last executing test programs:

2m11.864171895s ago: executing program 0 (id=2433):
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, 0x0, 0x40000d0)
socket$nl_generic(0x10, 0x3, 0x10)
brk$auto(0x8)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0xa02, 0x0)
r0 = epoll_create$auto(0x3e)
epoll_ctl$auto(r0, 0x1, 0x8000000000000000, 0x0)
fcntl$auto_F_GETOWNER_UIDS(r0, 0x11, 0x5)
socket(0xa, 0x801, 0x84)
prlimit64$auto(0x0, 0x7, 0x0, &(0x7f0000000080)={0x3})
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0xfb1, 0xffffffff, 0x9b72, 0x2, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
r1 = socket(0x2b, 0x1, 0x1)
getsockopt$auto(r1, 0x11e, 0x1, 0xfffffffffffffffe, 0x0)
fanotify_init$auto(0x8004, 0x3)
epoll_create$auto(0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket(0x26, 0x80805, 0x0)
clone$auto(0x20003b46, 0x7, 0x0, 0x0, 0x2)
ioctl$auto(0x3, 0xff0a, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x41, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
select$auto(0xd, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3a, 0xfff, 0x948b, 0x800, 0x95f4da0a, 0xffffffffffffffff, 0x7, 0x488, 0x10001, 0x4, 0x6d3f, 0x0, 0x2, 0x5]}, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000000c0)={[0x1ff, 0x7, 0x7fffffffffffffff, 0x1, 0x948b, 0x3, 0x15f4da07, 0x7ed0, 0x3, 0x62, 0x0, 0x7, 0x6d3e, 0x4000, 0x2, 0x6]}, 0x0)
sendmsg$auto_NL802154_CMD_SEND_BEACONS(r2, 0x0, 0xc1735ff4d820e031)

2m10.171858807s ago: executing program 0 (id=2439):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001500)='/sys/kernel/irq/5/actions\x00', 0x22040, 0x0)
r0 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000040)='/dev/binderfs/binder0\x00', 0x189160, 0x0)
r1 = socket(0x11, 0x3, 0x9)
mmap$auto(0x0, 0xd3a, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket(0x10, 0x2, 0x0)
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)=ANY=[@ANYRES64, @ANYRES16=0x0, @ANYRES32], 0x24}, 0x1, 0x0, 0x0, 0x4c894}, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB, @ANYBLOB="180027"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmmsg$auto(0x3, 0x0, 0x3, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x8402, 0x0)
mmap$auto(0x0, 0x5810, 0xffb, 0x8000000008011, 0x3, 0x0)
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000)
getrandom$auto(0x0, 0x6000000, 0x3)
r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x202002, 0x0)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYRES32=0x0, @ANYRES8=r1], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x8800)
io_uring_register$auto_IORING_REGISTER_EVENTFD_ASYNC(r2, 0x7, &(0x7f0000000200), 0x80000001)
ioctl$auto_BINDER_VERSION(r0, 0xc0046209, &(0x7f00000000c0)="7c85a56831b9")
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000004440), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'ip6gre0\x00', <r5=>0x0})
sendmsg$auto_OVS_DP_CMD_NEW(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000004540)={&(0x7f0000000180)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01002bbd7000ffdbdf250100000008000900", @ANYRES32=r5, @ANYBLOB="0800050080000000110001006f76735f12000000000007000000003f08000200", @ANYRES32=0x0, @ANYBLOB="5ae0bb64000000"], 0x40}, 0x1, 0x0, 0x0, 0x10}, 0x2000000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xd4, 0x8000)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mq_open$auto(0x0, 0x5, 0x3, 0x0)
sendto$auto(0x3, 0x0, 0x2000f, 0x0, 0x0, 0x1c)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)

2m8.932630521s ago: executing program 0 (id=2440):
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
statmount$auto(&(0x7f0000000000)={0x7e, @raw, 0x80000024, 0x7fff, 0x2}, 0x0, 0x7fffffffeffd, 0x0)
mmap$auto(0x0, 0x40008, 0x1000000004, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyaa\x00', 0x109401, 0x0)
ioctl$auto(r0, 0x540a, 0x0)
write$auto(r0, 0x0, 0x1)
r1 = socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x400008, 0xdb, 0x9b72, 0x2, 0x10000)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, 0x0, 0x2a801, 0x0)
writev$auto(0x3, 0x0, 0x8)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40081)
recvmmsg$auto(r2, &(0x7f0000000180)={{0x0, 0x4, 0x0, 0x1, 0x0, 0x1000003, 0x1}, 0x40007fe}, 0x44000005, 0x8, 0x0)
sendmmsg$auto(r1, &(0x7f0000000080)={{0x0, 0x0, 0x0, 0x2, 0x0, 0xb, 0xa505}, 0x800}, 0x7, 0x4008)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp1\x00', 0x101402, 0x0)
r3 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer2\x00', 0xa0100, 0x0)
ioctl$auto_SNDCTL_TMR_SELECT(r3, 0x40045408, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x1, 0x2, 0x803a)
bind$auto(0x3, &(0x7f0000000080)=@rc={0x1f, @none, 0xa}, 0x9)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/block2mtd/parameters/block2mtd\x00', 0x601, 0x0)
write$auto(r4, &(0x7f0000000240)=',-\t', 0x2000008008)
read$auto(0x3, 0x0, 0x80)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
r5 = socket(0x11, 0x3, 0x300)
setsockopt$auto(r5, 0x107, 0x5, 0x0, 0x8004)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2000, 0x0)
read$auto(r6, 0x0, 0x20)
ioctl$auto_CEC_ADAP_S_LOG_ADDRS(0xffffffffffffffff, 0xc05c6104, 0x0)

2m7.621865815s ago: executing program 0 (id=2445):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000002740), 0xffffffffffffffff)
sendmsg$auto_NL802154_CMD_GET_SEC_DEV(r0, &(0x7f0000002800)={0x0, 0x0, &(0x7f00000027c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="d10163d1cce83562a99900000000", @ANYRES16=r1, @ANYBLOB="09032abd7000fedbdf2519000000"], 0x14}}, 0x8841)

2m7.418749258s ago: executing program 0 (id=2447):
socket(0x2, 0x2, 0x0)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xbfb, 0x8000000008011, 0x3, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mlock$auto(0x1000, 0x6)
madvise$auto(0x3f5e800000000000, 0x5, 0x1)
write$auto(0x3, 0x0, 0x80100082)
ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0)
setsockopt$auto_SO_TYPE(r0, 0x0, 0x3, &(0x7f0000000040)='(+\x00', 0x2)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x78, 0x4, 0x300000000000)
ioctl$auto_XFS_IOC_FD_TO_HANDLE(0xffffffffffffffff, 0xc038586a, &(0x7f0000000340)={r0, &(0x7f0000000180)="905c78bda902bb961a2f20203b101d8cad7e8c03ac59b0d5ebf735ae61e831dc9e36b9111721357859387d9961a1ffe0fe56d12d985010e77c3fc88028fe0ecf1d84d71fcbd8e3a2b85eadcb01c1d6ab0489ea7c7394a3fd7df74ff7d794d99e7b07485fe3119031b993a9236d0389aad081de607644bec6f4e6e804ee5dca69fba34ae1d9bf2cda0a5ba91db77921", 0x7, &(0x7f0000000240)="9c781293521287d6bbf4a9406ba6a2ea72ec0fc73dc0c9ddc8508419d47d7fdc96847756c40deae6a4380457dd00d558dcd12398e4b9ae4b1b9c50292aca3fdbf934f5768f26dc7c026886d5710ad4cf1cfbce8e", 0x40, &(0x7f00000002c0)="1dd1515769ff97efdaac862086f0a294bfaf4d4cb0dba84e42156165c4e83ea2cf9985b4d156356e", &(0x7f0000000300)=0x1})
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
clone$auto(0x9001, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x6)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
madvise$auto(0x5, 0x5, 0x8)
mmap$auto(0x0, 0xb, 0x10000, 0x16, 0x401, 0x8)
syz_clone(0x40000000, 0x0, 0x25, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
madvise$auto(0x3, 0x8, 0xffffff35)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0xe000)

2m6.543384902s ago: executing program 0 (id=2451):
mmap$auto(0x0, 0x4000000200004, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$auto_IOAM6_CMD_DUMP_NAMESPACES(r0, &(0x7f0000000280)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x14, r1, 0x0, 0x70bd2b, 0x25dfdbfe, {}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x44001}, 0x2)
sendmmsg$auto(r0, &(0x7f0000000080)={{0x0, 0x0, 0x0, 0x2, 0x0, 0x4000000000007, 0x2505}, 0x7fe}, 0x4, 0x1000)
socket(0x29, 0x2, 0x0)
r2 = socket(0x10, 0x2, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/fs/nilfs2/features/README\x00', 0x40, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000040)=""/6, 0x6)
sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0xffffffffffffffc0, &(0x7f0000000180)={&(0x7f00000002c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="120092ff389d48c2fcb1", @ANYBLOB="5de1"], 0x1ac}, 0x1, 0x0, 0x0, 0x8800}, 0x880)
recvmmsg$auto(r2, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket(0xa, 0x1, 0x0)
getsockopt$auto(r5, 0x6, 0xa, &(0x7f0000000080)='$\xfe\x88\xc8\x91\x8bo\xc6#\x93\x91^\x01<\xc81\xc0\x80\xd6\xdb>f\x8c\xf7\xb6\xca\xcdi\xa6\x91R\x7f\x00B\x93H9\x19\xb4x\xb1\xb7\xd3\xe4\x00'/60, &(0x7f0000000040)=0xaa)
socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$auto_ila(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ILA_CMD_ADD(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r7, @ANYRES64=r4], 0x1c}}, 0x4040)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000340)={'veth0\x00', <r8=>0x0})
ustat$auto(0x1, &(0x7f0000000000)={0xfff, 0x2, "be5705f65205", "184885ca64ad"})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000380)={'veth0_to_bond\x00', <r9=>0x0})
sendmsg$auto_ILA_CMD_ADD(r5, &(0x7f0000000480)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000440)={&(0x7f00000003c0)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="200027dc9a09a5e060e93fbd7000fbdbdf250100000005000800", @ANYRES32=r8, @ANYBLOB="050008008100000008000400", @ANYRES32=r9, @ANYRESHEX=r5], 0x58}, 0x1, 0x0, 0x0, 0xc4}, 0x4)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
r10 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/all/forwarding\x00', 0x42a81, 0x0)
r11 = openat$auto_kernel_debug_fops_orangefs_debugfs(0xffffffffffffff9c, &(0x7f0000000640), 0x201, 0x0)
write$auto_kernel_debug_fops_orangefs_debugfs(r11, &(0x7f0000000680)='/', 0x1)
r12 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/bdi/43:288/max_ratio_fine\x00', 0x19f543, 0x0)
sendfile$auto(r10, r12, 0x0, 0x1000200)
fanotify_init$auto(0x5, 0x2000000000002)
fanotify_mark$auto(0xffffffffffffffff, 0x201, 0x9, 0x4, 0x0)

1m51.150965955s ago: executing program 32 (id=2451):
mmap$auto(0x0, 0x4000000200004, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$auto_IOAM6_CMD_DUMP_NAMESPACES(r0, &(0x7f0000000280)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x14, r1, 0x0, 0x70bd2b, 0x25dfdbfe, {}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x44001}, 0x2)
sendmmsg$auto(r0, &(0x7f0000000080)={{0x0, 0x0, 0x0, 0x2, 0x0, 0x4000000000007, 0x2505}, 0x7fe}, 0x4, 0x1000)
socket(0x29, 0x2, 0x0)
r2 = socket(0x10, 0x2, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/fs/nilfs2/features/README\x00', 0x40, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000040)=""/6, 0x6)
sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0xffffffffffffffc0, &(0x7f0000000180)={&(0x7f00000002c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="120092ff389d48c2fcb1", @ANYBLOB="5de1"], 0x1ac}, 0x1, 0x0, 0x0, 0x8800}, 0x880)
recvmmsg$auto(r2, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket(0xa, 0x1, 0x0)
getsockopt$auto(r5, 0x6, 0xa, &(0x7f0000000080)='$\xfe\x88\xc8\x91\x8bo\xc6#\x93\x91^\x01<\xc81\xc0\x80\xd6\xdb>f\x8c\xf7\xb6\xca\xcdi\xa6\x91R\x7f\x00B\x93H9\x19\xb4x\xb1\xb7\xd3\xe4\x00'/60, &(0x7f0000000040)=0xaa)
socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$auto_ila(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ILA_CMD_ADD(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r7, @ANYRES64=r4], 0x1c}}, 0x4040)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000340)={'veth0\x00', <r8=>0x0})
ustat$auto(0x1, &(0x7f0000000000)={0xfff, 0x2, "be5705f65205", "184885ca64ad"})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000380)={'veth0_to_bond\x00', <r9=>0x0})
sendmsg$auto_ILA_CMD_ADD(r5, &(0x7f0000000480)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000440)={&(0x7f00000003c0)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="200027dc9a09a5e060e93fbd7000fbdbdf250100000005000800", @ANYRES32=r8, @ANYBLOB="050008008100000008000400", @ANYRES32=r9, @ANYRESHEX=r5], 0x58}, 0x1, 0x0, 0x0, 0xc4}, 0x4)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
r10 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/all/forwarding\x00', 0x42a81, 0x0)
r11 = openat$auto_kernel_debug_fops_orangefs_debugfs(0xffffffffffffff9c, &(0x7f0000000640), 0x201, 0x0)
write$auto_kernel_debug_fops_orangefs_debugfs(r11, &(0x7f0000000680)='/', 0x1)
r12 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/bdi/43:288/max_ratio_fine\x00', 0x19f543, 0x0)
sendfile$auto(r10, r12, 0x0, 0x1000200)
fanotify_init$auto(0x5, 0x2000000000002)
fanotify_mark$auto(0xffffffffffffffff, 0x201, 0x9, 0x4, 0x0)

