last executing test programs:

5m37.844404032s ago: executing program 3 (id=453):
mmap$auto(0x0, 0xb, 0x6, 0xeb1, 0x3ff, 0x8000)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
bpf$auto(0x5, &(0x7f0000000000)=@test={<r0=>0x12, 0x1, 0xa93f, 0x9, 0x3, 0x3, 0x3da1, 0x0, 0xb4, 0x5, 0x140000000000, 0x0, 0x7fffffff, 0x9, 0x1}, 0x171)
sendmsg$auto_NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000000)=ANY=[@ANYBLOB='Y\x00\x00\x00', @ANYRES16, @ANYBLOB="0100000000000000000501"], 0x14}, 0x1, 0x0, 0x0, 0x40080}, 0x20040000)
r1 = socket(0x10, 0x2, 0x4)
sendmsg$auto_NFSD_CMD_THREADS_SET(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400"], 0x2c}, 0x1, 0x0, 0x0, 0x4010}, 0x400c000)
write$auto(r1, &(0x7f0000000000)='-\x00', 0x2fb)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x200, 0x1)
r2 = open(&(0x7f0000001bc0)='./file0\x00', 0x4140, 0x0)
bpf$auto(0x0, &(0x7f0000000180)=@bpf_attr_11={0x9, 0x9, 0x1, 0x0, 0xaaa, 0x3, 0x81, r0}, 0x4)
fanotify_mark$auto(0x0, 0x105, 0x8009, r2, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)

5m37.584193842s ago: executing program 3 (id=454):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xfffffffffffffffd, 0x40000008000)
socket(0xa, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x801, 0x84)
socket(0x18, 0x5, 0x1)
umount2$auto(&(0x7f00000000c0)='/proc/\x00\x18s/fs/bin\xe6mt_\xe9\xdf\xe2%\f\x16#9\x00\x00\x00\x00\x00\x00\xbe\xe6]\x01\x05\xac\xb4\x896\xd3\xe1|\x82\xa1\x7fB\x18|T\x9ev\x15\xdcEM*\t\x91\xbbb\xc9X\xee<\xc4T\xc2dRw\xb6*A\x97\xf6\xf8\xeb\a\xf9\x06\x13\xdf)0\xef\xec\x1c\xc4\xf3\x02\xdf\xeea\x95>O\xa5\x03', 0x7)
getsockopt$auto(0x3, 0x200000000001, 0x52, 0x0, 0x0)

5m37.268620762s ago: executing program 3 (id=456):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), 0xffffffffffffffff)
r2 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card1\x00', 0x102, 0x0)
ioctl$auto(r2, 0x3, r2)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000800), r0)
sendmsg$auto_NL80211_CMD_SET_WIPHY(r0, &(0x7f00000008c0)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000880)={&(0x7f0000000840)={0x1c, r3, 0x8, 0x70bd27, 0x25dfdbff, {}, [@NL80211_ATTR_OPMODE_NOTIF={0x5, 0xc2, 0x70}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000044}, 0x8000)
sendmsg$auto_TIPC_NL_LINK_RESET_STATS(r0, &(0x7f0000003e40)={0x0, 0x0, &(0x7f0000003e00)={&(0x7f000000cf40)={0x18, r1, 0x1, 0x70bd2c, 0x25dfdbff, {}, [@TIPC_NLA_LINK={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x4}, 0x40040050)
mmap$auto(0x2, 0x40000c, 0xdf, 0x111, 0x2, 0x8004)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
close_range$auto(0x2, 0x8, 0x0)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000040)={{0x0, 0x2, &(0x7f0000000080)={0x0, 0x1}, 0xa, 0x0, 0x4, 0x401}, 0xed7138c}, 0x0, 0x0)
r4 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
read$auto_mon_fops_text_t_mon_text(r4, &(0x7f0000000240)=""/229, 0xe5)
r5 = open(0x0, 0x22240, 0x155)
socket(0x2, 0x80802, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
connect$auto(0x3, 0x0, 0x55)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x106, 0x0, 0x1, 0x697b}, 0xed7138c}, 0x9a6, 0xe000)
adjtimex$auto(&(0x7f0000000100)={0xfffffff5, 0x0, 0x1, 0x8000, 0xffffffffffffffff, 0x5, 0x401, 0x0, 0x9, 0x94b, 0xc3, {0x8000000000000001, 0x10}, 0x1, 0x64d1, 0x7, 0x6, 0x0, 0x6, 0x6, 0x7f, 0x3, 0x9, 0xfffffffe})
r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="01002a00af00000000010100000008000300", @ANYRES32=r8], 0x24}, 0x1, 0x0, 0x0, 0x4000023}, 0x4008098)
sendmsg$auto_NL80211_CMD_GET_REG(r5, &(0x7f0000000780)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000740)={&(0x7f0000000900)=ANY=[@ANYBLOB="84030000", @ANYRES16=r6, @ANYBLOB="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"/909], 0x384}, 0x1, 0x0, 0x0, 0xc004}, 0x20048001)
r9 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/mm/ksm/max_page_sharing\x00', 0x1ab101, 0x0)
mmap$auto(0x9, 0x2000d, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
fcntl$auto(0x8000000000000001, 0x5, 0x8)
fcntl$auto(0x8000000000000001, 0x24, 0x8)
write$auto(r9, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)

5m36.972808638s ago: executing program 3 (id=457):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_FLUSH_PMKSA(r0, &(0x7f0000000700)={&(0x7f0000000000), 0xc, &(0x7f00000006c0)={&(0x7f0000000080)={0x630, r1, 0x8, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_KEY_TYPE={0x8, 0x37, 0x5}, @NL80211_ATTR_CH_SWITCH_COUNT={0x8, 0xb7, 0xfffffc3c}, @NL80211_ATTR_BEACON_HEAD={0x60a, 0xe, "cda5b741db63dd69f4fa6203d990f1ca43a446b87815dae9ff7032eea653b29a4a7192ec17eaf7d1e64887bbb9a1adf5b5224e2415cc70e2ab53b464a8c5f6cdbb4d1b3255314aaff7e6c91c315f960434e08851c7e9879973aaf0d3a449a210a3c04ca0571f4248d807f1e046052f9728b8bb6c63950584bda9722d3242d4883946f956098554e58cb583e83d352a5385d46f08e7d0366241d186e32937f0c28f9d9e5c35073e9fad30e69b637b4d1bcb291d7cb909d9a54dfea1552a08442637b598c4f99b969481ddb20de864c38561de39706721b609ec1791fc8b1b04ba9a1e47ec354cc29eb7add345c4bc534e62304ca6613c946fa621b4cc87bf2df24c9f7ecb335cc15876e2f82b274c68028fce039c3e0f9d6c04bfa9c5e8dbb0fa4c575b61f326d9bc41d0a8c1fb5f24f62a35c21d9ed07a01d4284ea97df4e3415fd64558f2a32dd44f6d690a7c4192c807d3b80bdf6919efa32314fe1463bd506eb2dafea22ffdf29655e8a0b7d56d4bd79753fd66d022234173767319a5d72944ccad3dca33dedb6d41ae8165273b8cfd1c5c5d243a957b4824692bce6439983de1738171a4ddfa27fd151ee68a4414834d211d3f0edd3f74b38c6ec1a3daad34e14b2d98b1d0539eb3a50a9a0c0a40d8a556b17400d7c3d73f6d3eae4817d65c5cc76d67df2ff1f5bc4da9462abee85c0fa7ad020b4ad1b910214fb7bd2d3dad6e1e9071498403c086c4fd97567459fa1820f3288bd27400678309449b8a55381a234ca5b7a4f99c6630ec336e02ac6a323f36353243717e285af0426449d2e93b71d912c926d9b3bd17d96687aaee9a056f66e7e40a289b3927d583c92f5f6ebe15946ebcd30ee90627ee8e052d00f5b46a53147c18fc63c8448ef4696fb7bd6a846be85ea1096cc82e3014c79a8d4c92f0c2093b158a2e21a557465bf4f6da184eb18f6fe98c6111409b8b64686d78c6333a6bf83d50a517d1b967899ae7d4cfee783c8156b5466694d374f03a0266ef4dafc29d358dfd11e0d74d6e944486d2fb5f36c9e664785b28aa74d99c9cabcb64af3e9e4270c37c9f77e137ec4e85fa6bddb441abf8029fac85cb05d8f966cbead7994aefd20161dcee06db7cab0e93dc1a8fbe205452b3756c6d0721ec34728a8a6d5bc090112d62bb0837299ccab21f7483f8d1fa1e526d1fad96b2ab0335e2d215a739ccfb68899f999379f68e19d1a3c3a93d810a94644e21ecccbe2e725a53a30c28d7ce92cb10c93f007a5750165e79ee3959cd0b8a40ee196099ed7f88223b635f7531bb72ac24f809fa6391ebe366360f64f7972c2298d824fbca92242d1ba95e8cb0760f55fe48b5d62053c5d56a68ebd3a68db8888fd4d4727f28cc54485fa59728bddaae784c1a7fce132c18e2a179a3cfac9246fe88fb9260e22f2099cc442e88e286f60ead71da7d1f4dd5531b98696ed89a8601264b6f9ba718aaeb918120ab8f0e6d28a5b30cdab2f883896a9e8d85a66c76fa111b55506444511a6681f893bff123b484de7d48fbe0f26a9c4db64c5ed7a9e5c72085ac725f2180cdca8a0b40a125dcdad3601921c5531b9aaaf953c06621f50dec730fae0df92f961e3ee88e9da9eaac4104d951be000a4806c53efe7ffe7ecbeb6bac96874c90bc60b78228fccca437eb4ad55f589aec623d13334994d833cee7a300d3f8d3c8715faa9e1e6db0ecc83893badf2793e9efb84792d8649e5b2b48aa8b8ba6da5283654e9beb1cacf2fe8c91dc0393b5b2ea68126057edef7513d96612bfd63553f82ba8c57503d8a2f37fd5abaf94bf8f8358a640c97d115b771beaa0b05ab9ce906c3d803f92010f9c0e1f3f891f552c4146c7874062835e63a719fb2861ba20bef89b9e667eb9e58f55a2274cc47a1a00cbfa53bc6a65fd51218949adab1e90ad0d1032ecd5b8e0d115a67f175013632cc5cd2ab7c66c2ab5d3392b04f95f9e0b6dab5b30ae6dfd72b9fb06ebc99cb84fea71f15dfa0bb00b99757764dc2c5bcbd817f2a0ba8736a768b61dcc0b0a4462b77f09ef48a96257e3ee7fb7316e42262f387cbde82e6bacc475bdd177bb7d05f26a3f036d8f9cb88766051433cba012c786da5ee82ddd5ba5a0fba2e91fc98bdd335a252b0ac553977a116526cf1812609acdd20311e77f0d3df7fda23d6c63"}]}, 0x630}, 0x1, 0x0, 0x0, 0x800}, 0x20008080) (async)
r2 = getsockopt$auto(r0, 0x8, 0x0, &(0x7f0000000740)='nl80211\x00', &(0x7f0000000780)=0x5)
read$auto_usbdev_file_operations_usb(r2, &(0x7f00000007c0)=""/238, 0xee) (async)
readv$auto(r0, &(0x7f0000000940)={&(0x7f00000008c0)="9a62c74730ac7d42e021b684576d5e475e2f54ddd9b279136e2c9fa89782fe3a28167ce9cc72d7de2c41b14d97c23ba4e44c715c3925ef11ddc2aeeb248782ca3c98f252c7a7a97e18c80a604b3ce3023a477e31e381af908e89e271", 0xfff}, 0x1) (async)
shutdown$auto(r0, 0x9000) (async)
ioctl$auto_SNDCTL_SEQ_TESTMIDI(r2, 0x40045108, &(0x7f0000000980)="450a4d09ed2082f9e2dfde3b5820d423")
setsockopt$auto_SO_RESERVE_MEM(r2, 0x5, 0x49, &(0x7f00000009c0)='nl80211\x00', 0x9a71) (async)
getsockopt$auto_SO_ACCEPTCONN(r0, 0x3, 0x1e, &(0x7f0000000a00)='nl80211\x00', &(0x7f0000000a40)=0x1) (async)
mmap$auto(0xf9e, 0x722, 0x7fff, 0x18, r2, 0x8)
timer_create$auto_CLOCK_MONOTONIC(0x1, &(0x7f0000000a80)={@sival_int=0x9, @raw=0x985, 0x4}, &(0x7f0000000ac0)=0x2) (async)
openat$auto_clear_warn_once_fops_(0xffffffffffffff9c, &(0x7f0000000b00), 0x400000, 0x0)
r3 = gettid()
move_pages$auto(r3, 0x0, &(0x7f0000000bc0)=&(0x7f0000000b40)="273c4b094e70c1b6cd661816fde19f056f1d5beb0ef02f58cc4f0250518fa66696bb7cce8273ec4b803a6decee7debacd3b2bebc8452b9f7bed74ddfa841c2d83759", &(0x7f0000000c00), &(0x7f0000000c40)=0x3, 0x0) (async)
r4 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000cc0), r2)
sendmsg$auto_OVS_DP_CMD_NEW(r0, &(0x7f0000000d80)={&(0x7f0000000c80)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000d40)={&(0x7f0000000d00)={0x24, r4, 0x1, 0x70bd28, 0x25dfdbfe, {}, [@OVS_DP_ATTR_USER_FEATURES={0x8, 0x5, 0x3}, @OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, r3}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x0) (async)
sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_ID(r2, &(0x7f0000000e40)={&(0x7f0000000dc0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000e00)={0xffffffffffffffff}, 0x1, 0x0, 0x0, 0x4}, 0x40000) (async)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_gtp(&(0x7f0000000e80), r5) (async)
read$auto_clk_dump_fops_(r2, &(0x7f0000000ec0)=""/3, 0x3)
r6 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000f40), r0)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r5, &(0x7f0000001000)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000fc0)={&(0x7f0000000f80)={0x38, r6, 0x200, 0x70bd2b, 0x25dfdbfb, {}, [@HWSIM_ATTR_REG_CUSTOM_REG={0x8, 0xc, 0xffff}, @HWSIM_ATTR_REG_CUSTOM_REG={0x8, 0xc, 0x3}, @HWSIM_ATTR_USE_CHANCTX={0x4}, @HWSIM_ATTR_TX_INFO={0x6, 0x7, [{0x1, 0x3}]}, @HWSIM_ATTR_RADIO_NAME={0x6, 0x11, '}#'}]}, 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x24044041) (async)
bpf$auto(0x6, &(0x7f0000001040)=@raw_tracepoint={0xbf, <r7=>r5, 0x0, 0x7}, 0x853)
ptrace$auto_PTRACE_POKETEXT(0x4, r3, 0x8000000000000000, 0x9)
close_range$auto(r0, r7, 0x9b)
ioctl$auto_XFS_IOC_GOINGDOWN(r2, 0x8004587d, &(0x7f0000001100)=0xffffffff) (async)
openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, &(0x7f0000001140)='/dev/mixer\x00', 0x202000, 0x0) (async)
execve$auto(&(0x7f0000001180)='./file0\x00', &(0x7f0000001200)=&(0x7f00000011c0)='/dev/mixer\x00', &(0x7f0000001280)=&(0x7f0000001240)='/sys/kernel/debug/clear_warn_once\x00') (async)
ioctl$auto_SOUND_MIXER_READ_RECSRC2(r7, 0x80044dff, &(0x7f00000012c0)="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")

5m36.747239679s ago: executing program 3 (id=458):
tkill$auto(0x1, 0x7)
r0 = epoll_create1$auto(0x2) (async)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) (async)
r2 = gettid()
rt_sigqueueinfo$auto(r2, 0x1, 0x0) (async)
sendmsg$auto_NL80211_CMD_SET_SAR_SPECS(r0, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40803100}, 0xc, &(0x7f0000000180)={&(0x7f0000000080)={0xe0, r1, 0x200, 0x70bd2b, 0x25dfdbfc, {}, [@NL80211_ATTR_PID={0x8, 0x52, r2}, @NL80211_ATTR_PEER_AID={0x6, 0xb5, 0x2}, @NL80211_ATTR_IFNAME={0x14, 0x4, 'wlan1\x00'}, @NL80211_ATTR_SCHED_SCAN_MULTI={0x4}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x8}, @NL80211_ATTR_FILS_ERP_REALM={0x94, 0xfa, "199f9d5c3cba16739fd61e5199845a20e35793372239f17af9de7f5ee0bb503ce2aa9ba1710b609b3454cf494c9ecb2f2915675a3b7ecf38127d2a6c16a04bc606167af550c3204ef0b7a19452a5ca6c7e0a69882688978a52beb25a9dc2eb98f20397e0cc87e70a0f8015dbca8e30ab14565b6768be62dcf7f0e70c67f8714c7cda14a5348be78d021b66a5fe91d203"}, @NL80211_ATTR_BSS_HT_OPMODE={0x6, 0x6d, 0x13}]}, 0xe0}, 0x1, 0x0, 0x0, 0x20008050}, 0x20000046)
keyctl$auto_KEYCTL_SESSION_TO_PARENT(0x12, 0x0, 0x0, 0x0, 0x48eafc79)

5m36.370138194s ago: executing program 3 (id=459):
socket(0x29, 0x2, 0x0)
r0 = socket(0x11, 0x3, 0x9)
mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000)
ioctl$auto_SNDCTL_DSP_SETFMT(0xffffffffffffffff, 0xc0045005, &(0x7f0000001280)="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")
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = io_uring_setup$auto(0x6, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'syz_tun\x00', <r3=>0x0})
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x5, 0x2000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xf, 0x3, 0x0)
socket(0xa, 0x3, 0x6)
clone$auto(0x21003b46, 0x2, 0x0, 0x0, 0x6)
bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_5={@target_ifindex=r3, r2, 0x99, 0x8, 0x1, @relative_id=0x4, 0x9}, 0x8a4)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffffffffffffffff, 0x0, 0x3}, 0x6)
r4 = pidfd_open$auto(0x1, 0x0)
setns(r4, 0x0)
mount$auto(&(0x7f0000000100)='veth1_to_batadv\x00', &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='syz_tun\x00', 0x2, &(0x7f0000000280)="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")
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, r0, 0x0, 0x3}, 0xc)

5m35.943186222s ago: executing program 32 (id=459):
socket(0x29, 0x2, 0x0)
r0 = socket(0x11, 0x3, 0x9)
mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000)
ioctl$auto_SNDCTL_DSP_SETFMT(0xffffffffffffffff, 0xc0045005, &(0x7f0000001280)="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")
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = io_uring_setup$auto(0x6, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'syz_tun\x00', <r3=>0x0})
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x5, 0x2000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xf, 0x3, 0x0)
socket(0xa, 0x3, 0x6)
clone$auto(0x21003b46, 0x2, 0x0, 0x0, 0x6)
bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_5={@target_ifindex=r3, r2, 0x99, 0x8, 0x1, @relative_id=0x4, 0x9}, 0x8a4)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffffffffffffffff, 0x0, 0x3}, 0x6)
r4 = pidfd_open$auto(0x1, 0x0)
setns(r4, 0x0)
mount$auto(&(0x7f0000000100)='veth1_to_batadv\x00', &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='syz_tun\x00', 0x2, &(0x7f0000000280)="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")
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, r0, 0x0, 0x3}, 0xc)

6.765918526s ago: executing program 1 (id=1494):
r0 = openat$auto_tracing_cpumask_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/tracing_cpumask\x00', 0x204983, 0x0)
readv$auto(r0, &(0x7f00000000c0)={&(0x7f0000000140), 0x7ff}, 0x7)

6.506550019s ago: executing program 1 (id=1497):
mmap$auto(0x0, 0x2, 0xdf, 0xeb1, 0x401, 0x8000)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x5, 0x1f, 0x940, 0x1ffde, 0x3, 0x6, 0x8000003, 0x9, 0x5, 0x0, 0x4, 0xb0, 0x7, 0x2, 0x3, 0x205, 0xfff, 0x0, 0x40000, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x100000000]}, 0x1ff, 0x7d)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
socket(0x10, 0x2, 0x0)
socket(0x2, 0x2, 0x1)
setresuid$auto(0x8, 0x8, 0x0)
r0 = setfsuid$auto(0xee00)
setreuid$auto(r0, 0x0)
mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x9, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r1 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x40342, 0x22)
utimensat$auto(r2, &(0x7f0000001c80)='\x00', &(0x7f0000001cc0)={0x23, 0x3fffffff}, 0x1000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x28adc1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xde, 0x10, 0x401, 0xd)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
socket(0x2, 0x1, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
sendto$auto(0x3, 0x0, 0x18, 0x101, 0x0, 0x1c)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(r1, 0x0, 0x9a6, 0x7000000)
sendmsg$auto_NL80211_CMD_ASSOC_MLO_RECONF(r1, 0x0, 0x80)
syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)

5.809444398s ago: executing program 4 (id=1498):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
madvise$auto(0x0, 0x240007, 0x19)
migrate_pages$auto(0x0, 0xa, &(0x7f0000000100)=0x5, &(0x7f0000000140)=0x2)
socket(0x27, 0x2, 0x0)
setresgid$auto(0xffffffffffffffff, 0x0, 0xee00)
setresuid$auto(0x2, 0x7, 0x8080)
setgid$auto(0xee00)
r0 = socket(0x2b, 0x1, 0x1)
bpf$auto(0xfffffff7, &(0x7f0000000180)=@bpf_attr_1={r0, 0x80, @value=0xf0, 0x81}, 0x3)
r1 = socket(0x2, 0x3, 0x2)
setsockopt$auto(0x3, 0x0, 0xc8, 0xfffffffffffffffc, 0x4)
setsockopt$auto(0x3, 0x0, 0xc8, 0xfffffffffffffffc, 0x4)
setsockopt$auto(0x3, 0x0, 0x81, 0x0, 0x77)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r2 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
open(&(0x7f0000000000)='./cgroup.cpu/cgroup.procs\x00', 0x2000, 0xb5d1af1605322c72)
sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
sendto$auto(0x3, 0x0, 0xfffffffffffffdef, 0x101, 0x0, 0x1c)
r3 = gettid()
process_vm_readv$auto(r3, &(0x7f0000000040)={0x0, 0x2}, 0x4, &(0x7f00000000c0)={0x0, 0x100000000000002}, 0x3, 0x0)
tkill$auto(r3, 0x5c)
ioctl$auto(r0, 0x80000541b, r1)
move_pages$auto(0x0, 0x1002, 0x0, &(0x7f0000001140), 0x0, 0x2)

5.458457387s ago: executing program 0 (id=1499):
r0 = socket(0x1d, 0x3, 0x1)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = bpf$auto(0x0, 0x0, 0x6f4)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
init_module$auto(0x0, 0xffff9, 0x0)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x8000000000000000, 0x15)
mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4)
setsockopt$auto(r0, 0x65, 0x1, 0x0, 0x0)
r2 = openat$auto_udmabuf_fops_udmabuf(0xffffffffffffff9c, &(0x7f0000000000), 0x20100, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
mbind$auto(0xf000, 0x1, 0x1, 0x0, 0x7fff, 0x2)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x20000000000006, 0x2)
ioctl$auto_VHOST_SET_OWNER(r1, 0xaf01, 0x0)
utimensat$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xfffffffb)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
mbind$auto(0xffffffffffff7fff, 0x1, 0x800, &(0x7f0000000040)=0x3, 0x5, 0x8)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000000100), r3)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/loop15/queue/scheduler\x00', 0x0, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0xc01)
sendmsg$auto_SMC_PNETID_ADD(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x2c, r4, 0xd3bed26fbb0d8463, 0x70bd29, 0x25dfdbfe, {0x2, 0x0, 0x300}, [@SMC_PNETID_ETHNAME={0xc, 0x2, 'syz_tun\x00'}, @SMC_PNETID_NAME={0xc, 0x1, 'ethtool\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000001}, 0x1c054)
ioctl$auto_UDMABUF_CREATE(r2, 0x40187542, &(0x7f0000000080)={r2, 0x867c, 0x0, 0x200000008000})

