)
mmap$auto(0x0, 0xe984, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
socket(0x2, 0x6, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/rpc/auth.unix.gid/content\x00', 0x20000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
inotify_init1$auto(0x8)
socket(0xa, 0x2, 0x3a)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x3ec940, 0x0)
openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x482, 0x0)
socketpair$auto(0x1a, 0x2, 0xa, 0x0)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
open(0x0, 0x22240, 0x55)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$auto(r2, 0x9, r1)
socket(0x15, 0x5, 0x0)

483.9455ms ago: executing program 1 (id=4778):
io_uring_setup$auto(0x1, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
ioctl$auto_UBI_IOCDET(0xffffffffffffffff, 0x40046f41, 0x0)
unshare$auto(0x40000080)
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
ioctl$auto_SNDCTL_DSP_SPEED(r0, 0xc0045002, 0x0)
ppoll$auto(&(0x7f0000000000)={r0, 0x40}, 0x2, 0x0, 0x0, 0x8)
ioctl$auto_SNDCTL_DSP_SYNC(r0, 0x5001, 0xfffffffffffffffc)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8400)
socket(0xa, 0x1, 0x100)
ioperm$auto(0x7, 0x5ad2, 0x8)
modify_ldt$auto(0x1, 0x0, 0x10)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40, 0x0)
gettid()
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r1 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000140), 0x8040, 0x0)
io_uring_setup$auto(0xc, 0x0)
ioctl$auto_dvb_demux_fops_dmxdev(r1, 0x403c6f2b, 0x0)
readv$auto(0x3, &(0x7f00000002c0)={0x0, 0x8}, 0x8)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
read$auto(r1, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
pread64$auto(r2, &(0x7f0000000040)='\x00\x00\x00\x88\xde\x90\a\'\x9bM\xa0\x848\xbbz(\xe9\x05<\x82\xfe\xe2\xf6 \x0f8\xfb\xa7\xb4\xa0\x9e\xcb\xec\x9e{W\xed>\xe7l\xcb\x90\\/\x84\x99!*\xe3\x99}x\xd4\xa5D\xfa\xe5\xf9od^\xa6', 0x7ff, 0x400)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
socket(0x21, 0x3, 0x9)
prctl$auto(0x3e, 0x1, 0x0, 0x9, 0x1000)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0)
write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)

270.787052ms ago: executing program 4 (id=4779):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x2, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) (async)
sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="14000000c9f5c9d9984eba", @ANYRES16, @ANYBLOB="03eb"], 0x14}, 0x1, 0x0, 0x0, 0x20040800}, 0x24004000) (async)
r0 = getpgrp(0x0)
ptrace$auto_PTRACE_GETREGS(0xc, r0, 0x7, 0xff) (async)
socket(0x2c, 0x6, 0x5)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0xd}, 0x7}, 0x3, 0x0)

214.578482ms ago: executing program 0 (id=4780):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x5, 0x0)
mmap$auto(0x0, 0x20009, 0x809, 0xeb1, 0x401, 0x80000000008000)
r1 = socket(0x2a, 0x2, 0x1)
sendto$auto(r1, 0x0, 0xffff, 0x10000, &(0x7f0000000480)=@qipcrtr={0x2a, 0x4, 0xfffffffe}, 0x6)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000003680)={'wlan0\x00', <r4=>0x0})
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_MACSEC_CMD_ADD_TXSA(r5, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000001580)={0x28, r6, 0x1, 0x70bd2c, 0x25dfdbfd, {}, [@MACSEC_ATTR_SA_CONFIG={0xc, 0x3, 0x0, 0x1, [@nested={0x5, 0x1, 0x0, 0x1, [@generic='L']}]}, @MACSEC_ATTR_IFINDEX={0x8}]}, 0x28}, 0x1, 0x0, 0x0, 0x80}, 0x0)
r7 = getpgid(0xffffffffffffffff)
r8 = getpid()
pidfd_open$auto(r8, 0x0)
sendmsg$auto_MACSEC_CMD_UPD_TXSA(r0, &(0x7f00000001c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000180)={&(0x7f0000001640)=ANY=[@ANYBLOB="38130000", @ANYRES16=r6, @ANYBLOB="040028bd7000fedbdf25060000006c11028002ebf5fa4fe321c8a978b52201729240ccdbb1a0ad100488d2cae9078557b5a5418103f46c7eaf149f698a00e27cade3975bca56a82e784d9d232d1a9e24967819f52f8b33662d4ae126d180b9050a3db94946491e6ce95703ef8beb14e8e6089637432f27b36dcce09ab379ce8fb382d56e59e738d34cf25668c12c07cd0f862db2c0e65066f01802d508bfd66377137fdc17fbc46e8037bf771753e508001500", @ANYRES32=r0, @ANYBLOB="d8c7756621de79af24a93b4ad8aaa112a4fab0fbf2eab28dd04a1f18f5419b04484a99f95d1dd503be8daa2d30fd56bdc926eed66cd9bbb92b9677fddbd225e9d17fcb75cf119c269958fde5c0e52523e2ef09378d4b733c5d619b8934696f7aac4d1e7fab36199983f1083ee81b60ddf318bc12003ca2ebddca561046a62ad7c5d7227950baf90fb6fcf80bca9f87732bb8e19924f321fe07fefc33a10e8108000c00", @ANYRES32=r7, @ANYBLOB='\b\x00T\x00', @ANYRES32=0x0, @ANYBLOB="1000d2800800ec00", @ANYRES32=r8, @ANYBLOB="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"], 0x1338}, 0x1, 0x0, 0x0, 0x21}, 0x2000)
sendmsg$auto_NL80211_CMD_NEW_KEY(0xffffffffffffffff, &(0x7f00000048c0)={0x0, 0x0, &(0x7f0000004880)={&(0x7f0000000100)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="210029bd7000fddbdf251c000000080050800400400008000300", @ANYRES32=r4], 0x24}, 0x1, 0x0, 0x0, 0x20040801}, 0x890)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[], 0x1ac}}, 0x801)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
setsockopt$auto(0x4, 0x84, 0xb, 0xffffffffffffffff, 0x0)
setsockopt$auto(0x2, 0xc7f9, 0x6, 0x0, 0x10001)
getdents64$auto(r0, &(0x7f0000000000)={0x1, 0x5, 0xf1ec, 0x8, "c33b44b2505b14c169eb8aa9bc9be15af2977f12946593f09edb9d01ade2389674138a14873e639749d3c28e35"}, 0x1)

185.550825ms ago: executing program 2 (id=4781):
ioctl$auto_FIBMAP(0xffffffffffffffff, 0x1, 0xfffffffffffffff8)
r0 = socket(0x2b, 0x1, 0x1)
ioctl$auto(r0, 0x8941, 0x4)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000001100), r1)
sendmsg$auto_CTRL_CMD_GETFAMILY(r1, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000001180)={&(0x7f0000001140)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="01002dbd7000ffdbdf25030000000600010030"], 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x20000044)
r3 = syz_genetlink_get_family_id$auto_thermal(&(0x7f0000000200), r1)
sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_TRIP(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000080)={0x18, r3, 0xffffffffffffffff, 0x70bd2c, 0x25dfdbfb, {}, [@THERMAL_GENL_ATTR_TZ={0x4}]}, 0x18}}, 0x4000010)
sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_TRIP(r0, &(0x7f0000000400)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)=ANY=[], 0x1c}, 0x1, 0x0, 0x0, 0x20008000}, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/block/sda/sched/dispatch1\x00', 0x2880, 0x0)
preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5)
sendmsg$auto_NL80211_CMD_SET_WIPHY_NETNS(r4, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="20000237ca1418b90edb220108c6500000000600b500090000000400"], 0x30}, 0x1, 0x0, 0x0, 0x200480c4}, 0x44000)
r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
r9 = openat$auto_fops_atomic_t_ro_(0xffffffffffffff9c, &(0x7f00000001c0), 0x60040, 0x0)
write$auto_fops_atomic_t_ro_(r9, &(0x7f00000002c0)="f950e1", 0x3)
sendmsg$auto_NL80211_CMD_FRAME_WAIT_CANCEL(r7, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000200)={0x1c, r6, 0x100, 0x70bd2a, 0x25dfdbfb, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x400c854)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000140), 0xffffffffffffffff)
close_range$auto(0x2, 0x8000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r12 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000180), 0x161201, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r13 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0x101200, 0x0)
ioctl$auto_KVM_CREATE_VM(r13, 0xae01, 0x0)
ioctl$auto_KVM_CREATE_VM(r12, 0xaea2, 0x0)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r10, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000031c0)=ANY=[@ANYBLOB="407b32ffae67889f50db1919e8636448c7f0d24c87dc90aa30c45c50fc04162a11efb54cad34742c051ec8d02a44652e4dd439da8da8ed9f374e7fba568ab8b7bea0d7e4318f403bbb5ef9d4b1f80323134be351a173633fbf0902d1aecb32f4dd7a5bc265513c4ae923020b70f1af10f707e12735eee274", @ANYRES16=r11, @ANYBLOB="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"], 0x1340}, 0x1, 0x0, 0x0, 0x8080}, 0x4004040)

0s ago: executing program 4 (id=4782):
ioctl$auto(0xffffffffffffffff, 0xf6, 0xffffffffffffffff)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/sys/net/ipv4/neigh/veth1_to_team/ucast_solicit\x00', 0x208200, 0x0)
unshare$auto(0x40000080)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000001700), r0)
sendmsg$auto_NETDEV_CMD_DEV_GET(r0, &(0x7f0000001840)={0x0, 0x0, &(0x7f0000001800)={&(0x7f00000017c0)={0x14, r1, 0x301, 0x70bd26, 0x25dfdbfe}, 0x14}, 0x1, 0xf0ffff, 0x0, 0x4005}, 0x28044004)
read$auto(0xffffffffffffffff, 0x0, 0x9)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r0)
io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7ffffffc, 0xd, 0x3000, 0x6, 0x7, 0x400a, 0xffffffffffffffff, [], {0x6, 0x6, 0x8c48, 0x29b, 0x3, 0x7f, 0x104, 0x6, 0x3}, {0x100, 0x1, 0x2052, 0x85, 0x2, 0x1a7b870a, 0x76c5, 0x8, 0x100000000}})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)=ANY=[@ANYBLOB="010000005668de0d1d53003750275fe67a8a37f8517ffd979377571887f116c761a530c62aa3b455584f0fa3ca101d4a61b4c57491fad52125284074ccfd328e2362588d9032484c256823c5e6b51029d1db3232bcad33e862b4fe31288868998e04e2c26d2cb4e810c4e2ff42c900c6dc0aeb3f672535a9fffc22340a", @ANYRES16, @ANYBLOB="010027bd7000f9dbdf2501000000080009000100000008000a000800000008001700", @ANYRES32, @ANYBLOB="0600020004000000"], 0x34}}, 0x4000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
madvise$auto(0x40000, 0x8000000000000000, 0x15)
r3 = openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000d00), 0x60100, 0x0)
read$auto_vhci_fops_hci_vhci(r3, &(0x7f0000000d40)=""/16, 0x10)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'syz_tun\x00'})
sendmsg$auto_ETHTOOL_MSG_DEBUG_GET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80}, 0x20000010)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x200007, 0x19)
socket$nl_generic(0x10, 0x3, 0x10)
recvfrom$auto(0x4, 0x0, 0x1, 0x3ffffd, 0x0, 0x0)
socket(0x10, 0x2, 0x0)
ioctl$auto_TIOCGICOUNT(0xffffffffffffffff, 0x545d, 0x0)
bind$auto(0x3, 0x0, 0x6a)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x8, 0x80000000000000df, 0x10004000eb1, 0x8, 0x8000008000)
ioperm$auto(0x6, 0x6, 0xfffffffd)

kernel console output (not intermixed with test programs):

9.029087][T24594] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1129.035428][T24594] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1129.417472][T24618] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4207'.
[ 1129.550659][T24623] netlink: zone id is out of range
[ 1129.556626][T24623] netlink: zone id is out of range
[ 1129.572351][T24623] netlink: zone id is out of range
[ 1129.614863][T24623] netlink: set zone limit has 8 unknown bytes
[ 1130.746140][T15801] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1130.986069][T22371] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1131.067207][T22371] Bluetooth: hci3: command 0x0406 tx timeout
[ 1131.073432][T22371] Bluetooth: hci2: command 0x0419 tx timeout
[ 1131.252975][T24649] FAULT_INJECTION: forcing a failure.
[ 1131.252975][T24649] name failslab, interval 1, probability 0, space 0, times 0
[ 1131.321730][T24649] CPU: 1 UID: 0 PID: 24649 Comm: syz.1.4214 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[ 1131.321788][T24649] Tainted: [U]=USER
[ 1131.321799][T24649] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1131.321826][T24649] Call Trace:
[ 1131.321837][T24649]  <TASK>
[ 1131.321850][T24649]  dump_stack_lvl+0x16c/0x1f0
[ 1131.321897][T24649]  should_fail_ex+0x512/0x640
[ 1131.321953][T24649]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[ 1131.321993][T24649]  should_failslab+0xc2/0x120
[ 1131.322033][T24649]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[ 1131.322069][T24649]  ? __alloc_skb+0x2b2/0x380
[ 1131.322107][T24649]  __alloc_skb+0x2b2/0x380
[ 1131.322138][T24649]  ? __pfx___alloc_skb+0x10/0x10
[ 1131.322169][T24649]  ? __lock_acquire+0x5ca/0x1ba0
[ 1131.322221][T24649]  alloc_skb_with_frags+0xe0/0x860
[ 1131.322261][T24649]  ? aa_label_sk_perm+0x19b/0x5a0
[ 1131.322304][T24649]  sock_alloc_send_pskb+0x7fb/0x990
[ 1131.322371][T24649]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[ 1131.322441][T24649]  unix_dgram_sendmsg+0x463/0x1910
[ 1131.322493][T24649]  ? aa_sk_perm+0x2f4/0xb10
[ 1131.322528][T24649]  ? __pfx_unix_dgram_sendmsg+0x10/0x10
[ 1131.322574][T24649]  ? __pfx_aa_sk_perm+0x10/0x10
[ 1131.322622][T24649]  ____sys_sendmsg+0xa95/0xc70
[ 1131.322669][T24649]  ? copy_msghdr_from_user+0x10a/0x160
[ 1131.322701][T24649]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1131.322749][T24649]  ? kfree+0x252/0x4d0
[ 1131.322793][T24649]  ? __pfx__kstrtoull+0x10/0x10
[ 1131.322835][T24649]  ___sys_sendmsg+0x134/0x1d0
[ 1131.322869][T24649]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1131.322948][T24649]  ? __pfx___might_resched+0x10/0x10
[ 1131.322993][T24649]  __sys_sendmmsg+0x200/0x420
[ 1131.323033][T24649]  ? __pfx___sys_sendmmsg+0x10/0x10
[ 1131.323082][T24649]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1131.323144][T24649]  ? fput+0x70/0xf0
[ 1131.323181][T24649]  ? ksys_write+0x1b9/0x240
[ 1131.323211][T24649]  ? __pfx_ksys_write+0x10/0x10
[ 1131.323238][T24649]  ? rcu_is_watching+0x12/0xc0
[ 1131.323274][T24649]  __x64_sys_sendmmsg+0x9c/0x100
[ 1131.323307][T24649]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1131.323347][T24649]  do_syscall_64+0xcd/0x230
[ 1131.323394][T24649]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1131.323427][T24649] RIP: 0033:0x7f89e238e969
[ 1131.323453][T24649] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1131.323485][T24649] RSP: 002b:00007f89e325b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1131.323516][T24649] RAX: ffffffffffffffda RBX: 00007f89e25b6160 RCX: 00007f89e238e969
[ 1131.323537][T24649] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000004
[ 1131.323556][T24649] RBP: 00007f89e325b090 R08: 0000000000000000 R09: 0000000000000000
[ 1131.323576][T24649] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[ 1131.323596][T24649] R13: 0000000000000000 R14: 00007f89e25b6160 R15: 00007ffdafabd988
[ 1131.323636][T24649]  </TASK>
[ 1131.615695][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1132.664755][T24659] can: request_module (can-proto-3) failed.
[ 1132.920268][T15801] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[ 1133.122439][T24677] can: request_module (can-proto-3) failed.
[ 1134.222858][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1136.212863][T24743] ubi0: attaching mtd0
[ 1136.283630][T24743] ubi0: scanning is finished
[ 1136.329263][T24743] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record
[ 1136.662204][T24743] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[ 1137.664894][T24756] FAULT_INJECTION: forcing a failure.
[ 1137.664894][T24756] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1137.706028][T24756] CPU: 1 UID: 0 PID: 24756 Comm: syz.1.4237 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[ 1137.706082][T24756] Tainted: [U]=USER
[ 1137.706094][T24756] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1137.706113][T24756] Call Trace:
[ 1137.706125][T24756]  <TASK>
[ 1137.706139][T24756]  dump_stack_lvl+0x16c/0x1f0
[ 1137.706187][T24756]  should_fail_ex+0x512/0x640
[ 1137.706239][T24756]  should_fail_alloc_page+0xe7/0x130
[ 1137.706282][T24756]  prepare_alloc_pages+0x3c2/0x610
[ 1137.706331][T24756]  ? rcu_is_watching+0x12/0xc0
[ 1137.706365][T24756]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[ 1137.706412][T24756]  ? cgroup_rstat_updated+0x2a/0xb20
[ 1137.706484][T24756]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1137.706529][T24756]  ? lru_gen_add_folio+0x1a4/0xef0
[ 1137.706574][T24756]  ? __lock_acquire+0x5ca/0x1ba0
[ 1137.706618][T24756]  ? __lock_acquire+0x5ca/0x1ba0
[ 1137.706658][T24756]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1137.706704][T24756]  ? policy_nodemask+0xea/0x4e0
[ 1137.706748][T24756]  alloc_pages_mpol+0x1fb/0x550
[ 1137.706790][T24756]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1137.706832][T24756]  ? __lock_acquire+0x5ca/0x1ba0
[ 1137.706879][T24756]  folio_alloc_mpol_noprof+0x36/0x2f0
[ 1137.706927][T24756]  vma_alloc_folio_noprof+0xed/0x1e0
[ 1137.706972][T24756]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[ 1137.707029][T24756]  do_pte_missing+0x223d/0x3fb0
[ 1137.707073][T24756]  __handle_mm_fault+0x103d/0x2a40
[ 1137.707116][T24756]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1137.707146][T24756]  ? __pte_offset_map_lock+0x155/0x2f0
[ 1137.707191][T24756]  ? find_held_lock+0x2b/0x80
[ 1137.707218][T24756]  ? find_held_lock+0x2b/0x80
[ 1137.707270][T24756]  handle_mm_fault+0x3fe/0xad0
[ 1137.707308][T24756]  __get_user_pages+0x771/0x36f0
[ 1137.707368][T24756]  ? __pfx_mt_find+0x10/0x10
[ 1137.707414][T24756]  ? __pfx___get_user_pages+0x10/0x10
[ 1137.707481][T24756]  populate_vma_page_range+0x278/0x3a0
[ 1137.707529][T24756]  ? __pfx_populate_vma_page_range+0x10/0x10
[ 1137.707572][T24756]  ? __pfx_find_vma_intersection+0x10/0x10
[ 1137.707614][T24756]  ? do_mmap+0x69c/0x11b0
[ 1137.707655][T24756]  __mm_populate+0x1d8/0x380
[ 1137.707681][T24756]  ? __pfx___mm_populate+0x10/0x10
[ 1137.707738][T24756]  ? up_write+0x1b2/0x520
[ 1137.707789][T24756]  vm_mmap_pgoff+0x362/0x450
[ 1137.707841][T24756]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1137.707889][T24756]  ? find_held_lock+0x2b/0x80
[ 1137.707924][T24756]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1137.707957][T24756]  ? __x64_sys_futex+0x1e9/0x4c0
[ 1137.707997][T24756]  ksys_mmap_pgoff+0x7d/0x5c0
[ 1137.708044][T24756]  ? rcu_is_watching+0x12/0xc0
[ 1137.708077][T24756]  __x64_sys_mmap+0x125/0x190
[ 1137.708113][T24756]  do_syscall_64+0xcd/0x230
[ 1137.708160][T24756]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1137.708194][T24756] RIP: 0033:0x7f89e238e969
[ 1137.708219][T24756] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1137.708252][T24756] RSP: 002b:00007f89e327c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1137.708282][T24756] RAX: ffffffffffffffda RBX: 00007f89e25b6080 RCX: 00007f89e238e969
[ 1137.708305][T24756] RDX: 00000000000000df RSI: 0000000000440009 RDI: 0000000000000000
[ 1137.708326][T24756] RBP: 00007f89e2410ab1 R08: 0000000000000007 R09: 0000000000028000
[ 1137.708348][T24756] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[ 1137.708368][T24756] R13: 0000000000000000 R14: 00007f89e25b6080 R15: 00007ffdafabd988
[ 1137.708411][T24756]  </TASK>
[ 1140.243355][T24788] Invalid ELF header magic: != ELF
[ 1140.286368][T24789] WARNING! power/level is deprecated; use power/control instead
[ 1140.311810][T24789] ICMPv6: process `syz.4.4244' is using deprecated sysctl (syscall) net.ipv6.neigh.wg1.retrans_time - use net.ipv6.neigh.wg1.retrans_time_ms instead
[ 1140.390496][   T30] audit: type=1804 audit(6442453100.218:30): pid=24788 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.4243" name="/newroot/sys/kernel/tracing/events/vmalloc/filter" dev="tracefs" ino=19680823 res=1 errno=0
[ 1143.749856][T24846] netlink: 'syz.4.4257': attribute type 13 has an invalid length.