1m5.880883237s ago: executing program 2 (id=2596):
openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) (async)
r0 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
mmap$auto(0x0, 0x2e4e, 0x4000000000de, 0xeb1, r0, 0x100000000083fd)
socket(0x2e, 0xa, 0x200)
ioperm$auto(0x3, 0x556, 0xc)
modify_ldt$auto(0x1, 0x0, 0x10)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x10042, 0x0) (async)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x10042, 0x0)
pread64$auto(0xffffffffffffffff, 0x0, 0x7ff, 0x400)
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0) (async)
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0x20d, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x8000000003, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer2\x00', 0x403002, 0x0) (async)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer2\x00', 0x403002, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/loop10/queue/atomic_write_unit_min_bytes\x00', 0x60240, 0x0)
read$auto(r3, 0x0, 0x100000001)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/platform/dummy_hcd.7/usb8/ep_00/direction\x00', 0x20400, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000002140)=""/64, 0x40)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) (async)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0)
write$auto(0x3, 0x0, 0xffd8) (async)
write$auto(0x3, 0x0, 0xffd8)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x8800)
mmap$auto(0x5, 0x10, 0xdf, 0x10000000009b72, 0xffffffffffffffff, 0x0)
openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, 0x0, 0x48b41, 0x0) (async)
openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, 0x0, 0x48b41, 0x0)
openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) (async)
openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
writev$auto(r2, &(0x7f0000000100)={0x0, 0x7111}, 0x8)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) (async)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84)
mount$auto(0x0, &(0x7f0000001500)='./file0\x00', &(0x7f0000001540)='cifs\x00', 0x8002, 0x0)
mincore$auto(0x1000, 0x8001, 0x0)
close_range$auto(0x2, 0x8, 0x0)
ptrace$auto(0x4206, 0x1, 0x0, 0x200005)

1m5.410862465s ago: executing program 2 (id=2598):
adjtimex$auto(&(0x7f00000004c0)={0x361, 0x0, 0xfffffffffffffffc, 0xfffffffffffffffd, 0xd4, 0xfffbffffffffffff, 0x6, 0x0, 0x6, 0x368e, 0x3, {0x100000000, 0x10000}, 0x5, 0x6, 0xfffffffefffffffd, 0x1008040, 0x0, 0x9, 0x81, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x34b})
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) (async)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) (async, rerun: 64)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)=ANY=[], 0x78}, 0x1, 0x0, 0x0, 0x40000}, 0x400c004) (rerun: 64)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio1\x00', 0x20b42, 0x0) (async)
r1 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000080), 0xffffffffffffffff)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) (async)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/seq/drivers\x00', 0x101002, 0x0) (async, rerun: 64)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/dev\x00', 0x40100, 0x0) (rerun: 64)
pread64$auto(r3, 0x0, 0x10001, 0x830) (async, rerun: 32)
write$auto(r2, 0x0, 0x100) (rerun: 32)
read$auto(0x3, 0x0, 0x80)
unshare$auto(0x40000080) (async)
r4 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, 0x0, 0x48402, 0x0) (async)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000040), 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) (async, rerun: 64)
sendmsg$auto_NL80211_CMD_GET_REG(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x4000) (async, rerun: 64)
close_range$auto(0x2, 0x8, 0x0) (async)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f00000001c0), 0xffffffffffffffff) (async, rerun: 32)
fcntl$auto_F_GETPIPE_SZ(r0, 0x408, 0xc) (async, rerun: 32)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0) (async, rerun: 32)
r6 = socket$nl_generic(0x10, 0x3, 0x10) (rerun: 32)
syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff) (async)
sendmsg$auto_OVS_DP_CMD_NEW(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[@ANYRESDEC=r1, @ANYRESHEX=r2, @ANYBLOB="010026bd7000fcdbdf250100000008000200", @ANYBLOB="080001002e53520008000200299604044fd4a51b3fe6069c9828ee7b3a5e16ba6775e89c1262b0563d7c891b267fcf6ddb51c53725c0c3f6a943674a41ccec006a142932a4d7289ac6f2c824c09ff3119ea2cfc72b15d43e993d3c327652f1a5427b014be7d9c98d988e59c0c0918d4e09077ad2be00371f57ba208c7301a71c72390bc3c511734141cb81bcc13a2df82cd95bd7", @ANYRES32=r5, @ANYBLOB="0800070004"], 0x34}, 0x1, 0x0, 0x0, 0x20000800}, 0xc0) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async, rerun: 64)
socket$nl_generic(0x10, 0x3, 0x10) (rerun: 64)
close_range$auto(r4, r6, 0x2)

1m3.138559229s ago: executing program 2 (id=2604):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[], 0x1ac}}, 0x40000) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/vkms/graphics/fb0/modes\x00', 0x129102, 0x0) (async)
mmap$auto(0x0, 0x400008, 0x2, 0x9b72, 0x2, 0x8000) (async)
semctl$auto_IPC_INFO(0x8000003, 0x3, 0x3, 0x16) (async, rerun: 32)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7114}, 0x8) (async, rerun: 32)
socket(0x2, 0x2, 0x88) (async)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) (async)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x24}}, 0x57) (async)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
write$auto(0x3, 0x0, 0xfdf3)
mbind$auto(0xada, 0x2, 0xffffffffe67162df, &(0x7f00000000c0)=0x2, 0x9, 0xfffffffb) (async)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0xc) (async, rerun: 64)
io_uring_setup$auto(0x6, 0x0) (rerun: 64)
r0 = socket(0x11, 0x80003, 0x300)
setsockopt$auto(r0, 0x107, 0xf, 0x0, 0x6) (async)
capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48}) (async)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000000), 0x5ac, &(0x7f0000000100)={&(0x7f0000000200), 0x7}, 0x5, 0x0, 0x5, 0x1}, 0x5}, 0x4, 0x100)

1m2.102967465s ago: executing program 2 (id=2609):
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, 0x0, 0x40000d0)
socket$nl_generic(0x10, 0x3, 0x10)
brk$auto(0x8)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
r0 = epoll_create$auto(0x3e)
io_setup$auto(0x10, &(0x7f0000000040)=0x60000)
epoll_ctl$auto(r0, 0x1, 0x8000000000000000, 0x0)
fcntl$auto_F_GETOWNER_UIDS(r0, 0x11, 0x5)
socket(0xa, 0x801, 0x84)
prlimit64$auto(0x0, 0x7, 0x0, &(0x7f0000000080)={0x3})
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0xfb1, 0xffffffff, 0x9b72, 0x2, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
r1 = socket(0x2b, 0x1, 0x1)
getsockopt$auto(r1, 0x11e, 0x1, 0xfffffffffffffffe, 0x0)
fanotify_init$auto(0x8004, 0x3)
epoll_create$auto(0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket(0x26, 0x80805, 0x0)
clone$auto(0x20003b46, 0x7, 0x0, 0x0, 0x2)
ioctl$auto(0x3, 0xff0a, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x41, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
select$auto(0xd, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3a, 0xfff, 0x948b, 0x800, 0x95f4da0a, 0xffffffffffffffff, 0x7, 0x488, 0x10001, 0x4, 0x6d3f, 0x0, 0x2, 0x5]}, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000000c0)={[0x1ff, 0x7, 0x7fffffffffffffff, 0x1, 0x948b, 0x3, 0x15f4da07, 0x7ed0, 0x3, 0x62, 0x0, 0x7, 0x6d3e, 0x4000, 0x2, 0x6]}, 0x0)
sendmsg$auto_NL802154_CMD_SEND_BEACONS(r2, 0x0, 0xc1735ff4d820e031)

58.227926564s ago: executing program 2 (id=2627):
ioperm$auto(0x800, 0x5, 0xd)
sched_setaffinity$auto(0x0, 0x207, &(0x7f00000001c0)=0xc)
r0 = openat$auto_proc_pid_attr_operations_base(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/attr/prev\x00', 0x101002, 0x0)
preadv$auto(r0, &(0x7f0000000180)={0x0, 0x8}, 0x8, 0x6, 0x9f4b)

57.277291728s ago: executing program 2 (id=2630):
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x2aa82, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x280, 0x0)
sendmsg$auto_MACSEC_CMD_GET_TXSC(0xffffffffffffffff, 0x0, 0x8014)
write$auto_kernfs_file_fops_kernfs_internal(r0, 0x0, 0x0)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
r1 = socket(0x2b, 0x1, 0xa7)
setsockopt$auto(r1, 0x10000000084, 0x7f, 0x0, 0xad4)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
remap_file_pages$auto(0x6a27, 0x1000, 0x7ff, 0xb74, 0x66a)
mincore$auto(0x1000, 0x4000000, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x1, 0x400000000000008, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r2 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x640, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000001c0)={'veth1_vlan\x00', <r3=>0x0})
recvfrom$auto(0xffffffffffffffff, &(0x7f0000000100)="5e90c54b54c53b5efa046c15ca9e39da5fa5df6f52ccb1b53ec3c37f46b6ed27eb8eefe3e29a2839f5c03f42350f76725d67784a6be6409bb622526ff37478844130066e6bc8127ac19381dd0c4b4b24570af06cc27c6c989d27de065c334a63c484eb2d18828a8a29f3dd0bac377d4d695d12e24232cd8e1b867fffdc0b0cafd90d89d5013e374f214f9b6b16000c62688151cdf2c472dbcac4", 0x4, 0xfffff68a, &(0x7f0000000280)=@xdp={0x2c, 0x3, r3, 0x2d}, &(0x7f00000002c0)=0x6)
ioctl$auto_FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, &(0x7f0000000080)="4d2f5e4f6fbc0101000000000000af18")
read$auto_mon_fops_binary_mon_bin(r2, 0x0, 0x0)
ioctl$auto_MON_IOCG_STATS(r2, 0x80089203, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/037/001\x00', 0xa901, 0x0)
r4 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="72010000", @ANYBLOB="120027", @ANYBLOB="5de1523353782950330a"], 0x1ac}}, 0x40000)
read$auto(r4, 0x0, 0x5)
ioperm$auto(0x2, 0x5, 0xd)
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
r5 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0)
fstat$auto(r5, 0x0)
r6 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x4610, 0x0)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r4)

42.207255236s ago: executing program 33 (id=2630):
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x2aa82, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x280, 0x0)
sendmsg$auto_MACSEC_CMD_GET_TXSC(0xffffffffffffffff, 0x0, 0x8014)
write$auto_kernfs_file_fops_kernfs_internal(r0, 0x0, 0x0)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
r1 = socket(0x2b, 0x1, 0xa7)
setsockopt$auto(r1, 0x10000000084, 0x7f, 0x0, 0xad4)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
remap_file_pages$auto(0x6a27, 0x1000, 0x7ff, 0xb74, 0x66a)
mincore$auto(0x1000, 0x4000000, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x1, 0x400000000000008, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r2 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x640, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000001c0)={'veth1_vlan\x00', <r3=>0x0})
recvfrom$auto(0xffffffffffffffff, &(0x7f0000000100)="5e90c54b54c53b5efa046c15ca9e39da5fa5df6f52ccb1b53ec3c37f46b6ed27eb8eefe3e29a2839f5c03f42350f76725d67784a6be6409bb622526ff37478844130066e6bc8127ac19381dd0c4b4b24570af06cc27c6c989d27de065c334a63c484eb2d18828a8a29f3dd0bac377d4d695d12e24232cd8e1b867fffdc0b0cafd90d89d5013e374f214f9b6b16000c62688151cdf2c472dbcac4", 0x4, 0xfffff68a, &(0x7f0000000280)=@xdp={0x2c, 0x3, r3, 0x2d}, &(0x7f00000002c0)=0x6)
ioctl$auto_FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, &(0x7f0000000080)="4d2f5e4f6fbc0101000000000000af18")
read$auto_mon_fops_binary_mon_bin(r2, 0x0, 0x0)
ioctl$auto_MON_IOCG_STATS(r2, 0x80089203, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/037/001\x00', 0xa901, 0x0)
r4 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="72010000", @ANYBLOB="120027", @ANYBLOB="5de1523353782950330a"], 0x1ac}}, 0x40000)
read$auto(r4, 0x0, 0x5)
ioperm$auto(0x2, 0x5, 0xd)
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
r5 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0)
fstat$auto(r5, 0x0)
r6 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x4610, 0x0)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r4)

9.363341032s ago: executing program 5 (id=2761):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket(0x10, 0x2, 0x0)
sendmsg$auto_OVS_DP_CMD_DEL(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="010029bd7000ffdbdf0102000000000000000400000008001c"], 0x24}, 0x1, 0x0, 0x0, 0x4044c11}, 0xc0804)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}}, 0x800)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x0, 0x10, 0x70bd2c, 0x25dfdbfd, {0xa, 0x0, 0xa00}}, 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000001240)=ANY=[], 0x1ac}}, 0x40818)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f0000003040), 0xffffffffffffffff)
sendmsg$auto_OVS_METER_CMD_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)={0x38, r1, 0x82652360e804c8d3, 0x9, 0x25dfdbfe, {}, [@OVS_METER_ATTR_KBPS={0x4}, @OVS_METER_ATTR_STATS={0x14, 0x3, {0x9}}, @OVS_METER_ATTR_BANDS={0x4}, @OVS_METER_ATTR_ID={0x8, 0x1, 0xfffffff8}]}, 0x38}}, 0x8080)
socket(0x15, 0x5, 0x0)
sendto$auto(0x3, 0x0, 0x2000f, 0x0, 0x0, 0x1c)
getsockopt$auto(0xffffffffffffffff, 0x10d, 0x10, 0x0, &(0x7f0000000000)=0xb)
r2 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f00000024c0)='/dev/cec9\x00', 0x2000, 0x0)
ioctl$auto_CEC_G_MODE(r2, 0x80046108, &(0x7f0000002500)=0xff)
r3 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/rt_cache\x00', 0xa182, 0x0)
read$auto_proc_iter_file_ops_compat_inode(r3, &(0x7f0000000240)=""/4096, 0x1000)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x9, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
connect$auto(0x3, 0x0, 0x54)
sendto$auto(0x3, 0x0, 0x18, 0x101, 0x0, 0x1c)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
socket(0xa, 0x3, 0x2c)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0)