5.397120462s ago: executing program 1 (id=1500):
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0C0F:00/status\x00', 0xa140, 0x0)
sendmsg$auto_TASKSTATS_CMD_GET(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x2000c011}, 0x20000000)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
socket(0x11, 0xa, 0x300)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0xa)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x0, 0x0)
read$auto(r1, 0x0, 0x1f40)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3)
shmctl$auto_SHM_UNLOCK(0x2, 0xc, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000140)=""/122, 0x7a)

5.340169803s ago: executing program 4 (id=1501):
mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0xffffffffffffffff, 0x1)
io_uring_setup$auto(0x2bf, 0x0)
socket(0x2, 0x1, 0x0)
socket(0x2, 0xa, 0xb) (async)
socket(0x2, 0xa, 0xb)
sysfs$auto(0x2, 0x0, 0x0)
epoll_create$auto(0x5)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
epoll_ctl$auto(0x5, 0x1, r0, 0x0) (async)
epoll_ctl$auto(0x5, 0x1, r0, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
epoll_ctl$auto(0x5, 0x3, r0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_sc_seq_fops_netdebug(0xffffffffffffff9c, 0x0, 0x593201, 0x0) (async)
openat$auto_sc_seq_fops_netdebug(0xffffffffffffff9c, 0x0, 0x593201, 0x0)
mmap$auto(0x0, 0x400005, 0xffffffffffeffffe, 0x9b72, 0xc76, 0x8000) (async)
mmap$auto(0x0, 0x400005, 0xffffffffffeffffe, 0x9b72, 0xc76, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
socket(0xa, 0x1, 0x84)
mmap$auto(0xb, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) (async)
mmap$auto(0xb, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
r1 = open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0)
bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0x1, 0x538, 0x80, 0x10400, 0x0, r1, 0x1000, "72fea04183dce563f03f2a25077b3383", 0x0, <r2=>r1, 0x4, 0xa, 0x101, 0x1, r1}, 0x6f3)
openat$auto_uprobe_events_ops_trace_uprobe(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/uprobe_events\x00', 0x2002, 0x0) (async)
r3 = openat$auto_uprobe_events_ops_trace_uprobe(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/uprobe_events\x00', 0x2002, 0x0)
write$auto_uprobe_events_ops_trace_uprobe(r3, 0x0, 0x0)
write$auto_tracing_saved_cmdlines_size_fops_trace(r1, &(0x7f0000000140)="8c9e63d2be8804935e45fdd66ce074a93110ca8756daeecf80bff33889da70326d1d1d643b58de5256fe2752bd3cda50c9201e685e28854cbdf83de587f080ebda800155ae546b1805b34f5265ff20a0", 0x50)
openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000280), 0x42440, 0x0) (async)
openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000280), 0x42440, 0x0)
r4 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x40044620, 0x0) (async)
ioctl$sock_SIOCGIFINDEX(r4, 0x40044620, 0x0)
openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0) (async)
r5 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0)
ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r5, 0xc0285700, 0x0)
ioctl$auto_SW_SYNC_GET_DEADLINE(r5, 0xc0105702, &(0x7f00000000c0)={0x0, 0x0, r2})
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)

5.111308471s ago: executing program 1 (id=1502):
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0xc, 0x9c0f, 0x44eb2, 0x10006, 0x300000000000)
ioperm$auto(0x7, 0x6, 0x2)
mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0xffffffffffffffff, 0x8000)
mlock2$auto(0x1, 0x5, 0x0)
socket(0x2, 0x3, 0x6)
r0 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4c084}, 0x51)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000100)='ns/ipc\x00')
ioctl$NS_GET_PARENT(r2, 0xb701, 0x0)
socket(0x1a, 0x6, 0xffffffff)
socketpair$auto(0x1e, 0x3, 0xfffffffe, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x3}, 0x7}, 0x3, 0xcad7)
syz_genetlink_get_family_id$auto_smc_pnetid(0x0, r1)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x5, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x1, 0x0)
setsockopt$auto(0x3, 0x10000000084, 0x11, 0x0, 0x8)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x8000}, 0x4040804)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x6, 0x9, 0x4007, 0x0, 0x0, 0x0, 0x5a4c, 0x40000000000f, 0x400, 0x40000402, 0x10800007ffffffb, 0x9, 0xffffffff80000000, 0x9, 0x6, 0x200000100103})
socket$nl_generic(0x10, 0x3, 0x10)

4.784735207s ago: executing program 1 (id=1503):
clone$auto(0x12051c, 0x40000006, 0xfffffffffffffffd, 0xffffffffffffffff, 0x80000001) (async, rerun: 64)
r0 = socket$nl_generic(0x10, 0x3, 0x10) (rerun: 64)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001d00), r0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), r2) (async)
r3 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000001080), 0xffffffffffffffff) (async)
prctl$auto(0x34, 0x1, 0x0, 0x0, 0x0) (async)
r5 = socket(0x10, 0x3, 0x6) (async)
r6 = syz_genetlink_get_family_id$auto_smbd_genl(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$auto_KSMBD_EVENT_LOGIN_RESPONSE(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000400)={0x14, r6, 0x1, 0x70bd2a, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x40}, 0x20008080) (async)
sendmsg$auto_KSMBD_EVENT_RPC_RESPONSE(r0, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x14, r6, 0x200, 0x70bd2c, 0x25dfdbfc, {}, ["", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004014}, 0x0) (async)
r7 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32)
openat$auto_proc_pid_attr_operations_base(0xffffffffffffff9c, &(0x7f0000000200)='/proc/thread-self/attr/apparmor/exec\x00', 0x600, 0x0) (rerun: 32)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async, rerun: 32)
r8 = socket(0x10, 0x3, 0x9) (rerun: 32)
write$auto(r8, 0x0, 0x5) (async)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r9=>0x0})
sendmsg$auto_NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="ffffff00", @ANYRES16=r4, @ANYBLOB="810b27bd7000ffdbdf250100000008000300", @ANYRES32=r9, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x20000084}, 0x0) (async)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r10=>0x0})
sendmsg$auto_ETHTOOL_MSG_RINGS_SET(r0, &(0x7f0000001dc0)={0x0, 0x0, &(0x7f0000001d80)={&(0x7f0000001d40)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010027bd7017ffdbdf25100000000c00018008000100", @ANYRES32=r10, @ANYBLOB="0800090002000000"], 0x28}, 0x1, 0x0, 0x0, 0x90}, 0x80000)

4.413577888s ago: executing program 0 (id=1505):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001480), r0)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_SET(r0, &(0x7f0000001cc0)={0x0, 0x0, &(0x7f0000000840)={&(0x7f0000000040)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002abd700000dd496ccfe71e4af9e988b51ab3e1df13df8f1ab1cdbfc00c76da960ed625120000001800018014ea01004272655f730375b39a5f310000080006"], 0x34}, 0x1, 0x0, 0x0, 0x8811}, 0x0) (async)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_SET(r0, &(0x7f0000001cc0)={0x0, 0x0, &(0x7f0000000840)={&(0x7f0000000040)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002abd700000dd496ccfe71e4af9e988b51ab3e1df13df8f1ab1cdbfc00c76da960ed625120000001800018014ea01004272655f730375b39a5f310000080006"], 0x34}, 0x1, 0x0, 0x0, 0x8811}, 0x0)

4.338281848s ago: executing program 1 (id=1506):
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x20000, 0x0)
socket(0x23, 0x80805, 0x6)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = pipe2$auto(0x0, 0x80)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
ioctl$auto_MTDFILEMODE(r0, 0x4d13, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x2, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x4010)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/platform/vhci_hcd.8/usb26/26-0:1.0/usb26-port8/usb3_lpm_permit\x00', 0x40, 0x0)
mremap$auto(0x0, 0xfee0, 0xfffffffffffffffa, 0x4, 0x5)
mmap$auto(0x1, 0x2020009, 0x6, 0xeb1, r1, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
write$auto(0x3, 0x0, 0xfdef)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x400053, 0x9)
mmap$auto(0x0, 0x4000d, 0x5, 0x9b72, 0x7, 0x4)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x3, 0x1ff, 0x1001, 0x5, 0x717e, 0x1ffde, 0x7, 0x200000003, 0xd, 0x2, 0x80003, 0x4, 0x1ffffffffffd, 0xb4, 0xfffffffffffffffe, 0x7, 0x10002, 0x7f, 0x2a2, 0x2, 0xa, 0x22000, 0x200, 0x2, 0x84, 0x0, 0x20, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000000000]}, 0x1fe, 0xd)
r2 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r2, 0xfffffffffffffd03, &(0x7f00000001c0))
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x8)
openat$auto_proc_gid_map_operations_base(0xffffffffffffff9c, 0x0, 0x0, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
setpriority$auto(0x4000000001, 0x100000001, 0x6)
mmap$auto(0x2000000, 0x400008, 0xdf, 0x9b72, 0x100000000002, 0x8000)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x1, 0x0)

4.31397293s ago: executing program 4 (id=1507):
r0 = openat$auto_tracing_cpumask_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/tracing_cpumask\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_tracing_iter_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/trace_options\x00', 0x2, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0x4)
openat$auto_evm_xattr_ops_evm_secfs(0xffffffffffffff9c, &(0x7f0000000100), 0xa2400, 0x0)
r2 = open(&(0x7f00000000c0)='./cgroup\x00', 0x0, 0xb5d1af1605322df2)
r3 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0xc00, 0x0)
ioctl$auto_EVIOCSMASK(r3, 0x40104593, &(0x7f0000000080)={0x2, 0x80000000, 0x7f})
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x55)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x90}, 0x20000081)
mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0x4)
socket(0x10, 0x3, 0x6)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x7ff, 0x9, 0x63, 0x0, 0x0, 0x0, 0x8, 0x200, 0x800000000100002, 0x40000406, 0x2, 0xc, 0x2, 0x11, 0x6, 0x7})
syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}, 0x1, 0x0, 0x0, 0x2000c000}, 0x4004)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xee46}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
open_by_handle_at$auto(r2, &(0x7f0000000280)={0x8, 0x2, '\r\x00\x00\x00\x00\x00\x00\x00'}, 0x2)
unshare$auto(0x40000080)
read$auto_tracing_iter_fops_trace(r1, &(0x7f00000001c0)=""/215, 0xd7)
readv$auto(r0, &(0x7f00000000c0)={&(0x7f0000000140), 0x7ff}, 0x7)

4.222314837s ago: executing program 0 (id=1509):
sysfs$auto(0x2, 0x10000000000002a, 0x0)
socket(0x10, 0x2, 0x0)
socket(0x2, 0x6, 0x0)
mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x401, 0xfffffffffffffffd, 0xd4, 0x4, 0x288, 0x0, 0x3, 0x401, 0x9, {0xfffffffe, 0x10000}, 0x5, 0x5, 0xfffffffffff7fffd, 0x1007ffd, 0x0, 0xfe, 0x81, 0xffffffffffff628e, 0xa74d, 0xdeb1, 0x804})
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
setsockopt$auto(0x3, 0x0, 0x13, 0xffffffffffffffff, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x3a600, 0x0)
ioctl$auto_KVM_X86_GET_MCE_CAP_SUPPORTED(r1, 0x8008ae9d, &(0x7f0000000000)=0x2)
mmap$auto(0x9, 0x9, 0x5, 0x12, r0, 0x58b5)
r2 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/net/rpc/nfs4.idtoname/channel\x00', 0x8f3b7a51b80ebd01, 0x0)
ioctl$auto_USBDEVFS_CONTROL32(r2, 0xc0105500, &(0x7f0000000080)={0x7a, 0x7d, 0x7, 0x4, 0x100, 0x7, 0xa})
r4 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000001280)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x2, 0x0)
write$auto_tomoyo_operations_securityfs_if(r4, &(0x7f00000012c0)="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", 0x10d)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/block2mtd/parameters/block2mtd\x00', 0x601, 0x0)
mmap$auto(0xd2a6, 0x4, 0x3, 0x427c, r3, 0x3)
write$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f0000000140)="e7696e5891a9bccbf2a814c2b1c2da6a4642e71e423e55bb3bdfb80fb3496c6bac2cd2cc3aa9633c3668b1128be76976577ef8b494eb27dd7c5c3009036684e6ce3fba9b6c44624a383a1a8daaf2a07cdc3efb51136711a3d8b8d74233b4c4ecce84f9d2a5ca501114d56c1a0499ae8acb22ed5caafa45df6d315664bd5e8188ad7fe06a284669d94a69dc6fb65b3fed2d93b01461860e9360cb1674e2869745a587809f441d6c6e3b306ec365b787e5b9b57f29", 0xb4)
mmap$auto(0x500, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
socket$nl_generic(0x10, 0x3, 0x10)
unshare$auto(0x40000080)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/bus/pci/drivers/gve/bind\x00', 0x84280, 0x0)
writev$auto(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x7}, 0x3)
ioperm$auto(0x3, 0xe, 0x2000000000000149)
r6 = getpgid(0x0)
r7 = pidfd_open$auto(r6, 0x0)
setns(r7, 0x4800007d)

3.457415412s ago: executing program 4 (id=1510):
socket(0xa, 0x1, 0x84) (async)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) (async)
mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000)
mremap$auto(0x4000, 0xfee0, 0x3fd6, 0x3, 0x18000) (async)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xffb8}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) (async)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/net/udp6\x00', 0x28102, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) (async)
getrandom$auto(0x0, 0x6000000, 0x3)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4) (async)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) (async)
madvise$auto(0x110c230002, 0x1, 0xd)
r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/irq/12/effective_affinity\x00', 0x1cd800, 0x0)
futex$auto(0x0, 0xc, 0xffffffff, 0x0, 0x0, 0x4) (async)
read$auto_proc_iter_file_ops_compat_inode(r0, &(0x7f0000000240)=""/160, 0xee) (async)
mmap$auto(0x2, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
r1 = socket(0xa, 0x2, 0x0)
statx$auto(0xffffff9c, 0x0, 0x1000, 0x1, 0x0)
setsockopt$auto(r1, 0x29, 0x30, 0x0, 0x56b)
r2 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ttyb5\x00', 0x2000, 0x0)
write$auto_console_fops_tty_io(r2, &(0x7f0000000440)="671d264add69b6440843b6e6688a2b5ad9df2669e6f9cd236532b20ed763ac8caf4bde4c30b530ac6ebbff950e1a647d6a08a1b55dde5a409b46", 0x3a) (async)
mmap$auto(0x0, 0x40009, 0x36, 0x9b72, 0x7, 0x28000) (async)
mmap$auto(0x40, 0x400008, 0x0, 0x1d, 0x2, 0x8000)
mlock$auto(0x5, 0xffff) (async)
syz_clone(0x9020000, 0x0, 0x0, 0x0, 0x0, 0x0) (async)
openat$auto_urandom_fops_random(0xffffffffffffff9c, &(0x7f0000004000), 0x40, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyu3\x00', 0x1, 0x0)
ioctl$auto_TIOCSETD2(r3, 0x5423, &(0x7f0000000080)="f5c94556d7b994ee4c7d6b964e87cfce41d8b86d8574badcc9a0191d85605665e0fa950b247f4667f57ca338d45bd2f88e5dd3dfe6600774e6503521259e0c7c3ddd5099d8b948915c1d3f49efad80b766") (async)
mmap$auto(0xfffffffffffffff9, 0x9, 0xdf, 0x9b72, 0x2, 0x10)

2.862668824s ago: executing program 4 (id=1511):
r0 = socket(0x2, 0x801, 0x84)
mmap$auto(0x0, 0x400008, 0xdf, 0xfffffffffffffeb8, r0, 0x8000)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
io_uring_setup$auto(0x6, 0x0)
socket(0x15, 0x4, 0x0)
mmap$auto(0x0, 0x2a, 0xdf, 0x9b72, 0x1000, 0x28000)
signalfd4$auto(0xffffffff, 0x0, 0x8, 0x0)
openat$auto_nsim_psample_enable_fops_psample(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim0/psample/enable\x00', 0x2, 0x0)
mq_open$auto(&(0x7f0000000000)='P\x02\xb9\xd5\x02r\xbc\xd0\t^\xc0!\x7f\xc0\xdd8\xb0\x80\xfa;\x97\x05n\xf4~Z\x05\xf1\xef\xd1\xf1\b\xd9J\x9bp\xdf\xe7\xcd\x1f\x84-\xbb\x05\xa5\xb8\xfc\xf7v<)\xddR\x02\xd8\r_\x03\xe7\x8eWta\xfa\xbd\xaf\x06kG\xf7\xaa6\x1ch\vmD\xfc|v\xd4Q', 0x7e, 0x9, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/scsi/sg/def_reserved_size\x00', 0x402, 0x0)
socket(0x1, 0x1, 0x0)
r1 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(r1, 0xffffffffffffffff, 0x0)
r2 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video0\x00', 0xa200, 0x0)
ioctl$auto(r2, 0xc0585611, r2)
mount_setattr$auto(0x0, 0xfffffffffffffffe, 0x100, 0x0, 0x20)
getsockopt$auto(r0, 0x84, 0x6d, 0x0, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x2000, 0x0)
read$auto(r3, 0x0, 0x20)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
mmap$auto(0x5, 0x8, 0xe3, 0x9b7f, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x3, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x2, 0xc)
socket(0x2, 0x1, 0x0)
setsockopt$auto(0x6, 0x6, 0x14, &(0x7f0000000240)='ns/cgroup\x00', 0xc)
syz_clone(0x68000000, 0x0, 0x0, 0x0, 0x0, 0x0)

2.566233469s ago: executing program 2 (id=1513):
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x3, 0xc, 0x9c0b, 0x44eb2, 0x10006, 0x300000000000)
socket(0x2, 0x3, 0x6)
r0 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = gettid()
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x60742, 0x0)
write$auto(0x3, 0x0, 0x7fffffff)
mmap$auto(0x0, 0xfffffffffffffffd, 0xdf, 0x10, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
close_range$auto(0x2, 0xa, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
kill$auto(r1, 0x11)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4c084}, 0x51)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x5, 0x0, 0x0, 0x9}, 0x1ff}, 0x3, 0x0)
r3 = syz_open_procfs$namespace(0x0, &(0x7f0000000100)='ns/ipc\x00')
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0xffffffffffffffff, 0x28000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = openat$auto_nvmf_dev_fops_fabrics(0xffffffffffffff9c, &(0x7f00000004c0), 0x121202, 0x0)
write$auto_nvmf_dev_fops_fabrics(r4, 0x0, 0x0)
readv$auto(0x3, &(0x7f00000002c0)={0x0, 0x8}, 0x8)
ioctl$NS_GET_PARENT(r3, 0xb701, 0x0)

2.21097723s ago: executing program 2 (id=1514):
openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000080), 0x40000, 0x0)
fcntl$auto(0x3, 0x80000004, 0xa553)

2.072763585s ago: executing program 2 (id=1515):
r0 = openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/usb/usbmon/9t\x00', 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0x8, 0x8000)
r1 = socket(0x10, 0x2, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22040, 0x75)
socket(0x840000000002, 0x3, 0xff)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c"], 0x30}, 0x1, 0x0, 0x0, 0x8841}, 0x40000)
pread64$auto(r0, 0x0, 0x0, 0xd)
read$auto_mon_fops_text_t_mon_text(r0, 0x0, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0x44a101, 0x0)

1.80742858s ago: executing program 2 (id=1516):
socket(0x2, 0x3, 0xc)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x0, 0x5, 0x0, 0x26)
setsockopt$auto(0x3, 0x0, 0x5, 0x0, 0x28)
kexec_load$auto(0x5, 0x7, &(0x7f0000000040)={@kbuf=0x0, 0x800c01f, 0x40000000, 0x800c000}, 0x4) (async)
kexec_load$auto(0x5, 0x7, &(0x7f0000000040)={@kbuf=0x0, 0x800c01f, 0x40000000, 0x800c000}, 0x4)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0) (async)
r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x848000000015, 0x805, 0x0)
bind$auto(0x3, &(0x7f0000000000)=@in={0x2, 0x0, @local}, 0x68) (async)
bind$auto(0x3, &(0x7f0000000000)=@in={0x2, 0x0, @local}, 0x68)
r2 = socket(0x15, 0x5, 0x0)
getsockopt$auto(r2, 0x114, 0x2715, 0xfffffffffffffffc, 0x0) (async)
getsockopt$auto(r2, 0x114, 0x2715, 0xfffffffffffffffc, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
r4 = ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r3)
ioctl$auto_KVM_GET_MSRS(r1, 0x4008ae89, &(0x7f0000000040)={0x2})
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
r5 = openat$auto_generic(0xffffffffffffff9c, &(0x7f00000032c0)='/proc/kmsg\x00', 0x2, 0x0)
read$auto_proc_page_owner_threshold_(r5, &(0x7f0000000300)=""/75, 0x4b)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x28, 0x1, 0x0) (async)
socket(0x28, 0x1, 0x0)
connect$auto(0x3, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2710, @local}, 0x55) (async)
connect$auto(0x3, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2710, @local}, 0x55)
close_range$auto(r4, r1, 0x0) (async)
close_range$auto(r4, r1, 0x0)
ioctl$auto_MEMGETINFO(r0, 0x80204d01, &(0x7f0000000080)={0x80, 0x58, 0x7, 0x9, 0x5, 0x7})
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x0) (async)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x0)
sysfs$auto(0x2, 0x3, 0x0) (async)
sysfs$auto(0x2, 0x3, 0x0)

1.087187894s ago: executing program 0 (id=1517):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x14f602, 0x0)
r0 = open_by_handle_at$auto(0xffffffffffffffff, 0x0, 0xffffffff)
mmap$auto(0x7fffffffffffffff, 0x20009, 0xdf, 0xffffffffffffffff, r0, 0x8000)
prctl$auto_PR_PAC_RESET_KEYS(0x36, 0x0, 0xffffffffffffffff, 0x9, 0x7)
write$auto(0xffffffffffffffff, 0x0, 0x4)
munlock$auto(0xfffffffffffffff8, 0x1000)
mmap$auto(0x0, 0x2020009, 0x3, 0x10011, 0xfffffffffffffffa, 0x8000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x7cf702, 0x0) (async)
mmap$auto(0x0, 0x810004, 0x2, 0x8000000008011, 0x3, 0x8000) (async)
write$auto(0x3, 0x0, 0xfffffdef)
write$auto(0x3, 0x0, 0xfffffdef)
connect$auto(0xffffffffffffffff, 0x0, 0x55) (async)
r1 = socket(0x11, 0x80003, 0x300)
setsockopt$auto(r1, 0x107, 0x1, 0x0, 0x8004)
r2 = socket(0x10, 0x2, 0x4) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}}, 0x40000)
r3 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r4 = syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$auto_SMC_PNETID_GET(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r4, 0x321, 0x70bd29, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x4804) (async)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'dummy0\x00'}) (async)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/cgroup\x00') (async)
mprotect$auto(0x7, 0x8000000000000000, 0x2) (async)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x2404c000)
write$auto(r2, &(0x7f0000000000)='-\x00', 0x2fb)