[ 1144.174470][T24853] FAULT_INJECTION: forcing a failure.
[ 1144.174470][T24853] name failslab, interval 1, probability 0, space 0, times 0
[ 1144.188289][T24853] CPU: 1 UID: 0 PID: 24853 Comm: syz.4.4260 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[ 1144.188337][T24853] Tainted: [U]=USER
[ 1144.188348][T24853] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1144.188365][T24853] Call Trace:
[ 1144.188376][T24853]  <TASK>
[ 1144.188388][T24853]  dump_stack_lvl+0x16c/0x1f0
[ 1144.188434][T24853]  should_fail_ex+0x512/0x640
[ 1144.188476][T24853]  ? __kmalloc_cache_noprof+0x57/0x3e0
[ 1144.188530][T24853]  should_failslab+0xc2/0x120
[ 1144.188568][T24853]  __kmalloc_cache_noprof+0x6a/0x3e0
[ 1144.188617][T24853]  ? __drm_dev_dbg+0x14b/0x1a0
[ 1144.188656][T24853]  ? kobject_uevent_env+0x265/0x1870
[ 1144.188714][T24853]  kobject_uevent_env+0x265/0x1870
[ 1144.188764][T24853]  ? __pfx_dev_uevent_name+0x10/0x10
[ 1144.188821][T24853]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1144.188872][T24853]  drm_sysfs_lease_event+0x102/0x160
[ 1144.188922][T24853]  ? __pfx_drm_sysfs_lease_event+0x10/0x10
[ 1144.188972][T24853]  drm_lease_destroy+0x377/0x530
[ 1144.189012][T24853]  drm_master_destroy+0xcc/0x160
[ 1144.189058][T24853]  drm_master_release+0x267/0x5e0
[ 1144.189113][T24853]  drm_file_free.part.0+0x921/0xbf0
[ 1144.189166][T24853]  drm_close_helper.isra.0+0x186/0x1f0
[ 1144.189212][T24853]  drm_release+0x1ab/0x360
[ 1144.189250][T24853]  ? __pfx_drm_release+0x10/0x10
[ 1144.189283][T24853]  __fput+0x3ff/0xb70
[ 1144.189331][T24853]  task_work_run+0x14d/0x240
[ 1144.189381][T24853]  ? __pfx_task_work_run+0x10/0x10
[ 1144.189430][T24853]  ? __pfx___do_sys_close_range+0x10/0x10
[ 1144.189459][T24853]  ? rcu_is_watching+0x12/0xc0
[ 1144.189496][T24853]  syscall_exit_to_user_mode+0x27b/0x2a0
[ 1144.189541][T24853]  do_syscall_64+0xda/0x230
[ 1144.189587][T24853]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1144.189619][T24853] RIP: 0033:0x7fbc9258e969
[ 1144.189644][T24853] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1144.189675][T24853] RSP: 002b:00007fbc933e6038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[ 1144.189704][T24853] RAX: 0000000000000000 RBX: 00007fbc927b5fa0 RCX: 00007fbc9258e969
[ 1144.189724][T24853] RDX: 0000000000000000 RSI: 000000000000000a RDI: 0000000000000002
[ 1144.189742][T24853] RBP: 00007fbc933e6090 R08: 0000000000000000 R09: 0000000000000000
[ 1144.189761][T24853] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1144.189780][T24853] R13: 0000000000000000 R14: 00007fbc927b5fa0 R15: 00007ffe816e6e08
[ 1144.189823][T24853]  </TASK>
[ 1145.371800][T24869] FAULT_INJECTION: forcing a failure.
[ 1145.371800][T24869] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1145.421529][T24869] CPU: 1 UID: 0 PID: 24869 Comm: syz.1.4264 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[ 1145.421571][T24869] Tainted: [U]=USER
[ 1145.421579][T24869] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1145.421593][T24869] Call Trace:
[ 1145.421600][T24869]  <TASK>
[ 1145.421609][T24869]  dump_stack_lvl+0x16c/0x1f0
[ 1145.421643][T24869]  should_fail_ex+0x512/0x640
[ 1145.421679][T24869]  _copy_from_user+0x2e/0xd0
[ 1145.421715][T24869]  copy_msghdr_from_user+0x98/0x160
[ 1145.421741][T24869]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 1145.421769][T24869]  ? kfree+0x252/0x4d0
[ 1145.421810][T24869]  ? __pfx__kstrtoull+0x10/0x10
[ 1145.421840][T24869]  ___sys_sendmsg+0xfe/0x1d0
[ 1145.421865][T24869]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1145.421914][T24869]  ? __pfx___might_resched+0x10/0x10
[ 1145.421945][T24869]  __sys_sendmmsg+0x200/0x420
[ 1145.421973][T24869]  ? __pfx___sys_sendmmsg+0x10/0x10
[ 1145.422007][T24869]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1145.422050][T24869]  ? fput+0x70/0xf0
[ 1145.422077][T24869]  ? ksys_write+0x1b9/0x240
[ 1145.422098][T24869]  ? __pfx_ksys_write+0x10/0x10
[ 1145.422117][T24869]  ? rcu_is_watching+0x12/0xc0
[ 1145.422142][T24869]  __x64_sys_sendmmsg+0x9c/0x100
[ 1145.422166][T24869]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1145.422194][T24869]  do_syscall_64+0xcd/0x230
[ 1145.422227][T24869]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1145.422249][T24869] RIP: 0033:0x7f89e238e969
[ 1145.422267][T24869] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1145.422289][T24869] RSP: 002b:00007f89e325b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1145.422311][T24869] RAX: ffffffffffffffda RBX: 00007f89e25b6160 RCX: 00007f89e238e969
[ 1145.422327][T24869] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000004
[ 1145.422341][T24869] RBP: 00007f89e325b090 R08: 0000000000000000 R09: 0000000000000000
[ 1145.422355][T24869] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[ 1145.422369][T24869] R13: 0000000000000000 R14: 00007f89e25b6160 R15: 00007ffdafabd988
[ 1145.422397][T24869]  </TASK>
[ 1147.726345][T24925] CIFS mount error: No usable UNC path provided in device string!
[ 1147.726345][T24925] 
[ 1147.736984][T24925] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 1148.026308][T15801] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[ 1149.154115][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1150.306952][T24969] netlink: 146 bytes leftover after parsing attributes in process `syz.1.4282'.
[ 1152.216963][T25001] FAULT_INJECTION: forcing a failure.
[ 1152.216963][T25001] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1152.286601][T25001] CPU: 1 UID: 0 PID: 25001 Comm: syz.1.4289 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[ 1152.286652][T25001] Tainted: [U]=USER
[ 1152.286667][T25001] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1152.286686][T25001] Call Trace:
[ 1152.286697][T25001]  <TASK>
[ 1152.286710][T25001]  dump_stack_lvl+0x16c/0x1f0
[ 1152.286755][T25001]  should_fail_ex+0x512/0x640
[ 1152.286805][T25001]  _copy_from_user+0x2e/0xd0
[ 1152.286853][T25001]  copy_msghdr_from_user+0x98/0x160
[ 1152.286888][T25001]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 1152.286928][T25001]  ? kfree+0x252/0x4d0
[ 1152.286971][T25001]  ? __pfx__kstrtoull+0x10/0x10
[ 1152.287015][T25001]  ___sys_sendmsg+0xfe/0x1d0
[ 1152.287049][T25001]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1152.287118][T25001]  ? __pfx___might_resched+0x10/0x10
[ 1152.287159][T25001]  __sys_sendmmsg+0x200/0x420
[ 1152.287198][T25001]  ? __pfx___sys_sendmmsg+0x10/0x10
[ 1152.287245][T25001]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1152.287303][T25001]  ? fput+0x70/0xf0
[ 1152.287340][T25001]  ? ksys_write+0x1b9/0x240
[ 1152.287368][T25001]  ? __pfx_ksys_write+0x10/0x10
[ 1152.287406][T25001]  __x64_sys_sendmmsg+0x9c/0x100
[ 1152.287438][T25001]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1152.287477][T25001]  do_syscall_64+0xcd/0x230
[ 1152.287530][T25001]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1152.287563][T25001] RIP: 0033:0x7f89e238e969
[ 1152.287588][T25001] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1152.287619][T25001] RSP: 002b:00007f89e325b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1152.287649][T25001] RAX: ffffffffffffffda RBX: 00007f89e25b6160 RCX: 00007f89e238e969
[ 1152.287670][T25001] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000004
[ 1152.287689][T25001] RBP: 00007f89e325b090 R08: 0000000000000000 R09: 0000000000000000
[ 1152.287709][T25001] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[ 1152.287728][T25001] R13: 0000000000000000 R14: 00007f89e25b6160 R15: 00007ffdafabd988
[ 1152.287770][T25001]  </TASK>
[ 1153.036900][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1153.218214][T25013] FAULT_INJECTION: forcing a failure.
[ 1153.218214][T25013] name failslab, interval 1, probability 0, space 0, times 0
[ 1153.247202][T25013] CPU: 0 UID: 0 PID: 25013 Comm: syz.4.4293 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[ 1153.247257][T25013] Tainted: [U]=USER
[ 1153.247269][T25013] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1153.247295][T25013] Call Trace:
[ 1153.247306][T25013]  <TASK>
[ 1153.247317][T25013]  dump_stack_lvl+0x16c/0x1f0
[ 1153.247369][T25013]  should_fail_ex+0x512/0x640
[ 1153.247410][T25013]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1153.247447][T25013]  should_failslab+0xc2/0x120
[ 1153.247489][T25013]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1153.247527][T25013]  ? mas_alloc_nodes+0x18b/0x8b0
[ 1153.247571][T25013]  mas_alloc_nodes+0x18b/0x8b0
[ 1153.247617][T25013]  mas_node_count_gfp+0x105/0x130
[ 1153.247660][T25013]  mas_preallocate+0x53e/0xcd0
[ 1153.247718][T25013]  ? __pfx_mas_preallocate+0x10/0x10
[ 1153.247778][T25013]  ? mod_objcg_state+0x5eb/0xa50
[ 1153.247807][T25013]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1153.247856][T25013]  vma_link+0x135/0x6a0
[ 1153.247890][T25013]  ? __memcg_slab_post_alloc_hook+0x4d0/0x940
[ 1153.247938][T25013]  ? __pfx_vma_link+0x10/0x10
[ 1153.247984][T25013]  ? anon_vma_clone+0x405/0x5c0
[ 1153.248019][T25013]  ? anon_vma_name+0x75/0x100
[ 1153.248070][T25013]  copy_vma+0x68a/0xa50
[ 1153.248113][T25013]  ? __pfx_copy_vma+0x10/0x10
[ 1153.248146][T25013]  ? finish_task_switch.isra.0+0x221/0xc10
[ 1153.248179][T25013]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1153.248226][T25013]  ? register_lock_class+0x41/0x4c0
[ 1153.248269][T25013]  ? __schedule+0x1186/0x5de0
[ 1153.248334][T25013]  copy_vma_and_data+0x1cf/0x810
[ 1153.248370][T25013]  ? __pfx_copy_vma_and_data+0x10/0x10
[ 1153.248410][T25013]  ? __vma_enter_locked+0x163/0x3f0
[ 1153.248447][T25013]  ? find_held_lock+0x2b/0x80
[ 1153.248473][T25013]  ? move_vma+0x536/0x1740
[ 1153.248510][T25013]  move_vma+0x548/0x1740
[ 1153.248548][T25013]  ? __pfx_move_vma+0x10/0x10
[ 1153.248594][T25013]  ? cap_mmap_addr+0x4b/0x120
[ 1153.248623][T25013]  ? bpf_lsm_mmap_addr+0x9/0x10
[ 1153.248673][T25013]  ? security_mmap_addr+0x6c/0x1e0
[ 1153.248715][T25013]  ? __get_unmapped_area+0x26a/0x440
[ 1153.248769][T25013]  ? vrm_set_new_addr+0x208/0x290
[ 1153.248810][T25013]  __do_sys_mremap+0xe38/0x15d0
[ 1153.248854][T25013]  ? __pfx___do_sys_mremap+0x10/0x10
[ 1153.248916][T25013]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1153.248962][T25013]  ? rcu_is_watching+0x12/0xc0
[ 1153.249004][T25013]  do_syscall_64+0xcd/0x230
[ 1153.249052][T25013]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1153.249085][T25013] RIP: 0033:0x7fbc9258e969
[ 1153.249111][T25013] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1153.249145][T25013] RSP: 002b:00007fbc933e6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019
[ 1153.249199][T25013] RAX: ffffffffffffffda RBX: 00007fbc927b5fa0 RCX: 00007fbc9258e969
[ 1153.249222][T25013] RDX: 0000000000003fd6 RSI: ffffffffffffffff RDI: 0000000000000000
[ 1153.249244][T25013] RBP: 00007fbc92610ab1 R08: 00007fffffffb000 R09: 0000000000000000
[ 1153.249264][T25013] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000
[ 1153.249291][T25013] R13: 0000000000000000 R14: 00007fbc927b5fa0 R15: 00007ffe816e6e08
[ 1153.249335][T25013]  </TASK>
[ 1153.568412][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1153.732365][T15801] Bluetooth: hci4: unexpected event 0x3e length: 726 > 260
[ 1153.732422][T15801] Bluetooth: hci4: unexpected subevent 0x0d length: 725 > 260
[ 1153.752024][T15801] Bluetooth: hci4: adv larger than maximum supported
[ 1153.752085][T15801] Bluetooth: hci4: Unknown advertising packet type: 0x20
[ 1153.760029][T15801] Bluetooth: hci4: Unknown advertising packet type: 0x35
[ 1153.779203][T15801] Bluetooth: hci4: Unknown advertising packet type: 0x20
[ 1153.779237][T15801] Bluetooth: hci4: Unknown advertising packet type: 0x20
[ 1153.787007][T15801] Bluetooth: hci4: Unknown advertising packet type: 0x20
[ 1153.794096][T15801] Bluetooth: hci4: Unknown advertising packet type: 0x20
[ 1154.257391][T25039] netlink: 'syz.4.4300': attribute type 11 has an invalid length.
[ 1154.381487][T25039] netlink: 'syz.4.4300': attribute type 11 has an invalid length.
[ 1154.822117][T25046] bond0: option packets_per_slave: invalid value (Xµn‘pæ)
[ 1154.850254][T25046] bond0: option packets_per_slave: allowed values 0 - 65535
[ 1154.945008][T25052] FAULT_INJECTION: forcing a failure.
[ 1154.945008][T25052] name failslab, interval 1, probability 0, space 0, times 0
[ 1154.993308][T25052] CPU: 0 UID: 0 PID: 25052 Comm: syz.0.4304 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[ 1154.993375][T25052] Tainted: [U]=USER
[ 1154.993388][T25052] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1154.993409][T25052] Call Trace:
[ 1154.993420][T25052]  <TASK>
[ 1154.993434][T25052]  dump_stack_lvl+0x16c/0x1f0
[ 1154.993484][T25052]  should_fail_ex+0x512/0x640
[ 1154.993529][T25052]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1154.993571][T25052]  should_failslab+0xc2/0x120
[ 1154.993610][T25052]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1154.993643][T25052]  ? bpf_ksym_find+0x124/0x1c0
[ 1154.993693][T25052]  ? __kernfs_new_node+0xd2/0x8a0
[ 1154.993751][T25052]  __kernfs_new_node+0xd2/0x8a0
[ 1154.993807][T25052]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1154.993871][T25052]  ? find_held_lock+0x2b/0x80
[ 1154.993903][T25052]  ? kernfs_root+0xee/0x2a0
[ 1154.993964][T25052]  kernfs_new_node+0x13c/0x1e0
[ 1154.993999][T25052]  ? kasan_save_stack+0x42/0x60
[ 1154.994037][T25052]  kernfs_create_dir_ns+0x4c/0x1a0
[ 1154.994078][T25052]  sysfs_create_dir_ns+0x13a/0x2b0
[ 1154.994130][T25052]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[ 1154.994178][T25052]  ? find_held_lock+0x2b/0x80
[ 1154.994216][T25052]  ? do_raw_spin_unlock+0x172/0x230
[ 1154.994268][T25052]  kobject_add_internal+0x2c4/0x9b0
[ 1154.994332][T25052]  kobject_add+0x16e/0x240
[ 1154.994382][T25052]  ? __pfx_kobject_add+0x10/0x10
[ 1154.994456][T25052]  get_device_parent+0x399/0x4e0
[ 1154.994502][T25052]  device_add+0x1ad/0x1a70
[ 1154.994549][T25052]  ? __pfx_device_add+0x10/0x10
[ 1154.994590][T25052]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1154.994637][T25052]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[ 1154.994694][T25052]  wiphy_register+0x1c9c/0x2850
[ 1154.994724][T25052]  ? netdev_run_todo+0x864/0x1320
[ 1154.994763][T25052]  ? __dev_printk+0x270/0x270
[ 1154.994802][T25052]  ? __pfx_wiphy_register+0x10/0x10
[ 1154.994858][T25052]  ieee80211_register_hw+0x2432/0x4020
[ 1154.994928][T25052]  ? __pfx_ieee80211_register_hw+0x10/0x10
[ 1154.994989][T25052]  ? find_held_lock+0x2b/0x80
[ 1154.995020][T25052]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1154.995065][T25052]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[ 1154.995101][T25052]  ? __hrtimer_setup+0x176/0x280
[ 1154.995153][T25052]  mac80211_hwsim_new_radio+0x3034/0x54d0
[ 1154.995231][T25052]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[ 1154.995295][T25052]  hwsim_new_radio_nl+0xb51/0x12c0
[ 1154.995356][T25052]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[ 1154.995420][T25052]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[ 1154.995470][T25052]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[ 1154.995528][T25052]  genl_family_rcv_msg_doit+0x206/0x2f0
[ 1154.995576][T25052]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1154.995623][T25052]  ? trace_cap_capable+0x18d/0x200
[ 1154.995666][T25052]  ? bpf_lsm_capable+0x9/0x10
[ 1154.995699][T25052]  ? security_capable+0x7e/0x260
[ 1154.995751][T25052]  ? ns_capable+0xd7/0x110
[ 1154.995788][T25052]  genl_rcv_msg+0x55c/0x800
[ 1154.995835][T25052]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1154.995878][T25052]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[ 1154.995929][T25052]  ? __lock_acquire+0xaa4/0x1ba0
[ 1154.995980][T25052]  netlink_rcv_skb+0x16a/0x440
[ 1154.996019][T25052]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1154.996066][T25052]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1154.996121][T25052]  ? __pfx_down_read+0x10/0x10
[ 1154.996172][T25052]  ? netlink_deliver_tap+0x1ae/0xd30
[ 1154.996217][T25052]  genl_rcv+0x28/0x40
[ 1154.996257][T25052]  netlink_unicast+0x53a/0x7f0
[ 1154.996302][T25052]  ? __pfx_netlink_unicast+0x10/0x10
[ 1154.996348][T25052]  ? __lock_acquire+0xaa4/0x1ba0
[ 1154.996404][T25052]  netlink_sendmsg+0x8d1/0xdd0
[ 1154.996453][T25052]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1154.996513][T25052]  ____sys_sendmsg+0xa95/0xc70
[ 1154.996561][T25052]  ? copy_msghdr_from_user+0x10a/0x160
[ 1154.996596][T25052]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1154.996664][T25052]  ___sys_sendmsg+0x134/0x1d0
[ 1154.996702][T25052]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1154.996796][T25052]  __sys_sendmsg+0x16d/0x220
[ 1154.996835][T25052]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1154.996869][T25052]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1154.996918][T25052]  ? rcu_is_watching+0x12/0xc0
[ 1154.996961][T25052]  do_syscall_64+0xcd/0x230
[ 1154.997010][T25052]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1154.997045][T25052] RIP: 0033:0x7f067c58e969
[ 1154.997073][T25052] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1154.997106][T25052] RSP: 002b:00007f067d344038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1154.997139][T25052] RAX: ffffffffffffffda RBX: 00007f067c7b5fa0 RCX: 00007f067c58e969
[ 1154.997161][T25052] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000006
[ 1154.997182][T25052] RBP: 00007f067c610ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1154.997204][T25052] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1154.997224][T25052] R13: 0000000000000000 R14: 00007f067c7b5fa0 R15: 00007ffd47660fe8
[ 1154.997269][T25052]  </TASK>
[ 1155.486572][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1155.551038][T25052] kobject: kobject_add_internal failed for ieee80211 (error: -12 parent: hwsim61)
[ 1156.241854][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1157.958030][T25104] Invalid ELF header magic: != ELF
[ 1160.335447][T25170] ceph: Failed to parse sending metrics switch value 'P^'
[ 1160.456737][T25170] Invalid ELF header magic: != ELF
[ 1161.105060][T25178] tipc: Started in network mode
[ 1161.110229][T25178] tipc: Node identity ee00, cluster identity 4711
[ 1161.117041][T25178] tipc: Node number set to 60928
[ 1162.081930][T25205] FAULT_INJECTION: forcing a failure.