8.336351668s ago: executing program 5 (id=2766):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5)
r0 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_FLOW_CMD_GET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)={0x30, r0, 0x1, 0x70bd29, 0x25dfdc02, {}, [@OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_KEY={0x14, 0x1, 0x0, 0x1, [@nested={0x10, 0x10, 0x0, 0x1, [@typed={0x4, 0x8}, @typed={0x8, 0xb, 0x0, 0x0, @uid}]}]}, @OVS_FLOW_ATTR_PROBE={0x4}]}, 0x30}, 0x1, 0x0, 0x0, 0x200400f0}, 0x800)
munmap$auto(0x8000, 0xffffffff)

7.83882297s ago: executing program 5 (id=2770):
syz_genetlink_get_family_id$auto_gtp(0x0, 0xffffffffffffffff)
socket(0xa, 0x2, 0x73)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
setsockopt$auto(0x4, 0x29, 0x2a, 0x0, 0x200577)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto_TCFLSH2(0xffffffffffffffff, 0x540b, 0xfffffffffffffffd)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x28, 0x801, 0x0)
connect$auto(0x3, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2711}, 0x51)
shutdown$auto(0x200000003, 0x0)
socket(0xf, 0x3, 0x2)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0)
ioctl$auto_posix_clock_file_operations_posix_clock(r1, 0xc0603d02, 0x0)
select$auto(0x6, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x3, 0xfff, 0x1, 0x948b, 0x3, 0x95f4da2a, 0xffffffffffffffff, 0x3, 0x62, 0x7, 0x7, 0x6d3f, 0x9, 0x4, 0x5]}, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0x8, 0x0, 0x0, &(0x7f0000000100)={[0x1ff, 0x6, 0x1, 0x10, 0x9489, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000021, 0x7, 0x6d3e, 0x7fff, 0x2, 0x6]}, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0xa, 0x2, 0x73)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0xfffff4a4, 0x0, 0xfffffffffffffffd)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000240), 0xd2082, 0x0)
mmap$auto(0x8, 0x400008, 0xdf, 0x9b72, 0x2, 0x200)
socket(0x1d, 0x2, 0x3)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
mprotect$auto(0x110c238000, 0x1, 0x3)

7.742630079s ago: executing program 1 (id=2771):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001300)={'batadv_slave_0\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001480), r0)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_SET(r0, &(0x7f0000001cc0)={0x0, 0x0, &(0x7f0000001c80)={&(0x7f0000000040)={0x28, r2, 0x1, 0x70bd2c, 0x25dfdbfb, {}, [@ETHTOOL_A_CHANNELS_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}]}, @ETHTOOL_A_CHANNELS_RX_COUNT={0x8, 0x6, 0x2}]}, 0x28}, 0x1, 0x100000000000000, 0x0, 0x9dfefc5e47f5c72f}, 0x0)
bpf$auto(0xe, &(0x7f00000001c0)=@query={@target_ifindex, 0xff, 0xffffffff, 0x6, 0xdef0, @count=0x3, 0x0, 0x1, 0x8, 0xffffffff, 0x3}, 0x9)
r3 = socket(0x10, 0x2, 0x0)
sendmsg$auto_ETHTOOL_MSG_DEBUG_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x2000000}, 0x4)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)
mount$auto(0x0, &(0x7f0000000100)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0x10001, 0x0)
pivot_root$auto(&(0x7f0000000000)='}[,&*}\x00', &(0x7f00000000c0)='.\x00')
sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000)
recvmmsg$auto(r3, &(0x7f0000000080)={{0x0, 0xfffffffe, 0x0, 0x5, 0x0, 0x200002, 0x6}, 0x804}, 0xfffffff9, 0x10, 0x0)
ioctl$auto(r3, 0x8946, 0x24)

7.010434371s ago: executing program 1 (id=2772):
r0 = socket(0x10, 0x2, 0xc) (async)
r1 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000002c0), 0xffffffffffffffff) (async)
mmap$auto(0x0, 0x2000c, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="01"], 0x1c}, 0x1, 0x0, 0x0, 0x20040004}, 0x20008810)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="18"], 0x1ac}}, 0x40000) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) (async)
sendmsg$auto_CTRL_CMD_GETPOLICY(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB='q\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="4cb245184f86db27df250a000a"], 0xf8}}, 0x10004010) (async)
openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/arch_status\x00', 0x100182, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)
ioctl$auto(0x3, 0xc040564a, 0x38) (async)
openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x141143, 0x0) (async)
r2 = getpgid(0x0)
syz_open_procfs$namespace(r2, &(0x7f0000000040)) (async)
prctl$auto(0x401, 0x0, r2, 0x9, 0x7) (async)
poll$auto(&(0x7f0000000040)={0x3, 0x1, 0xa}, 0x5, 0x108)

6.667915948s ago: executing program 5 (id=2774):
openat$auto_bch_chardev_fops_chardev(0xffffffffffffff9c, &(0x7f0000000580), 0x400, 0x0) (async)
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000) (async, rerun: 32)
close_range$auto(0x2, 0xa, 0x0) (async, rerun: 32)
socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) (async, rerun: 64)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0) (async)
mmap$auto(0x0, 0xffff, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) (async)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x3, 0x6, 0x0, 0x10000, 0x1, 0x2, {0x2100000000, 0x10000}, 0x3, 0x6, 0xffffffffffffffdd, 0x1008000, 0x0, 0x80000004, 0x83, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x1800})
madvise$auto(0x0, 0x2003f0, 0x15)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) (async)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async)
timer_create$auto(0x2, 0x0, 0x0)
timer_create$auto(0x9, 0x0, &(0x7f0000000000)=0x3) (async, rerun: 64)
timer_delete$auto(0x1) (async, rerun: 64)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/pcmC1D1p\x00', 0x0, 0x0)
madvise$auto(0x100000000, 0x0, 0x989a) (async)
socket(0x10, 0x3, 0x6)
syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000000), 0xffffffffffffffff)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x3, 0x1, 0x948b, 0x4, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x2, 0x9, 0x2, 0x6]}, 0x0) (async)
get_robust_list$auto(0x0, 0x0, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$auto(r1, 0x10f, 0x87, 0x0, 0x14) (async)
close_range$auto(0x2, 0x8, 0x0) (async, rerun: 64)
r2 = socket$nl_generic(0x10, 0x3, 0x10) (rerun: 64)
r3 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000400), r2)
sendmsg$auto_NFSD_CMD_VERSION_SET(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x28, r3, 0x200, 0x70bd25, 0x25dfdbfb, {}, [@NFSD_A_SERVER_PROTO_VERSION={0x14, 0x1, 0x0, 0x1, [@NFSD_A_VERSION_MINOR={0x8, 0x2, 0x7}, @NFSD_A_VERSION_MAJOR={0x8, 0x1, 0x2}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x24000001}, 0x844)

6.466956525s ago: executing program 1 (id=2775):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x8, &(0x7f0000000140)={0x3ff, 0x2, 0x9, 0x10001, 0xc, 0xc05, 0xffffffffffffffff, [0x7fd, 0x1001, 0x8], {0x9, 0x4, 0x8, 0x0, 0x420, 0x1001, 0x3fdc, 0x3, 0x5}, {0xa, 0x140, 0x54ed, 0x0, 0x101, 0xff, 0x7, 0xa, 0x100000001}})
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x2, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x0, 0xffffffffffffffff, 0x801, 0x10008, 0x400, 0x1000049, 0xffffffffffffffff, 0x20000000000804, 0x3}, 0x6f3)
sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="01eb"], 0x14}, 0x1, 0x0, 0x0, 0x20040800}, 0x24004000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
iopl$auto(0x3)
r0 = openat$auto_ftrace_event_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter\x00', 0x40001, 0x0)
write$auto_ftrace_event_filter_fops_trace_events(r0, 0x0, 0x0)
openat$auto_event_trigger_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/events/vmalloc/alloc_vmap_area/trigger\x00', 0x88083, 0xffeb)

5.77801722s ago: executing program 4 (id=2776):
mmap$auto(0xfffffffffffffffe, 0x2020009, 0x5, 0x12, 0xffffffffffffffff, 0x9)
ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
mbind$auto(0x8, 0x100000004, 0x100000000, 0x0, 0x5, 0x2)
open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000980)='/proc/self/pagemap\x00', 0x282900, 0x0)
read$auto(r0, 0x0, 0x200039b8)
capget$auto(0x0, 0x0)
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, 0x0, 0x1a9901, 0x0)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/net/dev_mcast\x00', 0x101000, 0x0)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x101000, 0x0)
r3 = gettid()
process_vm_readv$auto(r3, &(0x7f0000000040)={0x0, 0x3}, 0x4, &(0x7f00000000c0)={0x0, 0x100000000000002}, 0x40000003, 0x0)
r4 = syz_open_procfs$namespace(r3, 0x0)
ioctl$auto_MON_IOCX_GETX(r4, 0x4018920a, &(0x7f0000000140)={&(0x7f0000000080)={0xfff, 0x9d, 0x0, 0xd, 0xc6, 0x8, 0x2, 0x5, 0x100000001, 0x4, 0x4d, 0x7, 0x2, @iso={0x3ff, 0x7f}, 0x9, 0xffffff81, 0x2, 0x6}, &(0x7f0000000180)="af6137feb4a816345b588822f37a151cf2b1671d8887b101d406f68c08a49cebe7649be3b0f38922bfde099a4b3069184210ac9d966abc4e690cf57500000000000000000000000000000000c7b38966301e51bf9e75fdd8249713b58523e280d91420774fa7edb9ed8e3ecb4bd56b8942d3b061f997ca8ac807f6e9661080740cfe582de7dc109b90af9d1ddbd2cf7875582dbf11e8495b3a96a61bf7e56baa980ed5f7f1091dc19050df6299326981f05d5df0a455c21fe8a0271b83ae2bc7f01a336d7afe1540d7737b1e7b5e3d5879e78c8b60fed546e63c9c8bc59dea23aa53657dc017abae1fb67bf9", 0xfff})
openat$auto_rb_simple_fops_trace(0xffffffffffffff9c, 0x0, 0x40001, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000000100)=""/29, 0x1d)
sendmsg$auto_NL80211_CMD_STOP_AP(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000003c0)={0x0}, 0x1, 0x0, 0x0, 0xc}, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r5, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
sendfile$auto(0x1, r2, 0x0, 0x0)
r6 = socket(0x10, 0x2, 0x6)
r7 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_NL802154_CMD_SET_MAX_CSMA_BACKOFFS(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="14000000", @ANYRES16=r7, @ANYBLOB="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"], 0x14}, 0x1, 0x0, 0x0, 0x20008080}, 0x8044)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
write$auto(0x3, 0x0, 0x100082)
link$auto(&(0x7f0000003240)='./file0\x00', &(0x7f0000003280)='./file2\x00')
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000)

5.732821485s ago: executing program 1 (id=2777):
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, 0x0, 0x40000d0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0xa02, 0x0)
r0 = epoll_create$auto(0x3e)
io_setup$auto(0x10, &(0x7f0000000040)=0x60000)
epoll_ctl$auto(r0, 0x1, 0x8000000000000000, 0x0)
fcntl$auto_F_GETOWNER_UIDS(r0, 0x11, 0x5)
socket(0xa, 0x801, 0x84)
prlimit64$auto(0x0, 0x7, 0x0, &(0x7f0000000080)={0x3})
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0xfb1, 0xffffffff, 0x9b72, 0x2, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
r1 = socket(0x2b, 0x1, 0x1)
getsockopt$auto(r1, 0x11e, 0x1, 0xfffffffffffffffe, 0x0)
fanotify_init$auto(0x8004, 0x3)
epoll_create$auto(0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket(0x26, 0x80805, 0x0)
clone$auto(0x20003b46, 0x7, 0x0, 0x0, 0x2)
ioctl$auto(0x3, 0xff0a, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x41, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
select$auto(0xd, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3a, 0xfff, 0x948b, 0x800, 0x95f4da0a, 0xffffffffffffffff, 0x7, 0x488, 0x10001, 0x4, 0x6d3f, 0x0, 0x2, 0x5]}, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000000c0)={[0x1ff, 0x7, 0x7fffffffffffffff, 0x1, 0x948b, 0x3, 0x15f4da07, 0x7ed0, 0x3, 0x62, 0x0, 0x7, 0x6d3e, 0x4000, 0x2, 0x6]}, 0x0)
sendmsg$auto_NL802154_CMD_SEND_BEACONS(r2, 0x0, 0xc1735ff4d820e031)

