last executing test programs:

13m41.993551871s ago: executing program 2 (id=179):
pwrite64$auto(0xc8, &(0x7f0000000080)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\x00\x06\x00\x06\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\x00\x00\x9f\x1e\xf9\xa4*\x01\x00?`^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e#\xae\xa9i8W\xe5Iq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00'/232, 0xfdef, 0x3)

13m41.83720849s ago: executing program 2 (id=181):
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$auto(r0, &(0x7f0000000180)='\x00\x00\x00\xbb\xfd\x8df\x05k^t\xbb\x9axD,k\xb9\x9e\xac_*\x0em:8P]\x02\xffL\xce\"*\xba\xf2\xed\xa5pp\x172\x81\x94\xff\xec\xaac^\x92\xcc{\x91\xc0\xb8\xa3\xc3\x81\xf7\x9c^M\x91\xc6s\xef\f3dg\xfdC$\xf2hQz\xf8\xec-\x91\xa2\x92\xa17K_\xe3\x15k*S\xb5\xf5\xc6\xd55\xc4\xa8\x04\x83\xf8\xab\xdb\\\xde\xd2\\\xe0\xa8\x15\x94\n\x06\xc3\xf7\xc1\xafh #\xbf\xef\xfb#\xcf4\x1c\x8d\x9c}\xba\xc9\x05\xe7g\x94\xb9\x02N\xf8\xa5>R1\xe7U\xd7\xaah\xcc\xa0%|\xaf\x15;t#\xe8\x82N\xca\xe6\xffjx\xf4JK\x8e\xae\xa1`\xbe\x16\x01*\x1f\xe3\xa0\xcfq\x0e\xd9\x12g\xac\xf3\xca+\xf0\xa5\xc1\xd9\xd3\xb9\x19\xb6}<K\xaa<0\xd04\x80\x10>mW6%_38\x12r6\xc0\xf8w\xc2\xd2\xc4k\xeb\b\x9a\x14\xdf\xd6\x90\xa1\x11\xf0\xf2\x8a\xba)\x1b^\xa1\xda\\\xee\x7f\xd9\x87\xe6\x80! \x91h\xf5C|`\xec3\xef\xb83\xb5\x8c\x92BNZ\xaf\xe5\xee\xa2\xbd\x01\xaa\x04O\xe93\xa44\xb5\x96J\xbfi\x92\xa1\bW\xe9\x9c\r\xde\xdfT\x18\xa9\x0f\xd2E\xb6R\xfa}\x90\x1b\x96\a\xbe\x9b\xa47\x1fO\xe3\x17\x9bn\xdd w\xc9K=\xaf\xa7x\xe2\xbe\xa6\x90\x8e8(\xf9\x02IC\xe4O5\xfb\x92\xa0\x95\x87\x1fww\x8e\\4b\xc8\x8a<\xd2b\xe5\x12\xf1\xc9\xb5\xb8p\xc6\nC>r\x91\x82\xd4rU\"\x15\xca;K\x9c\xe6Sw(\x12\xc8\x9c\"4\xc43=C\x99c>\xcdD\x9d\xba\xdf<\x8f\t\tEFRa\x1b#\xceC\xad\x93\x97D^\x06\xd2\x16\xcb\x94\xd1\xb6\xb4\'\xa1', 0xb)
bind$auto(0xffffffffffffffff, 0x0, 0x66)
openat$auto_tracing_saved_cmdlines_fops_trace(0xffffffffffffff9c, 0x0, 0xa00, 0x0)
mmap$auto(0x0, 0x2020009, 0x5, 0xeb1, r0, 0x8000)
capget$auto(0x0, 0xfffffffffffffffe)
madvise$auto(0x0, 0xfffffffffffefffd, 0x17)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
open(0x0, 0x591002, 0x0)
vmsplice$auto(0xffffffffffffffff, 0x0, 0x2, 0x5)
writev$auto(0xffffffffffffffff, 0x0, 0x4)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2)
mprotect$auto(0x8000, 0x8, 0x8)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
acct$auto(0x0)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, 0x0, 0x102, 0x0)
sendmsg$auto_NL80211_CMD_TDLS_CHANNEL_SWITCH(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000}, 0xc, 0x0}, 0x4000)
vmsplice$auto(0x1, &(0x7f0000000000)={0x0, 0x5}, 0x6, 0x8)
mmap$auto(0x0, 0x200004, 0xfff, 0x40eb2, 0xd, 0x300000000000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x0, 0x5, 0x0)
fanotify_init$auto(0x5, 0x2000000000002)
fanotify_mark$auto(r1, 0x5, 0x8, 0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00')
close_range$auto(0x2, 0xa, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1e, 0x4, 0x0)

13m40.99938756s ago: executing program 2 (id=185):
socketpair$auto(0xfff, 0x1, 0x2, &(0x7f0000000000)=0x1)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2, 0x1, 0x0)
socketpair$auto(0x3, 0x5, 0x7, 0x0)
setsockopt$auto(0x3, 0x0, 0x18, 0x0, 0x9)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x0, @local}, 0x69)
socket(0x2, 0x2, 0x1)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
prctl$auto_PR_GET_SPECULATION_CTRL(0x34, 0x10, 0xffffffffffffffff, 0x8000, 0x8acb)
write$auto(0xffffffffffffffff, 0x0, 0x7)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=ANY=[@ANYRES16=0x0], 0x14}}, 0x4000000)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, 0x0, 0xa2741, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x80000000, 0x5f, 0x80000001, 0x7, 0x6d3f, 0x7, 0x2, 0xfffffffffffffffe]}, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x3, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x9, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x3]}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x800)
close_range$auto(0xffffffffffffffff, 0x8, 0x1107)
fsconfig$auto_EROFS_MOUNT_DAX_NEVER(0xffffffffffffffff, 0x4, &(0x7f0000000040)='/dev/tap63\x00', &(0x7f0000000080)="f9903314fb23667ba70ff7706b60e7c5c97b1d55bb877517edc7010153b6aaac4c4fe3c5c2329af280c7e38c08e79d3cd052348ef7de078e0178a1048e5d142d4cef8b8bda9c04fb09c289cd", 0x80)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r1 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0)
r2 = openat$auto_fault_around_bytes_fops_(0xffffffffffffff9c, &(0x7f0000000100), 0x2282, 0x0)
read$auto(r2, 0x0, 0x80)
ioctl$auto_PPPIOCSMRU(r1, 0xc004743e, 0x0)

13m38.626607955s ago: executing program 2 (id=190):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup.cpu/tasks\x00', 0x63102, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
r1 = open(&(0x7f0000000100)='.\x00', 0x591002, 0x408)
linkat$auto(r1, 0x0, 0xffffffffffffff9c, &(0x7f0000000080)='&&\x00', 0x1000)
sendfile$auto(r0, r0, 0x0, 0x1)
r2 = open(&(0x7f0000000040)='./cgroup.cpu/cgroup.procs\x00', 0x101840, 0x33903f3ada88772b)
read$auto(r2, 0x0, 0x2)
r3 = geteuid()
keyctl$auto(0x1f, r3, r3, 0x5, 0x8)
r4 = setfsgid$auto(0xee01)
setresgid$auto(r4, 0x0, 0x0)
newfstatat$auto(r2, &(0x7f0000000000)='./cgroup.cpu/cgroup.procs\x00', &(0x7f0000000080)={0x71b2, 0x400, 0x1, 0x80000001, r3, r4, 0x0, 0x0, 0x1, 0x96a, 0x10000, 0x7, 0x5, 0x4, 0x5, 0x6, 0xb6d0}, 0xfffffffa)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)

13m38.396557056s ago: executing program 2 (id=193):
rt_sigqueueinfo$auto(0x1, 0x7, &(0x7f0000000040)={@siginfo_0_0={0x0, 0x5, 0xfffffffb, @_sigpoll={0x52, <r0=>0x7}}})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/mm/hugepages/hugepages-1048576kB/nr_overcommit_hugepages\x00', 0x103042, 0x0)
sendfile$auto(r2, r2, 0x0, 0x1000000000001bf)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$auto_OVS_CT_LIMIT_CMD_DEL(r3, &(0x7f0000001740)={0x0, 0x0, &(0x7f0000001700)={&(0x7f0000003a00)={0x34, r4, 0x201, 0x70bd2c, 0x25dfdbff, {}, [@OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x4}, @OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x1c, 0x1, 0x0, 0x1, [@nested={0x15, 0x139, 0x0, 0x1, [@nested={0x4, 0xeb}, @typed={0x8, 0x2d, 0x0, 0x0, @fd}, @generic="5ecb8698ec"]}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x44000}, 0x4000048)
syz_genetlink_get_family_id$auto_taskstats(&(0x7f0000000080), r1)
fcntl$auto_F_OFD_GETLK(r1, 0x24, 0x9)
r5 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp1\x00', 0x20b42, 0x0)
ioctl$auto_SNDCTL_DSP_SETTRIGGER(r5, 0x40045010, 0x0)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/reboot/force\x00', 0x20000, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r6, &(0x7f0000000100)=""/17, 0x11)
sendmsg$auto_TASKSTATS_CMD_GET(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[], 0x1c}, 0x1, 0x0, 0x0, 0x200400c1}, 0x894)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="18"], 0x18}, 0x1, 0x0, 0x0, 0x60040001}, 0x80)
r7 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socketpair$auto(0x3, 0x4, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
open(0x0, 0x22240, 0x55)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r8 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$auto(0x3, 0x800c6f40, r8)
ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r7, 0xc004500a, &(0x7f0000000000))
close_range$auto(0x2, 0x8, 0x0)
ioctl$auto_IOCTL_VMCI_VERSION2(r0, 0x7a7, 0x0)

13m37.482470916s ago: executing program 2 (id=196):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ila(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ILA_CMD_ADD(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x3c, r1, 0x200, 0x70bd27, 0x25dfdbfc, {}, [@ILA_ATTR_CSUM_MODE={0x5}, @ILA_ATTR_LOCATOR_MATCH={0xc, 0x3, 0x8000000000000001}, @ILA_ATTR_CSUM_MODE={0x5, 0x7, 0x4}, @ILA_ATTR_LOCATOR={0xc, 0x1, 0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x800}, 0x40001)
r2 = syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000000180), r0)
sendmsg$auto_SMC_PNETID_DEL(r0, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x34, r2, 0x200, 0x70bd2d, 0x25dfdbfe, {}, [@SMC_PNETID_NAME={0x8, 0x1, '}#\'\x00'}, @SMC_PNETID_NAME={0x8, 0x1, '/,:\x00'}, @SMC_PNETID_ETHNAME={0xd, 0x2, '):\\$.]-+\x00'}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000840}, 0x10)
r3 = getsockopt$auto(r0, 0x1000, 0x0, &(0x7f0000000280)='):\\$.]-+\x00', &(0x7f00000002c0)=0x1)
syz_genetlink_get_family_id$auto_smbd_genl(&(0x7f0000000300), r3)
r4 = syz_genetlink_get_family_id$auto_vdpa(&(0x7f0000000380), r0)
sendmsg$auto_VDPA_CMD_MGMTDEV_GET(r0, &(0x7f00000004c0)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000480)={&(0x7f00000003c0)={0x9c, r4, 0x400, 0x70bd2b, 0x25dfdbfd, {}, [@VDPA_ATTR_DEV_NET_CFG_MTU={0x6}, @VDPA_ATTR_DEV_NAME={0x14, 0x4, 'veth0\x00'}, @VDPA_ATTR_DEV_NET_CFG_MACADDR={0x6b, 0xa, "0a24b6da79af523cd3008e7a352691501a828e2ecb0bf65b6c7fdbc32e6062a2d640169af077531676ecee05280fe1910b6ae5d335a8dfaa5c327aed5c4901ab272e326ddbb6b9b3b9b82cc157e837cb50fa7cace211956b881c157608d5c75aa98d4a1c808562"}]}, 0x9c}, 0x1, 0x0, 0x0, 0x4011}, 0x404)
select$auto(0x878c, &(0x7f0000000500)={[0x5e50, 0x3, 0x8c1, 0x7, 0xc7, 0x0, 0x0, 0x1, 0x100000001, 0x7fff, 0x4, 0x800, 0x1, 0x3, 0x8000000000000000, 0x3]}, &(0x7f0000000580)={[0xaf, 0xfffffffffffffffa, 0x7, 0x6, 0x80, 0x6, 0x764, 0x6, 0x3, 0x2, 0xffffffffffffffff, 0x4, 0x2, 0x9, 0x1, 0x9]}, &(0x7f0000000600)={[0x0, 0x9, 0x3, 0xc80, 0x4, 0x4, 0x5, 0xfffffffffffffffa, 0x0, 0x7, 0x153453be, 0x8020000000000000, 0xb81, 0x100000001, 0x3, 0xef1]}, &(0x7f0000000680)={0x4, 0x10001})
r5 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f00000006c0)='/dev/fb1\x00', 0x141802, 0x0)
mmap$auto(0x200, 0x5, 0x82, 0x7fffffffffffffff, r5, 0xb54)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000740), r3)
sendmsg$auto_NL80211_CMD_DEL_KEY(r6, &(0x7f0000000800)={&(0x7f0000000700)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000007c0)={&(0x7f0000000780)={0x1c, r7, 0x200, 0x70bd28, 0x25dfdbfc, {}, [@NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST={0x6, 0xf7, {0x5, 0x7}}]}, 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x20040004)
ioctl$auto_BLKSECDISCARD(r3, 0x127d, 0x0)
umount2$auto(&(0x7f0000000840)='):\\$.]-+\x00', 0xfff)
sendmmsg$auto(r6, &(0x7f0000001a40)={{&(0x7f0000000880)="ed3d4595f196f051081a01556c9ee3338966940f222de7cc31e8b2859861c0d80faa531501e36d2a85e74a35d7e1d579e4cc633e8fe59e3f2f9f40f67831de8e6fc878b1e4b265c4e3cdab900c9d0e31a5021895681b62e146bf11fa05df", 0x7ff, &(0x7f0000001900)={&(0x7f0000000900)="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", 0x8}, 0x5c8, &(0x7f0000001940)="0eae7407bb1afddf07b904bc23626e67a677be96ecf3f5e34bb533c2b3ee6e1d8980fd52d85153a903800be2aedf97550e1d33a1ef4f33320f1e6e2e0581e60c0ec6a2660396b197104393baff351981ad5c5baf14fdb37f02f0e9ffd35be362de340cdacbc2eaaa9af2a42e842e0d34c51acacb705d97be96162cd9ee7248a8b94810ada22c8d2ab1c2314d9a3701354662eb4b01bcf5a00a92afe4461757a5201166548be212961fab97078d632105022c39a658b781946485dd34eaa08dfb4d6211c7e1ebf77fec4754ebb68972ce80b69aa9ed097e6ad317b6add4a532afb55feff2712a95e834", 0x8, 0x9}, 0x7}, 0x700, 0x5)
r8 = openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000001a80), 0x2400, 0x0)
r9 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001b00), r6)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000001b40)={'veth0_vlan\x00', <r10=>0x0})
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000001b80)={'nr0\x00', <r11=>0x0})
sendmsg$auto_ETHTOOL_MSG_MM_GET(r3, &(0x7f0000001d40)={&(0x7f0000001ac0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000001d00)={&(0x7f0000001bc0)={0x120, r9, 0x20, 0x70bd27, 0x25dfdbfb, {}, [@ETHTOOL_A_MM_HEADER={0x70, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pimreg0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dvmrp1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xa}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x9}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xffff851b}]}, @ETHTOOL_A_MM_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @ETHTOOL_A_MM_HEADER={0x50, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x6}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dummy0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_hsr\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge0\x00'}]}, @ETHTOOL_A_MM_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syzkaller0\x00'}]}, @ETHTOOL_A_MM_HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dvmrp1\x00'}]}]}, 0x120}, 0x1, 0x0, 0x0, 0x1080}, 0x4)
io_uring_register$auto(r6, 0x4, &(0x7f0000001d80)="5974c1f6c000f2b13dd7c9b6e9db743b41cf8bbac5de22ac4eda86772db3c5e62bb287cc52fa6cc6cc95b1b08fe1e37679817daa6b64f750bef1e980cbb1a53392837351726aef27d0e951cb696ab8d89e522c506bfefad9afae7ff8", 0x2)
sendmmsg$auto(r8, &(0x7f0000001fc0)={{&(0x7f0000001e00)="4e37cc9859098c8809d3eb4b8de65956f7b90ba7775db9ddd8e45a8e240d4d18048a0e240eaf35e140f16906ee79b01709c6507a10fff0d4e2993b2d2814b296f15b048297d94e0f92ea457effa2872944360abddffe", 0x7, &(0x7f0000001f40)={&(0x7f0000001e80)="71f3966e72901a7434bc57e35b4aed0cb7859ff132f2ecd51f67f480e77f69c5ce7d03c890f10b39a8d4957828f1890e11b3ed92c591def06208183a7ae531833d798c1a33a7c8b721d96191bf6eae9c694b18f1455e2be0571bde9c67dc68770ad8819928f979c4051610c518903fc289dfe6c6d94f3213afed206b795a40245f5d35336b8a367532bf366dd54d38eba7ca40f6a9a4cb"}, 0x0, &(0x7f0000001f80)="5c47151ac95f8b95a948655dbe195624190bda818b95dc823a6b6a", 0x100000001, 0x60000000}, 0x2}, 0x7, 0x4)
sendmsg$auto_NL80211_CMD_STOP_NAN(r3, &(0x7f0000002140)={&(0x7f0000002000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000002100)={&(0x7f0000002040)={0x84, r7, 0x400, 0x70bd28, 0x25dfdbfb, {}, [@NL80211_ATTR_KEY={0x60, 0x50, 0x0, 0x1, [@nested={0x5a, 0x118, 0x0, 0x1, [@nested={0x4, 0x6}, @generic="aa8b", @generic="64163e966512541f22f4223d633cef91ecc15cf536142e7413d30ae4c81604ee014b9447926addc5bf3693c1d85ace745b47a10061521c85ada965ab6bc932e5e59032704476d6e35d3d5436349774cd"]}]}, @NL80211_ATTR_P2P_OPPPS={0x5}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x1}]}, 0x84}, 0x1, 0x0, 0x0, 0x8044}, 0x0)
write$auto_ftrace_enable_fops_trace_events(r3, &(0x7f0000002180)="be0cf4a2289910878f2b21475ad746403492d8a2c4773f79db53cd6cbb371c87d49e323919b9d378015c267dd90598ee91b737726f498b", 0x37)
socket(0x11, 0x4, 0x7)
r12 = syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000002200), r3)
sendmsg$auto_SMC_PNETID_ADD(r3, &(0x7f00000022c0)={&(0x7f00000021c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000002280)={&(0x7f0000002240)={0x24, r12, 0x400, 0x70bd2d, 0x25dfdbff, {}, [@SMC_PNETID_NAME={0xd, 0x1, '/dev/fb1\x00'}]}, 0x24}, 0x1, 0x0, 0x0, 0xc4080}, 0x20000044)

13m36.846027234s ago: executing program 32 (id=196):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ila(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ILA_CMD_ADD(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x3c, r1, 0x200, 0x70bd27, 0x25dfdbfc, {}, [@ILA_ATTR_CSUM_MODE={0x5}, @ILA_ATTR_LOCATOR_MATCH={0xc, 0x3, 0x8000000000000001}, @ILA_ATTR_CSUM_MODE={0x5, 0x7, 0x4}, @ILA_ATTR_LOCATOR={0xc, 0x1, 0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x800}, 0x40001)
r2 = syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000000180), r0)
sendmsg$auto_SMC_PNETID_DEL(r0, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x34, r2, 0x200, 0x70bd2d, 0x25dfdbfe, {}, [@SMC_PNETID_NAME={0x8, 0x1, '}#\'\x00'}, @SMC_PNETID_NAME={0x8, 0x1, '/,:\x00'}, @SMC_PNETID_ETHNAME={0xd, 0x2, '):\\$.]-+\x00'}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000840}, 0x10)
r3 = getsockopt$auto(r0, 0x1000, 0x0, &(0x7f0000000280)='):\\$.]-+\x00', &(0x7f00000002c0)=0x1)
syz_genetlink_get_family_id$auto_smbd_genl(&(0x7f0000000300), r3)
r4 = syz_genetlink_get_family_id$auto_vdpa(&(0x7f0000000380), r0)
sendmsg$auto_VDPA_CMD_MGMTDEV_GET(r0, &(0x7f00000004c0)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000480)={&(0x7f00000003c0)={0x9c, r4, 0x400, 0x70bd2b, 0x25dfdbfd, {}, [@VDPA_ATTR_DEV_NET_CFG_MTU={0x6}, @VDPA_ATTR_DEV_NAME={0x14, 0x4, 'veth0\x00'}, @VDPA_ATTR_DEV_NET_CFG_MACADDR={0x6b, 0xa, "0a24b6da79af523cd3008e7a352691501a828e2ecb0bf65b6c7fdbc32e6062a2d640169af077531676ecee05280fe1910b6ae5d335a8dfaa5c327aed5c4901ab272e326ddbb6b9b3b9b82cc157e837cb50fa7cace211956b881c157608d5c75aa98d4a1c808562"}]}, 0x9c}, 0x1, 0x0, 0x0, 0x4011}, 0x404)
select$auto(0x878c, &(0x7f0000000500)={[0x5e50, 0x3, 0x8c1, 0x7, 0xc7, 0x0, 0x0, 0x1, 0x100000001, 0x7fff, 0x4, 0x800, 0x1, 0x3, 0x8000000000000000, 0x3]}, &(0x7f0000000580)={[0xaf, 0xfffffffffffffffa, 0x7, 0x6, 0x80, 0x6, 0x764, 0x6, 0x3, 0x2, 0xffffffffffffffff, 0x4, 0x2, 0x9, 0x1, 0x9]}, &(0x7f0000000600)={[0x0, 0x9, 0x3, 0xc80, 0x4, 0x4, 0x5, 0xfffffffffffffffa, 0x0, 0x7, 0x153453be, 0x8020000000000000, 0xb81, 0x100000001, 0x3, 0xef1]}, &(0x7f0000000680)={0x4, 0x10001})
r5 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f00000006c0)='/dev/fb1\x00', 0x141802, 0x0)
mmap$auto(0x200, 0x5, 0x82, 0x7fffffffffffffff, r5, 0xb54)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000740), r3)
sendmsg$auto_NL80211_CMD_DEL_KEY(r6, &(0x7f0000000800)={&(0x7f0000000700)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000007c0)={&(0x7f0000000780)={0x1c, r7, 0x200, 0x70bd28, 0x25dfdbfc, {}, [@NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST={0x6, 0xf7, {0x5, 0x7}}]}, 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x20040004)
ioctl$auto_BLKSECDISCARD(r3, 0x127d, 0x0)
umount2$auto(&(0x7f0000000840)='):\\$.]-+\x00', 0xfff)
sendmmsg$auto(r6, &(0x7f0000001a40)={{&(0x7f0000000880)="ed3d4595f196f051081a01556c9ee3338966940f222de7cc31e8b2859861c0d80faa531501e36d2a85e74a35d7e1d579e4cc633e8fe59e3f2f9f40f67831de8e6fc878b1e4b265c4e3cdab900c9d0e31a5021895681b62e146bf11fa05df", 0x7ff, &(0x7f0000001900)={&(0x7f0000000900)="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", 0x8}, 0x5c8, &(0x7f0000001940)="0eae7407bb1afddf07b904bc23626e67a677be96ecf3f5e34bb533c2b3ee6e1d8980fd52d85153a903800be2aedf97550e1d33a1ef4f33320f1e6e2e0581e60c0ec6a2660396b197104393baff351981ad5c5baf14fdb37f02f0e9ffd35be362de340cdacbc2eaaa9af2a42e842e0d34c51acacb705d97be96162cd9ee7248a8b94810ada22c8d2ab1c2314d9a3701354662eb4b01bcf5a00a92afe4461757a5201166548be212961fab97078d632105022c39a658b781946485dd34eaa08dfb4d6211c7e1ebf77fec4754ebb68972ce80b69aa9ed097e6ad317b6add4a532afb55feff2712a95e834", 0x8, 0x9}, 0x7}, 0x700, 0x5)
r8 = openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000001a80), 0x2400, 0x0)
r9 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001b00), r6)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000001b40)={'veth0_vlan\x00', <r10=>0x0})
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000001b80)={'nr0\x00', <r11=>0x0})
sendmsg$auto_ETHTOOL_MSG_MM_GET(r3, &(0x7f0000001d40)={&(0x7f0000001ac0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000001d00)={&(0x7f0000001bc0)={0x120, r9, 0x20, 0x70bd27, 0x25dfdbfb, {}, [@ETHTOOL_A_MM_HEADER={0x70, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pimreg0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dvmrp1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xa}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x9}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xffff851b}]}, @ETHTOOL_A_MM_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @ETHTOOL_A_MM_HEADER={0x50, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x6}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dummy0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_hsr\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge0\x00'}]}, @ETHTOOL_A_MM_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syzkaller0\x00'}]}, @ETHTOOL_A_MM_HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dvmrp1\x00'}]}]}, 0x120}, 0x1, 0x0, 0x0, 0x1080}, 0x4)
io_uring_register$auto(r6, 0x4, &(0x7f0000001d80)="5974c1f6c000f2b13dd7c9b6e9db743b41cf8bbac5de22ac4eda86772db3c5e62bb287cc52fa6cc6cc95b1b08fe1e37679817daa6b64f750bef1e980cbb1a53392837351726aef27d0e951cb696ab8d89e522c506bfefad9afae7ff8", 0x2)
sendmmsg$auto(r8, &(0x7f0000001fc0)={{&(0x7f0000001e00)="4e37cc9859098c8809d3eb4b8de65956f7b90ba7775db9ddd8e45a8e240d4d18048a0e240eaf35e140f16906ee79b01709c6507a10fff0d4e2993b2d2814b296f15b048297d94e0f92ea457effa2872944360abddffe", 0x7, &(0x7f0000001f40)={&(0x7f0000001e80)="71f3966e72901a7434bc57e35b4aed0cb7859ff132f2ecd51f67f480e77f69c5ce7d03c890f10b39a8d4957828f1890e11b3ed92c591def06208183a7ae531833d798c1a33a7c8b721d96191bf6eae9c694b18f1455e2be0571bde9c67dc68770ad8819928f979c4051610c518903fc289dfe6c6d94f3213afed206b795a40245f5d35336b8a367532bf366dd54d38eba7ca40f6a9a4cb"}, 0x0, &(0x7f0000001f80)="5c47151ac95f8b95a948655dbe195624190bda818b95dc823a6b6a", 0x100000001, 0x60000000}, 0x2}, 0x7, 0x4)
sendmsg$auto_NL80211_CMD_STOP_NAN(r3, &(0x7f0000002140)={&(0x7f0000002000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000002100)={&(0x7f0000002040)={0x84, r7, 0x400, 0x70bd28, 0x25dfdbfb, {}, [@NL80211_ATTR_KEY={0x60, 0x50, 0x0, 0x1, [@nested={0x5a, 0x118, 0x0, 0x1, [@nested={0x4, 0x6}, @generic="aa8b", @generic="64163e966512541f22f4223d633cef91ecc15cf536142e7413d30ae4c81604ee014b9447926addc5bf3693c1d85ace745b47a10061521c85ada965ab6bc932e5e59032704476d6e35d3d5436349774cd"]}]}, @NL80211_ATTR_P2P_OPPPS={0x5}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x1}]}, 0x84}, 0x1, 0x0, 0x0, 0x8044}, 0x0)
write$auto_ftrace_enable_fops_trace_events(r3, &(0x7f0000002180)="be0cf4a2289910878f2b21475ad746403492d8a2c4773f79db53cd6cbb371c87d49e323919b9d378015c267dd90598ee91b737726f498b", 0x37)
socket(0x11, 0x4, 0x7)
r12 = syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000002200), r3)
sendmsg$auto_SMC_PNETID_ADD(r3, &(0x7f00000022c0)={&(0x7f00000021c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000002280)={&(0x7f0000002240)={0x24, r12, 0x400, 0x70bd2d, 0x25dfdbff, {}, [@SMC_PNETID_NAME={0xd, 0x1, '/dev/fb1\x00'}]}, 0x24}, 0x1, 0x0, 0x0, 0xc4080}, 0x20000044)

6m29.06742221s ago: executing program 3 (id=1847):
r0 = openat$auto_evm_key_ops_evm_secfs(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
close_range$auto(r0, r0, 0x0)
mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x5, 0xfffffffd, 0x7, 0xee00, 0x6)
openat$auto_evm_key_ops_evm_secfs(0xffffffffffffff9c, &(0x7f0000000080), 0x40802, 0x0)
r1 = open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x80842, 0x91)
r2 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mtd0\x00', 0x48002, 0x0)
ioctl$auto_OTPLOCK(r2, 0x800c4d10, 0x0)
read$auto(r1, 0x0, 0x1)
openat$auto_evm_key_ops_evm_secfs(0xffffffffffffff9c, &(0x7f0000000180), 0x2000, 0x0)
write$auto_evm_key_ops_evm_secfs(0xffffffffffffffff, 0x0, 0x31)
socket(0x2, 0x3, 0x6)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000140), 0x4000, 0x0)
ioctl$auto(0x3, 0x541b, 0x38)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video22\x00', 0x964c1, 0x0)
mount$auto(&(0x7f0000000000)='bridge_slave_1\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='/dev/binderfs/binder0\x00', 0x4, &(0x7f0000000200)="ddadb34862d26536a1c8b77345ec30d89f4d71fd958435c25ad8ce6c99df0c4334a849702f233e58a4f17a53f295148f34fd5614bd637c87ac8dc84dbed7324f76714b69aa853a38a2b074da6a91f8bfaeace8260eb1caf53161604d717316fc51d09a15a4d8e6564dd7dc35bc4c78c3f289ce687c25fb5ba0683f383de9745e32d1")

6m27.159732765s ago: executing program 3 (id=1849):
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async, rerun: 64)
r1 = socket(0xa, 0x1, 0x84) (async, rerun: 64)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) (async)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) (async)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) (async, rerun: 64)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) (async, rerun: 64)
r2 = socket(0x27, 0x3, 0x1) (async)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000340)='/dev/input/event0\x00', 0x40000, 0x0) (async)
r3 = syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/mnt\x00')
ioctl$auto(0x3, 0x4020940b, 0x0) (async)
sendmsg$auto_NL80211_CMD_SET_INTERFACE(r0, 0x0, 0x4000) (async)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) (async)
unshare$auto(0x40000080) (async)
madvise$auto(0x0, 0xffffffffffff0005, 0x19) (async, rerun: 64)
munmap$auto(0x20001000, 0x7) (async, rerun: 64)
poll$auto(&(0x7f0000000040)={<r4=>0x3, 0x1, 0xa}, 0x5, 0x108)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async, rerun: 64)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010) (async, rerun: 64)
syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000000), r0) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a0027"], 0x1ac}}, 0x40000) (async)
sendmsg$auto_NETDEV_CMD_NAPI_GET2(r1, &(0x7f0000000300)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000540)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYRESHEX=r3, @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYRES64=r4, @ANYRES32=0x0, @ANYBLOB="8b293a3353aad03a63ead6c0ddb45aceaf41fab6e56ee6f8787bed500ee87026890c51972e69e5a523425c36520411f185a29eaca44dd70600a437493a400459e88df730633454271802cd6000899460f0ab8def8aa73e6e9c1566c11fc110f82c155739eed894ed10a9706ce29fcad0618048f6a6f458cdd13ec06aabc149eeb49b6dc55a6a90df20"], 0x44}, 0x1, 0x0, 0x0, 0x40000}, 0x1)
close_range$auto(r2, 0x8, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0xffffffffffffffff, 0x0) (async)
io_uring_setup$auto(0x6, 0x0) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/bdi/43:0/strict_limit\x00', 0xb02, 0x0)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/virtual/bdi/43:384/max_bytes\x00', 0x181482, 0x0)
read$auto(r5, 0x0, 0x7) (async)
write$auto(0x3, 0x0, 0x1)

6m26.335425219s ago: executing program 3 (id=1850):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000000), r0)
r1 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), r0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
syz_open_procfs$namespace(0x0, 0x0)
unshare$auto(0x40000080)
r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000500)='/dev/sequencer\x00', 0x80102, 0x0)
ioctl$auto_SNDCTL_FM_4OP_ENABLE(r2, 0x4004510f, &(0x7f0000000540)="159772c3315a2656706243d971cace22c0997e90bdd386a7b187069f2ec941a7bfc766cd1d9827356d5a7f235b5036e4")
sendmsg$auto_TIPC_NL_MEDIA_GET(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="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"], 0x14}, 0x1, 0x0, 0x0, 0x800}, 0x10)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
ioprio_set$auto(0x3, 0x0, 0x4b34)
syz_clone3(&(0x7f0000000300)={0x12a004000, 0x0, 0x0, 0x0, {0x3b}, 0x0, 0x0, 0x0, &(0x7f00000002c0)=[0x0], 0x1}, 0x58)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000000c0), r0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'vlan1\x00'})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'bridge_slave_0\x00'})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'bridge_slave_0\x00'})

6m21.894186986s ago: executing program 3 (id=1859):
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
timer_settime$auto(0x0, 0xb746, &(0x7f0000000000)={{0x4d4, 0x2}, {0xfe, 0x4}}, 0x0)
r0 = socket(0xa, 0x5, 0x84)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
setsockopt$auto(0x400000000000003, 0x29, 0x6, 0x0, 0x3)
sendto$auto(r0, 0x0, 0x401, 0x101, &(0x7f0000000000)=@generic={0xa, "000000000000fe8000"}, 0x1f)

6m18.270911268s ago: executing program 3 (id=1863):
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
getresgid$auto(0x0, 0x0, 0x0)
close_range$auto(0x2, 0xa, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/vhci_hcd.0/usbip_debug\x00', 0x8002, 0x0)
r2 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0)
read$auto(r2, 0x0, 0x3f)
write$auto(r1, 0x0, 0x7ff)
write$auto(0x3, 0x0, 0xffd8)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
madvise$auto_MADV_GUARD_INSTALL(0x0, 0x2021000, 0x66)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xac}, 0x5, 0x0, 0x1, 0x697b}, 0xed7138c}, 0x2, 0x9)
mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000)
socket(0x2, 0x3, 0x200004)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8)
connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55)
r3 = socket(0x11, 0x80003, 0x300)
name_to_handle_at$auto(0xffffffffffffffff, &(0x7f00000001c0)='/\x00', &(0x7f0000000200)={0x0, 0x200}, 0x0, 0x1001)
setsockopt$auto(r3, 0x107, 0x12, 0x0, 0x4)
write$auto(0x3, 0x0, 0xffeb)
recvfrom$auto(0x4, 0x0, 0x101d0, 0x3ffffd, 0x0, 0x0)
recvmmsg$auto(0x4, &(0x7f0000000200)={{0x0, 0x4, &(0x7f0000000140)={0x0, 0x4da}, 0x4, 0x0, 0x8, 0x800}, 0x1000}, 0xffffffff, 0x0, 0x0)