[ 1162.081930][T25205] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1162.105328][T25205] CPU: 0 UID: 0 PID: 25205 Comm: syz.4.4333 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[ 1162.105407][T25205] Tainted: [U]=USER
[ 1162.105425][T25205] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1162.105453][T25205] Call Trace:
[ 1162.105470][T25205]  <TASK>
[ 1162.105489][T25205]  dump_stack_lvl+0x16c/0x1f0
[ 1162.105536][T25205]  should_fail_ex+0x512/0x640
[ 1162.105585][T25205]  _copy_from_user+0x2e/0xd0
[ 1162.105635][T25205]  copy_msghdr_from_user+0x98/0x160
[ 1162.105679][T25205]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 1162.105719][T25205]  ? kfree+0x252/0x4d0
[ 1162.105776][T25205]  ? __pfx__kstrtoull+0x10/0x10
[ 1162.105820][T25205]  ___sys_sendmsg+0xfe/0x1d0
[ 1162.105856][T25205]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1162.105927][T25205]  ? __pfx___might_resched+0x10/0x10
[ 1162.105970][T25205]  __sys_sendmmsg+0x200/0x420
[ 1162.106006][T25205]  ? __pfx___sys_sendmmsg+0x10/0x10
[ 1162.106040][T25205]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1162.106083][T25205]  ? fput+0x70/0xf0
[ 1162.106109][T25205]  ? ksys_write+0x1b9/0x240
[ 1162.106129][T25205]  ? __pfx_ksys_write+0x10/0x10
[ 1162.106148][T25205]  ? rcu_is_watching+0x12/0xc0
[ 1162.106172][T25205]  __x64_sys_sendmmsg+0x9c/0x100
[ 1162.106195][T25205]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1162.106223][T25205]  do_syscall_64+0xcd/0x230
[ 1162.106254][T25205]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1162.106277][T25205] RIP: 0033:0x7fbc9258e969
[ 1162.106295][T25205] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1162.106317][T25205] RSP: 002b:00007fbc933a4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1162.106339][T25205] RAX: ffffffffffffffda RBX: 00007fbc927b6160 RCX: 00007fbc9258e969
[ 1162.106354][T25205] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000004
[ 1162.106368][T25205] RBP: 00007fbc933a4090 R08: 0000000000000000 R09: 0000000000000000
[ 1162.106382][T25205] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[ 1162.106395][T25205] R13: 0000000000000000 R14: 00007fbc927b6160 R15: 00007ffe816e6e08
[ 1162.106423][T25205]  </TASK>
[ 1162.318960][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1162.581503][T25199] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1162.618276][T25199] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1162.625822][T25199] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1162.653826][T25199] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1164.025895][T15801] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1164.666164][T15801] Bluetooth: hci3: command 0x0406 tx timeout
[ 1164.672260][T15801] Bluetooth: hci2: command 0x0419 tx timeout
[ 1164.678813][T24646] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1165.001145][T25250] sd 0:0:1:0: PR command failed: 1026
[ 1165.054967][T25250] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[ 1165.103647][T25250] sd 0:0:1:0: Add. Sense: Invalid command operation code
[ 1165.834448][T25283] FAULT_INJECTION: forcing a failure.
[ 1165.834448][T25283] name failslab, interval 1, probability 0, space 0, times 0
[ 1165.848177][T25273] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input17
[ 1165.922827][T25283] CPU: 1 UID: 0 PID: 25283 Comm: syz.1.4345 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[ 1165.922881][T25283] Tainted: [U]=USER
[ 1165.922892][T25283] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1165.922911][T25283] Call Trace:
[ 1165.922922][T25283]  <TASK>
[ 1165.922934][T25283]  dump_stack_lvl+0x16c/0x1f0
[ 1165.922982][T25283]  should_fail_ex+0x512/0x640
[ 1165.923025][T25283]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[ 1165.923064][T25283]  should_failslab+0xc2/0x120
[ 1165.923103][T25283]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[ 1165.923138][T25283]  ? __alloc_skb+0x2b2/0x380
[ 1165.923175][T25283]  __alloc_skb+0x2b2/0x380
[ 1165.923205][T25283]  ? __pfx___alloc_skb+0x10/0x10
[ 1165.923237][T25283]  ? __lock_acquire+0x5ca/0x1ba0
[ 1165.923288][T25283]  alloc_skb_with_frags+0xe0/0x860
[ 1165.923328][T25283]  ? aa_label_sk_perm+0x19b/0x5a0
[ 1165.923370][T25283]  sock_alloc_send_pskb+0x7fb/0x990
[ 1165.923436][T25283]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[ 1165.923514][T25283]  unix_dgram_sendmsg+0x463/0x1910
[ 1165.923564][T25283]  ? aa_sk_perm+0x2f4/0xb10
[ 1165.923601][T25283]  ? __pfx_unix_dgram_sendmsg+0x10/0x10
[ 1165.923646][T25283]  ? __pfx_aa_sk_perm+0x10/0x10
[ 1165.923698][T25283]  ____sys_sendmsg+0xa95/0xc70
[ 1165.923742][T25283]  ? copy_msghdr_from_user+0x10a/0x160
[ 1165.923776][T25283]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1165.923826][T25283]  ? kfree+0x252/0x4d0
[ 1165.923870][T25283]  ? __pfx__kstrtoull+0x10/0x10
[ 1165.923913][T25283]  ___sys_sendmsg+0x134/0x1d0
[ 1165.923949][T25283]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1165.924021][T25283]  ? __pfx___might_resched+0x10/0x10
[ 1165.924063][T25283]  __sys_sendmmsg+0x200/0x420
[ 1165.924102][T25283]  ? __pfx___sys_sendmmsg+0x10/0x10
[ 1165.924150][T25283]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1165.924211][T25283]  ? fput+0x70/0xf0
[ 1165.924247][T25283]  ? ksys_write+0x1b9/0x240
[ 1165.924276][T25283]  ? __pfx_ksys_write+0x10/0x10
[ 1165.924304][T25283]  ? rcu_is_watching+0x12/0xc0
[ 1165.924340][T25283]  __x64_sys_sendmmsg+0x9c/0x100
[ 1165.924372][T25283]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1165.924412][T25283]  do_syscall_64+0xcd/0x230
[ 1165.924457][T25283]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1165.924487][T25283] RIP: 0033:0x7f89e238e969
[ 1165.924519][T25283] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1165.924552][T25283] RSP: 002b:00007f89e325b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1165.924587][T25283] RAX: ffffffffffffffda RBX: 00007f89e25b6160 RCX: 00007f89e238e969
[ 1165.924608][T25283] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000004
[ 1165.924628][T25283] RBP: 00007f89e325b090 R08: 0000000000000000 R09: 0000000000000000
[ 1165.924648][T25283] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[ 1165.924668][T25283] R13: 0000000000000000 R14: 00007f89e25b6160 R15: 00007ffdafabd988
[ 1165.924707][T25283]  </TASK>
[ 1166.611493][T25274] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input18
[ 1168.590572][T25325] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4358'.
[ 1168.684538][T25325] veth0_macvtap: left promiscuous mode
[ 1170.568924][ T5829] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18
[ 1170.678319][T25368] FAULT_INJECTION: forcing a failure.
[ 1170.678319][T25368] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1170.735078][T25368] CPU: 1 UID: 0 PID: 25368 Comm: syz.4.4369 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[ 1170.735131][T25368] Tainted: [U]=USER
[ 1170.735142][T25368] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1170.735161][T25368] Call Trace:
[ 1170.735172][T25368]  <TASK>
[ 1170.735184][T25368]  dump_stack_lvl+0x16c/0x1f0
[ 1170.735232][T25368]  should_fail_ex+0x512/0x640
[ 1170.735281][T25368]  _copy_from_user+0x2e/0xd0
[ 1170.735327][T25368]  copy_msghdr_from_user+0x98/0x160
[ 1170.735361][T25368]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 1170.735399][T25368]  ? kfree+0x252/0x4d0
[ 1170.735443][T25368]  ? __pfx__kstrtoull+0x10/0x10
[ 1170.735487][T25368]  ___sys_sendmsg+0xfe/0x1d0
[ 1170.735522][T25368]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1170.735592][T25368]  ? __pfx___might_resched+0x10/0x10
[ 1170.735634][T25368]  __sys_sendmmsg+0x200/0x420
[ 1170.735673][T25368]  ? __pfx___sys_sendmmsg+0x10/0x10
[ 1170.735724][T25368]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1170.735784][T25368]  ? fput+0x70/0xf0
[ 1170.735828][T25368]  ? ksys_write+0x1b9/0x240
[ 1170.735858][T25368]  ? __pfx_ksys_write+0x10/0x10
[ 1170.735885][T25368]  ? rcu_is_watching+0x12/0xc0
[ 1170.735920][T25368]  __x64_sys_sendmmsg+0x9c/0x100
[ 1170.735953][T25368]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1170.735992][T25368]  do_syscall_64+0xcd/0x230
[ 1170.736039][T25368]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1170.736079][T25368] RIP: 0033:0x7fbc9258e969
[ 1170.736105][T25368] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1170.736137][T25368] RSP: 002b:00007fbc933a4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1170.736167][T25368] RAX: ffffffffffffffda RBX: 00007fbc927b6160 RCX: 00007fbc9258e969
[ 1170.736188][T25368] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000004
[ 1170.736207][T25368] RBP: 00007fbc933a4090 R08: 0000000000000000 R09: 0000000000000000
[ 1170.736226][T25368] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[ 1170.736244][T25368] R13: 0000000000000000 R14: 00007fbc927b6160 R15: 00007ffe816e6e08
[ 1170.736285][T25368]  </TASK>
[ 1171.595419][T25395] netlink: 334 bytes leftover after parsing attributes in process `syz.0.4373'.
[ 1171.621488][T25396] netlink: 334 bytes leftover after parsing attributes in process `syz.0.4373'.
[ 1172.235663][T25417] sysfs_service_op_store: Client not running :-5:
[ 1172.535845][T25425] 
[ 1172.536666][T25425] netlink: 130 bytes leftover after parsing attributes in process `syz.2.4379'.
[ 1174.427130][T25451] FAULT_INJECTION: forcing a failure.
[ 1174.427130][T25451] name failslab, interval 1, probability 0, space 0, times 0
[ 1174.474421][T25451] CPU: 1 UID: 0 PID: 25451 Comm: syz.1.4384 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[ 1174.474477][T25451] Tainted: [U]=USER
[ 1174.474489][T25451] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1174.474508][T25451] Call Trace:
[ 1174.474519][T25451]  <TASK>
[ 1174.474530][T25451]  dump_stack_lvl+0x16c/0x1f0
[ 1174.474577][T25451]  should_fail_ex+0x512/0x640
[ 1174.474621][T25451]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[ 1174.474663][T25451]  should_failslab+0xc2/0x120
[ 1174.474700][T25451]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[ 1174.474736][T25451]  ? __alloc_skb+0x2b2/0x380
[ 1174.474772][T25451]  __alloc_skb+0x2b2/0x380
[ 1174.474802][T25451]  ? __pfx___alloc_skb+0x10/0x10
[ 1174.474844][T25451]  ? __lock_acquire+0x5ca/0x1ba0
[ 1174.474896][T25451]  alloc_skb_with_frags+0xe0/0x860
[ 1174.474936][T25451]  ? aa_label_sk_perm+0x19b/0x5a0
[ 1174.474980][T25451]  sock_alloc_send_pskb+0x7fb/0x990
[ 1174.475045][T25451]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[ 1174.475116][T25451]  unix_dgram_sendmsg+0x463/0x1910
[ 1174.475169][T25451]  ? aa_sk_perm+0x2f4/0xb10
[ 1174.475206][T25451]  ? __pfx_unix_dgram_sendmsg+0x10/0x10
[ 1174.475251][T25451]  ? __pfx_aa_sk_perm+0x10/0x10
[ 1174.475303][T25451]  ____sys_sendmsg+0xa95/0xc70
[ 1174.475347][T25451]  ? copy_msghdr_from_user+0x10a/0x160
[ 1174.475380][T25451]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1174.475430][T25451]  ? kfree+0x252/0x4d0
[ 1174.475474][T25451]  ? __pfx__kstrtoull+0x10/0x10
[ 1174.475518][T25451]  ___sys_sendmsg+0x134/0x1d0
[ 1174.475555][T25451]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1174.475629][T25451]  ? __pfx___might_resched+0x10/0x10
[ 1174.475671][T25451]  __sys_sendmmsg+0x200/0x420
[ 1174.475708][T25451]  ? __pfx___sys_sendmmsg+0x10/0x10
[ 1174.475755][T25451]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1174.475814][T25451]  ? fput+0x70/0xf0
[ 1174.475857][T25451]  ? ksys_write+0x1b9/0x240
[ 1174.475886][T25451]  ? __pfx_ksys_write+0x10/0x10
[ 1174.475913][T25451]  ? rcu_is_watching+0x12/0xc0
[ 1174.475949][T25451]  __x64_sys_sendmmsg+0x9c/0x100
[ 1174.475982][T25451]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1174.476021][T25451]  do_syscall_64+0xcd/0x230
[ 1174.476067][T25451]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1174.476100][T25451] RIP: 0033:0x7f89e238e969
[ 1174.476124][T25451] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1174.476155][T25451] RSP: 002b:00007f89e325b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1174.476185][T25451] RAX: ffffffffffffffda RBX: 00007f89e25b6160 RCX: 00007f89e238e969
[ 1174.476206][T25451] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000004
[ 1174.476225][T25451] RBP: 00007f89e325b090 R08: 0000000000000000 R09: 0000000000000000
[ 1174.476244][T25451] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[ 1174.476263][T25451] R13: 0000000000000000 R14: 00007f89e25b6160 R15: 00007ffdafabd988
[ 1174.476304][T25451]  </TASK>
[ 1175.884405][T25473] syz.1.4390: vmalloc error: size 32768, failed to allocate pages, mode:0x400dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[ 1175.943597][T25473] CPU: 1 UID: 0 PID: 25473 Comm: syz.1.4390 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[ 1175.943657][T25473] Tainted: [U]=USER
[ 1175.943669][T25473] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1175.943690][T25473] Call Trace:
[ 1175.943701][T25473]  <TASK>
[ 1175.943714][T25473]  dump_stack_lvl+0x16c/0x1f0
[ 1175.943766][T25473]  warn_alloc+0x248/0x3a0
[ 1175.943805][T25473]  ? __pfx_warn_alloc+0x10/0x10
[ 1175.943840][T25473]  ? cgroup_rstat_updated+0x2a/0xb20
[ 1175.943898][T25473]  ? find_held_lock+0x2b/0x80
[ 1175.943930][T25473]  ? mod_memcg_page_state.part.0.constprop.0+0x1e1/0x620
[ 1175.943992][T25473]  __vmalloc_node_range_noprof+0x12d2/0x1540
[ 1175.944059][T25473]  ? kvm_dev_ioctl+0x153/0x1ad0
[ 1175.944108][T25473]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1175.944161][T25473]  ? __pfx_snprintf+0x10/0x10
[ 1175.944203][T25473]  ? _raw_spin_unlock+0x28/0x50
[ 1175.944237][T25473]  ? alloc_fd+0x471/0x7d0
[ 1175.944285][T25473]  ? kvm_dev_ioctl+0x153/0x1ad0
[ 1175.944323][T25473]  __vmalloc_noprof+0x6d/0x90
[ 1175.944371][T25473]  ? kvm_dev_ioctl+0x153/0x1ad0
[ 1175.944410][T25473]  kvm_dev_ioctl+0x153/0x1ad0
[ 1175.944459][T25473]  ? hook_file_ioctl_common+0x145/0x410
[ 1175.944503][T25473]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[ 1175.944550][T25473]  ? xfd_validate_state+0x5d/0x180
[ 1175.944607][T25473]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[ 1175.944649][T25473]  __x64_sys_ioctl+0x190/0x200
[ 1175.944697][T25473]  do_syscall_64+0xcd/0x230
[ 1175.944743][T25473]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1175.944776][T25473] RIP: 0033:0x7f89e238e969
[ 1175.944803][T25473] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1175.944837][T25473] RSP: 002b:00007f89e329d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1175.944869][T25473] RAX: ffffffffffffffda RBX: 00007f89e25b5fa0 RCX: 00007f89e238e969
[ 1175.944891][T25473] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000007
[ 1175.944910][T25473] RBP: 00007f89e2410ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1175.944930][T25473] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1175.944951][T25473] R13: 0000000000000000 R14: 00007f89e25b5fa0 R15: 00007ffdafabd988
[ 1175.944993][T25473]  </TASK>
[ 1175.945006][T25473] Mem-Info:
[ 1176.185515][T25473] active_anon:40987 inactive_anon:2 isolated_anon:0
[ 1176.185515][T25473]  active_file:4881 inactive_file:53036 isolated_file:0
[ 1176.185515][T25473]  unevictable:768 dirty:317 writeback:0
[ 1176.185515][T25473]  slab_reclaimable:11097 slab_unreclaimable:98615
[ 1176.185515][T25473]  mapped:37974 shmem:20922 pagetables:1164
[ 1176.185515][T25473]  sec_pagetables:0 bounce:0
[ 1176.185515][T25473]  kernel_misc_reclaimable:0
[ 1176.185515][T25473]  free:771048 free_pcp:2329 free_cma:0
[ 1176.292092][T25473] Node 0 active_anon:164348kB inactive_anon:8kB active_file:19524kB inactive_file:212140kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:144196kB dirty:1264kB writeback:0kB shmem:67352kB shmem_thp:2048kB shmem_pmdmapped:2048kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11664kB pagetables:4756kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1176.326246][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1176.349789][T25473] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:16736kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1176.414645][T25473] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1176.531268][T25473] lowmem_reserve[]: 0 2484 2486 2486 2486
[ 1176.570138][T25473] Node 0 DMA32 free:1246844kB boost:0kB min:34108kB low:42632kB high:51156kB reserved_highatomic:0KB active_anon:175900kB inactive_anon:8kB active_file:19524kB inactive_file:210328kB unevictable:1536kB writepending:1264kB present:3129332kB managed:2544188kB mlocked:0kB bounce:0kB free_pcp:4160kB local_pcp:568kB free_cma:0kB
[ 1176.634118][T25473] lowmem_reserve[]: 0 0 1 1 1
[ 1176.639295][T25473] Node 0 Normal free:24kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1812kB unevictable:0kB writepending:0kB present:1048580kB managed:1900kB mlocked:0kB bounce:0kB free_pcp:16kB local_pcp:8kB free_cma:0kB
[ 1176.666868][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1176.712758][T25473] lowmem_reserve[]: 0 0 0 0 0
[ 1176.836837][T25473] Node 1 Normal free:1810880kB boost:0kB min:55768kB low:69708kB high:83648kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:4276kB local_pcp:0kB free_cma:0kB
[ 1176.933451][T25473] lowmem_reserve[]: 0 0 0 0 0
[ 1176.941160][T25473] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 1176.958719][T25473] Node 0 DMA32: 44*4kB (ME) 217*8kB (UME) 697*16kB (UE) 928*32kB (UME) 1075*64kB (UME) 519*128kB (UME) 384*256kB (UME) 257*512kB (UM) 111*1024kB (UM) 11*2048kB (UM) 171*4096kB (UME) = 1244488kB
[ 1176.978262][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1176.989866][T25473] Node 0 Normal: 0*4kB 1*8kB (M) 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 24kB
[ 1177.054220][T25473] Node 1 Normal: 114*4kB (UME) 63*8kB (UME) 60*16kB (UME) 216*32kB (UME) 93*64kB (UME) 30*128kB (UE) 13*256kB (UM) 12*512kB (UM) 7*1024kB (UM) 3*2048kB (UM) 432*4096kB (ME) = 1810880kB
[ 1177.100269][T25473] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1177.122700][T25473] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1177.159685][T25473] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=1048576kB
[ 1177.203543][T25473] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1177.234756][T25473] 75319 total pagecache pages
[ 1177.258224][T25473] 34 pages in swap cache
[ 1177.262589][T25473] Free swap  = 120476kB
[ 1177.293430][T25473] Total swap = 124996kB
[ 1177.322142][T25473] 2097051 pages RAM
[ 1177.332326][T25473] 0 pages HighMem/MovableOnly
[ 1177.345895][T25473] 428898 pages reserved
[ 1177.351586][T25473] 0 pages cma reserved
[ 1178.615405][T25531] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4402'.
[ 1181.146207][T15801] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[ 1182.513171][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[ 1182.520087][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[ 1186.778498][T25629] netlink: 20 bytes leftover after parsing attributes in process `syz.0.4424'.
[ 1188.593557][T25653] random: crng reseeded on system resumption
[ 1190.272329][T15801] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[ 1190.427851][T25687] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1190.466207][T25687] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1192.207854][T25720] FAULT_INJECTION: forcing a failure.