5.68318266s ago: executing program 3 (id=2778):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mtdblock0\x00', 0x14f642, 0x0)
readahead$auto(r0, 0x7ff, 0x9)
write$auto(0x3, 0x0, 0x7fffffff) (async)
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000) (async, rerun: 32)
madvise$auto(0x0, 0x3, 0x67) (async, rerun: 32)
socket(0xf, 0x3, 0x2) (async, rerun: 32)
r1 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32)
r2 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$auto_TIPC_NL_MON_GET(r1, &(0x7f0000001640)={0x0, 0x0, &(0x7f0000001600)={&(0x7f0000001400)={0x14, r2, 0x1, 0x70bd2b, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x24008000}, 0x4000) (async, rerun: 32)
r3 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0) (rerun: 32)
ioctl$auto(r3, 0x2275, 0x38) (async)
mmap$auto(0x0, 0x8, 0xdf, 0xeb1, 0x0, 0x8000) (async, rerun: 64)
write$auto(0x3, 0x0, 0xfdef) (async, rerun: 64)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
r4 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/uts\x00')
setns(r4, 0x40000000) (async, rerun: 64)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x2000, 0x0) (rerun: 64)
io_uring_register$auto_IORING_REGISTER_RING_FDS(r4, 0x14, &(0x7f0000000600)="742e19b9244b1f2b027ad8906c45a8f5dea4eff44e35a86b42c70ba0d3b1ae1f5314d287ea5fcc87318a1d587624a54f88db30aacca5b2e50c78cd25f82b0360b931149ad0905f3538af718f93a8fcbf87e3c2fad9c25bc097abb08754854011b4c1ac06ffd3b643d0d8af58f84c45061479810697e36d36798d3b7563882f4f54f42e51f6217a0e190266878beeb2b36f8de621b1c9248a4382a088334dc28a7028877756738f79cc2b6e9c4db0c4c5f9c2dbc9f136b2b767e683dbd701fcb6a79c380767b2aed999213767ece1372609d04b6c9cdc73ae55198bc5de709b7604068f12cc9ce86677b6", 0x401) (async)
ioctl$auto(0x3, 0x80004508, 0x10000000000402) (async)
r5 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer2\x00', 0x1c8340, 0x0)
ioctl$auto_XFS_IOC_FD_TO_HANDLE(0xffffffffffffffff, 0xc038586a, &(0x7f0000000300)={<r6=>r5, &(0x7f0000000080)="909d285f2afa2be6fb21d614a11fdd78059c2fc95d003c99e5a8d3c7fedc289d7120ef4df329b2e0b106b26a9bb95c00ddf2e485897213bfeffed775281761fcb6d7bd24cac5fdf2df0b64cdf949fd81cf5b6e6c8b3ab4718cf527edfa4216577082f755ec63f3d1cb56ec6cf2ed74977b92c677663d294afebabd1f32e18b8e9103bb08158590d32ac1e1a27efa3c184e5766ae18648f5d2f54a37111084513351b4c2140c614912e9c3c03ca806b7f19e8e5e2f1feb22f329747e98c06b861073f5d199bfe42ab2d371226254c5b5958f916c0d43a580b213cbc23986c6ec83ed7d1d7442b9c7f8cf00d3e6252df551ce0f39106d6bbf7db", 0x7fffffff, &(0x7f0000000180)="6bfaf2bffb7d002a1ac8d7860b149df4d5632a5e2df00b176221f64437ccf04c9c990e5bdafe90989f9097c6e8af21c15032b194ee9ff1c8686bc31d4cc9ce53e0058e1a802cbf2575194989c89edebf0d729d5a027ed79400bc08f51880f5e68ce0", 0x8678, &(0x7f0000000200)="650602aef664285fb8d7176b26ece2dc5234e8933905c85348e0af07d15ea78ba15cf0b1109d6cb731a5f673f47786dca847d32d415bf63874594ad3da3185d96fe09847fcada40e7d31a9facae5a242523de752cf90c84344732f0c84161a859e7a2ba3640f19d7d703828b4d4c8b80c233c9e76c13a91d640587b95045533794540e2d9652a1c9e6e012d12b2b23d33089726816e271ddaa90b7c9c725d2f1f445efb819fa866ad1759f2a2428a0af63e7d59197fa0d838e5d72b749b86173b3bdde01ca7eefb34ad8a541b971e56d23756cc4271f87", &(0x7f0000000500)=0x7})
sendmsg$auto_NL80211_CMD_DEL_KEY(r6, &(0x7f00000005c0)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000580)={&(0x7f00000003c0)={0x12c, 0x0, 0x20, 0x70bd2d, 0x25dfdbff, {}, [@NL80211_ATTR_BSS_BASIC_RATES={0x20, 0x24, "2a6d766ebd0f7ba775d727f1fcea8dda3f6addcad6c1a53edd3027cd"}, @NL80211_ATTR_PS_STATE={0x8, 0x5d, 0x7}, @NL80211_ATTR_MEASUREMENT_DURATION={0x6, 0xeb, 0x100}, @NL80211_ATTR_SSID={0xb, 0x34, "5caf3bbd79e311"}, @NL80211_ATTR_AUTH_DATA={0xd9, 0x9c, "f6ab8f534971574a07e0230cdd27feb3542c8b52fb854cd2b4f9c816ffadb1504a74fc09bbe0ec526b34658eb09a2fdae224d03cf294b0d80faa8c33d6c9b2801cc4c4c240555f562df643fae4572d41e193a46f146e3704b28700857b2a5f3b8146e4cf204d116a49969ab84c1601d0a0e613b25e6ab9bfbe45ba02bb0616fe54d6645696997723ad7f7c79313345369adff207ac8308d3a7def808d25d54a0c6833ea766174120733465e881a6b21849e2d904545e2f22625d1e7844f660113eacd9a2338e58f4c548c96ff7b4ae824999254cc2"}]}, 0x12c}, 0x1, 0x0, 0x0, 0x800}, 0x8040800) (async)
r7 = socket(0x10, 0x2, 0xa)
write$auto(r7, &(0x7f0000000580)='\x00\x00\x83E\x12\x94E\xcf]/\xb1\vf3PejCg6\xae\xb8?`8\x81\xeb\xab\xe4\xa2jO\x19\x9fe\xe3\x03Ci3J\xdb\xc1\x1a\xaa\xe0\x14\at=\xb47M\x8fL\xd1\xeaM\"\x94*\xb5\x82\xb0\xb9\x93P\v;dh\x83\xdf2\xab\xd7\x0f\xb5\xa9\xd2\xbeT\xbc\x1f&\xe7ZK\xe3\x83~x{\x1a\xea}\x15\x0f\xe8\x8e\xc4a\xf7\xae\x825\x93\x00\x00\x00\x00\x00\x00\x00', 0x2fb)
ioctl$auto(r5, 0x40085112, 0x3)

5.458851514s ago: executing program 5 (id=2779):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/cgroup.max.descendants\x00', 0x22022, 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0xa61c2, 0x84)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
bind$auto(r0, &(0x7f0000000040)=@l2tp={0x2, 0x0, @loopback, 0x1}, 0x8)
sendfile$auto(0x6, 0x3, 0x0, 0xfdef)
mmap$auto(0x0, 0x88b, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0)
read$auto(r2, 0x0, 0x20)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x801, 0x0)
iopl$auto(0x2)
iopl$auto(0x1)
syz_genetlink_get_family_id$auto_tipcv2(0x0, 0xffffffffffffffff)
unshare$auto(0x40000080)
iopl$auto(0x6)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x1, 0x10000, 0x0, 0x1, 0x368e, 0x1, {0x100000000}, 0xb227, 0x2000000000400a, 0xfffffffffffffffa, 0x4, 0x0, 0x80000004, 0x81, 0xffffffffffff628e, 0x6, 0xdead, 0x804})
ioctl$auto_RTC_PARAM_GET(r1, 0x40187013, &(0x7f0000000180)={0x8000000000000001, @svalue=0x1})
r4 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
statmount$auto(0x0, &(0x7f00000005c0)={0x8, 0x1, 0x9, 0x3, 0x14, 0x944, 0x1ffe0, 0x3, 0x6, 0x7, 0x9, 0x400005, 0x4001002, 0x800000b, 0x98, 0x2, 0x5, 0xfff, 0x40, 0x8, 0x20, 0x309, 0x6, 0x0, 0x0, 0x200000, 0x0, 0x0, 0xffffffff, 0x0, 0x400, [0x0, 0x0, 0xbe3c, 0x0, 0xfffffffffffffffd, 0x40001, 0x0, 0x4, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x1000000000000, 0x0, 0x0, 0x0, 0x7ff, 0x0, 0x7f, 0x0, 0x9, 0x80000000000104, 0x0, 0x0, 0x2000000000, 0x7, 0x0, 0x0, 0x0, 0x2, 0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000], "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"}, 0x1fe, 0x81)
write$auto(0xffffffffffffffff, &(0x7f0000000480)='{+@^*]--\x90\x00', 0x7)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000240)='/proc/thread-self/net/tls_stat\x00', 0x500, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
open(&(0x7f00000001c0)='./cgroup\x00', 0x800, 0x8a)
bpf$auto(0x10, &(0x7f00000000c0)=@bpf_attr_11={0x2, 0x3, 0x7, 0x5, 0x7f, 0x58ee, 0x5, r4}, 0xb9)
unshare$auto(0x0)
bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex, 0xffffffffffffffff, 0x4, 0x1, 0xffffffffffffffff, @relative_id=0x13, 0xe600}, 0xf)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
unshare$auto(0x40000080)

4.391925771s ago: executing program 4 (id=2780):
mmap$auto(0x0, 0x2020009, 0x5, 0xeb1, 0xfffefffffffffffa, 0x8000)
r0 = socket(0xa, 0x801, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x2, 0x3, 0xa)
io_uring_setup$auto(0x6, 0x0)
setsockopt$auto(r0, 0x1000001, 0x6, 0x0, 0x4009)
sendto$auto(0x3, 0x0, 0xf, 0xe, &(0x7f0000000180)=@in={0x2, 0x4e28, @local}, 0x1a)
mmap$auto(0x0, 0x2020005, 0x20000003, 0xeb1, 0xffffffffffffffff, 0xe)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x42201, 0x0)
openat$auto_userio_fops_userio(0xffffffffffffff9c, &(0x7f0000000180), 0x142, 0x0)
io_uring_setup$auto(0x9, 0x0)
readv$auto(0x3, &(0x7f00000001c0)={0x0, 0x2}, 0x7)
close_range$auto(0x2, 0xa, 0x0)
mprotect$auto(0x0, 0x8000000000000001, 0x8)
setsockopt$auto(0x3, 0x10000000084, 0x76, 0x0, 0x8)

3.958932161s ago: executing program 3 (id=2781):
futex_waitv$auto(&(0x7f0000000080)={0xf, 0x9, 0x24, 0x4}, 0x77, 0x4, 0x0, 0x62b9) (async)
open(&(0x7f0000000000)='./file0\x00', 0xa240, 0x15e) (async)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x2200, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async, rerun: 64)
openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, 0x0, 0x80080, 0x0) (rerun: 64)
r1 = epoll_create$auto(0x4) (async)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x20342, 0x0) (async)
socket(0x2a, 0x80003, 0x300)
socket(0x25, 0x1, 0x1)
openat$auto_proc_mounts_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/mounts\x00', 0x40800, 0x0) (async)
mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0) (async)
select$auto(0xc, 0x0, 0x0, &(0x7f00000002c0)={[0x1fd, 0x8, 0x4, 0x1, 0x948b, 0x2, 0x15f4da0b, 0x6, 0x80000000080, 0x1fffe000000000, 0x80000001, 0x5, 0x6d3c, 0x401, 0x2]}, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$auto_nfsd(0x0, 0xffffffffffffffff) (async)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) (async)
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, 0x0, 0x0, 0x0)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0) (async)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, r1, 0x7fffffff) (async)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x7, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da07, 0x8, 0x3, 0x62, 0x8000001f, 0x7, 0x800006d3e, 0x9, 0xffffffffffffffff, 0x7]}, 0x0) (async)
prctl$auto_PR_SET_MM_ARG_END(0x9, 0x9, 0x0, 0xf, 0x13) (async)
socket(0xa, 0x3, 0x3a)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffff7, 0x8000) (async)
socketpair$auto(0x5, 0xfffffffd, 0x8000000000000000, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)