6m10.195519699s ago: executing program 3 (id=1874):
adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0xfffffffffffffffc, 0xfffffffffffffffd, 0xd4, 0x1, 0x6, 0x0, 0x1, 0x368e, 0x9, {0x100000000, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x1008000, 0x0, 0x9, 0x81, 0xffffffffffff628e, 0xa74a, 0xdeb1, 0x804})
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
timer_create$auto(0x0, 0x0, 0x0)
timer_gettime$auto(0x0, 0x0)
r1 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000d00), 0xffffffffffffffff)
sendmsg$auto_IPVS_CMD_ZERO(0xffffffffffffffff, &(0x7f0000002240)={0x0, 0x0, &(0x7f0000002200)={&(0x7f0000000d40)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="010029bd7000dcdbdf2510000000"], 0x14}, 0x1, 0x0, 0x0, 0x4080}, 0x10004000)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio1\x00', 0x20b42, 0x0)
syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000080), 0xffffffffffffffff)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/rpc/auth.rpcsec.context/channel\x00', 0x101002, 0x0)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/dev\x00', 0x40100, 0x0)
pread64$auto(r3, 0x0, 0x10001, 0x830)
read$auto(0x3, 0x0, 0x80)
unshare$auto(0x40000080)
openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, 0x0, 0x204081, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x4000)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f00000001c0), 0xffffffffffffffff)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_OVS_DP_CMD_NEW(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRESHEX=r2, @ANYBLOB="010026bd7000fcdbdf250100000008000200", @ANYBLOB="080001002e53520008000200299604044fd4a51b3fe6069c9828ee7b3a5e16ba6775e89c1262b0563d7c891b267fcf6ddb51c53725c0c3f6a943674a41ccec006a142932a4d7289ac6f2c824c09ff3119ea2cfc72b15d43e993d3c327652f1a5427b014be7d9c98d988e59c0c0918d4e09077ad2be00371f57ba208c7301a71c72390bc3c511734141cb81bcc13a2df82cd95bd7", @ANYRES32=0x9, @ANYBLOB="0800070004"], 0x34}, 0x1, 0x0, 0x0, 0x20000800}, 0xc0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)

5m54.984998342s ago: executing program 33 (id=1874):
adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0xfffffffffffffffc, 0xfffffffffffffffd, 0xd4, 0x1, 0x6, 0x0, 0x1, 0x368e, 0x9, {0x100000000, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x1008000, 0x0, 0x9, 0x81, 0xffffffffffff628e, 0xa74a, 0xdeb1, 0x804})
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
timer_create$auto(0x0, 0x0, 0x0)
timer_gettime$auto(0x0, 0x0)
r1 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000d00), 0xffffffffffffffff)
sendmsg$auto_IPVS_CMD_ZERO(0xffffffffffffffff, &(0x7f0000002240)={0x0, 0x0, &(0x7f0000002200)={&(0x7f0000000d40)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="010029bd7000dcdbdf2510000000"], 0x14}, 0x1, 0x0, 0x0, 0x4080}, 0x10004000)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio1\x00', 0x20b42, 0x0)
syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000080), 0xffffffffffffffff)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/rpc/auth.rpcsec.context/channel\x00', 0x101002, 0x0)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/dev\x00', 0x40100, 0x0)
pread64$auto(r3, 0x0, 0x10001, 0x830)
read$auto(0x3, 0x0, 0x80)
unshare$auto(0x40000080)
openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, 0x0, 0x204081, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x4000)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f00000001c0), 0xffffffffffffffff)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_OVS_DP_CMD_NEW(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRESHEX=r2, @ANYBLOB="010026bd7000fcdbdf250100000008000200", @ANYBLOB="080001002e53520008000200299604044fd4a51b3fe6069c9828ee7b3a5e16ba6775e89c1262b0563d7c891b267fcf6ddb51c53725c0c3f6a943674a41ccec006a142932a4d7289ac6f2c824c09ff3119ea2cfc72b15d43e993d3c327652f1a5427b014be7d9c98d988e59c0c0918d4e09077ad2be00371f57ba208c7301a71c72390bc3c511734141cb81bcc13a2df82cd95bd7", @ANYRES32=0x9, @ANYBLOB="0800070004"], 0x34}, 0x1, 0x0, 0x0, 0x20000800}, 0xc0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)

9.88594266s ago: executing program 0 (id=2651):
mmap$auto(0x0, 0x20009, 0x4000000000db, 0xeb1, 0x400, 0x8000)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="b95ed411", @ANYRES16=0x0, @ANYBLOB="02002cbd7000fbdbdf2502000000080003008000400008000200"], 0x24}, 0x1, 0x0, 0x0, 0x20008010}, 0x400d0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000000080), r0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'wg0\x00', <r2=>0x0})
sendmsg$auto_WG_CMD_SET_DEVICE(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r1, 0x1, 0x60bd29, 0x25dddbfb, {}, [@WGDEVICE_A_FWMARK={0x8, 0x7, 0x5}, @WGDEVICE_A_IFINDEX={0x8, 0x1, r2}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000811}, 0x810)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="10002cbd70000000000080"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a0027"], 0x1ac}}, 0x40000)
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a4, 0xffff)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, 0x0, 0x82800, 0x0)
openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, 0x0, 0x20100, 0x0)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r3, &(0x7f0000000340)='\xa3o\a`\f\f4\xc6\xe7\x8a\x16h\x80\xb5\xed\xe4\xec\xfe\xe50\xb9\xbb1/#\xdc\xdd\xed\xa2\x85\xa1\xd5\xf5\xfeG\xdcI\xe3c\xb8BS\x04Y\xc9N\x98\xc6I_E \xc8^T\x84Mh\xf4Y\xcc\xe4\x9al\x88\x8fX\xcb\xad\x1d*\xec\x1dG@H/N\xaa\x1b\xce\x8b\xff\xcfe\xac\xda\xb0\xbe;-y\x12\x13\x93\x1d\xb5>\x1c\x02Tv\x92\xc0\x1c\xaa\x8a8\x0e_Fv\x00\xdc\nfd\x16\xa6d\xa3z\xdf\xc7o+1\xf4Q\xf7i\xd6.\t\x10\x99\xc4\x06\xa3\xbf*\xbb\xe0H\xc9u+\x17\x93!\x1c\xc3\xcd\xc1y\xaf\xf1\xd1B\xaa[\x9d\xb6\xad\xe2\xff\x9b[{\xd1z\x18\xba\x7f\xb5\x10\xdd1\xf2\x9c\xb0=\xf09\r\xc3\x1b9\xbe\xa8\xe76[/<,\xe1\x90\xb3G}\x85E\xc6\x8ak4\xc3+\xf0\x9f\xe0F\x1b\xdb\x84\x17\xc0\x99\xf1\xb5,\x1f\x8a\xe7\x0f\xd7\xc2{>\xb9q\xc3\xa7\xaaF|\\4\x03Z\xecH\x99\xber\xab\xe6+>\x95\x86\x83\xfb\x16o\x98\xe0\xe9d\xa1z^}\xc7\x12\xe6b\xa2\xb1X\x062\x12\xec\x12.\xbb\x10\x11\xdb_Xo\xfc\xcd\x8av\x80\xf0!n\x8d\xee)\rm\xc5\xee\xd6\xde\xc7\xf8\xdf\xc1?\x82\xca\xb6X\xe3\xfc\xf8\x1a\xe7U\xd6\f\x8e\x98+\x99\x1dqtV\xb4\x05\xa4ge', 0x110000a3d9)
rseq$auto(&(0x7f0000000040)={0xfffffff7, 0x7fffffff, 0xff, 0xd13, 0x1, 0x1, "cfa38ad194b4dc36fcf49e9690f582f022"}, 0x40, 0x80, 0x5)
ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/scsi/device_info\x00', 0x8002, 0x0)
r4 = socket(0x29, 0x2, 0x0)
r5 = socket(0x10, 0x2, 0x0)
sendmsg$auto_ETHTOOL_MSG_DEBUG_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x2000000}, 0x8004)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio1\x00', 0x20b42, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000)
recvmmsg$auto(r5, &(0x7f0000000140)={{0x0, 0xfffffffe, 0x0, 0x5, 0x0, 0x200002, 0x8}, 0x801}, 0xfffffff9, 0x10, 0x0)
ioctl$auto(r4, 0x8923, 0x24)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x8810)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

8.911504973s ago: executing program 1 (id=2654):
r0 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x1, 0x0)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/pppoe\x00', 0x20440, 0x0)
pread64$auto(r1, 0x0, 0xa0, 0xf86)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001340), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r2, &(0x7f0000001400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01a52bbd7000fcdbdf2504000000040010"], 0x20}, 0x1, 0x0, 0x0, 0x24040000}, 0x18800)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(r0, 0x8, 0x0)
openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x1, 0x0) (async)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/pppoe\x00', 0x20440, 0x0) (async)
pread64$auto(r1, 0x0, 0xa0, 0xf86) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001340), 0xffffffffffffffff) (async)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r2, &(0x7f0000001400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01a52bbd7000fcdbdf2504000000040010"], 0x20}, 0x1, 0x0, 0x0, 0x24040000}, 0x18800) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
close_range$auto(r0, 0x8, 0x0) (async)

8.153212095s ago: executing program 4 (id=2655):
ioperm$auto(0x7, 0x6, 0xffffffff)
r0 = socket(0x2, 0x1, 0x106)
bind$auto(0x3, 0x0, 0x6a)
syz_clone3(&(0x7f00000001c0)={0x2000000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x4242, 0x1c5)
r2 = socket(0x1d, 0x3, 0x1)
mmap$auto(0x0, 0x20007, 0xffff, 0xeb1, 0x405, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
socket(0xa, 0x801, 0x84)
setsockopt$auto(0x3, 0x10000000084, 0x1e, 0x0, 0x1)
bind$auto(0x3, &(0x7f0000000040)=@can, 0x6a)
setsockopt$auto(r2, 0x65, 0x1, 0x0, 0x0)
close_range$auto(r1, r0, 0x9)
fcntl$auto(r1, 0x400, 0x1)
mkdir$auto(&(0x7f00000000c0)='./file0\x00', 0x9)
truncate$auto(&(0x7f0000000080)='./file0\x00', 0x7f)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)

7.734179368s ago: executing program 0 (id=2656):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/vhci_hcd.13/usb35/35-0:1.0/usb35-port8/location\x00', 0x80000, 0x0)
bpf$auto_BPF_MAP_GET_NEXT_KEY(0x4, &(0x7f0000000080)=@bpf_attr_11={0xfff, 0xfffffffffffff12a, 0x6, 0x9, 0xfff, 0x3, 0x10001, <r1=>r0}, 0x9f2)
r2 = prctl$auto_PR_SCHED_CORE_GET(0xe18c, 0x0, 0x0, 0x1, 0xb4)
sendmsg$auto_NL80211_CMD_LEAVE_MESH(r2, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x48, 0x0, 0x31, 0x70bd25, 0x25dfdbfe, {}, [@NL80211_ATTR_STA_VLAN={0x8, 0x14, 0x5}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x40}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x8}, @NL80211_ATTR_EXTERNAL_AUTH_SUPPORT={0x4}, @NL80211_ATTR_WIPHY_ANTENNA_RX={0x8, 0x6a, 0x7ff}, @NL80211_ATTR_RECEIVE_MULTICAST={0x4}, @NL80211_ATTR_TDLS_INITIATOR={0x4}, @NL80211_ATTR_TSID={0x5, 0xd2, 0x5}]}, 0x48}, 0x1, 0x0, 0x0, 0x4000}, 0x4000)
fsmount$auto(r1, 0x3, 0x8)
r3 = waitid$auto_P_PGID(0x2, 0x0, &(0x7f00000002c0)={@_si_pad}, 0x5, &(0x7f0000000340)={{0x1, 0x5}, {0x2, 0x4}, 0x6, 0xc2, 0x0, 0xe89, 0x8000000000000000, 0x2, 0x0, 0xffffffffffffffcb, 0x3ff, 0x8, 0x4, 0x0, 0xed, 0x9})
ioctl$auto_XFS_IOC_FREESP64(r1, 0x40305825, &(0x7f0000000400)={0x9, 0x8, 0x3, 0x8000000000000000, 0x6b52, <r4=>0xffffffffffffffff})
syz_clone3(&(0x7f0000000640)={0x0, &(0x7f0000000440), &(0x7f0000000480)=<r5=>0x0, &(0x7f00000004c0)=<r6=>0x0, {0x3b}, &(0x7f0000000500)=""/142, 0x8e, &(0x7f00000005c0)=""/10, &(0x7f0000000600)=[0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0], 0x8, {r1}}, 0x58)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000006c0)={'veth1_to_batadv\x00', <r7=>0x0})
sendmsg$auto_MACSEC_CMD_GET_TXSC(r2, &(0x7f0000002040)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000002000)={&(0x7f0000000700)={0x18d0, 0x0, 0x20, 0x70bd27, 0x25dfdbfe, {}, [@MACSEC_ATTR_OFFLOAD={0x1a2, 0x9, 0x0, 0x1, [@generic="2229b83dc267e7333e335ef2e7bc0601df6c03c7b531733528b3aedbba31ed34290d1560c22e4d6520e2dd62b9a26a7632854b27f1e52b730a7d111ec6c4fe6940a7f6c08227f28c046bad45451ed1c07ee1517cf9da94cc2816edd77cbedd2f1d", @generic="ed39039f6ecaa20787505cfa41cc626978806655996c7c46cf2bc57663252b72eeb151c4f1bcab067f94b7bfd84b86165ffdf1b17d213bd97c999906e7a26e16ed18bf70b6e9f0cffb3ed19d79672e1c8a4621b1780f0c81a4b8f10b6cb85d3a267d80697752275ce4d69ddec506939669", @generic="17b3ab3497b50a4719e96dba2cf82f835d5dbf003097a65324c781f87dcbea302764bd3047d4f12762af4560ec66d28eeb5e9302204383ed97f747afd2eb4394ee90a6f5f0c462533942bd8b207e361d15d8f4731c3c918337de008ca360b28474ead6335957152a59533f6622d4d5b1196e7594b4f9f25e5a7c618e3edae692cd4a3663b5adc08cbbab00edcac674f966a765102f7a2cab6a15183aa34daf6fab62d95cd1e48244a6552350ff2d08d7cd44193e6d925740dbb52326ec45f3d6859c8aec618e471e924e0014"]}, @MACSEC_ATTR_SA_CONFIG={0x361, 0x3, 0x0, 0x1, [@typed={0x8, 0x6c, 0x0, 0x0, @uid=0xffffffffffffffff}, @generic="f48462380ba58cba3c73cb0141cc97b0762f917b6157c7e7daefaf4b831b65a6fb0db6166b10c6b8b53a8581531738bed239bc88955be88d821b6883646154477d189b4c4e7102b2c64914d18a52615e9422ee75379a200b447547a471af067da83184757eeb217ce82030bd7e5c69da084a782408cbc4a3e639668e58676326172f37f292441fa9034012cf927695a3fdb8b949f412c61c615f4719ebcd66578b5b158712ba23f6250e24c52c3d1d20bbafa0f9bf72b61e3dfc9dad15821f421daf56b87f75db68f1b2d05289c592fe3c5bb5caf17d15362aa01255df62df026bfb97e8d276a64ddfd1f741", @nested={0x102, 0x5b, 0x0, 0x1, [@generic="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", @nested={0x4, 0x50}]}, @typed={0x4a, 0x9c, 0x0, 0x0, @str='/sys/devices/platform/vhci_hcd.13/usb35/35-0:1.0/usb35-port8/location\x00'}, @typed={0x8, 0x119, 0x0, 0x0, @pid}, @generic="8e951b52eb744a14f95f5251bdf52e1ab7c848d9ccc08b6c0f237df6e2eb29417b4d3401b1f76571e42a8a5769c02c047a25dd72a9f1d9ada2f7ade01e2050177b529da8062538bc9f7a04ef75bc6c49e01bf0fd9a599b8d3bf96fb431748fead19d629bcfcd0a7164368bfca071c658a1d8f9bd7a5179d73bedfb25a3", @typed={0x8c, 0xdf, 0x0, 0x0, @binary="34a705f2c8ef22528c829a5203af6044a23594bc55b46a97db60ed71f8f13e75306b777a11d5fc362cfb33f1ad7bee7a6fbae969dc06afb68b0a937979d8b51c7c2d45b931be601ca2cdb0a81bcf74014852f6a54f31cba1340a5268ce6d57da8f5836cb7f95b7522d6bb8c9e3b7efd2bd01b13e00d603f757efd4b2da9631c1016c0b65438b02f1"}, @typed={0x8, 0xa6, 0x0, 0x0, @pid=r3}]}, @MACSEC_ATTR_IFINDEX={0x8}, @MACSEC_ATTR_SA_CONFIG={0x4}, @MACSEC_ATTR_OFFLOAD={0x117c, 0x9, 0x0, 0x1, [@generic="4decf28ece608be991861ed2ebf5854d291d2b684fe02c05f4e186905dc5b4a537c1e4057f37c274007c21df0907033bc34850e5a3d37cef28f540bd353ffd1afc63f193f8a3933edba61a2717212a5b7c92948b0da2edad763a61154d6f1477ed432cce7753c69f32d7983d238dbef3d24d372827342362751658093b61df38522d7ba5a91ab1cb09b52b7fc5e8fb73004e11fda5c9ecf745b8dc82767b0394bc050450c5eb9c0e2b6e4e26b9d77cdac231f3e647bba245f095f8d5f8fdd985112740281c28b582b853e92024718e85d07fa25eec9ed3e6786d4e9806d5ebdb70055b9cb3625c79bc7644c557727996e0294064566e8150d34d358242153733a37aaf7bfbba58ba2b52520d0b27071c5fdb27ebfe839200787c58bc3586c453589b8262f34b809dcb4d835f8a1a3f051f0ffcd101a4da628913e5d881797c40c4f8f056d86cc29e42b578db0f39ee5d5f9e9885504d57fed5b70607980f1369d0acfd0c061f77eae3a2359507fbea03f15cfe163854597556bee22bb69d6573104e7a7de159f3837e18e308b25631543a9a80714af84c7c6d3dc07de89456534d90a648c8245ea34a7224944c5a33f3667a07b58ec5c1a006835e23d8946eae9cc39efe4b8b46a43646c8505c9165fb24fc4f8e66d15976e3e20489bbe3f1a8252de2f3b44c65c004f073cacb06d18ddc984d9077e7e632abb1ca617961e60fd1eaf20203e76599ba132ae07054db4a7a6d438773874491ed832eeaced06b1aae9949cfdcf9d2bed2c34d2bf6199158cacac48d55acdcf3676bc7832f3021bba38cb88a343027101cb8b8510a8fe53b51c5efbb39d62bcc1034d0a148d2fd3c49512d67e6db36e884f489f2fd1e5d3d87fc154dec33246ccc6a33925abba122c4d5627d4dfbc85af1789deb32bad929bb61341e505e481c79bfd51948af712db72b2e7815de3627238765d89f13efd2e5e21bb4ebb6d2d4deac88720460d1203793487e085565f4779ec081b0968840fbd3ecc5326fedbcba8e4f03b13ccab7299fa1f8a9189c622c0f62ca71b656f2f6372b88bda144aa79e172ea46cf9a8e92e0e8127b14f612a0fad78439f63ca840c4d03abda52c552fb3e822dd49d9ed72ba965faf290afde4d7a4535b5d563b9951f7366dafdf4a2b215c5301e2f5025e256677f0b1269969ab311ff6a8c702e4e3f10ff8b581fa5d523bfb6642c289b50140ea759191561f6341dbc850ee5c17713d2cea79dcaf65dcb0bf78c271b6d8095e09996dd1f0ba4fc9bead9ac1c031c0a76322285e526ed6511f65affa9d21acb70c8a13fd8ad1f19ae452370dd0cc50b17fc66ddc0cdf2a8ffde8b37cc07fe2ee21d463a1b57713418f6eef64c27c36aa81d362cabbb35aca761f1609988f7651ce1f26f26cd59d97015ae3910452aa11ecf0f5940aa0ed8c4b5fc809a4829d7ff3ac1b458f1c9e76be4479c20108999577d83db4fc95fe1db018a7a4d86bdfc21cc60449629cf70345b44245fee9c149fd31089feee0e9605f364d057b697c44ac83d270e33a9feb275ad26fd29aabb5dd5fd7e4d24a340caa80dcb798ecd7e6f4f65d4f3b0e8832ab4f428d3cf6f988b472ba237eda4e4d10ac336a9df661411925bd37ae73b208a6d9091a3b809d97b4b57560385b82d3f8eece55654dea4bdb944a387a0b27275baf4aea4c631067f0e3b6e00dbfa193e3b64f735622fab7985bfd566000691c8c1c45f003bc9430da54f9cf6d20aba59b4b0f112897deb3f77c9cbcbc345145fd31f83fc5fac394a22c67426c2baab7dfb1cc114830802327ca271db89206c52c5e4e9aef879e526aaa7ef0233ca5107a1f1699fa9551189ecd3d322c9b5680cd47a0e7a0ac57a4f58bb4c103f0ecfbb5817efa6e9e8bbaf215cd6bccfd43b4d2168c40fcb39404014dc87ceac4ad8a31f6f46101b383be31f155ea84cd22b845a0bc84f85cbd12a49922b37feef6ab0ff42930fff68d5938dd7cb808557fa1a96d026f04efee97afc9040763d0cf060988cf0c7860e6148766dc0ecae38ca1c9a1b6d03a493efa4391154596cc46228e9d71d49f4da3fbdd82740dff70017d5b33a5ac8ac85f26a21137adbb3db028944e8dfbc80d1b9dc94826e98abcea6952360dd043e93f42d620daee2a928570abac2c966072b1cf1eb629f2135ec68e0917be9ddd98e200e994a733fce22103addfda0f1ad275c026ce4b3467367d357e6983d816303fd3ec0198f9e58666cda0e351397616fd26c41b7e2096a188ee559812834c18af78aae7aad80cb9898e139a2031c29a3388b11d925799883a6ccfabb9f66a9b49fb966fa6528083ead3d1ec4594f0d71fdad8a8e3854f77f23b5f52392719c13f8a8a407d6b99f2b5ded7f7737ed981339a1a8139e84202bcf760dcf7a1a62416c3735f4aaf58fef03721a5594ebd112f32f1a1e151531efff171d12aaeca99d5576d97a6f2e74ebe12298f9e43a3eb09784b5f49e6206d4556019e69c97b65a4cf533ea85e450c90e358218c721d2e341ad6205855f952bae11ff69778f970d9a1b3d59636b2b4f1a945598a15bfd8507b5be7eb073365feae1ff3cfdecbaf0250151f9db85512dc19818e7bac70f5e4374f88bd542d36cc63fe9823173339ab9f522b5deb4c4158689f22a95bb4cd3bd642d104626b127eb6ec62340fb861ec9e33300db5933f99b58ce545b38bbbb4e8c8d3a1d3eed604b81a71d4e641487c14658c6ae7763b72a7bdde4ca8c5a47b329f58ac4968dca687f5643770316d8535e8e3fe24adef8deeed553ef95529e247b5c949cf7c7bb736d8de2a52ab7b23d3cc1454604049c90ee69a022aa557f20d35ea50ae4766ef677f2cffa2329283b8415067acb6f0744edfd0aae129627a2c35304d7242d2ad59840ef2c6bc5c2878aceb65ef224074497e91ca37c59d6cb72427e296a7b3324ddceb0615dd1efef28c9294a644e38d93fdadee98ebe74ccb983b0927753f7c2e4f8e5ebe95af37ba572a76e8e6b2a7780f2a2e8389e409c9567c1e714912cf627f5dbf87f496cd256bea0400448c162b95c7714fe12e21136c7e6575ec1174171f10be5be4ca8ea0e960cc875a54a4a49c6cab4afd3e6e4030e4ac0188fe29c840d06199c1751c26194930b803f26bba211595fa0a65f636537a3b98ace85c5c99a74ba8959e2478b75b1cc952674e88231d731a29cb55fb7caf99a4d83285296120c11bebe4e27c4eb255e9a0fd45c65ff3aad823662d9e3a7b38a9ae73e7d42bd77151054025ee8b7fe0a6703209cfffde5cb0d8eb8f1a198e3db90d2131e51ba93f95d09bf4d94eca19c9e465c55bdd7b2fa901e7974a52d578b4148a3a8e3266766afe90b6a00a41994e330622d450dc017cedcaca0ddbaf80703ba193c76ea7a228f46386bc9eecb3d0263bbc15bb0a737e5f4411290c56f13865433b361e65a53cfee37f36330937ba88c82af5a69abc2e50c801de28a7b4fabe26b7a23dbf84de84a8dec06c8ecff842e167c9ebea2c1566fd4c5ff71eac9bcb81a8581c56244e5bf70329676030cfd7459de841de5bd7634a86ec4c592f0aa0571f69faf704b463a6dfbb88e7970fe04ada4307adc887c0661781d4fbfcbdc647843b2b9663dc46a99c1581399fe6993c61d52a69d0c77ae887dbb8d54e5c212869e1ad2930082bfbbf5b2e6eee7d02d73018801dd4e5ecc2a92ac49f786130d3cd4588dc1d623b85a0d99bba812fa588d8195edd48a0cc79bcebd157b3dc20e15fa7e242a2bdd8154276f9419ea2b0afeb125938de68c5601aabe381825a8458899901c21f509d5e379ebba0fd361bf3d738e30dfd91234baf18723c31adf904f67a83045952dd888259099f909bad659fc7cd6c420dc38e72343c8bff190b1143e627aa7120ac3422b749fc1ff128e1ad3d208da6057d7d0a6fa8ccd61ce04b5dbcf8003a3fa1f2ea704d19e0895e44fcbbd5a54201f3d1e6109f34e81f0e0a131b1369468afddd8c30cb05b4ffaf3201a650c1906e413ce0ef90bcd14ccef698fa7c751166659f613f36d49fa1c36fb08cff21445ad380f73c0bc812c6b0880091384239bfc9cf3ef8dd1a88195e769a2d3832b541c96823db54d46330a28c5d04f0d02e4ee0f267486bb1fe240f2ab05e863ff27aa967305c0536faacc3e29506bc99cdae04ba3a6975fd4b67c049b36614306b213834a98973345511c05681099e5a78fc22daecb9590b8b65b31cd947568580461ca8955e09890fcb3d402d0d6e6f9437704a4b1121ef5b2654c727fff09a29d164be5d2f0e3b3584346417cca2c6caa4e9fcb33e79e0865ee40b400357b42e8b07a3d0131701139fb016e73a7a5984c6aad192539f6f2d2a0175d3fe053f7ead87493d844f77a07f81588a1dfd740fec6545664750c08ba9926cdedad9d74c75b0ec8bad9865df3ff9e3d9ab8304d5a700b33c7f23a2d7f2118acb083f01c9f926e15013f3d9d84f60e3b2c6c39c0ffbea657ea414f4bafd6c0362886dc197a93668cd201dba0e1f4c780c5d87b6481e7669c35ecaf3b3fc84f3fa1524907eba70ade4fe08ee5e7b3b8e8f3b433293a7a6d90d4544f564fa9a996fe0e7e6fa4475dfc6bd110de7ab4613c4bb89f942595c5f1f8f9fa82bc07a285386454cd85a978bf52f92a44ae07edd6029c110ebc6309c5d19cf0b7250780b9cfbdaa057eef09814257aaa8e8063db86c408b0070c138afcd9b3a79dc0044fddb4a6bd6748541c06cfde9f88383c445cfaa877602be1a90187816e68c9602e95abaaa37a8d6970b40e1326dc6cf4ef29d7da1316ee679a5cd8c778ef3e84f59eaf51c506c878e7c4dbb40bc2e6fd25a6df71868bc6d7b3111c18a7d98881618a0287540a5137ca540e61e64089f305fedefe7e27fd4897a704f5bc5bd28ffd040c7fcb101b9e6ea5ce26ddba6385858432575d504889afa5c1199107bdf2d6bbc86ef9735c10c9b46219a7260687f89d60b11534db37dd27316e0f32f6d6f7714afb7c74ecc08cbb24c59954eea20f2e101f13fbdd14d2f46a2cdd0b0b293144745a2d3123fada26d14e251c33a7f9153b55529c7ac8dc516e310510429d3c22dd4a89f723b4a9e80562c273da01325c4b243bf4d892a02d27bf3ac5dc0063444c95d248c4ea3fd80fc2b6f39d2d78fb3771754863891dae2def9984c17835f3808c089f1e9238ae74dada179f546b2f1909d58cb09a0b3a634ae236c35cd023ab1ff033121014386094b9275ae00c7f8777974170969d12a4cfed8fd2f5d2dfd7b64af3d7e9d3453f6ad5fc54b568a88810547310cfdbeec971fed0ccee508dc33421567629dac3989bf1e068a1a49c7f647ef45ec18e6ec956d4a5930ae9800b2148be6b4405fd44eb7d2f7f6fe255f900439aeb5583eb86187995d8e29c2552a09dce6c8af8d0fc598b594799b96d88a7edd4d8fd081f6ac7b220b7cc16dafc21509711598f99637c19b1575561f8acd68ce25383d33887ae8e83ed0255b8a298fc958c6388cfbfcc0a1a43ba608c055d809879604758a81a35076ba9c973d5d8c96438fb9e4329d87e19e79cfefafc319315b2a88f12611b779b1cee321fd6d6701ee1cca1da1802d31a7208b8cbcc227f1c15bc119bb9cffd82878975b72a2bf124aae04bac25caab5a84c21ea9baebcd395b7246ac0cb85913804a5318fa4e171debf793b6a3d533e4cdf19430fe49bfe82d293bf6db40747962ca2ba723d36fd02c29169cd0af975d999809c87e8948460702ec09f201474fbf7c73eed4c5115f3959", @typed={0x8, 0xb9, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x19}}, @nested={0xc, 0x91, 0x0, 0x1, [@typed={0x8, 0xa3, 0x0, 0x0, @fd=r2}]}, @typed={0x14, 0x110, 0x0, 0x0, @ipv6=@private0}, @nested={0xdd, 0x125, 0x0, 0x1, [@generic="aa5e57f3fb9dd7154475ffd5e6338fa492538619a6ce3768ae64be05c82774432d144d0d752fe8c0b623bfdb448528b7c95c909575248e529d4e4b7e4311ca48b081fac99a52c7b01bd64c05609e6b44065494205e70c29ab00085ad299f7355adc88f789cbe4f6dd2bab69e36c28bebcb9320ba87e7d0f968eb7a6c21cfdac7b8f632f601850bf7419e15404fee7dd2f842629b8b9467cf596e49b31eba14e067ca3bbb6cbe3f6a526c78e17fc97d2030db482b74c7fd9b042825fcff2838212f1448c5c410349fcb6beb2a049d06670f32dec955db6ecaea"]}, @typed={0x14, 0x48, 0x0, 0x0, @ipv6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @typed={0x8, 0xd0, 0x0, 0x0, @ipv4=@multicast1}, @nested={0x54, 0x137, 0x0, 0x1, [@typed={0x4a, 0xb2, 0x0, 0x0, @str='/sys/devices/platform/vhci_hcd.13/usb35/35-0:1.0/usb35-port8/location\x00'}, @nested={0x4, 0x18}]}]}, @MACSEC_ATTR_RXSC_CONFIG={0x156, 0x2, 0x0, 0x1, [@typed={0x4, 0x147}, @generic="b1d1677b3a9d95174303a77c54f207ed1740a757ac3850ba95a46d0b6a7b625262e136e5a54ead3d3b94782d437a735a85f203ab514c0cb8501ad8360ad0b4b2cfc9d83e945ba581d6ff83ece79b0b504391edbb9459d14bf9d5a07d00f969e263cf0a938e09dd1c6b8817", @generic="2673de10dfbfc0b27760861718c32c701632cd4c03d992778755e4cedb7ee658401f4a16462419c2cbec9af8f40291609ce974c38634914a29ba09c954d0941598dda8552ba2a32110e12a586a5119cd5aafffe11ad8c45cdedfc7f4d562aaf2597787be97fc8fcb79dc2ae355d139c6919f34f65cdc1b945c19e2add0423c047ebf08971dec0a5305ab02cd12979f9f3ccacd7d458e751c7db724379e688edec40f94fc4a0a5b7a9594384680cc7a8658e0a3aa1a51b5042b4c576cb9b18069514986f286c9392c68540b73fc2692", @typed={0xc, 0xba, 0x0, 0x0, @u64=0x6}, @typed={0x8, 0xfd, 0x0, 0x0, @pid=r4}]}, @MACSEC_ATTR_RXSC_CONFIG={0x94, 0x2, 0x0, 0x1, [@typed={0x8, 0x12b, 0x0, 0x0, @fd=r0}, @generic="b2310f3cb4c7446960c561ef24defe1b4cb9cc71a5ef35a0a6a0ebd8f2957e76f3e6b44f7099ae3fddc9b798bc35936cdedd7c9f6ac2bcbd92aeda797d014bb30d8852a7c48fda8ad0ee58a0c0e0c610d8903eec5f82213d25f0953d3a5e6b0ffa5db2f45077ba34f6d8641a", @typed={0x14, 0xc3, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @local}}, @typed={0x8, 0x112, 0x0, 0x0, @pid=r5}]}, @MACSEC_ATTR_RXSC_CONFIG={0x38, 0x2, 0x0, 0x1, [@generic="5dca9e73bb3f303c331e4de2a613432030900a6586d78d48b70f0bccf037b69f61abb7b4b960955f65d0045a67426339034216fd"]}, @MACSEC_ATTR_IFINDEX={0x8, 0x1, r7}]}, 0x18d0}, 0x1, 0x0, 0x0, 0x20044001}, 0x4000)
r8 = openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000002080)='/proc/meminfo\x00', 0x4001, 0x0)
ioctl$auto_VHOST_SET_VRING_KICK2(r1, 0x4008af20, &(0x7f00000020c0)={0x2, <r9=>r2})
r10 = openat$auto_dmaengine_summary_fops_(0xffffffffffffff9c, &(0x7f0000002100), 0x404082, 0x0)
ioctl$auto_BTRFS_IOC_FORGET_DEV(r9, 0x50009405, &(0x7f0000002140)={@inferred=r10, "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"})
ioctl$auto_SNDRV_PCM_IOCTL_WRITEN_FRAMES2(r2, 0x40184152, &(0x7f0000003280)={0x8, &(0x7f0000003240)=&(0x7f0000003140)="739a3d02679ea342455336b05a1c0d5967c1d3bf0e3852dc4180c863e1b9f136ff92b1fb91d540b1817472d251229068980f8ebbd7174f1e5db96c7897364b74366bb46a1b8e1d58f0a90e1dd1601b1da24c335565bbc6a3699fa2a37130078e76071d8b1b97dbcf44c56cfe7bc81cbfdb1cca580a45693f41cb1d1f1f4f2d140d7d6e06f132521180b7326aa21c87738bf9ef7350b0e966aab318313b207c92c2e6a1da3f5fc4509757463d0b9c34c21935c8c73f4e82b8c4f0d4b35711bb186e0a3c5b14151dc9acb409172be21138418b4ed5", 0x1})
r11 = prctl$auto_PR_SYS_DISPATCH_OFF(0x9, 0x0, r6, 0x8, 0xffffffffffffffff)
read$auto_vhci_fops_hci_vhci(r11, &(0x7f00000032c0)=""/46, 0x2e)
setsockopt$auto_SO_MAX_PACING_RATE(r11, 0x3e2, 0x2f, &(0x7f0000003300)='*\x00', 0xfa01)
socket(0x9, 0x800, 0x47)
readv$auto(r11, &(0x7f0000003400)={&(0x7f0000003340)="130864f5acb9ec5220a188417cac05fac07741227820287d2d7f71c18090eb647334fee8a9a780ec8a3a4db49647cf939fcc9c9851b8205e95cb9be3cec10e4be691210b042a829577fe2360892863cad2efc7bbadc7b40c5786a460e2e4722dc3355d38b2692fc0e28287db89030a76fb5ca49fefabdfb53bed51c7b24573cd22b3116d96f5ac0f40ecfbd88f1e70ffe2689d442cf9b5", 0x51a9}, 0x8)
mmap$auto(0xb37c, 0x8000, 0xf, 0x11, r0, 0xadb2)
r12 = openat$auto_debugfs_devm_entry_ops_file(0xffffffffffffff9c, &(0x7f0000003440)='/sys/kernel/debug/cec/cec0/status\x00', 0x200000, 0x0)
close_range$auto(r2, r12, 0x3)
timerfd_gettime$auto(r8, &(0x7f0000003480)={{0x2, 0x9aa}, {0x7, 0x5}})
ioctl$auto_TIOCMBIC2(r1, 0x5417, &(0x7f00000034c0))
socket$nl_generic(0x10, 0x3, 0x10)
bpf$auto_BPF_LINK_GET_FD_BY_ID(0x1e, &(0x7f0000003500)=@raw_tracepoint={0x4, <r13=>r12, 0x0, 0x3ff}, 0x0)
read$auto_uhid_fops_uhid(r13, &(0x7f00000035c0)=""/184, 0xb8)
ioctl$auto_TUNSETNOCSUM(r2, 0x400454c8, &(0x7f0000003680)=0xfffffff8)
syz_genetlink_get_family_id$auto_nlbl_calipso(&(0x7f00000036c0), 0xffffffffffffffff)