[ 1192.207854][T25720] name failslab, interval 1, probability 0, space 0, times 0
[ 1192.257842][T25720] CPU: 0 UID: 0 PID: 25720 Comm: syz.0.4445 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[ 1192.257899][T25720] Tainted: [U]=USER
[ 1192.257911][T25720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1192.257933][T25720] Call Trace:
[ 1192.257944][T25720]  <TASK>
[ 1192.257957][T25720]  dump_stack_lvl+0x16c/0x1f0
[ 1192.258007][T25720]  should_fail_ex+0x512/0x640
[ 1192.258054][T25720]  ? __kmalloc_cache_noprof+0x57/0x3e0
[ 1192.258116][T25720]  should_failslab+0xc2/0x120
[ 1192.258155][T25720]  __kmalloc_cache_noprof+0x6a/0x3e0
[ 1192.258220][T25720]  ? ptp_open+0xe3/0x520
[ 1192.258259][T25720]  ptp_open+0xe3/0x520
[ 1192.258298][T25720]  ? __pfx_ptp_open+0x10/0x10
[ 1192.258344][T25720]  ? __pfx_ptp_open+0x10/0x10
[ 1192.258375][T25720]  posix_clock_open+0x178/0x290
[ 1192.258411][T25720]  ? __pfx_posix_clock_open+0x10/0x10
[ 1192.258445][T25720]  chrdev_open+0x231/0x6a0
[ 1192.258479][T25720]  ? __pfx_apparmor_file_open+0x10/0x10
[ 1192.258522][T25720]  ? __pfx_chrdev_open+0x10/0x10
[ 1192.258561][T25720]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[ 1192.258620][T25720]  do_dentry_open+0x741/0x1c10
[ 1192.258655][T25720]  ? __pfx_chrdev_open+0x10/0x10
[ 1192.258698][T25720]  vfs_open+0x82/0x3f0
[ 1192.258742][T25720]  path_openat+0x1e5e/0x2d40
[ 1192.258788][T25720]  ? __pfx_path_openat+0x10/0x10
[ 1192.258830][T25720]  do_filp_open+0x20b/0x470
[ 1192.258862][T25720]  ? __pfx_do_filp_open+0x10/0x10
[ 1192.258923][T25720]  ? alloc_fd+0x471/0x7d0
[ 1192.258984][T25720]  do_sys_openat2+0x11b/0x1d0
[ 1192.259028][T25720]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1192.259089][T25720]  __x64_sys_openat+0x174/0x210
[ 1192.259134][T25720]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1192.259205][T25720]  do_syscall_64+0xcd/0x230
[ 1192.259253][T25720]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1192.259288][T25720] RIP: 0033:0x7f067c58e969
[ 1192.259315][T25720] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1192.259348][T25720] RSP: 002b:00007f067d323038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1192.259378][T25720] RAX: ffffffffffffffda RBX: 00007f067c7b6080 RCX: 00007f067c58e969
[ 1192.259399][T25720] RDX: 0000000000000440 RSI: 0000200000000140 RDI: ffffffffffffff9c
[ 1192.259419][T25720] RBP: 00007f067c610ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1192.259440][T25720] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1192.259458][T25720] R13: 0000000000000000 R14: 00007f067c7b6080 R15: 00007ffd47660fe8
[ 1192.259503][T25720]  </TASK>
[ 1192.517585][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1194.009014][   T30] audit: type=1800 audit(6442453153.848:31): pid=25746 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.4452" name="features" dev="configfs" ino=94544 res=0 errno=0
[ 1194.306892][T25751] snd_aloop snd_aloop.0: control 16781581:65539:6:é'x?F�¢é/èìzFË·fC�ªáª:7 is already present
[ 1195.151798][T25761] netlink: Unknown conntrack attr (type=146, max=9)
[ 1196.708987][T25781] FAULT_INJECTION: forcing a failure.
[ 1196.708987][T25781] name failslab, interval 1, probability 0, space 0, times 0
[ 1196.750476][T25781] CPU: 0 UID: 0 PID: 25781 Comm: syz.0.4462 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[ 1196.750517][T25781] Tainted: [U]=USER
[ 1196.750526][T25781] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1196.750540][T25781] Call Trace:
[ 1196.750548][T25781]  <TASK>
[ 1196.750557][T25781]  dump_stack_lvl+0x16c/0x1f0
[ 1196.750593][T25781]  should_fail_ex+0x512/0x640
[ 1196.750625][T25781]  ? __kmalloc_noprof+0xbf/0x510
[ 1196.750653][T25781]  ? lsm_blob_alloc+0x68/0x90
[ 1196.750687][T25781]  should_failslab+0xc2/0x120
[ 1196.750715][T25781]  __kmalloc_noprof+0xd2/0x510
[ 1196.750746][T25781]  lsm_blob_alloc+0x68/0x90
[ 1196.750783][T25781]  security_sk_alloc+0x30/0x270
[ 1196.750808][T25781]  sk_prot_alloc+0x1c7/0x2a0
[ 1196.750841][T25781]  sk_alloc+0x36/0xc20
[ 1196.750865][T25781]  alg_create+0x9e/0x150
[ 1196.750898][T25781]  __sock_create+0x335/0x8d0
[ 1196.750936][T25781]  __sys_socket+0x14d/0x260
[ 1196.750969][T25781]  ? __pfx___sys_socket+0x10/0x10
[ 1196.751004][T25781]  ? rcu_is_watching+0x12/0xc0
[ 1196.751030][T25781]  __x64_sys_socket+0x72/0xb0
[ 1196.751062][T25781]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1196.751091][T25781]  do_syscall_64+0xcd/0x230
[ 1196.751125][T25781]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1196.751157][T25781] RIP: 0033:0x7f067c58e969
[ 1196.751176][T25781] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1196.751199][T25781] RSP: 002b:00007f067d344038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 1196.751221][T25781] RAX: ffffffffffffffda RBX: 00007f067c7b5fa0 RCX: 00007f067c58e969
[ 1196.751236][T25781] RDX: 0000000000000000 RSI: 0000000000080805 RDI: 0000000000000026
[ 1196.751251][T25781] RBP: 00007f067c610ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1196.751265][T25781] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1196.751280][T25781] R13: 0000000000000000 R14: 00007f067c7b5fa0 R15: 00007ffd47660fe8
[ 1196.751309][T25781]  </TASK>
[ 1196.955288][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1198.269216][T25809] syz.0.4468 (25809) used obsolete PPPIOCDETACH ioctl
[ 1201.154891][T25868] netlink: 'syz.2.4481': attribute type 19 has an invalid length.
[ 1201.164108][T25868] netlink: 334 bytes leftover after parsing attributes in process `syz.2.4481'.
[ 1204.199842][T25934] FAULT_INJECTION: forcing a failure.
[ 1204.199842][T25934] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1204.224672][T25934] CPU: 1 UID: 0 PID: 25934 Comm: syz.1.4494 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[ 1204.224736][T25934] Tainted: [U]=USER
[ 1204.224748][T25934] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1204.224769][T25934] Call Trace:
[ 1204.224780][T25934]  <TASK>
[ 1204.224794][T25934]  dump_stack_lvl+0x16c/0x1f0
[ 1204.224844][T25934]  should_fail_ex+0x512/0x640
[ 1204.224895][T25934]  should_fail_alloc_page+0xe7/0x130
[ 1204.224940][T25934]  prepare_alloc_pages+0x3c2/0x610
[ 1204.224989][T25934]  ? rcu_is_watching+0x12/0xc0
[ 1204.225024][T25934]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[ 1204.225063][T25934]  ? __perf_event_task_sched_in+0x27a/0xa10
[ 1204.225114][T25934]  ? lock_acquire+0x179/0x350
[ 1204.225166][T25934]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1204.225209][T25934]  ? finish_task_switch.isra.0+0x221/0xc10
[ 1204.225273][T25934]  ? __lock_acquire+0x5ca/0x1ba0
[ 1204.225319][T25934]  ? __lock_acquire+0x5ca/0x1ba0
[ 1204.225361][T25934]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1204.225407][T25934]  ? policy_nodemask+0xea/0x4e0
[ 1204.225449][T25934]  alloc_pages_mpol+0x1fb/0x550
[ 1204.225497][T25934]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1204.225539][T25934]  ? __lock_acquire+0x5ca/0x1ba0
[ 1204.225587][T25934]  folio_alloc_mpol_noprof+0x36/0x2f0
[ 1204.225637][T25934]  vma_alloc_folio_noprof+0xed/0x1e0
[ 1204.225681][T25934]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[ 1204.225738][T25934]  do_pte_missing+0x223d/0x3fb0
[ 1204.225786][T25934]  __handle_mm_fault+0x103d/0x2a40
[ 1204.225832][T25934]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1204.225864][T25934]  ? __pte_offset_map_lock+0x155/0x2f0
[ 1204.225911][T25934]  ? find_held_lock+0x2b/0x80
[ 1204.225940][T25934]  ? find_held_lock+0x2b/0x80
[ 1204.225998][T25934]  handle_mm_fault+0x3fe/0xad0
[ 1204.226037][T25934]  __get_user_pages+0x771/0x36f0
[ 1204.226099][T25934]  ? __pfx_mt_find+0x10/0x10
[ 1204.226146][T25934]  ? __pfx___get_user_pages+0x10/0x10
[ 1204.226209][T25934]  populate_vma_page_range+0x278/0x3a0
[ 1204.226266][T25934]  ? __pfx_populate_vma_page_range+0x10/0x10
[ 1204.226319][T25934]  ? __pfx_find_vma_intersection+0x10/0x10
[ 1204.226370][T25934]  ? do_mmap+0x69c/0x11b0
[ 1204.226420][T25934]  __mm_populate+0x1d8/0x380
[ 1204.226452][T25934]  ? __pfx___mm_populate+0x10/0x10
[ 1204.226518][T25934]  ? up_write+0x1b2/0x520
[ 1204.226568][T25934]  vm_mmap_pgoff+0x362/0x450
[ 1204.226621][T25934]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1204.226676][T25934]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1204.226709][T25934]  ? __x64_sys_futex+0x1e9/0x4c0
[ 1204.226750][T25934]  ksys_mmap_pgoff+0x7d/0x5c0
[ 1204.226798][T25934]  ? rcu_is_watching+0x12/0xc0
[ 1204.226830][T25934]  __x64_sys_mmap+0x125/0x190
[ 1204.226867][T25934]  do_syscall_64+0xcd/0x230
[ 1204.226913][T25934]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1204.226946][T25934] RIP: 0033:0x7f89e238e969
[ 1204.226973][T25934] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1204.227008][T25934] RSP: 002b:00007f89e329d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1204.227039][T25934] RAX: ffffffffffffffda RBX: 00007f89e25b5fa0 RCX: 00007f89e238e969
[ 1204.227061][T25934] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[ 1204.227081][T25934] RBP: 00007f89e2410ab1 R08: 0000000000000002 R09: 0000000000008000
[ 1204.227102][T25934] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[ 1204.227121][T25934] R13: 0000000000000000 R14: 00007f89e25b5fa0 R15: 00007ffdafabd988
[ 1204.227157][T25934]  </TASK>
[ 1206.058843][T25971] i2c i2c-0: Frontend requested software zigzag, but didn't set the frequency step size
[ 1207.148381][T15801] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[ 1208.006079][T26006] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4507'.
[ 1208.156629][   T30] audit: type=1800 audit(4294967298.710:32): pid=26001 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.4504" name="SYSV00000400" dev="tmpfs" ino=0 res=0 errno=0
[ 1208.230569][T26011] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4509'.
[ 1209.011231][T26017] netlink: 342 bytes leftover after parsing attributes in process `syz.0.4510'.
[ 1209.083262][T26017] netlink: 274 bytes leftover after parsing attributes in process `syz.0.4510'.
[ 1212.554302][T26099] mkiss: ax0: crc mode is auto.
[ 1212.600062][T26099] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4528'.
[ 1212.709278][T26099] HfR: entered promiscuous mode
[ 1212.734032][T26107] ptrace attach of "./syz-executor exec"[16199] was attempted by "./syz-executor exec"[26107]
[ 1212.994678][T26108] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(1)
[ 1213.749645][T26134] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4535'.
[ 1213.858856][T26134] vcan0: entered promiscuous mode
[ 1214.101137][T26141] FAULT_INJECTION: forcing a failure.
[ 1214.101137][T26141] name failslab, interval 1, probability 0, space 0, times 0
[ 1214.134315][T26141] CPU: 1 UID: 0 PID: 26141 Comm: syz.1.4537 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[ 1214.134373][T26141] Tainted: [U]=USER
[ 1214.134385][T26141] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1214.134406][T26141] Call Trace:
[ 1214.134417][T26141]  <TASK>
[ 1214.134431][T26141]  dump_stack_lvl+0x16c/0x1f0
[ 1214.134483][T26141]  should_fail_ex+0x512/0x640
[ 1214.134545][T26141]  should_failslab+0xc2/0x120
[ 1214.134586][T26141]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1214.134626][T26141]  ? skb_clone+0x190/0x3f0
[ 1214.134667][T26141]  skb_clone+0x190/0x3f0
[ 1214.134705][T26141]  netlink_deliver_tap+0xabd/0xd30
[ 1214.134750][T26141]  netlink_unicast+0x5df/0x7f0
[ 1214.134792][T26141]  ? __pfx_netlink_unicast+0x10/0x10
[ 1214.134845][T26141]  netlink_sendmsg+0x8d1/0xdd0
[ 1214.134893][T26141]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1214.134948][T26141]  ____sys_sendmsg+0xa95/0xc70
[ 1214.134995][T26141]  ? copy_msghdr_from_user+0x10a/0x160
[ 1214.135029][T26141]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1214.135081][T26141]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1214.135134][T26141]  ___sys_sendmsg+0x134/0x1d0
[ 1214.135171][T26141]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1214.135260][T26141]  __sys_sendmsg+0x16d/0x220
[ 1214.135295][T26141]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1214.135329][T26141]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1214.135375][T26141]  ? rcu_is_watching+0x12/0xc0
[ 1214.135418][T26141]  do_syscall_64+0xcd/0x230
[ 1214.135467][T26141]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1214.135511][T26141] RIP: 0033:0x7f89e238e969
[ 1214.135538][T26141] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1214.135571][T26141] RSP: 002b:00007f89e329d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1214.135601][T26141] RAX: ffffffffffffffda RBX: 00007f89e25b5fa0 RCX: 00007f89e238e969
[ 1214.135624][T26141] RDX: 00000000000490c2 RSI: 0000200000000180 RDI: 0000000000000003
[ 1214.135644][T26141] RBP: 00007f89e2410ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1214.135665][T26141] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1214.135688][T26141] R13: 0000000000000000 R14: 00007f89e25b5fa0 R15: 00007ffdafabd988
[ 1214.135728][T26141]  </TASK>
[ 1217.247049][T26199] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4546'.
[ 1217.600624][T26199] veth1_macvtap: left promiscuous mode
[ 1218.100390][T26217] delete_channel: no stack
[ 1218.858768][T26241] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4556'.
[ 1218.879191][T26241] netlink: 25 bytes leftover after parsing attributes in process `syz.0.4556'.
[ 1218.912114][T26241] nbd: must specify a size in bytes for the device
[ 1219.023270][T26244] program syz.4.4557 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1220.594907][T26273] netlink: 'syz.4.4564': attribute type 11 has an invalid length.
[ 1220.645391][T26273] netlink: 'syz.4.4564': attribute type 11 has an invalid length.
[ 1220.786597][T26268] ERROR: Out of memory at tomoyo_memory_ok.
[ 1220.794199][T26268] ERROR: Domain '<kernel> /sbin/init /etc/init.d/rcS /etc/init.d/S50sshd /usr/sbin/sshd /usr/sbin/sshd /bin/sh /root/syz-executor /root/syz-executor /newroot/568/file0' not defined.
[ 1220.833629][T15801] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[ 1221.061989][T26275] ERROR: Out of memory at tomoyo_memory_ok.
[ 1221.166200][T26274] ERROR: Out of memory at tomoyo_memory_ok.
[ 1221.989561][T26294] FAULT_INJECTION: forcing a failure.
[ 1221.989561][T26294] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1222.264657][T26294] CPU: 1 UID: 0 PID: 26294 Comm: syz.1.4568 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[ 1222.264716][T26294] Tainted: [U]=USER
[ 1222.264729][T26294] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1222.264749][T26294] Call Trace:
[ 1222.264761][T26294]  <TASK>
[ 1222.264774][T26294]  dump_stack_lvl+0x16c/0x1f0
[ 1222.264822][T26294]  should_fail_ex+0x512/0x640
[ 1222.264876][T26294]  should_fail_alloc_page+0xe7/0x130
[ 1222.264919][T26294]  prepare_alloc_pages+0x3c2/0x610
[ 1222.264967][T26294]  ? rcu_is_watching+0x12/0xc0
[ 1222.265001][T26294]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[ 1222.265039][T26294]  ? __kernel_text_address+0xd/0x40
[ 1222.265089][T26294]  ? unwind_get_return_address+0x59/0xa0
[ 1222.265136][T26294]  ? arch_stack_walk+0xa6/0x100
[ 1222.265186][T26294]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1222.265226][T26294]  ? stack_trace_save+0x8e/0xc0
[ 1222.265258][T26294]  ? __pfx_stack_trace_save+0x10/0x10
[ 1222.265292][T26294]  ? stack_depot_save_flags+0x28/0xa50
[ 1222.265348][T26294]  ? kasan_save_stack+0x42/0x60
[ 1222.265387][T26294]  ? __lock_acquire+0xaa4/0x1ba0
[ 1222.265427][T26294]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1222.265472][T26294]  ? policy_nodemask+0xea/0x4e0
[ 1222.265515][T26294]  alloc_pages_mpol+0x1fb/0x550
[ 1222.265556][T26294]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1222.265592][T26294]  ? __page_table_check_ptes_set+0x1ae/0x420
[ 1222.265632][T26294]  ? find_held_lock+0x2b/0x80
[ 1222.265672][T26294]  alloc_pages_noprof+0x131/0x390
[ 1222.265710][T26294]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 1222.265742][T26294]  get_free_pages_noprof+0xc/0x40
[ 1222.265782][T26294]  kasan_populate_vmalloc_pte+0x2d/0x160
[ 1222.265816][T26294]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 1222.265849][T26294]  __apply_to_page_range+0x617/0xd60
[ 1222.265901][T26294]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 1222.265941][T26294]  ? __pfx___apply_to_page_range+0x10/0x10
[ 1222.265992][T26294]  ? alloc_vmap_area+0x872/0x2970
[ 1222.266046][T26294]  alloc_vmap_area+0x919/0x2970
[ 1222.266113][T26294]  ? __pfx_alloc_vmap_area+0x10/0x10
[ 1222.266172][T26294]  __get_vm_area_node+0x1a7/0x300
[ 1222.266231][T26294]  __vmalloc_node_range_noprof+0x277/0x1540
[ 1222.266285][T26294]  ? __do_sys_listmount+0x1c2/0xed0
[ 1222.266347][T26294]  ? __do_sys_listmount+0x1c2/0xed0
[ 1222.266413][T26294]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1222.266485][T26294]  __kvmalloc_node_noprof+0x2ff/0x600
[ 1222.266522][T26294]  ? __do_sys_listmount+0x1c2/0xed0
[ 1222.266572][T26294]  ? __do_sys_listmount+0x1c2/0xed0
[ 1222.266626][T26294]  ? __do_sys_listmount+0x1c2/0xed0
[ 1222.266671][T26294]  __do_sys_listmount+0x1c2/0xed0
[ 1222.266732][T26294]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1222.266766][T26294]  ? __x64_sys_futex+0x1e9/0x4c0
[ 1222.266802][T26294]  ? __pfx___do_sys_listmount+0x10/0x10
[ 1222.266850][T26294]  ? xfd_validate_state+0x5d/0x180
[ 1222.266922][T26294]  do_syscall_64+0xcd/0x230
[ 1222.266971][T26294]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1222.267005][T26294] RIP: 0033:0x7f89e238e969
[ 1222.267033][T26294] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1222.267067][T26294] RSP: 002b:00007f89e325b038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[ 1222.267100][T26294] RAX: ffffffffffffffda RBX: 00007f89e25b6160 RCX: 00007f89e238e969
[ 1222.267130][T26294] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100
[ 1222.267151][T26294] RBP: 00007f89e2410ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1222.267172][T26294] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 1222.267192][T26294] R13: 0000000000000000 R14: 00007f89e25b6160 R15: 00007ffdafabd988
[ 1222.267235][T26294]  </TASK>
[ 1222.746581][T26294] warn_alloc: 1 callbacks suppressed
[ 1222.746609][T26294] syz.1.4568: vmalloc error: size 8000000, vm_struct allocation failed, mode:0x400cc0(GFP_KERNEL_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1
[ 1222.767518][T26294] CPU: 1 UID: 0 PID: 26294 Comm: syz.1.4568 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[ 1222.767573][T26294] Tainted: [U]=USER
[ 1222.767584][T26294] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1222.767604][T26294] Call Trace:
[ 1222.767615][T26294]  <TASK>
[ 1222.767628][T26294]  dump_stack_lvl+0x16c/0x1f0
[ 1222.767677][T26294]  warn_alloc+0x248/0x3a0
[ 1222.767716][T26294]  ? __pfx_warn_alloc+0x10/0x10
[ 1222.767756][T26294]  ? kfree+0x2b6/0x4d0
[ 1222.767816][T26294]  ? __get_vm_area_node+0x1e5/0x300
[ 1222.767883][T26294]  __vmalloc_node_range_noprof+0xd31/0x1540
[ 1222.767950][T26294]  ? __do_sys_listmount+0x1c2/0xed0
[ 1222.768007][T26294]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1222.768076][T26294]  __kvmalloc_node_noprof+0x2ff/0x600
[ 1222.768111][T26294]  ? __do_sys_listmount+0x1c2/0xed0
[ 1222.768158][T26294]  ? __do_sys_listmount+0x1c2/0xed0
[ 1222.768209][T26294]  ? __do_sys_listmount+0x1c2/0xed0
[ 1222.768254][T26294]  __do_sys_listmount+0x1c2/0xed0
[ 1222.768308][T26294]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1222.768342][T26294]  ? __x64_sys_futex+0x1e9/0x4c0
[ 1222.768378][T26294]  ? __pfx___do_sys_listmount+0x10/0x10
[ 1222.768425][T26294]  ? xfd_validate_state+0x5d/0x180
[ 1222.768496][T26294]  do_syscall_64+0xcd/0x230
[ 1222.768541][T26294]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1222.768573][T26294] RIP: 0033:0x7f89e238e969
[ 1222.768599][T26294] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1222.768631][T26294] RSP: 002b:00007f89e325b038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[ 1222.768663][T26294] RAX: ffffffffffffffda RBX: 00007f89e25b6160 RCX: 00007f89e238e969
[ 1222.768686][T26294] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100
[ 1222.768706][T26294] RBP: 00007f89e2410ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1222.768726][T26294] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 1222.768744][T26294] R13: 0000000000000000 R14: 00007f89e25b6160 R15: 00007ffdafabd988
[ 1222.768785][T26294]  </TASK>
[ 1222.768796][T26294] Mem-Info:
[ 1222.989791][T26294] active_anon:40570 inactive_anon:2 isolated_anon:0
[ 1222.989791][T26294]  active_file:9793 inactive_file:47073 isolated_file:0
[ 1222.989791][T26294]  unevictable:768 dirty:400 writeback:0
[ 1222.989791][T26294]  slab_reclaimable:11213 slab_unreclaimable:98863
[ 1222.989791][T26294]  mapped:31124 shmem:15749 pagetables:1167
[ 1222.989791][T26294]  sec_pagetables:0 bounce:0
[ 1222.989791][T26294]  kernel_misc_reclaimable:0
[ 1222.989791][T26294]  free:767170 free_pcp:5548 free_cma:0
[ 1223.168563][T26294] Node 0 active_anon:160900kB inactive_anon:8kB active_file:38172kB inactive_file:188288kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:126904kB dirty:1600kB writeback:0kB shmem:44840kB shmem_thp:2048kB shmem_pmdmapped:2048kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12264kB pagetables:4720kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1223.286008][T26294] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:16736kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1223.380859][T26294] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1223.492734][T26294] lowmem_reserve[]: 0 2484 2486 2486 2486
[ 1223.548779][T26294] Node 0 DMA32 free:1239108kB boost:0kB min:34108kB low:42632kB high:51156kB reserved_highatomic:0KB active_anon:164552kB inactive_anon:8kB active_file:35372kB inactive_file:186476kB unevictable:1536kB writepending:1600kB present:3129332kB managed:2544188kB mlocked:0kB bounce:0kB free_pcp:22228kB local_pcp:2348kB free_cma:0kB
[ 1223.712003][T26294] lowmem_reserve[]: 0 0 1 1 1
[ 1223.755840][T26294] Node 0 Normal free:20kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1812kB unevictable:0kB writepending:0kB present:1048580kB managed:1900kB mlocked:0kB bounce:0kB free_pcp:20kB local_pcp:12kB free_cma:0kB
[ 1223.885878][T26294] lowmem_reserve[]: 0 0 0 0 0
[ 1223.924895][T26294] Node 1 Normal free:1815156kB boost:0kB min:55768kB low:69708kB high:83648kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1223.994251][T26306] netlink: 'syz.4.4570': attribute type 2 has an invalid length.