941.222532ms ago: executing program 4 (id=1518):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
memfd_create$auto(0x0, 0x9)
write$auto(0x3, 0x0, 0xfffffdf2)
ftruncate$auto(0x3, 0x700)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
write$auto(0x3, 0x0, 0x9)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
poll$auto(&(0x7f0000000080)={r0, 0x314}, 0x40, 0x743)
openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x0, 0x0)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/vm/compaction_proactiveness\x00', 0x40001, 0x0)
write$auto(r1, &(0x7f0000000040)='\x00', 0x9)
r2 = openat$auto_tracing_mark_raw_fops_trace(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/debug/tracing/trace_marker_raw\x00', 0x549c00, 0x0)
read$auto(r2, &(0x7f0000000180)='/+I\xf7\x00\x96\xb9\x00\x00\xd4\xaas\x10\xff@\xd2\xe0o\x8a\x16\xfb@\xedLV\xe0\x18eu\x00\x00\x00\xf6\xcf\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00', 0x40000008df)
read$auto(r2, 0x0, 0x80000000000000d)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/fail-nth\x00', 0x111d43, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
r4 = socket(0x2, 0x5, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0x2, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
sendmmsg$auto(r4, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1a000}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311)
sysfs$auto(0x2, 0x4, 0x0)
setsockopt$auto(0x3, 0x10000000084, 0xd, 0x0, 0x8)
writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tracing_cpumask_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/tracing_cpumask\x00', 0x0, 0x0)

842.244923ms ago: executing program 2 (id=1519):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001d80)='/sys/devices/virtual/sound/ctl-led/speaker/card0/attach\x00', 0x1, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000040)="3100001000000000002ca65de95b667827494d", 0x5e) (async)
mmap$auto(0x0, 0x7, 0x4000000000e0, 0xeb1, 0x401, 0x400)
mmap$auto(0x0, 0x7, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000) (async)
socket(0x2, 0x5, 0x0)
io_uring_setup$auto(0x6, 0x0)
setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x20681, 0x0) (async)
rseq$auto(&(0x7f00000001c0)={0xe, 0x6, 0x0, 0x9, 0xffffffff, 0x2, "4125a04a5a947c57594bdcf48be8f6f8203586427262672331fe7a514e555423210c136544a046d30a2cf16bf4c899e9033fc264674bb55a7a268449affb6db8e65163e451dc24c7fb7fa98cf5288dc4247f5668b3a994108fc46f8ac24670df2b882ba648d71ee94e8d9f196246026261de899b94f6c55c9dcefb"}, 0x8000, 0x0, 0x6) (async)
migrate_pages$auto(0x0, 0x2, 0x0, &(0x7f00000000c0)=0x3)
mmap$auto(0x0, 0x2020009, 0x38e90acd, 0xeb1, 0xfffefffffffffffa, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80200, 0x0) (async)
unshare$auto(0x40000080) (async)
mmap$auto(0x0, 0x3, 0x40000000009f, 0x10000000040eb1, 0x401, 0x300000000000) (async, rerun: 64)
r1 = openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, 0x0, 0x260582, 0x0) (async, rerun: 64)
setsockopt$auto(0x400000000000003, 0x29, 0x1c, 0x0, 0x56b)
r2 = syz_clone(0x80f400, 0x0, 0x0, 0x0, 0x0, 0x0) (async)
mmap$auto(0x0, 0x4, 0x3, 0x100040eb1, r1, 0x300000000002) (async, rerun: 64)
setsockopt$auto_SO_MAX_PACING_RATE(0xffffffffffffffff, 0x3, 0x2f, &(0x7f0000000300)='\xba\xf13\xa4o\xd3\xd2\xe0v\x95\xe6mAk\x90\xa1\xfd\xb0\xe1\xa6W\x85py\x91Q\xe7\xc9\x05\xce\x17\xe6<0e\x12\xe8/\x16\xf0\xd2\xe5\x06[\vFb\xd6\xc0sTv*\xa6\x97\xb4\xcf\xc8d^\xb1\x7f\xeeH\xd2\xa8\xeb\xad\xdfw\xad\x1e\xcf\x13\xd2\xbbh\xb7\xb1\xa2\x14\xbe=Q\xf3\xd6\x85\x8as\x04\x93\x8c3\n\x9e\xcc\xbdP\x89\xee\xa8\x82\x03\x97\xe6^\x85#\x11T\x8dE\xba\nF\xc2\xe2\x06k\xf0~\xa3\x86h\xc2\xb8\xcfk\x1f', 0x4) (async, rerun: 64)
pidfd_open$auto(0x0, 0x0)
rt_tgsigqueueinfo$auto(0xffffffffffffffff, 0x0, 0x8, 0x0)
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x40) (async)
execve$auto(&(0x7f0000000180)='./file0\x00', &(0x7f0000000100)=&(0x7f0000000080)='\xac\x10', 0x0) (async)
ptrace$auto(0x4206, r2, 0x0, 0x5)
mmap$auto(0x0, 0x400000000, 0x5, 0x18, 0xffffffffffffffff, 0x8005) (async)
move_pages$auto(0x1, 0x233, 0x0, 0x0, 0x0, 0x8000000000000000)
symlink$auto(0x0, &(0x7f0000000000)='./file0\x00') (async)
r3 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000480), 0x60000, 0x0)
mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, r3, 0x8000)

509.213061ms ago: executing program 0 (id=1520):
acct$auto(&(0x7f0000000340)='/sys/kernel/config/target/core/alua/lu_gps/default_lu_gp/dT\x02\xa2%h\xdd\xfep\x0e\xe6\x96w\x05r\x9c\xb6L\t0\x0f\x954\xf6\b\xa0&C\x83L\xc0\xe9\t\"\xa5\x8f\xce\x03\xb6\x16\x90\xc3\x97\xb7\n\"zB\xedCf\xfd \x87\xdb\x8f\x87\xe9\xea\x89-B\x06\x97\xcb+\xf09\xa1\xa5\x8d\x9b\b\xc8\x15\xb6|\xc7 t\xc8#\xf8,\xab\x96\xf6\x03Z\x93\xf5\xc8\x87\xc9z}]\x85\xcc\xd5d\x02_\xd4>b\x96\xc5\x93\xb1\xa0E\xda\xb8\xb1\xa5G\r\xf4[\xec \"\xd9\x13\x803\xa6V\xe3\x06\xc72\xc0d|?\xfaA\xd2\xd6\xce\xfa\x9a\x98\x01\aXV.\xf15>;\xfaR\xcb\xc2v\x0f\xfc\xb3:f\x8f\xae\xcc\xbb\xd2\xfa\xef%\xfa\x85\xd9\x7fL\xad\xab\xd0\xd1\xc9v{Ze\x8a\xeb~\xf1V<\xc2p~\x90\xe6\x1c\xf86\xeb\x11\xe2\x90\rr\xda.\x82\xbd\x0f\xbd{\x861\x03\xda-#\\^`\xc8\x01%V\xab\r\b\xde\xaa\xf8s\x86K\bR\x12\xbc{\xef\xc5<\xfd\x02\xe2\xf0\br\xb4\n\xe4\xa6\v\xbcd\x1e\xe9\xbd\x18\x89\xa1\xe8w\x0e7\xae\x10e\xb6\xce\xe25\xdf\xd8\x12X`\xec\n\x87\x86X\x9b\x80i7\xcb\xed\xbdQ\xe4\xbb*\xedq\xb0>\x92\xb6W\b\x1eV\xadk\x11\xa9\xa1\x1f\xe1\xac\xb7\xd0\xcc\x94\xc1g\x8c\xe5\xf0\"\xe1\xc2. \\X\xe0\xd30\xa9X\x8d@\xb1\xddS\xbey\xb4]j \x96\xe3\x84\xcc\x02C\xd23\x16T\xden\"\xea\xf2j\b\xd2\xf6\xe5\xc2a\xaa\xefr\x80\rZ\x06s\xa0\xaf\x93MmM|\xfdN\x19\xf0RS\xc4\xca\x84H\x19T\xd4\xc4>\x8e\x050\x9c\x8f\xa9P\x8a\xd0\xd48\xb4\x0e0\xff\x98\xce\x01\'\x83i\xd9\x94\xcf\xd7\x03_|J\x9b\x06q\x0e\xdf_/u\xfa\xcd\xb9\"L\x17\xc3\xdc\x16\xc7\x02\xb7\x91\x85Ot\xd0r\xc2r\xee\xce\xefU\x1a\x89\xd6,\x04\x96o<o\x814\xb4\v?6>\xb9\x1b\x00\xec\xf17\xbbpu\xeeW\xd7HSXt\xe4\xf07+\xc8\xd3\x87|\x15\x9b\x95t\x195l\xcb\xfd\xae@\xbd>\xdcd\xaa\x19r\xec_>\xf2\x7f\xe6\xe7\x1c\x1dE\x87k(k\x98\x81\xe8\t\"\xed\x94\xe33\xfd*\xc1\xcc\x98\x1d\xdd\x9c\v\xc3\xef\x9b\xc3\xca\x14\xb54\x8aS\xa0`*\xc4\xe6|n\xc7\xbf1\x02yc\xc2\xf3\xb1\x0e\xb4\xc5\xf3\xe2\x10\xa9\xbdQ\xb6') (async)
acct$auto(&(0x7f0000000340)='/sys/kernel/config/target/core/alua/lu_gps/default_lu_gp/dT\x02\xa2%h\xdd\xfep\x0e\xe6\x96w\x05r\x9c\xb6L\t0\x0f\x954\xf6\b\xa0&C\x83L\xc0\xe9\t\"\xa5\x8f\xce\x03\xb6\x16\x90\xc3\x97\xb7\n\"zB\xedCf\xfd \x87\xdb\x8f\x87\xe9\xea\x89-B\x06\x97\xcb+\xf09\xa1\xa5\x8d\x9b\b\xc8\x15\xb6|\xc7 t\xc8#\xf8,\xab\x96\xf6\x03Z\x93\xf5\xc8\x87\xc9z}]\x85\xcc\xd5d\x02_\xd4>b\x96\xc5\x93\xb1\xa0E\xda\xb8\xb1\xa5G\r\xf4[\xec \"\xd9\x13\x803\xa6V\xe3\x06\xc72\xc0d|?\xfaA\xd2\xd6\xce\xfa\x9a\x98\x01\aXV.\xf15>;\xfaR\xcb\xc2v\x0f\xfc\xb3:f\x8f\xae\xcc\xbb\xd2\xfa\xef%\xfa\x85\xd9\x7fL\xad\xab\xd0\xd1\xc9v{Ze\x8a\xeb~\xf1V<\xc2p~\x90\xe6\x1c\xf86\xeb\x11\xe2\x90\rr\xda.\x82\xbd\x0f\xbd{\x861\x03\xda-#\\^`\xc8\x01%V\xab\r\b\xde\xaa\xf8s\x86K\bR\x12\xbc{\xef\xc5<\xfd\x02\xe2\xf0\br\xb4\n\xe4\xa6\v\xbcd\x1e\xe9\xbd\x18\x89\xa1\xe8w\x0e7\xae\x10e\xb6\xce\xe25\xdf\xd8\x12X`\xec\n\x87\x86X\x9b\x80i7\xcb\xed\xbdQ\xe4\xbb*\xedq\xb0>\x92\xb6W\b\x1eV\xadk\x11\xa9\xa1\x1f\xe1\xac\xb7\xd0\xcc\x94\xc1g\x8c\xe5\xf0\"\xe1\xc2. \\X\xe0\xd30\xa9X\x8d@\xb1\xddS\xbey\xb4]j \x96\xe3\x84\xcc\x02C\xd23\x16T\xden\"\xea\xf2j\b\xd2\xf6\xe5\xc2a\xaa\xefr\x80\rZ\x06s\xa0\xaf\x93MmM|\xfdN\x19\xf0RS\xc4\xca\x84H\x19T\xd4\xc4>\x8e\x050\x9c\x8f\xa9P\x8a\xd0\xd48\xb4\x0e0\xff\x98\xce\x01\'\x83i\xd9\x94\xcf\xd7\x03_|J\x9b\x06q\x0e\xdf_/u\xfa\xcd\xb9\"L\x17\xc3\xdc\x16\xc7\x02\xb7\x91\x85Ot\xd0r\xc2r\xee\xce\xefU\x1a\x89\xd6,\x04\x96o<o\x814\xb4\v?6>\xb9\x1b\x00\xec\xf17\xbbpu\xeeW\xd7HSXt\xe4\xf07+\xc8\xd3\x87|\x15\x9b\x95t\x195l\xcb\xfd\xae@\xbd>\xdcd\xaa\x19r\xec_>\xf2\x7f\xe6\xe7\x1c\x1dE\x87k(k\x98\x81\xe8\t\"\xed\x94\xe33\xfd*\xc1\xcc\x98\x1d\xdd\x9c\v\xc3\xef\x9b\xc3\xca\x14\xb54\x8aS\xa0`*\xc4\xe6|n\xc7\xbf1\x02yc\xc2\xf3\xb1\x0e\xb4\xc5\xf3\xe2\x10\xa9\xbdQ\xb6')
acct$auto(&(0x7f00000000c0)='\x00')
r0 = socket(0x1e, 0x5, 0x8)
sendmmsg$auto(r0, &(0x7f0000000400)={{&(0x7f0000000140)="7f4d10b7cb9d9e6f939737de3694cb37a3597ce55ffe4e6e3f3017c058d716385bff87d41253e2efda562a4f1e", 0x5aa, &(0x7f0000000100)={&(0x7f0000000000)="661b0caf4a70edd5f7dd638d5207237b901d8adaa581f41f38afbf4263a7bece537e3231a722ea09c79fdb8d5b64bc226c28f0b089e4bed05e1d2d817f12908f33e1e259273775850a7d335983f31800b143b95953c2a7c31ecdb6e5202f5595d62a4d531fd31fdecb074898ced1a1ebe668e2a224013856cf3e942b0517bdc8eab1e6ea6a3dd56c57b7b561050541788a759b088c1b2bddc2b935b1160332c60c25e83d8912c49b7cb20e", 0x49}, 0x1, &(0x7f0000000200), 0xfffffffffffffffc, 0x3}, 0x5}, 0x2, 0x3fe)

409.644259ms ago: executing program 2 (id=1521):
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x1, 0x7356, 0x33, 0x65f, 0x1ffde, 0x7, 0xffffffffffffffff, 0x20000009, 0x4, 0x3, 0x6, 0x2091, 0xb4, 0x9, 0x6, 0x6, 0x87, 0x4, 0x9, 0x400, 0x2, 0x203, 0x0, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf9bb]}, 0x1fe, 0x800d)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
r0 = openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000440), 0x20100, 0x0)
ioctl$auto_LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0004, 0x19)
r1 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, 0x0, 0x189160, 0x0)
ioctl$auto_BINDER_VERSION(r1, 0xc0046209, 0x0)
mmap$auto(0x0, 0x40009, 0x2, 0x9b72, 0x2, 0x28000)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
madvise$auto(0x0, 0x200007, 0x19)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x9, 0x3)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x40842, 0x8)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, 0x0, 0x102, 0x0)
openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/kvm/nmi_window_exits\x00', 0x4c2, 0x0)
io_uring_setup$auto(0x8, 0x0)
socket(0x10, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card1\x00', 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xac}, 0x5, 0x0, 0x1, 0x697b}, 0xed7138c}, 0x2, 0x9)
recvmmsg$auto(0x4, 0x0, 0x7, 0xe, 0x0)
recvfrom$auto(0x4, 0x0, 0x101d0, 0x3ffffd, 0x0, 0x0)

0s ago: executing program 0 (id=1522):
mmap$auto(0x0, 0x412, 0xb, 0xeb1, 0x401, 0x88000)
close_range$auto(0x2, 0x8, 0x0)
socketpair$auto(0x1, 0x1, 0x1, 0x0)
fanotify_init$auto(0x2, 0x4)
pipe$auto(0x0)
dup2$auto(0x5, 0x4) (async)
dup2$auto(0x5, 0x4)
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) (async)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
splice$auto(0x4, 0x0, 0x2, 0x0, 0x80000001, 0x9)
write$auto(0x6, 0x0, 0x100000001) (async)
write$auto(0x6, 0x0, 0x100000001)

kernel console output (not intermixed with test programs):

sing attributes in process `syz.0.593'.
[  278.868143][ T8826] netlink: 'syz.0.596': attribute type 27 has an invalid length.
[  278.876049][ T8826] netlink: 334 bytes leftover after parsing attributes in process `syz.0.596'.
[  278.906773][ T8827] netlink: 'syz.0.596': attribute type 27 has an invalid length.
[  278.930432][ T8827] netlink: 334 bytes leftover after parsing attributes in process `syz.0.596'.
[  279.542746][ T8800] netlink: 19 bytes leftover after parsing attributes in process `syz.2.591'.
[  284.509917][ T8908] ptrace attach of "./syz-executor exec"[7991] was attempted by "./syz-executor exec"[8908]
[  290.273083][ T8987] netlink: 28 bytes leftover after parsing attributes in process `syz.2.627'.
[  292.415370][ T9015] syz.1.633: vmalloc error: size 1859584, failed to allocate pages, mode:0xcc2(GFP_KERNEL|__GFP_HIGHMEM), nodemask=(null),cpuset=/,mems_allowed=0-1
[  292.500089][ T9015] CPU: 0 UID: 0 PID: 9015 Comm: syz.1.633 Not tainted 6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  292.500133][ T9015] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  292.500151][ T9015] Call Trace:
[  292.500161][ T9015]  <TASK>
[  292.500185][ T9015]  dump_stack_lvl+0x16c/0x1f0
[  292.500235][ T9015]  warn_alloc+0x248/0x3a0
[  292.500270][ T9015]  ? __pfx_warn_alloc+0x10/0x10
[  292.500305][ T9015]  ? alloc_pages_mpol+0x25a/0x550
[  292.500344][ T9015]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  292.500407][ T9015]  ? trace_kmalloc+0x2b/0xd0
[  292.500458][ T9015]  __vmalloc_node_range_noprof+0x12d2/0x1540
[  292.500520][ T9015]  ? __snd_dma_alloc_pages+0x50/0x90
[  292.500552][ T9015]  ? do_alloc_pages+0xd7/0x280
[  292.500596][ T9015]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  292.500645][ T9015]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  292.500696][ T9015]  ? __snd_dma_alloc_pages+0x50/0x90
[  292.500726][ T9015]  vmalloc_noprof+0x6b/0x90
[  292.500773][ T9015]  ? __snd_dma_alloc_pages+0x50/0x90
[  292.500798][ T9015]  ? __pfx_snd_dma_vmalloc_alloc+0x10/0x10
[  292.500826][ T9015]  __snd_dma_alloc_pages+0x50/0x90
[  292.500854][ T9015]  snd_dma_alloc_dir_pages+0x151/0x240
[  292.500885][ T9015]  do_alloc_pages+0x115/0x280
[  292.500936][ T9015]  snd_pcm_lib_malloc_pages+0x3df/0x980
[  292.500992][ T9015]  snd_pcm_hw_params+0x15e1/0x1b40














	


























	
	

	








	






	






		










	

	
	
	
	



			
			
	
	
		



	


	








	
	




	

	

	
	
	

			
			
	

		
		
		


	







	



	
	
	

			
			
	

		
		
		


	







	



			
	
	
	
	

			
			
		






			
	
	
	
	

			
			
		






			
	
	
	
	

			
			
		






			
	
	
	
	

			
			
		















	
	
	


	
	
	
	
	
	
	
	
	
	
	


	
	
	










	
	
	
	
	
	
	
	
	
	
	





	





	





	





	






	











	






		


	

	
		
	

	
		
	

	
		
	

	
		
	

	
		
	
				
	
		
	
	

	


	
		

	


	
	

		
	
		
	
	

	



			








	



	



		


		


		


		

	







	

		










	
	










	
	






	




	





		









	

	
		





		


	


	



		


	































	
	


	

				



	





































		





	

	





	









	

	












	



	
		

	


	
	

		
	
		
	
	

	



			








	





	





		
		

		
		
		
		


		


	

		


















	


	
	








	




	





		










	

	
		

	


	
	

		
	
		
	
	

	



			








	

	






	



	




	



	
	

	

			

			







	



	

	


	






	



	
	



	
	


	






	






	







		









	


	

	
		

	
	

	
		
	

	
		
	

	
		
	

	
		
	

	
		

		

		
		
	

	
		





	

	









		




	

	
		
	

	
		


	
	
	
	
	
	
	
	
	

	
		

	


	
	

		
	
		
	
	

	



			








	




	











	
		
		
		
		
	

	



	

	

		

			
		
		
		


		


	

		


















	


	
	








	




	




		







	

	
	
		
		

		

		
		


	
	
	

	
		

		

	
	

	
		
	

	
		
	




	
				

	
		
			
			


	
	

	
		
	

	
		

	
				
	
	



	

	



	


	

	
		
	

	
		
	
	

	
	
				
		
		

	


		


	


	

	
		
	
	

	

	
				
	
		


	



	


			
		
		

	

	
		
	

	
		
	

	
		

	

	

	
		