7.172318919s ago: executing program 0 (id=2657):
r0 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/pagemap\x00', 0x0, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x8, 0x40000009, 0xdf, 0x2000000000000eb5, 0x401, 0x7)
r1 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000840), r2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
setgroups$auto(0xe32, 0x0)
madvise$auto(0x0, 0x200007, 0x19)
ioctl$auto_SG_GET_RESERVED_SIZE(0xffffffffffffffff, 0x4c04, 0x0)
mmap$auto(0x0, 0x128009, 0xdf, 0x410, r1, 0x4)
capget$auto(0x0, 0xfffffffffffffffe)
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/smaps_rollup\x00', 0x40000, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
madvise$auto(0x8, 0xc89, 0xffffff33)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$auto_BPF_LINK_UPDATE(0x1d, &(0x7f0000000080)=@bpf_attr_3={0x1, 0x0, 0x4, 0x10000000000000, 0x100, 0x400, 0x1, 0xde, 0x2, "fd70b93a01446bfc217279daac9134e4", 0x0, 0xc90, 0xffffffffffffffff, 0x4, 0x1, 0x3, 0x5, 0x4, 0x2, 0x0, @attach_prog_fd=r1, 0x80000001, 0x3, 0x4, 0xc7, 0x2, r0, r0}, 0x1)
r3 = bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x4, 0xa, 0x1000009, 0x5f, 0x0, 0x3}, 0x6f3)
mmap$auto(0x1, 0x2020009, 0x0, 0xeb1, r2, 0x8000)
ioctl$auto_SNDRV_PCM_IOCTL_DRAIN2(r3, 0x4144, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x9, 0x2, 0x0)
socket(0x1d, 0x2, 0x7)
socket(0x10, 0x2, 0x0)
socket(0x2, 0x1, 0x84)

7.104293533s ago: executing program 4 (id=2658):
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
timer_settime$auto(0x0, 0xb746, &(0x7f0000000000)={{0x4d4, 0x2}, {0xfe, 0x4}}, 0x0)
r0 = socket(0xa, 0x5, 0x84)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
setsockopt$auto(0x400000000000003, 0x29, 0x6, 0x0, 0x3)
sendto$auto(r0, 0x0, 0x401, 0x101, &(0x7f0000000000)=@generic={0xa, "000000000000fe8000"}, 0x1f)

6.9233223s ago: executing program 1 (id=2659):
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
write$auto(0x3, 0x0, 0x7fffffff)
write$auto(0x1, 0x0, 0x400)
mmap$auto(0x6dea, 0x5, 0x9, 0x17, r0, 0x10001)
openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5)
openat$auto_nsim_dev_max_vfs_fops_dev(0xffffffffffffff9c, &(0x7f00000089c0)='/sys/kernel/debug/netdevsim/netdevsim1/max_vfs\x00', 0xc798ee72cfbd85fc, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xf, 0x3, 0x2)
openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000180)='/dev/cec18\x00', 0x1c0, 0x0)
openat$auto_proc_timens_offsets_operations_base(0xffffffffffffff9c, &(0x7f0000002440), 0x80c02, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socketpair$auto(0x1, 0x2164, 0x8000000000000000, 0x0)
write$auto(r1, &(0x7f0000000400)='\x05deo1\x00', 0x100000a3d9)
close_range$auto(0x2, 0xa, 0x0)
r2 = socket(0xa, 0x2, 0x88)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'bond0\x00'})
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
semctl$auto(0x3, 0x2, 0x13, 0x9)
r3 = socket(0xa, 0x1, 0x84)
get_robust_list$auto(0x1, 0xffffffffffffffff, 0x0)
getsockopt$auto(r3, 0x0, 0x484, 0x0, 0x0)
socketpair$auto(0x1, 0x3, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x40009, 0xa, 0x9b72, 0x2, 0x28000)
sysfs$auto(0x2, 0x10, 0x0)

6.473289728s ago: executing program 4 (id=2661):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
mmap$auto(0x7, 0x80000000080, 0xdf, 0x9b72, r0, 0x7)
mmap$auto(0xffffffffffffffff, 0xfffffffffffffff0, 0xdf, 0x9b72, 0xffffffffffffffff, 0x1)
madvise$auto(0x0, 0xffffffffffff0101, 0x15)
mbind$auto(0x1, 0x100000000000005, 0xfffffffffffffffe, &(0x7f0000002100)=0x7fffffff, 0x8001, 0x0)
shmctl$auto_IPC_STAT(0x4, 0x2, 0x0)
ioprio_set$auto(0x6, 0x0, 0x2)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x4000, 0x0)
syz_genetlink_get_family_id$auto_ioam6(0x0, 0xffffffffffffffff)
r1 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0xa101, 0x0)
ioctl$auto(r1, 0x802c550a, 0x1)
sendmsg$auto_IOAM6_CMD_ADD_SCHEMA(0xffffffffffffffff, 0x0, 0x8010)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_OVS_METER_CMD_DEL(r2, &(0x7f0000001180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000180)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010028bd7000ffdbdf25030000000400020208000100010055809b8ab7ff524b0b5c0080"], 0x20}, 0x1, 0x0, 0x0, 0x4800}, 0x4000)
mlockall$auto(0x7)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/devices/virtual/block/ram1/queue/zone_write_granularity\x00', 0x8a340, 0x0)
r4 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
r5 = openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0)
write$auto_snd_seq_f_ops_seq_clientmgr(r5, &(0x7f00000000c0)="621c1bfe595046ab5c98199adf6ad9cdc5b2fc8d6d76e6021e1dcedc5f00e8fdffff00c291dfb4000001bf9f34dc422231cf4d40d401d5f8", 0x38)
ioctl$auto_UI_SET_SNDBIT(r4, 0x4004556a, &(0x7f0000000140)=0x80000001)
r6 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/ip_tables_targets\x00', 0x1802, 0x0)
pread64$auto(r6, 0x0, 0x5, 0x4)
getsockopt$auto_SO_PEERPIDFD(r6, 0x800, 0x4d, &(0x7f0000000040)='/dev/uinput\x00', &(0x7f0000000080)=0x9)
mmap$auto(0x0, 0xc, 0x4000000000df, 0x44eb2, 0x10006, 0x300000000000)
mremap$auto(0x0, 0x4, 0x4, 0x3, 0x100000000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
madvise$auto(0x91, 0x2, 0x3)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001d80)='/sys/devices/virtual/sound/ctl-led/speaker/card0/attach\x00', 0x1, 0x0)

5.527001707s ago: executing program 4 (id=2663):
socket(0x2c, 0x80003, 0x0)
prctl$auto_PR_SET_SPECULATION_CTRL(0x35, 0x9, 0xffffffffffffffff, 0x5, 0x3)
setsockopt$auto_SO_TIMESTAMPING_OLD(0xffffffffffffffff, 0xd, 0x25, &(0x7f0000000100)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1)
r0 = io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0x1d, 0x3000, 0x6, 0x7, 0x400a, 0xffffffffffffffff, [], {0x6, 0x6, 0x8c48, 0x29b, 0x3, 0x7f, 0x0, 0x6}, {0x100, 0x1, 0x52, 0x85, 0x2, 0x1a7b870a, 0x76c5, 0x8, 0x100000000}})
add_key$auto_KEY_SPEC_THREAD_KEYRING(&(0x7f0000000a40)='./().\\\n*@\x83+\x00', 0x0, 0x0, 0x7f, 0xffffffffffffffff)
r1 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x82000, 0x0)
ioctl$auto_tracing_buffers_fops_trace(r1, 0x5220, 0x0)
poll$auto(&(0x7f0000000040)={r0, 0x1, 0x40}, 0x8, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
madvise$auto(0x0, 0x1010001, 0x100000003)
mmap$auto(0x0, 0x2020006, 0x1000000000000007, 0xeb1, 0x0, 0x1008000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x29, 0x80000, 0x73)
iopl$auto(0x3)
socket$nl_generic(0x10, 0x3, 0x10)
delete_module$auto(0x0, 0x2)
socketpair$auto(0x3, 0x4, 0x8000000000000000, 0x0)
open(0x0, 0x22240, 0x55)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$auto(0x3, 0x40106f52, r2)

5.419404985s ago: executing program 5 (id=2664):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = socket(0x1d, 0x3, 0x1)
setsockopt$auto(r0, 0x65, 0x6, 0x0, 0x3)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
r2 = ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000400)='/dev/snd/pcmC1D1c\x00', 0x2000, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
r3 = open(&(0x7f0000000140)='./file0\x00', 0x220c0, 0x4)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, 0x0)
r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_SET_WIPHY(r3, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x5c, r4, 0x20, 0x70bd28, 0x25dfdbff, {}, [@NL80211_ATTR_FILS_KEK={0x42, 0xf2, "258338dedbf4055390d9b05da93d71cbc804b6bfdaaaeb239926c3f609d4cac1b11221ec1f826077a7c7a91fae54d164112c212282a07e8bc09e74429832"}, @NL80211_ATTR_SPLIT_WIPHY_DUMP={0x4}]}, 0x5c}}, 0x2000c004)
r5 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$auto_VHOST_SET_OWNER(r5, 0xaf01, 0x5)
r6 = socketpair$auto(0x1e, 0x1, 0xb4d, 0x0)
r7 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000200), r6)
sendmsg$auto_NL80211_CMD_DEL_NAN_FUNCTION(r2, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x34, r7, 0x100, 0x70bd2d, 0x25dfdbfc, {}, [@NL80211_ATTR_HT_CAPABILITY_MASK={0x1e, 0x94, "f6a6d44189c22c37481b3e8e6af1d9f6b59fae08fb4e32132c40"}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000004}, 0x24004c00)
ioctl$auto(r5, 0x4008af03, r5)

5.296905917s ago: executing program 0 (id=2665):
open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100)
rseq$auto(&(0x7f0000000080)={0xfffffffe, 0x8, 0x0, 0x7, 0xffffffff, 0x2, "24229ba6405fe4fc8b79b54d7e17"}, 0x8001, 0x101, 0x6)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
open(0x0, 0xeee00, 0x31)
mmap$auto(0x0, 0x5, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
open(0x0, 0x1e1401, 0xe5)
r0 = gettid()
rt_sigtimedwait$auto(&(0x7f0000000000)={0x86e}, 0x0, 0x0, 0x8)
tkill$auto(r0, 0x7)
write$auto(0x3, 0x0, 0x100082)
open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100)
mmap$auto(0x0, 0xc, 0xbc5, 0x13, 0x3, 0x8000)
lseek$auto(0x3, 0x7fffffffffffffff, 0x1)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x40001, 0x0)
ioctl$auto_TCFLSH2(r1, 0x80045439, 0x0)
ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0)
ioctl$auto(r1, 0x89f1, r1)
mmap$auto(0x3, 0x432, 0xdf, 0x8000000009b72, r1, 0x8000)
socket(0x10, 0x6, 0xc)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x9)
openat$dir(0xffffffffffffff9c, 0x0, 0x40342, 0x22)
socket(0x21, 0x4, 0x0)
clone$auto(0x8001, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x6)
writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1)
r2 = socket(0xa, 0x2, 0x73)
getsockname$auto(r2, 0x0, &(0x7f0000000280)=0xaea)
mlockall$auto(0x7)

5.294281779s ago: executing program 1 (id=2666):
mmap$auto(0x3, 0x6, 0x2, 0x40eb2, 0xffffffffffffffff, 0x308000000000)
r0 = socket(0x2, 0x1, 0x106)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) (async)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
mmap$auto(0x0, 0x3, 0xdf, 0x2009b72, 0xffffffffffffffff, 0x8000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) (async)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$auto(r1, 0x104000000000010e, 0xb, 0x0, 0x400) (async)
setsockopt$auto(r1, 0x104000000000010e, 0xb, 0x0, 0x400)
sendmsg$auto_ETHTOOL_MSG_DEBUG_GET(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000345509"], 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x20044840)
connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x3}, 0x55) (async)
connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x3}, 0x55)
setsockopt$auto(r0, 0x6, 0xd, &(0x7f0000000280)='lp\x00h\x85M\xdf\xdc\x83\x8a\xa7\xe4]U(\x01\t=\x1e\x00\x00', 0x4)
sendmsg$auto_IEEE802154_SET_MACPARAMS(r0, 0x0, 0x80) (async)
sendmsg$auto_IEEE802154_SET_MACPARAMS(r0, 0x0, 0x80)
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x80502, 0x0)
ioctl$auto_SNDCTL_DSP_SPEED(r2, 0xc0045002, &(0x7f00000000c0))
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
getsockopt$auto_SO_PEERSEC(0xffffffffffffffff, 0x6, 0x1f, 0x0, 0x0)
socket(0x15, 0x1, 0x1)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0x2, 0x1, 0x0)
socket(0x18, 0x4, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
memfd_create$auto(0x0, 0x4) (async)
memfd_create$auto(0x0, 0x4)
fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d)
finit_module$auto(0x3, 0xfffffffffffffffe, 0x400000000004)
close_range$auto(0x2, 0x8, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73) (async)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x69)
bpf$auto(0x5, &(0x7f0000000300)=@bpf_attr_3={0x1c, 0x4, 0xf, 0x63, 0x400, 0x0, 0x1, 0x80f0c8, 0x20, "38c1d5cbcb9f6b5e511f0cd8ed068f65", 0x0, 0x4, 0xffffffffffffffff, 0xe4, 0x6, 0x5, 0x8000000, 0x8, 0x0, 0x3, @attach_btf_obj_fd, 0x6, 0xffff, 0x8, 0x0, 0xfffffffe}, 0x44)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) (async)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)

5.073861266s ago: executing program 5 (id=2667):
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x28, 0x801, 0x0)
connect$auto(0x3, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2711}, 0x51)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x14d27e, 0x72)
socket(0x2, 0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
setrlimit$auto(0x1000000007, 0x0)
sysfs$auto(0x2, 0x0, 0x0)
fsopen$auto(0x0, 0x1)
socket(0x1e, 0x1, 0x0)
copy_file_range$auto(r1, 0x0, r1, 0x0, 0x2, 0x0)
socket(0x22, 0x2, 0x2)
r2 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYBLOB='l\x00\''], 0x1ac}, 0x1, 0x0, 0x0, 0x40810}, 0x2004c0c4)
sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
select$auto(0x6, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x3, 0xfffffffffffffffa, 0x1, 0x948b, 0x3, 0x95f4da2d, 0xc, 0x7, 0x62, 0x7, 0x7, 0x6d3f, 0xa, 0x3, 0x5]}, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
mmap$auto(0x1, 0x8000000000a00006, 0x2, 0x40eb1, 0x602, 0x300000000000)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NFSD_CMD_THREADS_GET(r3, &(0x7f0000001800)={0x0, 0x0, &(0x7f00000017c0)={&(0x7f0000001780)={0x14, 0x0, 0x4, 0x70bd26, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x44848}, 0x4000000)
syz_genetlink_get_family_id$auto_tipcv2(&(0x7f00000019c0), r3)
r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_GET(r3, &(0x7f0000002280)={0x0, 0x0, &(0x7f0000002240)={&(0x7f0000002080)={0x20, r4, 0x503, 0x70bd27, 0x25dfdbfb, {}, [@ETHTOOL_A_LINKMODES_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x8000}, 0x40)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000100)={[0x1ff, 0x6, 0x1, 0xfffffffffffffff7, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000021, 0x7, 0x6d3e, 0x7fff, 0x2, 0x6]}, 0x0)
socket(0x8, 0x2, 0x94bf)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000080), 0x80000, 0x0)

4.935417271s ago: executing program 1 (id=2668):
r0 = syz_clone(0x40100100, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
r2 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000340)='/sys/kernel/debug/block/sda/poll_stat\x00', 0x183200, 0x0)
read$auto_blk_mq_debugfs_fops_blk_mq_debugfs(r2, &(0x7f0000000040)=""/163, 0xa3)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/platform/vkms/graphics/fb0/state\x00', 0xc2481, 0x0)
write$auto(0xffffffffffffffff, 0x0, 0x28081)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000540)='./cgroup.net/blkio.bfq.io_queued_recursive\x00', 0x0, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r3, 0x0, 0x0)
remap_file_pages$auto(0x7fff, 0x0, 0x5, 0x0, 0x7)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
rt_sigqueueinfo$auto(r0, 0xd9a, &(0x7f0000000180)={@_si_pad})
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x10000)
r4 = waitid$auto_P_PID(0x1, 0xffffffffffffffff, &(0x7f00000001c0)={@siginfo_0_0={0x9, 0x8, 0x5, @_sigpoll={0x200, r1}}}, 0x9, &(0x7f0000000240)={{0x1ff, 0x2}, {0x7}, 0x7fffffffffffffff, 0x8000000000000006, 0xfffffffffffffff9, 0x62, 0x107, 0x800, 0x8164, 0x7, 0x9, 0x3, 0x6, 0x4, 0x9, 0xffffffff80000000})
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x6, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0x0, 0xc, 0x4000000000df, 0x44eb2, 0x10006, 0x300000000000)
bpf$auto(0x2000405, &(0x7f0000000100)=@task_fd_query={r4, 0x2, 0x4, 0x0, 0x85, 0x7, 0x9, 0x6, 0x8001}, 0x80000101)
socket(0x11, 0x80003, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vbi15\x00', 0x802, 0x0)

3.905866406s ago: executing program 5 (id=2669):
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
read$auto(r0, 0x0, 0x1f40)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$auto_CTRL_CMD_GETPOLICY(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x3c, r2, 0x10, 0x70bd26, 0x25dfdbfc, {}, [@CTRL_ATTR_FAMILY_NAME={0x17, 0x2, '/proc/self/oom_adj\x00'}, @CTRL_ATTR_OP={0x8, 0xa, 0x80}, @CTRL_ATTR_OP={0x8, 0xa, 0xed5}]}, 0x3c}}, 0x2c041)
socket(0x28, 0x1, 0x0)
connect$auto(0x3, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2710, @hyper}, 0x10)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
open(0x0, 0x64842, 0x0)
timerfd_settime$auto(0xffffffffffffffff, 0x4, 0x0, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000de, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
r4 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
sendmsg$auto_NL802154_CMD_GET_SEC_DEV(0xffffffffffffffff, 0x0, 0x40000)
read$auto(r4, 0x0, 0x1f40)
r5 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
setsockopt$auto(0xffffffffffffffff, 0x9, 0xff, &(0x7f00000002c0)='SEG6\x00', 0xeec)
writev$auto(r5, &(0x7f0000000200)={0x0, 0x7}, 0x3)
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x6, 0xa, 0x1000009, <r6=>0x5f, 0x0, 0x3}, 0x6f3)
mmap$auto(0x5254, 0x5, 0x4, 0x14, r4, 0x1)
getsockopt$auto_SO_PASSCRED(r6, 0x1, 0x10, 0x0, 0x0)
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000280), 0x440, 0x0)
gettid()
writev$auto(r3, &(0x7f00000000c0)={0x0, 0xffffffff}, 0x6)
ioctl$auto_SNDRV_TIMER_IOCTL_CREATE(0xffffffffffffffff, 0xc02054a5, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D2\x00', 0x0, 0x0)

3.679038956s ago: executing program 4 (id=2670):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/bond0/queues/tx-9/xps_rxqs\x00', 0x1a1842, 0x0)
unshare$auto(0x40000080)
socket$nl_generic(0x10, 0x3, 0x10)
open(0x0, 0x44, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, 0x0, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0) (async)
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x1c1282, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f0000000280)=""/65, 0x41) (async)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) (async)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0)
io_uring_setup$auto(0x6, 0x0) (async)
io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3) (async)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
syz_clone3(&(0x7f0000000400)={0x9840100, 0x0, 0x0, 0x0, {0x31}, 0x0, 0x0, 0x0, 0x0}, 0x58) (async)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0) (async)
ppoll$auto(0x0, 0x9, 0x0, 0x0, 0x8) (async)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f000000fc00), 0x3, 0x0)
ioctl$auto_KVM_CHECK_EXTENSION(r1, 0xae03, 0xea)
madvise$auto(0x0, 0x200007, 0x19)
syz_clone3(0x0, 0x0) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
futex_wait$auto(0x0, 0x0, 0x7f, 0x2, 0x0, 0x1) (async)
futex_wake$auto(0x0, 0x6, 0xfffffffa, 0x6) (async)
sysfs$auto(0x2, 0x23, 0x0) (async)
r2 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0)
write$auto(r2, 0x0, 0x4) (async)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) (async)
syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$auto_NFSD_CMD_VERSION_SET(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x24000001}, 0x4010)

1.489578278s ago: executing program 1 (id=2671):
shutdown$auto(0x200000003, 0x2)
mremap$auto(0x4000, 0xfee0, 0x3fd6, 0x3, 0xfffff000)
mmap$auto(0x200000000000000, 0x400006, 0xdf, 0x15, 0x2, 0x8001)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0)
close_range$auto(0xffffffffffffffff, 0x8, 0x0)
mmap$auto(0x0, 0x7fff, 0x3, 0xeb0, 0xfffffffffffffffa, 0x208000)
mmap$auto(0x0, 0x70, 0xdf, 0x9b72, 0x2, 0x80000000008000)
unshare$auto(0x40000080)
fsconfig$auto_JFFS2_COMPR_MODE_FORCELZO(r0, 0x8, &(0x7f0000000000)='\x12-\x00', &(0x7f00000002c0)="a53cb971a597af4b788402d9f2b5ef98e61cc4a2406184349e7aad660f5f2a3d1a3998d47457c6d9ec1deb945ad795cd0d542338aaf92721aebb6ede267a97c3f953aaf815f02e5e9c57c305cd1ea74a3a79dfad82356fa0b35d4a9a1f19e5d4be1ef372b3c92392178ab4fd10dbf76dcf21ebb46b4f7d5ddcc9f286b35cb4b4fe3c2b9d1a8d5068e0dceb81e535ccd8a98017a1ecd5e4c1d677eba5625ce2b5b3dbd30e32120c25e5a64fe8296586775429ae8ef3e045e6d3d20b2dac400a41fd200e857bc09c4b24a0caf94a6d18bbf6a3d6a9880276075eb8692d4c15ea32f55a", 0x4)
mknod$auto(&(0x7f0000000080)='u[,&*}\x00\a\x00\x00\x00?\xa4\x1fN\xa1~5Z\xc7\r\f}M4\xa8m\xe6\x19[11\xab\xff-E\xac9(\xb4O\xa0t4h\x9f-gn\x1f\x01\x00\x00\x00\x00\x00\x00\x00\xaeR\x81\r_\x0e\x19\b\x85\bvv(e\xdax)\t\x15\xf6\xc8\xee\x04\x16\xc1\x9a!\x87I7\x8cD&zg\xb0a\xab|E\xde\x14\xee[\xc8\xc0\xa8Nh\x0f\xa3\xdbT\xb3\xb8\xd2F\xa0\xc4]\xaf\xc43&\xe4\x01\x05\xd2\x15\xf8\xf1!\x9d\x92\xbbH\xd3^aD\x87\xd8\xe7\xd2\xf3[r\xc5S&}D[\x97\xf1\xd9\xf8Y\x1c\x03\x84\xb4\xd7\x16\x19\xe5\x17\x10\xd8fcG:\xfbY8\x17w\x98?\x03@\xe5\x02\x05\x93h\xb9\xf7\xef\x84\x8aGlN\a\x1e\x00\x00\x00\x00\x00\x00\x00\xf1p\xeb\xe9(%\x89\xef\x85\xdfr\xce\x00\x00\x00\x00\xff\x00\xa2M\'d\x12\x1c\x12\xca\xa5_\x8d\xdf\xc5\x8d\x19?\xfc~\xb3X\x14\xa7\xa9M\x87\xfcTW\x1bR\xbci\x8d\x8aNEO\xb3~~\xa8\xa6\x894\x80;s\xb7\xa3V\x1b\x14|\x9e\xd4\x05\x85\x0f!\xab-E\'\x97Y\xb7\xe8fMv_\xf8\xa0S\xef\xb7\b\xe7!T.g\x92\x87\t$\x06\xa4\xfb\x83\x8c\x17^\x82\xe7\xd3\xf6q\x1a\xa0\xf82[W\x90\xdd\xe3\xde\xa9\xde\x94`-\x9a\x1e}\xebO*\xb85,v.\xfc5\xba?vlt\xda%\x06a\x15I\x1f\xe3\x05+\x810T2\xf9\x9b\xc7\xd1<w\xd3:\x835\xac\r\x06\xc9\xc1HG\x1c\xd4J\x8aZ%+\xe6/~\xd6\xe1[+Z\xb1\x8d\xc5\x9b\xcfhb\'\x80\xeb7%>\t\x03\xf2\x8d\x8a\x90\xb54\bH<9\xf1\x91 D\x85g,\xaa\xca\xcd\xd5\xcb\x9a\xb1j\xf2F\xce\x14\x92\xf9\xd7\xec\xc5\x1e\x8aq2\xce\x881f\xd7\xd4\x9e\xf6\xb6P\x01\xe8T\xb5X\xb9d-I\xd6\x91\xc3\xe2\x88S\x82l=\x02t$p\t\x8cY\x06\r\x83\xb0\x86\xc6\x84\x1c\xce\xb6\xf0\xdfC\x9fj<\xfe\xa4\x1f\x82L\xe4\x13+H\x00\x00\x00\x00\x00\x00\x00\x01M\x16\xa0\xbeB6\xfb\xa2-\x17\x93Q\x9fKusl5\xa2$M\xb4\x18\x1db\xf3\xce\x8c\xe5Rna\xd5\xbbQ\xc7\xa7+\vH\xc1l\x1bIv\xe8_\x00', 0x1081, 0x8)
write$auto(0xffffffffffffffff, 0x0, 0x3)
openat$dir(0xffffffffffffff9c, &(0x7f0000000ac0)='u[,&*}\x00\a\x00\x00\x00?\xa4\x1fN\xa1~5Z\xc7\r\f}M4\xa8m\xe6\x19[11\xab\xff-E\xac9(\xb4O\xa0t4h\x9f-gn\x1f\x01\x00\x00\x00\x00\x00\x00\x00\xaeR\x81\r_\x0e\x19\b\x85\bvv(e\xdax)\t\x15\xf6\xc8\xee\x04\x16\xc1\x9a!\x87I7\x8cD&zg\xb0a\xab|E\xde\x14\xee[\xc8\xc0\xa8Nh\x0f\xa3\xdbT\xb3\xb8\xd2F\xa0\xc4]\xaf\xc43&\xe4\x01\x05\xd2\x15\xf8\xf1!\x9d\x92\xbbH\xd3^aD\x87\xd8\xe7\xd2\xf3[r\xc5S&}D[\x97\xf1\xd9\xf8Y\x1c\x03\x84\xb4\xd7\x16\x19\xe5\x17\x10\xd8fcG:\xfbY8\x17w\x98?\x03@\xe5\x02\x05\x93h\xb9\xf7\xef\x84\x8aGlN\a\x1e\x00\x00\x00\x00\x00\x00\x00\xf1p\xeb\xe9(%\x89\xef\x85\xdfr\xce\x00\x00\x00\x00\xff\x00\xa2M\'d\x12\x1c\x12\xca\xa5_\x8d\xdf\xc5\x8d\x19?\xfc~\xb3X\x14\xa7\xa9M\x87\xfcTW\x1bR\xbci\x8d\x8aNEO\xb3~~\xa8\xa6\x894\x80;s\xb7\xa3V\x1b\x14|\x9e\xd4\x05\x85\x0f!\xab-E\'\x97Y\xb7\xe8fMv_\xf8\xa0S\xef\xb7\b\xe7!T.g\x92\x87\t$\x06\xa4\xfb\x83\x8c\x17^\x82\xe7\xd3\xf6q\x1a\xa0\xf82[W\x90\xdd\xe3\xde\xa9\xde\x94`-\x9a\x1e}\xebO*\xb85,v.\xfc5\xba?vlt\xda%\x06a\x15I\x1f\xe3\x05+\x810T2\xf9\x9b\xc7\xd1<w\xd3:\x835\xac\r\x06\xc9\xc1HG\x1c\xd4J\x8aZ%+\xe6/~\xd6\xe1[+Z\xb1\x8d\xc5\x9b\xcfhb\'\x80\xeb7%>\t\x03\xf2\x8d\x8a\x90\xb54\bH<9\xf1\x91 D\x85g,\xaa\xca\xcd\xd5\xcb\x9a\xb1j\xf2F\xce\x14\x92\xf9\xd7\xec\xc5\x1e\x8aq2\xce\x881f\xd7\xd4\x9e\xf6\xb6P\x01\xe8T\xb5X\xb9d-I\xd6\x91\xc3\xe2\x88S\x82l=\x02t$p\t\x8cY\x06\r\x83\xb0\x86\xc6\x84\x1c\xce\xb6\xf0\xdfC\x9fj<\xfe\xa4\x1f\x82L\xe4\x13+H\x00\x00\x00\x00\x00\x00\x00\x01M\x16\xa0\xbeB6\xfb\xa2-\x17\x93Q\x9fKusl5\xa2$M\xb4\x18\x1db\xf3\xce\x8c\xe5Rna\xd5\xbbQ\xc7\xa7+\vH\xc1l\x1bIv\xe8_\x00', 0x6c000, 0x63)
acct$auto(&(0x7f0000000580)='u[,&*}\x00\a\x00\x00\x00?\xa4\x1fN\xa1~5Z\xc7\r\f}M4\xa8m\xe6\x19[11\xab\xff-E\xac9(\xb4O\xa0t4h\x9f-gn\x1f\x0f\x18\xc5\x82-s\x83\xe6\xaeR\x81\r_\x0e\x19\x12\x85\bvf(e\xday)\t\x15\xf6\xc8\x9a!\x87I7\x8cD&zg\xb0a\xab|E\xde\x14\xee[\xc8\xc0\xa8Nh\x0f\xa3\xdbT\xb3\xb8\xd2F\xa0\xc4]\xaf\xc43&\xe4\x01\x05\xd2\x15\xf8\xf1!\x9d\x92\xbbHL9aD\xb4\x80\xed\xba>\"\xb6\x7f\xa3f\x1d@\x85\x059\xb0\x15kD\x8b\n\xd8$\x9c\a\xa1\x87\x84uA\xd8\xe7\xd2\xf3[r\xc5S&}D[\x97\xf1\xd9\xf8Y\x03\x84\xb4\xd7\x16\x19\xe5\x17\x10\xd8fcG:\xfbY8\x17w\x98?\x03@\xe5\x027B3/\x82\xda\x8c\xa5\xa9T\xden\xb5\xc2\x05\xad\x9c\xda\n.S\xcb\x10\x9d\xbc\x9a>\xd0\xb9\xae\x85\t\xc2\xd1\x16M\xef\x90\xcc\x19%s\x93\xa2\x9a\x06\x95\xe3\xa8C\xea\x9e\x0e\x82`\xe4\x0eZ\xac\xab_\xbd\xf3\x12\x1a\x9f\xeb{\xe3\x9d\xb6\x83H\x04\x1a\x7f\xc2\x178\xd1%\'\xd8D\xf9\xc9\xfe\x89\xa6\xdbR\xe3y\x9e\xe8:\xd8\x91\xe67t')

1.100142616s ago: executing program 5 (id=2672):
read$auto_state_fops_(0xffffffffffffffff, 0x0, 0x0) (async)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) (async)
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/bus/pci/00/03.0\x00', 0x8f3b7a51b80ebd01, 0x0)
write$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f0000000040)="205c2020027e0dc0023af10e9bfa1babfa203753ca9a20370a", 0x19)
mmap$auto(0x0, 0x20009, 0xc97, 0xeb1, 0x40000000000a5, 0x8000) (async)
mmap$auto(0x0, 0x2020006, 0x1000000000000007, 0xeb1, 0x0, 0x1008000) (async)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0) (async)
socket(0xa, 0x1, 0x6) (async)
socket(0x11, 0x80003, 0x300)
socket(0x10, 0x2, 0x0)
socket(0x2, 0x3, 0x2) (async)
socket(0x2, 0x3, 0x104)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000004000)='/dev/audio\x00', 0x102, 0x0) (async)
socketpair$auto(0x3, 0x5, 0x7, 0x0) (async)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/rxrpc/stats\x00', 0xaa102, 0x0)
write$auto(r1, 0x0, 0x1) (async)
io_uring_setup$auto(0x6, 0x0) (async)
openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/thread-self/limits\x00', 0x1c3000, 0x0) (async)
close_range$auto(0x2, 0x8000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
connect$auto(0x3, &(0x7f0000000000)=@in={0x2, 0x4e21, @rand_addr=0x64010102}, 0x55) (async)
setsockopt$auto(0x3, 0x10000000084, 0x7c, 0x0, 0x8) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
r2 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000140), 0x8040, 0x0)
io_uring_setup$auto(0xc, 0x0) (async)
ioctl$auto_dvb_demux_fops_dmxdev(r2, 0x403c6f2b, 0x0) (async)
readv$auto(0x3, &(0x7f00000002c0)={0x0, 0x8}, 0x8)