3.932274729s ago: executing program 4 (id=2782):
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
ioctl$auto(0x3, 0x4020565b, 0x38)
sendmsg$auto_NETDEV_CMD_QUEUE_GET2(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000004c0)={&(0x7f0000000440)=ANY=[@ANYBLOB='d\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="200025bd7000fddbdf250a00000008000200", @ANYRES32=0x0, @ANYBLOB="08000200", @ANYRES32=0x0, @ANYBLOB="08000200", @ANYRES32=0x0, @ANYBLOB="08000200", @ANYRES32=0x0, @ANYBLOB='\b\x00', @ANYRES32=0x0, @ANYBLOB="08000200", @ANYRES32=0x0, @ANYBLOB="08000200", @ANYRES32=0x0, @ANYBLOB="08000200", @ANYRES32=0x0, @ANYBLOB='\a\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="08000200", @ANYRES32=0x0, @ANYBLOB], 0x64}, 0x1, 0x0, 0x0, 0x8020}, 0x0)
mmap$auto(0x0, 0x40009, 0x6, 0x9b72, 0x7, 0x28000)
r0 = io_uring_setup$auto(0x2, 0x0)
r1 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cec24\x00', 0x0, 0x0)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/rpc/nfsd.fh/content\x00', 0x40c80, 0x0)
pread64$auto(r2, &(0x7f0000000540)='veth1\x00\xe0,\x17\xa0\xf7\x89Pl\x84K?\x01\x84\xa1i\xe00\x81p\xa0U \f\xdbP`:\xe2\'\xa7\xbf\xbd\x04\x18\xad\x90I^\x99M\xe0W\x14\x11\xf4\xeb\x90:\v\xc5\x13*\xfe\x90\xb1\xa9O\xa5\x05\xaa\x8fTi\xd6\x88Q\xda\xca', 0x20000000003f, 0x1)
ioctl$auto_CEC_DQEVENT(r1, 0xc0506107, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000840), r3)
mmap$auto(0xb, 0xd74, 0x2, 0x18, r0, 0x3)
sendmsg$auto_OVS_CT_LIMIT_CMD_SET(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000006400)={0x2e20, r4, 0x1, 0x51bd2e, 0x25dfcbfb, {}, [@OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x4}, @OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x2e07}]}, 0x2e20}, 0x1, 0x0, 0x0, 0x2000c040}, 0x4)
msgget$auto(0x0, 0x77d9)
poll$auto(&(0x7f0000001180)={r1, 0xd, 0x1000}, 0x5, 0x1000)
close_range$auto(0x2, 0x8, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r5 = socket(0x2, 0x2, 0x1)
r6 = bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_4={0x1f, <r7=>r5, 0x10000, r0}, 0x10)
mmap$auto(0x0, 0x9, 0xffffffff, 0x8000200008011, r6, 0x8000)
r8 = syz_clone(0x20000, 0x0, 0x0, 0x0, 0x0, 0x0)
mremap$auto(0x0, 0x4, 0x4, 0x7, 0x100000000)
statx$auto(r7, &(0x7f0000000780)='./file0\x00', 0x9, 0x1, &(0x7f0000000880)={0x0, 0xb8, 0x8000000000000000, 0x3, <r9=>0xffffffffffffffff, 0xee00, 0xb0, 0x1ff, 0x9, 0xfffffffffffffffe, 0x9, 0x800, {0x2, 0x1}, {0xa4ec, 0x3}, {0x6, 0x5}, {0x80, 0x3bb81386}, 0xffffffff, 0xfff, 0x5, 0x2, 0x15, 0x2, 0x7, 0x9, 0x8, 0x3, 0x1, 0x55a, [0x812e, 0x9, 0x5, 0x1191, 0x33a, 0x2, 0x8, 0x80000000, 0x1]})
sendmsg$auto_TIPC_NL_PEER_REMOVE(r6, &(0x7f0000000800)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000007c0)={&(0x7f00000021c0)={0x112c, 0x0, 0x200, 0x70bd2a, 0x25dfdbfd, {}, [@TIPC_NLA_MON={0x3ca, 0x9, 0x0, 0x1, [@nested={0x5e, 0x11e, 0x0, 0x1, [@generic="7600ee656ac823d358513eef4f69047ca648ff31b02858ce12752d5166837a0b7626f00797ded88e06481d762cc39afde0e4c6f1a09b81764ee1bb1d0ff0151efb2285c453f1", @nested={0x4, 0x9e}, @typed={0xc, 0x5, 0x0, 0x0, @u64=0x6c7}, @nested={0x4, 0x13f}]}, @generic="e78e28257be7a30e30230da020470562959ba776aea72f86883377ee445f8e2de6430f39647b8734c10e696c3457de29220f5cb6bdb4882e399812e42fc885553dc9636c077bbd8ce482beddc87a55ef2d4995863aa8fb0f0257cd0c50118abd366f572f923734c8d81b3cead3b05b99fec8199972e9afa7a935fd88cb4c894ebe9a9fbee3e8388508262a960890289afae40182d1d6befdc7a6683bf4cd79bb232ca970b4629fa1a33293c11432981623eeadb20e1ed5858bcd8f7db7acebb54b7bbe7c25fc", @generic="00f0d6a9dcb682cd38df9ad376cad8e440cd6ecd591951773a7dbdaf4a8b4a69260c7c7e6a32eb38e825c25f5c11e8332b87c810bc57fd6f5f71a0f842f6863eefcd940752b96594464bda98e5ab46c60b544c25d78dfaa8bbbed915b16882c2b2773d46b028656a666db7125b730543dda92fcf2fddcd41b89375fbbe2f01199cd02cc86dc25bcf45cb05b062aa766d8195d91066be816ada0a3b454b5dc1f8d968f76c3e88f3da4fb3ad5a60d7e2dedbd087a5e84ecbdb4710cfd6ee84d961c81d73bb68987dd6fd3b90fcacdad38055ce12a685957e1bdf2c3d35caba3276a538f756", @nested={0x1b9, 0x6f, 0x0, 0x1, [@generic="dbf7c854364a279e2db578b046c4ca309e11e4f10b4b0ca19eff4f3938408942ab59a6ea4781804730a382341e5b41bcd338223c25cf8cbbacfeb38fc7106f0bae2e928ab94a5d5213c6e08bf3a95178cfa89b2f8b75a88e17250590831ed39385a8ed3adce32806f7a7d6c065c12eda11", @typed={0x50, 0xe6, 0x0, 0x0, @binary="f7a28219061598cf5e556171f5580eb39f988d569c75b3b66a83802216afc37e4d68dacf2de99833a9eaf86b47ec5370db997b21b52116c9531d1250b8e375d2e6f470c8ac56fb6b6e36ea88"}, @typed={0xc, 0x47, 0x0, 0x0, @u64=0x6}, @nested={0x4, 0x122}, @typed={0x8, 0xf7, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}, @typed={0x8, 0x13c, 0x0, 0x0, @uid}, @nested={0x4, 0x123}, @generic="516af7e6cb1f556758ccb125caf4211a59a549bc3c366fd680a2fec8f035d3032d979a37e6eec8478daf10710fdbeb65694cf794986bad0e5d7f60d6d5a3a19b729ce7d8759a771834bd5253286fadf98cb35f375a439f75bafd9c8c1b133e19a5b730a640eb1843fd4b7edf9cd2edacb243f2d297f23b1ec791d4349222ab0d0a1d9b926617cfa82670026c0e2c1fba890bb6bdea02b707fe15a535a0c73b069c64a905ae2e767e1668510f80fb86391cd92117f0137eedd2964e99c980ddc42cd077ab6e2cccad7b079a7b00a1052a"]}]}, @TIPC_NLA_BEARER={0x18, 0x1, 0x0, 0x1, [@typed={0xc, 0xb7, 0x0, 0x0, @u64=0x3}, @typed={0x8, 0x135, 0x0, 0x0, @uid}]}, @TIPC_NLA_NODE={0x454, 0x6, 0x0, 0x1, [@typed={0x8, 0x5d, 0x0, 0x0, @ipv4=@remote}, @nested={0x2d3, 0x11f, 0x0, 0x1, [@typed={0x8, 0x62, 0x0, 0x0, @pid=r8}, @generic="0ab94ca44f103f21e29d4f6eb726bddf6edaa7878d3f0e1ce749c741cf8c3b32a9284f962815b88c2bbe59322911fc038c98ea3e69422c38e86d6048164ae30b293524305c17ea64a00c069fba3490b87d10f2c9f565df0206c63dff8101f12b0cb698bb588a87c3084e79b8eaaa2ee96a38ae76dd52f41c1919c153f06efd127a08d5aebfb6ac70d7762b2751c7516c7f8c094d5006875778dd246cd10c09f0e5480700ae23b0fff17c64ea5c25c34ff86cc8ebae9315af5cc82e9d98c16418a4606be0438934401872c1d6c31a925fe778dce4eb9ec599bd3cf6818d84b84693b04cfe504245da1057e1abba80c2f1c4d938", @generic="63fabd583ae5a59a4b0e9fc2654f9c14b5004bbc46e956468aff8e86b9eda97a3229bb75cc73227c41c68bd70c60731d0cea39c874e2f76f6152591c644399d6b4b783cad49c212d45526a7da83150f1b2ad341634ed02c410e7de6687c9fe94ae1c5a8b9c2338df4484b3bbac654d2ea53d39d4a04dc97680", @generic="61b1f723358b1b07478e81c36b861953c67fd4aad3ab60b33074c6b3152af030401b47ba60d2ac57dcf75f3d933c94546054d3adc3915841f04fdd591af6976bce8d5ad991c792bb9fc68c967f8aee935eb5767fb499d8440a8e3d2bda9718af7f871a1779d3f6a54c6ff37247cb40c51be9df8fb76c63e66d8dd080cd74328020560998031bfd0f9cc371bdfb4f1ddd9a1f54ade3599169b4dd812c6977e85d59e27abf91955b09b0b855452a96cd45519e293781b0353a4b492e526abc72c3ec4809e9845e1db60c768d80e22b0a50d7a48abb73f50154f181149a7e6def3a3cf9ba80c5c385f1", @nested={0x4, 0x125}, @nested={0x4, 0x14f}, @typed={0x2e, 0x11d, 0x0, 0x0, @binary="87577e8ac7afaf6049753a71a07ec7f81e039230c101e2bc18c1fb47beaabf3e5f14619c33321f01dfb3"}, @generic="4d871e55bab2b0ca5796417150ce8527ad", @generic="18e29d99150b748970bb7feac29d0a3b086a9bcdb39a97fbfd3a3d559fed5e3f3ec787504a21", @nested={0x4, 0x7e}]}, @nested={0x172, 0x79, 0x0, 0x1, [@generic="79b997f49862faf8e8350cf4bbe5c849b2695c4022c0064d9ee5440dd8543e9d6cae00a9071cdf73d3e8a5120faa293c3cefd03eec2bbcd9cde799fd6dbec13c8a4ec394b6fe62c6f75072a6044242191eedb5314d3c39961b5fa91e2f558ad80e6f80107fccdaf61488fa45a15b17b4510c677106861d1cd08cbb4a896bbbb657b1458455fae30ddf3b570246eb9b18617c66322b1d115b9ee6d03275c635e22274af16d24daefe0bce919da5e7de6030e14f798c7bd62f767074a9ccf9ec6b8460f0ea9ef8e30be8d12d8d0f0e", @nested={0x4, 0x121}, @generic="891ddfe5db16fb80e40e5eae12642d86e009a6f99e9a34a726192cdbca80731ab89fe71ab2f73f723ad72f98b4d0081e8bc7dca80b812ab03728868f68", @nested={0x4, 0xb5}, @generic="4479797c5cbd57db58b4e582f64f548cd2e61bb3e6d82a9308ccf45b34255ab88c5a9a5bcb7e8d15cbd48d6ac1a453c2d483f3a08f839f6197c70247479a021abbc284d7917c89370498a004db1a30", @typed={0x8, 0x13b, 0x0, 0x0, @uid}, @nested={0x4, 0x148}]}]}, @TIPC_NLA_MON={0x32d, 0x9, 0x0, 0x1, [@generic="29bc22b9504f2cb928337cba3fecceb776390d141c2d0c304e060f345938fa55172c06113b5ecbb81bd715e540c4630b5818ef9aff7d6c2f1e34e5eb1a25d1dcd05014c42bc137835e0fb41f0caf504c8c7489afb43d2674", @nested={0x1c5, 0xaf, 0x0, 0x1, [@generic="d37fd4d7", @typed={0x8, 0x110, 0x0, 0x0, @fd=r1}, @generic="83e15bc9af36a418e7f999fe6bda7b4097e4b5ef2c0370202fc6946f1c27d53e236a92d60093e888736a91bb6881da55a00da165964e0ea9b1850ecaacbb3e3ff7062313601a22f5b49696f59079b64351ca1c794fc9eb3d5aedf8b4ffb0d50e789ab58f8900206f2fdad580b51023599bafa82976bef4cd9439cd3ebbae6d797d1a8cd3f4b05a7ed60139445ef73280ba0fae2bdf49acd6b5579bf6be7a679abc2f955412ea2b30383ae9a5d7c2d8b0020a88ed177f94c9d0ed44349784646cc0947100b986186a606c8f6f4392a78e22", @generic="5fce1f28b40834c24a8a1420b6a7ee1f04bc791bdc00e520e6fd3c4d220648e60ebabc35a44ec474799bce0607678a022ed3c9fc899cf790974f9d794fb3757297e8f2a0a289dfd2f1f402ec37dcc3b3852e9f8178225c8fe31213f557159ca01e6d1a40b560e358532172232a4e7b0c3c26ac6b3ab947018c679de8fde7ec758ad261722c396ed4a01a255720b336c2e16a9e3f21a85545545a5f0092017d22e270006528122e7af2fa42d4462245c73517da5b4480f1f8e741f01d81343abd", @typed={0x8, 0x145, 0x0, 0x0, @u32=0x4}, @typed={0x8, 0x14c, 0x0, 0x0, @u32=0x1}, @typed={0x14, 0x71, 0x0, 0x0, @ipv6=@dev={0xfe, 0x80, '\x00', 0x36}}]}, @typed={0xc, 0xc2, 0x0, 0x0, @u64=0x6}, @nested={0x30, 0x9f, 0x0, 0x1, [@nested={0x4, 0x10b}, @typed={0x8, 0x147, 0x0, 0x0, @u32=0x8}, @typed={0x8, 0x38, 0x0, 0x0, @fd}, @typed={0xc, 0xd3, 0x0, 0x0, @u64=0x4}, @typed={0x8, 0x8a, 0x0, 0x0, @fd}, @nested={0x4, 0x132}]}, @typed={0x8, 0x112, 0x0, 0x0, @pid=r8}, @generic="37d9ae1c5bbd3cd5a262c6528bcd05b517726c2a99826a24d87db6cbf874d0b9ce97fccd50e2e2e788db1643c18be0524b9eb42580e724a4489bd8a096ca2abf4d4e1a0d80c37400580a1463394f2e80118a16aa5e938f8a1bc5a6fb17bbf1c8961a5c9ba9f371469b29b219c04a5ec347dd568c611deb8bf2dd2bb30251f5fb0a9039995b5b45bde9669729583ec714d880d75c610182a2d9714e844109d1328e08f6ffa6349f0e0a72dea7dd9ce5d8a49d65b1fb41a33c6b2c693388cd3508660ea86c0a"]}, @TIPC_NLA_NET={0x150, 0x7, 0x0, 0x1, [@generic="6226969c57c8f6c5cab689a72d0ca12ab954a5bf7c20e82317e153c6491dd015276cd8aaaf56885ae8bf7442df5e650de9ba622aad2bbb0e88d43fcb47849dcf8dd24a9828ceb1089299ff88279165d404ef6245fb84801ff19707c4f6ead10baed5b31222b96ff07b315df3c502c2affb452754d806510d7dce101ad36d3913c2049994ee683f64a176aac33a75b2a25af883c665e575aaf0940cadfe35a7613fce204389159f70ef16b60ed0408d7504cb50bc2e1f46a9e3522648707d42482ba9b39c60cdaa423f3b000861628c6ae19a527a", @nested={0x4c, 0x11c, 0x0, 0x1, [@nested={0x4, 0xff}, @generic="a652022f6495cdd3a6087fc2850582fa5f8cb7c4b0e4274a93674acde94aa2191c6c115f729d514d44e8f3911d0d4ad24f15ee003fdd3873a285dae672517ea9343cb2d9"]}, @typed={0x8, 0x68, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0xf3, 0x0, 0x0, @u32=0x1b805a28}, @nested={0x10, 0x5f, 0x0, 0x1, [@nested={0x4, 0xe}, @nested={0x4, 0x4a}, @nested={0x4, 0x74}]}, @nested={0xc, 0xc, 0x0, 0x1, [@typed={0x8, 0x5c, 0x0, 0x0, @pid=r8}]}]}, @TIPC_NLA_NAME_TABLE={0x4}, @TIPC_NLA_NET={0xc, 0x7, 0x0, 0x1, [@typed={0x8, 0x26, 0x0, 0x0, @u32=0x1}]}, @TIPC_NLA_SOCK={0x22f, 0x2, 0x0, 0x1, [@typed={0x8, 0x54, 0x0, 0x0, @str='^\\!\x00'}, @typed={0x8, 0x13, 0x0, 0x0, @u32=0x7}, @typed={0x8, 0x148, 0x0, 0x0, @pid=0xffffffffffffffff}, @nested={0x155, 0x147, 0x0, 0x1, [@typed={0xd9, 0x45, 0x0, 0x0, @binary="4ee7226e855169e378b2351c459df7836745a6e8d606d3a888cbdb19611c69caee7e0ecc7428863c8581e609a5318dd0e518861eb73eaf91813b85af803b101da83a183a61be5ec190869964904695215b34c4596f8b549a70c794e1c80336517194ad772dc1f05c5261280d3a6303a5dbf5913e7d971c86aaeb945cf78ebac554d081854ffec246f5e44c9c7dc0092e2d7bc84618a2c63064d1e554c9206441f4135696a0ff409eef61056f0a560a7ab4af708f1cd9637435d5ddf1e50bbf71ae47e1b2afca6495e6c3fd5e7eaaeef5c2621dfcdf"}, @nested={0x4, 0xac}, @generic="04ce81d067f7d41d2911c305032019ef6ea7ba96107064ae3f40667a12f05aea9911bc42be29ab7c531c051cf8ca7595cec2e625c0dddfd0e2fec42daa84e1e9df673634f3ad766cdbc93abc40b49b8bbddc9f1721b506402437e520a75d2c70ba", @typed={0xd, 0x126, 0x0, 0x0, @str=')%.%:%\xe1)\x00'}]}, @generic="66fc8c1cc22f398bd4ca93144a75f7599ec67b2f71796f73942bcfaf86f99debf6d4b7a75bbf12236b2c22f6af3395a12772aa9e31ba631f024c34529b3324b5b87059f0b0760da8f5a9f69049dcf410d9416286b339e125f4c1fb54d7350a75219c9598593bf8c8dd92b9811d5b34343af47b8b687088dca25e4c7fc2f12df47365fb6e8e5b82500f08e3135da142fd19368679d371e9b2416a01667f96ccfc64c7f97dbd25be5b147fc16bc471a549c7521058efd3f93233c8d6"]}, @TIPC_NLA_LINK={0x21e, 0x4, 0x0, 0x1, [@typed={0x4, 0x127}, @nested={0x13f, 0x0, 0x0, 0x1, [@generic="91ffd9e663dae86dec70b738077aa5199dd64c7d459abaca30fcfbc1dad416cac25e7cc312e724e79929729213db76f5338782d26d88db25135847b120957afb21e52f8e7d7856042ac1f2b5f5221566dfcd2e33b62658931668ec45ac87fb73b7180b685afb97fdff38a182f701cb506aa30cc7d22ce632494d03d735b62f0df93524d1864e56d87e0d5d257682ec50b6192c068cfa719a57de4f1f44645a52c3b04bd6fd7a539742bccc416e316c7eb1c0b605848a14653c0c7dbc88", @generic="ee8d1150b28d360fe9ee0947c6a32775c1d72ddeadae14915e12a4e8bbb9922aaf6086d3c246a6f57e8849f7cf433f47bc3b913f017ec2c94475cd93c9e5a938330d72258b5b12e4eccb429c41115ef2fdf879ebd7bdc4817fa8b27662b2", @typed={0x8, 0xb8, 0x0, 0x0, @uid=r9}, @typed={0xc, 0x8, 0x0, 0x0, @u64=0xbe}, @nested={0x4, 0x109}, @nested={0x4, 0x76}, @nested={0x4, 0x100}]}, @nested={0xc, 0x10b, 0x0, 0x1, [@typed={0x8, 0x10, 0x0, 0x0, @ipv4=@private=0xa010101}]}, @generic="5a425b5a853f0dc6fe0e67916f5009f4cc5b3c2aa82427fc6b2887fdaaf6c651f3483c", @typed={0x8, 0xeb, 0x0, 0x0, @pid=r8}, @generic="e7966d252a6a7f17ed0e0bd06226acb898a3272d53198a4fdde23fb0dfcc9c086f80cb6fca204845b128d8559479fd6f9d71e59b8b3ab94fd120a137c593e19235614e05ee2a2f805707ac427fc0b2ed10c7ccb63dd55c80dfbd30b74aa72602fd74d1cb79c0a47b980520d49d9e727224652f1554e28d22c81e0d23c1437b0b82b2904910c158e0982eaf4db124759ba649d6ae3bce0f6c549b88df9e3007"]}]}, 0x112c}, 0x1, 0x0, 0x0, 0x4048085}, 0x40)
mlockall$auto(0x7)
modify_ldt$auto(0x1, &(0x7f00000001c0), 0x10)
set_mempolicy$auto(0x4006, 0x0, 0x7)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/loop2/queue/iostats\x00', 0x20b02, 0x0)