[ 1223.998959][T26294] lowmem_reserve[]: 0 0 0 0 0
[ 1224.042167][T26294] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 1224.122369][T26294] Node 0 DMA32: 945*4kB (UME) 1729*8kB (UME) 1675*16kB (UME) 743*32kB (UME) 566*64kB (UME) 537*128kB (UME) 383*256kB (UME) 260*512kB (UM) 114*1024kB (UM) 6*2048kB (UM) 171*4096kB (UME) = 1233756kB
[ 1224.205729][T26294] Node 0 Normal: 1*4kB (M) 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20kB
[ 1224.395820][T26294] Node 1 Normal: 237*4kB (UME) 62*8kB (UME) 55*16kB (UME) 211*32kB (UME) 94*64kB (UME) 31*128kB (UME) 14*256kB (UM) 9*512kB (UM) 6*1024kB (UM) 2*2048kB (U) 434*4096kB (ME) = 1815156kB
[ 1224.425844][T26294] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1224.446352][T26294] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1224.485883][T26294] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=1048576kB
[ 1224.495514][T26294] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1224.531563][T26314] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4572'.
[ 1224.532513][T26294] 69163 total pagecache pages
[ 1224.583160][T26294] 61 pages in swap cache
[ 1224.603214][T26294] Free swap  = 120464kB
[ 1224.621434][T26294] Total swap = 124996kB
[ 1224.626027][T26294] 2097051 pages RAM
[ 1224.629885][T26294] 0 pages HighMem/MovableOnly
[ 1224.656668][T26294] 428898 pages reserved
[ 1224.661293][T26294] 0 pages cma reserved
[ 1224.827453][T14589] EXT4-fs (sda1): Delayed block allocation failed for inode 1931 at logical offset 8 with max blocks 52 with error 117
[ 1224.890478][T14589] EXT4-fs (sda1): This should not happen!! Data will be lost
[ 1224.890478][T14589] 
[ 1228.108057][T26387] FAULT_INJECTION: forcing a failure.
[ 1228.108057][T26387] name fail_futex, interval 1, probability 0, space 0, times 0
[ 1228.150392][T26387] CPU: 0 UID: 7 PID: 26387 Comm: syz.0.4585 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[ 1228.150461][T26387] Tainted: [U]=USER
[ 1228.150474][T26387] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1228.150494][T26387] Call Trace:
[ 1228.150505][T26387]  <TASK>
[ 1228.150518][T26387]  dump_stack_lvl+0x16c/0x1f0
[ 1228.150569][T26387]  should_fail_ex+0x512/0x640
[ 1228.150623][T26387]  get_futex_key+0x49e/0x1000
[ 1228.150662][T26387]  ? __pfx_get_futex_key+0x10/0x10
[ 1228.150715][T26387]  futex_wake+0xe7/0x4e0
[ 1228.150760][T26387]  ? __pfx_futex_wake+0x10/0x10
[ 1228.150806][T26387]  ? percpu_counter_add_batch+0xb8/0x1f0
[ 1228.150846][T26387]  ? errseq_sample+0x53/0x70
[ 1228.150892][T26387]  ? file_init_path+0x4fe/0x760
[ 1228.150940][T26387]  do_futex+0x1e3/0x350
[ 1228.150976][T26387]  ? __pfx_do_futex+0x10/0x10
[ 1228.151010][T26387]  ? fd_install+0x225/0x750
[ 1228.151069][T26387]  __x64_sys_futex+0x1e0/0x4c0
[ 1228.151107][T26387]  ? __sys_socket+0xac/0x260
[ 1228.151152][T26387]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1228.151189][T26387]  ? rcu_is_watching+0x12/0xc0
[ 1228.151230][T26387]  do_syscall_64+0xcd/0x230
[ 1228.151278][T26387]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1228.151311][T26387] RIP: 0033:0x7f067c58e969
[ 1228.151338][T26387] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1228.151370][T26387] RSP: 002b:00007f067d3440e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1228.151402][T26387] RAX: ffffffffffffffda RBX: 00007f067c7b5fa8 RCX: 00007f067c58e969
[ 1228.151432][T26387] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f067c7b5fac
[ 1228.151453][T26387] RBP: 00007f067c7b5fa0 R08: 00007f067d345000 R09: 0000000000000000
[ 1228.151475][T26387] R10: 0000000000000007 R11: 0000000000000246 R12: 00007f067c7b5fac
[ 1228.151497][T26387] R13: 0000000000000000 R14: 00007ffd47660f00 R15: 00007ffd47660fe8
[ 1228.151541][T26387]  </TASK>
[ 1228.351988][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1228.430961][T15801] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[ 1228.821992][T26397] netlink: 16 bytes leftover after parsing attributes in process `syz.1.4587'.
[ 1228.850079][T26397] ima: policy update failed
[ 1228.890548][   T30] audit: type=1802 audit(4294967319.410:33): pid=26397 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.4587" res=0 errno=0
[ 1229.406844][T26416] EXT4-fs (sda1): Delayed block allocation failed for inode 1932 at logical offset 906 with max blocks 21 with error 117
[ 1229.422886][T26416] EXT4-fs (sda1): This should not happen!! Data will be lost
[ 1229.422886][T26416] 
[ 1229.814181][T26422] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4591'.
[ 1230.408180][T26431] ubi0: attaching mtd0
[ 1230.414374][T26431] ubi0: scanning is finished
[ 1230.446489][T26431] ubi0 error: ubi_read_volume_table: the layout volume was not found
[ 1230.872631][T26431] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[ 1231.341342][T26451] netlink: 326 bytes leftover after parsing attributes in process `syz.2.4597'.
[ 1231.525247][T26453] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input21
[ 1232.019047][T26470] Unable to find swap-space signature
[ 1232.266518][T26473] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[ 1232.310633][T26473] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[ 1232.528941][T26476] FAULT_INJECTION: forcing a failure.
[ 1232.528941][T26476] name failslab, interval 1, probability 0, space 0, times 0
[ 1232.541933][T26476] CPU: 0 UID: 0 PID: 26476 Comm: syz.2.4603 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[ 1232.541984][T26476] Tainted: [U]=USER
[ 1232.541995][T26476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1232.542014][T26476] Call Trace:
[ 1232.542025][T26476]  <TASK>
[ 1232.542039][T26476]  dump_stack_lvl+0x16c/0x1f0
[ 1232.542086][T26476]  should_fail_ex+0x512/0x640
[ 1232.542132][T26476]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1232.542187][T26476]  should_failslab+0xc2/0x120
[ 1232.542228][T26476]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1232.542266][T26476]  ? __kernfs_new_node+0xd2/0x8a0
[ 1232.542324][T26476]  __kernfs_new_node+0xd2/0x8a0
[ 1232.542379][T26476]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1232.542440][T26476]  ? find_held_lock+0x2b/0x80
[ 1232.542471][T26476]  ? kernfs_root+0xee/0x2a0
[ 1232.542521][T26476]  kernfs_new_node+0x13c/0x1e0
[ 1232.542552][T26476]  __kernfs_create_file+0x53/0x350
[ 1232.542586][T26476]  sysfs_add_file_mode_ns+0x207/0x3c0
[ 1232.542630][T26476]  internal_create_group+0x578/0xf30
[ 1232.542676][T26476]  ? __pfx_internal_create_group+0x10/0x10
[ 1232.542720][T26476]  ? kernfs_create_link+0x1bd/0x240
[ 1232.542756][T26476]  internal_create_groups+0x9d/0x150
[ 1232.542781][T26476]  device_add+0xf30/0x1a70
[ 1232.542816][T26476]  ? __pfx_device_add+0x10/0x10
[ 1232.542846][T26476]  ? lockdep_init_map_type+0x5c/0x280
[ 1232.542877][T26476]  ? __init_waitqueue_head+0xca/0x150
[ 1232.542927][T26476]  netdev_register_kobject+0x182/0x3a0
[ 1232.542962][T26476]  register_netdevice+0x13dc/0x2270
[ 1232.542996][T26476]  ? __pfx_register_netdevice+0x10/0x10
[ 1232.543049][T26476]  internal_dev_create+0x2d3/0x520
[ 1232.543090][T26476]  ovs_vport_add+0x144/0x4d0
[ 1232.543126][T26476]  new_vport+0x16/0x1d0
[ 1232.543171][T26476]  ovs_dp_cmd_new+0x6ba/0xe60
[ 1232.543209][T26476]  ? __pfx_ovs_dp_cmd_new+0x10/0x10
[ 1232.543245][T26476]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[ 1232.543280][T26476]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[ 1232.543321][T26476]  genl_family_rcv_msg_doit+0x206/0x2f0
[ 1232.543355][T26476]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1232.543388][T26476]  ? trace_cap_capable+0x18d/0x200
[ 1232.543418][T26476]  ? bpf_lsm_capable+0x9/0x10
[ 1232.543442][T26476]  ? security_capable+0x7e/0x260
[ 1232.543481][T26476]  ? ns_capable+0xd7/0x110
[ 1232.543508][T26476]  genl_rcv_msg+0x55c/0x800
[ 1232.543543][T26476]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1232.543573][T26476]  ? __pfx___dev_queue_xmit+0x10/0x10
[ 1232.543610][T26476]  ? __pfx_ovs_dp_cmd_new+0x10/0x10
[ 1232.543641][T26476]  ? __lock_acquire+0xaa4/0x1ba0
[ 1232.543676][T26476]  netlink_rcv_skb+0x16a/0x440
[ 1232.543704][T26476]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1232.543737][T26476]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1232.543780][T26476]  ? __pfx_down_read+0x10/0x10
[ 1232.543816][T26476]  ? netlink_deliver_tap+0x1ae/0xd30
[ 1232.543846][T26476]  genl_rcv+0x28/0x40
[ 1232.543873][T26476]  netlink_unicast+0x53a/0x7f0
[ 1232.543905][T26476]  ? __pfx_netlink_unicast+0x10/0x10
[ 1232.543930][T26476]  ? __lock_acquire+0xaa4/0x1ba0
[ 1232.543967][T26476]  netlink_sendmsg+0x8d1/0xdd0
[ 1232.543999][T26476]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1232.544038][T26476]  ____sys_sendmsg+0xa95/0xc70
[ 1232.544071][T26476]  ? copy_msghdr_from_user+0x10a/0x160
[ 1232.544096][T26476]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1232.544135][T26476]  ? try_to_wake_up+0xa2f/0x1680
[ 1232.544171][T26476]  ___sys_sendmsg+0x134/0x1d0
[ 1232.544198][T26476]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1232.544262][T26476]  __sys_sendmsg+0x16d/0x220
[ 1232.544287][T26476]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1232.544311][T26476]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1232.544346][T26476]  ? rcu_is_watching+0x12/0xc0
[ 1232.544375][T26476]  do_syscall_64+0xcd/0x230
[ 1232.544409][T26476]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1232.544434][T26476] RIP: 0033:0x7f784818e969
[ 1232.544455][T26476] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1232.544478][T26476] RSP: 002b:00007f784908c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1232.544500][T26476] RAX: ffffffffffffffda RBX: 00007f78483b5fa0 RCX: 00007f784818e969
[ 1232.544516][T26476] RDX: 0000000002000000 RSI: 0000200000000080 RDI: 0000000000000006
[ 1232.544531][T26476] RBP: 00007f7848210ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1232.544546][T26476] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1232.544560][T26476] R13: 0000000000000000 R14: 00007f78483b5fa0 R15: 00007fff11d4e5b8
[ 1232.544591][T26476]  </TASK>
[ 1233.350193][T26488] ERROR: Out of memory at tomoyo_memory_ok.
[ 1233.451655][T26488] netlink: 'syz.4.4605': attribute type 8 has an invalid length.
[ 1233.516343][T26490] netlink: 'syz.4.4605': attribute type 8 has an invalid length.
[ 1233.604664][T26495] netlink: 1636 bytes leftover after parsing attributes in process `syz.2.4606'.
[ 1234.291490][T15801] Bluetooth: hci1: Unable to find connection for big 0xd2
[ 1235.980773][T26547] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[ 1238.523519][T26595] ptrace attach of "./syz-executor exec"[20283] was attempted by "./syz-executor exec"[26595]
[ 1239.324939][T26616] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[ 1239.865189][T26632] usbip-vudc usbip-vudc.0: gadget not bound
[ 1241.245796][T26653] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[ 1241.682471][T26659] random: crng reseeded on system resumption
[ 1243.952687][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[ 1243.959317][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[ 1243.960222][T26688] netlink: 29 bytes leftover after parsing attributes in process `syz.4.4643'.
[ 1247.011519][T26742] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1247.046549][T26742] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1248.443986][T26761] FAULT_INJECTION: forcing a failure.
[ 1248.443986][T26761] name fail_futex, interval 1, probability 0, space 0, times 0
[ 1248.450453][   T30] audit: type=1804 audit(4294968361.990:34): pid=26761 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.4660" name="/newroot/sys/kernel/tracing/events/vmalloc/filter" dev="tracefs" ino=19680823 res=1 errno=0
[ 1248.543060][T26761] CPU: 0 UID: 0 PID: 26761 Comm: syz.1.4660 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[ 1248.543115][T26761] Tainted: [U]=USER
[ 1248.543128][T26761] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1248.543148][T26761] Call Trace:
[ 1248.543162][T26761]  <TASK>
[ 1248.543175][T26761]  dump_stack_lvl+0x16c/0x1f0
[ 1248.543229][T26761]  should_fail_ex+0x512/0x640
[ 1248.543282][T26761]  get_futex_key+0x49e/0x1000
[ 1248.543321][T26761]  ? __pfx_get_futex_key+0x10/0x10
[ 1248.543368][T26761]  futex_wake+0xe7/0x4e0
[ 1248.543412][T26761]  ? __pfx_futex_wake+0x10/0x10
[ 1248.543456][T26761]  ? kmem_cache_free+0x2d4/0x4d0
[ 1248.543490][T26761]  ? fd_install+0x225/0x750
[ 1248.543534][T26761]  ? putname+0x154/0x1a0
[ 1248.543576][T26761]  do_futex+0x1e3/0x350
[ 1248.543609][T26761]  ? __pfx_do_futex+0x10/0x10
[ 1248.543647][T26761]  ? __pfx___might_resched+0x10/0x10
[ 1248.543686][T26761]  __x64_sys_futex+0x1e0/0x4c0
[ 1248.543722][T26761]  ? __x64_sys_openat+0x174/0x210
[ 1248.543763][T26761]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1248.543798][T26761]  ? rcu_is_watching+0x12/0xc0
[ 1248.543872][T26761]  do_syscall_64+0xcd/0x230
[ 1248.543919][T26761]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1248.543953][T26761] RIP: 0033:0x7f89e238e969
[ 1248.543979][T26761] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1248.544009][T26761] RSP: 002b:00007f89e329d0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1248.544039][T26761] RAX: ffffffffffffffda RBX: 00007f89e25b5fa8 RCX: 00007f89e238e969
[ 1248.544061][T26761] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f89e25b5fac
[ 1248.544082][T26761] RBP: 00007f89e25b5fa0 R08: 00007f89e329e000 R09: 0000000000000000
[ 1248.544103][T26761] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f89e25b5fac
[ 1248.544122][T26761] R13: 0000000000000000 R14: 00007ffdafabd8a0 R15: 00007ffdafabd988
[ 1248.544163][T26761]  </TASK>
[ 1249.002181][T26767] netlink: 342 bytes leftover after parsing attributes in process `syz.0.4661'.
[ 1249.480378][T26776] device-mapper: ioctl: Unable to rename non-existent device,  to uuid „
[ 1249.658047][T26781] netlink: 342 bytes leftover after parsing attributes in process `syz.0.4663'.
[ 1250.226576][T26796] blk_print_req_error: 24 callbacks suppressed
[ 1250.226604][T26796] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1250.262242][T26796] buffer_io_error: 23 callbacks suppressed
[ 1250.262268][T26796] Buffer I/O error on dev nbd0, logical block 0, async page read
[ 1250.299054][T26796] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1250.328435][T26796] Buffer I/O error on dev nbd0, logical block 0, async page read
[ 1250.362312][T26796] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1250.404932][T26796] Buffer I/O error on dev nbd0, logical block 0, async page read
[ 1250.422066][T26796] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1250.431263][T26796] Buffer I/O error on dev nbd0, logical block 0, async page read
[ 1250.470818][T26796] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1250.538981][T26796] Buffer I/O error on dev nbd0, logical block 0, async page read
[ 1250.562413][T26796] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1250.601610][T26796] Buffer I/O error on dev nbd0, logical block 0, async page read
[ 1250.635527][T26796] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1250.671775][T26796] Buffer I/O error on dev nbd0, logical block 0, async page read
[ 1250.692426][T26796] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1250.721899][T26796] Buffer I/O error on dev nbd0, logical block 0, async page read
[ 1250.756440][T26796] ldm_validate_partition_table(): Disk read failed.
[ 1250.797099][T26796] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1250.872518][T26796] Buffer I/O error on dev nbd0, logical block 0, async page read
[ 1250.922089][T26796] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1250.964243][T26796] Buffer I/O error on dev nbd0, logical block 0, async page read
[ 1251.042531][T26796] Dev nbd0: unable to read RDB block 0
[ 1251.055046][T26796]  nbd0: unable to read partition table
[ 1251.582248][T26818] FAULT_INJECTION: forcing a failure.