1.022426237s ago: executing program 0 (id=2673):
mmap$auto(0x8335, 0x7, 0x6, 0x14, 0xffffffffffffffff, 0x9)
r0 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/set_event\x00', 0x2, 0x0)
write$auto(r0, &(0x7f0000000040)='@\x00', 0x5)
r1 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x402080, 0x0)
ioctl$auto_PPPIOCSMRU(r1, 0x40047452, &(0x7f00000000c0)=0x5)
r2 = clone$auto(0x7, 0x8d8, &(0x7f0000000100)=0x401, &(0x7f0000000140)=0x5, 0xfffffffffffffffe)
r3 = prctl$auto_PR_SET_MM_ARG_END(0x1ff, 0x9, r2, 0x4, 0x7)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/self/fail-nth\x00', 0x200, 0x0)
mq_getsetattr$auto(0xffffffffffffffff, &(0x7f00000001c0)={0x8001, 0x70a, 0x5, 0x9}, &(0x7f0000000200)={0x7, 0x3, 0x8def, 0x6})
openat$auto_drm_crtc_crc_control_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000240), 0x101000, 0x0)
sendmsg$auto_NCSI_CMD_SET_CHANNEL_MASK(r3, &(0x7f0000000380)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000340)={&(0x7f00000002c0)={0x68, 0x0, 0x100, 0x70bd28, 0x25dfdbfc, {}, [@NCSI_ATTR_PACKAGE_MASK={0x8, 0x7, 0x4}, @NCSI_ATTR_CHANNEL_ID={0x8, 0x4, 0x7fffffff}, @NCSI_ATTR_MULTI_FLAG={0x4}, @NCSI_ATTR_PACKAGE_ID={0x8, 0x3, 0x44f6}, @NCSI_ATTR_CHANNEL_MASK={0x8, 0x8, 0x9}, @NCSI_ATTR_DATA={0x26, 0x5, "798576ba002b36b8d46f69f26c65a5a1708b789ad5e5e9a321586b1bd690cf3e9776"}, @NCSI_ATTR_CHANNEL_ID={0x8, 0x4, 0x1}]}, 0x68}, 0x1, 0x0, 0x0, 0x20008000}, 0x8000)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_smbd_genl(&(0x7f0000000400), r3)
sendmsg$auto_KSMBD_EVENT_UNSPEC(r4, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x14, r5, 0x100, 0x70bd2d, 0x25dfdbfb, {}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x40844}, 0x24040040)
prlimit64$auto(r2, 0x8, &(0x7f0000000500)={0x8, 0x1}, &(0x7f0000000540)={0x2, 0x6})
msgctl$auto_MSG_INFO(0x8, 0xc, &(0x7f0000000640)={{0x4e, <r6=>0xee00, <r7=>0x0, 0x9, 0xfffffff7, 0xffffffff, 0x9a}, &(0x7f00000005c0)=0x7e, &(0x7f0000000600)=0x7, 0xfffffffffffffff7, 0xfffffffffffffff9, 0x8000000000000001, 0x3, 0x0, 0x6, 0xe7d1, 0x1000, @raw=0x80000001, @inferred=r2})
stat$auto(&(0x7f00000006c0)='./file0\x00', &(0x7f0000000700)={0x4, 0x1, 0x9, 0xfffff61f, <r8=>0xee00, 0xee00, 0x0, 0x4, 0x4, 0x0, 0x3, 0x4, 0x2, 0x10001, 0x4, 0x6, 0x1})
sendmsg$auto_NL802154_CMD_SET_ACKREQ_DEFAULT(r3, &(0x7f0000000880)={&(0x7f0000000580), 0xc, &(0x7f0000000840)={&(0x7f00000007c0)={0x7c, 0x0, 0x1, 0x70bd27, 0x25dfdbff, {}, [@NL802154_ATTR_SEC_OUT_KEY_ID={0x18, 0x2b, 0x0, 0x1, [@typed={0x14, 0x3f, 0x0, 0x0, @ipv6=@remote}]}, @NL802154_ATTR_SUPPORTED_COMMANDS={0x48, 0x19, 0x0, 0x1, [@typed={0x8, 0x105, 0x0, 0x0, @uid=r6}, @nested={0x3c, 0xaa, 0x0, 0x1, [@typed={0x8, 0x14, 0x0, 0x0, @uid=r8}, @typed={0x18, 0x117, 0x0, 0x0, @str='/proc/self/fail-nth\x00'}, @typed={0x14, 0x9, 0x0, 0x0, @ipv6=@loopback}, @nested={0x4, 0x11e}]}]}, @NL802154_ATTR_SEC_OUT_LEVEL={0x8, 0x2a, 0x6}]}, 0x7c}, 0x1, 0x0, 0x0, 0x80}, 0x20000000)
r9 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000900), r4)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000940)={'ip6_vti0\x00', <r10=>0x0})
sendmsg$auto_ETHTOOL_MSG_MODULE_GET(r3, &(0x7f0000000a00)={&(0x7f00000008c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000009c0)={&(0x7f0000000980)={0x40, r9, 0x8, 0x70bd29, 0x25dfdbfc, {}, [@ETHTOOL_A_MODULE_HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond0\x00'}]}, @ETHTOOL_A_MODULE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xbc31}]}]}, 0x40}, 0x1, 0x0, 0x0, 0x4004000}, 0x20004000)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000a80)={'veth1_vlan\x00', <r11=>0x0})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000ac0)={'veth1_to_hsr\x00', <r12=>0x0})
sendmsg$auto_ETHTOOL_MSG_PRIVFLAGS_SET(r3, &(0x7f0000000ec0)={&(0x7f0000000a40)={0x10, 0x0, 0x0, 0x42094}, 0xc, &(0x7f0000000e80)={&(0x7f0000000b00)={0x378, 0x0, 0x300, 0x70bd2b, 0x25dfdbfb, {}, [@ETHTOOL_A_PRIVFLAGS_HEADER={0x50, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pimreg0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xc85}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvtap0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}]}, @ETHTOOL_A_PRIVFLAGS_FLAGS={0x1d4, 0x2, 0x0, 0x1, [@nested={0x1ce, 0x109, 0x0, 0x1, [@typed={0x8, 0xaa, 0x0, 0x0, @u32=0x1}, @generic="d68cd66f7f64fd6493b4ab85314f02555db0f0f28e4e8ce6550ec6988195db51312c4fc6b9b239b8724566b2fbf8f15248fa32dd607eb52944ed522f29e447004a606b702dc46b47c65c55813c40ca3111a6a6b94d823454826c89e75d6763ce1b9ce958fe5a57ecdad5625b3bf10c30de2f7957c1cfb476d2bee6bcdcc764ed9763e3648ddd50d638de2556e6e845c0bb97294719967fdabd03eee517fb9fc375cf0a", @generic="021b96dae4bb7cb62de80a25328dd7e7625697441a260862984c98f0bee3f4698ae577537d6e090ebe85a96a796f01f794f3f50d2e91df5679bd7ffd6d142466d30523f2dc2144ca55bdd68df82ee2cf79369c57e2f9d43f7babc4dd365f8b36232ac3360276d5d074e64f55a75a01a904dc367d009b60d46f9bad0b2358267cd439828aed9555a459f096", @generic="cf5c450c1390e2fad6cfbedafbbc78774d3f0c97eb9e869df179a7d428b8856e25359fc87fdccd74687899d297569925affaed535db9c08f9b11a19528f46501a790b8c23c775e6ae8ea453775d3be1e06cd6cf8f430d44a1c5884ef15140b7c0042883db40d4c4f057dac062edd3d64af17d1cd6c9b17c333ecd43838200e97ebb3733e8bf690be1f3f3ee0265a16c17a8968ad"]}]}, @ETHTOOL_A_PRIVFLAGS_FLAGS={0x85, 0x2, 0x0, 0x1, [@generic="2ee25a51d625c4758c8ffce97641148a6584be4b3f79c9bd3daf64bc174970c68c65234b5c71adc9d5ea25238db42da047353fab3010d19fa9d7852353c37f35d07d8ad4d992e17e251a544f54438d1fcf72959169c7681216adbfd53109918ed3fbafde2676c216544503acab97c23bfdc7323900893df435a5d4e4dcf04909ff"]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0x90, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r12}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'lo\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x6}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'nr0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bond\x00'}]}]}, 0x378}, 0x1, 0x0, 0x0, 0x84}, 0x4)
openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000f00), 0x444000, 0x0)
clone$auto(0x800, 0x9, &(0x7f0000000f40)=0x9, &(0x7f0000000f80)=0xc, 0xc)
newfstatat$auto(r3, &(0x7f0000000fc0)='./file0\x00', &(0x7f0000001000)={0x3, 0x4, 0x7fffffff, 0x705, r6, r7, 0x0, 0xfca4, 0x9, 0x0, 0x0, 0x6, 0x7, 0x40, 0x0, 0x5, 0xa}, 0x4)
r13 = syz_genetlink_get_family_id$auto_nlbl_mgmt(&(0x7f0000001100), r3)
sendmsg$auto_NLBL_MGMT_C_ADDDEF(r4, &(0x7f00000011c0)={&(0x7f00000010c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000001180)={&(0x7f0000001140)={0x3c, r13, 0x100, 0x70bd2a, 0x25dfdbfc, {}, [@NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x6}, @NLBL_MGMT_A_VERSION={0x8, 0x3, 0xd}, @NLBL_MGMT_A_CV4DOI={0x8, 0x4, 0x101}, @NLBL_MGMT_A_CV4DOI={0x8, 0x4, 0x4}, @NLBL_MGMT_A_CV4DOI={0x8, 0x4, 0x100}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8001)
ioctl$auto_FIOQSIZE(r1, 0x5460, 0xffffffffffff0000)

528.080351ms ago: executing program 5 (id=2674):
mmap$auto(0xffffffffffffffff, 0x6, 0x4, 0x9b72, 0xffffffffffffffff, 0x8000) (async)
r0 = getpid() (async, rerun: 64)
r1 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/mtd0ro\x00', 0xa00, 0x0) (async, rerun: 64)
mmap$auto(0x429, 0x2020009, 0x3, 0xeb5, 0xfffffffffffffffa, 0x8000) (async)
ioperm$auto(0x3, 0x5, 0x149) (async)
fgetxattr$auto(0xffffffffffffffff, 0x0, 0x0, 0x3) (async, rerun: 32)
close_range$auto(0x2, 0x8000, 0x0) (rerun: 32)
io_uring_setup$auto(0x6, 0x0) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x211, 0x2, 0x8000)
lsm_list_modules$auto(0x0, 0x0, 0x0)
madvise$auto(0x1000, 0x6, 0x1) (async)
socket(0xa, 0x2, 0x0) (async)
setsockopt$auto(0x3, 0x0, 0x19, 0xffffffffffffffff, 0x0)
io_uring_register$auto(0x2, 0xd, 0x0, 0x800) (async)
openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/usb/usbmon/5t\x00', 0x503002, 0x0) (async)
process_vm_readv$auto(r0, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000040), 0xffffffff}, 0x6, 0x0) (async)
bpf$auto_BPF_LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000080)=@bpf_attr_7={@link_id, 0x80000001, 0xf, r1}, 0xadc) (async)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) (async, rerun: 64)
prctl$auto(0x1000000003b, 0x4, 0x4, 0xac, 0x7) (async, rerun: 64)
mmap$auto(0x0, 0x40009, 0x7, 0x9b72, 0x7, 0x28000) (async)
r2 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0)
ioctl$auto(r2, 0x80045515, 0x1) (async)
madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async, rerun: 64)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) (async, rerun: 64)
mq_timedreceive$auto(0xffffffffffffffff, 0x0, 0x5, 0x0, 0xffffffffffffffff)
close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000180)='/dev/tty12\x00', 0x800, 0x0)
r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0x900, 0x0)
ioctl$auto_BLKBSZSET(r3, 0x40081271, &(0x7f0000000040)=0x5)
socketpair$auto(0xd550, 0x72, 0x8000000000000000, 0x0)

523.090702ms ago: executing program 1 (id=2675):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0)
mmap$auto(0x0, 0x810004, 0xfff, 0x8000000008012, 0x3, 0x8000)
write$auto(r0, 0x0, 0xb5d0)

291.042374ms ago: executing program 4 (id=2676):
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x82000, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/cifs/Stats\x00', 0x28102, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0x20000000000000d4, 0x1, 0x6, 0x0, 0x7, 0x368a, 0x2, {0x100000000, 0x3}, 0x5, 0x8, 0xfffffffffffffffd, 0x1007fff, 0x0, 0x8, 0x81, 0xdfffffffffff628e, 0x6, 0xdeb1, 0x808})
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x1, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0xa3db)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS3\x00', 0x0, 0x0)
ioctl$auto(r1, 0x5453, r1)
getrandom$auto(0x0, 0x8, 0x7)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4)
madvise$auto(0x110c230000, 0x1, 0x9)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/i8042/serio0/force_release\x00', 0xc2082, 0x0)
write$auto(r2, &(0x7f00000004c0)='N\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x7ff)
read$auto_proc_iter_file_ops_compat_inode(0xffffffffffffffff, &(0x7f00000007c0)=""/153, 0x99)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
socket(0x25, 0x5, 0x0)
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
r4 = open$dir(&(0x7f0000000000)='./file0\x00', 0x42, 0x20)
open_tree$auto(r4, 0x0, 0x1001)
mremap$auto(0x0, 0x7, 0x3fd6, 0x3, 0x20000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
statx$auto(0xffffff9c, 0x0, 0x1000, 0x803, 0x0)
setsockopt$auto(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x56b)
mmap$auto(0x0, 0x40009, 0x36, 0x9b72, 0x7, 0x28000)
ioctl$auto_IOCTL_VMCI_QUEUEPAIR_SETVA(0xffffffffffffffff, 0x7a4, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

249.771424ms ago: executing program 0 (id=2677):
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) (async)
socket(0x22, 0x2, 0x2) (async)
socket(0x22, 0x2, 0x2) (async)
socket(0xa, 0x2, 0x88)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket(0xa, 0x2, 0x0)
syncfs$auto(0x4)
openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000000), 0x8080, 0x0) (async)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x66ab80, 0x0) (async)
r0 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000400), 0x101000, 0x0)
ioctl$auto_UI_SET_EVBIT(r0, 0x40045564, &(0x7f0000000440)=0x1) (async)
r1 = socket(0x10, 0x2, 0x4)
sendmsg$auto_NFSD_CMD_THREADS_SET(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400c7"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000) (async)
close_range$auto(0x2, 0x8, 0x0)
mseal$auto(0x5, 0x9, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000001980)={0x38, r3, 0x1b, 0x70bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0x8, 0x3, 0x0, 0x1, [@nested={0x4, 0x17}]}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f17790485908286dd"}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x38}, 0x1, 0x0, 0x0, 0x50}, 0xc800) (async, rerun: 64)
r4 = socket(0x10, 0x2, 0xc) (rerun: 64)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="18000000bbbd5aadaad5b2d5a16d328e4691721ebaf2e8ec51a3b429ba90195ec491ddb8a42a96be1c6a03c60b7c6c0ef36afff3e9c3d757eceb6994acc82538ad4f6cbc9b1e9d5cff70877b0ee253bd529734398ddcd00842814150a6cfa39aa524869575131c32b3e7da9e2a44bb6722240a9c403dd23f828cdeebda4ec96e31730a6d13a25e4dc9b6", @ANYRES8=r4, @ANYBLOB="01"], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x40001) (async, rerun: 32)
write$auto(r1, &(0x7f0000000000)='-\x00', 0xfdef) (rerun: 32)
unshare$auto(0x40000080)
bpf$auto(0x2, 0x0, 0xc) (async)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/platform/vkms/graphics/fb0/bits_per_pixel\x00', 0x82942, 0x0)
sendfile$auto(r5, r5, 0x0, 0x200)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x129800, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) (async)
futex_waitv$auto(&(0x7f0000000300)={0x0, 0x4, 0x2}, 0x1, 0x0, &(0x7f0000000340)={0x225c17d03, 0x800006}, 0x0) (async)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card1\x00', 0x0, 0x0)

0s ago: executing program 5 (id=2678):
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, 0x0, 0x82000, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
mmap$auto(0x0, 0x400008, 0x1000df, 0x9b72, 0x2, 0x8000)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vbi13\x00', 0xc840, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r1 = openat$auto_generic(0xffffffffffffff9c, &(0x7f00000032c0)='/proc/kmsg\x00', 0x80300, 0x0)
socket(0x1d, 0x2, 0x2)
accept$auto(0x3, 0xffffffffffffffff, 0xffffffffffffffff)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/platform/vidtv.0/i2c-0/new_device\x00', 0x2001, 0x0)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card1/pcm0p/sub7/info\x00', 0x40000, 0x0)
read$auto(r2, 0x0, 0x100000000)
write$auto(0x3, 0x0, 0x4000fdef)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_PAUSE_SET(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000340)={0x34, r4, 0x1, 0x70bd29, 0x25dfdbfd, {}, [@ETHTOOL_A_PAUSE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}, @ETHTOOL_A_PAUSE_AUTONEG={0x5, 0x2, 0x1}]}, 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x4040000)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
io_uring_setup$auto(0x6, 0x0)
r5 = socket(0x10, 0x2, 0x4)
setsockopt$auto(r5, 0x104000000000010e, 0x1, 0x0, 0x16)
read$auto_proc_page_owner_threshold_(r1, &(0x7f0000000300)=""/75, 0x4b)
r6 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0x60800, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_WRITE(r6, 0xc4c85513, &(0x7f0000000840)={{@raw=0x2, 0x3a8b, 0xba28, 0x3, "708c58271a7985a7f5ed0dd58af8d1d4a7553c2ff48b48a8a57689adcc1ca6d2cbfa93b50590c900", @raw=0x9a8a}, 0x0, @iec958={"44f40786222108a9c5506cfd329d754c36be54c636a911f0", "f9a6b4e57406bc92fad3479045fa05eed1ffc1356e87e2f954e565cb1e86409460abdaf041b0a8ca14092e4de2a45f8ab903a794748abb64ba829641f6772ffff482269fb4086c3438e1c45061a29474075094aaaa000708bf404659f40fc77b77e7c2bb6ccdeeace3616f13c33888ec44b8970403bbabce0db634dba78d76a2881d079c91969b9b0d7a44500b8ca1c4ef54fc", 0x0, "728b97ee"}, "fa491e08108961dd5708680f1134935851612a52d629535f54f3832490fc4e7f79daef312b3dfb307044713a4801d409aefe3f932f78fc311771094e769c0095f94ee6d74f2517f34a0bbbf502bf3392ac4d93bd0500000000000000312cf035bc44117db9b683eedc5e02a703fc82750d8d6ebac0c3019ef8e6c1eecea33a59"})
socket(0xa, 0x2, 0x3a)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4)

kernel console output (not intermixed with test programs):

: 0000000000004004 RSI: 0000200000000240 RDI: 000000000000000a
[  697.401130][T15040] RBP: 00007f0a37c10ab1 R08: 0000000000000000 R09: 0000000000000000
[  697.401145][T15040] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  697.401160][T15040] R13: 0000000000000000 R14: 00007f0a37db5fa0 R15: 00007ffef8020008
[  697.401190][T15040]  </TASK>
[  698.309402][T15062] netlink: 1436 bytes leftover after parsing attributes in process `syz.0.2047'.
[  698.367074][   T30] audit: type=1800 audit(4294971574.567:21): pid=15035 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2041" name="SYSV0000000a" dev="hugetlbfs" ino=0 res=0 errno=0
[  698.388583][T15062] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[  698.638522][T15072] netlink: 48 bytes leftover after parsing attributes in process `syz.0.2048'.
[  699.838841][T15082] [U] 	
[  699.841697][T15082] [U] 
[  699.844412][T15082] [U] 
[  699.914574][T15082] [U] 
[  700.355772][T14726] Bluetooth: hci3: unexpected subevent 0x01 length: 4 < 18
[  701.150448][T15105] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  701.249053][T15105] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  701.310384][T15105] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  701.377071][T15105] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  701.431385][T15105] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  703.214384][T14726] Bluetooth: hci0: command 0x0406 tx timeout
[  703.290905][T14726] Bluetooth: hci2: command 0x0c1a tx timeout
[  703.450359][T14726] Bluetooth: hci4: command 0x0c1a tx timeout
[  703.456883][ T5848] Bluetooth: hci3: command 0x0c1a tx timeout
[  703.917302][T15151] FAULT_INJECTION: forcing a failure.
[  703.917302][T15151] name failslab, interval 1, probability 0, space 0, times 0
[  703.959747][T15151] CPU: 0 UID: 0 PID: 15151 Comm: syz.1.2058 Tainted: G     U              6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0 PREEMPT(full) 
[  703.959791][T15151] Tainted: [U]=USER
[  703.959799][T15151] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  703.959815][T15151] Call Trace:
[  703.959823][T15151]  <TASK>
[  703.959832][T15151]  dump_stack_lvl+0x16c/0x1f0
[  703.959875][T15151]  should_fail_ex+0x512/0x640
[  703.959911][T15151]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  703.959944][T15151]  should_failslab+0xc2/0x120
[  703.959977][T15151]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  703.960006][T15151]  ? __alloc_skb+0x2b2/0x380
[  703.960034][T15151]  ? finish_task_switch.isra.0+0x221/0xc10
[  703.960077][T15151]  __alloc_skb+0x2b2/0x380
[  703.960104][T15151]  ? __pfx___alloc_skb+0x10/0x10
[  703.960135][T15151]  ? apparmor_capable+0x114/0x1d0
[  703.960168][T15151]  netlink_alloc_large_skb+0x69/0x130
[  703.960203][T15151]  netlink_sendmsg+0x6a1/0xdd0
[  703.960240][T15151]  ? __pfx_netlink_sendmsg+0x10/0x10
[  703.960284][T15151]  ____sys_sendmsg+0xa98/0xc70
[  703.960323][T15151]  ? copy_msghdr_from_user+0x10a/0x160
[  703.960352][T15151]  ? __pfx_____sys_sendmsg+0x10/0x10
[  703.960395][T15151]  ? try_to_wake_up+0xa2f/0x1680
[  703.960424][T15151]  ___sys_sendmsg+0x134/0x1d0
[  703.960455][T15151]  ? __pfx____sys_sendmsg+0x10/0x10
[  703.960520][T15151]  __sys_sendmsg+0x16d/0x220
[  703.960550][T15151]  ? __pfx___sys_sendmsg+0x10/0x10
[  703.960579][T15151]  ? __x64_sys_futex+0x1e0/0x4c0
[  703.960613][T15151]  ? rcu_is_watching+0x12/0xc0
[  703.960644][T15151]  do_syscall_64+0xcd/0x230
[  703.960684][T15151]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  703.960709][T15151] RIP: 0033:0x7fc9bef8e969
[  703.960728][T15151] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  703.960752][T15151] RSP: 002b:00007fc9bfeab038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  703.960775][T15151] RAX: ffffffffffffffda RBX: 00007fc9bf1b5fa0 RCX: 00007fc9bef8e969
[  703.960792][T15151] RDX: 0000000004000010 RSI: 0000200000000100 RDI: 0000000000000008
[  703.960807][T15151] RBP: 00007fc9bf010ab1 R08: 0000000000000000 R09: 0000000000000000
[  703.960822][T15151] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  703.960837][T15151] R13: 0000000000000000 R14: 00007fc9bf1b5fa0 R15: 00007fff273afc68
[  703.960867][T15151]  </TASK>
[  704.758033][T15152] netlink: 186 bytes leftover after parsing attributes in process `syz.1.2058'.
[  705.371463][T14726] Bluetooth: hci2: command 0x0c1a tx timeout
[  706.403190][T15194] can: request_module (can-proto-0) failed.
[  708.221248][   T30] audit: type=1800 audit(4294971584.507:22): pid=15218 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2070" name="dbroot" dev="configfs" ino=52136 res=0 errno=0
[  708.281543][T15223] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2071'.
[  711.953491][T15291] FAULT_INJECTION: forcing a failure.
[  711.953491][T15291] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  712.000425][T15291] CPU: 0 UID: 0 PID: 15291 Comm: syz.4.2087 Tainted: G     U              6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0 PREEMPT(full) 
[  712.000473][T15291] Tainted: [U]=USER
[  712.000482][T15291] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  712.000496][T15291] Call Trace:
[  712.000504][T15291]  <TASK>
[  712.000516][T15291]  dump_stack_lvl+0x16c/0x1f0
[  712.000558][T15291]  should_fail_ex+0x512/0x640
[  712.000599][T15291]  _copy_from_iter+0x2a4/0x15b0
[  712.000641][T15291]  ? __alloc_skb+0x200/0x380
[  712.000670][T15291]  ? __pfx__copy_from_iter+0x10/0x10
[  712.000711][T15291]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  712.000743][T15291]  ? __lock_acquire+0xaa4/0x1ba0
[  712.000783][T15291]  netlink_sendmsg+0x829/0xdd0
[  712.000820][T15291]  ? __pfx_netlink_sendmsg+0x10/0x10
[  712.000864][T15291]  ____sys_sendmsg+0xa98/0xc70
[  712.000902][T15291]  ? copy_msghdr_from_user+0x10a/0x160
[  712.000932][T15291]  ? __pfx_____sys_sendmsg+0x10/0x10
[  712.000974][T15291]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  712.001030][T15291]  ___sys_sendmsg+0x134/0x1d0
[  712.001061][T15291]  ? __pfx____sys_sendmsg+0x10/0x10
[  712.001127][T15291]  __sys_sendmsg+0x16d/0x220
[  712.001158][T15291]  ? __pfx___sys_sendmsg+0x10/0x10
[  712.001187][T15291]  ? __x64_sys_futex+0x1e0/0x4c0
[  712.001223][T15291]  ? rcu_is_watching+0x12/0xc0
[  712.001254][T15291]  do_syscall_64+0xcd/0x230
[  712.001294][T15291]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  712.001319][T15291] RIP: 0033:0x7f3e0398e969
[  712.001338][T15291] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  712.001362][T15291] RSP: 002b:00007f3e04766038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  712.001385][T15291] RAX: ffffffffffffffda RBX: 00007f3e03bb5fa0 RCX: 00007f3e0398e969
[  712.001401][T15291] RDX: 0000000000008880 RSI: 0000200000001e00 RDI: 0000000000000008
[  712.001416][T15291] RBP: 00007f3e03a10ab1 R08: 0000000000000000 R09: 0000000000000000
[  712.001435][T15291] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  712.001450][T15291] R13: 0000000000000000 R14: 00007f3e03bb5fa0 R15: 00007ffecc216ee8
[  712.001480][T15291]  </TASK>
[  712.266113][T15291] netlink: 186 bytes leftover after parsing attributes in process `syz.4.2087'.
[  712.659885][T15303] kAFS: No cell specified
[  713.254901][T14726] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[  714.284613][T15331] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2093'.
[  714.324044][T15331] nbd: must specify at least one socket
[  714.539081][T15335] netlink: 338 bytes leftover after parsing attributes in process `syz.0.2094'.
[  714.591539][T15335] netlink: 338 bytes leftover after parsing attributes in process `syz.0.2094'.
[  717.932210][T14726] Bluetooth: hci4: unexpected subevent 0x01 length: 4 < 18
[  718.070855][T15374] kexec: Could not allocate control_code_buffer
[  719.998910][T15402] random: crng reseeded on system resumption
[  721.625147][T15413] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2107'.
[  722.540283][   T30] audit: type=1804 audit(4294971598.817:23): pid=15440 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.2112" name="/newroot/sys/kernel/tracing/trace" dev="tracefs" ino=1257 res=1 errno=0
[  722.851285][T15440] FAULT_INJECTION: forcing a failure.
[  722.851285][T15440] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  723.012704][T15440] CPU: 0 UID: 0 PID: 15440 Comm: syz.0.2112 Tainted: G     U              6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0 PREEMPT(full) 
[  723.012755][T15440] Tainted: [U]=USER
[  723.012766][T15440] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  723.012785][T15440] Call Trace:
[  723.012796][T15440]  <TASK>
[  723.012808][T15440]  dump_stack_lvl+0x16c/0x1f0
[  723.012849][T15440]  should_fail_ex+0x512/0x640
[  723.012890][T15440]  _copy_from_iter+0x2a4/0x15b0
[  723.012931][T15440]  ? __alloc_skb+0x200/0x380
[  723.012959][T15440]  ? __pfx__copy_from_iter+0x10/0x10
[  723.013005][T15440]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  723.013036][T15440]  ? __lock_acquire+0xaa4/0x1ba0
[  723.013076][T15440]  netlink_sendmsg+0x829/0xdd0
[  723.013111][T15440]  ? __pfx_netlink_sendmsg+0x10/0x10
[  723.013153][T15440]  ____sys_sendmsg+0xa98/0xc70
[  723.013190][T15440]  ? copy_msghdr_from_user+0x10a/0x160
[  723.013218][T15440]  ? __pfx_____sys_sendmsg+0x10/0x10
[  723.013266][T15440]  ___sys_sendmsg+0x134/0x1d0
[  723.013296][T15440]  ? __pfx____sys_sendmsg+0x10/0x10
[  723.013359][T15440]  __sys_sendmsg+0x16d/0x220
[  723.013388][T15440]  ? __pfx___sys_sendmsg+0x10/0x10
[  723.013415][T15440]  ? __x64_sys_futex+0x1e0/0x4c0
[  723.013449][T15440]  ? rcu_is_watching+0x12/0xc0
[  723.013479][T15440]  do_syscall_64+0xcd/0x230
[  723.013517][T15440]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  723.013541][T15440] RIP: 0033:0x7f803958e969
[  723.013559][T15440] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  723.013582][T15440] RSP: 002b:00007f803a372038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  723.013604][T15440] RAX: ffffffffffffffda RBX: 00007f80397b5fa0 RCX: 00007f803958e969
[  723.013620][T15440] RDX: 0000000000004004 RSI: 0000200000000240 RDI: 000000000000000a
[  723.013635][T15440] RBP: 00007f8039610ab1 R08: 0000000000000000 R09: 0000000000000000
[  723.013650][T15440] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  723.013664][T15440] R13: 0000000000000000 R14: 00007f80397b5fa0 R15: 00007fff23e3e128
[  723.013692][T15440]  </TASK>
[  724.964227][T15460] kernel read not supported for file /set_event_notrace_pid (pid: 15460 comm: syz.1.2117)
[  724.970340][   T30] audit: type=1800 audit(4294971601.247:24): pid=15460 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2117" name="set_event_notrace_pid" dev="tracefs" ino=1074 res=0 errno=0
[  728.632178][T15524] netlink: 'syz.5.2127': attribute type 11 has an invalid length.
[  729.064000][T15522] FAULT_INJECTION: forcing a failure.
[  729.064000][T15522] name failslab, interval 1, probability 0, space 0, times 0
[  729.259103][T15530] netlink: 186 bytes leftover after parsing attributes in process `syz.0.2129'.
[  729.308832][T15522] CPU: 0 UID: 0 PID: 15522 Comm: syz.0.2129 Tainted: G     U              6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0 PREEMPT(full) 
[  729.308874][T15522] Tainted: [U]=USER
[  729.308883][T15522] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  729.308898][T15522] Call Trace:
[  729.308906][T15522]  <TASK>
[  729.308916][T15522]  dump_stack_lvl+0x16c/0x1f0
[  729.308958][T15522]  should_fail_ex+0x512/0x640
[  729.308995][T15522]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  729.309027][T15522]  should_failslab+0xc2/0x120
[  729.309060][T15522]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  729.309088][T15522]  ? find_held_lock+0x2b/0x80
[  729.309111][T15522]  ? __alloc_skb+0x2b2/0x380
[  729.309148][T15522]  __alloc_skb+0x2b2/0x380
[  729.309175][T15522]  ? __pfx___alloc_skb+0x10/0x10
[  729.309207][T15522]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  729.309245][T15522]  netlink_alloc_large_skb+0x69/0x130
[  729.309288][T15522]  netlink_sendmsg+0x6a1/0xdd0
[  729.309325][T15522]  ? __pfx_netlink_sendmsg+0x10/0x10
[  729.309369][T15522]  __sys_sendto+0x495/0x510
[  729.309409][T15522]  ? __pfx___sys_sendto+0x10/0x10
[  729.309444][T15522]  ? fd_install+0x225/0x750
[  729.309476][T15522]  ? __pfx___sys_socket+0x10/0x10
[  729.309514][T15522]  ? rcu_is_watching+0x12/0xc0
[  729.309540][T15522]  __x64_sys_sendto+0xe0/0x1c0
[  729.309564][T15522]  ? do_syscall_64+0x91/0x230
[  729.309598][T15522]  ? lockdep_hardirqs_on+0x7c/0x110
[  729.309632][T15522]  do_syscall_64+0xcd/0x230
[  729.309669][T15522]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  729.309692][T15522] RIP: 0033:0x7f80395907fc
[  729.309711][T15522] Code: 2a 5f 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 70 5f 02 00 48 8b
[  729.309734][T15522] RSP: 002b:00007f803a370ec0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  729.309757][T15522] RAX: ffffffffffffffda RBX: 00007f803a370fc0 RCX: 00007f80395907fc
[  729.309772][T15522] RDX: 0000000000000020 RSI: 00007f803a371010 RDI: 0000000000000009
[  729.309787][T15522] RBP: 0000000000000000 R08: 00007f803a370f14 R09: 000000000000000c
[  729.309801][T15522] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000009
[  729.309815][T15522] R13: 00007f803a370f68 R14: 00007f803a371010 R15: 0000000000000000
[  729.309844][T15522]  </TASK>
[  731.371497][T15557] netlink: 326 bytes leftover after parsing attributes in process `syz.5.2135'.
[  738.011411][T15636] could not allocate digest TFM handle 
[  738.491835][T15646] netlink: 72 bytes leftover after parsing attributes in process `syz.0.2153'.
[  738.882697][T15623] random: crng reseeded on system resumption
[  739.162696][T15648] warning: `syz.0.2153' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  739.689836][T15658] FAULT_INJECTION: forcing a failure.
[  739.689836][T15658] name failslab, interval 1, probability 0, space 0, times 0
[  739.762744][T15658] CPU: 0 UID: 0 PID: 15658 Comm: syz.1.2155 Tainted: G     U              6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0 PREEMPT(full) 
[  739.762786][T15658] Tainted: [U]=USER
[  739.762795][T15658] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  739.762810][T15658] Call Trace:
[  739.762818][T15658]  <TASK>
[  739.762829][T15658]  dump_stack_lvl+0x16c/0x1f0
[  739.762871][T15658]  should_fail_ex+0x512/0x640
[  739.762908][T15658]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  739.762940][T15658]  should_failslab+0xc2/0x120
[  739.762972][T15658]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  739.763000][T15658]  ? d_instantiate+0x77/0x90
[  739.763038][T15658]  ? alloc_empty_file+0x55/0x1e0
[  739.763073][T15658]  alloc_empty_file+0x55/0x1e0
[  739.763106][T15658]  alloc_file_pseudo+0x13a/0x230
[  739.763146][T15658]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  739.763186][T15658]  __shmem_file_setup+0x210/0x300
[  739.763215][T15658]  shmem_zero_setup+0x93/0x1a0
[  739.763247][T15658]  __mmap_region+0x2036/0x27c0
[  739.763280][T15658]  ? __pfx___mmap_region+0x10/0x10
[  739.763306][T15658]  ? trace_sched_exit_tp+0xde/0x130
[  739.763356][T15658]  ? __pfx___schedule+0x10/0x10
[  739.763419][T15658]  ? trace_cap_capable+0x18d/0x200
[  739.763447][T15658]  ? cap_capable+0xb3/0x250
[  739.763476][T15658]  mmap_region+0x1ab/0x3f0
[  739.763529][T15658]  do_mmap+0xd8e/0x11b0
[  739.763571][T15658]  ? __pfx_do_mmap+0x10/0x10
[  739.763608][T15658]  ? __pfx_down_write_killable+0x10/0x10
[  739.763638][T15658]  vm_mmap_pgoff+0x281/0x450
[  739.763680][T15658]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  739.763722][T15658]  ? __x64_sys_futex+0x1e0/0x4c0
[  739.763748][T15658]  ? __x64_sys_futex+0x1e9/0x4c0
[  739.763779][T15658]  ksys_mmap_pgoff+0x7d/0x5c0
[  739.763815][T15658]  ? rcu_is_watching+0x12/0xc0
[  739.763841][T15658]  __x64_sys_mmap+0x125/0x190
[  739.763868][T15658]  do_syscall_64+0xcd/0x230
[  739.763909][T15658]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  739.763933][T15658] RIP: 0033:0x7fc9bef8e969
[  739.763965][T15658] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  739.763988][T15658] RSP: 002b:00007fc9bfeab038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  739.764011][T15658] RAX: ffffffffffffffda RBX: 00007fc9bf1b5fa0 RCX: 00007fc9bef8e969
[  739.764027][T15658] RDX: 0000000000000003 RSI: 0000000002020009 RDI: 0000000000000000
[  739.764041][T15658] RBP: 00007fc9bf010ab1 R08: fffffffffffffffa R09: 0000000000008000
[  739.764056][T15658] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000
[  739.764070][T15658] R13: 0000000000000000 R14: 00007fc9bf1b5fa0 R15: 00007fff273afc68
[  739.764099][T15658]  </TASK>
[  740.563026][T15664] [U] 
[  740.565878][T15664] [U] 
[  740.568587][T15664] [U] 
[  740.571292][T15664] [U] 
[  740.610751][T15665] [U] 
[  740.881368][   T30] audit: type=1800 audit(4294971617.167:25): pid=15672 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.2157" name="discovery_nqn" dev="configfs" ino=54537 res=0 errno=0
[  741.811866][T14726] Bluetooth: hci3: unexpected subevent 0x01 length: 4 < 18
[  743.073660][T15704] kafs: addr_prefs: Too many elements in string
[  744.448983][T15721] blktrace: Concurrent blktraces are not allowed on loop2
[  744.597494][T15721] FAULT_INJECTION: forcing a failure.
[  744.597494][T15721] name failslab, interval 1, probability 0, space 0, times 0
[  744.636590][T15721] CPU: 0 UID: 0 PID: 15721 Comm: syz.1.2167 Tainted: G     U              6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0 PREEMPT(full) 
[  744.636629][T15721] Tainted: [U]=USER
[  744.636637][T15721] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  744.636652][T15721] Call Trace:
[  744.636660][T15721]  <TASK>
[  744.636669][T15721]  dump_stack_lvl+0x16c/0x1f0
[  744.636710][T15721]  should_fail_ex+0x512/0x640
[  744.636744][T15721]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  744.636776][T15721]  should_failslab+0xc2/0x120
[  744.636806][T15721]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  744.636832][T15721]  ? __proc_create+0xc3/0x8c0
[  744.636858][T15721]  ? __proc_create+0x2ce/0x8c0
[  744.636888][T15721]  __proc_create+0x2ce/0x8c0
[  744.636916][T15721]  ? __pfx___proc_create+0x10/0x10
[  744.636944][T15721]  ? insert_header+0xf8d/0x1480
[  744.636973][T15721]  ? __register_sysctl_table+0x736/0x1900
[  744.637004][T15721]  proc_create_reg+0x7d/0x180
[  744.637035][T15721]  proc_create_net_data+0x8e/0x1b0
[  744.637064][T15721]  ? __pfx_proc_create_net_data+0x10/0x10
[  744.637094][T15721]  ? __pfx___register_sysctl_table+0x10/0x10
[  744.637121][T15721]  ? is_module_address+0x69/0xf0
[  744.637153][T15721]  ? register_net_sysctl_sz+0x228/0x3e0
[  744.637177][T15721]  ? __pfx_nf_log_net_init+0x10/0x10
[  744.637206][T15721]  nf_log_net_init+0x69/0x450
[  744.637234][T15721]  ? __pfx_nf_log_net_init+0x10/0x10
[  744.637261][T15721]  ops_init+0x1df/0x5f0
[  744.637295][T15721]  setup_net+0x21e/0x850
[  744.637328][T15721]  ? __pfx_setup_net+0x10/0x10
[  744.637357][T15721]  ? lockdep_init_map_type+0x5c/0x280
[  744.637389][T15721]  ? __pfx_down_read_killable+0x10/0x10
[  744.637433][T15721]  ? debug_mutex_init+0x37/0x70
[  744.637459][T15721]  copy_net_ns+0x2a6/0x5f0
[  744.637495][T15721]  create_new_namespaces+0x3ea/0xad0
[  744.637530][T15721]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  744.637565][T15721]  ksys_unshare+0x45b/0xa40
[  744.637600][T15721]  ? __pfx_ksys_unshare+0x10/0x10
[  744.637631][T15721]  ? xfd_validate_state+0x5d/0x180
[  744.637656][T15721]  ? rcu_is_watching+0x12/0xc0
[  744.637686][T15721]  __x64_sys_unshare+0x31/0x40
[  744.637719][T15721]  do_syscall_64+0xcd/0x230
[  744.637758][T15721]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  744.637782][T15721] RIP: 0033:0x7fc9bef8e969
[  744.637802][T15721] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  744.637825][T15721] RSP: 002b:00007fc9bfeab038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  744.637847][T15721] RAX: ffffffffffffffda RBX: 00007fc9bf1b5fa0 RCX: 00007fc9bef8e969
[  744.637863][T15721] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  744.637877][T15721] RBP: 00007fc9bf010ab1 R08: 0000000000000000 R09: 0000000000000000
[  744.637892][T15721] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  744.637907][T15721] R13: 0000000000000000 R14: 00007fc9bf1b5fa0 R15: 00007fff273afc68
[  744.637955][T15721]  </TASK>
[  745.022874][T15725] netlink: Conntrack attr has 4 unknown bytes
[  745.030148][T15725] binder: 15724:15725 ioctl 4030582b 6 returned -22
[  746.699158][T15728] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2169'.
[  746.806927][T14726] Bluetooth: hci2: unexpected subevent 0x01 length: 4 < 18
[  747.428660][T15737] could not allocate digest TFM handle binfmt_misc
[  747.822118][T15753] netlink: 326 bytes leftover after parsing attributes in process `syz.4.2173'.
[  750.360681][T15782] FAULT_INJECTION: forcing a failure.
[  750.360681][T15782] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  750.425273][T15782] CPU: 0 UID: 0 PID: 15782 Comm: syz.1.2179 Tainted: G     U              6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0 PREEMPT(full) 
[  750.425316][T15782] Tainted: [U]=USER
[  750.425324][T15782] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  750.425339][T15782] Call Trace:
[  750.425348][T15782]  <TASK>
[  750.425359][T15782]  dump_stack_lvl+0x16c/0x1f0
[  750.425401][T15782]  should_fail_ex+0x512/0x640
[  750.425442][T15782]  _copy_from_iter+0x2a4/0x15b0
[  750.425485][T15782]  ? __alloc_skb+0x200/0x380
[  750.425514][T15782]  ? __pfx__copy_from_iter+0x10/0x10
[  750.425554][T15782]  ? apparmor_capable+0x114/0x1d0
[  750.425592][T15782]  netlink_sendmsg+0x829/0xdd0
[  750.425631][T15782]  ? __pfx_netlink_sendmsg+0x10/0x10
[  750.425675][T15782]  ____sys_sendmsg+0xa98/0xc70
[  750.425713][T15782]  ? copy_msghdr_from_user+0x10a/0x160
[  750.425742][T15782]  ? __pfx_____sys_sendmsg+0x10/0x10
[  750.425793][T15782]  ___sys_sendmsg+0x134/0x1d0
[  750.425823][T15782]  ? __pfx____sys_sendmsg+0x10/0x10
[  750.425888][T15782]  __sys_sendmsg+0x16d/0x220
[  750.425918][T15782]  ? __pfx___sys_sendmsg+0x10/0x10
[  750.425954][T15782]  ? __x64_sys_futex+0x1e0/0x4c0
[  750.425989][T15782]  ? rcu_is_watching+0x12/0xc0
[  750.426021][T15782]  do_syscall_64+0xcd/0x230
[  750.426072][T15782]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  750.426096][T15782] RIP: 0033:0x7fc9bef8e969
[  750.426115][T15782] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  750.426157][T15782] RSP: 002b:00007fc9bfeab038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  750.426179][T15782] RAX: ffffffffffffffda RBX: 00007fc9bf1b5fa0 RCX: 00007fc9bef8e969
[  750.426196][T15782] RDX: 0000000004000010 RSI: 0000200000000100 RDI: 0000000000000008
[  750.426211][T15782] RBP: 00007fc9bf010ab1 R08: 0000000000000000 R09: 0000000000000000
[  750.426226][T15782] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  750.426241][T15782] R13: 0000000000000000 R14: 00007fc9bf1b5fa0 R15: 00007fff273afc68
[  750.426270][T15782]  </TASK>
[  751.078881][T15786] random: crng reseeded on system resumption
	