	








syzkaller
syzkaller login: [  353.033631][ T9851] tipc: can't start tipc send workqueue
[  353.764084][ T9879] netlink: 326 bytes leftover after parsing attributes in process `syz.0.815'.
[  353.919817][ T9879] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes.
[  353.969449][ T9879] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes.
[  354.826724][ T9891] FAULT_INJECTION: forcing a failure.
[  354.826724][ T9891] name fail_futex, interval 1, probability 0, space 0, times 0
[  354.873760][ T9891] CPU: 1 UID: 0 PID: 9891 Comm: syz.1.818 Tainted: G     U              6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  354.873804][ T9891] Tainted: [U]=USER
[  354.873811][ T9891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  354.873824][ T9891] Call Trace:
[  354.873830][ T9891]  <TASK>
[  354.873839][ T9891]  dump_stack_lvl+0x16c/0x1f0
[  354.873876][ T9891]  should_fail_ex+0x512/0x640
[  354.873911][ T9891]  get_futex_key+0x1c2/0x1000
[  354.873937][ T9891]  ? __pfx_get_futex_key+0x10/0x10
[  354.873968][ T9891]  futex_wake+0xe7/0x4e0
[  354.873993][ T9891]  ? rcu_is_watching+0x12/0xc0
[  354.874016][ T9891]  ? __pfx_futex_wake+0x10/0x10
[  354.874055][ T9891]  do_futex+0x1e3/0x350
[  354.874078][ T9891]  ? __pfx_do_futex+0x10/0x10
[  354.874099][ T9891]  ? __might_fault+0xe3/0x190
[  354.874131][ T9891]  mm_release+0x24e/0x300
[  354.874156][ T9891]  do_exit+0x898/0x2c30
[  354.874198][ T9891]  ? __pfx_futex_wake_mark+0x10/0x10
[  354.874245][ T9891]  ? __pfx_do_exit+0x10/0x10
[  354.874281][ T9891]  ? do_raw_spin_lock+0x12c/0x2b0
[  354.874315][ T9891]  ? find_held_lock+0x2b/0x80
[  354.874341][ T9891]  do_group_exit+0xd3/0x2a0
[  354.874375][ T9891]  get_signal+0x2673/0x26d0
[  354.874411][ T9891]  ? __pfx_get_signal+0x10/0x10
[  354.874436][ T9891]  ? do_futex+0x122/0x350
[  354.874460][ T9891]  ? __pfx_do_futex+0x10/0x10
[  354.874487][ T9891]  arch_do_signal_or_restart+0x8f/0x7a0
[  354.874522][ T9891]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  354.874571][ T9891]  syscall_exit_to_user_mode+0x150/0x2a0
[  354.874605][ T9891]  do_syscall_64+0xda/0x230
[  354.874640][ T9891]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  354.874664][ T9891] RIP: 0033:0x7fa86718e969
[  354.874682][ T9891] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  354.874703][ T9891] RSP: 002b:00007fa8680490e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  354.874725][ T9891] RAX: fffffffffffffe00 RBX: 00007fa8673b5fa8 RCX: 00007fa86718e969
[  354.874740][ T9891] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa8673b5fa8
[  354.874754][ T9891] RBP: 00007fa8673b5fa0 R08: 0000000000000000 R09: 0000000000000000
[  354.874767][ T9891] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa8673b5fac
[  354.874781][ T9891] R13: 0000000000000000 R14: 00007ffd7a758140 R15: 00007ffd7a758228
[  354.874809][ T9891]  </TASK>
[  355.109016][    C1] vkms_vblank_simulate: vblank timer overrun
[  358.882265][ T9959] FAULT_INJECTION: forcing a failure.
[  358.882265][ T9959] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  358.895503][ T9959] CPU: 0 UID: 0 PID: 9959 Comm: syz.0.834 Tainted: G     U              6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  358.895541][ T9959] Tainted: [U]=USER
[  358.895548][ T9959] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  358.895561][ T9959] Call Trace:
[  358.895569][ T9959]  <TASK>
[  358.895577][ T9959]  dump_stack_lvl+0x16c/0x1f0
[  358.895614][ T9959]  should_fail_ex+0x512/0x640
[  358.895652][ T9959]  _copy_from_user+0x2e/0xd0
[  358.895688][ T9959]  vmci_host_unlocked_ioctl+0xb97/0x2010
[  358.895731][ T9959]  ? __pfx_vmci_host_unlocked_ioctl+0x10/0x10
[  358.895791][ T9959]  ? find_held_lock+0x2b/0x80
[  358.895813][ T9959]  ? hook_file_ioctl_common+0x145/0x410
[  358.895846][ T9959]  ? __fget_files+0x20e/0x3c0
[  358.895887][ T9959]  ? __pfx_vmci_host_unlocked_ioctl+0x10/0x10
[  358.895929][ T9959]  __x64_sys_ioctl+0x190/0x200
[  358.895963][ T9959]  do_syscall_64+0xcd/0x230
[  358.895999][ T9959]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  358.896030][ T9959] RIP: 0033:0x7f0a3938e969
[  358.896048][ T9959] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  358.896071][ T9959] RSP: 002b:00007f0a3a2a0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  358.896092][ T9959] RAX: ffffffffffffffda RBX: 00007f0a395b5fa0 RCX: 00007f0a3938e969
[  358.896107][ T9959] RDX: 0000000000000006 RSI: 00000000000007a0 RDI: 0000000000000008
[  358.896121][ T9959] RBP: 00007f0a39410ab1 R08: 0000000000000000 R09: 0000000000000000
[  358.896135][ T9959] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  358.896149][ T9959] R13: 0000000000000000 R14: 00007f0a395b5fa0 R15: 00007ffd456d4018
[  358.896178][ T9959]  </TASK>
[  360.136399][ T5831] Bluetooth: hci2: command 0x0406 tx timeout
[  360.489161][    C1] vkms_vblank_simulate: vblank timer overrun
[  363.733593][    C1] vkms_vblank_simulate: vblank timer overrun
[  364.068874][    C1] vkms_vblank_simulate: vblank timer overrun
[  364.503202][    C1] vkms_vblank_simulate: vblank timer overrun
[  364.820686][T10054] : renamed from gre0 (while UP)
[  365.547528][T10058] netlink: 186 bytes leftover after parsing attributes in process `syz.1.855'.
[  366.159288][T10077] FAULT_INJECTION: forcing a failure.
[  366.159288][T10077] name failslab, interval 1, probability 0, space 0, times 0
[  366.244582][T10077] CPU: 1 UID: 0 PID: 10077 Comm: syz.0.858 Tainted: G     U              6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  366.244643][T10077] Tainted: [U]=USER
[  366.244654][T10077] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  366.244672][T10077] Call Trace:
[  366.244683][T10077]  <TASK>
[  366.244695][T10077]  dump_stack_lvl+0x16c/0x1f0
[  366.244745][T10077]  should_fail_ex+0x512/0x640
[  366.244789][T10077]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  366.244829][T10077]  should_failslab+0xc2/0x120
[  366.244866][T10077]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  366.244902][T10077]  ? __kernfs_new_node+0xd2/0x8a0
[  366.244959][T10077]  __kernfs_new_node+0xd2/0x8a0
[  366.245015][T10077]  ? __pfx___kernfs_new_node+0x10/0x10
[  366.245077][T10077]  ? find_held_lock+0x2b/0x80
[  366.245108][T10077]  ? kernfs_root+0xee/0x2a0
[  366.245145][T10077]  kernfs_new_node+0x13c/0x1e0
[  366.245188][T10077]  __kernfs_create_file+0x53/0x350
[  366.245236][T10077]  sysfs_add_file_mode_ns+0x207/0x3c0
[  366.245296][T10077]  internal_create_group+0x578/0xf30
[  366.245339][T10077]  ? __pfx_internal_create_group+0x10/0x10
[  366.245377][T10077]  ? kernfs_create_link+0x1bd/0x240
[  366.245426][T10077]  internal_create_groups+0x9d/0x150
[  366.245461][T10077]  device_add+0xf30/0x1a70
[  366.245508][T10077]  ? __pfx_device_add+0x10/0x10
[  366.245551][T10077]  ? lockdep_init_map_type+0x5c/0x280
[  366.245595][T10077]  ? __init_waitqueue_head+0xca/0x150
[  366.245668][T10077]  netdev_register_kobject+0x182/0x3a0
[  366.245717][T10077]  register_netdevice+0x13dc/0x2270
[  366.245766][T10077]  ? __pfx_register_netdevice+0x10/0x10
[  366.245809][T10077]  ? alloc_netdev_mqs+0xe7e/0x1570
[  366.245850][T10077]  ? __pfx_loopback_net_init+0x10/0x10
[  366.245891][T10077]  register_netdev+0x34/0x50
[  366.245929][T10077]  loopback_net_init+0x7a/0x170
[  366.245969][T10077]  ? __pfx_loopback_net_init+0x10/0x10
[  366.246007][T10077]  ops_init+0x1df/0x5f0
[  366.246069][T10077]  setup_net+0x21e/0x850
[  366.246113][T10077]  ? __pfx_setup_net+0x10/0x10
[  366.246150][T10077]  ? lockdep_init_map_type+0x5c/0x280
[  366.246193][T10077]  ? __pfx_down_read_killable+0x10/0x10
[  366.246249][T10077]  ? debug_mutex_init+0x37/0x70
[  366.246284][T10077]  copy_net_ns+0x2a6/0x5f0
[  366.246333][T10077]  create_new_namespaces+0x3ea/0xad0
[  366.246381][T10077]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  366.246422][T10077]  ksys_unshare+0x45b/0xa40
[  366.246467][T10077]  ? __pfx_ksys_unshare+0x10/0x10
[  366.246510][T10077]  ? xfd_validate_state+0x5d/0x180
[  366.246565][T10077]  ? rcu_is_watching+0x12/0xc0
[  366.246605][T10077]  __x64_sys_unshare+0x31/0x40
[  366.246661][T10077]  do_syscall_64+0xcd/0x230
[  366.246712][T10077]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  366.246746][T10077] RIP: 0033:0x7f0a3938e969
[  366.246773][T10077] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  366.246805][T10077] RSP: 002b:00007f0a3a2a0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  366.246836][T10077] RAX: ffffffffffffffda RBX: 00007f0a395b5fa0 RCX: 00007f0a3938e969
[  366.246858][T10077] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  366.246877][T10077] RBP: 00007f0a39410ab1 R08: 0000000000000000 R09: 0000000000000000
[  366.246897][T10077] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  366.246916][T10077] R13: 0000000000000000 R14: 00007f0a395b5fa0 R15: 00007ffd456d4018
[  366.246959][T10077]  </TASK>
[  370.601123][T10131] netlink: 330 bytes leftover after parsing attributes in process `syz.4.866'.
[  370.804423][T10134] input input14: cannot allocate more than FF_MAX_EFFECTS effects
[  373.542624][T10158] netlink: 4 bytes leftover after parsing attributes in process `syz.0.872'.
[  374.898329][T10198] netlink: 4 bytes leftover after parsing attributes in process `syz.4.880'.
[  375.579925][T10200] CIFS mount error: No usable UNC path provided in device string!
[  375.579925][T10200] 
[  375.594032][T10200] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  378.397668][T10240] FAULT_INJECTION: forcing a failure.
[  378.397668][T10240] name failslab, interval 1, probability 0, space 0, times 0
[  378.410577][T10240] CPU: 0 UID: 0 PID: 10240 Comm: syz.1.888 Tainted: G     U              6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  378.410630][T10240] Tainted: [U]=USER
[  378.410641][T10240] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  378.410660][T10240] Call Trace:
[  378.410670][T10240]  <TASK>
[  378.410682][T10240]  dump_stack_lvl+0x16c/0x1f0
[  378.410733][T10240]  should_fail_ex+0x512/0x640
[  378.410779][T10240]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  378.410821][T10240]  should_failslab+0xc2/0x120
[  378.410861][T10240]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  378.410897][T10240]  ? __proc_create+0xc3/0x8c0
[  378.410932][T10240]  ? __proc_create+0x2ce/0x8c0
[  378.410974][T10240]  __proc_create+0x2ce/0x8c0
[  378.411019][T10240]  ? __pfx___proc_create+0x10/0x10
[  378.411059][T10240]  ? _raw_write_unlock+0x28/0x50
[  378.411102][T10240]  ? proc_register+0x314/0x5f0
[  378.411144][T10240]  proc_create_reg+0x7d/0x180
[  378.411182][T10240]  ? __pfx_sctp_snmp_seq_show+0x10/0x10
[  378.411232][T10240]  proc_create_net_single+0x86/0x170
[  378.411271][T10240]  ? __pfx_proc_create_net_single+0x10/0x10
[  378.411323][T10240]  sctp_proc_init+0xaa/0x270
[  378.411371][T10240]  ? __pfx_sctp_defaults_init+0x10/0x10
[  378.411418][T10240]  sctp_defaults_init+0x74a/0xd80
[  378.411469][T10240]  ? __pfx_sctp_defaults_init+0x10/0x10
[  378.411529][T10240]  ops_init+0x1df/0x5f0
[  378.411572][T10240]  setup_net+0x21e/0x850
[  378.411615][T10240]  ? __pfx_setup_net+0x10/0x10
[  378.411652][T10240]  ? lockdep_init_map_type+0x5c/0x280
[  378.411694][T10240]  ? __pfx_down_read_killable+0x10/0x10
[  378.411751][T10240]  ? debug_mutex_init+0x37/0x70
[  378.411810][T10240]  copy_net_ns+0x2a6/0x5f0
[  378.411859][T10240]  create_new_namespaces+0x3ea/0xad0
[  378.411906][T10240]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  378.411947][T10240]  ksys_unshare+0x45b/0xa40
[  378.411998][T10240]  ? __pfx_ksys_unshare+0x10/0x10
[  378.412042][T10240]  ? xfd_validate_state+0x5d/0x180
[  378.412098][T10240]  ? rcu_is_watching+0x12/0xc0
[  378.412139][T10240]  __x64_sys_unshare+0x31/0x40
[  378.412181][T10240]  do_syscall_64+0xcd/0x230
[  378.412232][T10240]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  378.412264][T10240] RIP: 0033:0x7fa86718e969
[  378.412289][T10240] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  378.412322][T10240] RSP: 002b:00007fa868028038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  378.412352][T10240] RAX: ffffffffffffffda RBX: 00007fa8673b6080 RCX: 00007fa86718e969
[  378.412374][T10240] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  378.412393][T10240] RBP: 00007fa867210ab1 R08: 0000000000000000 R09: 0000000000000000
[  378.412413][T10240] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  378.412432][T10240] R13: 0000000000000000 R14: 00007fa8673b6080 R15: 00007ffd7a758228
[  378.412475][T10240]  </TASK>
[  379.331454][T10220] Process accounting resumed
[  381.905136][T10306] program syz.2.899 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  382.648795][T10322] input input15: cannot allocate more than FF_MAX_EFFECTS effects
[  383.180851][T10319] bond0: option all_slaves_active: invalid value (]\/)
[  383.650224][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  383.660611][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  385.831776][T10378] netlink: 'syz.0.915': attribute type 1 has an invalid length.
[  388.970136][T10462] FAULT_INJECTION: forcing a failure.
[  388.970136][T10462] name failslab, interval 1, probability 0, space 0, times 0
[  389.026106][T10462] CPU: 0 UID: 0 PID: 10462 Comm: syz.1.930 Tainted: G     U              6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  389.026161][T10462] Tainted: [U]=USER
[  389.026172][T10462] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  389.026192][T10462] Call Trace:
[  389.026203][T10462]  <TASK>
[  389.026215][T10462]  dump_stack_lvl+0x16c/0x1f0
[  389.026268][T10462]  should_fail_ex+0x512/0x640
[  389.026321][T10462]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  389.026378][T10462]  should_failslab+0xc2/0x120
[  389.026418][T10462]  __kmalloc_cache_noprof+0x6a/0x3e0
[  389.026472][T10462]  ? alloc_tty_struct+0x96/0x8c0
[  389.026520][T10462]  alloc_tty_struct+0x96/0x8c0
[  389.026564][T10462]  ? __pfx_alloc_tty_struct+0x10/0x10
[  389.026619][T10462]  pty_common_install+0x1c7/0xb30
[  389.026658][T10462]  ? __pfx_pty_unix98_install+0x10/0x10
[  389.026692][T10462]  tty_init_dev.part.0+0x99/0x500
[  389.026736][T10462]  tty_init_dev+0x60/0x80
[  389.026776][T10462]  ? __pfx_ptmx_open+0x10/0x10
[  389.026803][T10462]  ptmx_open+0x10d/0x360
[  389.026833][T10462]  ? __pfx_ptmx_open+0x10/0x10
[  389.026862][T10462]  chrdev_open+0x231/0x6a0
[  389.026895][T10462]  ? __pfx_apparmor_file_open+0x10/0x10
[  389.026937][T10462]  ? __pfx_chrdev_open+0x10/0x10
[  389.026975][T10462]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  389.027032][T10462]  do_dentry_open+0x741/0x1c10
[  389.027068][T10462]  ? __pfx_chrdev_open+0x10/0x10
[  389.027112][T10462]  vfs_open+0x82/0x3f0
[  389.027164][T10462]  path_openat+0x1e5e/0x2d40
[  389.027212][T10462]  ? __pfx_path_openat+0x10/0x10
[  389.027255][T10462]  do_filp_open+0x20b/0x470
[  389.027294][T10462]  ? __pfx_do_filp_open+0x10/0x10
[  389.027357][T10462]  ? alloc_fd+0x471/0x7d0
[  389.027419][T10462]  do_sys_openat2+0x11b/0x1d0
[  389.027462][T10462]  ? __pfx_do_sys_openat2+0x10/0x10
[  389.027524][T10462]  __x64_sys_openat+0x174/0x210
[  389.027568][T10462]  ? __pfx___x64_sys_openat+0x10/0x10
[  389.027613][T10462]  ? rcu_is_watching+0x12/0xc0
[  389.027655][T10462]  do_syscall_64+0xcd/0x230
[  389.027705][T10462]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  389.027738][T10462] RIP: 0033:0x7fa86718e969
[  389.027764][T10462] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  389.027795][T10462] RSP: 002b:00007fa868049038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  389.027827][T10462] RAX: ffffffffffffffda RBX: 00007fa8673b5fa0 RCX: 00007fa86718e969
[  389.027848][T10462] RDX: 0000000000002200 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  389.027869][T10462] RBP: 00007fa867210ab1 R08: 0000000000000000 R09: 0000000000000000
[  389.027889][T10462] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  389.027908][T10462] R13: 0000000000000000 R14: 00007fa8673b5fa0 R15: 00007ffd7a758228
[  389.027950][T10462]  </TASK>
[  390.406183][T10482] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  390.637777][T10486] ptrace attach of "./syz-executor exec"[5834] was attempted by "./syz-executor exec"[10486]
[  391.267695][T10482] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  391.371329][T10482] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  391.509218][T10482] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  393.673872][T10548] FAULT_INJECTION: forcing a failure.
[  393.673872][T10548] name failslab, interval 1, probability 0, space 0, times 0
[  393.696642][T10548] CPU: 0 UID: 0 PID: 10548 Comm: syz.1.949 Tainted: G     U              6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  393.696681][T10548] Tainted: [U]=USER
[  393.696689][T10548] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  393.696703][T10548] Call Trace:
[  393.696711][T10548]  <TASK>
[  393.696719][T10548]  dump_stack_lvl+0x16c/0x1f0
[  393.696764][T10548]  should_fail_ex+0x512/0x640
[  393.696798][T10548]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  393.696842][T10548]  should_failslab+0xc2/0x120
[  393.696871][T10548]  __kmalloc_cache_noprof+0x6a/0x3e0
[  393.696911][T10548]  ? ring_buffer_read_prepare+0x101/0x320
[  393.696936][T10548]  ? kasan_save_track+0x14/0x30
[  393.696964][T10548]  ring_buffer_read_prepare+0x101/0x320
[  393.696992][T10548]  tracing_open+0x925/0xf90
[  393.697020][T10548]  do_dentry_open+0x741/0x1c10
[  393.697044][T10548]  ? __pfx_tracing_open+0x10/0x10
[  393.697072][T10548]  vfs_open+0x82/0x3f0
[  393.697106][T10548]  path_openat+0x1e5e/0x2d40
[  393.697140][T10548]  ? __pfx_path_openat+0x10/0x10
[  393.697175][T10548]  do_filp_open+0x20b/0x470
[  393.697198][T10548]  ? __pfx_do_filp_open+0x10/0x10
[  393.697242][T10548]  ? alloc_fd+0x471/0x7d0
[  393.697287][T10548]  do_sys_openat2+0x11b/0x1d0
[  393.697318][T10548]  ? __pfx_do_sys_openat2+0x10/0x10
[  393.697362][T10548]  __x64_sys_openat+0x174/0x210
[  393.697395][T10548]  ? __pfx___x64_sys_openat+0x10/0x10
[  393.697429][T10548]  ? rcu_is_watching+0x12/0xc0
[  393.697459][T10548]  do_syscall_64+0xcd/0x230
[  393.697496][T10548]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  393.697519][T10548] RIP: 0033:0x7fa86718e969
[  393.697537][T10548] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  393.697561][T10548] RSP: 002b:00007fa868049038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  393.697583][T10548] RAX: ffffffffffffffda RBX: 00007fa8673b5fa0 RCX: 00007fa86718e969
[  393.697599][T10548] RDX: 0000000000000600 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  393.697614][T10548] RBP: 00007fa867210ab1 R08: 0000000000000000 R09: 0000000000000000
[  393.697629][T10548] R10: 000000000000ffeb R11: 0000000000000246 R12: 0000000000000000