3.671041604s ago: executing program 3 (id=2783):
r0 = socket(0xa, 0x1, 0x0)
getsockopt$auto(r0, 0x6, 0xa, &(0x7f0000000080)='$\xfe\x88\xc8\x91\x8bo\xc6#\x93\x91^\x01<\xc81\xc0\x80\xd6\xdb>f\x8c\xf7\xb6\xca\xcdi\xa6\x91R\x7f\x00B\x93H9\x19\xb4x\xb1\xb7\xd3\xe4\x00'/60, &(0x7f0000000040)=0xaa)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000100)='/proc/kpageflags\x00', 0x2, 0x0)
setpriority$auto(0x7, 0x2, 0x5)
ioctl$auto_TIOCGEXCL2(r1, 0x80045440, &(0x7f0000000000)=0x5)
read$auto(0x3, 0x0, 0x80)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_ftrace_avail_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/available_events\x00', 0x0, 0x0)
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000)
prctl$auto(0x3c, 0x1, 0x0, 0x8000, 0x7)
preadv$auto(r2, 0x0, 0x8, 0x6, 0x5)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$auto_BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000001140)={"9d709f9769d577eb104df937571dacca74c526d3febfc1c93491deb055eea2dc", 0x6, 0xe01, 0x8, 0xd5c, 0x3ff, <r4=>0x0})
unshare$auto(0x2)
fcntl$auto(0xffffffffffffffff, 0x747d4ee3, r4)
unshare$auto(0x14c)
ioctl$auto_BTRFS_IOC_RESIZE(r1, 0x50009403, &(0x7f0000001200)={@raw=0xd25, "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"})
ioctl$auto(0x3, 0x4020ae46, 0x38)
munmap$auto(0x8000, 0xffffffff)
ioctl$auto_BTRFS_IOC_SNAP_DESTROY_V2(r1, 0x5000943f, &(0x7f0000003200)={@inferred=r3, 0x4, 0x3, @btrfs_ioctl_vol_args_v2_3_0={0x23d84b55, &(0x7f0000000140)={0x9, 0x7, 0x4, 0x100000000, {0x4, 0x7, 0x100, 0x8, 0x2}, [0x4000000007, 0xe]}}, @devid=0xf688})

3.199395613s ago: executing program 5 (id=2784):
set_mempolicy$auto(0x3, &(0x7f0000000000)=0x7, 0x9)
mmap$auto(0x0, 0x3, 0x800000000000003, 0x10010, 0xfffffffffffffffa, 0x400008000)
r0 = io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0)
ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r1, 0xc0285700, 0x0)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x48140, 0x0)
readv$auto(r2, &(0x7f00000000c0)={0x0, 0x5}, 0x3)
mbind$auto(0x0, 0x100000004, 0x100000003, 0x0, 0x6, 0x2)
ioctl$auto_TIOCVHANGUP2(r2, 0x5437, 0x0)
mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0x1010001, 0x100000003)
read$auto(r0, 0x0, 0x20)
mmap$auto(0xff0f200000000000, 0x400008, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0xff)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000100), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r3, 0x0, 0x64)
io_uring_setup$auto(0x6, 0x0)
madvise$auto(0x0, 0x200007, 0x19)
shmctl$auto_IPC_STAT(0x1, 0x2, 0x0)
unshare$auto(0x40000080)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x105c0, 0x0)
add_key$auto(0x0, 0x0, 0x0, 0x5, 0x3)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
clone$auto(0x2, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x0)

3.100797934s ago: executing program 3 (id=2785):
r0 = open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0xc0842, 0x95)
mmap$auto(0x0, 0x40009, 0xdf, 0x10009b72, 0x7, 0x28000)
socket(0x22, 0x2, 0x24)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x200)
socket$nl_generic(0x10, 0x3, 0x10)
madvise$auto(0x1000, 0x7, 0x1)
sendfile$auto(r0, r0, 0x0, 0x1)
openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000000), 0x8080, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/platform/vkms/graphics/fb0/bits_per_pixel\x00', 0x82942, 0x0)
sendfile$auto(r1, r1, 0x0, 0x200)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x129800, 0x0)

2.966041309s ago: executing program 4 (id=2786):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
fsopen$auto(0x0, 0x1)
adjtimex$auto(&(0x7f00000005c0)={0xf332b6e, 0x0, 0xcea4, 0xfffffffffffffffd, 0xd4, 0x1, 0x0, 0x0, 0x1, 0x368e, 0x2, {0x100000000, 0x1}, 0x5, 0x6, 0xfffffffffffffffd, 0x1007bfe, 0x0, 0x9, 0x81, 0xdfffffffffff628c, 0x2, 0xdeb1, 0x808}) (async)
adjtimex$auto(&(0x7f00000005c0)={0xf332b6e, 0x0, 0xcea4, 0xfffffffffffffffd, 0xd4, 0x1, 0x0, 0x0, 0x1, 0x368e, 0x2, {0x100000000, 0x1}, 0x5, 0x6, 0xfffffffffffffffd, 0x1007bfe, 0x0, 0x9, 0x81, 0xdfffffffffff628c, 0x2, 0xdeb1, 0x808})
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) (async)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x1, 0x0) (async)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x1, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0xa3db)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x4a801, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001080)='/sys/module/i915/parameters/mitigations\x00', 0x80302, 0x0) (async)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001080)='/sys/module/i915/parameters/mitigations\x00', 0x80302, 0x0)
sendfile$auto(r1, r1, 0x0, 0x7ffff000)
openat$auto_uprobe_events_ops_trace_uprobe(0xffffffffffffff9c, 0x0, 0x12000, 0x0)
socket(0x3, 0x5, 0x5) (async)
socket(0x3, 0x5, 0x5)
syz_genetlink_get_family_id$auto_macsec(0x0, 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$auto_macsec(0x0, 0xffffffffffffffff)
socket(0x1e, 0x1, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x5, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0xd, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, 0x0, 0x28082, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/afs/rootcell\x00', 0x1cb842, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x20005, 0xdf, 0xeb1, r2, 0x3)
setsockopt$auto(0x3, 0x0, 0x13, 0x0, 0x9)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0xe0742, 0x0)
close_range$auto(0x2, 0xa, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/block/nbd3/inflight\x00', 0x8002, 0x0) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/block/nbd3/inflight\x00', 0x8002, 0x0)
r3 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0)
read$auto(r3, 0x0, 0xb4d3)
mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0x401, 0x8000) (async)
mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0x401, 0x8000)

1.989129317s ago: executing program 1 (id=2787):
mmap$auto(0xfffffffffffffffb, 0x2, 0x100000021, 0x400009b75, 0xea8a, 0x8000)
socket(0x2, 0x3, 0x2)
setsockopt$auto(0x3, 0x0, 0xc8, 0xfffffffffffffffc, 0x4)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/irq/12/hwirq\x00', 0x2000, 0x0)
read$auto(r0, 0x0, 0x20)
syz_genetlink_get_family_id$auto_mac802154_hwsim(&(0x7f0000000640), 0xffffffffffffffff)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f00000005c0)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty3\x00', 0x40002, 0x300)
fsconfig$auto_SHMEM_HUGE_FORCE(0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000840)="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", 0xfffffffffffffffe)
kexec_load$auto(0x9, 0x0, 0x0, 0x1003e0000)
socket(0xf, 0x3, 0x2)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
socket(0x1e, 0x1, 0x0)
close_range$auto(0x2, 0xa, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
get_robust_list$auto(0x0, 0x0, 0x0)

1.871026273s ago: executing program 4 (id=2788):
pwrite64$auto(0xc8, 0x0, 0xfdef, 0x3)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x14f602, 0x0)
open(&(0x7f0000000280)='./cgroup\x00', 0x5d52c0, 0x0)
r0 = socket(0xa, 0x2, 0x3a)
r1 = open_by_handle_at$auto(r0, 0x0, 0xffffffff)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000001100)='/proc/bus/pci/00/03.0\x00', 0xa0581, 0x0)
write$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f0000001140)="8cbdca", 0x3)
writev$auto(r2, &(0x7f0000001d40)={0x0, 0x2}, 0x6)
prctl$auto_PR_PAC_RESET_KEYS(0x36, 0x0, 0xffffffffffffffff, 0x9, 0x7)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket(0xa, 0x801, 0x84)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x300, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r3, 0x0, 0x0)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x3, 0x6, 0x0, 0x10000, 0x1, 0x2, {0x2100000000, 0x10000}, 0x3, 0x6, 0xffffffffffffffdd, 0x1008000, 0x0, 0x80000004, 0x83, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x1800})
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r4, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f0000000ac0), 0xffffffffffffffff)
sendmsg$auto_TCP_METRICS_CMD_GET(r5, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000bc0)={&(0x7f0000000b00)={0x14, r6, 0x89c1beb01534ff9b, 0x70bd29, 0x25dfdbfb}, 0x14}}, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0x10011, 0xfffffffffffffffa, 0x8000)
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/maps\x00', 0x21000, 0x0)
ioctl$auto_IMADDTIMER(r1, 0x80044940, 0x0)
select$auto(0x1, &(0x7f0000000040)={[0xffffffff00000001, 0xfffffffffffffff7, 0x100, 0x7fff, 0x75, 0x3, 0x9, 0x6, 0xa80d, 0x8000000010000, 0x0, 0x7c43, 0x9, 0x0, 0x4, 0xd133]}, 0x0, &(0x7f00000001c0)={[0x800000000, 0x2, 0x12, 0x2, 0x4e4bcd3b, 0x8, 0x5, 0x4, 0x5, 0x12, 0xfffffffffffffffe, 0x1, 0xffffffff00000001, 0xe28, 0x48, 0x8]}, &(0x7f00000000c0)={0x100})
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
write$auto(0x3, 0x0, 0xfffffdef)
write$auto(0x3, 0x0, 0xfffffdef)