	
		
	
	
	
	
	
	
	

	
		


	
	
			
		
	
	

	



	

	
	
		
		
	

	
		



	

	

		
		

	
				
	
		
	
	
		
	
	

	

	

	
		
	

	
		
	
	

	
	
		
		


	
	

	
	
	

	
		
	

	
		
	
			
	

		
		


	







	
	
	
				
	
		

			
	
	

	
	

	
		
	

	
		





	

	









		









	

	









		




		


	

	
		
	

				


		

				

	
	

	
		
[  793.366159][T16310] FAULT_INJECTION: forcing a failure.
[  793.366159][T16310] name fail_futex, interval 1, probability 0, space 0, times 0
[  793.422987][T16310] CPU: 0 UID: 0 PID: 16310 Comm: syz.4.2274 Tainted: G     U              6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0 PREEMPT(full) 
[  793.423027][T16310] Tainted: [U]=USER
[  793.423035][T16310] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  793.423049][T16310] Call Trace:
[  793.423057][T16310]  <TASK>
[  793.423067][T16310]  dump_stack_lvl+0x16c/0x1f0
[  793.423107][T16310]  should_fail_ex+0x512/0x640
[  793.423148][T16310]  get_futex_key+0x49e/0x1000
[  793.423171][T16310]  ? count_memcg_events_mm.constprop.0+0x138/0x340
[  793.423217][T16310]  ? __pfx_get_futex_key+0x10/0x10
[  793.423243][T16310]  ? handle_mm_fault+0x49b/0xad0
[  793.423274][T16310]  futex_wake+0xe7/0x4e0
[  793.423307][T16310]  ? __pfx_futex_wake+0x10/0x10
[  793.423338][T16310]  ? irqentry_exit+0x3b/0x90
[  793.423384][T16310]  do_futex+0x1e3/0x350
[  793.423411][T16310]  ? __pfx_do_futex+0x10/0x10
[  793.423437][T16310]  ? _copy_to_user+0x48/0xd0
[  793.423464][T16310]  __x64_sys_futex+0x1e0/0x4c0
[  793.423495][T16310]  ? __pfx___x64_sys_futex+0x10/0x10
[  793.423523][T16310]  ? rcu_is_watching+0x12/0xc0
[  793.423554][T16310]  do_syscall_64+0xcd/0x230
[  793.423593][T16310]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  793.423617][T16310] RIP: 0033:0x7f3e0398e969
[  793.423635][T16310] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  793.423658][T16310] RSP: 002b:00007f3e047660e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  793.423680][T16310] RAX: ffffffffffffffda RBX: 00007f3e03bb5fa8 RCX: 00007f3e0398e969
[  793.423696][T16310] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f3e03bb5fac
[  793.423710][T16310] RBP: 00007f3e03bb5fa0 R08: 00007f3e04767000 R09: 0000000000000000
[  793.423725][T16310] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3e03bb5fac
[  793.423739][T16310] R13: 0000000000000000 R14: 00007ffecc216e00 R15: 00007ffecc216ee8
[  793.423773][T16310]  </TASK>
[  794.287177][T14726] Bluetooth: hci2: unexpected subevent 0x01 length: 4 < 18
[  794.350704][T16323] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[  794.415010][T16326] Setting dangerous option i915.mitigations - tainting kernel
[  794.582031][T16326] Bad "i915.mitigations=!hóì@ÛSÌ", 'hóì@ÛSÌ' is unknown
[  795.062908][T16326] random: crng reseeded on system resumption
[  796.889053][T14726] Bluetooth: hci2: unexpected subevent 0x01 length: 4 < 18
[  796.932513][T16353] FAULT_INJECTION: forcing a failure.
[  796.932513][T16353] name failslab, interval 1, probability 0, space 0, times 0
[  797.201350][T16353] CPU: 0 UID: 0 PID: 16353 Comm: syz.0.2280 Tainted: G     U              6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0 PREEMPT(full) 
[  797.201389][T16353] Tainted: [U]=USER
[  797.201397][T16353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  797.201411][T16353] Call Trace:
[  797.201419][T16353]  <TASK>
[  797.201428][T16353]  dump_stack_lvl+0x16c/0x1f0
[  797.201468][T16353]  should_fail_ex+0x512/0x640
[  797.201501][T16353]  ? fs_reclaim_acquire+0xae/0x150
[  797.201539][T16353]  ? tomoyo_encode2+0x100/0x3e0
[  797.201571][T16353]  should_failslab+0xc2/0x120
[  797.201599][T16353]  __kmalloc_noprof+0xd2/0x510
[  797.201632][T16353]  tomoyo_encode2+0x100/0x3e0
[  797.201668][T16353]  tomoyo_encode+0x29/0x50
[  797.201699][T16353]  tomoyo_realpath_from_path+0x18f/0x6e0
[  797.201735][T16353]  ? tomoyo_profile+0x47/0x60
[  797.201759][T16353]  tomoyo_path_number_perm+0x245/0x580
[  797.201786][T16353]  ? tomoyo_path_number_perm+0x237/0x580
[  797.201817][T16353]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  797.201853][T16353]  ? find_held_lock+0x2b/0x80
[  797.201901][T16353]  ? find_held_lock+0x2b/0x80
[  797.201922][T16353]  ? hook_file_ioctl_common+0x145/0x410
[  797.201955][T16353]  ? __fget_files+0x20e/0x3c0
[  797.201982][T16353]  security_file_ioctl+0x9b/0x240
[  797.202014][T16353]  __x64_sys_ioctl+0xb7/0x200
[  797.202049][T16353]  do_syscall_64+0xcd/0x230
[  797.202086][T16353]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  797.202109][T16353] RIP: 0033:0x7f803958e969
[  797.202126][T16353] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  797.202150][T16353] RSP: 002b:00007f803a351038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  797.202171][T16353] RAX: ffffffffffffffda RBX: 00007f80397b6080 RCX: 00007f803958e969
[  797.202187][T16353] RDX: 0000000000000000 RSI: 000000004048aecb RDI: 0000000000000004
[  797.202201][T16353] RBP: 00007f803a351090 R08: 0000000000000000 R09: 0000000000000000
[  797.202215][T16353] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  797.202228][T16353] R13: 0000000000000001 R14: 00007f80397b6080 R15: 00007fff23e3e128
[  797.202257][T16353]  </TASK>
[  797.202275][T16353] ERROR: Out of memory at tomoyo_realpath_from_path.
[  797.366760][    C0] vkms_vblank_simulate: vblank timer overrun
[  797.969687][T16361] nbd: socks must be embedded in a SOCK_ITEM attr
[  798.136044][T16361] block nbd1: shutting down sockets
[  800.018778][T16398] Console: switching to colour VGA+ 80x25
[  800.317260][T16398] Console: switching to colour frame buffer device 128x48
[  802.650816][T14726] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  802.675083][T16417] FAULT_INJECTION: forcing a failure.
[  802.675083][T16417] name failslab, interval 1, probability 0, space 0, times 0
[  802.770891][T16417] CPU: 0 UID: 0 PID: 16417 Comm: syz.0.2292 Tainted: G     U              6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0 PREEMPT(full) 
[  802.770932][T16417] Tainted: [U]=USER
[  802.770941][T16417] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  802.770956][T16417] Call Trace:
[  802.770964][T16417]  <TASK>
[  802.770974][T16417]  dump_stack_lvl+0x16c/0x1f0
[  802.771015][T16417]  should_fail_ex+0x512/0x640
[  802.771074][T16417]  should_failslab+0xc2/0x120
[  802.771105][T16417]  __kmalloc_cache_noprof+0x6a/0x3e0
[  802.771128][T16417]  ? __pfx___might_resched+0x10/0x10
[  802.771161][T16417]  ? cfcnfg_create+0x5e/0x500
[  802.771198][T16417]  ? __pfx_caif_init_net+0x10/0x10
[  802.771233][T16417]  cfcnfg_create+0x5e/0x500
[  802.771267][T16417]  ? debug_mutex_init+0x37/0x70
[  802.771290][T16417]  ? __pfx_caif_init_net+0x10/0x10
[  802.771323][T16417]  caif_init_net+0x7d/0xe0
[  802.771356][T16417]  ops_init+0x1df/0x5f0
[  802.771392][T16417]  setup_net+0x21e/0x850
[  802.771426][T16417]  ? __pfx_setup_net+0x10/0x10
[  802.771456][T16417]  ? lockdep_init_map_type+0x5c/0x280
[  802.771489][T16417]  ? __pfx_down_read_killable+0x10/0x10
[  802.771518][T16417]  ? debug_mutex_init+0x37/0x70
[  802.771544][T16417]  copy_net_ns+0x2a6/0x5f0
[  802.771581][T16417]  create_new_namespaces+0x3ea/0xad0
[  802.771616][T16417]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  802.771647][T16417]  ksys_unshare+0x45b/0xa40
[  802.771681][T16417]  ? __pfx_ksys_unshare+0x10/0x10
[  802.771713][T16417]  ? xfd_validate_state+0x5d/0x180
[  802.771737][T16417]  ? rcu_is_watching+0x12/0xc0
[  802.771768][T16417]  __x64_sys_unshare+0x31/0x40
[  802.771801][T16417]  do_syscall_64+0xcd/0x230
[  802.771840][T16417]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  802.771868][T16417] RIP: 0033:0x7f803958e969
[  802.771888][T16417] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  802.771912][T16417] RSP: 002b:00007f803a351038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  802.771936][T16417] RAX: ffffffffffffffda RBX: 00007f80397b6080 RCX: 00007f803958e969
[  802.771952][T16417] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  802.771967][T16417] RBP: 00007f8039610ab1 R08: 0000000000000000 R09: 0000000000000000
[  802.771982][T16417] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  802.771997][T16417] R13: 0000000000000000 R14: 00007f80397b6080 R15: 00007fff23e3e128
[  802.772028][T16417]  </TASK>
[  803.021167][    C0] vkms_vblank_simulate: vblank timer overrun
[  805.779413][T16459] netlink: 'syz.5.2303': attribute type 3 has an invalid length.
[  805.996507][T16442] netlink: 'syz.1.2301': attribute type 2 has an invalid length.
[  806.472213][T16452] kexec: Could not allocate control_code_buffer
[  807.231501][T16471] netlink: 93 bytes leftover after parsing attributes in process `syz.0.2305'.
[  808.688769][T16435] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[  809.937918][T14726] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  810.211739][T16509] overlayfs: "check_copy_up" module option is obsolete
[  811.599241][T16518] FAULT_INJECTION: forcing a failure.
[  811.599241][T16518] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  811.785869][T16518] CPU: 0 UID: 0 PID: 16518 Comm: syz.1.2313 Tainted: G     U              6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0 PREEMPT(full) 
[  811.785909][T16518] Tainted: [U]=USER
[  811.785918][T16518] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  811.785932][T16518] Call Trace:
[  811.785940][T16518]  <TASK>
[  811.785949][T16518]  dump_stack_lvl+0x16c/0x1f0
[  811.785989][T16518]  should_fail_ex+0x512/0x640
[  811.786029][T16518]  should_fail_alloc_page+0xe7/0x130
[  811.786061][T16518]  prepare_alloc_pages+0x3c2/0x610
[  811.786098][T16518]  ? rcu_is_watching+0x12/0xc0
[  811.786124][T16518]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[  811.786160][T16518]  ? cgroup_rstat_updated+0x2a/0xb20
[  811.786212][T16518]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  811.786247][T16518]  ? lru_gen_add_folio+0x1a4/0xef0
[  811.786281][T16518]  ? __lock_acquire+0x5ca/0x1ba0
[  811.786315][T16518]  ? __lock_acquire+0x5ca/0x1ba0
[  811.786346][T16518]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  811.786380][T16518]  ? policy_nodemask+0xea/0x4e0
[  811.786412][T16518]  alloc_pages_mpol+0x1fb/0x550
[  811.786443][T16518]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  811.786474][T16518]  ? __lock_acquire+0x5ca/0x1ba0
[  811.786509][T16518]  folio_alloc_mpol_noprof+0x36/0x2f0
[  811.786545][T16518]  vma_alloc_folio_noprof+0xed/0x1e0
[  811.786579][T16518]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  811.786622][T16518]  do_pte_missing+0x223d/0x3fb0
[  811.786657][T16518]  __handle_mm_fault+0x103d/0x2a40
[  811.786690][T16518]  ? __pfx___handle_mm_fault+0x10/0x10
[  811.786713][T16518]  ? __pte_offset_map_lock+0x155/0x2f0
[  811.786748][T16518]  ? find_held_lock+0x2b/0x80
[  811.786769][T16518]  ? find_held_lock+0x2b/0x80
[  811.786810][T16518]  handle_mm_fault+0x3fe/0xad0
[  811.786840][T16518]  __get_user_pages+0x771/0x36f0
[  811.786885][T16518]  ? __pfx_mt_find+0x10/0x10
[  811.786908][T16518]  ? __pfx___get_user_pages+0x10/0x10
[  811.786956][T16518]  populate_vma_page_range+0x278/0x3a0
[  811.786982][T16518]  ? __pfx_populate_vma_page_range+0x10/0x10
[  811.787004][T16518]  ? __pfx_find_vma_intersection+0x10/0x10
[  811.787042][T16518]  ? do_mmap+0x69c/0x11b0
[  811.787080][T16518]  __mm_populate+0x1d8/0x380
[  811.787104][T16518]  ? __pfx___mm_populate+0x10/0x10
[  811.787129][T16518]  ? up_write+0x1b2/0x520
[  811.787166][T16518]  vm_mmap_pgoff+0x362/0x450
[  811.787211][T16518]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  811.787252][T16518]  ? __x64_sys_futex+0x1e0/0x4c0
[  811.787277][T16518]  ? __x64_sys_futex+0x1e9/0x4c0
[  811.787308][T16518]  ksys_mmap_pgoff+0x7d/0x5c0
[  811.787343][T16518]  ? rcu_is_watching+0x12/0xc0
[  811.787368][T16518]  __x64_sys_mmap+0x125/0x190
[  811.787394][T16518]  do_syscall_64+0xcd/0x230
[  811.787432][T16518]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  811.787456][T16518] RIP: 0033:0x7fc9bef8e969
[  811.787475][T16518] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  811.787499][T16518] RSP: 002b:00007fc9bfeab038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  811.787521][T16518] RAX: ffffffffffffffda RBX: 00007fc9bf1b5fa0 RCX: 00007fc9bef8e969
[  811.787537][T16518] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[  811.787551][T16518] RBP: 00007fc9bf010ab1 R08: 0000000000000002 R09: 0000000000008000
[  811.787565][T16518] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  811.787579][T16518] R13: 0000000000000000 R14: 00007fc9bf1b5fa0 R15: 00007fff273afc68
[  811.787609][T16518]  </TASK>
[  812.128570][    C0] vkms_vblank_simulate: vblank timer overrun
[  813.858601][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  813.865250][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  816.326459][ T5848] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  816.343745][ T5848] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  816.354218][ T5848] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  816.362644][ T5848] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  816.372875][ T5848] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  817.661505][T16558] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2321'.
[  817.723049][T16559] netlink: 354 bytes leftover after parsing attributes in process `syz.5.2321'.
[  817.853436][T16559] random: crng reseeded on system resumption
[  818.168597][T16545] chnl_net:caif_netlink_parms(): no params data found
[  818.410480][ T5848] Bluetooth: hci1: command tx timeout
[  818.903379][T16545] bridge0: port 1(bridge_slave_0) entered blocking state
[  818.903539][T16545] bridge0: port 1(bridge_slave_0) entered disabled state
[  818.903695][T16545] bridge_slave_0: entered allmulticast mode
[  818.918107][T16545] bridge_slave_0: entered promiscuous mode
[  818.926981][T16545] bridge0: port 2(bridge_slave_1) entered blocking state
[  818.927071][T16545] bridge0: port 2(bridge_slave_1) entered disabled state
[  818.927229][T16545] bridge_slave_1: entered allmulticast mode
[  818.928624][T16545] bridge_slave_1: entered promiscuous mode
[  819.286038][T16545] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  819.288635][T16545] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  819.758762][T16545] team0: Port device team_slave_0 added
[  819.826113][T16545] team0: Port device team_slave_1 added
[  820.153967][T16545] batman_adv: batadv0: Adding interface: batadv_slave_0
[  820.182522][T16545] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  820.272635][T16545] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  820.394266][T16545] batman_adv: batadv0: Adding interface: batadv_slave_1
[  820.420209][T16545] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  820.492005][ T5848] Bluetooth: hci1: command tx timeout
[  820.519498][T16545] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  820.896171][T16545] hsr_slave_0: entered promiscuous mode
[  820.932102][T16545] hsr_slave_1: entered promiscuous mode
[  820.955973][T16545] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  820.984153][T16545] Cannot create hsr debugfs directory
[  822.081669][T16590] netlink: 'syz.5.2327': attribute type 11 has an invalid length.
[  822.174887][T16545] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  822.572218][ T5848] Bluetooth: hci1: command tx timeout
[  822.870745][T16545] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  823.273724][T16545] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  824.016940][T16545] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  824.136438][T16545] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  824.391400][T16545] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  824.475184][T16545] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  824.650518][ T5848] Bluetooth: hci1: command tx timeout
[  824.958348][T16545] 8021q: adding VLAN 0 to HW filter on device bond0
[  825.073349][T16545] 8021q: adding VLAN 0 to HW filter on device team0
[  825.154910][ T6426] bridge0: port 1(bridge_slave_0) entered blocking state
[  825.162114][ T6426] bridge0: port 1(bridge_slave_0) entered forwarding state
[  825.204579][ T6426] bridge0: port 2(bridge_slave_1) entered blocking state
[  825.211758][ T6426] bridge0: port 2(bridge_slave_1) entered forwarding state
[  826.261915][T16627] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2334'.
[  826.494374][T16627] hsr_slave_0 (unregistering): left promiscuous mode
[  826.575361][T16545] 8021q: adding VLAN 0 to HW filter on device batadv0
[  826.802421][T16545] veth0_vlan: entered promiscuous mode
[  826.846740][T16545] veth1_vlan: entered promiscuous mode
[  827.007870][T16545] veth0_macvtap: entered promiscuous mode
[  827.047583][T16629] FAULT_INJECTION: forcing a failure.
[  827.047583][T16629] name failslab, interval 1, probability 0, space 0, times 0
[  827.064352][T16545] veth1_macvtap: entered promiscuous mode
[  827.165499][T16629] CPU: 0 UID: 0 PID: 16629 Comm: syz.5.2335 Tainted: G     U              6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0 PREEMPT(full) 
[  827.165541][T16629] Tainted: [U]=USER
[  827.165550][T16629] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  827.165565][T16629] Call Trace:
[  827.165573][T16629]  <TASK>
[  827.165583][T16629]  dump_stack_lvl+0x16c/0x1f0
[  827.165624][T16629]  should_fail_ex+0x512/0x640
[  827.165665][T16629]  should_failslab+0xc2/0x120
[  827.165697][T16629]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  827.165727][T16629]  ? skb_clone+0x190/0x3f0
[  827.165761][T16629]  skb_clone+0x190/0x3f0
[  827.165792][T16629]  netlink_deliver_tap+0xabd/0xd30
[  827.165830][T16629]  netlink_unicast+0x5df/0x7f0
[  827.165866][T16629]  ? __pfx_netlink_unicast+0x10/0x10
[  827.165897][T16629]  ? __lock_acquire+0xaa4/0x1ba0
[  827.165938][T16629]  netlink_sendmsg+0x8d1/0xdd0
[  827.165975][T16629]  ? __pfx_netlink_sendmsg+0x10/0x10
[  827.166020][T16629]  ____sys_sendmsg+0xa98/0xc70
[  827.166058][T16629]  ? copy_msghdr_from_user+0x10a/0x160
[  827.166087][T16629]  ? __pfx_____sys_sendmsg+0x10/0x10
[  827.166129][T16629]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  827.166171][T16629]  ___sys_sendmsg+0x134/0x1d0
[  827.166201][T16629]  ? __pfx____sys_sendmsg+0x10/0x10
[  827.166268][T16629]  __sys_sendmsg+0x16d/0x220
[  827.166299][T16629]  ? __pfx___sys_sendmsg+0x10/0x10
[  827.166327][T16629]  ? __x64_sys_futex+0x1e0/0x4c0
[  827.166363][T16629]  ? rcu_is_watching+0x12/0xc0
[  827.166394][T16629]  do_syscall_64+0xcd/0x230
[  827.166435][T16629]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  827.166459][T16629] RIP: 0033:0x7f0a37b8e969
[  827.166485][T16629] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  827.166510][T16629] RSP: 002b:00007f0a3898c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  827.166537][T16629] RAX: ffffffffffffffda RBX: 00007f0a37db5fa0 RCX: 00007f0a37b8e969
[  827.166553][T16629] RDX: 0000000000004004 RSI: 0000200000000240 RDI: 000000000000000a
[  827.166569][T16629] RBP: 00007f0a37c10ab1 R08: 0000000000000000 R09: 0000000000000000
[  827.166584][T16629] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  827.166599][T16629] R13: 0000000000000000 R14: 00007f0a37db5fa0 R15: 00007ffef8020008
[  827.166630][T16629]  </TASK>
[  827.166720][T16629] netlink: 186 bytes leftover after parsing attributes in process `syz.5.2335'.
[  827.346863][    C0] vkms_vblank_simulate: vblank timer overrun
[  827.422787][T16545] batman_adv: batadv0: Interface activated: batadv_slave_0
[  827.464113][T16545] batman_adv: batadv0: Interface activated: batadv_slave_1
[  827.506829][T16545] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  827.536961][T16545] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  827.550136][T16545] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  827.568209][T16545] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  827.755266][T16643] random: crng reseeded on system resumption
[  828.917112][   T62] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  828.961060][   T62] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  829.119530][ T6413] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  829.169462][ T6413] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  830.008393][T16657] Invalid ELF header magic: != ELF
[  835.486705][T16740] FAULT_INJECTION: forcing a failure.
[  835.486705][T16740] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  835.561496][T16740] CPU: 0 UID: 0 PID: 16740 Comm: syz.5.2352 Tainted: G     U              6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0 PREEMPT(full) 
[  835.561535][T16740] Tainted: [U]=USER
[  835.561543][T16740] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  835.561557][T16740] Call Trace:
[  835.561574][T16740]  <TASK>
[  835.561584][T16740]  dump_stack_lvl+0x16c/0x1f0
[  835.561625][T16740]  should_fail_ex+0x512/0x640
[  835.561665][T16740]  _copy_from_user+0x2e/0xd0
[  835.561705][T16740]  copy_msghdr_from_user+0x98/0x160
[  835.561735][T16740]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  835.561768][T16740]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  835.561809][T16740]  ___sys_sendmsg+0xfe/0x1d0
[  835.561839][T16740]  ? __pfx____sys_sendmsg+0x10/0x10
[  835.561903][T16740]  __sys_sendmsg+0x16d/0x220
[  835.561932][T16740]  ? __pfx___sys_sendmsg+0x10/0x10
[  835.561960][T16740]  ? __x64_sys_futex+0x1e0/0x4c0
[  835.561994][T16740]  ? rcu_is_watching+0x12/0xc0
[  835.562024][T16740]  do_syscall_64+0xcd/0x230
[  835.562062][T16740]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  835.562086][T16740] RIP: 0033:0x7f0a37b8e969
[  835.562104][T16740] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  835.562128][T16740] RSP: 002b:00007f0a3898c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  835.562150][T16740] RAX: ffffffffffffffda RBX: 00007f0a37db5fa0 RCX: 00007f0a37b8e969
[  835.562166][T16740] RDX: 0000000004000010 RSI: 0000200000000100 RDI: 0000000000000008
[  835.562181][T16740] RBP: 00007f0a37c10ab1 R08: 0000000000000000 R09: 0000000000000000
[  835.562195][T16740] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  835.562210][T16740] R13: 0000000000000000 R14: 00007f0a37db5fa0 R15: 00007ffef8020008
[  835.562238][T16740]  </TASK>
[  837.084010][T16740] netlink: 186 bytes leftover after parsing attributes in process `syz.5.2352'.
[  837.364043][T16760] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2357'.
[  837.466774][T16759] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2357'.
[  838.065985][T16770] snd_aloop snd_aloop.0: control 16781581:65533:6:é'x?F�¢é/èìzFË·fC�ªáª:0 is already present
[  839.663352][T16758] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[  840.890701][T16801] FAULT_INJECTION: forcing a failure.
[  840.890701][T16801] name failslab, interval 1, probability 0, space 0, times 0
[  840.947278][T16782] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  840.973237][T16801] CPU: 0 UID: 0 PID: 16801 Comm: syz.5.2366 Tainted: G     U              6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0 PREEMPT(full) 
[  840.973288][T16801] Tainted: [U]=USER
[  840.973296][T16801] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  840.973311][T16801] Call Trace:
[  840.973321][T16801]  <TASK>
[  840.973330][T16801]  dump_stack_lvl+0x16c/0x1f0
[  840.973371][T16801]  should_fail_ex+0x512/0x640
[  840.973406][T16801]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  840.973434][T16801]  should_failslab+0xc2/0x120
[  840.973464][T16801]  __kmalloc_cache_noprof+0x6a/0x3e0
[  840.973488][T16801]  ? trace_kmalloc+0x2b/0xd0
[  840.973518][T16801]  ? snd_virmidi_input_open+0xc8/0x4a0
[  840.973557][T16801]  snd_virmidi_input_open+0xc8/0x4a0
[  840.973597][T16801]  open_substream+0x47b/0x9b0
[  840.973637][T16801]  rawmidi_open_priv+0x4db/0x6e0
[  840.973666][T16801]  snd_rawmidi_open+0x4cc/0xbf0
[  840.973697][T16801]  ? __pfx_snd_rawmidi_open+0x10/0x10
[  840.973723][T16801]  ? __pfx_default_wake_function+0x10/0x10
[  840.973751][T16801]  ? kobject_get_unless_zero+0x156/0x1e0
[  840.973793][T16801]  ? __pfx_snd_rawmidi_open+0x10/0x10
[  840.973818][T16801]  snd_open+0x201/0x450
[  840.973850][T16801]  ? __pfx_snd_open+0x10/0x10
[  840.973881][T16801]  chrdev_open+0x231/0x6a0
[  840.973906][T16801]  ? __pfx_apparmor_file_open+0x10/0x10
[  840.973939][T16801]  ? __pfx_chrdev_open+0x10/0x10
[  840.973966][T16801]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  840.974008][T16801]  do_dentry_open+0x741/0x1c10
[  840.974040][T16801]  ? __pfx_chrdev_open+0x10/0x10
[  840.974071][T16801]  vfs_open+0x82/0x3f0
[  840.974107][T16801]  path_openat+0x1e5e/0x2d40
[  840.974142][T16801]  ? __pfx_path_openat+0x10/0x10
[  840.974174][T16801]  do_filp_open+0x20b/0x470
[  840.974198][T16801]  ? __pfx_do_filp_open+0x10/0x10
[  840.974244][T16801]  ? alloc_fd+0x471/0x7d0
[  840.974272][T16801]  do_sys_openat2+0x11b/0x1d0
[  840.974305][T16801]  ? __pfx_do_sys_openat2+0x10/0x10
[  840.974338][T16801]  ? find_held_lock+0x2b/0x80
[  840.974369][T16801]  __x64_sys_openat+0x174/0x210
[  840.974402][T16801]  ? __pfx___x64_sys_openat+0x10/0x10
[  840.974437][T16801]  ? rcu_is_watching+0x12/0xc0
[  840.974467][T16801]  do_syscall_64+0xcd/0x230
[  840.974506][T16801]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  840.974530][T16801] RIP: 0033:0x7f0a37b8e969
[  840.974549][T16801] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  840.974573][T16801] RSP: 002b:00007f0a3898c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  840.974595][T16801] RAX: ffffffffffffffda RBX: 00007f0a37db5fa0 RCX: 00007f0a37b8e969
[  840.974611][T16801] RDX: 0000000000000000 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  840.974626][T16801] RBP: 00007f0a37c10ab1 R08: 0000000000000000 R09: 0000000000000000
[  840.974641][T16801] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  840.974655][T16801] R13: 0000000000000000 R14: 00007f0a37db5fa0 R15: 00007ffef8020008
[  840.974685][T16801]  </TASK>
[  841.275721][T16782] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  841.286323][T16782] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  841.762870][T16810] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  841.891855][T14726] Bluetooth: hci2: command 0x0c1a tx timeout
[  843.519126][T16782] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  843.542486][T16782] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  843.578093][T16782] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  843.623899][T16782] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  843.691695][T14726] Bluetooth: hci3: command 0x0c1a tx timeout
[  845.156600][T16864] netlink: 'syz.1.2377': attribute type 1 has an invalid length.
[  845.286551][T16860] netlink: 186 bytes leftover after parsing attributes in process `syz.4.2376'.
[  845.530529][T14726] Bluetooth: hci4: command 0x0c1a tx timeout
[  845.610444][T14726] Bluetooth: hci1: command 0x0c1a tx timeout
[  845.771217][T14726] Bluetooth: hci3: command 0x0c1a tx timeout
[  846.252326][T16884] can: request_module (can-proto-0) failed.
[  846.621216][T16877] ima: policy update failed
[  846.631919][   T30] audit: type=1802 audit(65202.320:27): pid=16877 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.2380" res=0 errno=0
[  847.690583][T14726] Bluetooth: hci1: command 0x0c1a tx timeout
[  848.665448][T16919] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2387'.
[  849.045251][T16913] could not allocate digest TFM handle 
[  849.770316][T14726] Bluetooth: hci1: command 0x0c1a tx timeout
[  851.526114][T16951] netlink: 206 bytes leftover after parsing attributes in process `syz.1.2395'.
[  851.574097][T16932] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[  853.041490][T16978] FAULT_INJECTION: forcing a failure.
[  853.041490][T16978] name failslab, interval 1, probability 0, space 0, times 0
[  853.129449][T16978] CPU: 0 UID: 0 PID: 16978 Comm: syz.5.2400 Tainted: G     U              6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0 PREEMPT(full) 
[  853.129489][T16978] Tainted: [U]=USER
[  853.129498][T16978] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  853.129512][T16978] Call Trace:
[  853.129520][T16978]  <TASK>
[  853.129529][T16978]  dump_stack_lvl+0x16c/0x1f0
[  853.129571][T16978]  should_fail_ex+0x512/0x640
[  853.129607][T16978]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  853.129647][T16978]  should_failslab+0xc2/0x120
[  853.129678][T16978]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  853.129706][T16978]  ? __alloc_skb+0x2b2/0x380
[  853.129733][T16978]  ? finish_task_switch.isra.0+0x221/0xc10
[  853.129762][T16978]  __alloc_skb+0x2b2/0x380
[  853.129788][T16978]  ? __pfx___alloc_skb+0x10/0x10
[  853.129817][T16978]  ? apparmor_capable+0x114/0x1d0
[  853.129849][T16978]  netlink_alloc_large_skb+0x69/0x130
[  853.129883][T16978]  netlink_sendmsg+0x6a1/0xdd0
[  853.129920][T16978]  ? __pfx_netlink_sendmsg+0x10/0x10
[  853.129962][T16978]  ____sys_sendmsg+0xa98/0xc70
[  853.130002][T16978]  ? copy_msghdr_from_user+0x10a/0x160
[  853.130031][T16978]  ? __pfx_____sys_sendmsg+0x10/0x10
[  853.130077][T16978]  ? try_to_wake_up+0xa2f/0x1680
[  853.130104][T16978]  ___sys_sendmsg+0x134/0x1d0
[  853.130154][T16978]  ? __pfx____sys_sendmsg+0x10/0x10
[  853.130219][T16978]  __sys_sendmsg+0x16d/0x220
[  853.130249][T16978]  ? __pfx___sys_sendmsg+0x10/0x10
[  853.130278][T16978]  ? __x64_sys_futex+0x1e0/0x4c0
[  853.130313][T16978]  ? rcu_is_watching+0x12/0xc0
[  853.130344][T16978]  do_syscall_64+0xcd/0x230
[  853.130384][T16978]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  853.130408][T16978] RIP: 0033:0x7f0a37b8e969
[  853.130426][T16978] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  853.130450][T16978] RSP: 002b:00007f0a3898c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  853.130473][T16978] RAX: ffffffffffffffda RBX: 00007f0a37db5fa0 RCX: 00007f0a37b8e969
[  853.130490][T16978] RDX: 0000000004000010 RSI: 0000200000000100 RDI: 0000000000000008
[  853.130505][T16978] RBP: 00007f0a37c10ab1 R08: 0000000000000000 R09: 0000000000000000
[  853.130519][T16978] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  853.130534][T16978] R13: 0000000000000000 R14: 00007f0a37db5fa0 R15: 00007ffef8020008
[  853.130564][T16978]  </TASK>
[  854.634602][T16978] netlink: 186 bytes leftover after parsing attributes in process `syz.5.2400'.
[  855.106954][T16995] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2402'.
[  855.521511][T16998] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2403'.
[  855.876840][T16998] hsr_slave_0 (unregistering): left promiscuous mode
[  856.299554][T17012] FAULT_INJECTION: forcing a failure.