[  393.697643][T10548] R13: 0000000000000000 R14: 00007fa8673b5fa0 R15: 00007ffd7a758228
[  393.697673][T10548]  </TASK>
[  396.239226][T10584] netlink: 342 bytes leftover after parsing attributes in process `syz.2.959'.
[  396.445023][T10598] netlink: 28 bytes leftover after parsing attributes in process `syz.0.963'.
[  396.627634][T10600] netlink: 4 bytes leftover after parsing attributes in process `syz.0.963'.
[  397.220699][T10603] netlink: 'syz.1.964': attribute type 64 has an invalid length.
[  397.253024][T10605] netlink: 28 bytes leftover after parsing attributes in process `syz.0.965'.
[  397.253053][T10603] netlink: 74 bytes leftover after parsing attributes in process `syz.1.964'.
[  397.306965][T10605] netlink: 28 bytes leftover after parsing attributes in process `syz.0.965'.
[  397.325018][T10605] netlink: 28 bytes leftover after parsing attributes in process `syz.0.965'.
[  397.334983][T10605] netlink: 28 bytes leftover after parsing attributes in process `syz.0.965'.
[  397.344204][T10605] netlink: 28 bytes leftover after parsing attributes in process `syz.0.965'.
[  397.357022][T10605] netlink: 28 bytes leftover after parsing attributes in process `syz.0.965'.
[  398.591882][T10626] binder: 10620:10626 ioctl c0306201 0 returned -14
[  400.785912][T10659] Invalid ELF header magic: != ELF
[  401.075347][T10659] zswap: compressor È®9Q›¾z%;0*l� H`Bkãjë™wj§Ó³<85Åè'.Y[«`ÿÛ2ÑY$¼`ÔYvÚgÖ´óqÊ"b%…zËN[O	EiF¸iü
»(ShÀ„3Kxá>Ô��RS=óþkHÑÉŸƒÆÿ{è?BýÌò½ÑbŠëÞ�4)�>øªÚ not available
[  403.459322][T10701] netlink: 'syz.4.979': attribute type 1 has an invalid length.
[  404.491342][T10717] FAULT_INJECTION: forcing a failure.
[  404.491342][T10717] name failslab, interval 1, probability 0, space 0, times 0
[  404.519686][T10717] CPU: 0 UID: 0 PID: 10717 Comm: syz.0.983 Tainted: G     U              6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  404.519740][T10717] Tainted: [U]=USER
[  404.519751][T10717] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  404.519771][T10717] Call Trace:
[  404.519782][T10717]  <TASK>
[  404.519795][T10717]  dump_stack_lvl+0x16c/0x1f0
[  404.519848][T10717]  should_fail_ex+0x512/0x640
[  404.519892][T10717]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[  404.519938][T10717]  should_failslab+0xc2/0x120
[  404.519978][T10717]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  404.520021][T10717]  ? devinet_init_net+0x9c/0x910
[  404.520065][T10717]  ? __pfx_devinet_init_net+0x10/0x10
[  404.520117][T10717]  kmemdup_noprof+0x29/0x60
[  404.520159][T10717]  devinet_init_net+0x9c/0x910
[  404.520204][T10717]  ? __pfx_devinet_init_net+0x10/0x10
[  404.520244][T10717]  ops_init+0x1df/0x5f0
[  404.520287][T10717]  setup_net+0x21e/0x850
[  404.520330][T10717]  ? __pfx_setup_net+0x10/0x10
[  404.520364][T10717]  ? lockdep_init_map_type+0x5c/0x280
[  404.520407][T10717]  ? __pfx_down_read_killable+0x10/0x10
[  404.520461][T10717]  ? debug_mutex_init+0x37/0x70
[  404.520495][T10717]  copy_net_ns+0x2a6/0x5f0
[  404.520543][T10717]  create_new_namespaces+0x3ea/0xad0
[  404.520589][T10717]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  404.520629][T10717]  ksys_unshare+0x45b/0xa40
[  404.520672][T10717]  ? __pfx_ksys_unshare+0x10/0x10
[  404.520713][T10717]  ? xfd_validate_state+0x5d/0x180
[  404.520766][T10717]  ? rcu_is_watching+0x12/0xc0
[  404.520805][T10717]  __x64_sys_unshare+0x31/0x40
[  404.520847][T10717]  do_syscall_64+0xcd/0x230
[  404.520898][T10717]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  404.520930][T10717] RIP: 0033:0x7f0a3938e969
[  404.520956][T10717] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  404.520989][T10717] RSP: 002b:00007f0a3a2a0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  404.521019][T10717] RAX: ffffffffffffffda RBX: 00007f0a395b5fa0 RCX: 00007f0a3938e969
[  404.521041][T10717] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  404.521060][T10717] RBP: 00007f0a39410ab1 R08: 0000000000000000 R09: 0000000000000000
[  404.521080][T10717] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  404.521109][T10717] R13: 0000000000000000 R14: 00007f0a395b5fa0 R15: 00007ffd456d4018
[  404.521153][T10717]  </TASK>
[  409.124299][T10787] Invalid ELF header magic: != ELF
[  410.009355][T10788] Process accounting paused
[  416.193607][T10923] __nla_validate_parse: 59 callbacks suppressed
[  416.193626][T10923] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1021'.
[  416.356055][T10926] input: jJǸ-�¶š9ã%vø“û¨l�ÐQ 	J86Ö‘ as /devices/virtual/input/input17
[  417.334175][T10956] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  419.846361][   T30] audit: type=1806 audit(6442451075.244:13): xattr="." res=0
[  420.447951][T11000] bridge0: port 3(syz_tun) entered blocking state
[  420.505636][T11000] bridge0: port 3(syz_tun) entered disabled state
[  420.625729][T11000] syz_tun: entered allmulticast mode
[  420.688114][T11000] syz_tun: entered promiscuous mode
[  420.704175][T11000] bridge0: port 3(syz_tun) entered blocking state
[  420.710868][T11000] bridge0: port 3(syz_tun) entered forwarding state
[  424.247370][T11092] binder: 11091:11092 ioctl c0046209 0 returned -22
[  425.228349][T11104] binder: 11103:11104 ioctl c0046209 0 returned -22
[  426.152093][T11109] raw_sendmsg: syz.1.1060 forgot to set AF_INET. Fix it!
[  426.548373][T11126] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1061'.
[  428.401276][T11159] could not allocate digest TFM handle binfmt_misc
[  429.008835][T11180] syz.1.1069 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  429.150930][T11172] KVM: debugfs: duplicate directory 11172-3
[  429.174423][T11172] KVM: debugfs: duplicate directory 11172-5
[  429.240125][T11172] KVM: debugfs: duplicate directory 11172-6
[  431.574998][T11215] FAULT_INJECTION: forcing a failure.
[  431.574998][T11215] name failslab, interval 1, probability 0, space 0, times 0
[  431.609636][T11215] CPU: 1 UID: 0 PID: 11215 Comm: syz.1.1076 Tainted: G     U              6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  431.609686][T11215] Tainted: [U]=USER
[  431.609696][T11215] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  431.609715][T11215] Call Trace:
[  431.609724][T11215]  <TASK>
[  431.609735][T11215]  dump_stack_lvl+0x16c/0x1f0
[  431.609784][T11215]  should_fail_ex+0x512/0x640
[  431.609827][T11215]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  431.609867][T11215]  should_failslab+0xc2/0x120
[  431.609906][T11215]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  431.609940][T11215]  ? sctp_chunkify+0x51/0x2d0
[  431.609985][T11215]  sctp_chunkify+0x51/0x2d0
[  431.610025][T11215]  _sctp_make_chunk+0x148/0x270
[  431.610069][T11215]  sctp_make_datafrag_empty+0x16f/0x240
[  431.610128][T11215]  ? __pfx_sctp_make_datafrag_empty+0x10/0x10
[  431.610185][T11215]  sctp_datamsg_from_user+0x592/0x1320
[  431.610242][T11215]  sctp_sendmsg_to_asoc+0xaf5/0x1bf0
[  431.610290][T11215]  ? sctp_assoc_set_primary+0x177/0x300
[  431.610355][T11215]  ? __pfx_sctp_sendmsg_to_asoc+0x10/0x10
[  431.610428][T11215]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  431.610480][T11215]  sctp_sendmsg+0xef5/0x1ee0
[  431.610536][T11215]  ? __pfx_sctp_sendmsg+0x10/0x10
[  431.610573][T11215]  ? __pfx___might_resched+0x10/0x10
[  431.610625][T11215]  ? __pfx_aa_sk_perm+0x10/0x10
[  431.610667][T11215]  ? __pfx_sctp_sendmsg+0x10/0x10
[  431.610701][T11215]  inet_sendmsg+0x119/0x140
[  431.610747][T11215]  ____sys_sendmsg+0x973/0xc70
[  431.610796][T11215]  ? __pfx_____sys_sendmsg+0x10/0x10
[  431.610838][T11215]  ? __pfx___schedule+0x10/0x10
[  431.610895][T11215]  ___sys_sendmsg+0x134/0x1d0
[  431.610933][T11215]  ? __pfx____sys_sendmsg+0x10/0x10
[  431.610988][T11215]  ? find_held_lock+0x2b/0x80
[  431.611046][T11215]  __sys_sendmmsg+0x200/0x420
[  431.611087][T11215]  ? __pfx___sys_sendmmsg+0x10/0x10
[  431.611134][T11215]  ? __pfx_do_futex+0x10/0x10
[  431.611187][T11215]  ? xfd_validate_state+0x5d/0x180
[  431.611240][T11215]  ? rcu_is_watching+0x12/0xc0
[  431.611276][T11215]  __x64_sys_sendmmsg+0x9c/0x100
[  431.611322][T11215]  ? lockdep_hardirqs_on+0x7c/0x110
[  431.611362][T11215]  do_syscall_64+0xcd/0x230
[  431.611408][T11215]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  431.611439][T11215] RIP: 0033:0x7fa86718e969
[  431.611461][T11215] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  431.611491][T11215] RSP: 002b:00007fa868049038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  431.611527][T11215] RAX: ffffffffffffffda RBX: 00007fa8673b5fa0 RCX: 00007fa86718e969
[  431.611546][T11215] RDX: 0000000000000005 RSI: 0000200000000140 RDI: 000000000000000a
[  431.611565][T11215] RBP: 00007fa867210ab1 R08: 0000000000000000 R09: 0000000000000000
[  431.611583][T11215] R10: 0000000000000311 R11: 0000000000000246 R12: 0000000000000000
[  431.611602][T11215] R13: 0000000000000000 R14: 00007fa8673b5fa0 R15: 00007ffd7a758228
[  431.611642][T11215]  </TASK>
[  432.953482][T11230] rnbd_client L202: map_device: Unknown parameter or missing value '('
[  436.027103][T11260] binder: 11259:11260 ioctl c0046209 0 returned -22
[  436.419619][   T30] audit: type=1800 audit(6442451091.814:14): pid=11268 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1085" name="members" dev="configfs" ino=32426 res=0 errno=0
[  437.611732][T11292] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1089'.
[  437.720256][T11291] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1087'.
[  440.067731][T11334] Invalid ELF header magic: != ELF
[  440.523636][T11342] Process accounting resumed
[  442.720873][T11378] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1110'.
[  445.091728][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  445.099805][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  445.607285][T11401] ptrace attach of "./syz-executor exec"[7991] was attempted by "./syz-executor exec"[11401]
[  446.290516][T11416] netlink: 'syz.1.1119': attribute type 10 has an invalid length.
[  446.304529][T11416] netlink: 230 bytes leftover after parsing attributes in process `syz.1.1119'.
[  446.349251][T11416] team0: Port device team_slave_1 removed
[  446.897617][T11430] HfR: entered promiscuous mode
[  446.975811][T11430] openvswitch: HfR: Dropping previously announced user features
[  447.294189][T11435] Unable to find swap-space signature
[  447.906742][T11446] netlink: 'syz.1.1128': attribute type 1 has an invalid length.
[  448.861900][T11453] cgroup: fork rejected by pids controller in /syz2
[  458.878234][T11686] CIFS mount error: No usable UNC path provided in device string!
[  458.878234][T11686] 
[  458.909386][T11686] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  459.341641][T11681] ptrace attach of "./syz-executor exec"[5830] was attempted by "./syz-executor exec"[11681]
[  459.863887][T11712] ima: policy update failed
[  459.960325][   T30] audit: type=1802 audit(4294967310.140:15): pid=11712 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.1156" res=0 errno=0
[  460.010793][T11712] FAULT_INJECTION: forcing a failure.
[  460.010793][T11712] name fail_futex, interval 1, probability 0, space 0, times 0
[  460.046005][T11712] CPU: 1 UID: 0 PID: 11712 Comm: syz.0.1156 Tainted: G     U              6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  460.046096][T11712] Tainted: [U]=USER
[  460.046114][T11712] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  460.046149][T11712] Call Trace:
[  460.046167][T11712]  <TASK>
[  460.046187][T11712]  dump_stack_lvl+0x16c/0x1f0
[  460.046273][T11712]  should_fail_ex+0x512/0x640
[  460.046353][T11712]  ? __pfx___futex_wait+0x10/0x10
[  460.046410][T11712]  get_futex_key+0x49e/0x1000
[  460.046445][T11712]  ? __pfx_futex_wake_mark+0x10/0x10
[  460.046494][T11712]  ? __pfx_get_futex_key+0x10/0x10
[  460.046542][T11712]  futex_wake+0xe7/0x4e0
[  460.046587][T11712]  ? __pfx_futex_wake+0x10/0x10
[  460.046632][T11712]  ? percpu_counter_add_batch+0xb8/0x1f0
[  460.046672][T11712]  ? errseq_sample+0x53/0x70
[  460.046723][T11712]  ? file_init_path+0x4fe/0x760
[  460.046768][T11712]  do_futex+0x1e3/0x350
[  460.046803][T11712]  ? __pfx_do_futex+0x10/0x10
[  460.046835][T11712]  ? fd_install+0x225/0x750
[  460.046893][T11712]  __x64_sys_futex+0x1e0/0x4c0
[  460.046933][T11712]  ? __pfx___x64_sys_futex+0x10/0x10
[  460.046970][T11712]  ? __sys_setsockopt+0x14d/0x1a0
[  460.047002][T11712]  ? rcu_is_watching+0x12/0xc0
[  460.047044][T11712]  do_syscall_64+0xcd/0x230
[  460.047095][T11712]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  460.047127][T11712] RIP: 0033:0x7f0a3938e969
[  460.047153][T11712] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  460.047185][T11712] RSP: 002b:00007f0a3a2a00e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  460.047216][T11712] RAX: ffffffffffffffda RBX: 00007f0a395b5fa8 RCX: 00007f0a3938e969
[  460.047236][T11712] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f0a395b5fac
[  460.047257][T11712] RBP: 00007f0a395b5fa0 R08: 00007f0a3a2a1000 R09: 0000000000000000
[  460.047278][T11712] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007f0a395b5fac
[  460.047300][T11712] R13: 0000000000000000 R14: 00007ffd456d3f30 R15: 00007ffd456d4018
[  460.047342][T11712]  </TASK>
[  461.903752][T11741] nvme_fabrics: missing parameter 'transport=%s'
[  461.933597][T11741] nvme_fabrics: missing parameter 'nqn=%s'
[  466.048367][T11793] netlink: 206 bytes leftover after parsing attributes in process `syz.0.1174'.
[  467.051201][T11801] random: crng reseeded on system resumption
[  469.710366][   T63] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm kworker/u8:4: bg 2: bad block bitmap checksum
[  469.747660][   T63] EXT4-fs (sda1): Delayed block allocation failed for inode 2029 at logical offset 919 with max blocks 10 with error 74
[  469.804837][   T63] EXT4-fs (sda1): This should not happen!! Data will be lost
[  469.804837][   T63] 
[  470.362110][T11811] syz.2.1177 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  470.852317][T11811] CPU: 0 UID: 0 PID: 11811 Comm: syz.2.1177 Tainted: G     U              6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  470.852369][T11811] Tainted: [U]=USER
[  470.852378][T11811] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  470.852395][T11811] Call Trace:
[  470.852405][T11811]  <TASK>
[  470.852415][T11811]  dump_stack_lvl+0x16c/0x1f0
[  470.852465][T11811]  dump_header+0x101/0x930
[  470.852509][T11811]  oom_kill_process+0x270/0xa60
[  470.852554][T11811]  out_of_memory+0x350/0x1700
[  470.852605][T11811]  ? __pfx_out_of_memory+0x10/0x10
[  470.852657][T11811]  mem_cgroup_out_of_memory+0x205/0x270
[  470.852705][T11811]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  470.852761][T11811]  ? do_raw_spin_unlock+0x172/0x230
[  470.852815][T11811]  try_charge_memcg+0xa07/0x10c0
[  470.852862][T11811]  ? __pfx_try_charge_memcg+0x10/0x10
[  470.852901][T11811]  ? memory_min_write+0xc1/0xe0
[  470.852952][T11811]  ? get_mem_cgroup_from_objcg+0xd3/0x330
[  470.853008][T11811]  __memcg_kmem_charge_page+0xda/0x420
[  470.853055][T11811]  memcg_charge_kernel_stack+0xc3/0x1f0
[  470.853096][T11811]  copy_process+0x5b2/0x91a0
[  470.853138][T11811]  ? __lock_acquire+0x5ca/0x1ba0
[  470.853185][T11811]  ? __lock_acquire+0xaa4/0x1ba0
[  470.853234][T11811]  ? __pfx_copy_process+0x10/0x10
[  470.853280][T11811]  ? find_held_lock+0x2b/0x80
[  470.853307][T11811]  ? __might_fault+0xe3/0x190
[  470.853339][T11811]  ? __might_fault+0xe3/0x190
[  470.853370][T11811]  ? __might_fault+0x13b/0x190
[  470.853417][T11811]  ? _copy_from_user+0x59/0xd0
[  470.853470][T11811]  kernel_clone+0xfc/0x960
[  470.853532][T11811]  ? __pfx_kernel_clone+0x10/0x10
[  470.853584][T11811]  ? __lock_acquire+0xaa4/0x1ba0
[  470.853635][T11811]  __do_sys_clone3+0x212/0x290
[  470.853676][T11811]  ? __pfx___do_sys_clone3+0x10/0x10
[  470.853787][T11811]  do_syscall_64+0xcd/0x230
[  470.853835][T11811]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  470.853866][T11811] RIP: 0033:0x7f72b5fc31c9
[  470.853890][T11811] Code: bf 08 00 48 8d 3d dc bf 08 00 e8 e2 28 f6 ff 66 90 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[  470.853919][T11811] RSP: 002b:00007ffce1f72978 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[  470.853953][T11811] RAX: ffffffffffffffda RBX: 00007f72b5f455b0 RCX: 00007f72b5fc31c9
[  470.853973][T11811] RDX: 00007f72b5f455b0 RSI: 0000000000000058 RDI: 00007ffce1f729c0
[  470.853993][T11811] RBP: 00007f72b3dd56c0 R08: 00007f72b3dd56c0 R09: 00007ffce1f72aa7
[  470.854012][T11811] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffa8
[  470.854031][T11811] R13: 000000000000006e R14: 00007ffce1f729c0 R15: 00007ffce1f72aa8
[  470.854071][T11811]  </TASK>
[  470.854083][T11811] memory: usage 307200kB, limit 307200kB, failcnt 24627
[  471.175410][T11811] memory+swap: usage 432112kB, limit 9007199254740988kB, failcnt 0
[  471.183374][T11811] kmem: usage 6224kB, limit 9007199254740988kB, failcnt 0
[  471.203687][T11811] Memory cgroup stats for /syz2:
[  471.204018][T11811] cache 307466240
[  471.218038][T11811] rss 618496
[  471.221299][T11811] rss_huge 0
[  471.225006][T11811] shmem 307466240
[  471.228726][T11811] mapped_file 24973312
[  471.232845][T11811] dirty 0
[  471.242220][T11811] writeback 0
[  471.249497][T11811] workingset_refault_anon 1149
[  471.259132][T11811] workingset_refault_file 203
[  471.263974][T11811] swap 127909888
[  471.287453][T11811] swapcached 86016
[  471.291232][T11811] pgpgin 532304
[  471.299366][T11811] pgpgout 462688
[  471.309727][T11811] pgfault 320862
[  471.323215][T11811] pgmajfault 276
[  471.342009][T11811] inactive_anon 307240960
[  471.356083][T11811] active_anon 884736
[  471.370177][T11811] inactive_file 0
[  471.394588][T11811] active_file 0
[  471.404091][T11811] unevictable 0
[  471.439313][T11811] hierarchical_memory_limit 314572800
[  471.448915][T11811] hierarchical_memsw_limit 9223372036854771712
[  471.461808][T11811] total_cache 307466240
[  471.479640][T11811] total_rss 618496
[  471.490954][T11811] total_rss_huge 0
[  471.498284][T11811] total_shmem 307466240
[  471.502493][T11811] total_mapped_file 24973312
[  471.524241][T11811] total_dirty 0
[  471.528242][T11811] total_writeback 0
[  471.532091][T11811] total_workingset_refault_anon 1149
[  471.549842][T11811] total_workingset_refault_file 203
[  471.574552][T11811] total_swap 127909888
[  471.591201][T11811] total_swapcached 86016
[  471.614686][T11811] total_pgpgin 532304
[  471.618740][T11811] total_pgpgout 462688
[  471.622843][T11811] total_pgfault 320862
[  471.646750][T11811] total_pgmajfault 276
[  471.651615][T11811] total_inactive_anon 307240960
[  471.665767][T11811] total_active_anon 884736
[  471.670238][T11811] total_inactive_file 0
[  471.689569][T11811] total_active_file 0
[  471.693620][T11811] total_unevictable 0