1.560608915s ago: executing program 3 (id=2789):
bpf$auto(0x0, 0x0, 0x6f3)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1d, 0x2, 0x6)
socket(0x10, 0x2, 0x4)
mmap$auto(0x0, 0x40009, 0xde, 0x9b72, 0x7, 0x28000)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
read$auto(r0, 0x0, 0x1f40)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3)
r2 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000140), 0x102, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)={0x44, r4, 0x1b, 0x70bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0x14, 0x3, 0x0, 0x1, [@nested={0x10, 0x14, 0x0, 0x1, [@typed={0xc, 0x8, 0x0, 0x0, @u64=0xd6}]}]}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f1779048590828847"}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x44}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
ioctl$auto_USB_RAW_IOCTL_INIT(r2, 0x41015500, 0x0)
ioctl$auto_TIOCSETD2(0xffffffffffffffff, 0x5423, 0x0)

607.885993ms ago: executing program 3 (id=2790):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003140), r0)
sendmsg$auto_ETHTOOL_MSG_COALESCE_GET(r0, &(0x7f0000003200)={0x0, 0x0, &(0x7f00000031c0)={&(0x7f0000001100)=ANY=[@ANYBLOB="270000f7f7049b8732ccf75a7500"], 0x14}, 0x1, 0x0, 0x0, 0x6000091}, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/mm/lru_gen/enabled\x00', 0x0, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f00000011c0)=""/118, 0x76)
mmap$auto(0x0, 0x2000b, 0x4, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
r2 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r3 = memfd_create$auto(0x0, 0xe)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000001180)='/sys/kernel/security/tomoyo/manager\x00', 0x2, 0x0)
write$auto(0x3, 0x0, 0xfdf3)
pwritev$auto(0x3, &(0x7f0000001000)={0x0, 0x8}, 0x5, 0x3, 0x9)
socket(0xa, 0x2, 0x0)
unshare$auto(0x40000080)
r4 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000001140), r3)
sendmsg$auto_NL802154_CMD_STOP_BEACONS(r2, &(0x7f00000012c0)={&(0x7f00000010c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000001280)={&(0x7f0000001240)={0x30, r4, 0x800, 0x70bd28, 0x25dfdbff, {}, [@NL802154_ATTR_IFNAME={0x14, 0x4, 'lo\x00'}, @NL802154_ATTR_BEACON_INTERVAL={0x5, 0x26, 0xf5}]}, 0x30}}, 0x20004044)
read$auto_proc_reg_file_ops_compat_inode(0xffffffffffffffff, &(0x7f00000000c0)=""/4087, 0xff7)
mmap$auto(0x0, 0x20409, 0x4000000000df, 0xeb1, 0x0, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='/sys/kernel/mm/transparent_hugepage/shrink_underused\x00', 0x200, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2b, 0x1, 0x0)
socket(0x2c, 0x3, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r5, 0x0, 0x20)

248.533188ms ago: executing program 1 (id=2791):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
bind$auto(0x3, 0x0, 0x6e)
ioctl$auto_BLKRASET(0xffffffffffffffff, 0x1262, 0x0)
sendmsg$auto_NL80211_CMD_PEER_MEASUREMENT_START(0xffffffffffffffff, 0x0, 0x4008080)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/system/cpu/vulnerabilities/retbleed\x00', 0x101000, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000180)=""/181, 0xb5)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
unshare$auto(0x40000080)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000980), r1)
sendmsg$auto_TIPC_NL_MEDIA_SET(r1, &(0x7f000000a4c0)={0x0, 0x0, &(0x7f000000a480)={&(0x7f00000009c0)={0x18, r2, 0x1, 0x70bd29, 0x255fdbff, {}, [@TIPC_NLA_MEDIA={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x1800}, 0x20000048)

0s ago: executing program 4 (id=2792):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000080), r0)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f0000002b40)=ANY=[@ANYBLOB="44001f00", @ANYRES16=r1, @ANYBLOB="01002abd7000fbdbdf25040000002d0011002f50136a450cf972f5a3d28479f92a9b221ca46c2d19fda4f47902c296fa844c12cd83f712d3c41e5d000000"], 0x44}, 0x1, 0x0, 0x0, 0x4040000}, 0x4000800)
r2 = openat$auto_event_trigger_fops_trace(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/trigger\x00', 0x1, 0x0)
write$auto(r2, &(0x7f0000001080)='\xcb:\x00', 0x2)
mknod$auto(&(0x7f0000000180)=':,\x00', 0xcb, 0xfffffffa)
execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0)
mmap$auto(0x0, 0x4, 0xdf, 0x40000000009b72, 0x7, 0x28000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0xa, 0x2, 0x73)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
r3 = socket(0x1, 0x1, 0x0)
bind$auto(r3, 0x0, 0x6b)
listen$auto(0x3, 0x81)
pwrite64$auto(0xc8, &(0x7f0000000140)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x89\x02e\x1cJ\x99\x00\x00\x00\x00\x00\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbe\x01\x00\x00\x00\'\x03\x00\x00\x9f\x1e\xf9\xa4*\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e#\xae\xa9i8W\xe5Iq\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00'/231, 0xfdf2, 0x3a)
r4 = socket(0x2b, 0x1, 0x1)
ioctl$auto_PPPIOCGNPMODE(0xffffffffffffffff, 0xc008744c, &(0x7f0000000000)={0x7, 0x3})
lsm_list_modules$auto(0x0, 0x0, 0x0)
r5 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000240)='/dev/video37\x00', 0x8a240, 0x0)
ioctl$auto(r5, 0x5646, r5)
read$auto_v4l2_fops_v4l2_dev(r5, &(0x7f0000000280)=""/40, 0x28)
read$auto(r5, &(0x7f0000000000)='/proc/asound/card1/cable#1\x00', 0xffffffff)
r6 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000a80)='/dev/input/event0\x00', 0x20400, 0x0)
ioctl$auto_EVIOCSMASK(r6, 0x40104593, &(0x7f0000000ac0)={0x800, 0x3, 0x8001})
setsockopt$auto(r4, 0x29, 0x6, 0x0, 0x50)

kernel console output (not intermixed with test programs):