[  856.299554][T17012] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  856.389748][T17012] CPU: 0 UID: 0 PID: 17012 Comm: syz.0.2407 Tainted: G     U              6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0 PREEMPT(full) 
[  856.389790][T17012] Tainted: [U]=USER
[  856.389799][T17012] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  856.389813][T17012] Call Trace:
[  856.389821][T17012]  <TASK>
[  856.389831][T17012]  dump_stack_lvl+0x16c/0x1f0
[  856.389872][T17012]  should_fail_ex+0x512/0x640
[  856.389912][T17012]  _copy_from_iter+0x477/0x15b0
[  856.389957][T17012]  ? __pfx__copy_from_iter+0x10/0x10
[  856.389996][T17012]  ? kmem_cache_alloc_noprof+0x21e/0x3b0
[  856.390025][T17012]  ? __asan_memset+0x23/0x50
[  856.390051][T17012]  ? __build_skb_around+0x278/0x3b0
[  856.390076][T17012]  ? __build_skb+0x6e/0x90
[  856.390102][T17012]  ? is_vmalloc_addr+0x30/0x40
[  856.390132][T17012]  netlink_sendmsg+0x829/0xdd0
[  856.390168][T17012]  ? __pfx_netlink_sendmsg+0x10/0x10
[  856.390211][T17012]  ____sys_sendmsg+0xa98/0xc70
[  856.390250][T17012]  ? __pfx_____sys_sendmsg+0x10/0x10
[  856.390290][T17012]  ? __pfx__kstrtoull+0x10/0x10
[  856.390330][T17012]  ___sys_sendmsg+0x134/0x1d0
[  856.390361][T17012]  ? __pfx____sys_sendmsg+0x10/0x10
[  856.390403][T17012]  ? find_held_lock+0x2b/0x80
[  856.390444][T17012]  __sys_sendmmsg+0x200/0x420
[  856.390477][T17012]  ? __pfx___sys_sendmmsg+0x10/0x10
[  856.390515][T17012]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  856.390565][T17012]  ? fput+0x70/0xf0
[  856.390593][T17012]  ? ksys_write+0x1b9/0x240
[  856.390615][T17012]  ? __pfx_ksys_write+0x10/0x10
[  856.390637][T17012]  ? rcu_is_watching+0x12/0xc0
[  856.390664][T17012]  __x64_sys_sendmmsg+0x9c/0x100
[  856.390692][T17012]  ? lockdep_hardirqs_on+0x7c/0x110
[  856.390724][T17012]  do_syscall_64+0xcd/0x230
[  856.390761][T17012]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  856.390784][T17012] RIP: 0033:0x7f914b18e969
[  856.390803][T17012] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  856.390826][T17012] RSP: 002b:00007f914bf8f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  856.390849][T17012] RAX: ffffffffffffffda RBX: 00007f914b3b6080 RCX: 00007f914b18e969
[  856.390864][T17012] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000004
[  856.390879][T17012] RBP: 00007f914bf8f090 R08: 0000000000000000 R09: 0000000000000000
[  856.390893][T17012] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000002
[  856.390908][T17012] R13: 0000000000000000 R14: 00007f914b3b6080 R15: 00007ffee864cfc8
[  856.390937][T17012]  </TASK>
[  857.229755][T17017] FAULT_INJECTION: forcing a failure.
[  857.229755][T17017] name failslab, interval 1, probability 0, space 0, times 0
[  857.259403][   T30] audit: type=1804 audit(65212.910:28): pid=17017 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.2409" name="/newroot/575/file0" dev="tmpfs" ino=3020 res=1 errno=0
[  857.340447][   T30] audit: type=1800 audit(65212.910:29): pid=17017 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.2409" name="file0" dev="tmpfs" ino=3020 res=0 errno=0
[  857.454533][T17017] CPU: 0 UID: 0 PID: 17017 Comm: syz.4.2409 Tainted: G     U              6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0 PREEMPT(full) 
[  857.454574][T17017] Tainted: [U]=USER
[  857.454582][T17017] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  857.454597][T17017] Call Trace:
[  857.454606][T17017]  <TASK>
[  857.454615][T17017]  dump_stack_lvl+0x16c/0x1f0
[  857.454657][T17017]  should_fail_ex+0x512/0x640
[  857.454692][T17017]  ? __kmalloc_noprof+0xbf/0x510
[  857.454722][T17017]  ? __register_sysctl_table+0xea2/0x1900
[  857.454751][T17017]  should_failslab+0xc2/0x120
[  857.454781][T17017]  __kmalloc_noprof+0xd2/0x510
[  857.454806][T17017]  ? __register_sysctl_table+0xe8e/0x1900
[  857.454841][T17017]  __register_sysctl_table+0xea2/0x1900
[  857.454876][T17017]  ? __pfx___register_sysctl_table+0x10/0x10
[  857.454904][T17017]  ? is_module_address+0x69/0xf0
[  857.454935][T17017]  ? register_net_sysctl_sz+0x228/0x3e0
[  857.454960][T17017]  ? __asan_memcpy+0x3c/0x60
[  857.454983][T17017]  ? __pfx_nf_lwtunnel_net_init+0x10/0x10
[  857.455015][T17017]  nf_lwtunnel_net_init+0x60/0xf0
[  857.455046][T17017]  ops_init+0x1df/0x5f0
[  857.455080][T17017]  setup_net+0x21e/0x850
[  857.455114][T17017]  ? __pfx_setup_net+0x10/0x10
[  857.455143][T17017]  ? lockdep_init_map_type+0x5c/0x280
[  857.455176][T17017]  ? __pfx_down_read_killable+0x10/0x10
[  857.455212][T17017]  ? debug_mutex_init+0x37/0x70
[  857.455238][T17017]  copy_net_ns+0x2a6/0x5f0
[  857.455274][T17017]  create_new_namespaces+0x3ea/0xad0
[  857.455309][T17017]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  857.455340][T17017]  ksys_unshare+0x45b/0xa40
[  857.455374][T17017]  ? __pfx_ksys_unshare+0x10/0x10
[  857.455405][T17017]  ? xfd_validate_state+0x5d/0x180
[  857.455430][T17017]  ? rcu_is_watching+0x12/0xc0
[  857.455460][T17017]  __x64_sys_unshare+0x31/0x40
[  857.455492][T17017]  do_syscall_64+0xcd/0x230
[  857.455530][T17017]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  857.455555][T17017] RIP: 0033:0x7f3e0398e969
[  857.455573][T17017] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  857.455597][T17017] RSP: 002b:00007f3e04766038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  857.455620][T17017] RAX: ffffffffffffffda RBX: 00007f3e03bb5fa0 RCX: 00007f3e0398e969
[  857.455636][T17017] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  857.455650][T17017] RBP: 00007f3e03a10ab1 R08: 0000000000000000 R09: 0000000000000000
[  857.455665][T17017] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  857.455679][T17017] R13: 0000000000000000 R14: 00007f3e03bb5fa0 R15: 00007ffecc216ee8
[  857.455709][T17017]  </TASK>
[  857.455718][T17017] sysctl could not get directory: /net -12
[  859.121927][T17032] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2412'.
[  859.178615][T17032] bridge_slave_1: left allmulticast mode
[  859.207752][T17032] bridge_slave_1: left promiscuous mode
[  859.241048][T17032] bridge0: port 2(bridge_slave_1) entered disabled state
[  859.277728][T17032] bridge_slave_0: left allmulticast mode
[  859.296378][T17032] bridge_slave_0: left promiscuous mode
[  859.318646][T17032] bridge0: port 1(bridge_slave_0) entered disabled state
[  859.471903][T17032] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2412'.
[  860.479913][T17050] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2417'.
[  860.683001][T17056] netlink: 342 bytes leftover after parsing attributes in process `syz.0.2416'.
[  861.990624][T14726] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18
[  864.598409][   T30] audit: type=1800 audit(65220.280:30): pid=17095 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.2423" name="discovery_nqn" dev="configfs" ino=62387 res=0 errno=0
[  865.153626][   T30] audit: type=1804 audit(65220.810:31): pid=17107 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.2426" name="/newroot/111/file0" dev="tmpfs" ino=598 res=1 errno=0
[  865.270118][   T30] audit: type=1800 audit(65220.810:32): pid=17107 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.2426" name="file0" dev="tmpfs" ino=598 res=0 errno=0
[  867.591554][T17138] FAULT_INJECTION: forcing a failure.
[  867.591554][T17138] name failslab, interval 1, probability 0, space 0, times 0
[  867.687177][T17138] CPU: 0 UID: 0 PID: 17138 Comm: syz.5.2433 Tainted: G     U              6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0 PREEMPT(full) 
[  867.687219][T17138] Tainted: [U]=USER
[  867.687228][T17138] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  867.687243][T17138] Call Trace:
[  867.687251][T17138]  <TASK>
[  867.687261][T17138]  dump_stack_lvl+0x16c/0x1f0
[  867.687302][T17138]  should_fail_ex+0x512/0x640
[  867.687339][T17138]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  867.687367][T17138]  should_failslab+0xc2/0x120
[  867.687399][T17138]  __kmalloc_cache_noprof+0x6a/0x3e0
[  867.687423][T17138]  ? apply_wqattrs_prepare+0x130/0xbd0
[  867.687457][T17138]  apply_wqattrs_prepare+0x130/0xbd0
[  867.687496][T17138]  apply_workqueue_attrs_locked+0x64/0xe0
[  867.687524][T17138]  __alloc_workqueue+0xf41/0x1810
[  867.687562][T17138]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  867.687602][T17138]  alloc_workqueue+0xd2/0x200
[  867.687634][T17138]  ? __pfx_alloc_workqueue+0x10/0x10
[  867.687673][T17138]  ? __pfx___debug_object_init+0x10/0x10
[  867.687708][T17138]  nci_register_device+0x511/0xb80
[  867.687743][T17138]  ? __pfx_nci_register_device+0x10/0x10
[  867.687784][T17138]  ? lockdep_init_map_type+0x5c/0x280
[  867.687824][T17138]  virtual_ncidev_open+0x141/0x220
[  867.687863][T17138]  ? __pfx_virtual_ncidev_open+0x10/0x10
[  867.687900][T17138]  misc_open+0x35d/0x420
[  867.687923][T17138]  ? __pfx_misc_open+0x10/0x10
[  867.687945][T17138]  chrdev_open+0x231/0x6a0
[  867.687971][T17138]  ? __pfx_apparmor_file_open+0x10/0x10
[  867.688006][T17138]  ? __pfx_chrdev_open+0x10/0x10
[  867.688035][T17138]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  867.688079][T17138]  do_dentry_open+0x741/0x1c10
[  867.688116][T17138]  ? __pfx_chrdev_open+0x10/0x10
[  867.688150][T17138]  vfs_open+0x82/0x3f0
[  867.688188][T17138]  path_openat+0x1e5e/0x2d40
[  867.688225][T17138]  ? __pfx_path_openat+0x10/0x10
[  867.688259][T17138]  do_filp_open+0x20b/0x470
[  867.688285][T17138]  ? __pfx_do_filp_open+0x10/0x10
[  867.688332][T17138]  ? alloc_fd+0x471/0x7d0
[  867.688363][T17138]  do_sys_openat2+0x11b/0x1d0
[  867.688397][T17138]  ? __pfx_do_sys_openat2+0x10/0x10
[  867.688443][T17138]  __x64_sys_openat+0x174/0x210
[  867.688478][T17138]  ? __pfx___x64_sys_openat+0x10/0x10
[  867.688515][T17138]  ? rcu_is_watching+0x12/0xc0
[  867.688547][T17138]  do_syscall_64+0xcd/0x230
[  867.688588][T17138]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  867.688613][T17138] RIP: 0033:0x7f0a37b8e969
[  867.688633][T17138] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  867.688658][T17138] RSP: 002b:00007f0a3898c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  867.688681][T17138] RAX: ffffffffffffffda RBX: 00007f0a37db5fa0 RCX: 00007f0a37b8e969
[  867.688698][T17138] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c
[  867.688714][T17138] RBP: 00007f0a37c10ab1 R08: 0000000000000000 R09: 0000000000000000
[  867.688729][T17138] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  867.688745][T17138] R13: 0000000000000000 R14: 00007f0a37db5fa0 R15: 00007ffef8020008
[  867.688776][T17138]  </TASK>
[  872.862443][T17183] FAULT_INJECTION: forcing a failure.
[  872.862443][T17183] name fail_futex, interval 1, probability 0, space 0, times 0
[  872.933696][T17183] CPU: 0 UID: 0 PID: 17183 Comm: syz.5.2442 Tainted: G     U              6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0 PREEMPT(full) 
[  872.933736][T17183] Tainted: [U]=USER
[  872.933745][T17183] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  872.933759][T17183] Call Trace:
[  872.933768][T17183]  <TASK>
[  872.933777][T17183]  dump_stack_lvl+0x16c/0x1f0
[  872.933818][T17183]  should_fail_ex+0x512/0x640
[  872.933855][T17183]  ? rcu_is_watching+0x12/0xc0
[  872.933882][T17183]  get_futex_key+0x49e/0x1000
[  872.933911][T17183]  ? __pfx_get_futex_key+0x10/0x10
[  872.933936][T17183]  ? ___sys_sendmsg+0x146/0x1d0
[  872.933968][T17183]  ? __pfx____sys_sendmsg+0x10/0x10
[  872.934003][T17183]  futex_wake+0xe7/0x4e0
[  872.934037][T17183]  ? __pfx_futex_wake+0x10/0x10
[  872.934082][T17183]  do_futex+0x1e3/0x350
[  872.934110][T17183]  ? __pfx_do_futex+0x10/0x10
[  872.934137][T17183]  ? fput+0x70/0xf0
[  872.934170][T17183]  ? __sys_sendmsg+0x199/0x220
[  872.934202][T17183]  __x64_sys_futex+0x1e0/0x4c0
[  872.934234][T17183]  ? __pfx___x64_sys_futex+0x10/0x10
[  872.934263][T17183]  ? rcu_is_watching+0x12/0xc0
[  872.934294][T17183]  do_syscall_64+0xcd/0x230
[  872.934334][T17183]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  872.934360][T17183] RIP: 0033:0x7f0a37b8e969
[  872.934378][T17183] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  872.934402][T17183] RSP: 002b:00007f0a3898c0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  872.934425][T17183] RAX: ffffffffffffffda RBX: 00007f0a37db5fa8 RCX: 00007f0a37b8e969
[  872.934441][T17183] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f0a37db5fac
[  872.934457][T17183] RBP: 00007f0a37db5fa0 R08: 00007f0a3898d000 R09: 0000000000000000
[  872.934479][T17183] R10: 000000000000002c R11: 0000000000000246 R12: 00007f0a37db5fac
[  872.934494][T17183] R13: 0000000000000000 R14: 00007ffef801ff20 R15: 00007ffef8020008
[  872.934524][T17183]  </TASK>
[  873.182262][T17185] netlink: 186 bytes leftover after parsing attributes in process `syz.5.2442'.
[  873.721310][T17198] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2447'.
[  873.832635][T17199] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2447'.
[  874.356074][T14726] Bluetooth: hci4: unexpected subevent 0x01 length: 4 < 18
[  874.380928][   T30] audit: type=1800 audit(66265.060:33): pid=17209 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.2449" name="dbroot" dev="configfs" ino=62879 res=0 errno=0
[  874.528158][T17212] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2449'.
[  875.012726][   T30] audit: type=1804 audit(4295033562.680:34): pid=17217 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.2451" name="/newroot/563/file0" dev="tmpfs" ino=2988 res=1 errno=0
[  875.119547][   T30] audit: type=1800 audit(4295033562.680:35): pid=17217 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2451" name="file0" dev="tmpfs" ino=2988 res=0 errno=0
[  875.303680][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  875.303770][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  876.273343][T17240] snd_aloop snd_aloop.0: control 16781581:65533:6:é'x?F�¢é/èìzFË·fC�ªáª:0 is already present
[  876.620368][T17242] netlink: 186 bytes leftover after parsing attributes in process `syz.1.2455'.
[  879.019487][T17264] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2459'.
[  880.755769][T17300] could not allocate digest TFM handle 
[  880.818622][T17315] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2467'.
[  882.099891][T17331] netlink: 186 bytes leftover after parsing attributes in process `syz.5.2469'.
[  882.666596][T17351] FAULT_INJECTION: forcing a failure.
[  882.666596][T17351] name fail_futex, interval 1, probability 0, space 0, times 0
[  882.765122][T17351] CPU: 0 UID: 0 PID: 17351 Comm: syz.4.2473 Tainted: G     U              6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0 PREEMPT(full) 
[  882.765163][T17351] Tainted: [U]=USER
[  882.765171][T17351] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  882.765186][T17351] Call Trace:
[  882.765193][T17351]  <TASK>
[  882.765202][T17351]  dump_stack_lvl+0x16c/0x1f0
[  882.765243][T17351]  should_fail_ex+0x512/0x640
[  882.765282][T17351]  get_futex_key+0x49e/0x1000
[  882.765311][T17351]  ? __pfx_get_futex_key+0x10/0x10
[  882.765345][T17351]  futex_wake+0xe7/0x4e0
[  882.765378][T17351]  ? __pfx_futex_wake+0x10/0x10
[  882.765422][T17351]  ? kmem_cache_free+0x2d4/0x4d0
[  882.765447][T17351]  ? fd_install+0x225/0x750
[  882.765466][T17351]  ? putname+0x154/0x1a0
[  882.765499][T17351]  do_futex+0x1e3/0x350
[  882.765526][T17351]  ? __pfx_do_futex+0x10/0x10
[  882.765554][T17351]  ? find_held_lock+0x2b/0x80
[  882.765581][T17351]  __x64_sys_futex+0x1e0/0x4c0
[  882.765610][T17351]  ? __x64_sys_openat+0x174/0x210
[  882.765644][T17351]  ? __pfx___x64_sys_futex+0x10/0x10
[  882.765672][T17351]  ? rcu_is_watching+0x12/0xc0
[  882.765703][T17351]  do_syscall_64+0xcd/0x230
[  882.765741][T17351]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  882.765766][T17351] RIP: 0033:0x7f3e0398e969
[  882.765784][T17351] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  882.765807][T17351] RSP: 002b:00007f3e047660e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  882.765829][T17351] RAX: ffffffffffffffda RBX: 00007f3e03bb5fa8 RCX: 00007f3e0398e969
[  882.765844][T17351] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f3e03bb5fac
[  882.765859][T17351] RBP: 00007f3e03bb5fa0 R08: 00007f3e04767000 R09: 0000000000000000
[  882.765874][T17351] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f3e03bb5fac
[  882.765889][T17351] R13: 0000000000000000 R14: 00007ffecc216e00 R15: 00007ffecc216ee8
[  882.765917][T17351]  </TASK>
[  883.515676][T14726] Bluetooth: hci2: unexpected subevent 0x01 length: 4 < 18
[  883.523222][T14726] Bluetooth: hci3: unexpected subevent 0x01 length: 4 < 18
[  883.660241][T17373] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2475'.
[  885.471307][T17393] sctp: [Deprecated]: syz.4.2479 (pid 17393) Use of struct sctp_assoc_value in delayed_ack socket option.
[  885.471307][T17393] Use struct sctp_sack_info instead
[  885.595155][ T5848] Bluetooth: hci4: unexpected subevent 0x01 length: 123 > 18
[  891.398622][T17440] vmstat_refresh: nr_hugetlb -8192
[  895.021024][T17500] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2500'.
[  895.557039][T17500] ›: renamed from hsr0 (while UP)
[  896.083621][T17508] netlink: 186 bytes leftover after parsing attributes in process `syz.5.2502'.
[  898.207901][T17533] netlink: 326 bytes leftover after parsing attributes in process `syz.0.2507'.
[  898.894620][ T5848] Bluetooth: hci4: unexpected subevent 0x01 length: 4 < 18
[  899.282496][T17550] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2510'.
[  904.325029][ T5848] Bluetooth: hci4: unexpected event 0x20 length: 123 > 7
[  904.387424][T17586] FAULT_INJECTION: forcing a failure.
[  904.387424][T17586] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  904.505210][T17591] netlink: 'syz.0.2518': attribute type 2 has an invalid length.
[  904.576660][T17586] CPU: 0 UID: 0 PID: 17586 Comm: syz.5.2517 Tainted: G     U              6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0 PREEMPT(full) 
[  904.576702][T17586] Tainted: [U]=USER
[  904.576710][T17586] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  904.576725][T17586] Call Trace:
[  904.576733][T17586]  <TASK>
[  904.576742][T17586]  dump_stack_lvl+0x16c/0x1f0
[  904.576783][T17586]  should_fail_ex+0x512/0x640
[  904.576825][T17586]  _copy_to_user+0x32/0xd0
[  904.576849][T17586]  cpuid_read+0x1d7/0x360
[  904.576889][T17586]  ? __pfx_cpuid_read+0x10/0x10
[  904.576921][T17586]  ? __futex_wait+0x323/0x3c0
[  904.576954][T17586]  ? __pfx_cpuid_smp_cpuid+0x10/0x10
[  904.576997][T17586]  ? iovec_from_user+0xbb/0x140
[  904.577030][T17586]  ? bpf_lsm_file_permission+0x9/0x10
[  904.577053][T17586]  ? security_file_permission+0x71/0x210
[  904.577091][T17586]  ? __pfx_cpuid_read+0x10/0x10
[  904.577125][T17586]  vfs_readv+0x6bf/0x8a0
[  904.577155][T17586]  ? __pfx_vfs_readv+0x10/0x10
[  904.577194][T17586]  ? kmem_cache_free+0x2d4/0x4d0
[  904.577237][T17586]  ? __fget_files+0x20e/0x3c0
[  904.577267][T17586]  ? do_readv+0x132/0x330
[  904.577286][T17586]  do_readv+0x132/0x330
[  904.577307][T17586]  ? __pfx_do_readv+0x10/0x10
[  904.577326][T17586]  ? rcu_is_watching+0x12/0xc0
[  904.577359][T17586]  do_syscall_64+0xcd/0x230
[  904.577399][T17586]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  904.577424][T17586] RIP: 0033:0x7f0a37b8e969
[  904.577443][T17586] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  904.577467][T17586] RSP: 002b:00007f0a3898c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000013
[  904.577490][T17586] RAX: ffffffffffffffda RBX: 00007f0a37db5fa0 RCX: 00007f0a37b8e969
[  904.577506][T17586] RDX: 0000000000000003 RSI: 0000200000000680 RDI: 000000000000000a
[  904.577521][T17586] RBP: 00007f0a37c10ab1 R08: 0000000000000000 R09: 0000000000000000
[  904.577536][T17586] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  904.577550][T17586] R13: 0000000000000000 R14: 00007f0a37db5fa0 R15: 00007ffef8020008
[  904.577580][T17586]  </TASK>
[  907.188078][T17621] afs: Bad value for 'source'
[  908.680910][ T5848] Bluetooth: hci2: unexpected subevent 0x01 length: 4 < 18
[  908.931486][T17637] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2524'.
[  911.795928][T14726] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  911.810458][T14726] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  911.838386][T14726] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  911.851659][T17659] FAULT_INJECTION: forcing a failure.
[  911.851659][T17659] name failslab, interval 1, probability 0, space 0, times 0
[  911.892651][T14726] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  911.923091][T14726] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  912.010204][T17659] CPU: 0 UID: 0 PID: 17659 Comm: syz.0.2529 Tainted: G     U              6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0 PREEMPT(full) 
[  912.010247][T17659] Tainted: [U]=USER
[  912.010259][T17659] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  912.010275][T17659] Call Trace:
[  912.010283][T17659]  <TASK>
[  912.010292][T17659]  dump_stack_lvl+0x16c/0x1f0
[  912.010334][T17659]  should_fail_ex+0x512/0x640
[  912.010371][T17659]  ? __kmalloc_noprof+0xbf/0x510
[  912.010401][T17659]  ? ima_write_template_field_data+0x5d/0x1f0
[  912.010433][T17659]  should_failslab+0xc2/0x120
[  912.010465][T17659]  __kmalloc_noprof+0xd2/0x510
[  912.010509][T17659]  ima_write_template_field_data+0x5d/0x1f0
[  912.010548][T17659]  ima_eventname_init_common+0x1b8/0x260
[  912.010584][T17659]  ? __pfx_ima_eventname_init_common+0x10/0x10
[  912.010624][T17659]  ? trace_kmalloc+0x2b/0xd0
[  912.010655][T17659]  ? __kmalloc_noprof+0x242/0x510
[  912.010689][T17659]  ima_alloc_init_template+0x3a0/0x720
[  912.010723][T17659]  ima_add_violation+0x123/0x3d0
[  912.010752][T17659]  ? __pfx_ima_add_violation+0x10/0x10
[  912.010777][T17659]  ? ima_d_path+0x12b/0x2a0
[  912.010803][T17659]  ? __pfx_ima_d_path+0x10/0x10
[  912.010834][T17659]  ? lockdep_init_map_type+0x5c/0x280
[  912.010869][T17659]  ? ima_inode_get+0x39e/0x580
[  912.010910][T17659]  process_measurement+0x1783/0x23e0
[  912.010959][T17659]  ? __pfx_process_measurement+0x10/0x10
[  912.010997][T17659]  ? __lock_acquire+0x5ca/0x1ba0
[  912.011033][T17659]  ? futex_wait_queue+0x24/0x220
[  912.011107][T17659]  ima_file_mmap+0x1b1/0x1d0
[  912.011145][T17659]  ? __pfx_ima_file_mmap+0x10/0x10
[  912.011191][T17659]  security_mmap_file+0x88c/0x990
[  912.011228][T17659]  vm_mmap_pgoff+0xec/0x450
[  912.011265][T17659]  ? find_held_lock+0x2b/0x80
[  912.011288][T17659]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  912.011329][T17659]  ? __fget_files+0x20e/0x3c0
[  912.011358][T17659]  ksys_mmap_pgoff+0x32c/0x5c0
[  912.011394][T17659]  ? rcu_is_watching+0x12/0xc0
[  912.011420][T17659]  __x64_sys_mmap+0x125/0x190
[  912.011448][T17659]  do_syscall_64+0xcd/0x230
[  912.011497][T17659]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  912.011522][T17659] RIP: 0033:0x7f914b18e969
[  912.011541][T17659] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  912.011566][T17659] RSP: 002b:00007f914bfb0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  912.011589][T17659] RAX: ffffffffffffffda RBX: 00007f914b3b5fa0 RCX: 00007f914b18e969
[  912.011605][T17659] RDX: 00000000000003ff RSI: 0000000000000001 RDI: 000000000000f000
[  912.011620][T17659] RBP: 00007f914b210ab1 R08: 0000000000000003 R09: 0000000000000000
[  912.011635][T17659] R10: 0000000000000012 R11: 0000000000000246 R12: 0000000000000000
[  912.011650][T17659] R13: 0000000000000000 R14: 00007f914b3b5fa0 R15: 00007ffee864cfc8
[  912.011681][T17659]  </TASK>
[  912.014481][   T30] audit: type=1804 audit(4295036578.705:36): pid=17659 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.2529" name="/newroot/46/file0" dev="tmpfs" ino=260 res=0 errno=0
[  913.266654][   T30] audit: type=1800 audit(4295036579.085:37): pid=17659 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2529" name="file0" dev="tmpfs" ino=260 res=0 errno=0
[  913.886842][ T6413] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  913.911679][ T6413] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  913.938202][ T6413] bond0 (unregistering): Released all slaves
[  914.010216][T14726] Bluetooth: hci3: command tx timeout
[  914.207468][ T6413] ovs_: left promiscuous mode
[  914.370978][ T6413] tipc: Left network mode
[  914.963244][T17669] chnl_net:caif_netlink_parms(): no params data found
[  915.128166][T17697] FAULT_INJECTION: forcing a failure.
[  915.128166][T17697] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  915.195869][T17697] CPU: 0 UID: 0 PID: 17697 Comm: syz.0.2535 Tainted: G     U              6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0 PREEMPT(full) 
[  915.195911][T17697] Tainted: [U]=USER
[  915.195920][T17697] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  915.195935][T17697] Call Trace:
[  915.195943][T17697]  <TASK>
[  915.195954][T17697]  dump_stack_lvl+0x16c/0x1f0
[  915.195998][T17697]  should_fail_ex+0x512/0x640
[  915.196040][T17697]  strncpy_from_user+0x3b/0x2e0
[  915.196078][T17697]  getname_flags.part.0+0x8f/0x550
[  915.196116][T17697]  getname_flags+0x93/0xf0
[  915.196155][T17697]  do_sys_openat2+0xb8/0x1d0
[  915.196189][T17697]  ? __pfx_do_sys_openat2+0x10/0x10
[  915.196224][T17697]  ? __pfx___might_resched+0x10/0x10
[  915.196260][T17697]  __x64_sys_openat+0x174/0x210
[  915.196295][T17697]  ? __pfx___x64_sys_openat+0x10/0x10
[  915.196331][T17697]  ? rcu_is_watching+0x12/0xc0
[  915.196364][T17697]  do_syscall_64+0xcd/0x230
[  915.196404][T17697]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  915.196432][T17697] RIP: 0033:0x7f914b18e969
[  915.196452][T17697] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  915.196475][T17697] RSP: 002b:00007f914bfb0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  915.196499][T17697] RAX: ffffffffffffffda RBX: 00007f914b3b5fa0 RCX: 00007f914b18e969
[  915.196515][T17697] RDX: 00000000001414c0 RSI: 0000200000001cc0 RDI: ffffffffffffff9c
[  915.196531][T17697] RBP: 00007f914b210ab1 R08: 0000000000000000 R09: 0000000000000000
[  915.196554][T17697] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  915.196569][T17697] R13: 0000000000000000 R14: 00007f914b3b5fa0 R15: 00007ffee864cfc8
[  915.196605][T17697]  </TASK>
[  915.296285][ T6413] hsr_slave_1: left promiscuous mode
[  915.379738][ T6413] veth1_macvtap: left promiscuous mode
[  915.379841][ T6413] veth0_macvtap: left promiscuous mode
[  915.384930][ T6413] veth1_vlan: left promiscuous mode
[  915.384992][ T6413] veth0_vlan: left promiscuous mode
[  915.912300][T17715] netlink: 186 bytes leftover after parsing attributes in process `syz.5.2537'.
[  916.006142][T17716] netlink: 186 bytes leftover after parsing attributes in process `syz.0.2538'.
[  916.095100][T14726] Bluetooth: hci3: command tx timeout
[  916.343322][T17703] tty tty1: ldisc open failed (-12), clearing slot 0
[  916.368336][T17712] tty tty1: ldisc open failed (-12), clearing slot 0
[  916.569190][ T6413] team0 (unregistering): Port device team_slave_1 removed
[  916.635354][ T6413] team0 (unregistering): Port device team_slave_0 removed
[  917.628346][T17669] bridge0: port 1(bridge_slave_0) entered blocking state
[  917.676687][T17669] bridge0: port 1(bridge_slave_0) entered disabled state
[  917.725431][T17669] bridge_slave_0: entered allmulticast mode
[  917.763338][T17669] bridge_slave_0: entered promiscuous mode
[  917.815196][T17669] bridge0: port 2(bridge_slave_1) entered blocking state
[  917.826063][T17669] bridge0: port 2(bridge_slave_1) entered disabled state
[  917.836559][T17669] bridge_slave_1: entered allmulticast mode
[  917.857642][T17669] bridge_slave_1: entered promiscuous mode
[  917.989067][T17669] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  918.030981][T17669] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  918.133779][ T6422] netdevsim netdevsim15 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  918.170324][T14726] Bluetooth: hci3: command tx timeout
[  918.434902][T17669] team0: Port device team_slave_0 added
[  918.478741][T17669] team0: Port device team_slave_1 added
[  918.729266][T17669] batman_adv: batadv0: Adding interface: batadv_slave_0
[  918.772780][T17669] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  918.921331][T17669] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  919.000686][T17669] batman_adv: batadv0: Adding interface: batadv_slave_1
[  919.033034][T17669] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  919.209628][T17669] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  919.319009][T17745] futex_wake_op: syz.5.2545 tries to shift op by 64; fix this program
[  919.736594][T17754] RDS: rds_bind could not find a transport for ::ffff:172.20.20.187, load rds_tcp or rds_rdma?
[  920.154248][T17669] hsr_slave_0: entered promiscuous mode
[  920.205422][T17669] hsr_slave_1: entered promiscuous mode
[  920.233763][T17669] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  920.250984][T14726] Bluetooth: hci3: command tx timeout
[  920.281925][T17669] Cannot create hsr debugfs directory
[  920.315565][ T6422] bridge_slave_0: left allmulticast mode
[  920.340055][ T6422] bridge_slave_0: left promiscuous mode
[  920.367492][ T6422] bridge0: port 1(bridge_slave_0) entered disabled state
[  920.922201][T17758] FAULT_INJECTION: forcing a failure.
[  920.922201][T17758] name failslab, interval 1, probability 0, space 0, times 0
[  920.992896][T17758] CPU: 0 UID: 0 PID: 17758 Comm: syz.5.2548 Tainted: G     U              6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0 PREEMPT(full) 
[  920.992938][T17758] Tainted: [U]=USER
[  920.992947][T17758] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  920.992962][T17758] Call Trace:
[  920.992970][T17758]  <TASK>
[  920.992979][T17758]  dump_stack_lvl+0x16c/0x1f0
[  920.993022][T17758]  should_fail_ex+0x512/0x640
[  920.993058][T17758]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  920.993086][T17758]  should_failslab+0xc2/0x120
[  920.993117][T17758]  __kmalloc_cache_noprof+0x6a/0x3e0
[  920.993141][T17758]  ? trace_kmalloc+0x2b/0xd0
[  920.993173][T17758]  ? snd_virmidi_input_open+0xc8/0x4a0
[  920.993213][T17758]  snd_virmidi_input_open+0xc8/0x4a0
[  920.993273][T17758]  open_substream+0x47b/0x9b0
[  920.993315][T17758]  rawmidi_open_priv+0x4db/0x6e0
[  920.993346][T17758]  snd_rawmidi_open+0x4cc/0xbf0
[  920.993378][T17758]  ? __pfx_snd_rawmidi_open+0x10/0x10
[  920.993406][T17758]  ? __pfx_default_wake_function+0x10/0x10
[  920.993435][T17758]  ? kobject_get_unless_zero+0x156/0x1e0
[  920.993479][T17758]  ? __pfx_snd_rawmidi_open+0x10/0x10
[  920.993504][T17758]  snd_open+0x201/0x450
[  920.993538][T17758]  ? __pfx_snd_open+0x10/0x10
[  920.993570][T17758]  chrdev_open+0x231/0x6a0
[  920.993596][T17758]  ? __pfx_apparmor_file_open+0x10/0x10
[  920.993630][T17758]  ? __pfx_chrdev_open+0x10/0x10