[  471.700600][T11811] anon_cost 17898
[  471.704269][T11811] file_cost 212
[  471.707845][T11811] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.1129,pid=11477,uid=0
[  471.742745][T11811] Memory cgroup out of memory: Killed process 11477 (syz.2.1129) total-vm:131664kB, anon-rss:1044kB, file-rss:21540kB, shmem-rss:24168kB, UID:0 pgtables:172kB oom_score_adj:1000
[  472.444604][T11829] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz.4.1180: bg 1: bad block bitmap checksum
[  472.458791][T11829] EXT4-fs error (device sda1) in ext4_mb_clear_bb:6548: Filesystem failed CRC
[  472.689399][T11837] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1181'.
[  472.879742][T11837] ›: renamed from hsr0 (while UP)
[  473.154156][T11829] Process accounting paused
[  473.889301][   T32] oom_reaper: reaped process 11477 (syz.2.1129), now anon-rss:132kB, file-rss:2232kB, shmem-rss:0kB
[  473.967998][T11845] FAULT_INJECTION: forcing a failure.
[  473.967998][T11845] name failslab, interval 1, probability 0, space 0, times 0
[  474.014615][T11845] CPU: 1 UID: 0 PID: 11845 Comm: syz.0.1183 Tainted: G     U              6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  474.014674][T11845] Tainted: [U]=USER
[  474.014685][T11845] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  474.014706][T11845] Call Trace:
[  474.014717][T11845]  <TASK>
[  474.014730][T11845]  dump_stack_lvl+0x16c/0x1f0
[  474.014796][T11845]  should_fail_ex+0x512/0x640
[  474.014850][T11845]  should_failslab+0xc2/0x120
[  474.014892][T11845]  __kmalloc_cache_noprof+0x6a/0x3e0
[  474.014947][T11845]  ? cfmuxl_create+0x40/0x210
[  474.014997][T11845]  ? __pfx_caif_init_net+0x10/0x10
[  474.015041][T11845]  cfmuxl_create+0x40/0x210
[  474.015085][T11845]  cfcnfg_create+0x78/0x500
[  474.015128][T11845]  ? debug_mutex_init+0x37/0x70
[  474.015159][T11845]  ? __pfx_caif_init_net+0x10/0x10
[  474.015200][T11845]  caif_init_net+0x7d/0xe0
[  474.015242][T11845]  ops_init+0x1df/0x5f0
[  474.015286][T11845]  setup_net+0x21e/0x850
[  474.015330][T11845]  ? __pfx_setup_net+0x10/0x10
[  474.015367][T11845]  ? lockdep_init_map_type+0x5c/0x280
[  474.015412][T11845]  ? __pfx_down_read_killable+0x10/0x10
[  474.015469][T11845]  ? debug_mutex_init+0x37/0x70
[  474.015504][T11845]  copy_net_ns+0x2a6/0x5f0
[  474.015550][T11845]  create_new_namespaces+0x3ea/0xad0
[  474.015597][T11845]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  474.015638][T11845]  ksys_unshare+0x45b/0xa40
[  474.015683][T11845]  ? __pfx_ksys_unshare+0x10/0x10
[  474.015726][T11845]  ? xfd_validate_state+0x5d/0x180
[  474.015789][T11845]  ? rcu_is_watching+0x12/0xc0
[  474.015831][T11845]  __x64_sys_unshare+0x31/0x40
[  474.015876][T11845]  do_syscall_64+0xcd/0x230
[  474.015927][T11845]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  474.015961][T11845] RIP: 0033:0x7f0a3938e969
[  474.015987][T11845] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  474.016025][T11845] RSP: 002b:00007f0a3a2a0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  474.016057][T11845] RAX: ffffffffffffffda RBX: 00007f0a395b5fa0 RCX: 00007f0a3938e969
[  474.016080][T11845] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  474.016101][T11845] RBP: 00007f0a39410ab1 R08: 0000000000000000 R09: 0000000000000000
[  474.016121][T11845] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  474.016140][T11845] R13: 0000000000000000 R14: 00007f0a395b5fa0 R15: 00007ffd456d4018
[  474.016184][T11845]  </TASK>
[  477.631130][T11871] Invalid ELF header magic: != ELF
[  479.404926][T11897] FAULT_INJECTION: forcing a failure.
[  479.404926][T11897] name failslab, interval 1, probability 0, space 0, times 0
[  479.483474][T11897] CPU: 0 UID: 0 PID: 11897 Comm: syz.2.1195 Tainted: G     U              6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  479.483527][T11897] Tainted: [U]=USER
[  479.483538][T11897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  479.483558][T11897] Call Trace:
[  479.483568][T11897]  <TASK>
[  479.483581][T11897]  dump_stack_lvl+0x16c/0x1f0
[  479.483634][T11897]  should_fail_ex+0x512/0x640
[  479.483680][T11897]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  479.483723][T11897]  should_failslab+0xc2/0x120
[  479.483766][T11897]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  479.483802][T11897]  ? look_up_lock_class+0x6b/0x150
[  479.483844][T11897]  ? vm_area_dup+0x25/0x760
[  479.483886][T11897]  vm_area_dup+0x25/0x760
[  479.483927][T11897]  __split_vma+0x17f/0x1030
[  479.483968][T11897]  ? __pfx___split_vma+0x10/0x10
[  479.483999][T11897]  ? lock_acquire+0x179/0x350
[  479.484046][T11897]  ? lock_acquire+0x179/0x350
[  479.484088][T11897]  ? do_raw_spin_lock+0x12c/0x2b0
[  479.484140][T11897]  vms_gather_munmap_vmas+0x1c2/0x1310
[  479.484174][T11897]  ? move_page_tables+0x10ca/0x3f60
[  479.484219][T11897]  ? __pfx_vms_gather_munmap_vmas+0x10/0x10
[  479.484278][T11897]  do_vmi_align_munmap+0x27c/0x7d0
[  479.484319][T11897]  ? __pfx_do_vmi_align_munmap+0x10/0x10
[  479.484411][T11897]  do_vmi_munmap+0x208/0x3e0
[  479.484460][T11897]  move_vma+0xb67/0x1740
[  479.484505][T11897]  ? __pfx_move_vma+0x10/0x10
[  479.484546][T11897]  ? mm_get_unmapped_area_vmflags+0x97/0xe0
[  479.484611][T11897]  ? vrm_set_new_addr+0x208/0x290
[  479.484651][T11897]  __do_sys_mremap+0xe38/0x15d0
[  479.484695][T11897]  ? __pfx___do_sys_mremap+0x10/0x10
[  479.484740][T11897]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  479.484799][T11897]  ? __x64_sys_futex+0x1e0/0x4c0
[  479.484843][T11897]  ? rcu_is_watching+0x12/0xc0
[  479.484885][T11897]  do_syscall_64+0xcd/0x230
[  479.484936][T11897]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  479.484968][T11897] RIP: 0033:0x7f72b5f8e969
[  479.484993][T11897] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  479.485025][T11897] RSP: 002b:00007f72b6d29038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019
[  479.485056][T11897] RAX: ffffffffffffffda RBX: 00007f72b61b5fa0 RCX: 00007f72b5f8e969
[  479.485077][T11897] RDX: 0000000000000004 RSI: 0000000000000004 RDI: 0000200000001000
[  479.485098][T11897] RBP: 00007f72b6010ab1 R08: 0000000100000000 R09: 0000000000000000
[  479.485119][T11897] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000
[  479.485139][T11897] R13: 0000000000000000 R14: 00007f72b61b5fa0 R15: 00007ffce1f72aa8
[  479.485180][T11897]  </TASK>
[  479.745428][    C0] vkms_vblank_simulate: vblank timer overrun
[  481.133841][ T5873] Process accounting resumed
[  486.328487][T11947] Invalid ELF header magic: != ELF
[  487.677472][T11965] svc: failed to register nfsdv3 RPC service (errno 111).
[  487.711454][T11965] svc: failed to register nfsaclv3 RPC service (errno 111).
[  488.619182][T11982] EXT4-fs error (device sda1): ext4_lookup:1789: inode #274: comm syz.4.1213: iget: checksum invalid
[  488.638937][T11982] platform regulatory.0: loading /lib/firmware/updates/6.15.0-rc5-syzkaller-00123-g2c89c1b655c0/regulatory.db failed with error -74
[  488.667187][T11982] EXT4-fs error (device sda1): ext4_lookup:1789: inode #274: comm syz.4.1213: iget: checksum invalid
[  488.692813][T11982] platform regulatory.0: loading /lib/firmware/updates/regulatory.db failed with error -74
[  488.720414][T11982] EXT4-fs error (device sda1): ext4_lookup:1789: inode #274: comm syz.4.1213: iget: checksum invalid
[  488.751657][T11982] platform regulatory.0: loading /lib/firmware/6.15.0-rc5-syzkaller-00123-g2c89c1b655c0/regulatory.db failed with error -74
[  488.768969][T11982] EXT4-fs error (device sda1): ext4_lookup:1789: inode #274: comm syz.4.1213: iget: checksum invalid
[  488.818095][T11982] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -74
[  488.830191][T11982] platform regulatory.0: Direct firmware load for regulatory.db failed with error -74
[  488.841278][T11982] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  490.171057][T12021] svc: failed to register nfsdv3 RPC service (errno 111).
[  490.190776][T12021] svc: failed to register nfsaclv3 RPC service (errno 111).
[  492.197875][T12064] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1232'.
[  492.736377][T12077] netlink: 334 bytes leftover after parsing attributes in process `syz.0.1242'.
[  493.015641][T12081] svc: failed to register nfsdv3 RPC service (errno 111).
[  493.048226][T12081] svc: failed to register nfsaclv3 RPC service (errno 111).
[  494.876685][T12125] syz.2.1245(12125): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored.
[  496.212032][T12147] bond0: option all_slaves_active: invalid value (]\/)
[  496.521260][T12154] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1252'.
[  500.042584][T12213] random: crng reseeded on system resumption
[  500.202756][T12223] Invalid ELF header magic: != ELF
[  500.294931][T12222] FAULT_INJECTION: forcing a failure.
[  500.294931][T12222] name fail_futex, interval 1, probability 0, space 0, times 0
[  500.355525][T12222] CPU: 1 UID: 0 PID: 12222 Comm: syz.2.1265 Tainted: G     U              6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  500.355568][T12222] Tainted: [U]=USER
[  500.355576][T12222] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  500.355590][T12222] Call Trace:
[  500.355598][T12222]  <TASK>
[  500.355606][T12222]  dump_stack_lvl+0x16c/0x1f0
[  500.355646][T12222]  should_fail_ex+0x512/0x640
[  500.355687][T12222]  get_futex_key+0x49e/0x1000
[  500.355725][T12222]  ? __pfx_get_futex_key+0x10/0x10
[  500.355772][T12222]  futex_wake+0xe7/0x4e0
[  500.355806][T12222]  ? __pfx_futex_wake+0x10/0x10
[  500.355839][T12222]  ? kmem_cache_free+0x2d4/0x4d0
[  500.355863][T12222]  ? fd_install+0x225/0x750
[  500.355898][T12222]  ? putname+0x154/0x1a0
[  500.355930][T12222]  do_futex+0x1e3/0x350
[  500.355955][T12222]  ? __pfx_do_futex+0x10/0x10
[  500.355989][T12222]  __x64_sys_futex+0x1e0/0x4c0
[  500.356016][T12222]  ? __x64_sys_openat+0x174/0x210
[  500.356049][T12222]  ? __pfx___x64_sys_futex+0x10/0x10
[  500.356077][T12222]  ? rcu_is_watching+0x12/0xc0
[  500.356113][T12222]  do_syscall_64+0xcd/0x230
[  500.356151][T12222]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  500.356175][T12222] RIP: 0033:0x7f72b5f8e969
[  500.356193][T12222] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  500.356217][T12222] RSP: 002b:00007f72b3df60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  500.356239][T12222] RAX: ffffffffffffffda RBX: 00007f72b61b6088 RCX: 00007f72b5f8e969
[  500.356255][T12222] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f72b61b608c
[  500.356270][T12222] RBP: 00007f72b61b6080 R08: 00007f72b6d2a000 R09: 0000000000000000
[  500.356285][T12222] R10: 0000000000000005 R11: 0000000000000246 R12: 00007f72b61b608c
[  500.356300][T12222] R13: 0000000000000000 R14: 00007ffce1f729c0 R15: 00007ffce1f72aa8
[  500.356329][T12222]  </TASK>
[  500.356735][T12222] FAULT_INJECTION: forcing a failure.
[  500.356735][T12222] name failslab, interval 1, probability 0, space 0, times 0
[  500.655365][T12222] CPU: 1 UID: 0 PID: 12222 Comm: syz.2.1265 Tainted: G     U              6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  500.655419][T12222] Tainted: [U]=USER
[  500.655427][T12222] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  500.655440][T12222] Call Trace:
[  500.655448][T12222]  <TASK>
[  500.655456][T12222]  dump_stack_lvl+0x16c/0x1f0
[  500.655492][T12222]  should_fail_ex+0x512/0x640
[  500.655525][T12222]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  500.655572][T12222]  should_failslab+0xc2/0x120
[  500.655601][T12222]  __kmalloc_cache_noprof+0x6a/0x3e0
[  500.655638][T12222]  ? __lock_acquire+0xaa4/0x1ba0
[  500.655668][T12222]  ? snd_timer_instance_new+0x47/0x2e0
[  500.655704][T12222]  snd_timer_instance_new+0x47/0x2e0
[  500.655735][T12222]  snd_seq_timer_open+0x1cc/0x5e0
[  500.655770][T12222]  ? __pfx_snd_seq_timer_open+0x10/0x10
[  500.655799][T12222]  ? find_held_lock+0x2b/0x80
[  500.655824][T12222]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  500.655854][T12222]  ? lockdep_hardirqs_on+0x7c/0x110
[  500.655887][T12222]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  500.655919][T12222]  queue_use+0xe3/0x250
[  500.655954][T12222]  snd_seq_queue_alloc+0x2e5/0x550
[  500.655995][T12222]  snd_seq_ioctl_create_queue+0xa9/0x380
[  500.656024][T12222]  snd_seq_kernel_client_ctl+0x107/0x1c0
[  500.656059][T12222]  alloc_seq_queue+0xda/0x180
[  500.656089][T12222]  ? __pfx_alloc_seq_queue+0x10/0x10
[  500.656136][T12222]  ? mark_held_locks+0x49/0x80
[  500.656165][T12222]  ? _raw_spin_unlock_irq+0x23/0x50
[  500.656196][T12222]  snd_seq_oss_open+0x38c/0xa20
[  500.656232][T12222]  odev_open+0x6f/0x90
[  500.656258][T12222]  ? __pfx_odev_open+0x10/0x10
[  500.656285][T12222]  soundcore_open+0x409/0x580
[  500.656316][T12222]  ? __pfx_soundcore_open+0x10/0x10
[  500.656343][T12222]  chrdev_open+0x231/0x6a0
[  500.656366][T12222]  ? __pfx_apparmor_file_open+0x10/0x10
[  500.656396][T12222]  ? __pfx_chrdev_open+0x10/0x10
[  500.656422][T12222]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  500.656463][T12222]  do_dentry_open+0x741/0x1c10
[  500.656487][T12222]  ? __pfx_chrdev_open+0x10/0x10
[  500.656516][T12222]  vfs_open+0x82/0x3f0
[  500.656549][T12222]  path_openat+0x1e5e/0x2d40
[  500.656581][T12222]  ? __pfx_path_openat+0x10/0x10
[  500.656610][T12222]  do_filp_open+0x20b/0x470
[  500.656632][T12222]  ? __pfx_do_filp_open+0x10/0x10
[  500.656674][T12222]  ? alloc_fd+0x471/0x7d0
[  500.656718][T12222]  do_sys_openat2+0x11b/0x1d0
[  500.656748][T12222]  ? __pfx_do_sys_openat2+0x10/0x10
[  500.656797][T12222]  __x64_sys_openat+0x174/0x210
[  500.656828][T12222]  ? __pfx___x64_sys_openat+0x10/0x10
[  500.656862][T12222]  ? rcu_is_watching+0x12/0xc0
[  500.656891][T12222]  do_syscall_64+0xcd/0x230
[  500.656927][T12222]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  500.656950][T12222] RIP: 0033:0x7f72b5f8e969
[  500.656968][T12222] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  500.656991][T12222] RSP: 002b:00007f72b3df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  500.657012][T12222] RAX: ffffffffffffffda RBX: 00007f72b61b6080 RCX: 00007f72b5f8e969
[  500.657027][T12222] RDX: 0000000000000080 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  500.657042][T12222] RBP: 00007f72b6010ab1 R08: 0000000000000000 R09: 0000000000000000
[  500.657056][T12222] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  500.657069][T12222] R13: 0000000000000000 R14: 00007f72b61b6080 R15: 00007ffce1f72aa8
[  500.657098][T12222]  </TASK>
[  502.837069][T12243] EXT4-fs error (device sda1): ext4_lookup:1789: inode #274: comm syz.1.1270: iget: checksum invalid
[  502.915118][T12243] platform regulatory.0: loading /lib/firmware/updates/6.15.0-rc5-syzkaller-00123-g2c89c1b655c0/regulatory.db failed with error -74
[  502.974979][T12243] EXT4-fs error (device sda1): ext4_lookup:1789: inode #274: comm syz.1.1270: iget: checksum invalid
[  503.028075][T12243] platform regulatory.0: loading /lib/firmware/updates/regulatory.db failed with error -74
[  503.080668][T12243] EXT4-fs error (device sda1): ext4_lookup:1789: inode #274: comm syz.1.1270: iget: checksum invalid
[  503.194848][T12243] platform regulatory.0: loading /lib/firmware/6.15.0-rc5-syzkaller-00123-g2c89c1b655c0/regulatory.db failed with error -74
[  503.244205][T12260] openvswitch: netlink: Unknown nsh attribute 0
[  503.291639][T12243] EXT4-fs error (device sda1): ext4_lookup:1789: inode #274: comm syz.1.1270: iget: checksum invalid
[  503.471343][T12243] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -74
[  503.599665][T12243] platform regulatory.0: Direct firmware load for regulatory.db failed with error -74
[  503.697723][T12243] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  506.547220][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  506.553583][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  507.036292][T12304] FAULT_INJECTION: forcing a failure.
[  507.036292][T12304] name failslab, interval 1, probability 0, space 0, times 0
[  507.078460][T12304] CPU: 1 UID: 0 PID: 12304 Comm: syz.4.1283 Tainted: G     U              6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  507.078516][T12304] Tainted: [U]=USER
[  507.078526][T12304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  507.078545][T12304] Call Trace:
[  507.078556][T12304]  <TASK>
[  507.078568][T12304]  dump_stack_lvl+0x16c/0x1f0
[  507.078632][T12304]  should_fail_ex+0x512/0x640
[  507.078690][T12304]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  507.078748][T12304]  should_failslab+0xc2/0x120
[  507.078787][T12304]  __kmalloc_cache_noprof+0x6a/0x3e0
[  507.078840][T12304]  ? __v4l2_subdev_state_alloc+0x53/0x400
[  507.078880][T12304]  __v4l2_subdev_state_alloc+0x53/0x400
[  507.078922][T12304]  subdev_open+0xa6/0x560
[  507.078973][T12304]  v4l2_open+0x222/0x490
[  507.079013][T12304]  ? __pfx_v4l2_open+0x10/0x10
[  507.079053][T12304]  chrdev_open+0x231/0x6a0
[  507.079086][T12304]  ? __pfx_apparmor_file_open+0x10/0x10
[  507.079126][T12304]  ? __pfx_chrdev_open+0x10/0x10
[  507.079164][T12304]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  507.079221][T12304]  do_dentry_open+0x741/0x1c10
[  507.079257][T12304]  ? __pfx_chrdev_open+0x10/0x10
[  507.079305][T12304]  vfs_open+0x82/0x3f0
[  507.079353][T12304]  path_openat+0x1e5e/0x2d40
[  507.079402][T12304]  ? __pfx_path_openat+0x10/0x10
[  507.079445][T12304]  do_filp_open+0x20b/0x470
[  507.079484][T12304]  ? __pfx_do_filp_open+0x10/0x10
[  507.079546][T12304]  ? alloc_fd+0x471/0x7d0
[  507.079616][T12304]  do_sys_openat2+0x11b/0x1d0
[  507.079659][T12304]  ? __pfx_do_sys_openat2+0x10/0x10
[  507.079719][T12304]  __x64_sys_openat+0x174/0x210
[  507.079765][T12304]  ? __pfx___x64_sys_openat+0x10/0x10
[  507.079808][T12304]  ? rcu_is_watching+0x12/0xc0
[  507.079848][T12304]  do_syscall_64+0xcd/0x230
[  507.079898][T12304]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  507.079932][T12304] RIP: 0033:0x7f6bdfd8e969
[  507.079959][T12304] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  507.079992][T12304] RSP: 002b:00007f6be0be2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  507.080024][T12304] RAX: ffffffffffffffda RBX: 00007f6bdffb5fa0 RCX: 00007f6bdfd8e969
[  507.080047][T12304] RDX: 0000000000080000 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  507.080077][T12304] RBP: 00007f6bdfe10ab1 R08: 0000000000000000 R09: 0000000000000000
[  507.080098][T12304] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  507.080129][T12304] R13: 0000000000000000 R14: 00007f6bdffb5fa0 R15: 00007ffdae9d4208
[  507.080167][T12304]  </TASK>
[  508.080516][T12315] kmem.tcp.limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[  510.081520][T12354] netlink: 326 bytes leftover after parsing attributes in process `syz.2.1291'.
[  510.124945][T12354] random: crng reseeded on system resumption