[ 1251.582248][T26818] name failslab, interval 1, probability 0, space 0, times 0
[ 1251.595868][T26818] CPU: 0 UID: 0 PID: 26818 Comm: syz.1.4672 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[ 1251.595929][T26818] Tainted: [U]=USER
[ 1251.595940][T26818] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1251.595959][T26818] Call Trace:
[ 1251.595970][T26818]  <TASK>
[ 1251.595982][T26818]  dump_stack_lvl+0x16c/0x1f0
[ 1251.596030][T26818]  should_fail_ex+0x512/0x640
[ 1251.596077][T26818]  ? fs_reclaim_acquire+0xae/0x150
[ 1251.596130][T26818]  should_failslab+0xc2/0x120
[ 1251.596171][T26818]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1251.596209][T26818]  ? security_inode_alloc+0x3b/0x2b0
[ 1251.596253][T26818]  security_inode_alloc+0x3b/0x2b0
[ 1251.596291][T26818]  inode_init_always_gfp+0xce4/0x1030
[ 1251.596350][T26818]  alloc_inode+0x86/0x240
[ 1251.596390][T26818]  new_inode+0x22/0x1c0
[ 1251.596434][T26818]  proc_sys_make_inode+0x47/0x5c0
[ 1251.596472][T26818]  proc_sys_lookup+0x282/0x410
[ 1251.596508][T26818]  ? __pfx_proc_sys_lookup+0x10/0x10
[ 1251.596548][T26818]  ? lockdep_init_map_type+0x5c/0x280
[ 1251.596595][T26818]  ? lockdep_init_map_type+0x5c/0x280
[ 1251.596648][T26818]  __lookup_slow+0x24e/0x460
[ 1251.596692][T26818]  ? __pfx___lookup_slow+0x10/0x10
[ 1251.596769][T26818]  ? lookup_fast+0x156/0x610
[ 1251.596813][T26818]  ? _raw_spin_unlock+0x28/0x50
[ 1251.596853][T26818]  walk_component+0x353/0x5b0
[ 1251.596913][T26818]  link_path_walk.part.0.constprop.0+0x685/0xd60
[ 1251.596979][T26818]  path_openat+0x227/0x2d40
[ 1251.597007][T26818]  ? __x64_sys_openat+0x174/0x210
[ 1251.597067][T26818]  ? __pfx_path_openat+0x10/0x10
[ 1251.597110][T26818]  do_filp_open+0x20b/0x470
[ 1251.597142][T26818]  ? __pfx_do_filp_open+0x10/0x10
[ 1251.597204][T26818]  ? alloc_fd+0x471/0x7d0
[ 1251.597265][T26818]  do_sys_openat2+0x11b/0x1d0
[ 1251.597306][T26818]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1251.597347][T26818]  ? __sock_release+0x20b/0x270
[ 1251.597400][T26818]  __x64_sys_openat+0x174/0x210
[ 1251.597444][T26818]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1251.597491][T26818]  ? rcu_is_watching+0x12/0xc0
[ 1251.597533][T26818]  do_syscall_64+0xcd/0x230
[ 1251.597581][T26818]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1251.597614][T26818] RIP: 0033:0x7f89e238e969
[ 1251.597642][T26818] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1251.597677][T26818] RSP: 002b:00007f89e329d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1251.597709][T26818] RAX: ffffffffffffffda RBX: 00007f89e25b5fa0 RCX: 00007f89e238e969
[ 1251.597732][T26818] RDX: 00000000001a3000 RSI: 0000200000000040 RDI: ffffffffffffff9c
[ 1251.597754][T26818] RBP: 00007f89e2410ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1251.597775][T26818] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1251.597796][T26818] R13: 0000000000000000 R14: 00007f89e25b5fa0 R15: 00007ffdafabd988
[ 1251.597839][T26818]  </TASK>
[ 1252.127066][T26814] random: crng reseeded on system resumption
[ 1254.269664][T26850] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4675'.
[ 1254.941697][T15801] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260
[ 1254.941803][T15801] Bluetooth: hci3: unexpected subevent 0x0d length: 725 > 260
[ 1254.957226][T15801] Bluetooth: hci3: Unknown advertising packet type: 0x7f
[ 1254.957293][T15801] Bluetooth: hci3: adv larger than maximum supported
[ 1254.968209][T15801] Bluetooth: hci3: Malformed LE Event: 0x0d
[ 1255.492509][T26865] FAULT_INJECTION: forcing a failure.
[ 1255.492509][T26865] name failslab, interval 1, probability 0, space 0, times 0
[ 1255.505875][T26865] CPU: 0 UID: 0 PID: 26865 Comm: syz.0.4678 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[ 1255.505928][T26865] Tainted: [U]=USER
[ 1255.505940][T26865] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1255.505961][T26865] Call Trace:
[ 1255.505972][T26865]  <TASK>
[ 1255.505985][T26865]  dump_stack_lvl+0x16c/0x1f0
[ 1255.506035][T26865]  should_fail_ex+0x512/0x640
[ 1255.506079][T26865]  ? __kmalloc_cache_noprof+0x57/0x3e0
[ 1255.506139][T26865]  should_failslab+0xc2/0x120
[ 1255.506180][T26865]  __kmalloc_cache_noprof+0x6a/0x3e0
[ 1255.506236][T26865]  ? pedit_init_net+0x135/0x500
[ 1255.506282][T26865]  pedit_init_net+0x135/0x500
[ 1255.506331][T26865]  ? __pfx_pedit_init_net+0x10/0x10
[ 1255.506369][T26865]  ops_init+0x1df/0x5f0
[ 1255.506412][T26865]  setup_net+0x21e/0x850
[ 1255.506456][T26865]  ? __pfx_setup_net+0x10/0x10
[ 1255.506492][T26865]  ? lockdep_init_map_type+0x5c/0x280
[ 1255.506538][T26865]  ? __pfx_down_read_killable+0x10/0x10
[ 1255.506594][T26865]  ? debug_mutex_init+0x37/0x70
[ 1255.506652][T26865]  copy_net_ns+0x2a6/0x5f0
[ 1255.506700][T26865]  create_new_namespaces+0x3ea/0xad0
[ 1255.506747][T26865]  unshare_nsproxy_namespaces+0xc0/0x1f0
[ 1255.506789][T26865]  ksys_unshare+0x45b/0xa40
[ 1255.506835][T26865]  ? __pfx_ksys_unshare+0x10/0x10
[ 1255.506878][T26865]  ? xfd_validate_state+0x5d/0x180
[ 1255.506934][T26865]  ? rcu_is_watching+0x12/0xc0
[ 1255.506976][T26865]  __x64_sys_unshare+0x31/0x40
[ 1255.507020][T26865]  do_syscall_64+0xcd/0x230
[ 1255.507067][T26865]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1255.507101][T26865] RIP: 0033:0x7f067c58e969
[ 1255.507127][T26865] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1255.507159][T26865] RSP: 002b:00007f067d344038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1255.507190][T26865] RAX: ffffffffffffffda RBX: 00007f067c7b5fa0 RCX: 00007f067c58e969
[ 1255.507212][T26865] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 1255.507233][T26865] RBP: 00007f067c610ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1255.507254][T26865] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1255.507275][T26865] R13: 0000000000000000 R14: 00007f067c7b5fa0 R15: 00007ffd47660fe8
[ 1255.507331][T26865]  </TASK>
[ 1257.307883][T26883] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1257.314239][T26883] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1257.325514][T26883] Bluetooth: hci1: Opcode 0x0406 failed: -4
[ 1257.385859][T26883] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1257.405509][T26883] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1257.700690][T26878] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4680'.
[ 1257.829123][T26901] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4684'.
[ 1258.835860][T15801] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1259.316421][T15801] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1259.396035][T15801] Bluetooth: hci2: command 0x0419 tx timeout
[ 1259.476321][T15801] Bluetooth: hci3: command 0x0406 tx timeout
[ 1260.452796][ T8163] EXT4-fs (sda1): Delayed block allocation failed for inode 1930 at logical offset 1380 with max blocks 9 with error 117
[ 1260.524709][T26935] ICMPv6: process `syz.2.4691' is using deprecated sysctl (syscall) net.ipv6.neigh.wg1.retrans_time - use net.ipv6.neigh.wg1.retrans_time_ms instead
[ 1260.542825][ T8163] EXT4-fs (sda1): This should not happen!! Data will be lost
[ 1260.542825][ T8163] 
[ 1260.659815][T26917] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1260.678302][T26917] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1260.686559][T26917] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1260.703026][T26917] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1261.858320][T26943] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1261.898863][T26943] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1261.927594][T26943] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1261.933824][T26943] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1262.298012][T26961] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4696'.
[ 1263.238037][ T5829] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1263.337137][T26974] netlink: 'syz.0.4698': attribute type 13 has an invalid length.
[ 1263.421172][T26976] FAULT_INJECTION: forcing a failure.
[ 1263.421172][T26976] name failslab, interval 1, probability 0, space 0, times 0
[ 1263.504897][T26976] CPU: 0 UID: 0 PID: 26976 Comm: syz.4.4708 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[ 1263.504953][T26976] Tainted: [U]=USER
[ 1263.504964][T26976] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1263.504983][T26976] Call Trace:
[ 1263.504994][T26976]  <TASK>
[ 1263.505007][T26976]  dump_stack_lvl+0x16c/0x1f0
[ 1263.505056][T26976]  should_fail_ex+0x512/0x640
[ 1263.505109][T26976]  should_failslab+0xc2/0x120
[ 1263.505149][T26976]  __kmalloc_cache_noprof+0x6a/0x3e0
[ 1263.505202][T26976]  ? minstrel_ht_alloc+0x4f/0x980
[ 1263.505255][T26976]  minstrel_ht_alloc+0x4f/0x980
[ 1263.505312][T26976]  ieee80211_init_rate_ctrl_alg+0x209/0x6b0
[ 1263.505369][T26976]  ieee80211_register_hw+0x20aa/0x4020
[ 1263.505426][T26976]  ? __pfx__raw_spin_unlock_bh+0x1/0x10
[ 1263.505465][T26976]  ? __debug_object_init+0x201/0x3d0
[ 1263.505504][T26976]  ? __pfx_ieee80211_register_hw+0x10/0x10
[ 1263.505562][T26976]  ? find_held_lock+0x2b/0x80
[ 1263.505595][T26976]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1263.505642][T26976]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[ 1263.505686][T26976]  ? __hrtimer_setup+0x176/0x280
[ 1263.505738][T26976]  mac80211_hwsim_new_radio+0x3034/0x54d0
[ 1263.505815][T26976]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[ 1263.505879][T26976]  hwsim_new_radio_nl+0xb51/0x12c0
[ 1263.505933][T26976]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[ 1263.505994][T26976]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[ 1263.506043][T26976]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[ 1263.506099][T26976]  genl_family_rcv_msg_doit+0x206/0x2f0
[ 1263.506149][T26976]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1263.506195][T26976]  ? trace_cap_capable+0x18d/0x200
[ 1263.506237][T26976]  ? bpf_lsm_capable+0x9/0x10
[ 1263.506271][T26976]  ? security_capable+0x7e/0x260
[ 1263.506326][T26976]  ? ns_capable+0xd7/0x110
[ 1263.506364][T26976]  genl_rcv_msg+0x55c/0x800
[ 1263.506413][T26976]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1263.506457][T26976]  ? __pfx___dev_queue_xmit+0x10/0x10
[ 1263.506512][T26976]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[ 1263.506565][T26976]  ? __lock_acquire+0xaa4/0x1ba0
[ 1263.506615][T26976]  netlink_rcv_skb+0x16a/0x440
[ 1263.506654][T26976]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1263.506711][T26976]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1263.506773][T26976]  ? __pfx_down_read+0x10/0x10
[ 1263.506822][T26976]  ? netlink_deliver_tap+0x1ae/0xd30
[ 1263.506863][T26976]  genl_rcv+0x28/0x40
[ 1263.506901][T26976]  netlink_unicast+0x53a/0x7f0
[ 1263.506945][T26976]  ? __pfx_netlink_unicast+0x10/0x10
[ 1263.506981][T26976]  ? __lock_acquire+0xaa4/0x1ba0
[ 1263.507035][T26976]  netlink_sendmsg+0x8d1/0xdd0
[ 1263.507082][T26976]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1263.507137][T26976]  ____sys_sendmsg+0xa95/0xc70
[ 1263.507185][T26976]  ? copy_msghdr_from_user+0x10a/0x160
[ 1263.507221][T26976]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1263.507287][T26976]  ___sys_sendmsg+0x134/0x1d0
[ 1263.507325][T26976]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1263.507417][T26976]  __sys_sendmsg+0x16d/0x220
[ 1263.507453][T26976]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1263.507488][T26976]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1263.507536][T26976]  ? rcu_is_watching+0x12/0xc0
[ 1263.507579][T26976]  do_syscall_64+0xcd/0x230
[ 1263.507625][T26976]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1263.507657][T26976] RIP: 0033:0x7fbc9258e969
[ 1263.507704][T26976] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1263.507736][T26976] RSP: 002b:00007fbc933e6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1263.507768][T26976] RAX: ffffffffffffffda RBX: 00007fbc927b5fa0 RCX: 00007fbc9258e969
[ 1263.507791][T26976] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000006
[ 1263.507813][T26976] RBP: 00007fbc92610ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1263.507834][T26976] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1263.507855][T26976] R13: 0000000000000000 R14: 00007fbc927b5fa0 R15: 00007ffe816e6e08
[ 1263.507895][T26976]  </TASK>
[ 1263.939102][T26976] ieee80211 phy64: Failed to select rate control algorithm
[ 1263.959050][ T5829] Bluetooth: hci3: command 0x0406 tx timeout
[ 1263.959070][T15801] Bluetooth: hci2: command 0x0419 tx timeout
[ 1263.965145][ T5829] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1265.093986][T26992] Invalid ELF header magic: != ELF
[ 1267.639160][T27013] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1267.657304][T27013] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1267.677613][T27013] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1267.696118][T27013] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1269.241670][T27028] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1269.281481][T27028] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1269.296282][T27028] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1269.342964][T27028] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1270.282290][ T5829] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1270.389676][T27053] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4710'.
[ 1271.322937][ T5829] Bluetooth: hci2: command 0x0419 tx timeout
[ 1271.322964][T15801] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1271.402177][T15801] Bluetooth: hci3: command 0x0406 tx timeout
[ 1271.578633][T27057] tipc: Started in network mode
[ 1271.587020][T27057] tipc: Node identity ee00, cluster identity 4711
[ 1271.606969][T27057] tipc: Node number set to 60928
[ 1272.372966][T27071] sysfs_service_op_store: Client not running :-5:
[ 1274.796868][T27089] blk_print_req_error: 6 callbacks suppressed
[ 1274.796893][T27089] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1274.844935][T27089] buffer_io_error: 6 callbacks suppressed
[ 1274.844960][T27089] Buffer I/O error on dev nbd0, logical block 0, async page read
[ 1274.923999][T27089] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1274.996453][T27089] Buffer I/O error on dev nbd0, logical block 0, async page read
[ 1275.036981][T27089] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1275.076926][T27089] Buffer I/O error on dev nbd0, logical block 0, async page read
[ 1275.099562][T27098] Invalid ELF header magic: != ELF
[ 1275.111060][T27089] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1275.161385][T27089] Buffer I/O error on dev nbd0, logical block 0, async page read
[ 1275.219922][T27089] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1275.280445][T27089] Buffer I/O error on dev nbd0, logical block 0, async page read
[ 1275.375647][T27089] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1275.432722][T27089] Buffer I/O error on dev nbd0, logical block 0, async page read
[ 1275.488829][T27089] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1275.554028][T27089] Buffer I/O error on dev nbd0, logical block 0, async page read
[ 1275.614210][T27089] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1275.673366][T27089] Buffer I/O error on dev nbd0, logical block 0, async page read
[ 1275.716233][T27089] ldm_validate_partition_table(): Disk read failed.
[ 1275.723485][T27089] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1275.804485][T27089] Buffer I/O error on dev nbd0, logical block 0, async page read
[ 1275.844328][T27089] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1275.868062][T27095] Invalid ELF header magic: != ELF
[ 1275.916759][T27089] Buffer I/O error on dev nbd0, logical block 0, async page read
[ 1275.959624][T27089] Dev nbd0: unable to read RDB block 0
[ 1276.003057][T27089]  nbd0: unable to read partition table
[ 1276.298433][ T5829] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1276.335589][ T5829] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1276.347519][ T5829] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1276.371468][ T5829] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1276.379454][ T5829] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1277.461952][T27107] chnl_net:caif_netlink_parms(): no params data found
[ 1277.611588][   T13] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1277.759104][   T13] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1277.912054][T27128] tipc: Started in network mode
[ 1277.931900][T27128] tipc: Node identity ee00, cluster identity 4711
[ 1277.952929][T27128] tipc: Node number set to 60928
[ 1278.024118][   T13] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1278.292311][T27107] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1278.301151][T27107] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1278.330404][T27107] bridge_slave_0: entered allmulticast mode
[ 1278.361434][T27107] bridge_slave_0: entered promiscuous mode
[ 1278.453701][ T5829] Bluetooth: hci0: command tx timeout
[ 1278.484826][   T13] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1278.629925][T27107] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1278.630013][T27107] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1278.630183][T27107] bridge_slave_1: entered allmulticast mode
[ 1278.631673][T27107] bridge_slave_1: entered promiscuous mode
[ 1278.684729][T27107] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1278.688956][T27107] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1278.967605][T27107] team0: Port device team_slave_0 added
[ 1279.019769][T27107] team0: Port device team_slave_1 added
[ 1279.072582][T27107] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1279.072603][T27107] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1279.072633][T27107] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1279.074189][T27107] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1279.074209][T27107] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1279.074249][T27107] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1279.242257][T27107] hsr_slave_0: entered promiscuous mode
[ 1279.243236][T27107] hsr_slave_1: entered promiscuous mode
[ 1279.895612][   T13] bridge_slave_1: left allmulticast mode
[ 1279.895690][   T13] bridge_slave_1: left promiscuous mode
[ 1279.895921][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1279.917600][   T13] bridge_slave_0: left allmulticast mode
[ 1279.917634][   T13] bridge_slave_0: left promiscuous mode
[ 1279.917870][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1280.526709][ T5829] Bluetooth: hci0: command tx timeout
[ 1281.815011][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1281.831033][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1281.844152][   T13] bond0 (unregistering): Released all slaves
[ 1282.108726][   T13] tipc: Left network mode
[ 1282.617755][ T5829] Bluetooth: hci0: command tx timeout
[ 1282.618940][T27166] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input24
[ 1283.779812][   T13] hsr_slave_0: left promiscuous mode
[ 1283.814391][   T13] hsr_slave_1: left promiscuous mode
[ 1283.838876][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1283.846749][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1283.932551][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1283.974982][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1284.057923][   T13] veth1_vlan: left promiscuous mode
[ 1284.081104][   T13] veth0_vlan: left promiscuous mode
[ 1284.430989][T27194] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[ 1284.545010][T27199] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[ 1284.582070][T27199] random: crng reseeded on system resumption
[ 1284.689150][ T5829] Bluetooth: hci0: command tx timeout
[ 1285.015919][T27182] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4746'.
[ 1286.548344][   T13] team0 (unregistering): Port device team_slave_1 removed
[ 1286.797590][   T13] team0 (unregistering): Port device team_slave_0 removed
[ 1286.874997][T27237] blk_print_req_error: 6 callbacks suppressed
[ 1286.875022][T27237] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1286.897291][T27237] buffer_io_error: 6 callbacks suppressed
[ 1286.897312][T27237] Buffer I/O error on dev nbd0, logical block 0, async page read
[ 1286.916132][T27237] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1286.928715][T27237] Buffer I/O error on dev nbd0, logical block 0, async page read
[ 1286.946014][T27237] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1286.958426][T27237] Buffer I/O error on dev nbd0, logical block 0, async page read
[ 1286.974875][T27237] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1286.984160][T27237] Buffer I/O error on dev nbd0, logical block 0, async page read
[ 1286.997433][T27237] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1287.009118][T27237] Buffer I/O error on dev nbd0, logical block 0, async page read
[ 1287.017334][T27237] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1287.040703][T27237] Buffer I/O error on dev nbd0, logical block 0, async page read
[ 1287.049176][T27237] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1287.063964][T27237] Buffer I/O error on dev nbd0, logical block 0, async page read
[ 1287.073714][T27237] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1287.083161][T27237] Buffer I/O error on dev nbd0, logical block 0, async page read
[ 1287.101426][T27237] ldm_validate_partition_table(): Disk read failed.
[ 1287.108356][T27237] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1287.127277][T27237] Buffer I/O error on dev nbd0, logical block 0, async page read
[ 1287.151145][T27237] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1287.163258][T27237] Buffer I/O error on dev nbd0, logical block 0, async page read
[ 1287.175739][T27237] Dev nbd0: unable to read RDB block 0
[ 1287.182205][T27237]  nbd0: unable to read partition table
[ 1288.082592][T27107] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 1288.189188][T27107] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 1288.229110][T27107] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 1288.313946][T27107] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 1288.690552][ T5829] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[ 1288.727210][T27107] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1288.750080][T27107] 8021q: adding VLAN 0 to HW filter on device team0
[ 1288.766080][T14589] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1288.773303][T14589] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1288.808529][T14589] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1288.815797][T14589] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1289.161746][T27107] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1289.240047][T27107] veth0_vlan: entered promiscuous mode
[ 1289.267354][T27107] veth1_vlan: entered promiscuous mode
[ 1289.317272][T27107] veth0_macvtap: entered promiscuous mode
[ 1289.329516][T27107] veth1_macvtap: entered promiscuous mode
[ 1289.359916][T27107] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1289.371144][T27107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1289.382567][T27107] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1289.393090][T27107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1289.404684][T27107] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1289.415528][T27107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1289.428287][T27107] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1289.444766][T27107] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1289.456152][T27107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1289.466940][T27107] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1289.477808][T27107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1289.487866][T27107] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1289.498598][T27107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1289.515333][T27107] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1289.533469][T27107] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1289.542391][T27107] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1289.554136][T27107] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1289.563059][T27107] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1289.670661][   T53] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1289.679248][   T53] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1289.716083][T14589] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1289.726468][T14589] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1290.037244][T27265] FAULT_INJECTION: forcing a failure.