[  920.993659][T17758]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  920.993704][T17758]  do_dentry_open+0x741/0x1c10
[  920.993730][T17758]  ? __pfx_chrdev_open+0x10/0x10
[  920.993763][T17758]  vfs_open+0x82/0x3f0
[  920.993800][T17758]  path_openat+0x1e5e/0x2d40
[  920.993837][T17758]  ? __pfx_path_openat+0x10/0x10
[  920.993869][T17758]  do_filp_open+0x20b/0x470
[  920.993894][T17758]  ? __pfx_do_filp_open+0x10/0x10
[  920.993941][T17758]  ? alloc_fd+0x471/0x7d0
[  920.993971][T17758]  do_sys_openat2+0x11b/0x1d0
[  920.994004][T17758]  ? __pfx_do_sys_openat2+0x10/0x10
[  920.994039][T17758]  ? find_held_lock+0x2b/0x80
[  920.994071][T17758]  __x64_sys_openat+0x174/0x210
[  920.994106][T17758]  ? __pfx___x64_sys_openat+0x10/0x10
[  920.994143][T17758]  ? rcu_is_watching+0x12/0xc0
[  920.994174][T17758]  do_syscall_64+0xcd/0x230
[  920.994214][T17758]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  920.994245][T17758] RIP: 0033:0x7f0a37b8e969
[  920.994266][T17758] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  920.994292][T17758] RSP: 002b:00007f0a3898c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  920.994315][T17758] RAX: ffffffffffffffda RBX: 00007f0a37db5fa0 RCX: 00007f0a37b8e969
[  920.994331][T17758] RDX: 0000000000000000 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  920.994347][T17758] RBP: 00007f0a37c10ab1 R08: 0000000000000000 R09: 0000000000000000
[  920.994363][T17758] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  920.994378][T17758] R13: 0000000000000000 R14: 00007f0a37db5fa0 R15: 00007ffef8020008
[  920.994409][T17758]  </TASK>
[  921.359628][T17756] netlink: 94 bytes leftover after parsing attributes in process `syz.0.2547'.
[  921.368846][T17756] netlink: 94 bytes leftover after parsing attributes in process `syz.0.2547'.
[  922.780557][T17765] zswap: compressor  not available
[  922.927538][T17768] zswap: compressor  not available
[  923.808171][ T6422] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  923.919538][ T6422] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  923.988424][ T6422] bond0 (unregistering): Released all slaves
[  925.445126][T17805] FAULT_INJECTION: forcing a failure.
[  925.445126][T17805] name fail_futex, interval 1, probability 0, space 0, times 0
[  925.488645][T14726] Bluetooth: hci1: unexpected subevent 0x01 length: 4 < 18
[  925.537172][T17805] CPU: 0 UID: 0 PID: 17805 Comm: syz.1.2558 Tainted: G     U              6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0 PREEMPT(full) 
[  925.537214][T17805] Tainted: [U]=USER
[  925.537222][T17805] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  925.537237][T17805] Call Trace:
[  925.537245][T17805]  <TASK>
[  925.537254][T17805]  dump_stack_lvl+0x16c/0x1f0
[  925.537295][T17805]  should_fail_ex+0x512/0x640
[  925.537336][T17805]  get_futex_key+0x49e/0x1000
[  925.537366][T17805]  ? __pfx_get_futex_key+0x10/0x10
[  925.537401][T17805]  futex_wake+0xe7/0x4e0
[  925.537435][T17805]  ? __pfx_futex_wake+0x10/0x10
[  925.537470][T17805]  ? kmem_cache_free+0x2d4/0x4d0
[  925.537495][T17805]  ? fd_install+0x225/0x750
[  925.537515][T17805]  ? putname+0x154/0x1a0
[  925.537570][T17805]  do_futex+0x1e3/0x350
[  925.537598][T17805]  ? __pfx_do_futex+0x10/0x10
[  925.537628][T17805]  ? find_held_lock+0x2b/0x80
[  925.537656][T17805]  __x64_sys_futex+0x1e0/0x4c0
[  925.537686][T17805]  ? __x64_sys_openat+0x174/0x210
[  925.537720][T17805]  ? __pfx___x64_sys_futex+0x10/0x10
[  925.537756][T17805]  ? rcu_is_watching+0x12/0xc0
[  925.537789][T17805]  do_syscall_64+0xcd/0x230
[  925.537830][T17805]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  925.537856][T17805] RIP: 0033:0x7fc9bef8e969
[  925.537876][T17805] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  925.537900][T17805] RSP: 002b:00007fc9bfeab0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  925.537923][T17805] RAX: ffffffffffffffda RBX: 00007fc9bf1b5fa8 RCX: 00007fc9bef8e969
[  925.537939][T17805] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fc9bf1b5fac
[  925.537954][T17805] RBP: 00007fc9bf1b5fa0 R08: 00007fc9bfeac000 R09: 0000000000000000
[  925.537970][T17805] R10: 0000000000000007 R11: 0000000000000246 R12: 00007fc9bf1b5fac
[  925.537986][T17805] R13: 0000000000000000 R14: 00007fff273afb80 R15: 00007fff273afc68
[  925.538015][T17805]  </TASK>
[  925.744575][T17808] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2557'.
[  927.784245][T17669] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  928.081266][T17669] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  928.133374][T17669] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  928.309572][ T6422] hsr_slave_0: left promiscuous mode
[  928.338578][ T6422] hsr_slave_1: left promiscuous mode
[  928.363283][ T6422] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  928.398361][ T6422] batman_adv: batadv0: Removing interface: batadv_slave_0
[  928.431458][ T6422] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  928.472878][ T6422] batman_adv: batadv0: Removing interface: batadv_slave_1
[  928.539629][ T6422] veth1_macvtap: left promiscuous mode
[  928.576394][ T6422] veth0_macvtap: left promiscuous mode
[  928.599072][ T6422] veth1_vlan: left promiscuous mode
[  928.624719][ T6422] veth0_vlan: left promiscuous mode
[  931.382353][ T6422] team0 (unregistering): Port device team_slave_1 removed
[  934.288871][T17669] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  934.545495][T17860] netlink: Unknown conntrack attr (0)
[  935.321793][T17669] 8021q: adding VLAN 0 to HW filter on device bond0
[  935.462522][T17669] 8021q: adding VLAN 0 to HW filter on device team0
[  935.545674][T12284] bridge0: port 1(bridge_slave_0) entered blocking state
[  935.553185][T12284] bridge0: port 1(bridge_slave_0) entered forwarding state
[  935.664470][T12284] bridge0: port 2(bridge_slave_1) entered blocking state
[  935.672014][T12284] bridge0: port 2(bridge_slave_1) entered forwarding state
[  936.349491][T17892] ubi: mtd0 is already attached to ubi0
[  936.541438][T17894] kernel read not supported for file /set_event_notrace_pid (pid: 17894 comm: syz.1.2570)
[  936.630069][   T30] audit: type=1800 audit(4295036603.315:38): pid=17894 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2570" name="set_event_notrace_pid" dev="tracefs" ino=1074 res=0 errno=0
[  936.749018][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  936.762781][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  937.554431][T17669] 8021q: adding VLAN 0 to HW filter on device batadv0
[  939.456151][T17669] veth0_vlan: entered promiscuous mode
[  939.566154][T17669] veth1_vlan: entered promiscuous mode
[  939.708867][T17669] veth0_macvtap: entered promiscuous mode
[  939.789752][T17669] veth1_macvtap: entered promiscuous mode
[  939.889192][T17669] batman_adv: batadv0: Interface activated: batadv_slave_0
[  939.968202][T17669] batman_adv: batadv0: Interface activated: batadv_slave_1
[  940.245464][T17669] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  940.259452][T17928] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2574'.
[  940.296420][T17669] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  940.315737][T17669] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  940.340513][T17669] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  940.547409][T17928] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  940.648827][T17928] batman_adv: batadv0: Removing interface: batadv_slave_0
[  940.724695][T17928] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  940.804145][T17928] batman_adv: batadv0: Removing interface: batadv_slave_1
[  941.733363][T12284] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  941.792080][T12284] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  942.001405][T12284] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  942.009441][T12284] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  942.510334][T17958] program syz.4.2527 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  945.693249][ T5848] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  945.710315][ T5848] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  945.730627][ T5848] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  945.744297][ T5848] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  945.752562][ T5848] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  946.076285][ T6426] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  946.314430][ T6426] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  946.757508][ T6426] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  946.962270][ T6426] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  947.854163][ T5848] Bluetooth: hci2: command tx timeout
[  947.880482][ T6426] team0: left allmulticast mode
[  947.913381][ T6426] team_slave_1: left allmulticast mode
[  947.919753][ T6426] team0: left promiscuous mode
[  947.973430][ T6426] team_slave_1: left promiscuous mode
[  947.979354][ T6426] bridge0: port 3(team0) entered disabled state
[  948.118856][ T6426] bridge_slave_0: left allmulticast mode
[  948.155365][ T6426] bridge_slave_0: left promiscuous mode
[  948.192608][ T6426] bridge0: port 1(bridge_slave_0) entered disabled state
[  949.111857][ T6426] erspan0 (unregistering): left allmulticast mode
[  949.940568][ T5848] Bluetooth: hci2: command tx timeout
[  950.092764][T18018] FAULT_INJECTION: forcing a failure.
[  950.092764][T18018] name failslab, interval 1, probability 0, space 0, times 0
[  950.135764][T18018] CPU: 0 UID: 0 PID: 18018 Comm: syz.4.2592 Tainted: G     U              6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0 PREEMPT(full) 
[  950.135807][T18018] Tainted: [U]=USER
[  950.135815][T18018] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  950.135830][T18018] Call Trace:
[  950.135838][T18018]  <TASK>
[  950.135848][T18018]  dump_stack_lvl+0x16c/0x1f0
[  950.135891][T18018]  should_fail_ex+0x512/0x640
[  950.135941][T18018]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  950.135973][T18018]  should_failslab+0xc2/0x120
[  950.136005][T18018]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  950.136033][T18018]  ? getname_flags.part.0+0x4c/0x550
[  950.136071][T18018]  getname_flags.part.0+0x4c/0x550
[  950.136108][T18018]  getname_flags+0x93/0xf0
[  950.136146][T18018]  do_sys_openat2+0xb8/0x1d0
[  950.136180][T18018]  ? __pfx_do_sys_openat2+0x10/0x10
[  950.136225][T18018]  __x64_sys_openat+0x174/0x210
[  950.136260][T18018]  ? __pfx___x64_sys_openat+0x10/0x10
[  950.136296][T18018]  ? xfd_validate_state+0x5d/0x180
[  950.136333][T18018]  do_syscall_64+0xcd/0x230
[  950.136374][T18018]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  950.136400][T18018] RIP: 0033:0x7f2f77f8d2d0
[  950.136419][T18018] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[  950.136444][T18018] RSP: 002b:00007f2f78d9cf10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  950.136467][T18018] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f2f77f8d2d0
[  950.136486][T18018] RDX: 0000000000000002 RSI: 00007f2f78d9cfa0 RDI: 00000000ffffff9c
[  950.136505][T18018] RBP: 00007f2f78d9cfa0 R08: 0000000000000000 R09: 0000000000000000
[  950.136523][T18018] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  950.136538][T18018] R13: 0000000000000000 R14: 00007f2f781b5fa0 R15: 00007ffd0c221458
[  950.136568][T18018]  </TASK>
[  950.337327][    C0] vkms_vblank_simulate: vblank timer overrun
[  950.595659][T18035] FAULT_INJECTION: forcing a failure.
[  950.595659][T18035] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  950.609862][T18035] CPU: 0 UID: 0 PID: 18035 Comm: syz.5.2595 Tainted: G     U              6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0 PREEMPT(full) 
[  950.609902][T18035] Tainted: [U]=USER
[  950.609910][T18035] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  950.609925][T18035] Call Trace:
[  950.609934][T18035]  <TASK>
[  950.609943][T18035]  dump_stack_lvl+0x16c/0x1f0
[  950.609996][T18035]  should_fail_ex+0x512/0x640
[  950.610037][T18035]  _copy_from_user+0x2e/0xd0
[  950.610083][T18035]  move_addr_to_kernel+0x65/0x170
[  950.610124][T18035]  __sys_sendto+0x1be/0x510
[  950.610150][T18035]  ? __pfx___sys_sendto+0x10/0x10
[  950.610186][T18035]  ? fput+0x70/0xf0
[  950.610226][T18035]  ? xfd_validate_state+0x5d/0x180
[  950.610251][T18035]  ? rcu_is_watching+0x12/0xc0
[  950.610279][T18035]  __x64_sys_sendto+0xe0/0x1c0
[  950.610304][T18035]  ? do_syscall_64+0x91/0x230
[  950.610342][T18035]  ? lockdep_hardirqs_on+0x7c/0x110
[  950.610378][T18035]  do_syscall_64+0xcd/0x230
[  950.610417][T18035]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  950.610441][T18035] RIP: 0033:0x7f0a37b907fc
[  950.610461][T18035] Code: 2a 5f 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 70 5f 02 00 48 8b
[  950.610486][T18035] RSP: 002b:00007f0a3898aec0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  950.610508][T18035] RAX: ffffffffffffffda RBX: 00007f0a3898afc0 RCX: 00007f0a37b907fc
[  950.610524][T18035] RDX: 0000000000000020 RSI: 00007f0a3898b010 RDI: 0000000000000007
[  950.610539][T18035] RBP: 0000000000000000 R08: 00007f0a3898af14 R09: 000000000000000c
[  950.610554][T18035] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000007
[  950.610569][T18035] R13: 00007f0a3898af68 R14: 00007f0a3898b010 R15: 0000000000000000
[  950.610598][T18035]  </TASK>
[  950.791945][    C0] vkms_vblank_simulate: vblank timer overrun
[  950.828359][ T6426] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  950.840334][ T6426] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  950.850677][ T6426] bond0 (unregistering): Released all slaves
[  951.102341][ T6426] HfR: left promiscuous mode
[  951.442150][T18045] netlink: 186 bytes leftover after parsing attributes in process `syz.5.2595'.
[  951.719578][T17984] chnl_net:caif_netlink_parms(): no params data found
[  952.014452][ T5848] Bluetooth: hci2: command tx timeout
[  952.703401][T17984] bridge0: port 1(bridge_slave_0) entered blocking state
[  952.757160][T17984] bridge0: port 1(bridge_slave_0) entered disabled state
[  952.797517][T17984] bridge_slave_0: entered allmulticast mode
[  952.857196][T17984] bridge_slave_0: entered promiscuous mode
[  952.991077][T17984] bridge0: port 2(bridge_slave_1) entered blocking state
[  953.057060][T17984] bridge0: port 2(bridge_slave_1) entered disabled state
[  953.120351][T17984] bridge_slave_1: entered allmulticast mode
[  953.171002][T17984] bridge_slave_1: entered promiscuous mode
[  953.511271][T18073] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2600'.
[  953.605671][T17984] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  953.704860][T18078] FAULT_INJECTION: forcing a failure.
[  953.704860][T18078] name fail_futex, interval 1, probability 0, space 0, times 0
[  953.734368][T17984] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  953.830380][T18078] CPU: 0 UID: 0 PID: 18078 Comm: syz.5.2601 Tainted: G     U              6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0 PREEMPT(full) 
[  953.830422][T18078] Tainted: [U]=USER
[  953.830431][T18078] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  953.830447][T18078] Call Trace:
[  953.830456][T18078]  <TASK>
[  953.830466][T18078]  dump_stack_lvl+0x16c/0x1f0
[  953.830511][T18078]  should_fail_ex+0x512/0x640
[  953.830552][T18078]  get_futex_key+0x49e/0x1000
[  953.830578][T18078]  ? find_held_lock+0x2b/0x80
[  953.830604][T18078]  ? __pfx_get_futex_key+0x10/0x10
[  953.830637][T18078]  ? do_raw_spin_unlock+0x172/0x230
[  953.830676][T18078]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  953.830712][T18078]  ? trace_pid_list_is_set+0x100/0x150
[  953.830742][T18078]  futex_wait_setup+0x78/0x290
[  953.830775][T18078]  ? event_filter_pid_sched_wakeup_probe_post+0x103/0x270
[  953.830814][T18078]  __futex_wait+0x266/0x3c0
[  953.830848][T18078]  ? __pfx___futex_wait+0x10/0x10
[  953.830880][T18078]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  953.830917][T18078]  ? __pfx_futex_wake_mark+0x10/0x10
[  953.830963][T18078]  futex_wait+0xe8/0x380
[  953.830994][T18078]  ? __pfx_futex_wait+0x10/0x10
[  953.831032][T18078]  ? kmem_cache_free+0x2d4/0x4d0
[  953.831058][T18078]  ? fd_install+0x225/0x750
[  953.831078][T18078]  ? putname+0x154/0x1a0
[  953.831111][T18078]  do_futex+0x229/0x350
[  953.831138][T18078]  ? __pfx_do_futex+0x10/0x10
[  953.831172][T18078]  __x64_sys_futex+0x1e0/0x4c0
[  953.831206][T18078]  ? __pfx___x64_sys_futex+0x10/0x10
[  953.831235][T18078]  ? rcu_is_watching+0x12/0xc0
[  953.831269][T18078]  do_syscall_64+0xcd/0x230
[  953.831309][T18078]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  953.831336][T18078] RIP: 0033:0x7f0a37b8e969
[  953.831355][T18078] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  953.831380][T18078] RSP: 002b:00007f0a3896b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  953.831403][T18078] RAX: ffffffffffffffda RBX: 00007f0a37db6088 RCX: 00007f0a37b8e969
[  953.831420][T18078] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f0a37db6088
[  953.831436][T18078] RBP: 00007f0a37db6080 R08: 0000000000000000 R09: 0000000000000000
[  953.831452][T18078] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f0a37db608c
[  953.831467][T18078] R13: 0000000000000000 R14: 00007ffef801ff20 R15: 00007ffef8020008
[  953.831497][T18078]  </TASK>
[  954.405367][ T5848] Bluetooth: hci2: command tx timeout
[  954.966185][T17984] team0: Port device team_slave_0 added
[  955.089334][ T6426] hsr_slave_1: left promiscuous mode
[  955.137265][ T6426] veth1_macvtap: left promiscuous mode
[  955.187070][ T6426] veth0_macvtap: left promiscuous mode
[  955.925022][T18101] [U] 
[  955.927902][T18101] [U] 
[  955.930841][T18101] [U] 
[  955.934727][T18101] [U] 
[  955.991563][T18104] [U] 
[  956.831964][ T6426] team0 (unregistering): Port device team_slave_1 removed
[  957.748383][T17984] team0: Port device team_slave_1 added
[  958.043062][T17984] batman_adv: batadv0: Adding interface: batadv_slave_0
[  958.064292][T17984] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  958.132751][T17984] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  958.199684][T17984] batman_adv: batadv0: Adding interface: batadv_slave_1
[  958.252084][T17984] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  958.335854][T17984] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  958.748231][T17984] hsr_slave_0: entered promiscuous mode
[  958.785584][T17984] hsr_slave_1: entered promiscuous mode
[  958.825102][T17984] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  958.859740][T17984] Cannot create hsr debugfs directory
[  959.277104][T18136] netlink: 80 bytes leftover after parsing attributes in process `syz.5.2608'.
[  959.379586][T18136] vhci_hcd: invalid port number 16
[  962.061728][T17984] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  962.145511][T17984] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  962.214072][T17984] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  962.269547][T17984] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  962.848968][T17984] 8021q: adding VLAN 0 to HW filter on device bond0
[  962.988248][T17984] 8021q: adding VLAN 0 to HW filter on device team0
[  963.033712][T12284] bridge0: port 1(bridge_slave_0) entered blocking state
[  963.033842][T12284] bridge0: port 1(bridge_slave_0) entered forwarding state
[  963.124919][ T6413] bridge0: port 2(bridge_slave_1) entered blocking state
[  963.125016][ T6413] bridge0: port 2(bridge_slave_1) entered forwarding state
[  963.508978][T18179] tty tty17: ldisc open failed (-12), clearing slot 16
[  964.445956][T17984] 8021q: adding VLAN 0 to HW filter on device batadv0
[  964.841326][T17984] veth0_vlan: entered promiscuous mode
[  964.900860][T17984] veth1_vlan: entered promiscuous mode
[  965.095436][T17984] veth0_macvtap: entered promiscuous mode
[  965.098932][T17984] veth1_macvtap: entered promiscuous mode
[  965.192168][T18216] netlink: 'syz.0.2618': attribute type 11 has an invalid length.
[  965.232518][T17984] batman_adv: batadv0: Interface activated: batadv_slave_0
[  965.236910][T17984] batman_adv: batadv0: Interface activated: batadv_slave_1
[  965.308813][T17984] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  965.308891][T17984] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  965.308925][T17984] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  965.308958][T17984] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  965.768709][ T6426] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  965.768768][ T6426] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  965.966766][ T6430] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  965.966798][ T6430] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  966.447013][ T5848] Bluetooth: hci2: unexpected subevent 0x01 length: 4 < 18
[  966.551447][T18234] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2580'.
[  972.860429][T18375] QAT: Device 80 not found
[  972.921741][T18377] FAULT_INJECTION: forcing a failure.
[  972.921741][T18377] name failslab, interval 1, probability 0, space 0, times 0
[  972.987093][T18377] CPU: 0 UID: 0 PID: 18377 Comm: syz.0.2641 Tainted: G     U              6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0 PREEMPT(full) 
[  972.987134][T18377] Tainted: [U]=USER
[  972.987142][T18377] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  972.987156][T18377] Call Trace:
[  972.987164][T18377]  <TASK>
[  972.987173][T18377]  dump_stack_lvl+0x16c/0x1f0
[  972.987215][T18377]  should_fail_ex+0x512/0x640
[  972.987249][T18377]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  972.987279][T18377]  should_failslab+0xc2/0x120
[  972.987309][T18377]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  972.987337][T18377]  ? getname_flags.part.0+0x4c/0x550
[  972.987372][T18377]  getname_flags.part.0+0x4c/0x550
[  972.987406][T18377]  getname_flags+0x93/0xf0
[  972.987442][T18377]  do_sys_openat2+0xb8/0x1d0
[  972.987474][T18377]  ? __pfx_do_sys_openat2+0x10/0x10
[  972.987508][T18377]  ? __fget_files+0x20e/0x3c0
[  972.987541][T18377]  __x64_sys_openat+0x174/0x210
[  972.987574][T18377]  ? __pfx___x64_sys_openat+0x10/0x10
[  972.987607][T18377]  ? ksys_write+0x1b9/0x240
[  972.987630][T18377]  ? rcu_is_watching+0x12/0xc0
[  972.987661][T18377]  do_syscall_64+0xcd/0x230
[  972.987698][T18377]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  972.987723][T18377] RIP: 0033:0x7f914b18e969
[  972.987741][T18377] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  972.987764][T18377] RSP: 002b:00007f914bfb0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  972.987789][T18377] RAX: ffffffffffffffda RBX: 00007f914b3b5fa0 RCX: 00007f914b18e969
[  972.987806][T18377] RDX: 0000000000000000 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  972.987821][T18377] RBP: 00007f914bfb0090 R08: 0000000000000000 R09: 0000000000000000
[  972.987836][T18377] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  972.987851][T18377] R13: 0000000000000000 R14: 00007f914b3b5fa0 R15: 00007ffee864cfc8
[  972.987881][T18377]  </TASK>
[  973.439868][T18383] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2643'.
[  973.653934][T18383] bridge_slave_1: left allmulticast mode
[  973.671982][T18383] bridge_slave_1: left promiscuous mode
[  973.722724][T18383] bridge0: port 2(bridge_slave_1) entered disabled state
[  973.806706][T18383] bridge_slave_0: left allmulticast mode
[  973.838536][T18383] bridge_slave_0: left promiscuous mode
[  973.888717][T18383] bridge0: port 1(bridge_slave_0) entered disabled state
[  975.383101][T18422] bridge0: port 3(team0) entered blocking state
[  975.389678][T18422] bridge0: port 3(team0) entered disabled state
[  975.502456][T18422] team0: entered allmulticast mode
[  975.541503][T18422] team_slave_0: entered allmulticast mode
[  975.576451][T18422] team_slave_1: entered allmulticast mode
[  975.625413][T18422] team0: entered promiscuous mode
[  975.665337][T18422] team_slave_0: entered promiscuous mode
[  975.699879][T18422] team_slave_1: entered promiscuous mode
[  975.736748][T18422] bridge0: port 3(team0) entered blocking state
[  975.743234][T18422] bridge0: port 3(team0) entered forwarding state
[  976.899708][T18436] FAULT_INJECTION: forcing a failure.
[  976.899708][T18436] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  976.961787][T18436] CPU: 0 UID: 0 PID: 18436 Comm: syz.4.2650 Tainted: G     U              6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0 PREEMPT(full) 
[  976.961830][T18436] Tainted: [U]=USER
[  976.961837][T18436] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  976.961852][T18436] Call Trace:
[  976.961861][T18436]  <TASK>
[  976.961871][T18436]  dump_stack_lvl+0x16c/0x1f0
[  976.961914][T18436]  should_fail_ex+0x512/0x640
[  976.961967][T18436]  strncpy_from_user+0x3b/0x2e0
[  976.962004][T18436]  getname_flags.part.0+0x8f/0x550
[  976.962043][T18436]  getname_flags+0x93/0xf0
[  976.962081][T18436]  do_sys_openat2+0xb8/0x1d0
[  976.962114][T18436]  ? __pfx_do_sys_openat2+0x10/0x10
[  976.962150][T18436]  ? __fget_files+0x20e/0x3c0
[  976.962177][T18436]  __x64_sys_openat+0x174/0x210
[  976.962213][T18436]  ? __pfx___x64_sys_openat+0x10/0x10
[  976.962246][T18436]  ? ksys_write+0x1b9/0x240
[  976.962269][T18436]  ? rcu_is_watching+0x12/0xc0
[  976.962301][T18436]  do_syscall_64+0xcd/0x230
[  976.962340][T18436]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  976.962364][T18436] RIP: 0033:0x7f2f77f8e969
[  976.962383][T18436] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  976.962407][T18436] RSP: 002b:00007f2f78d9d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  976.962428][T18436] RAX: ffffffffffffffda RBX: 00007f2f781b5fa0 RCX: 00007f2f77f8e969
[  976.962445][T18436] RDX: 0000000000000000 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  976.962460][T18436] RBP: 00007f2f78d9d090 R08: 0000000000000000 R09: 0000000000000000
[  976.962474][T18436] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  976.962489][T18436] R13: 0000000000000000 R14: 00007f2f781b5fa0 R15: 00007ffd0c221458
[  976.962518][T18436]  </TASK>
[  977.869570][T18442] : renamed from gre0 (while UP)
[  978.289492][T18454] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2654'.
[  979.230801][T18455] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2654'.
[  980.590971][T18484] IPVS: length: 24 != 25769803800
[  980.945335][T18487] can: request_module (can-proto-0) failed.
[  983.319097][T18530] FAULT_INJECTION: forcing a failure.
[  983.319097][T18530] name failslab, interval 1, probability 0, space 0, times 0
[  983.520120][T18530] CPU: 0 UID: 0 PID: 18530 Comm: syz.5.2669 Tainted: G     U              6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0 PREEMPT(full) 
[  983.520162][T18530] Tainted: [U]=USER
[  983.520170][T18530] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  983.520186][T18530] Call Trace:
[  983.520194][T18530]  <TASK>
[  983.520204][T18530]  dump_stack_lvl+0x16c/0x1f0
[  983.520248][T18530]  should_fail_ex+0x512/0x640
[  983.520294][T18530]  ? fs_reclaim_acquire+0xae/0x150
[  983.520342][T18530]  ? tomoyo_encode2+0x100/0x3e0
[  983.520376][T18530]  should_failslab+0xc2/0x120
[  983.520408][T18530]  __kmalloc_noprof+0xd2/0x510
[  983.520434][T18530]  ? d_absolute_path+0x136/0x1a0
[  983.520470][T18530]  tomoyo_encode2+0x100/0x3e0
[  983.520509][T18530]  tomoyo_encode+0x29/0x50
[  983.520543][T18530]  tomoyo_realpath_from_path+0x18f/0x6e0
[  983.520588][T18530]  tomoyo_check_open_permission+0x2ab/0x3c0
[  983.520622][T18530]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  983.520685][T18530]  ? do_raw_spin_lock+0x12c/0x2b0
[  983.520730][T18530]  tomoyo_file_open+0x6b/0x90
[  983.520756][T18530]  security_file_open+0x84/0x1e0
[  983.520791][T18530]  do_dentry_open+0x596/0x1c10
[  983.520826][T18530]  vfs_open+0x82/0x3f0
[  983.520862][T18530]  path_openat+0x1e5e/0x2d40
[  983.520898][T18530]  ? __pfx_path_openat+0x10/0x10
[  983.520931][T18530]  do_filp_open+0x20b/0x470
[  983.520955][T18530]  ? __pfx_do_filp_open+0x10/0x10
[  983.521001][T18530]  ? alloc_fd+0x471/0x7d0
[  983.521032][T18530]  do_sys_openat2+0x11b/0x1d0
[  983.521065][T18530]  ? __pfx_do_sys_openat2+0x10/0x10
[  983.521110][T18530]  __x64_sys_openat+0x174/0x210
[  983.521146][T18530]  ? __pfx___x64_sys_openat+0x10/0x10
[  983.521184][T18530]  ? rcu_is_watching+0x12/0xc0
[  983.521217][T18530]  do_syscall_64+0xcd/0x230
[  983.521258][T18530]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  983.521284][T18530] RIP: 0033:0x7f0a37b8e969
[  983.521304][T18530] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  983.521336][T18530] RSP: 002b:00007f0a3896b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  983.521359][T18530] RAX: ffffffffffffffda RBX: 00007f0a37db6080 RCX: 00007f0a37b8e969
[  983.521376][T18530] RDX: 0000000000000440 RSI: 0000200000000280 RDI: ffffffffffffff9c
[  983.521392][T18530] RBP: 00007f0a37c10ab1 R08: 0000000000000000 R09: 0000000000000000
[  983.521408][T18530] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  983.521423][T18530] R13: 0000000000000000 R14: 00007f0a37db6080 R15: 00007ffef8020008
[  983.521454][T18530]  </TASK>
[  983.786143][T18528] FAULT_INJECTION: forcing a failure.
[  983.786143][T18528] name failslab, interval 1, probability 0, space 0, times 0
[  983.799691][T18528] CPU: 0 UID: 0 PID: 18528 Comm: syz.5.2669 Tainted: G     U              6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0 PREEMPT(full) 
[  983.799732][T18528] Tainted: [U]=USER
[  983.799740][T18528] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  983.799755][T18528] Call Trace:
[  983.799766][T18528]  <TASK>
[  983.799777][T18528]  dump_stack_lvl+0x16c/0x1f0
[  983.799824][T18528]  should_fail_ex+0x512/0x640
[  983.799864][T18528]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  983.799895][T18528]  should_failslab+0xc2/0x120
[  983.799933][T18528]  __kmalloc_cache_noprof+0x6a/0x3e0
[  983.799961][T18528]  ? ipv6_add_dev+0x6b7/0x15f0
[  983.799991][T18528]  ? kasan_save_track+0x14/0x30
[  983.800021][T18528]  ipv6_add_dev+0x6b7/0x15f0
[  983.800055][T18528]  addrconf_notify+0x53e/0x19e0
[  983.800098][T18528]  ? ip6mr_device_event+0x1bc/0x230
[  983.800144][T18528]  notifier_call_chain+0xbc/0x410
[  983.800175][T18528]  ? __pfx_addrconf_notify+0x10/0x10
[  983.800219][T18528]  call_netdevice_notifiers_info+0xbe/0x140
[  983.800263][T18528]  register_netdevice+0x182e/0x2270
[  983.800303][T18528]  ? __pfx_register_netdevice+0x10/0x10
[  983.800357][T18528]  __ip_tunnel_create+0x4a8/0x680
[  983.800395][T18528]  ? __pfx___ip_tunnel_create+0x10/0x10
[  983.800436][T18528]  ip_tunnel_init_net+0x22f/0x7d0
[  983.800475][T18528]  ? __pfx_ip_tunnel_init_net+0x10/0x10
[  983.800515][T18528]  ? trace_kmalloc+0x2b/0xd0