	
		

	


	
	

		
	
		
	
	

	



			








	



	



		





















	

		










	
	










	
	






	






	







		










	

	
		
	


		
	
	
	

	
		
	
	

	

	
	

		
	

	

	



syzkaller
syzkaller login: [  523.508480][T12606] FAULT_INJECTION: forcing a failure.
[  523.508480][T12606] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  523.520512][T12606] CPU: 1 UID: 0 PID: 12606 Comm: syz.0.1346 Tainted: G     U              6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  523.520567][T12606] Tainted: [U]=USER
[  523.520578][T12606] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  523.520598][T12606] Call Trace:
[  523.520610][T12606]  <TASK>
[  523.520622][T12606]  dump_stack_lvl+0x16c/0x1f0
[  523.520674][T12606]  should_fail_ex+0x512/0x640
[  523.520728][T12606]  should_fail_alloc_page+0xe7/0x130
[  523.520773][T12606]  prepare_alloc_pages+0x3c2/0x610
[  523.520823][T12606]  ? rcu_is_watching+0x12/0xc0
[  523.520859][T12606]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[  523.520908][T12606]  ? stack_trace_save+0x8e/0xc0
[  523.520942][T12606]  ? __pfx_stack_trace_save+0x10/0x10
[  523.520980][T12606]  ? stack_depot_save_flags+0x28/0xa50
[  523.521025][T12606]  ? __lock_acquire+0xaa4/0x1ba0
[  523.521070][T12606]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  523.521112][T12606]  ? kasan_save_stack+0x42/0x60
[  523.521144][T12606]  ? kasan_save_stack+0x33/0x60
[  523.521176][T12606]  ? kasan_save_track+0x14/0x30
[  523.521208][T12606]  ? __kasan_kmalloc+0xaa/0xb0
[  523.521249][T12606]  ? mon_bin_open+0x1a8/0x4a0
[  523.521274][T12606]  ? chrdev_open+0x231/0x6a0
[  523.521308][T12606]  ? __x64_sys_openat+0x174/0x210
[  523.521346][T12606]  ? do_syscall_64+0xcd/0x230
[  523.521398][T12606]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  523.521439][T12606]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  523.521486][T12606]  ? policy_nodemask+0xea/0x4e0
[  523.521527][T12606]  alloc_pages_mpol+0x1fb/0x550
[  523.521567][T12606]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  523.521618][T12606]  alloc_pages_noprof+0x131/0x390
[  523.521658][T12606]  get_zeroed_page_noprof+0x14/0x50
[  523.521704][T12606]  mon_alloc_buff+0xbc/0x180
[  523.521753][T12606]  ? kasan_save_track+0x14/0x30
[  523.521790][T12606]  mon_bin_open+0x207/0x4a0
[  523.521820][T12606]  ? __pfx_mon_bin_open+0x10/0x10
[  523.521849][T12606]  chrdev_open+0x231/0x6a0
[  523.521884][T12606]  ? __pfx_chrdev_open+0x10/0x10
[  523.521921][T12606]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  523.521977][T12606]  do_dentry_open+0x741/0x1c10
[  523.522010][T12606]  ? __pfx_chrdev_open+0x10/0x10
[  523.522053][T12606]  vfs_open+0x82/0x3f0
[  523.522098][T12606]  path_openat+0x1e5e/0x2d40
[  523.522144][T12606]  ? __pfx_path_openat+0x10/0x10
[  523.522187][T12606]  do_filp_open+0x20b/0x470
[  523.522218][T12606]  ? __pfx_do_filp_open+0x10/0x10
[  523.522280][T12606]  ? alloc_fd+0x471/0x7d0
[  523.522341][T12606]  do_sys_openat2+0x11b/0x1d0
[  523.522389][T12606]  ? __pfx_do_sys_openat2+0x10/0x10
[  523.522448][T12606]  __x64_sys_openat+0x174/0x210
[  523.522490][T12606]  ? __pfx___x64_sys_openat+0x10/0x10
[  523.522537][T12606]  ? rcu_is_watching+0x12/0xc0
[  523.522578][T12606]  do_syscall_64+0xcd/0x230
[  523.522627][T12606]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  523.522658][T12606] RIP: 0033:0x7f0a3938e969
[  523.522683][T12606] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  523.522713][T12606] RSP: 002b:00007f0a3a27f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  523.522744][T12606] RAX: ffffffffffffffda RBX: 00007f0a395b6080 RCX: 00007f0a3938e969
[  523.522765][T12606] RDX: 0000000000000800 RSI: 0000200000000140 RDI: ffffffffffffff9c
[  523.522786][T12606] RBP: 00007f0a39410ab1 R08: 0000000000000000 R09: 0000000000000000
[  523.522805][T12606] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  523.522824][T12606] R13: 0000000000000000 R14: 00007f0a395b6080 R15: 00007ffd456d4018
[  523.522864][T12606]  </TASK>
[  525.060022][T12649] random: crng reseeded on system resumption
[  525.867779][T12661] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1357'.
[  526.201802][T12663] openvswitch: HfR: Dropping previously announced user features
[  526.246356][T12663] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1358'.
[  526.259579][T12663] HfR: left promiscuous mode
[  526.381599][T12663] HfR: entered promiscuous mode
[  526.432660][T12663] ubi0: attaching mtd0
[  526.440635][T12663] ubi0: scanning is finished
[  526.467880][T12663] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record
[  526.748000][T12663] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  526.960828][T12683] FAULT_INJECTION: forcing a failure.
[  526.960828][T12683] name fail_futex, interval 1, probability 0, space 0, times 0
[  526.996549][T12683] CPU: 1 UID: 0 PID: 12683 Comm: syz.2.1365 Tainted: G     U              6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  526.996601][T12683] Tainted: [U]=USER
[  526.996611][T12683] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  526.996631][T12683] Call Trace:
[  526.996640][T12683]  <TASK>
[  526.996652][T12683]  dump_stack_lvl+0x16c/0x1f0
[  526.996700][T12683]  should_fail_ex+0x512/0x640
[  526.996750][T12683]  get_futex_key+0x49e/0x1000
[  526.996788][T12683]  ? __pfx_get_futex_key+0x10/0x10
[  526.996835][T12683]  futex_wake+0xe7/0x4e0
[  526.996873][T12683]  ? rcu_is_watching+0x12/0xc0
[  526.996907][T12683]  ? __pfx_futex_wake+0x10/0x10
[  526.996966][T12683]  do_futex+0x1e3/0x350
[  526.997001][T12683]  ? __pfx_do_futex+0x10/0x10
[  526.997040][T12683]  ? __might_fault+0xe3/0x190
[  526.997089][T12683]  mm_release+0x24e/0x300
[  526.997125][T12683]  do_exit+0x898/0x2c30
[  526.997166][T12683]  ? __pfx_futex_wake_mark+0x10/0x10
[  526.997214][T12683]  ? __pfx_do_exit+0x10/0x10
[  526.997258][T12683]  ? do_raw_spin_lock+0x12c/0x2b0
[  526.997306][T12683]  ? find_held_lock+0x2b/0x80
[  526.997343][T12683]  do_group_exit+0xd3/0x2a0
[  526.997391][T12683]  get_signal+0x2673/0x26d0
[  526.997431][T12683]  ? kmem_cache_free+0x2d4/0x4d0
[  526.997463][T12683]  ? fd_install+0x225/0x750
[  526.997517][T12683]  ? __pfx_get_signal+0x10/0x10
[  526.997553][T12683]  ? do_futex+0x122/0x350
[  526.997587][T12683]  ? __pfx_do_futex+0x10/0x10
[  526.997624][T12683]  arch_do_signal_or_restart+0x8f/0x7a0
[  526.997672][T12683]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  526.997731][T12683]  ? rcu_is_watching+0x12/0xc0
[  526.997768][T12683]  syscall_exit_to_user_mode+0x150/0x2a0
[  526.997817][T12683]  do_syscall_64+0xda/0x230
[  526.997865][T12683]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  526.997896][T12683] RIP: 0033:0x7f72b5f8e969
[  526.997918][T12683] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  526.997948][T12683] RSP: 002b:00007f72b6d290e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  526.997977][T12683] RAX: fffffffffffffe00 RBX: 00007f72b61b5fa8 RCX: 00007f72b5f8e969
[  526.997997][T12683] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f72b61b5fa8
[  526.998016][T12683] RBP: 00007f72b61b5fa0 R08: 0000000000000000 R09: 0000000000000000
[  526.998042][T12683] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f72b61b5fac
[  526.998061][T12683] R13: 0000000000000000 R14: 00007ffce1f729c0 R15: 00007ffce1f72aa8
[  526.998101][T12683]  </TASK>
[  527.270047][T12688] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input18
[  527.544373][T12694] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1367'.
[  527.917238][T12705] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied.
[  528.443428][T12710] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input19
[  530.623407][T12746] FAULT_INJECTION: forcing a failure.
[  530.623407][T12746] name failslab, interval 1, probability 0, space 0, times 0
[  530.652301][T12746] CPU: 1 UID: 0 PID: 12746 Comm: syz.2.1378 Tainted: G     U              6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  530.652353][T12746] Tainted: [U]=USER
[  530.652361][T12746] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  530.652374][T12746] Call Trace:
[  530.652382][T12746]  <TASK>
[  530.652390][T12746]  dump_stack_lvl+0x16c/0x1f0
[  530.652428][T12746]  should_fail_ex+0x512/0x640
[  530.652460][T12746]  ? __kmalloc_noprof+0xbf/0x510
[  530.652487][T12746]  ? tracing_cpumask_read+0xd4/0x1d0
[  530.652521][T12746]  should_failslab+0xc2/0x120
[  530.652549][T12746]  __kmalloc_noprof+0xd2/0x510
[  530.652581][T12746]  tracing_cpumask_read+0xd4/0x1d0
[  530.652616][T12746]  ? __pfx_tracing_cpumask_read+0x10/0x10
[  530.652651][T12746]  vfs_readv+0x6bc/0x8a0
[  530.652685][T12746]  ? __pfx___mutex_trylock_common+0x10/0x10
[  530.652726][T12746]  ? __pfx_vfs_readv+0x10/0x10
[  530.652761][T12746]  ? __mutex_lock+0x1ca/0xb90
[  530.652805][T12746]  ? __pfx___mutex_lock+0x10/0x10
[  530.652848][T12746]  ? __fget_files+0x20e/0x3c0
[  530.652883][T12746]  ? __fget_files+0x110/0x3c0
[  530.652926][T12746]  ? do_readv+0x132/0x330
[  530.652958][T12746]  do_readv+0x132/0x330
[  530.652993][T12746]  ? __pfx_do_readv+0x10/0x10
[  530.653026][T12746]  ? rcu_is_watching+0x12/0xc0
[  530.653057][T12746]  do_syscall_64+0xcd/0x230
[  530.653094][T12746]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  530.653118][T12746] RIP: 0033:0x7f72b5f8e969
[  530.653136][T12746] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  530.653158][T12746] RSP: 002b:00007f72b6d29038 EFLAGS: 00000246 ORIG_RAX: 0000000000000013
[  530.653180][T12746] RAX: ffffffffffffffda RBX: 00007f72b61b5fa0 RCX: 00007f72b5f8e969
[  530.653195][T12746] RDX: 0000000000000007 RSI: 00002000000000c0 RDI: 0000000000000003
[  530.653210][T12746] RBP: 00007f72b6d29090 R08: 0000000000000000 R09: 0000000000000000
[  530.653224][T12746] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  530.653238][T12746] R13: 0000000000000000 R14: 00007f72b61b5fa0 R15: 00007ffce1f72aa8
[  530.653267][T12746]  </TASK>
[  534.631904][T12762] ima: policy update failed
[  534.640162][   T30] audit: type=1802 audit(4294967384.870:16): pid=12762 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.1380" res=0 errno=0
[  534.657878][T12802] FAULT_INJECTION: forcing a failure.
[  534.657878][T12802] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  534.720791][T12802] CPU: 0 UID: 0 PID: 12802 Comm: syz.4.1391 Tainted: G     U              6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  534.720844][T12802] Tainted: [U]=USER
[  534.720854][T12802] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  534.720881][T12802] Call Trace:
[  534.720890][T12802]  <TASK>
[  534.720901][T12802]  dump_stack_lvl+0x16c/0x1f0
[  534.720948][T12802]  should_fail_ex+0x512/0x640
[  534.720999][T12802]  _copy_to_user+0x32/0xd0
[  534.721052][T12802]  simple_read_from_buffer+0xcb/0x170
[  534.721104][T12802]  tracing_cpumask_read+0x15d/0x1d0
[  534.721152][T12802]  ? __pfx_tracing_cpumask_read+0x10/0x10
[  534.721200][T12802]  vfs_readv+0x6bc/0x8a0
[  534.721245][T12802]  ? __pfx___mutex_trylock_common+0x10/0x10
[  534.721299][T12802]  ? __pfx_vfs_readv+0x10/0x10
[  534.721347][T12802]  ? __mutex_lock+0x1ca/0xb90
[  534.721401][T12802]  ? __pfx___mutex_lock+0x10/0x10
[  534.721461][T12802]  ? __fget_files+0x20e/0x3c0
[  534.721508][T12802]  ? __fget_files+0x110/0x3c0
[  534.721567][T12802]  ? do_readv+0x132/0x330
[  534.721609][T12802]  do_readv+0x132/0x330
[  534.721657][T12802]  ? __pfx_do_readv+0x10/0x10
[  534.721718][T12802]  do_syscall_64+0xcd/0x230
[  534.721763][T12802]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  534.721795][T12802] RIP: 0033:0x7f6bdfd8e969
[  534.721819][T12802] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  534.721850][T12802] RSP: 002b:00007f6be0be2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000013
[  534.721886][T12802] RAX: ffffffffffffffda RBX: 00007f6bdffb5fa0 RCX: 00007f6bdfd8e969
[  534.721908][T12802] RDX: 0000000000000007 RSI: 00002000000000c0 RDI: 0000000000000003
[  534.721928][T12802] RBP: 00007f6be0be2090 R08: 0000000000000000 R09: 0000000000000000
[  534.721947][T12802] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  534.721965][T12802] R13: 0000000000000000 R14: 00007f6bdffb5fa0 R15: 00007ffdae9d4208
[  534.722005][T12802]  </TASK>
[  534.920860][    C0] vkms_vblank_simulate: vblank timer overrun
[  537.130894][T12847] FAULT_INJECTION: forcing a failure.
[  537.130894][T12847] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  537.214876][T12847] CPU: 0 UID: 0 PID: 12847 Comm: syz.0.1402 Tainted: G     U              6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  537.214927][T12847] Tainted: [U]=USER
[  537.214937][T12847] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  537.214955][T12847] Call Trace:
[  537.214966][T12847]  <TASK>
[  537.214978][T12847]  dump_stack_lvl+0x16c/0x1f0
[  537.215026][T12847]  should_fail_ex+0x512/0x640
[  537.215078][T12847]  _copy_to_user+0x32/0xd0
[  537.215129][T12847]  simple_read_from_buffer+0xcb/0x170
[  537.215178][T12847]  proc_fail_nth_read+0x197/0x270
[  537.215223][T12847]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  537.215269][T12847]  ? rw_verify_area+0xcf/0x680
[  537.215315][T12847]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  537.215360][T12847]  vfs_read+0x1de/0xc70
[  537.215395][T12847]  ? __pfx___mutex_lock+0x10/0x10
[  537.215452][T12847]  ? __pfx_vfs_read+0x10/0x10
[  537.215493][T12847]  ? __fget_files+0x20e/0x3c0
[  537.215554][T12847]  ksys_read+0x12a/0x240
[  537.215583][T12847]  ? __pfx_ksys_read+0x10/0x10
[  537.215609][T12847]  ? rcu_is_watching+0x12/0xc0
[  537.215650][T12847]  do_syscall_64+0xcd/0x230
[  537.215699][T12847]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  537.215729][T12847] RIP: 0033:0x7f0a3938d37c
[  537.215754][T12847] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  537.215785][T12847] RSP: 002b:00007f0a3a2a0030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  537.215814][T12847] RAX: ffffffffffffffda RBX: 00007f0a395b5fa0 RCX: 00007f0a3938d37c
[  537.215834][T12847] RDX: 000000000000000f RSI: 00007f0a3a2a00a0 RDI: 0000000000000004
[  537.215858][T12847] RBP: 00007f0a3a2a0090 R08: 0000000000000000 R09: 0000000000000000
[  537.215877][T12847] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  537.215895][T12847] R13: 0000000000000000 R14: 00007f0a395b5fa0 R15: 00007ffd456d4018
[  537.215937][T12847]  </TASK>
[  537.416575][    C0] vkms_vblank_simulate: vblank timer overrun
[  537.476283][T12846] can: request_module (can-proto-0) failed.
[  537.592643][T12858] netlink: 'syz.0.1403': attribute type 5 has an invalid length.
[  537.616274][T12858] netlink: 'syz.0.1403': attribute type 1 has an invalid length.
[  537.639064][T12858] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1403'.
[  539.042356][T12880] FAULT_INJECTION: forcing a failure.
[  539.042356][T12880] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  539.077033][T12880] CPU: 1 UID: 0 PID: 12880 Comm: syz.0.1408 Tainted: G     U              6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  539.077073][T12880] Tainted: [U]=USER
[  539.077080][T12880] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  539.077094][T12880] Call Trace:
[  539.077103][T12880]  <TASK>
[  539.077111][T12880]  dump_stack_lvl+0x16c/0x1f0
[  539.077147][T12880]  should_fail_ex+0x512/0x640
[  539.077183][T12880]  _copy_from_user+0x2e/0xd0
[  539.077217][T12880]  copy_msghdr_from_user+0x98/0x160
[  539.077243][T12880]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  539.077272][T12880]  ? kfree+0x252/0x4d0
[  539.077289][T12880]  ? __pfx__kstrtoull+0x10/0x10
[  539.077326][T12880]  ___sys_sendmsg+0xfe/0x1d0
[  539.077354][T12880]  ? __pfx____sys_sendmsg+0x10/0x10
[  539.077405][T12880]  ? __pfx___might_resched+0x10/0x10
[  539.077437][T12880]  __sys_sendmmsg+0x200/0x420
[  539.077467][T12880]  ? __pfx___sys_sendmmsg+0x10/0x10
[  539.077502][T12880]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  539.077548][T12880]  ? fput+0x70/0xf0
[  539.077574][T12880]  ? ksys_write+0x1b9/0x240
[  539.077595][T12880]  ? __pfx_ksys_write+0x10/0x10
[  539.077615][T12880]  ? rcu_is_watching+0x12/0xc0
[  539.077640][T12880]  __x64_sys_sendmmsg+0x9c/0x100
[  539.077664][T12880]  ? lockdep_hardirqs_on+0x7c/0x110
[  539.077693][T12880]  do_syscall_64+0xcd/0x230
[  539.077726][T12880]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  539.077749][T12880] RIP: 0033:0x7f0a3938e969
[  539.077766][T12880] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  539.077789][T12880] RSP: 002b:00007f0a3a2a0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  539.077810][T12880] RAX: ffffffffffffffda RBX: 00007f0a395b5fa0 RCX: 00007f0a3938e969
[  539.077825][T12880] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003
[  539.077839][T12880] RBP: 00007f0a3a2a0090 R08: 0000000000000000 R09: 0000000000000000
[  539.077854][T12880] R10: 000000000000cad7 R11: 0000000000000246 R12: 0000000000000001
[  539.077868][T12880] R13: 0000000000000000 R14: 00007f0a395b5fa0 R15: 00007ffd456d4018
[  539.077896][T12880]  </TASK>
[  540.759627][ T7308] EXT4-fs (sda1): Delayed block allocation failed for inode 2029 at logical offset 928 with max blocks 1 with error 117
[  540.837854][ T7308] EXT4-fs (sda1): This should not happen!! Data will be lost
[  540.837854][ T7308] 
[  542.047112][T12936] FAULT_INJECTION: forcing a failure.
[  542.047112][T12936] name failslab, interval 1, probability 0, space 0, times 0
[  542.063875][T12936] CPU: 0 UID: 0 PID: 12936 Comm: syz.0.1419 Tainted: G     U              6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  542.063942][T12936] Tainted: [U]=USER
[  542.063951][T12936] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  542.063969][T12936] Call Trace:
[  542.063978][T12936]  <TASK>
[  542.063989][T12936]  dump_stack_lvl+0x16c/0x1f0
[  542.064048][T12936]  should_fail_ex+0x512/0x640
[  542.064087][T12936]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  542.064124][T12936]  should_failslab+0xc2/0x120
[  542.064160][T12936]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  542.064191][T12936]  ? __alloc_skb+0x2b2/0x380
[  542.064226][T12936]  __alloc_skb+0x2b2/0x380
[  542.064254][T12936]  ? __pfx___alloc_skb+0x10/0x10
[  542.064286][T12936]  ? aa_label_sk_perm+0x19b/0x5a0
[  542.064318][T12936]  ? process_measurement+0x1e6/0x23e0
[  542.064374][T12936]  tcp_stream_alloc_skb+0x34/0x570
[  542.064423][T12936]  tcp_sendmsg_locked+0xec1/0x3930
[  542.064486][T12936]  ? __lock_acquire+0xaa4/0x1ba0
[  542.064523][T12936]  ? __pfx_tcp_sendmsg_locked+0x10/0x10
[  542.064566][T12936]  ? do_raw_spin_lock+0x12c/0x2b0
[  542.064609][T12936]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  542.064660][T12936]  ? __local_bh_enable_ip+0xa4/0x120
[  542.064696][T12936]  tcp_sendmsg+0x2e/0x50
[  542.064732][T12936]  ? __pfx_tcp_sendmsg+0x10/0x10
[  542.064770][T12936]  inet_sendmsg+0xb9/0x140
[  542.064811][T12936]  ____sys_sendmsg+0x973/0xc70
[  542.064853][T12936]  ? copy_msghdr_from_user+0x10a/0x160
[  542.064885][T12936]  ? __pfx_____sys_sendmsg+0x10/0x10
[  542.064930][T12936]  ? kfree+0x252/0x4d0
[  542.064952][T12936]  ? __pfx__kstrtoull+0x10/0x10
[  542.064991][T12936]  ___sys_sendmsg+0x134/0x1d0
[  542.065024][T12936]  ? __pfx____sys_sendmsg+0x10/0x10
[  542.065133][T12936]  ? __pfx___might_resched+0x10/0x10
[  542.065173][T12936]  __sys_sendmmsg+0x200/0x420
[  542.065211][T12936]  ? __pfx___sys_sendmmsg+0x10/0x10
[  542.065256][T12936]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  542.065316][T12936]  ? fput+0x70/0xf0
[  542.065357][T12936]  ? ksys_write+0x1b9/0x240
[  542.065383][T12936]  ? __pfx_ksys_write+0x10/0x10
[  542.065408][T12936]  ? rcu_is_watching+0x12/0xc0
[  542.065440][T12936]  __x64_sys_sendmmsg+0x9c/0x100
[  542.065472][T12936]  ? lockdep_hardirqs_on+0x7c/0x110
[  542.065511][T12936]  do_syscall_64+0xcd/0x230
[  542.065555][T12936]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  542.065584][T12936] RIP: 0033:0x7f0a3938e969
[  542.065606][T12936] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  542.065634][T12936] RSP: 002b:00007f0a3a2a0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  542.065661][T12936] RAX: ffffffffffffffda RBX: 00007f0a395b5fa0 RCX: 00007f0a3938e969
[  542.065681][T12936] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003
[  542.065698][T12936] RBP: 00007f0a3a2a0090 R08: 0000000000000000 R09: 0000000000000000
[  542.065716][T12936] R10: 000000000000cad7 R11: 0000000000000246 R12: 0000000000000001
[  542.065733][T12936] R13: 0000000000000000 R14: 00007f0a395b5fa0 R15: 00007ffd456d4018
[  542.065771][T12936]  </TASK>
[  544.708535][T12998] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1431'.
[  546.532306][T13039] FAULT_INJECTION: forcing a failure.
[  546.532306][T13039] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  546.546340][T13039] CPU: 1 UID: 0 PID: 13039 Comm: syz.0.1442 Tainted: G     U              6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  546.546387][T13039] Tainted: [U]=USER
[  546.546396][T13039] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  546.546413][T13039] Call Trace:
[  546.546422][T13039]  <TASK>
[  546.546434][T13039]  dump_stack_lvl+0x16c/0x1f0
[  546.546482][T13039]  should_fail_ex+0x512/0x640
[  546.546530][T13039]  should_fail_alloc_page+0xe7/0x130
[  546.546571][T13039]  prepare_alloc_pages+0x3c2/0x610
[  546.546619][T13039]  ? rcu_is_watching+0x12/0xc0
[  546.546652][T13039]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[  546.546689][T13039]  ? rcu_is_watching+0x12/0xc0
[  546.546716][T13039]  ? trace_sched_exit_tp+0xde/0x130
[  546.546754][T13039]  ? __schedule+0x1186/0x5de0
[  546.546802][T13039]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  546.546843][T13039]  ? const_folio_flags+0x5b/0x100
[  546.546889][T13039]  ? __lock_acquire+0x5ca/0x1ba0
[  546.546930][T13039]  ? __lock_acquire+0x5ca/0x1ba0
[  546.546969][T13039]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  546.547020][T13039]  ? policy_nodemask+0xea/0x4e0
[  546.547062][T13039]  alloc_pages_mpol+0x1fb/0x550
[  546.547101][T13039]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  546.547139][T13039]  ? __lock_acquire+0x5ca/0x1ba0
[  546.547183][T13039]  folio_alloc_mpol_noprof+0x36/0x2f0
[  546.547229][T13039]  vma_alloc_folio_noprof+0xed/0x1e0
[  546.547272][T13039]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  546.547327][T13039]  do_pte_missing+0x223d/0x3fb0
[  546.547372][T13039]  __handle_mm_fault+0x103d/0x2a40
[  546.547415][T13039]  ? __pfx___handle_mm_fault+0x10/0x10
[  546.547445][T13039]  ? __pte_offset_map_lock+0x155/0x2f0
[  546.547489][T13039]  ? find_held_lock+0x2b/0x80
[  546.547515][T13039]  ? find_held_lock+0x2b/0x80
[  546.547569][T13039]  handle_mm_fault+0x3fe/0xad0
[  546.547608][T13039]  __get_user_pages+0x771/0x36f0
[  546.547666][T13039]  ? __pfx_mt_find+0x10/0x10
[  546.547714][T13039]  ? __pfx___get_user_pages+0x10/0x10
[  546.547776][T13039]  populate_vma_page_range+0x278/0x3a0
[  546.547808][T13039]  ? __pfx_populate_vma_page_range+0x10/0x10
[  546.547837][T13039]  ? __pfx_find_vma_intersection+0x10/0x10
[  546.547885][T13039]  ? do_mmap+0x69c/0x11b0
[  546.547933][T13039]  __mm_populate+0x1d8/0x380