[ 1290.037244][T27265] name failslab, interval 1, probability 0, space 0, times 0
[ 1290.117875][T27265] CPU: 1 UID: 0 PID: 27265 Comm: syz.2.4756 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[ 1290.117936][T27265] Tainted: [U]=USER
[ 1290.117949][T27265] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1290.117968][T27265] Call Trace:
[ 1290.117980][T27265]  <TASK>
[ 1290.117993][T27265]  dump_stack_lvl+0x16c/0x1f0
[ 1290.118043][T27265]  should_fail_ex+0x512/0x640
[ 1290.118090][T27265]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1290.118132][T27265]  should_failslab+0xc2/0x120
[ 1290.118175][T27265]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1290.118211][T27265]  ? __proc_create+0xc3/0x8c0
[ 1290.118248][T27265]  ? __proc_create+0x2ce/0x8c0
[ 1290.118289][T27265]  __proc_create+0x2ce/0x8c0
[ 1290.118328][T27265]  ? __pfx___proc_create+0x10/0x10
[ 1290.118362][T27265]  ? __register_sysctl_table+0x736/0x1900
[ 1290.118408][T27265]  ? _raw_spin_unlock+0x28/0x50
[ 1290.118451][T27265]  proc_create_reg+0x7d/0x180
[ 1290.118493][T27265]  proc_create_net_data+0x8e/0x1b0
[ 1290.118532][T27265]  ? __pfx_proc_create_net_data+0x10/0x10
[ 1290.118609][T27265]  ? __pfx_arp_net_init+0x10/0x10
[ 1290.118656][T27265]  arp_net_init+0x53/0x70
[ 1290.118696][T27265]  ops_init+0x1df/0x5f0
[ 1290.118738][T27265]  setup_net+0x21e/0x850
[ 1290.118781][T27265]  ? __pfx_setup_net+0x10/0x10
[ 1290.118816][T27265]  ? lockdep_init_map_type+0x5c/0x280
[ 1290.118861][T27265]  ? __pfx_down_read_killable+0x10/0x10
[ 1290.118917][T27265]  ? debug_mutex_init+0x37/0x70
[ 1290.118975][T27265]  copy_net_ns+0x2a6/0x5f0
[ 1290.119021][T27265]  create_new_namespaces+0x3ea/0xad0
[ 1290.119068][T27265]  unshare_nsproxy_namespaces+0xc0/0x1f0
[ 1290.119108][T27265]  ksys_unshare+0x45b/0xa40
[ 1290.119154][T27265]  ? __pfx_ksys_unshare+0x10/0x10
[ 1290.119196][T27265]  ? xfd_validate_state+0x5d/0x180
[ 1290.119251][T27265]  ? rcu_is_watching+0x12/0xc0
[ 1290.119292][T27265]  __x64_sys_unshare+0x31/0x40
[ 1290.119336][T27265]  do_syscall_64+0xcd/0x230
[ 1290.119383][T27265]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1290.119418][T27265] RIP: 0033:0x7f784818e969
[ 1290.119444][T27265] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1290.119478][T27265] RSP: 002b:00007f784908c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1290.119511][T27265] RAX: ffffffffffffffda RBX: 00007f78483b5fa0 RCX: 00007f784818e969
[ 1290.119534][T27265] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 1290.119554][T27265] RBP: 00007f7848210ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1290.119576][T27265] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1290.119597][T27265] R13: 0000000000000000 R14: 00007f78483b5fa0 R15: 00007fff11d4e5b8
[ 1290.119647][T27265]  </TASK>
[ 1290.898957][   T13] EXT4-fs (sda1): Delayed block allocation failed for inode 1930 at logical offset 1385 with max blocks 4 with error 117
[ 1290.933025][   T13] EXT4-fs (sda1): This should not happen!! Data will be lost
[ 1290.933025][   T13] 
[ 1291.630746][T27285] page: refcount:5 mapcount:4 mapping:0000000000000000 index:0x0 pfn:0x78000
[ 1291.650028][T27285] flags: 0xfff00000000014(referenced|dirty|node=0|zone=1|lastcpupid=0x7ff)
[ 1291.696011][T27285] raw: 00fff00000000014 0000000000000000 dead000000000122 0000000000000000
[ 1291.758414][T27285] raw: 0000000000000000 0000000000000000 0000000500000003 0000000000000000
[ 1291.840163][T27287] could not allocate digest TFM handle binfmt_misc
[ 1291.860091][T27285] page dumped because: unmovable page
[ 1291.874938][T27285] page_owner tracks the page as allocated
[ 1291.880742][T27285] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2dc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), pid 27101, tgid 27101 (syz-executor), ts 1275817812652, free_ts 1236746730001
[ 1291.937762][T27285]  post_alloc_hook+0x181/0x1b0
[ 1292.009647][T27285]  get_page_from_freelist+0x135c/0x3920
[ 1292.035090][T27285]  __alloc_frozen_pages_noprof+0x263/0x23a0
[ 1292.074657][T27285]  alloc_pages_mpol+0x1fb/0x550
[ 1292.079630][T27285]  alloc_pages_noprof+0x131/0x390
[ 1292.166433][T27285]  __vmalloc_node_range_noprof+0x732/0x1540
[ 1292.215660][T27285]  vmalloc_user_noprof+0x6b/0x90
[ 1292.233417][T27285]  kcov_ioctl+0x4c/0x730
[ 1292.237771][T27285]  __x64_sys_ioctl+0x190/0x200
[ 1292.248981][T27285]  do_syscall_64+0xcd/0x230
[ 1292.271868][T27285]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1292.279051][T27285] page last free pid 16314 tgid 16314 stack trace:
[ 1292.380811][T27285]  __free_frozen_pages+0x69d/0xff0
[ 1292.432418][T27285]  pcpu_free_pages.constprop.0+0x126/0x210
[ 1292.442611][T27285]  pcpu_balance_workfn+0x26b/0xe00
[ 1292.452452][T27285]  process_one_work+0x9cc/0x1b70
[ 1292.472446][T27285]  worker_thread+0x6c8/0xf10
[ 1292.477158][T27285]  kthread+0x3c2/0x780
[ 1292.481305][T27285]  ret_from_fork+0x45/0x80
[ 1292.632861][T27285]  ret_from_fork_asm+0x1a/0x30
[ 1294.944541][T27326] random: crng reseeded on system resumption
[ 1295.077235][T27328] FAULT_INJECTION: forcing a failure.
[ 1295.077235][T27328] name failslab, interval 1, probability 0, space 0, times 0
[ 1295.203880][T27328] CPU: 1 UID: 0 PID: 27328 Comm: syz.0.4762 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[ 1295.203940][T27328] Tainted: [U]=USER
[ 1295.203953][T27328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1295.203972][T27328] Call Trace:
[ 1295.203984][T27328]  <TASK>
[ 1295.203997][T27328]  dump_stack_lvl+0x16c/0x1f0
[ 1295.204047][T27328]  should_fail_ex+0x512/0x640
[ 1295.204093][T27328]  ? __kmalloc_noprof+0xbf/0x510
[ 1295.204134][T27328]  ? __register_sysctl_table+0xb3/0x1900
[ 1295.204170][T27328]  should_failslab+0xc2/0x120
[ 1295.204220][T27328]  __kmalloc_noprof+0xd2/0x510
[ 1295.204267][T27328]  __register_sysctl_table+0xb3/0x1900
[ 1295.204305][T27328]  ? is_module_address+0x5f/0xf0
[ 1295.204355][T27328]  ? __pfx___register_sysctl_table+0x10/0x10
[ 1295.204392][T27328]  ? is_module_address+0x69/0xf0
[ 1295.204436][T27328]  ? register_net_sysctl_sz+0x228/0x3e0
[ 1295.204487][T27328]  ? __asan_memcpy+0x3c/0x60
[ 1295.204543][T27328]  sysctl_core_net_init+0xe3/0x280
[ 1295.204595][T27328]  ? __pfx_sysctl_core_net_init+0x10/0x10
[ 1295.204645][T27328]  ops_init+0x1df/0x5f0
[ 1295.204688][T27328]  setup_net+0x21e/0x850
[ 1295.204729][T27328]  ? __pfx_setup_net+0x10/0x10
[ 1295.204764][T27328]  ? lockdep_init_map_type+0x5c/0x280
[ 1295.204809][T27328]  ? __pfx_down_read_killable+0x10/0x10
[ 1295.204862][T27328]  ? debug_mutex_init+0x37/0x70
[ 1295.204919][T27328]  copy_net_ns+0x2a6/0x5f0
[ 1295.204964][T27328]  create_new_namespaces+0x3ea/0xad0
[ 1295.205011][T27328]  unshare_nsproxy_namespaces+0xc0/0x1f0
[ 1295.205052][T27328]  ksys_unshare+0x45b/0xa40
[ 1295.205095][T27328]  ? __pfx_ksys_unshare+0x10/0x10
[ 1295.205137][T27328]  ? xfd_validate_state+0x5d/0x180
[ 1295.205203][T27328]  ? rcu_is_watching+0x12/0xc0
[ 1295.205244][T27328]  __x64_sys_unshare+0x31/0x40
[ 1295.205289][T27328]  do_syscall_64+0xcd/0x230
[ 1295.205337][T27328]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1295.205371][T27328] RIP: 0033:0x7f067c58e969
[ 1295.205399][T27328] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1295.205433][T27328] RSP: 002b:00007f067d344038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1295.205467][T27328] RAX: ffffffffffffffda RBX: 00007f067c7b5fa0 RCX: 00007f067c58e969
[ 1295.205491][T27328] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 1295.205511][T27328] RBP: 00007f067c610ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1295.205533][T27328] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1295.205551][T27328] R13: 0000000000000000 R14: 00007f067c7b5fa0 R15: 00007ffd47660fe8
[ 1295.205594][T27328]  </TASK>
[ 1295.660602][ T5829] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[ 1297.790031][T27375] busy
[ 1298.250551][T27386] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[ 1299.492538][T27397] netlink: Conntrack attr type has unexpected length (type=3, length=0, expected=8)
[ 1299.645561][T27405] FAULT_INJECTION: forcing a failure.
[ 1299.645561][T27405] name failslab, interval 1, probability 0, space 0, times 0
[ 1299.776669][T27405] CPU: 1 UID: 0 PID: 27405 Comm: syz.4.4775 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[ 1299.776730][T27405] Tainted: [U]=USER
[ 1299.776742][T27405] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1299.776762][T27405] Call Trace:
[ 1299.776773][T27405]  <TASK>
[ 1299.776786][T27405]  dump_stack_lvl+0x16c/0x1f0
[ 1299.776837][T27405]  should_fail_ex+0x512/0x640
[ 1299.776881][T27405]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[ 1299.776935][T27405]  should_failslab+0xc2/0x120
[ 1299.776976][T27405]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[ 1299.777015][T27405]  ? devinet_init_net+0x9c/0x910
[ 1299.777056][T27405]  ? __pfx_devinet_init_net+0x10/0x10
[ 1299.777096][T27405]  kmemdup_noprof+0x29/0x60
[ 1299.777136][T27405]  devinet_init_net+0x9c/0x910
[ 1299.777178][T27405]  ? __pfx_devinet_init_net+0x10/0x10
[ 1299.777216][T27405]  ops_init+0x1df/0x5f0
[ 1299.777257][T27405]  setup_net+0x21e/0x850
[ 1299.777298][T27405]  ? __pfx_setup_net+0x10/0x10
[ 1299.777334][T27405]  ? lockdep_init_map_type+0x5c/0x280
[ 1299.777377][T27405]  ? __pfx_down_read_killable+0x10/0x10
[ 1299.777431][T27405]  ? debug_mutex_init+0x37/0x70
[ 1299.777488][T27405]  copy_net_ns+0x2a6/0x5f0
[ 1299.777535][T27405]  create_new_namespaces+0x3ea/0xad0
[ 1299.777580][T27405]  unshare_nsproxy_namespaces+0xc0/0x1f0
[ 1299.777617][T27405]  ksys_unshare+0x45b/0xa40
[ 1299.777659][T27405]  ? __pfx_ksys_unshare+0x10/0x10
[ 1299.777700][T27405]  ? xfd_validate_state+0x5d/0x180
[ 1299.777754][T27405]  ? rcu_is_watching+0x12/0xc0
[ 1299.777793][T27405]  __x64_sys_unshare+0x31/0x40
[ 1299.777858][T27405]  do_syscall_64+0xcd/0x230
[ 1299.777921][T27405]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1299.777955][T27405] RIP: 0033:0x7fbc9258e969
[ 1299.777984][T27405] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1299.778019][T27405] RSP: 002b:00007fbc933c5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1299.778052][T27405] RAX: ffffffffffffffda RBX: 00007fbc927b6080 RCX: 00007fbc9258e969
[ 1299.778075][T27405] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 1299.778096][T27405] RBP: 00007fbc92610ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1299.778117][T27405] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1299.778137][T27405] R13: 0000000000000000 R14: 00007fbc927b6080 R15: 00007ffe816e6e08
[ 1299.778180][T27405]  </TASK>
[ 1300.026299][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1300.390559][T27412] can: request_module (can-proto-3) failed.
[ 1305.424524][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[ 1305.430905][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[ 1321.192254][T14589] EXT4-fs (sda1): Delayed block allocation failed for inode 1930 at logical offset 1385 with max blocks 4 with error 117
[ 1321.204982][T14589] EXT4-fs (sda1): This should not happen!! Data will be lost
[ 1321.204982][T14589] 
[ 1366.894093][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[ 1366.901747][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[ 1399.708381][T15801] Bluetooth: hci0: command 0x0406 tx timeout
[ 1428.364498][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[ 1428.373875][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[ 1462.937915][   T31] INFO: task jbd2/sda1-8:5162 blocked for more than 143 seconds.
[ 1462.946069][   T31]       Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0
[ 1462.955680][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1462.964788][   T31] task:jbd2/sda1-8     state:D stack:25992 pid:5162  tgid:5162  ppid:2      task_flags:0x240040 flags:0x00004000
[ 1462.977812][   T31] Call Trace:
[ 1462.981502][   T31]  <TASK>
[ 1462.984472][   T31]  __schedule+0x116f/0x5de0
[ 1462.989069][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[ 1462.994063][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[ 1462.999503][   T31]  ? __pfx___schedule+0x10/0x10
[ 1463.004417][   T31]  ? find_held_lock+0x2b/0x80
[ 1463.009198][   T31]  ? schedule+0x2d7/0x3a0
[ 1463.013582][   T31]  schedule+0xe7/0x3a0
[ 1463.017737][   T31]  io_schedule+0xbf/0x130
[ 1463.022108][   T31]  bit_wait_io+0x15/0xe0
[ 1463.026371][   T31]  __wait_on_bit+0x62/0x180
[ 1463.030952][   T31]  ? __pfx_bit_wait_io+0x10/0x10
[ 1463.035938][   T31]  out_of_line_wait_on_bit+0xd9/0x110
[ 1463.041412][   T31]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[ 1463.047444][   T31]  ? __pfx_wake_bit_function+0x10/0x10
[ 1463.053041][   T31]  ? __pfx___might_resched+0x10/0x10
[ 1463.058487][   T31]  __wait_on_buffer+0x64/0x70
[ 1463.063237][   T31]  jbd2_journal_commit_transaction+0x382e/0x6830
[ 1463.070060][   T31]  ? __pfx_jbd2_journal_commit_transaction+0x10/0x10
[ 1463.076803][   T31]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1463.083326][   T31]  ? debug_object_deactivate+0x1ec/0x3a0
[ 1463.089104][   T31]  ? __pfx_debug_object_deactivate+0x10/0x10
[ 1463.095152][   T31]  ? find_held_lock+0x2b/0x80
[ 1463.100235][   T31]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1463.106718][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1463.112029][   T31]  kjournald2+0x1f4/0x760
[ 1463.116429][   T31]  ? __pfx_kjournald2+0x10/0x10
[ 1463.121449][   T31]  ? find_held_lock+0x2b/0x80
[ 1463.126177][   T31]  ? __pfx_autoremove_wake_function+0x10/0x10
[ 1463.132317][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1463.137992][   T31]  ? __kthread_parkme+0x19e/0x250
[ 1463.143072][   T31]  ? __pfx_kjournald2+0x10/0x10
[ 1463.148054][   T31]  kthread+0x3c2/0x780
[ 1463.152176][   T31]  ? __pfx_kthread+0x10/0x10
[ 1463.157070][   T31]  ? __pfx_kthread+0x10/0x10
[ 1463.161844][   T31]  ? __pfx_kthread+0x10/0x10
[ 1463.166826][   T31]  ? __pfx_kthread+0x10/0x10
[ 1463.171559][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1463.176367][   T31]  ? __pfx_kthread+0x10/0x10
[ 1463.181087][   T31]  ret_from_fork+0x45/0x80
[ 1463.185801][   T31]  ? __pfx_kthread+0x10/0x10
[ 1463.190507][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1463.195354][   T31]  </TASK>
[ 1463.198465][   T31] INFO: task syz-executor:5816 blocked for more than 143 seconds.
[ 1463.206306][   T31]       Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0
[ 1463.215629][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1463.224750][   T31] task:syz-executor    state:D stack:22104 pid:5816  tgid:5816  ppid:5814   task_flags:0x440100 flags:0x00000002
[ 1463.237181][   T31] Call Trace:
[ 1463.240572][   T31]  <TASK>
[ 1463.243539][   T31]  __schedule+0x116f/0x5de0
[ 1463.248121][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[ 1463.253130][   T31]  ? __pfx___schedule+0x10/0x10
[ 1463.259600][   T31]  ? find_held_lock+0x2b/0x80
[ 1463.264334][   T31]  ? schedule+0x2d7/0x3a0
[ 1463.268773][   T31]  schedule+0xe7/0x3a0
[ 1463.273258][   T31]  io_schedule+0xbf/0x130
[ 1463.277606][   T31]  bit_wait_io+0x15/0xe0
[ 1463.281943][   T31]  __wait_on_bit+0x62/0x180
[ 1463.286843][   T31]  ? __pfx_bit_wait_io+0x10/0x10
[ 1463.291884][   T31]  out_of_line_wait_on_bit+0xd9/0x110
[ 1463.297306][   T31]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[ 1463.303383][   T31]  ? __pfx_wake_bit_function+0x10/0x10
[ 1463.308973][   T31]  do_get_write_access+0x93d/0x12a0
[ 1463.314209][   T31]  jbd2_journal_get_write_access+0x1d6/0x280
[ 1463.320318][   T31]  __ext4_journal_get_write_access+0x6a/0x340
[ 1463.326460][   T31]  ext4_reserve_inode_write+0x1be/0x320
[ 1463.332388][   T31]  __ext4_mark_inode_dirty+0x197/0x870
[ 1463.338496][   T31]  ? trace_kmem_cache_alloc+0x28/0xc0
[ 1463.343941][   T31]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[ 1463.350310][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1463.355147][   T31]  ? trace_jbd2_handle_start+0x1a8/0x230
[ 1463.361226][   T31]  ? jbd2__journal_start+0xf6/0x6a0
[ 1463.366484][   T31]  ? __ext4_journal_start_sb+0x195/0x690
[ 1463.372580][   T31]  ? __ext4_journal_start_sb+0x19e/0x690
[ 1463.378321][   T31]  ? ext4_dirty_inode+0xa1/0x130
[ 1463.383294][   T31]  ? __pfx_ext4_dirty_inode+0x10/0x10
[ 1463.389128][   T31]  ext4_dirty_inode+0xd9/0x130
[ 1463.393938][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1463.398806][   T31]  __mark_inode_dirty+0x1eb/0xe50
[ 1463.403900][   T31]  generic_update_time+0xcf/0xf0
[ 1463.408957][   T31]  file_update_time+0x17d/0x1c0
[ 1463.413850][   T31]  ext4_page_mkwrite+0x35e/0x1750
[ 1463.419034][   T31]  ? anon_pipe_read+0xc85/0x1210
[ 1463.424022][   T31]  ? __pfx_ext4_page_mkwrite+0x10/0x10
[ 1463.429863][   T31]  ? vm_normal_page+0x13b/0x2b0
[ 1463.434775][   T31]  ? find_held_lock+0x2b/0x80
[ 1463.439850][   T31]  ? find_held_lock+0x2b/0x80
[ 1463.444854][   T31]  do_page_mkwrite+0x171/0x380
[ 1463.449737][   T31]  do_wp_page+0xb9e/0x58e0
[ 1463.454212][   T31]  ? __pfx_do_wp_page+0x10/0x10
[ 1463.459356][   T31]  ? do_raw_spin_lock+0x12c/0x2b0
[ 1463.464736][   T31]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1463.470289][   T31]  ? ___pte_offset_map+0x1bc/0x540
[ 1463.475808][   T31]  __handle_mm_fault+0x1ada/0x2a40
[ 1463.481034][   T31]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1463.486539][   T31]  ? lock_vma_under_rcu+0x47d/0x970
[ 1463.492282][   T31]  ? lock_vma_under_rcu+0x47d/0x970
[ 1463.497564][   T31]  handle_mm_fault+0x3fe/0xad0
[ 1463.502572][   T31]  do_user_addr_fault+0x60c/0x1370
[ 1463.507754][   T31]  exc_page_fault+0x5c/0xc0
[ 1463.512397][   T31]  asm_exc_page_fault+0x26/0x30
[ 1463.517298][   T31] RIP: 0033:0x7f4ab5c689c5
[ 1463.521825][   T31] RSP: 002b:00007fff0692f970 EFLAGS: 00010202
[ 1463.527988][   T31] RAX: 00007f4ab2de6a9c RBX: 00007fff0692fa70 RCX: 0000000000000000
[ 1463.536002][   T31] RDX: 00007f4ab2de6a98 RSI: 0000000000000008 RDI: 00007fff0692fa70
[ 1463.544425][   T31] RBP: 00000000000003e6 R08: 0000000000000000 R09: 0000000000000000
[ 1463.552764][   T31] R10: 00007fff0692fa50 R11: 0000000000000000 R12: 0000000000000000
[ 1463.560849][   T31] R13: 0000000000019564 R14: fffffffffffe6a9c R15: 0000000000019564
[ 1463.569247][   T31]  </TASK>
[ 1463.572328][   T31] INFO: task syz.1.4778:27423 blocked for more than 143 seconds.