[  983.800552][T18528]  ? lockdep_init_map_type+0x5c/0x280
[  983.800591][T18528]  ? __pfx_ipgre_tap_init_net+0x10/0x10
[  983.800620][T18528]  ops_init+0x1df/0x5f0
[  983.800658][T18528]  setup_net+0x21e/0x850
[  983.800694][T18528]  ? __pfx_setup_net+0x10/0x10
[  983.800725][T18528]  ? lockdep_init_map_type+0x5c/0x280
[  983.800758][T18528]  ? __pfx_down_read_killable+0x10/0x10
[  983.800789][T18528]  ? debug_mutex_init+0x37/0x70
[  983.800818][T18528]  copy_net_ns+0x2a6/0x5f0
[  983.800859][T18528]  create_new_namespaces+0x3ea/0xad0
[  983.800894][T18528]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  983.800928][T18528]  ksys_unshare+0x45b/0xa40
[  983.800964][T18528]  ? __pfx_ksys_unshare+0x10/0x10
[  983.800996][T18528]  ? xfd_validate_state+0x5d/0x180
[  983.801021][T18528]  ? rcu_is_watching+0x12/0xc0
[  983.801051][T18528]  __x64_sys_unshare+0x31/0x40
[  983.801085][T18528]  do_syscall_64+0xcd/0x230
[  983.801125][T18528]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  983.801151][T18528] RIP: 0033:0x7f0a37b8e969
[  983.801173][T18528] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  983.801198][T18528] RSP: 002b:00007f0a3898c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  983.801220][T18528] RAX: ffffffffffffffda RBX: 00007f0a37db5fa0 RCX: 00007f0a37b8e969
[  983.801237][T18528] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  983.801252][T18528] RBP: 00007f0a37c10ab1 R08: 0000000000000000 R09: 0000000000000000
[  983.801266][T18528] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  983.801281][T18528] R13: 0000000000000000 R14: 00007f0a37db5fa0 R15: 00007ffef8020008
[  983.801312][T18528]  </TASK>
[  984.286202][T18530] ERROR: Out of memory at tomoyo_realpath_from_path.
[  998.186213][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  998.195132][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[ 1036.095385][T14726] Bluetooth: hci3: command 0x0406 tx timeout
[ 1059.619673][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[ 1059.626180][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[ 1071.933234][ T5848] Bluetooth: hci2: command 0x0406 tx timeout
[ 1121.065768][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[ 1121.073655][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[ 1145.375244][   T31] INFO: task jbd2/sda1-8:5161 blocked for more than 143 seconds.
[ 1145.386012][   T31]       Tainted: G     U              6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0
[ 1145.401957][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1145.422522][   T31] task:jbd2/sda1-8     state:D stack:26008 pid:5161  tgid:5161  ppid:2      task_flags:0x240040 flags:0x00004000
[ 1145.442107][   T31] Call Trace:
[ 1145.445426][   T31]  <TASK>
[ 1145.448472][   T31]  __schedule+0x116f/0x5de0
[ 1145.462348][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[ 1145.467339][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[ 1145.490803][   T31]  ? __pfx___schedule+0x10/0x10
[ 1145.509000][   T31]  ? find_held_lock+0x2b/0x80
[ 1145.518977][   T31]  ? schedule+0x2d7/0x3a0
[ 1145.529993][   T31]  schedule+0xe7/0x3a0
[ 1145.534113][   T31]  io_schedule+0xbf/0x130
[ 1145.538469][   T31]  bit_wait_io+0x15/0xe0
[ 1145.557337][   T31]  __wait_on_bit+0x65/0x180
[ 1145.568236][   T31]  ? __pfx_bit_wait_io+0x10/0x10
[ 1145.576741][   T31]  out_of_line_wait_on_bit+0xd9/0x110
[ 1145.584633][   T31]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[ 1145.595502][   T31]  ? __pfx_wake_bit_function+0x10/0x10
[ 1145.606088][   T31]  ? __pfx___might_resched+0x10/0x10
[ 1145.613279][   T31]  __wait_on_buffer+0x64/0x70
[ 1145.618023][   T31]  jbd2_journal_commit_transaction+0x382e/0x6830
[ 1145.626866][   T31]  ? __pfx_jbd2_journal_commit_transaction+0x10/0x10
[ 1145.633759][   T31]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1145.639587][   T31]  ? debug_object_deactivate+0x1ec/0x3a0
[ 1145.647569][   T31]  ? __pfx_debug_object_deactivate+0x10/0x10
[ 1145.653867][   T31]  ? find_held_lock+0x2b/0x80
[ 1145.658564][   T31]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1145.667083][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1145.672102][   T31]  kjournald2+0x1f4/0x760
[ 1145.676585][   T31]  ? __pfx_kjournald2+0x10/0x10
[ 1145.683813][   T31]  ? find_held_lock+0x2b/0x80
[ 1145.688516][   T31]  ? __pfx_autoremove_wake_function+0x10/0x10
[ 1145.697712][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1145.707698][   T31]  ? __kthread_parkme+0x19e/0x250
[ 1145.714826][   T31]  ? __pfx_kjournald2+0x10/0x10
[ 1145.719705][   T31]  kthread+0x3c5/0x780
[ 1145.726060][   T31]  ? __pfx_kthread+0x10/0x10
[ 1145.730924][   T31]  ? __pfx_kthread+0x10/0x10
[ 1145.735541][   T31]  ? __pfx_kthread+0x10/0x10
[ 1145.742619][   T31]  ? __pfx_kthread+0x10/0x10
[ 1145.747249][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1145.752652][   T31]  ? __pfx_kthread+0x10/0x10
[ 1145.757369][   T31]  ret_from_fork+0x48/0x80
[ 1145.764259][   T31]  ? __pfx_kthread+0x10/0x10
[ 1145.768877][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1145.775253][   T31]  </TASK>
[ 1145.778298][   T31] INFO: task syz-executor:5816 blocked for more than 143 seconds.
[ 1145.788492][   T31]       Tainted: G     U              6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0
[ 1145.799740][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1145.813686][   T31] task:syz-executor    state:D stack:23096 pid:5816  tgid:5816  ppid:5815   task_flags:0x440100 flags:0x00000002
[ 1145.828965][   T31] Call Trace:
[ 1145.833499][   T31]  <TASK>
[ 1145.836457][   T31]  __schedule+0x116f/0x5de0
[ 1145.842366][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[ 1145.847333][   T31]  ? __pfx___schedule+0x10/0x10
[ 1145.853588][   T31]  ? find_held_lock+0x2b/0x80
[ 1145.858385][   T31]  ? schedule+0x2d7/0x3a0
[ 1145.864091][   T31]  schedule+0xe7/0x3a0
[ 1145.868176][   T31]  io_schedule+0xbf/0x130
[ 1145.873893][   T31]  bit_wait_io+0x15/0xe0
[ 1145.878157][   T31]  __wait_on_bit+0x65/0x180
[ 1145.884282][   T31]  ? __pfx_bit_wait_io+0x10/0x10
[ 1145.889275][   T31]  out_of_line_wait_on_bit+0xd9/0x110
[ 1145.896240][   T31]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[ 1145.905441][   T31]  ? __pfx_wake_bit_function+0x10/0x10
[ 1145.912987][   T31]  do_get_write_access+0x93d/0x12a0
[ 1145.918221][   T31]  jbd2_journal_get_write_access+0x1d6/0x280
[ 1145.928231][   T31]  __ext4_journal_get_write_access+0x6a/0x340
[ 1145.937662][   T31]  ext4_reserve_inode_write+0x1be/0x320
[ 1145.944691][   T31]  __ext4_mark_inode_dirty+0x197/0x870
[ 1145.951556][   T31]  ? trace_kmem_cache_alloc+0x28/0xc0
[ 1145.956949][   T31]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[ 1145.964326][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1145.969104][   T31]  ? trace_jbd2_handle_start+0x1a8/0x230
[ 1145.976130][   T31]  ? jbd2__journal_start+0xf6/0x6a0
[ 1145.982617][   T31]  ? __ext4_journal_start_sb+0x195/0x690
[ 1145.988364][   T31]  ? __ext4_journal_start_sb+0x19e/0x690
[ 1145.995496][   T31]  ? ext4_dirty_inode+0xa1/0x130
[ 1146.003142][   T31]  ? __pfx_ext4_dirty_inode+0x10/0x10
[ 1146.009125][   T31]  ext4_dirty_inode+0xd9/0x130
[ 1146.016725][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1146.022849][   T31]  __mark_inode_dirty+0x1eb/0xe50
[ 1146.027926][   T31]  generic_update_time+0xcf/0xf0
[ 1146.038178][   T31]  file_update_time+0x17d/0x1c0
[ 1146.046218][   T31]  ext4_page_mkwrite+0x35e/0x1750
[ 1146.052544][   T31]  ? tcp_recvmsg+0x1f9/0x680
[ 1146.057147][   T31]  ? __pfx_tcp_recvmsg+0x10/0x10
[ 1146.063608][   T31]  ? __pfx_ext4_page_mkwrite+0x10/0x10
[ 1146.069083][   T31]  ? vm_normal_page+0x13b/0x2b0
[ 1146.075376][   T31]  ? find_held_lock+0x2b/0x80
[ 1146.081483][   T31]  ? find_held_lock+0x2b/0x80
[ 1146.086284][   T31]  do_page_mkwrite+0x171/0x380
[ 1146.092548][   T31]  do_wp_page+0xb9e/0x58e0
[ 1146.097001][   T31]  ? __pfx_do_wp_page+0x10/0x10
[ 1146.103391][   T31]  ? do_raw_spin_lock+0x12c/0x2b0
[ 1146.111685][   T31]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1146.117172][   T31]  ? ___pte_offset_map+0x1bc/0x540
[ 1146.123735][   T31]  __handle_mm_fault+0x1ada/0x2a40
[ 1146.128868][   T31]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1146.135741][   T31]  ? lock_vma_under_rcu+0x47d/0x970
[ 1146.145152][   T31]  ? lock_vma_under_rcu+0x47d/0x970
[ 1146.154305][   T31]  handle_mm_fault+0x3fe/0xad0
[ 1146.159101][   T31]  do_user_addr_fault+0x60c/0x1370
[ 1146.165692][   T31]  exc_page_fault+0x5c/0xc0
[ 1146.171613][   T31]  asm_exc_page_fault+0x26/0x30
[ 1146.176479][   T31] RIP: 0033:0x7f1837477e83
[ 1146.182368][   T31] RSP: 002b:00007ffefd86b7d0 EFLAGS: 00010202
[ 1146.188552][   T31] RAX: 0000000000000354 RBX: 0000000000000354 RCX: 0000000000000355
[ 1146.197916][   T31] RDX: ffffffff8605ff95 RSI: 000055557c6c1fa0 RDI: 00007f1835400000
[ 1146.208790][   T31] RBP: 00007ffefd86bac0 R08: 000055557c6c1fa8 R09: 0000000000000070
[ 1146.218420][   T31] R10: 00007f1837400000 R11: 00007ffefd86bcd0 R12: 00007ffefd86bb20
[ 1146.227141][   T31] R13: 0000000000000004 R14: 00007ffefd86b840 R15: 00007ffefd86b910
[ 1146.236939][   T31]  ? loop_set_status_from_info+0x155/0x250
[ 1146.243535][   T31]  </TASK>
[ 1146.246595][   T31] INFO: task syz.1.2675:18576 blocked for more than 144 seconds.
[ 1146.258929][   T31]       Tainted: G     U              6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0
[ 1146.273088][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1146.282498][   T31] task:syz.1.2675      state:D stack:26488 pid:18576 tgid:18576 ppid:17984  task_flags:0x440040 flags:0x00000004
[ 1146.296255][   T31] Call Trace:
[ 1146.299541][   T31]  <TASK>
[ 1146.303276][   T31]  __schedule+0x116f/0x5de0
[ 1146.307820][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[ 1146.316373][   T31]  ? __pfx___schedule+0x10/0x10
[ 1146.322151][   T31]  ? find_held_lock+0x2b/0x80
[ 1146.326836][   T31]  ? schedule+0x2d7/0x3a0
[ 1146.333170][   T31]  schedule+0xe7/0x3a0
[ 1146.337259][   T31]  io_schedule+0xbf/0x130
[ 1146.342450][   T31]  bit_wait_io+0x15/0xe0
[ 1146.346716][   T31]  __wait_on_bit+0x65/0x180
[ 1146.353100][   T31]  ? __pfx_bit_wait_io+0x10/0x10
[ 1146.358062][   T31]  out_of_line_wait_on_bit+0xd9/0x110
[ 1146.367189][   T31]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[ 1146.375552][   T31]  ? __pfx_wake_bit_function+0x10/0x10
[ 1146.383639][   T31]  do_get_write_access+0x93d/0x12a0
[ 1146.388882][   T31]  jbd2_journal_get_write_access+0x1d6/0x280
[ 1146.396859][   T31]  __ext4_journal_get_write_access+0x6a/0x340
[ 1146.403762][   T31]  ext4_reserve_inode_write+0x1be/0x320
[ 1146.409329][   T31]  __ext4_mark_inode_dirty+0x197/0x870
[ 1146.419665][   T31]  ? trace_kmem_cache_alloc+0x28/0xc0
[ 1146.425974][   T31]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[ 1146.433857][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1146.438631][   T31]  ? trace_jbd2_handle_start+0x1a8/0x230
[ 1146.445091][   T31]  ? jbd2__journal_start+0xf6/0x6a0
[ 1146.452155][   T31]  ? __ext4_journal_start_sb+0x195/0x690
[ 1146.457806][   T31]  ? __ext4_journal_start_sb+0x19e/0x690
[ 1146.464379][   T31]  ? ext4_dirty_inode+0xa1/0x130
[ 1146.469337][   T31]  ? __pfx_ext4_dirty_inode+0x10/0x10
[ 1146.479652][   T31]  ext4_dirty_inode+0xd9/0x130
[ 1146.485237][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1146.499045][   T31]  __mark_inode_dirty+0x1eb/0xe50
[ 1146.504936][   T31]  generic_update_time+0xcf/0xf0
[ 1146.511849][   T31]  file_update_time+0x17d/0x1c0
[ 1146.518477][   T31]  ext4_page_mkwrite+0x35e/0x1750
[ 1146.524340][   T31]  ? __pfx_ext4_page_mkwrite+0x10/0x10
[ 1146.529824][   T31]  do_page_mkwrite+0x171/0x380
[ 1146.536470][   T31]  do_pte_missing+0x29c/0x3fb0
[ 1146.542633][   T31]  ? __handle_mm_fault+0x1010/0x2a40
[ 1146.547938][   T31]  __handle_mm_fault+0x103d/0x2a40
[ 1146.555068][   T31]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1146.561395][   T31]  ? lock_vma_under_rcu+0x47d/0x970
[ 1146.566634][   T31]  ? lock_vma_under_rcu+0x47d/0x970
[ 1146.574807][   T31]  handle_mm_fault+0x3fe/0xad0
[ 1146.579601][   T31]  do_user_addr_fault+0x60c/0x1370
[ 1146.588297][   T31]  exc_page_fault+0x5c/0xc0
[ 1146.594945][   T31]  asm_exc_page_fault+0x26/0x30
[ 1146.602711][   T31] RIP: 0033:0x7f6d2e86eada
[ 1146.607139][   T31] RSP: 002b:00007ffd11b115e0 EFLAGS: 00010202
[ 1146.615240][   T31] RAX: 0000001b2f419000 RBX: 00007f6d2f6e5720 RCX: 0000001b2f418ff8
[ 1146.625816][   T31] RDX: 0000001b2ee20220 RSI: 0000000000000008 RDI: 00007f6d2f6e5720
[ 1146.635688][   T31] RBP: ffffffff848a9cf5 R08: 00007f6d2ebb6038 R09: 00007f6d2eba2000
[ 1146.644415][   T31] R10: 00007f6d2dfff008 R11: 0000000000000001 R12: 0000000000000001
[ 1146.656849][   T31] R13: 000000000000003e R14: ffffffff848a98d8 R15: 000000000000003e
[ 1146.665843][   T31]  ? apparmor_current_getlsmprop_subj+0x18/0x330
[ 1146.674215][   T31]  ? apparmor_move_mount+0xf5/0x3c0
[ 1146.679583][   T31]  </TASK>
[ 1146.683502][   T31] INFO: task syz.4.2676:18582 blocked for more than 144 seconds.
[ 1146.695832][   T31]       Tainted: G     U              6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0
[ 1146.706033][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1146.719701][   T31] task:syz.4.2676      state:D stack:26488 pid:18582 tgid:18582 ppid:17669  task_flags:0x440040 flags:0x00000004
[ 1146.735819][   T31] Call Trace:
[ 1146.739113][   T31]  <TASK>
[ 1146.742365][   T31]  __schedule+0x116f/0x5de0
[ 1146.746914][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[ 1146.754402][   T31]  ? __pfx___schedule+0x10/0x10
[ 1146.759286][   T31]  ? find_held_lock+0x2b/0x80
[ 1146.764420][   T31]  ? schedule+0x2d7/0x3a0
[ 1146.768770][   T31]  schedule+0xe7/0x3a0
[ 1146.775409][   T31]  io_schedule+0xbf/0x130
[ 1146.779848][   T31]  bit_wait_io+0x15/0xe0
[ 1146.784395][   T31]  __wait_on_bit+0x65/0x180
[ 1146.788928][   T31]  ? __pfx_bit_wait_io+0x10/0x10
[ 1146.796423][   T31]  out_of_line_wait_on_bit+0xd9/0x110
[ 1146.804946][   T31]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[ 1146.814695][   T31]  ? __pfx_wake_bit_function+0x10/0x10
[ 1146.824865][   T31]  do_get_write_access+0x93d/0x12a0
[ 1146.832664][   T31]  jbd2_journal_get_write_access+0x1d6/0x280
[ 1146.838682][   T31]  __ext4_journal_get_write_access+0x6a/0x340
[ 1146.845123][   T31]  ext4_reserve_inode_write+0x1be/0x320
[ 1146.853333][   T31]  __ext4_mark_inode_dirty+0x197/0x870
[ 1146.858826][   T31]  ? trace_kmem_cache_alloc+0x28/0xc0
[ 1146.864580][   T31]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[ 1146.873236][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1146.878023][   T31]  ? trace_jbd2_handle_start+0x1a8/0x230
[ 1146.884098][   T31]  ? jbd2__journal_start+0xf6/0x6a0
[ 1146.889322][   T31]  ? __ext4_journal_start_sb+0x195/0x690
[ 1146.897613][   T31]  ? __ext4_journal_start_sb+0x19e/0x690
[ 1146.903481][   T31]  ? ext4_dirty_inode+0xa1/0x130
[ 1146.908534][   T31]  ? __pfx_ext4_dirty_inode+0x10/0x10
[ 1146.919479][   T31]  ext4_dirty_inode+0xd9/0x130
[ 1146.926407][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1146.935894][   T31]  __mark_inode_dirty+0x1eb/0xe50
[ 1146.941233][   T31]  generic_update_time+0xcf/0xf0
[ 1146.946281][   T31]  file_update_time+0x17d/0x1c0
[ 1146.953676][   T31]  ext4_page_mkwrite+0x35e/0x1750
[ 1146.958736][   T31]  ? __pfx_ext4_page_mkwrite+0x10/0x10
[ 1146.964490][   T31]  do_page_mkwrite+0x171/0x380
[ 1146.969281][   T31]  do_pte_missing+0x29c/0x3fb0
[ 1146.977972][   T31]  ? __handle_mm_fault+0x1010/0x2a40
[ 1146.983809][   T31]  __handle_mm_fault+0x103d/0x2a40
[ 1146.988952][   T31]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1146.997055][   T31]  ? lock_vma_under_rcu+0x47d/0x970
[ 1147.002524][   T31]  ? lock_vma_under_rcu+0x47d/0x970
[ 1147.007873][   T31]  handle_mm_fault+0x3fe/0xad0
[ 1147.015087][   T31]  do_user_addr_fault+0x60c/0x1370
[ 1147.023275][   T31]  exc_page_fault+0x5c/0xc0
[ 1147.029763][   T31]  asm_exc_page_fault+0x26/0x30
[ 1147.037111][   T31] RIP: 0033:0x7f2f77e6eada
[ 1147.043714][   T31] RSP: 002b:00007ffd0c221490 EFLAGS: 00010202
[ 1147.049797][   T31] RAX: 0000001b3310c000 RBX: 00007f2f78ce5720 RCX: 0000001b3310bff8
[ 1147.061466][   T31] RDX: 0000001b32d20220 RSI: 0000000000000008 RDI: 00007f2f78ce5720
[ 1147.069464][   T31] RBP: ffffffff8483a813 R08: 00007f2f781b6118 R09: 00007f2f781a2000
[ 1147.078918][   T31] R10: 00007f2f771fd008 R11: 000000000000000a R12: 000000000000000a
[ 1147.088338][   T31] R13: 0000000000000021 R14: ffffffff8483a593 R15: 0000000000000021
[ 1147.097846][   T31]  ? tomoyo_profile+0x13/0x60
[ 1147.103783][   T31]  ? tomoyo_supervisor+0x223/0x13b0
[ 1147.109007][   T31]  </TASK>
[ 1147.113525][   T31] INFO: task syz.5.2678:18588 blocked for more than 145 seconds.
[ 1147.122584][   T31]       Tainted: G     U              6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0
[ 1147.137663][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1147.147587][   T31] task:syz.5.2678      state:D stack:27928 pid:18588 tgid:18588 ppid:14319  task_flags:0x440040 flags:0x00000004
[ 1147.164192][   T31] Call Trace:
[ 1147.167489][   T31]  <TASK>
[ 1147.170762][   T31]  __schedule+0x116f/0x5de0
[ 1147.175305][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[ 1147.182870][   T31]  ? __pfx___schedule+0x10/0x10
[ 1147.187756][   T31]  ? find_held_lock+0x2b/0x80
[ 1147.193124][   T31]  ? schedule+0x2d7/0x3a0
[ 1147.197503][   T31]  schedule+0xe7/0x3a0
[ 1147.204195][   T31]  io_schedule+0xbf/0x130
[ 1147.208550][   T31]  bit_wait_io+0x15/0xe0
[ 1147.213210][   T31]  __wait_on_bit+0x65/0x180
[ 1147.217733][   T31]  ? __pfx_bit_wait_io+0x10/0x10
[ 1147.225043][   T31]  out_of_line_wait_on_bit+0xd9/0x110
[ 1147.232002][   T31]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[ 1147.238712][   T31]  ? __pfx_wake_bit_function+0x10/0x10
[ 1147.249260][   T31]  do_get_write_access+0x93d/0x12a0
[ 1147.254821][   T31]  jbd2_journal_get_write_access+0x1d6/0x280
[ 1147.263377][   T31]  __ext4_journal_get_write_access+0x6a/0x340
[ 1147.269487][   T31]  ext4_reserve_inode_write+0x1be/0x320
[ 1147.277579][   T31]  __ext4_mark_inode_dirty+0x197/0x870
[ 1147.285369][   T31]  ? trace_kmem_cache_alloc+0x28/0xc0
[ 1147.291589][   T31]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[ 1147.297595][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1147.304782][   T31]  ? trace_jbd2_handle_start+0x1a8/0x230
[ 1147.310826][   T31]  ? jbd2__journal_start+0xf6/0x6a0
[ 1147.316142][   T31]  ? __ext4_journal_start_sb+0x195/0x690
[ 1147.322020][   T31]  ? __ext4_journal_start_sb+0x19e/0x690
[ 1147.327672][   T31]  ? ext4_dirty_inode+0xa1/0x130
[ 1147.336791][   T31]  ? __pfx_ext4_dirty_inode+0x10/0x10
[ 1147.342474][   T31]  ext4_dirty_inode+0xd9/0x130
[ 1147.347248][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1147.357117][   T31]  __mark_inode_dirty+0x1eb/0xe50
[ 1147.362450][   T31]  generic_update_time+0xcf/0xf0
[ 1147.367410][   T31]  file_update_time+0x17d/0x1c0
[ 1147.374835][   T31]  ext4_page_mkwrite+0x35e/0x1750
[ 1147.382086][   T31]  ? __pfx_ext4_page_mkwrite+0x10/0x10
[ 1147.387574][   T31]  ? __pfx_filemap_map_pages+0x10/0x10
[ 1147.395785][   T31]  ? pte_alloc_one+0x2b1/0x380
[ 1147.400777][   T31]  do_page_mkwrite+0x171/0x380
[ 1147.405570][   T31]  do_pte_missing+0x29c/0x3fb0
[ 1147.412902][   T31]  ? do_raw_spin_unlock+0x172/0x230
[ 1147.418223][   T31]  ? __pmd_alloc+0x3c2/0x870
[ 1147.423285][   T31]  __handle_mm_fault+0x103d/0x2a40
[ 1147.428431][   T31]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1147.436382][   T31]  ? lock_vma_under_rcu+0x47d/0x970
[ 1147.444076][   T31]  ? lock_vma_under_rcu+0x47d/0x970
[ 1147.449416][   T31]  handle_mm_fault+0x3fe/0xad0
[ 1147.455103][   T31]  do_user_addr_fault+0x60c/0x1370
[ 1147.464939][   T31]  exc_page_fault+0x5c/0xc0
[ 1147.469493][   T31]  asm_exc_page_fault+0x26/0x30
[ 1147.475163][   T31] RIP: 0033:0x7f0a37a6547b
[ 1147.479587][   T31] RSP: 002b:00007ffef8020170 EFLAGS: 00010246
[ 1147.487673][   T31] RAX: 00000000003ffde8 RBX: 0000000000000000 RCX: 0000000000000000
[ 1147.498526][   T31] RDX: 0000001b32020000 RSI: 0000000000400000 RDI: 00007f0a37c98d50
[ 1147.508405][   T31] RBP: 0000000000000000 R08: 0000000000000004 R09: 0000000000040000
[ 1147.517182][   T31] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1147.527004][   T31] R13: 00000000000927c0 R14: 00000000000f0da3 R15: 00007ffef8020420
[ 1147.544559][   T31]  </TASK>
[ 1147.547608][   T31] INFO: task syz.0.2677:18589 blocked for more than 145 seconds.
[ 1147.555732][   T31]       Tainted: G     U              6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0
[ 1147.567345][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1147.579386][   T31] task:syz.0.2677      state:D stack:27880 pid:18589 tgid:18589 ppid:16545  task_flags:0x440040 flags:0x00000004
[ 1147.593788][   T31] Call Trace:
[ 1147.597081][   T31]  <TASK>
[ 1147.602473][   T31]  __schedule+0x116f/0x5de0
[ 1147.607016][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[ 1147.616767][   T31]  ? __pfx___schedule+0x10/0x10
[ 1147.621971][   T31]  ? find_held_lock+0x2b/0x80
[ 1147.626835][   T31]  ? schedule+0x2d7/0x3a0
[ 1147.633882][   T31]  schedule+0xe7/0x3a0
[ 1147.638005][   T31]  io_schedule+0xbf/0x130
[ 1147.644503][   T31]  bit_wait_io+0x15/0xe0
[ 1147.648777][   T31]  __wait_on_bit+0x65/0x180
[ 1147.655693][   T31]  ? __pfx_bit_wait_io+0x10/0x10
[ 1147.660926][   T31]  out_of_line_wait_on_bit+0xd9/0x110
[ 1147.666324][   T31]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[ 1147.674928][   T31]  ? __pfx_wake_bit_function+0x10/0x10
[ 1147.683596][   T31]  do_get_write_access+0x93d/0x12a0
[ 1147.688827][   T31]  jbd2_journal_get_write_access+0x1d6/0x280
[ 1147.699552][   T31]  __ext4_journal_get_write_access+0x6a/0x340
[ 1147.705955][   T31]  ext4_reserve_inode_write+0x1be/0x320
[ 1147.715742][   T31]  __ext4_mark_inode_dirty+0x197/0x870
[ 1147.721521][   T31]  ? trace_kmem_cache_alloc+0x28/0xc0
[ 1147.727010][   T31]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[ 1147.735471][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1147.740471][   T31]  ? trace_jbd2_handle_start+0x1a8/0x230
[ 1147.748164][   T31]  ? jbd2__journal_start+0xf6/0x6a0
[ 1147.756049][   T31]  ? __ext4_journal_start_sb+0x195/0x690
[ 1147.761917][   T31]  ? __ext4_journal_start_sb+0x19e/0x690
[ 1147.767573][   T31]  ? ext4_dirty_inode+0xa1/0x130
[ 1147.776102][   T31]  ? __pfx_ext4_dirty_inode+0x10/0x10
[ 1147.781749][   T31]  ext4_dirty_inode+0xd9/0x130
[ 1147.786524][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1147.796287][   T31]  __mark_inode_dirty+0x1eb/0xe50
[ 1147.801772][   T31]  generic_update_time+0xcf/0xf0
[ 1147.806832][   T31]  file_update_time+0x17d/0x1c0
[ 1147.814319][   T31]  ext4_page_mkwrite+0x35e/0x1750
[ 1147.819378][   T31]  ? __pfx_ext4_page_mkwrite+0x10/0x10
[ 1147.827170][   T31]  ? __pfx_filemap_map_pages+0x10/0x10
[ 1147.835359][   T31]  ? pte_alloc_one+0x2b1/0x380
[ 1147.840468][   T31]  do_page_mkwrite+0x171/0x380
[ 1147.846577][   T31]  do_pte_missing+0x29c/0x3fb0
[ 1147.855693][   T31]  ? do_raw_spin_unlock+0x172/0x230
[ 1147.861442][   T31]  ? __pmd_alloc+0x3c2/0x870
[ 1147.866079][   T31]  __handle_mm_fault+0x103d/0x2a40
[ 1147.873691][   T31]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1147.879271][   T31]  ? lock_vma_under_rcu+0x47d/0x970
[ 1147.884777][   T31]  ? lock_vma_under_rcu+0x47d/0x970
[ 1147.892535][   T31]  handle_mm_fault+0x3fe/0xad0
[ 1147.897323][   T31]  do_user_addr_fault+0x60c/0x1370
[ 1147.905551][   T31]  exc_page_fault+0x5c/0xc0
[ 1147.912757][   T31]  asm_exc_page_fault+0x26/0x30
[ 1147.917642][   T31] RIP: 0033:0x7f914b06547b
[ 1147.922418][   T31] RSP: 002b:00007ffee864d130 EFLAGS: 00010246
[ 1147.928502][   T31] RAX: 000000000003fde8 RBX: 0000000000000000 RCX: 0000000000000000
[ 1147.941130][   T31] RDX: 0000001b2ce20000 RSI: 0000000000040000 RDI: 00007f914b298d50
[ 1147.952512][   T31] RBP: 0000000000000000 R08: 000000000000000a R09: 00007ffee864ce74
[ 1147.961989][   T31] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1147.971622][   T31] R13: 00000000000927c0 R14: 00000000000f0c84 R15: 00007ffee864d3e0
[ 1147.979617][   T31]  </TASK>
[ 1147.983971][   T31] 
[ 1147.983971][   T31] Showing all locks held in the system:
[ 1147.993152][   T31] 1 lock held by khungtaskd/31:
[ 1147.998006][   T31]  #0: ffffffff8e3bfa80 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x36/0x1c0
[ 1148.009357][   T31] 2 locks held by kworker/u9:0/55:
[ 1148.018719][   T31]  #0: ffff8880261ec948 ((wq_completion)nbd0-recv){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 1148.032182][   T31]  #1: ffffc9000100fd18 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 1148.045132][   T31] 3 locks held by syz-executor/5816:
[ 1148.054862][   T31]  #0: ffff888077d17948 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370
[ 1148.064785][   T31]  #1: ffff88814e2fe518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380
[ 1148.076792][   T31]  #2: ffff88814e302950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410
[ 1148.087130][   T31] 2 locks held by getty/16301:
[ 1148.094718][   T31]  #0: ffff888035dfa0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80
[ 1148.104815][   T31]  #1: ffffc900032602f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x41b/0x14f0
[ 1148.117480][   T31] 6 locks held by kworker/u8:8/18299:
[ 1148.125789][   T31]  #0: ffff88801e2a3148 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 1148.139538][   T31]  #1: ffffc90003e0fd18 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 1148.157297][   T31]  #2: ffff88814e2fe0e0 (&type->s_umount_key#31){++++}-{4:4}, at: super_trylock_shared+0x1e/0xf0
[ 1148.168081][   T31]  #3: ffff88814e300b98 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: do_writepages+0x1b2/0x820
[ 1148.181273][   T31]  #4: ffff88814e302950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410
[ 1148.191936][   T31]  #5: ffff8880790b5bf0 (&ei->i_data_sem){++++}-{4:4}, at: ext4_map_blocks+0x355/0x1390
[ 1148.203544][   T31] 3 locks held by syz.1.2675/18576:
[ 1148.208830][   T31]  #0: ffff8880310a6948 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370
[ 1148.219152][   T31]  #1: ffff88814e2fe518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380
[ 1148.233922][   T31]  #2: ffff88814e302950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410
[ 1148.244967][   T31] 3 locks held by syz.4.2676/18582:
[ 1148.252106][   T31]  #0: ffff88803065a448 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370
[ 1148.265469][   T31]  #1: ffff88814e2fe518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380
[ 1148.276863][   T31]  #2: ffff88814e302950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410
[ 1148.287631][   T31] 3 locks held by syz.5.2678/18588:
[ 1148.294664][   T31]  #0: ffff8880358f31c8 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370
[ 1148.305022][   T31]  #1: ffff88814e2fe518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380
[ 1148.316500][   T31]  #2: ffff88814e302950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410
[ 1148.326892][   T31] 3 locks held by syz.0.2677/18589:
[ 1148.333992][   T31]  #0: ffff888012c1f308 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370
[ 1148.346795][   T31]  #1: ffff88814e2fe518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380
[ 1148.360694][   T31]  #2: ffff88814e302950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410
[ 1148.374617][   T31] 
[ 1148.376976][   T31] =============================================
[ 1148.376976][   T31] 
[ 1148.392683][   T31] NMI backtrace for cpu 0
[ 1148.392703][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Tainted: G     U              6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0 PREEMPT(full) 
[ 1148.392735][   T31] Tainted: [U]=USER
[ 1148.392742][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1148.392755][   T31] Call Trace:
[ 1148.392762][   T31]  <TASK>
[ 1148.392770][   T31]  dump_stack_lvl+0x116/0x1f0
[ 1148.392808][   T31]  nmi_cpu_backtrace+0x27b/0x390
[ 1148.392834][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 1148.392870][   T31]  nmi_trigger_cpumask_backtrace+0x29c/0x300
[ 1148.392898][   T31]  watchdog+0xf70/0x12c0
[ 1148.392932][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1148.392958][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1148.392991][   T31]  ? __kthread_parkme+0x19e/0x250
[ 1148.393031][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1148.393077][   T31]  kthread+0x3c5/0x780
[ 1148.393110][   T31]  ? __pfx_kthread+0x10/0x10
[ 1148.393139][   T31]  ? __pfx_kthread+0x10/0x10
[ 1148.393170][   T31]  ? __pfx_kthread+0x10/0x10
[ 1148.393200][   T31]  ? __pfx_kthread+0x10/0x10
[ 1148.393234][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1148.393256][   T31]  ? __pfx_kthread+0x10/0x10
[ 1148.393288][   T31]  ret_from_fork+0x48/0x80
[ 1148.393307][   T31]  ? __pfx_kthread+0x10/0x10
[ 1148.393339][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1148.393383][   T31]  </TASK>
[ 1148.393398][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[ 1148.531581][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Tainted: G     U              6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0 PREEMPT(full) 
[ 1148.544949][   T31] Tainted: [U]=USER
[ 1148.548745][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1148.558794][   T31] Call Trace:
[ 1148.562082][   T31]  <TASK>
[ 1148.565011][   T31]  dump_stack_lvl+0x3d/0x1f0
[ 1148.569620][   T31]  panic+0x71c/0x800
[ 1148.573536][   T31]  ? __pfx_panic+0x10/0x10
[ 1148.577968][   T31]  ? ret_from_fork_asm+0x1a/0x30
[ 1148.582948][   T31]  ? nmi_backtrace_stall_check+0x6e/0x540
[ 1148.588673][   T31]  ? irq_work_queue+0xce/0x100
[ 1148.593466][   T31]  ? watchdog+0xdda/0x12c0
[ 1148.597895][   T31]  ? watchdog+0xdcd/0x12c0
[ 1148.602327][   T31]  watchdog+0xdeb/0x12c0
[ 1148.606588][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1148.611275][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1148.616514][   T31]  ? __kthread_parkme+0x19e/0x250
[ 1148.621550][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1148.626243][   T31]  kthread+0x3c5/0x780
[ 1148.630331][   T31]  ? __pfx_kthread+0x10/0x10
[ 1148.634961][   T31]  ? __pfx_kthread+0x10/0x10
[ 1148.639569][   T31]  ? __pfx_kthread+0x10/0x10
[ 1148.644206][   T31]  ? __pfx_kthread+0x10/0x10
[ 1148.648837][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1148.653624][   T31]  ? __pfx_kthread+0x10/0x10
[ 1148.658243][   T31]  ret_from_fork+0x48/0x80
[ 1148.662667][   T31]  ? __pfx_kthread+0x10/0x10
[ 1148.667276][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1148.672083][   T31]  </TASK>
[ 1148.675174][   T31] Kernel Offset: disabled
[ 1148.679510][   T31] Rebooting in 86400 seconds..