[  546.547963][T13039]  ? __pfx___mm_populate+0x10/0x10
[  546.547994][T13039]  ? up_write+0x1b2/0x520
[  546.548049][T13039]  vm_mmap_pgoff+0x362/0x450
[  546.548096][T13039]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  546.548150][T13039]  ? __x64_sys_futex+0x1e0/0x4c0
[  546.548181][T13039]  ? __x64_sys_futex+0x1e9/0x4c0
[  546.548219][T13039]  ksys_mmap_pgoff+0x7d/0x5c0
[  546.548262][T13039]  ? rcu_is_watching+0x12/0xc0
[  546.548292][T13039]  __x64_sys_mmap+0x125/0x190
[  546.548327][T13039]  do_syscall_64+0xcd/0x230
[  546.548373][T13039]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  546.548405][T13039] RIP: 0033:0x7f0a3938e969
[  546.548428][T13039] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  546.548457][T13039] RSP: 002b:00007f0a3a27f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  546.548486][T13039] RAX: ffffffffffffffda RBX: 00007f0a395b6080 RCX: 00007f0a3938e969
[  546.548506][T13039] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[  546.548524][T13039] RBP: 00007f0a39410ab1 R08: 0000000000000002 R09: 0000000000008000
[  546.548543][T13039] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  546.548561][T13039] R13: 0000000000000000 R14: 00007f0a395b6080 R15: 00007ffd456d4018
[  546.548601][T13039]  </TASK>
[  546.903297][    C1] vkms_vblank_simulate: vblank timer overrun
[  547.304556][T13037] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78010
[  547.313413][T13037] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  547.384656][T13037] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  547.415428][T13037] page_type: f5(slab)
[  547.419601][T13037] raw: 00fff00000000040 ffff88801b442140 dead000000000122 0000000000000000
[  547.449187][T13037] raw: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000
[  547.463968][T13037] head: 00fff00000000040 ffff88801b442140 dead000000000122 0000000000000000
[  547.494111][T13037] head: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000
[  547.564501][T13037] head: 00fff00000000003 ffffea0001e00401 00000000ffffffff 00000000ffffffff
[  547.598834][T13037] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  547.634543][T13037] page dumped because: unmovable page
[  547.640054][T13037] page_owner tracks the page as allocated
[  547.661650][T13037] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 12865, tgid 12859 (syz.2.1405), ts 538689670688, free_ts 538650664525
[  547.722186][T13037]  post_alloc_hook+0x181/0x1b0
[  547.730833][T13037]  get_page_from_freelist+0x135c/0x3920
[  547.740995][T13037]  __alloc_frozen_pages_noprof+0x263/0x23a0
[  547.784115][T13037]  alloc_pages_mpol+0x1fb/0x550
[  547.812266][T13037]  new_slab+0x244/0x340
[  547.816811][T13037]  ___slab_alloc+0xd9c/0x1940
[  547.821560][T13037]  __slab_alloc.constprop.0+0x56/0xb0
[  547.875887][T13037]  __kmalloc_cache_noprof+0xfb/0x3e0
[  547.907863][T13037]  kobject_uevent_env+0x265/0x1870
[  547.934486][T13037]  __kobject_del+0x168/0x1f0
[  547.939503][T13037]  kobject_put+0x327/0x5a0
[  547.943987][T13037]  net_rx_queue_update_kobjects+0x547/0x770
[  547.974934][T13037]  netdev_unregister_kobject+0x154/0x540
[  547.980674][T13037]  unregister_netdevice_many_notify+0x1904/0x26f0
[  548.004498][T13037]  setup_net+0x49a/0x850
[  548.008824][T13037]  copy_net_ns+0x2a6/0x5f0
[  548.013291][T13037] page last free pid 12866 tgid 12866 stack trace:
[  548.044778][T13037]  __free_frozen_pages+0x69d/0xff0
[  548.050319][T13037]  __put_partials+0x16d/0x1c0
[  548.056986][T13037]  qlist_free_all+0x4e/0x120
[  548.061737][T13037]  kasan_quarantine_reduce+0x195/0x1e0
[  548.067407][T13037]  __kasan_slab_alloc+0x69/0x90
[  548.072393][T13037]  kmem_cache_alloc_noprof+0x1cb/0x3b0
[  548.077957][T13037]  vm_area_alloc+0x1f/0x160
[  548.082595][T13037]  __mmap_region+0xfd0/0x27c0
[  548.087502][T13037]  mmap_region+0x1ab/0x3f0
[  548.091970][T13037]  do_mmap+0xd8e/0x11b0
[  548.096291][T13037]  vm_mmap_pgoff+0x281/0x450
[  548.100970][T13037]  ksys_mmap_pgoff+0x7d/0x5c0
[  548.105856][T13037]  __x64_sys_mmap+0x125/0x190
[  548.164539][T13037]  do_syscall_64+0xcd/0x230
[  548.169168][T13037]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  548.228010][T13062] synth uevent: /devices/platform/dummy_hcd.3/usb4/ep_00: unknown uevent action string
[  548.343641][T13062]  ep_00: uevent: failed to send synthetic uevent: -22
[  549.676699][T13093] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1453'.
[  549.764198][T13093] bridge_slave_0: left allmulticast mode
[  549.796333][T13093] bridge_slave_0: left promiscuous mode
[  549.802237][T13093] bridge0: port 1(bridge_slave_0) entered disabled state
[  550.228844][T13093] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1453'.
[  550.275911][T13093] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1453'.
[  550.321549][T13093] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1453'.
[  553.835974][ T5831] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260
[  553.836016][ T5831] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260
[  553.851417][ T5831] Bluetooth: hci1: Unknown advertising packet type: 0x7f
[  553.851475][ T5831] Bluetooth: hci1: Unknown advertising packet type: 0x74
[  553.859263][ T5831] Bluetooth: hci1: adv larger than maximum supported
[  553.866449][ T5831] Bluetooth: hci1: Unknown advertising packet type: 0x20
[  553.873171][ T5831] Bluetooth: hci1: adv larger than maximum supported
[  553.880714][ T5831] Bluetooth: hci1: adv larger than maximum supported
[  553.887668][ T5831] Bluetooth: hci1: Malformed LE Event: 0x0d
[  555.719258][T13199] Invalid ELF header len 1
[  558.738464][T13248] kexec: Could not allocate control_code_buffer
[  559.207249][T13268] netlink: 'syz.4.1484': attribute type 3 has an invalid length.
[  559.972192][T13288] netlink: 1024 bytes leftover after parsing attributes in process `syz.4.1490'.
[  559.993496][T13288] openvswitch: netlink: Flow key attr not present in new flow.
[  560.775176][T13301] FAULT_INJECTION: forcing a failure.
[  560.775176][T13301] name failslab, interval 1, probability 0, space 0, times 0
[  560.831462][T13301] CPU: 1 UID: 0 PID: 13301 Comm: syz.1.1492 Tainted: G     U              6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  560.831549][T13301] Tainted: [U]=USER
[  560.831563][T13301] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  560.831581][T13301] Call Trace:
[  560.831592][T13301]  <TASK>
[  560.831603][T13301]  dump_stack_lvl+0x16c/0x1f0
[  560.831655][T13301]  should_fail_ex+0x512/0x640
[  560.831697][T13301]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  560.831738][T13301]  should_failslab+0xc2/0x120
[  560.831773][T13301]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  560.831810][T13301]  ? __d_alloc+0x31/0xaa0
[  560.831847][T13301]  __d_alloc+0x31/0xaa0
[  560.831884][T13301]  d_alloc_pseudo+0x1c/0xc0
[  560.831923][T13301]  alloc_file_pseudo_noaccount+0xcf/0x230
[  560.831971][T13301]  ? __pfx_alloc_file_pseudo_noaccount+0x10/0x10
[  560.832027][T13301]  bdev_file_open_by_dev+0x143/0x210
[  560.832075][T13301]  disk_scan_partitions+0x1ed/0x320
[  560.832146][T13301]  blkdev_common_ioctl+0x2f6/0x2480
[  560.832178][T13301]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  560.832215][T13301]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  560.832259][T13301]  ? __pfx_blkdev_common_ioctl+0x10/0x10
[  560.832296][T13301]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  560.832362][T13301]  ? find_held_lock+0x2b/0x80
[  560.832396][T13301]  blkdev_ioctl+0x1cb/0x6d0
[  560.832430][T13301]  ? __pfx_blkdev_ioctl+0x10/0x10
[  560.832469][T13301]  ? __pfx_blkdev_ioctl+0x10/0x10
[  560.832505][T13301]  __x64_sys_ioctl+0x190/0x200
[  560.832548][T13301]  do_syscall_64+0xcd/0x230
[  560.832593][T13301]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  560.832622][T13301] RIP: 0033:0x7fa86718e969
[  560.832646][T13301] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  560.832674][T13301] RSP: 002b:00007fa867fe6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  560.832703][T13301] RAX: ffffffffffffffda RBX: 00007fa8673b6240 RCX: 00007fa86718e969
[  560.832722][T13301] RDX: 0000000000000000 RSI: 000000000000125f RDI: 0000000000000003
[  560.832740][T13301] RBP: 00007fa867210ab1 R08: 0000000000000000 R09: 0000000000000000
[  560.832758][T13301] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  560.832776][T13301] R13: 0000000000000000 R14: 00007fa8673b6240 R15: 00007ffd7a758228
[  560.832814][T13301]  </TASK>
[  562.930654][T13326] Invalid ELF header magic: != ELF
[  564.146360][T13374] netlink: 186 bytes leftover after parsing attributes in process `syz.4.1507'.
[  564.227157][T13376] block2mtd: parameter too long
[  565.546901][T13403] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1512'.
[  565.975356][T13409] nvme_fabrics: missing parameter 'transport=%s'
[  565.984612][T13409] nvme_fabrics: missing parameter 'nqn=%s'
[  567.974946][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  567.992850][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  569.327144][T13463] FAULT_INJECTION: forcing a failure.
[  569.327144][T13463] name failslab, interval 1, probability 0, space 0, times 0
[  569.383048][T13463] CPU: 0 UID: 0 PID: 13463 Comm: syz.4.1524 Tainted: G     U              6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  569.383108][T13463] Tainted: [U]=USER
[  569.383118][T13463] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  569.383138][T13463] Call Trace:
[  569.383149][T13463]  <TASK>
[  569.383161][T13463]  dump_stack_lvl+0x16c/0x1f0
[  569.383212][T13463]  should_fail_ex+0x512/0x640
[  569.383279][T13463]  ? fs_reclaim_acquire+0xae/0x150
[  569.383334][T13463]  should_failslab+0xc2/0x120
[  569.383374][T13463]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  569.383413][T13463]  ? security_inode_alloc+0x3b/0x2b0
[  569.383456][T13463]  security_inode_alloc+0x3b/0x2b0
[  569.383495][T13463]  inode_init_always_gfp+0xce4/0x1030
[  569.383564][T13463]  alloc_inode+0x86/0x240
[  569.383604][T13463]  new_inode+0x22/0x1c0
[  569.383649][T13463]  __rpc_create_common+0x57/0x2f0
[  569.383700][T13463]  rpc_populate.constprop.0+0x153/0x5d0
[  569.383759][T13463]  rpc_fill_super+0x345/0x840
[  569.383804][T13463]  ? sget_fc+0x808/0xc20
[  569.383861][T13463]  ? __pfx_rpc_fill_super+0x10/0x10
[  569.383906][T13463]  get_tree_keyed+0x10b/0x1d0
[  569.383961][T13463]  vfs_get_tree+0x8b/0x340
[  569.384006][T13463]  vfs_cmd_create+0xd7/0x2a0
[  569.384044][T13463]  __do_sys_fsconfig+0x7b8/0xbe0
[  569.384085][T13463]  ? __pfx___do_sys_fsconfig+0x10/0x10
[  569.384123][T13463]  ? xfd_validate_state+0x5d/0x180
[  569.384179][T13463]  ? rcu_is_watching+0x12/0xc0
[  569.384221][T13463]  do_syscall_64+0xcd/0x230
[  569.384271][T13463]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  569.384305][T13463] RIP: 0033:0x7f6bdfd8e969
[  569.384331][T13463] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  569.384364][T13463] RSP: 002b:00007f6be0be2038 EFLAGS: 00000246 ORIG_RAX: 00000000000001af
[  569.384394][T13463] RAX: ffffffffffffffda RBX: 00007f6bdffb5fa0 RCX: 00007f6bdfd8e969
[  569.384415][T13463] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000005
[  569.384434][T13463] RBP: 00007f6bdfe10ab1 R08: 0000000000000000 R09: 0000000000000000
[  569.384454][T13463] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  569.384474][T13463] R13: 0000000000000000 R14: 00007f6bdffb5fa0 R15: 00007ffdae9d4208
[  569.384518][T13463]  </TASK>
[  569.611607][    C0] vkms_vblank_simulate: vblank timer overrun
[  570.280960][T13463] net/sunrpc/rpc_pipe.c: __rpc_create_common failed to allocate inode for dentry clntXX
[  570.395446][T13463] net/sunrpc/rpc_pipe.c: rpc_populate failed to populate directory gssd
[  583.951753][ T1299] ==================================================================
[  583.959875][ T1299] BUG: KASAN: slab-use-after-free in handle_tx+0x5dc/0x630
[  583.967104][ T1299] Read of size 1 at addr ffff888061799490 by task aoe_tx0/1299
[  583.974664][ T1299] 
[  583.976997][ T1299] CPU: 1 UID: 0 PID: 1299 Comm: aoe_tx0 Tainted: G     U              6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  583.977032][ T1299] Tainted: [U]=USER
[  583.977040][ T1299] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  583.977055][ T1299] Call Trace:
[  583.977062][ T1299]  <TASK>
[  583.977070][ T1299]  dump_stack_lvl+0x116/0x1f0
[  583.977104][ T1299]  print_report+0xc3/0x670
[  583.977129][ T1299]  ? __virt_addr_valid+0x5e/0x590
[  583.977157][ T1299]  ? __phys_addr+0xc6/0x150
[  583.977184][ T1299]  ? handle_tx+0x5dc/0x630
[  583.977205][ T1299]  kasan_report+0xe0/0x110
[  583.977230][ T1299]  ? handle_tx+0x5dc/0x630
[  583.977254][ T1299]  handle_tx+0x5dc/0x630
[  583.977278][ T1299]  dev_hard_start_xmit+0x93/0x740
[  583.977316][ T1299]  __dev_queue_xmit+0x7eb/0x43e0
[  583.977359][ T1299]  ? lockdep_hardirqs_on+0x7c/0x110
[  583.977390][ T1299]  ? finish_task_switch.isra.0+0x221/0xc10
[  583.977415][ T1299]  ? rcu_is_watching+0x12/0xc0
[  583.977435][ T1299]  ? __pfx___dev_queue_xmit+0x10/0x10
[  583.977471][ T1299]  ? __lock_acquire+0xaa4/0x1ba0
[  583.977499][ T1299]  ? __lock_acquire+0xaa4/0x1ba0
[  583.977529][ T1299]  ? do_raw_spin_lock+0x12c/0x2b0
[  583.977562][ T1299]  ? find_held_lock+0x2b/0x80
[  583.977582][ T1299]  ? skb_dequeue+0x126/0x180
[  583.977613][ T1299]  ? find_held_lock+0x2b/0x80
[  583.977634][ T1299]  ? rcu_is_watching+0x12/0xc0
[  583.977654][ T1299]  tx+0xcc/0x190
[  583.977676][ T1299]  ? __pfx_tx+0x10/0x10
[  583.977697][ T1299]  kthread+0x1e1/0x3e0
[  583.977716][ T1299]  ? find_held_lock+0x2b/0x80
[  583.977735][ T1299]  ? __pfx_kthread+0x10/0x10
[  583.977754][ T1299]  ? __pfx_default_wake_function+0x10/0x10
[  583.977775][ T1299]  ? lockdep_hardirqs_on+0x7c/0x110
[  583.977805][ T1299]  ? __kthread_parkme+0x19e/0x250
[  583.977831][ T1299]  ? __pfx_kthread+0x10/0x10
[  583.977849][ T1299]  kthread+0x3c2/0x780
[  583.977878][ T1299]  ? __pfx_kthread+0x10/0x10
[  583.977907][ T1299]  ? __pfx_kthread+0x10/0x10
[  583.977936][ T1299]  ? __pfx_kthread+0x10/0x10
[  583.977966][ T1299]  ? __pfx_kthread+0x10/0x10
[  583.977994][ T1299]  ? rcu_is_watching+0x12/0xc0
[  583.978014][ T1299]  ? __pfx_kthread+0x10/0x10
[  583.978044][ T1299]  ret_from_fork+0x45/0x80
[  583.978077][ T1299]  ? __pfx_kthread+0x10/0x10
[  583.978107][ T1299]  ret_from_fork_asm+0x1a/0x30
[  583.978145][ T1299]  </TASK>
[  583.978152][ T1299] 
[  584.204543][ T1299] Allocated by task 11016:
[  584.208986][ T1299]  kasan_save_stack+0x33/0x60
[  584.213686][ T1299]  kasan_save_track+0x14/0x30
[  584.218378][ T1299]  __kasan_kmalloc+0xaa/0xb0
[  584.222985][ T1299]  alloc_tty_struct+0x96/0x8c0
[  584.227799][ T1299]  tty_init_dev.part.0+0x1e/0x500
[  584.232848][ T1299]  tty_open+0xa50/0xf90
[  584.237033][ T1299]  chrdev_open+0x231/0x6a0
[  584.241555][ T1299]  do_dentry_open+0x741/0x1c10
[  584.246336][ T1299]  vfs_open+0x82/0x3f0
[  584.250428][ T1299]  path_openat+0x1e5e/0x2d40
[  584.255046][ T1299]  do_filp_open+0x20b/0x470
[  584.259562][ T1299]  do_sys_openat2+0x11b/0x1d0
[  584.264261][ T1299]  __x64_sys_openat+0x174/0x210
[  584.269140][ T1299]  do_syscall_64+0xcd/0x230
[  584.273669][ T1299]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  584.279580][ T1299] 
[  584.281911][ T1299] Freed by task 5895:
[  584.285900][ T1299]  kasan_save_stack+0x33/0x60
[  584.290598][ T1299]  kasan_save_track+0x14/0x30
[  584.295290][ T1299]  kasan_save_free_info+0x3b/0x60
[  584.300346][ T1299]  __kasan_slab_free+0x51/0x70
[  584.305131][ T1299]  kfree+0x2b6/0x4d0
[  584.309040][ T1299]  process_one_work+0x9cc/0x1b70
[  584.314010][ T1299]  worker_thread+0x6c8/0xf10
[  584.318629][ T1299]  kthread+0x3c2/0x780
[  584.322722][ T1299]  ret_from_fork+0x45/0x80
[  584.327172][ T1299]  ret_from_fork_asm+0x1a/0x30
[  584.331964][ T1299] 
[  584.334292][ T1299] Last potentially related work creation:
[  584.340013][ T1299]  kasan_save_stack+0x33/0x60
[  584.344709][ T1299]  kasan_record_aux_stack+0xb8/0xd0
[  584.349938][ T1299]  insert_work+0x36/0x230
[  584.354292][ T1299]  __queue_work+0x97e/0x10f0
[  584.358918][ T1299]  queue_work_on+0x1a4/0x1f0
[  584.363540][ T1299]  release_tty+0x4de/0x5d0
[  584.367975][ T1299]  tty_release_struct+0xb7/0xe0
[  584.372845][ T1299]  tty_release+0xe2d/0x1430
[  584.377365][ T1299]  __fput+0x3ff/0xb70
[  584.381365][ T1299]  task_work_run+0x14d/0x240
[  584.385986][ T1299]  do_exit+0xafb/0x2c30
[  584.390183][ T1299]  do_group_exit+0xd3/0x2a0
[  584.394709][ T1299]  get_signal+0x2673/0x26d0
[  584.399230][ T1299]  arch_do_signal_or_restart+0x8f/0x7a0
[  584.404810][ T1299]  syscall_exit_to_user_mode+0x150/0x2a0
[  584.410482][ T1299]  do_syscall_64+0xda/0x230
[  584.415018][ T1299]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  584.420923][ T1299] 
[  584.423254][ T1299] The buggy address belongs to the object at ffff888061799000
[  584.423254][ T1299]  which belongs to the cache kmalloc-cg-2k of size 2048
[  584.437612][ T1299] The buggy address is located 1168 bytes inside of
[  584.437612][ T1299]  freed 2048-byte region [ffff888061799000, ffff888061799800)
[  584.451597][ T1299] 
[  584.453924][ T1299] The buggy address belongs to the physical page:
[  584.460338][ T1299] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x61798
[  584.469108][ T1299] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  584.477616][ T1299] memcg:ffff88802fd77201
[  584.481860][ T1299] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  584.489414][ T1299] page_type: f5(slab)
[  584.493407][ T1299] raw: 00fff00000000040 ffff88801b44b3c0 dead000000000100 dead000000000122
[  584.502002][ T1299] raw: 0000000000000000 0000000000080008 00000000f5000000 ffff88802fd77201
[  584.510601][ T1299] head: 00fff00000000040 ffff88801b44b3c0 dead000000000100 dead000000000122
[  584.519293][ T1299] head: 0000000000000000 0000000000080008 00000000f5000000 ffff88802fd77201
[  584.527980][ T1299] head: 00fff00000000003 ffffea000185e601 00000000ffffffff 00000000ffffffff
[  584.536665][ T1299] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  584.545349][ T1299] page dumped because: kasan: bad access detected
[  584.551767][ T1299] page_owner tracks the page as allocated
[  584.557484][ T1299] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5844, tgid 5844 (syz-executor), ts 98980218005, free_ts 34761520473
[  584.578865][ T1299]  post_alloc_hook+0x181/0x1b0
[  584.583648][ T1299]  get_page_from_freelist+0x135c/0x3920
[  584.589212][ T1299]  __alloc_frozen_pages_noprof+0x263/0x23a0
[  584.595124][ T1299]  alloc_pages_mpol+0x1fb/0x550
[  584.599995][ T1299]  new_slab+0x244/0x340
[  584.604177][ T1299]  ___slab_alloc+0xd9c/0x1940
[  584.608884][ T1299]  __slab_alloc.constprop.0+0x56/0xb0
[  584.614290][ T1299]  __kmalloc_node_track_caller_noprof+0x2ee/0x510
[  584.620724][ T1299]  kmemdup_noprof+0x29/0x60
[  584.625248][ T1299]  neigh_sysctl_register+0xb2/0x670
[  584.630467][ T1299]  addrconf_sysctl_register+0xb9/0x1f0
[  584.635942][ T1299]  ipv6_add_dev+0xb39/0x15f0
[  584.640550][ T1299]  addrconf_notify+0x53e/0x19e0
[  584.645424][ T1299]  notifier_call_chain+0xb9/0x410
[  584.650468][ T1299]  call_netdevice_notifiers_info+0xbe/0x140
[  584.656399][ T1299]  register_netdevice+0x182e/0x2270
[  584.661616][ T1299] page last free pid 1 tgid 1 stack trace:
[  584.667428][ T1299]  __free_frozen_pages+0x69d/0xff0
[  584.672583][ T1299]  free_contig_range+0x135/0x3f0
[  584.677546][ T1299]  destroy_args+0x66f/0x830
[  584.682083][ T1299]  debug_vm_pgtable+0x130e/0x2d50
[  584.687143][ T1299]  do_one_initcall+0x120/0x6e0
[  584.691966][ T1299]  kernel_init_freeable+0x5c2/0x900
[  584.697200][ T1299]  kernel_init+0x1c/0x2b0
[  584.701549][ T1299]  ret_from_fork+0x45/0x80
[  584.705998][ T1299]  ret_from_fork_asm+0x1a/0x30
[  584.710795][ T1299] 
[  584.713126][ T1299] Memory state around the buggy address:
[  584.718768][ T1299]  ffff888061799380: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  584.726847][ T1299]  ffff888061799400: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  584.734917][ T1299] >ffff888061799480: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  584.742985][ T1299]                          ^
[  584.747578][ T1299]  ffff888061799500: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  584.755654][ T1299]  ffff888061799580: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  584.763719][ T1299] ==================================================================
[  584.771856][ T1299] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  584.779091][ T1299] CPU: 1 UID: 0 PID: 1299 Comm: aoe_tx0 Tainted: G     U              6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  584.792419][ T1299] Tainted: [U]=USER
[  584.796246][ T1299] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  584.806332][ T1299] Call Trace:
[  584.809618][ T1299]  <TASK>
[  584.812562][ T1299]  dump_stack_lvl+0x3d/0x1f0
[  584.817185][ T1299]  panic+0x71c/0x800
[  584.821109][ T1299]  ? __pfx_panic+0x10/0x10
[  584.825554][ T1299]  ? mark_held_locks+0x49/0x80
[  584.830346][ T1299]  ? handle_tx+0x5dc/0x630
[  584.834786][ T1299]  ? check_panic_on_warn+0x1f/0xb0
[  584.839930][ T1299]  ? handle_tx+0x5dc/0x630
[  584.844364][ T1299]  check_panic_on_warn+0xab/0xb0
[  584.849349][ T1299]  end_report+0x107/0x170
[  584.853702][ T1299]  kasan_report+0xee/0x110
[  584.858144][ T1299]  ? handle_tx+0x5dc/0x630
[  584.862582][ T1299]  handle_tx+0x5dc/0x630
[  584.866847][ T1299]  dev_hard_start_xmit+0x93/0x740
[  584.871903][ T1299]  __dev_queue_xmit+0x7eb/0x43e0
[  584.876879][ T1299]  ? lockdep_hardirqs_on+0x7c/0x110
[  584.882103][ T1299]  ? finish_task_switch.isra.0+0x221/0xc10
[  584.887929][ T1299]  ? rcu_is_watching+0x12/0xc0
[  584.892709][ T1299]  ? __pfx___dev_queue_xmit+0x10/0x10
[  584.898121][ T1299]  ? __lock_acquire+0xaa4/0x1ba0
[  584.903086][ T1299]  ? __lock_acquire+0xaa4/0x1ba0
[  584.908053][ T1299]  ? do_raw_spin_lock+0x12c/0x2b0
[  584.913108][ T1299]  ? find_held_lock+0x2b/0x80
[  584.917806][ T1299]  ? skb_dequeue+0x126/0x180
[  584.922431][ T1299]  ? find_held_lock+0x2b/0x80
[  584.927126][ T1299]  ? rcu_is_watching+0x12/0xc0
[  584.931913][ T1299]  tx+0xcc/0x190
[  584.935482][ T1299]  ? __pfx_tx+0x10/0x10
[  584.939665][ T1299]  kthread+0x1e1/0x3e0
[  584.943754][ T1299]  ? find_held_lock+0x2b/0x80
[  584.948452][ T1299]  ? __pfx_kthread+0x10/0x10
[  584.953061][ T1299]  ? __pfx_default_wake_function+0x10/0x10
[  584.958884][ T1299]  ? lockdep_hardirqs_on+0x7c/0x110
[  584.964113][ T1299]  ? __kthread_parkme+0x19e/0x250
[  584.969162][ T1299]  ? __pfx_kthread+0x10/0x10
[  584.973769][ T1299]  kthread+0x3c2/0x780
[  584.977869][ T1299]  ? __pfx_kthread+0x10/0x10
[  584.982486][ T1299]  ? __pfx_kthread+0x10/0x10
[  584.987112][ T1299]  ? __pfx_kthread+0x10/0x10
[  584.991733][ T1299]  ? __pfx_kthread+0x10/0x10
[  584.996361][ T1299]  ? rcu_is_watching+0x12/0xc0
[  585.001144][ T1299]  ? __pfx_kthread+0x10/0x10
[  585.005764][ T1299]  ret_from_fork+0x45/0x80
[  585.010213][ T1299]  ? __pfx_kthread+0x10/0x10
[  585.014835][ T1299]  ret_from_fork_asm+0x1a/0x30
[  585.019641][ T1299]  </TASK>
[  585.022976][ T1299] Kernel Offset: disabled
[  585.027311][ T1299] Rebooting in 86400 seconds..