[ 1463.580472][   T31]       Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0
[ 1463.589828][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1463.598931][   T31] task:syz.1.4778      state:D stack:26488 pid:27423 tgid:27423 ppid:27107  task_flags:0x440040 flags:0x00000004
[ 1463.612725][   T31] Call Trace:
[ 1463.616061][   T31]  <TASK>
[ 1463.619394][   T31]  __schedule+0x116f/0x5de0
[ 1463.623997][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[ 1463.634891][   T31]  ? __pfx___schedule+0x10/0x10
[ 1463.641119][   T31]  ? find_held_lock+0x2b/0x80
[ 1463.646084][   T31]  ? schedule+0x2d7/0x3a0
[ 1463.652516][   T31]  schedule+0xe7/0x3a0
[ 1463.656664][   T31]  io_schedule+0xbf/0x130
[ 1463.661938][   T31]  bit_wait_io+0x15/0xe0
[ 1463.666250][   T31]  __wait_on_bit+0x62/0x180
[ 1463.671241][   T31]  ? __pfx_bit_wait_io+0x10/0x10
[ 1463.676239][   T31]  out_of_line_wait_on_bit+0xd9/0x110
[ 1463.682040][   T31]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[ 1463.688156][   T31]  ? __pfx_wake_bit_function+0x10/0x10
[ 1463.693767][   T31]  do_get_write_access+0x93d/0x12a0
[ 1463.699454][   T31]  jbd2_journal_get_write_access+0x1d6/0x280
[ 1463.705493][   T31]  __ext4_journal_get_write_access+0x6a/0x340
[ 1463.711668][   T31]  ext4_reserve_inode_write+0x1be/0x320
[ 1463.717279][   T31]  __ext4_mark_inode_dirty+0x197/0x870
[ 1463.722839][   T31]  ? trace_kmem_cache_alloc+0x28/0xc0
[ 1463.728347][   T31]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[ 1463.734384][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1463.739800][   T31]  ? trace_jbd2_handle_start+0x1a8/0x230
[ 1463.745504][   T31]  ? jbd2__journal_start+0xf6/0x6a0
[ 1463.751172][   T31]  ? __ext4_journal_start_sb+0x195/0x690
[ 1463.756872][   T31]  ? __ext4_journal_start_sb+0x19e/0x690
[ 1463.762613][   T31]  ? ext4_dirty_inode+0xa1/0x130
[ 1463.767616][   T31]  ? __pfx_ext4_dirty_inode+0x10/0x10
[ 1463.773756][   T31]  ext4_dirty_inode+0xd9/0x130
[ 1463.778656][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1463.783713][   T31]  __mark_inode_dirty+0x1eb/0xe50
[ 1463.788886][   T31]  generic_update_time+0xcf/0xf0
[ 1463.793869][   T31]  file_update_time+0x17d/0x1c0
[ 1463.799113][   T31]  ext4_page_mkwrite+0x35e/0x1750
[ 1463.804201][   T31]  ? __pfx_ext4_page_mkwrite+0x10/0x10
[ 1463.809784][   T31]  do_page_mkwrite+0x171/0x380
[ 1463.814605][   T31]  do_pte_missing+0x29c/0x3fb0
[ 1463.819485][   T31]  ? __handle_mm_fault+0x1010/0x2a40
[ 1463.824858][   T31]  __handle_mm_fault+0x103d/0x2a40
[ 1463.830077][   T31]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1463.835702][   T31]  ? lock_vma_under_rcu+0x47d/0x970
[ 1463.841017][   T31]  ? lock_vma_under_rcu+0x47d/0x970
[ 1463.846342][   T31]  handle_mm_fault+0x3fe/0xad0
[ 1463.851608][   T31]  do_user_addr_fault+0x60c/0x1370
[ 1463.856957][   T31]  exc_page_fault+0x5c/0xc0
[ 1463.861558][   T31]  asm_exc_page_fault+0x26/0x30
[ 1463.866460][   T31] RIP: 0033:0x7f9e2586eada
[ 1463.870982][   T31] RSP: 002b:00007fff42880280 EFLAGS: 00010202
[ 1463.877483][   T31] RAX: 0000001b31ec2000 RBX: 00007f9e266e5720 RCX: 0000001b31ec1ff8
[ 1463.886247][   T31] RDX: 0000001b31920220 RSI: 0000000000000008 RDI: 00007f9e266e5720
[ 1463.894330][   T31] RBP: ffffffff825a5719 R08: 00007f9e25bb6038 R09: 00007f9e25ba2000
[ 1463.902680][   T31] R10: 00007f9e24fff008 R11: 0000000000000003 R12: 0000000000000003
[ 1463.910782][   T31] R13: 0000000000000127 R14: ffffffff825a5ce5 R15: 000000000000017d
[ 1463.918902][   T31]  ? __xlate_proc_name+0x25/0x210
[ 1463.924066][   T31]  ? proc_getattr+0x79/0x130
[ 1463.928776][   T31]  </TASK>
[ 1463.931837][   T31] INFO: task syz.2.4781:27434 blocked for more than 144 seconds.
[ 1463.939654][   T31]       Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0
[ 1463.948934][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1463.957911][   T31] task:syz.2.4781      state:D stack:27416 pid:27434 tgid:27434 ppid:16784  task_flags:0x440040 flags:0x00000004
[ 1463.970088][   T31] Call Trace:
[ 1463.973389][   T31]  <TASK>
[ 1463.976619][   T31]  __schedule+0x116f/0x5de0
[ 1463.981269][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[ 1463.986600][   T31]  ? __pfx___schedule+0x10/0x10
[ 1463.992002][   T31]  ? find_held_lock+0x2b/0x80
[ 1463.996785][   T31]  ? schedule+0x2d7/0x3a0
[ 1464.001268][   T31]  schedule+0xe7/0x3a0
[ 1464.005687][   T31]  io_schedule+0xbf/0x130
[ 1464.010121][   T31]  bit_wait_io+0x15/0xe0
[ 1464.014431][   T31]  __wait_on_bit+0x62/0x180
[ 1464.019077][   T31]  ? __pfx_bit_wait_io+0x10/0x10
[ 1464.024077][   T31]  out_of_line_wait_on_bit+0xd9/0x110
[ 1464.029557][   T31]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[ 1464.035596][   T31]  ? __pfx_wake_bit_function+0x10/0x10
[ 1464.041151][   T31]  do_get_write_access+0x93d/0x12a0
[ 1464.046413][   T31]  jbd2_journal_get_write_access+0x1d6/0x280
[ 1464.052484][   T31]  __ext4_journal_get_write_access+0x6a/0x340
[ 1464.059368][   T31]  ext4_reserve_inode_write+0x1be/0x320
[ 1464.064990][   T31]  __ext4_mark_inode_dirty+0x197/0x870
[ 1464.070537][   T31]  ? trace_kmem_cache_alloc+0x28/0xc0
[ 1464.076027][   T31]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[ 1464.082517][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1464.087791][   T31]  ? trace_jbd2_handle_start+0x1a8/0x230
[ 1464.093888][   T31]  ? jbd2__journal_start+0xf6/0x6a0
[ 1464.099530][   T31]  ? __ext4_journal_start_sb+0x195/0x690
[ 1464.105501][   T31]  ? __ext4_journal_start_sb+0x19e/0x690
[ 1464.111783][   T31]  ? ext4_dirty_inode+0xa1/0x130
[ 1464.116785][   T31]  ? __pfx_ext4_dirty_inode+0x10/0x10
[ 1464.122295][   T31]  ext4_dirty_inode+0xd9/0x130
[ 1464.127442][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1464.132332][   T31]  __mark_inode_dirty+0x1eb/0xe50
[ 1464.137412][   T31]  generic_update_time+0xcf/0xf0
[ 1464.142594][   T31]  file_update_time+0x17d/0x1c0
[ 1464.147842][   T31]  ext4_page_mkwrite+0x35e/0x1750
[ 1464.153026][   T31]  ? __pfx_ext4_page_mkwrite+0x10/0x10
[ 1464.158634][   T31]  do_page_mkwrite+0x171/0x380
[ 1464.163450][   T31]  do_pte_missing+0x29c/0x3fb0
[ 1464.168298][   T31]  ? __handle_mm_fault+0x1010/0x2a40
[ 1464.173640][   T31]  __handle_mm_fault+0x103d/0x2a40
[ 1464.178922][   T31]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1464.184429][   T31]  ? lock_vma_under_rcu+0x47d/0x970
[ 1464.189766][   T31]  ? lock_vma_under_rcu+0x47d/0x970
[ 1464.195318][   T31]  handle_mm_fault+0x3fe/0xad0
[ 1464.200423][   T31]  do_user_addr_fault+0x60c/0x1370
[ 1464.206105][   T31]  exc_page_fault+0x5c/0xc0
[ 1464.211048][   T31]  asm_exc_page_fault+0x26/0x30
[ 1464.215984][   T31] RIP: 0033:0x7f784806eada
[ 1464.220620][   T31] RSP: 002b:00007fff11d4e5f0 EFLAGS: 00010202
[ 1464.226993][   T31] RAX: 0000001b2c403000 RBX: 00007f7848ee5720 RCX: 0000001b2c402ff8
[ 1464.235479][   T31] RDX: 0000001b2c020220 RSI: 0000000000000008 RDI: 00007f7848ee5720
[ 1464.244082][   T31] RBP: ffffffff893c05af R08: 00007f78483b6038 R09: 00007f78483a2000
[ 1464.252168][   T31] R10: 00007f78477ff008 R11: 0000000000000014 R12: 0000000000000014
[ 1464.260696][   T31] R13: 0000000000000117 R14: ffffffff893c0b27 R15: 000000000000017c
[ 1464.268778][   T31]  ? sk_alloc+0x787/0xc20
[ 1464.273151][   T31]  ? sk_alloc+0x20f/0xc20
[ 1464.277508][   T31]  </TASK>
[ 1464.280630][   T31] INFO: task syz.4.4782:27436 blocked for more than 144 seconds.
[ 1464.291078][   T31]       Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0
[ 1464.300938][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1464.309697][   T31] task:syz.4.4782      state:D stack:28104 pid:27436 tgid:27436 ppid:20283  task_flags:0x440040 flags:0x00000004
[ 1464.322334][   T31] Call Trace:
[ 1464.325654][   T31]  <TASK>
[ 1464.328757][   T31]  __schedule+0x116f/0x5de0
[ 1464.333338][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[ 1464.338498][   T31]  ? __pfx___schedule+0x10/0x10
[ 1464.343406][   T31]  ? find_held_lock+0x2b/0x80
[ 1464.348116][   T31]  ? schedule+0x2d7/0x3a0
[ 1464.352581][   T31]  schedule+0xe7/0x3a0
[ 1464.356711][   T31]  io_schedule+0xbf/0x130
[ 1464.361160][   T31]  bit_wait_io+0x15/0xe0
[ 1464.365793][   T31]  __wait_on_bit+0x62/0x180
[ 1464.370445][   T31]  ? __pfx_bit_wait_io+0x10/0x10
[ 1464.375432][   T31]  out_of_line_wait_on_bit+0xd9/0x110
[ 1464.380940][   T31]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[ 1464.387311][   T31]  ? __pfx_wake_bit_function+0x10/0x10
[ 1464.392909][   T31]  do_get_write_access+0x93d/0x12a0
[ 1464.398593][   T31]  jbd2_journal_get_write_access+0x1d6/0x280
[ 1464.404637][   T31]  __ext4_journal_get_write_access+0x6a/0x340
[ 1464.410823][   T31]  ext4_reserve_inode_write+0x1be/0x320
[ 1464.416707][   T31]  __ext4_mark_inode_dirty+0x197/0x870
[ 1464.422315][   T31]  ? trace_kmem_cache_alloc+0x28/0xc0
[ 1464.427750][   T31]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[ 1464.434163][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1464.439228][   T31]  ? trace_jbd2_handle_start+0x1a8/0x230
[ 1464.444974][   T31]  ? jbd2__journal_start+0xf6/0x6a0
[ 1464.450298][   T31]  ? __ext4_journal_start_sb+0x195/0x690
[ 1464.456010][   T31]  ? __ext4_journal_start_sb+0x19e/0x690
[ 1464.462178][   T31]  ? ext4_dirty_inode+0xa1/0x130
[ 1464.467855][   T31]  ? __pfx_ext4_dirty_inode+0x10/0x10
[ 1464.473926][   T31]  ext4_dirty_inode+0xd9/0x130
[ 1464.479033][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1464.483839][   T31]  __mark_inode_dirty+0x1eb/0xe50
[ 1464.489382][   T31]  generic_update_time+0xcf/0xf0
[ 1464.494412][   T31]  file_update_time+0x17d/0x1c0
[ 1464.499681][   T31]  ext4_page_mkwrite+0x35e/0x1750
[ 1464.504768][   T31]  ? __pfx_ext4_page_mkwrite+0x10/0x10
[ 1464.510300][   T31]  ? __pfx_filemap_map_pages+0x10/0x10
[ 1464.516164][   T31]  ? pte_alloc_one+0x2b1/0x380
[ 1464.521030][   T31]  do_page_mkwrite+0x171/0x380
[ 1464.525848][   T31]  do_pte_missing+0x29c/0x3fb0
[ 1464.530702][   T31]  ? do_raw_spin_unlock+0x172/0x230
[ 1464.535961][   T31]  ? __pmd_alloc+0x3c2/0x870
[ 1464.540937][   T31]  __handle_mm_fault+0x103d/0x2a40
[ 1464.546111][   T31]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1464.552220][   T31]  ? lock_vma_under_rcu+0x47d/0x970
[ 1464.557493][   T31]  ? lock_vma_under_rcu+0x47d/0x970
[ 1464.562916][   T31]  handle_mm_fault+0x3fe/0xad0
[ 1464.568022][   T31]  do_user_addr_fault+0x60c/0x1370
[ 1464.573275][   T31]  exc_page_fault+0x5c/0xc0
[ 1464.577844][   T31]  asm_exc_page_fault+0x26/0x30
[ 1464.582795][   T31] RIP: 0033:0x7fbc9246547b
[ 1464.587255][   T31] RSP: 002b:00007ffe816e6f70 EFLAGS: 00010246
[ 1464.595780][   T31] RAX: 00000000003ffde8 RBX: 0000000000000000 RCX: 0000000000000000
[ 1464.604232][   T31] RDX: 0000001b2ec20000 RSI: 0000000000400000 RDI: 00007fbc92698d50
[ 1464.612435][   T31] RBP: 0000000000000000 R08: 0000000000000004 R09: 0000000000040000
[ 1464.621185][   T31] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1464.629335][   T31] R13: 00000000000927c0 R14: 000000000013d9fa R15: 00007ffe816e7220
[ 1464.637359][   T31]  </TASK>
[ 1464.640859][   T31] 
[ 1464.640859][   T31] Showing all locks held in the system:
[ 1464.648678][   T31] 1 lock held by khungtaskd/31:
[ 1464.653562][   T31]  #0: ffffffff8e3bf440 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x36/0x1c0
[ 1464.663603][   T31] 3 locks held by syz-executor/5816:
[ 1464.669028][   T31]  #0: ffff888032cb4a88 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370
[ 1464.678600][   T31]  #1: ffff88814e0c4518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380
[ 1464.688187][   T31]  #2: ffff88814e0c8950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410
[ 1464.697967][   T31] 6 locks held by kworker/u8:19/25953:
[ 1464.704171][   T31]  #0: ffff88801c6fb948 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 1464.715049][   T31]  #1: ffffc90004a1fd18 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 1464.728104][   T31]  #2: ffff88814e0c40e0 (&type->s_umount_key#31){++++}-{4:4}, at: super_trylock_shared+0x1e/0xf0
[ 1464.738837][   T31]  #3: ffff88814e0c6b98 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: do_writepages+0x1b2/0x820
[ 1464.749625][   T31]  #4: ffff88814e0c8950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410
[ 1464.759367][   T31]  #5: ffff88807d32dbf0 (&ei->i_data_sem){++++}-{4:4}, at: ext4_map_blocks+0x355/0x1390
[ 1464.769244][   T31] 3 locks held by syz.1.4778/27423:
[ 1464.774457][   T31]  #0: ffff88806b15bd08 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370
[ 1464.784038][   T31]  #1: ffff88814e0c4518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380
[ 1464.793747][   T31]  #2: ffff88814e0c8950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410
[ 1464.803608][   T31] 3 locks held by syz.2.4781/27434:
[ 1464.809146][   T31]  #0: ffff888033d50448 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370
[ 1464.818624][   T31]  #1: ffff88814e0c4518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380
[ 1464.828769][   T31]  #2: ffff88814e0c8950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410
[ 1464.838516][   T31] 3 locks held by syz.4.4782/27436:
[ 1464.844110][   T31]  #0: ffff88802818ebc8 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370
[ 1464.853582][   T31]  #1: ffff88814e0c4518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380
[ 1464.863343][   T31]  #2: ffff88814e0c8950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410
[ 1464.873584][   T31] 
[ 1464.875945][   T31] =============================================
[ 1464.875945][   T31] 
[ 1464.884445][   T31] NMI backtrace for cpu 0
[ 1464.884478][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[ 1464.884521][   T31] Tainted: [U]=USER
[ 1464.884531][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1464.884549][   T31] Call Trace:
[ 1464.884559][   T31]  <TASK>
[ 1464.884571][   T31]  dump_stack_lvl+0x116/0x1f0
[ 1464.884614][   T31]  nmi_cpu_backtrace+0x27b/0x390
[ 1464.884656][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 1464.884706][   T31]  nmi_trigger_cpumask_backtrace+0x29c/0x300
[ 1464.884742][   T31]  watchdog+0xf70/0x12c0
[ 1464.884791][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1464.884830][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1464.884873][   T31]  ? __kthread_parkme+0x19e/0x250
[ 1464.884913][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1464.884952][   T31]  kthread+0x3c2/0x780
[ 1464.884997][   T31]  ? __pfx_kthread+0x10/0x10
[ 1464.885054][   T31]  ? __pfx_kthread+0x10/0x10
[ 1464.885123][   T31]  ? __pfx_kthread+0x10/0x10
[ 1464.885165][   T31]  ? __pfx_kthread+0x10/0x10
[ 1464.885209][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1464.885239][   T31]  ? __pfx_kthread+0x10/0x10
[ 1464.885285][   T31]  ret_from_fork+0x45/0x80
[ 1464.885334][   T31]  ? __pfx_kthread+0x10/0x10
[ 1464.885380][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1464.885444][   T31]  </TASK>
[ 1464.885456][   T31] Sending NMI from CPU 0 to CPUs 1:
[ 1465.025160][    C1] NMI backtrace for cpu 1 skipped: idling at default_idle+0x14/0x20
[ 1465.026157][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[ 1465.041009][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[ 1465.054391][   T31] Tainted: [U]=USER
[ 1465.058195][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1465.068343][   T31] Call Trace:
[ 1465.071627][   T31]  <TASK>
[ 1465.074562][   T31]  dump_stack_lvl+0x3d/0x1f0
[ 1465.079173][   T31]  panic+0x71c/0x800
[ 1465.083098][   T31]  ? __pfx_panic+0x10/0x10
[ 1465.087539][   T31]  ? __pfx__printk+0x10/0x10
[ 1465.092161][   T31]  ? ret_from_fork_asm+0x1a/0x30
[ 1465.097176][   T31]  ? nmi_backtrace_stall_check+0x6e/0x540
[ 1465.102924][   T31]  ? irq_work_queue+0xce/0x100
[ 1465.107732][   T31]  ? watchdog+0xdda/0x12c0
[ 1465.112195][   T31]  ? watchdog+0xdcd/0x12c0
[ 1465.116644][   T31]  watchdog+0xdeb/0x12c0
[ 1465.120911][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1465.125607][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1465.130838][   T31]  ? __kthread_parkme+0x19e/0x250
[ 1465.135901][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1465.140603][   T31]  kthread+0x3c2/0x780
[ 1465.144711][   T31]  ? __pfx_kthread+0x10/0x10
[ 1465.149343][   T31]  ? __pfx_kthread+0x10/0x10
[ 1465.153968][   T31]  ? __pfx_kthread+0x10/0x10
[ 1465.158676][   T31]  ? __pfx_kthread+0x10/0x10
[ 1465.163297][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1465.168091][   T31]  ? __pfx_kthread+0x10/0x10
[ 1465.172806][   T31]  ret_from_fork+0x45/0x80
[ 1465.177259][   T31]  ? __pfx_kthread+0x10/0x10
[ 1465.182141][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1465.186953][   T31]  </TASK>
[ 1465.190236][   T31] Kernel Offset: disabled
[ 1465.194571][   T31] Rebooting in 86400 seconds..