7644][T14581]  tty_open+0xa50/0xf90
[  481.967676][T14581]  ? __pfx_tty_open+0x10/0x10
[  481.967702][T14581]  ? chrdev_open+0x10b/0x6a0
[  481.967730][T14581]  ? __pfx_tty_open+0x10/0x10
[  481.967754][T14581]  chrdev_open+0x231/0x6a0
[  481.967777][T14581]  ? __pfx_apparmor_file_open+0x10/0x10
[  481.967804][T14581]  ? __pfx_chrdev_open+0x10/0x10
[  481.967830][T14581]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  481.967867][T14581]  do_dentry_open+0x741/0x1c10
[  481.967891][T14581]  ? __pfx_chrdev_open+0x10/0x10
[  481.967921][T14581]  vfs_open+0x82/0x3f0
[  481.967954][T14581]  path_openat+0x1e5e/0x2d40
[  481.967990][T14581]  ? __pfx_path_openat+0x10/0x10
[  481.968020][T14581]  do_filp_open+0x20b/0x470
[  481.968043][T14581]  ? __pfx_do_filp_open+0x10/0x10
[  481.968092][T14581]  ? alloc_fd+0x471/0x7d0
[  481.968140][T14581]  do_sys_openat2+0x11b/0x1d0
[  481.968168][T14581]  ? __pfx_do_sys_openat2+0x10/0x10
[  481.968210][T14581]  __x64_sys_openat+0x174/0x210
[  481.968238][T14581]  ? __pfx___x64_sys_openat+0x10/0x10
[  481.968269][T14581]  ? rcu_is_watching+0x12/0xc0
[  481.968300][T14581]  do_syscall_64+0xcd/0x230
[  481.968332][T14581]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  481.968355][T14581] RIP: 0033:0x7f1cd1d8e969
[  481.968373][T14581] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  481.968395][T14581] RSP: 002b:00007f1cd2b79038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  481.968417][T14581] RAX: ffffffffffffffda RBX: 00007f1cd1fb5fa0 RCX: 00007f1cd1d8e969
[  481.968432][T14581] RDX: 0000000000040002 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  481.968446][T14581] RBP: 00007f1cd1e10ab1 R08: 0000000000000000 R09: 0000000000000000
[  481.968460][T14581] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000
[  481.968473][T14581] R13: 0000000000000000 R14: 00007f1cd1fb5fa0 R15: 00007ffe52454bc8
[  481.968506][T14581]  </TASK>
[  481.968514][T14581] Mem-Info:
[  482.303927][T14581] active_anon:29890 inactive_anon:93 isolated_anon:0
[  482.303927][T14581]  active_file:9526 inactive_file:49694 isolated_file:0
[  482.303927][T14581]  unevictable:768 dirty:700 writeback:0
[  482.303927][T14581]  slab_reclaimable:11021 slab_unreclaimable:93859
[  482.303927][T14581]  mapped:27088 shmem:9932 pagetables:1128
[  482.303927][T14581]  sec_pagetables:0 bounce:0
[  482.303927][T14581]  kernel_misc_reclaimable:0
[  482.303927][T14581]  free:1310387 free_pcp:1666 free_cma:0
[  482.393177][T14581] Node 0 active_anon:119760kB inactive_anon:348kB active_file:38104kB inactive_file:198768kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:108852kB dirty:2800kB writeback:0kB shmem:39160kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11388kB pagetables:4412kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  482.441942][T14581] Node 1 active_anon:0kB inactive_anon:24kB active_file:0kB inactive_file:8kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1568kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  482.517409][T14581] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  482.579047][T14581] lowmem_reserve[]: 0 2484 2486 2486 2486
[  482.599035][T14581] Node 0 DMA32 free:1320796kB boost:0kB min:34108kB low:42632kB high:51156kB reserved_highatomic:0KB active_anon:119712kB inactive_anon:348kB active_file:38104kB inactive_file:196956kB unevictable:1536kB writepending:2800kB present:3129332kB managed:2544188kB mlocked:0kB bounce:0kB free_pcp:3100kB local_pcp:2216kB free_cma:0kB
[  482.670101][T14581] lowmem_reserve[]: 0 0 1 1 1
[  482.675687][T14607] openvswitch: ovs_: Dropping previously announced user features
[  482.692660][T14581] Node 0 Normal free:28kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1812kB unevictable:0kB writepending:0kB present:1048580kB managed:1900kB mlocked:0kB bounce:0kB free_pcp:12kB local_pcp:8kB free_cma:0kB
[  482.764652][T14581] lowmem_reserve[]: 0 0 0 0 0
[  482.774887][T14581] Node 1 Normal free:3906896kB boost:0kB min:55768kB low:69708kB high:83648kB reserved_highatomic:0KB active_anon:0kB inactive_anon:24kB active_file:0kB inactive_file:8kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:2304kB local_pcp:2048kB free_cma:0kB
[  482.826888][T14581] lowmem_reserve[]: 0 0 0 0 0
[  482.837027][T14581] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  482.869483][T14581] Node 0 DMA32: 194*4kB (UME) 426*8kB (UME) 1350*16kB (UME) 1043*32kB (UME) 854*64kB (UME) 670*128kB (UME) 257*256kB (UME) 149*512kB (UME) 68*1024kB (UME) 4*2048kB (UM) 217*4096kB (UM) = 1308312kB
[  482.892939][T14581] Node 0 Normal: 1*4kB (M) 1*8kB (M) 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 28kB
[  482.906033][T14581] Node 1 Normal: 136*4kB (UME) 54*8kB (UME) 34*16kB (UME) 205*32kB (UME) 89*64kB (UME) 27*128kB (UME) 12*256kB (UME) 5*512kB (UM) 5*1024kB (UME) 8*2048kB (ME) 943*4096kB (M) = 3906896kB
[  482.945318][T14581] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  483.074950][T14581] Node 0 hugepages_total=1 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[  483.130179][T14581] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  483.140733][T14581] Node 1 hugepages_total=3 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB
[  483.196833][T14581] 74984 total pagecache pages
[  483.216936][T14581] 3 pages in swap cache
[  483.221156][T14581] Free swap  = 117260kB
[  483.226661][T14581] Total swap = 124996kB
[  483.241088][T14581] 2097051 pages RAM
[  483.244932][T14581] 0 pages HighMem/MovableOnly
[  483.263497][T14581] 428898 pages reserved
[  483.276285][T14581] 0 pages cma reserved
[  483.298066][T14581] tty tty3: ldisc open failed (-12), clearing slot 2
[  483.657936][T14624] netlink: 334 bytes leftover after parsing attributes in process `syz.1.2156'.
[  483.705695][T14627] netlink: 186 bytes leftover after parsing attributes in process `syz.3.2158'.
[  483.934874][ T5141] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260
[  483.934920][ T5141] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260
[  483.952913][ T5141] Bluetooth: hci1: Unknown advertising packet type: 0x7f
[  483.952952][ T5141] Bluetooth: hci1: adv larger than maximum supported
[  483.962368][ T5141] Bluetooth: hci1: adv larger than maximum supported
[  483.970814][ T5141] Bluetooth: hci1: Malformed LE Event: 0x0d
[  486.262910][T14665] openvswitch: ovs_: Dropping previously announced user features
[  486.552892][T14670] net_ratelimit: 5 callbacks suppressed
[  486.552915][T14670] netlink: set zone limit has 8 unknown bytes
[  487.679315][T14695] netlink: set zone limit has 8 unknown bytes
[  488.415193][T14708] FAULT_INJECTION: forcing a failure.
[  488.415193][T14708] name failslab, interval 1, probability 0, space 0, times 0
[  488.455017][T14708] CPU: 1 UID: 0 PID: 14708 Comm: syz.0.2175 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[  488.455064][T14708] Tainted: [U]=USER
[  488.455072][T14708] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  488.455087][T14708] Call Trace:
[  488.455095][T14708]  <TASK>
[  488.455104][T14708]  dump_stack_lvl+0x16c/0x1f0
[  488.455141][T14708]  should_fail_ex+0x512/0x640
[  488.455174][T14708]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  488.455206][T14708]  should_failslab+0xc2/0x120
[  488.455236][T14708]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  488.455263][T14708]  ? __pfx___might_resched+0x10/0x10
[  488.455287][T14708]  ? alloc_vmap_area+0x613/0x2970
[  488.455324][T14708]  alloc_vmap_area+0x613/0x2970
[  488.455371][T14708]  ? __pfx_alloc_vmap_area+0x10/0x10
[  488.455413][T14708]  __get_vm_area_node+0x1a7/0x300
[  488.455453][T14708]  __vmalloc_node_range_noprof+0x277/0x1540
[  488.455489][T14708]  ? n_tty_open+0x1a/0x170
[  488.455530][T14708]  ? n_tty_open+0x1a/0x170
[  488.455564][T14708]  ? __ldsem_down_write_nested+0x10e/0x850
[  488.455597][T14708]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  488.455644][T14708]  ? n_tty_open+0x1a/0x170
[  488.455674][T14708]  vzalloc_noprof+0x6b/0x90
[  488.455708][T14708]  ? n_tty_open+0x1a/0x170
[  488.455735][T14708]  ? __pfx_n_tty_open+0x10/0x10
[  488.455770][T14708]  n_tty_open+0x1a/0x170
[  488.455800][T14708]  ? __pfx_n_tty_open+0x10/0x10
[  488.455830][T14708]  tty_ldisc_open+0x9c/0x120
[  488.455855][T14708]  tty_ldisc_setup+0x40/0x100
[  488.455882][T14708]  tty_init_dev.part.0+0x1ec/0x500
[  488.455914][T14708]  tty_open+0xa50/0xf90
[  488.455949][T14708]  ? __pfx_tty_open+0x10/0x10
[  488.455976][T14708]  ? chrdev_open+0x10b/0x6a0
[  488.456005][T14708]  ? __pfx_tty_open+0x10/0x10
[  488.456032][T14708]  chrdev_open+0x231/0x6a0
[  488.456055][T14708]  ? __pfx_apparmor_file_open+0x10/0x10
[  488.456084][T14708]  ? __pfx_chrdev_open+0x10/0x10
[  488.456111][T14708]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  488.456152][T14708]  do_dentry_open+0x741/0x1c10
[  488.456177][T14708]  ? __pfx_chrdev_open+0x10/0x10
[  488.456209][T14708]  vfs_open+0x82/0x3f0
[  488.456242][T14708]  path_openat+0x1e5e/0x2d40
[  488.456279][T14708]  ? __pfx_path_openat+0x10/0x10
[  488.456313][T14708]  do_filp_open+0x20b/0x470
[  488.456336][T14708]  ? __pfx_do_filp_open+0x10/0x10
[  488.456387][T14708]  ? alloc_fd+0x471/0x7d0
[  488.456431][T14708]  do_sys_openat2+0x11b/0x1d0
[  488.456460][T14708]  ? __pfx_do_sys_openat2+0x10/0x10
[  488.456506][T14708]  __x64_sys_openat+0x174/0x210
[  488.456535][T14708]  ? __pfx___x64_sys_openat+0x10/0x10
[  488.456568][T14708]  ? rcu_is_watching+0x12/0xc0
[  488.456601][T14708]  do_syscall_64+0xcd/0x230
[  488.456634][T14708]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  488.456658][T14708] RIP: 0033:0x7f536db8e969
[  488.456679][T14708] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  488.456703][T14708] RSP: 002b:00007f536b9f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  488.456727][T14708] RAX: ffffffffffffffda RBX: 00007f536ddb6080 RCX: 00007f536db8e969
[  488.456743][T14708] RDX: 0000000000040002 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  488.456767][T14708] RBP: 00007f536dc10ab1 R08: 0000000000000000 R09: 0000000000000000
[  488.456781][T14708] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000
[  488.456794][T14708] R13: 0000000000000000 R14: 00007f536ddb6080 R15: 00007ffe96b4c1f8
[  488.456824][T14708]  </TASK>
[  488.934884][T14708] tty tty3: ldisc open failed (-12), clearing slot 2
[  489.101836][ T5141] Bluetooth: hci1: unexpected event 0x36 length: 123 > 7
[  489.319473][T14723] netlink: set zone limit has 8 unknown bytes
[  489.688086][T14740] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2184'.
[  491.460360][T14792] netlink: set zone limit has 8 unknown bytes
[  491.530171][T14796] Invalid ELF header magic: != ELF
[  493.488213][T14830] page: refcount:8 mapcount:7 mapping:0000000000000000 index:0x7f891736a pfn:0x78c00
[  493.546896][T14830] flags: 0xfff18000000214(referenced|dirty|workingset|node=0|zone=1|lastcpupid=0x7ff)
[  493.620672][T14830] raw: 00fff18000000214 0000000000000000 dead000000000122 0000000000000000
[  493.668276][T14830] raw: 00000007f891736a 0000000000000000 0000000800000006 0000000000000000
[  493.718941][T14830] page dumped because: unmovable page
[  493.719335][T14832] GUP no longer grows the stack in syz.1.2207 (14832): 14000-401000 (4000)
[  493.724356][T14830] page_owner tracks the page as allocated
[  493.800635][T14832] CPU: 0 UID: 0 PID: 14832 Comm: syz.1.2207 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[  493.800680][T14832] Tainted: [U]=USER
[  493.800689][T14832] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  493.800703][T14832] Call Trace:
[  493.800711][T14832]  <TASK>
[  493.800722][T14832]  dump_stack_lvl+0x16c/0x1f0
[  493.800759][T14832]  gup_vma_lookup+0x1d2/0x220
[  493.800795][T14832]  __get_user_pages+0x234/0x36f0
[  493.800837][T14832]  ? process_vm_rw_core.constprop.0+0x1d8/0x9a0
[  493.800867][T14832]  ? look_up_lock_class+0x59/0x150
[  493.800895][T14832]  ? __pfx___get_user_pages+0x10/0x10
[  493.800928][T14832]  ? process_vm_rw+0x216/0x2c0
[  493.800953][T14832]  ? __x64_sys_process_vm_readv+0xe2/0x1c0
[  493.800980][T14832]  ? do_syscall_64+0xcd/0x230
[  493.801028][T14832]  __gup_longterm_locked+0x20d/0x1850
[  493.801077][T14832]  ? __pfx___gup_longterm_locked+0x10/0x10
[  493.801131][T14832]  pin_user_pages_remote+0xed/0x140
[  493.801171][T14832]  ? __pfx_pin_user_pages_remote+0x10/0x10
[  493.801205][T14832]  ? mm_access+0x22d/0x2e0
[  493.801244][T14832]  process_vm_rw_core.constprop.0+0x41b/0x9a0
[  493.801277][T14832]  ? futex_wait_queue+0x14c/0x220
[  493.801305][T14832]  ? futex_unqueue+0xba/0x140
[  493.801334][T14832]  ? __pfx_process_vm_rw_core.constprop.0+0x10/0x10
[  493.801366][T14832]  ? iovec_from_user+0xbb/0x140
[  493.801416][T14832]  ? iovec_from_user+0xbb/0x140
[  493.801453][T14832]  process_vm_rw+0x216/0x2c0
[  493.801482][T14832]  ? __pfx_process_vm_rw+0x10/0x10
[  493.801551][T14832]  ? xfd_validate_state+0x5d/0x180
[  493.801594][T14832]  __x64_sys_process_vm_readv+0xe2/0x1c0
[  493.801624][T14832]  ? do_syscall_64+0x91/0x230
[  493.801653][T14832]  ? lockdep_hardirqs_on+0x7c/0x110
[  493.801681][T14832]  do_syscall_64+0xcd/0x230
[  493.801714][T14832]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  493.801738][T14832] RIP: 0033:0x7f1cd1d8e969
[  493.801758][T14832] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  493.801783][T14832] RSP: 002b:00007f1cd2b58038 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[  493.801807][T14832] RAX: ffffffffffffffda RBX: 00007f1cd1fb6080 RCX: 00007f1cd1d8e969
[  493.801824][T14832] RDX: 0000000000000004 RSI: 0000200000000040 RDI: 00000000000007ef
[  493.801839][T14832] RBP: 00007f1cd1e10ab1 R08: 0000000000000003 R09: 0000000000000000
[  493.801854][T14832] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000000
[  493.801869][T14832] R13: 0000000000000000 R14: 00007f1cd1fb6080 R15: 00007ffe52454bc8
[  493.801902][T14832]  </TASK>
[  494.126909][T14830] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2dc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), pid 5822, tgid 5822 (syz-executor), ts 73620705832, free_ts 73440031820
[  494.259660][T14830]  post_alloc_hook+0x181/0x1b0
[  494.264513][T14830]  get_page_from_freelist+0x135c/0x3920
[  494.346621][T14830]  __alloc_frozen_pages_noprof+0x263/0x23a0
[  494.416872][T14830]  alloc_pages_mpol+0x1fb/0x550
[  494.422114][T14830]  alloc_pages_noprof+0x131/0x390
[  494.486936][T14830]  __vmalloc_node_range_noprof+0x732/0x1540
[  494.492947][T14830]  vmalloc_user_noprof+0x6b/0x90
[  494.585423][T14830]  kcov_ioctl+0x4c/0x730
[  494.623541][T14830]  __x64_sys_ioctl+0x190/0x200
[  494.678943][T14830]  do_syscall_64+0xcd/0x230
[  494.683536][T14830]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  494.846858][T14830] page last free pid 5816 tgid 5816 stack trace:
[  494.853267][T14830]  free_unref_folios+0x999/0x1630
[  494.924073][T14830]  folios_put_refs+0x56f/0x740
[  494.956632][T14830]  free_pages_and_swap_cache+0x245/0x4a0
[  495.006408][T14735] Process accounting resumed
[  495.050054][T14830]  __tlb_batch_free_encoded_pages+0xf9/0x290
[  495.056124][T14830]  tlb_finish_mmu+0x168/0x7b0
[  495.121129][T14830]  vms_clear_ptes+0x55e/0x770
[  495.125891][T14830]  vms_complete_munmap_vmas+0x1ca/0x970
[  495.206450][T14830]  do_vmi_align_munmap+0x43b/0x7d0
[  495.246926][T14830]  do_vmi_munmap+0x208/0x3e0
[  495.258875][T14830]  __vm_munmap+0x19a/0x390
[  495.276327][T14830]  __x64_sys_munmap+0x59/0x80
[  495.314292][T14830]  do_syscall_64+0xcd/0x230
[  495.357004][T14830]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  495.903569][T14858] netlink: set zone limit has 8 unknown bytes
[  497.127953][T14881] netlink: zone id is out of range
[  497.133150][T14881] netlink: zone id is out of range
[  497.203515][T14881] netlink: zone id is out of range
[  497.247115][T14881] netlink: zone id is out of range
[  497.265733][T14881] netlink: zone id is out of range
[  497.299124][T14881] netlink: zone id is out of range
[  497.309228][T14881] netlink: zone id is out of range
[  497.314393][T14881] netlink: zone id is out of range
[  497.387003][T14881] netlink: zone id is out of range
[  498.180772][T14893] openvswitch: ovs_: Dropping previously announced user features
[  501.021362][T14943] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2232'.
[  501.513744][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  501.522920][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  502.146553][T14956] openvswitch: ovs_: Dropping previously announced user features
[  502.338557][T14957] net_ratelimit: 120 callbacks suppressed
[  502.341951][T14957] netlink: set zone limit has 8 unknown bytes
[  503.196214][T14967] netlink: zone id is out of range
[  503.256936][T14967] netlink: zone id is out of range
[  503.262110][T14967] netlink: zone id is out of range
[  503.280533][T14967] netlink: zone id is out of range
[  503.293338][T14967] netlink: zone id is out of range
[  503.304495][T14967] netlink: zone id is out of range
[  503.315950][T14967] netlink: zone id is out of range
[  503.336870][T14967] netlink: zone id is out of range
[  503.397588][T14967] netlink: zone id is out of range
[  503.904769][   T30] audit: type=1326 audit(4294968496.402:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14988 comm="syz.2.2247" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f3c2018e969 code=0x0
[  504.318570][T14996] synth uevent: /bus/hid/drivers/zeroplus: unknown uevent action string
[  504.838327][T15002] openvswitch: ovs_: Dropping previously announced user features
[  508.144477][T15028] Process accounting paused
[  508.378688][T15046] cgroup: fork rejected by pids controller in /syz2
[  508.433963][T15065] net_ratelimit: 119 callbacks suppressed
[  508.433983][T15065] netlink: set zone limit has 8 unknown bytes
[  509.629758][T15107] FAULT_INJECTION: forcing a failure.
[  509.629758][T15107] name failslab, interval 1, probability 0, space 0, times 0
[  509.642710][T15107] CPU: 0 UID: 0 PID: 15107 Comm: syz.1.2268 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[  509.642753][T15107] Tainted: [U]=USER
[  509.642762][T15107] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  509.642777][T15107] Call Trace:
[  509.642785][T15107]  <TASK>
[  509.642795][T15107]  dump_stack_lvl+0x16c/0x1f0
[  509.642833][T15107]  should_fail_ex+0x512/0x640
[  509.642864][T15107]  ? __kmalloc_node_noprof+0xc5/0x500
[  509.642897][T15107]  should_failslab+0xc2/0x120
[  509.642928][T15107]  __kmalloc_node_noprof+0xd8/0x500
[  509.642956][T15107]  ? __vmalloc_node_range_noprof+0x3eb/0x1540
[  509.642997][T15107]  __vmalloc_node_range_noprof+0x3eb/0x1540
[  509.643044][T15107]  ? n_tty_open+0x1a/0x170
[  509.643078][T15107]  ? __ldsem_down_write_nested+0x10e/0x850
[  509.643110][T15107]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  509.643152][T15107]  ? n_tty_open+0x1a/0x170
[  509.643183][T15107]  vzalloc_noprof+0x6b/0x90
[  509.643216][T15107]  ? n_tty_open+0x1a/0x170
[  509.643243][T15107]  ? __pfx_n_tty_open+0x10/0x10
[  509.643271][T15107]  n_tty_open+0x1a/0x170
[  509.643298][T15107]  ? __pfx_n_tty_open+0x10/0x10
[  509.643326][T15107]  tty_ldisc_open+0x9c/0x120
[  509.643350][T15107]  tty_ldisc_setup+0x40/0x100
[  509.643375][T15107]  tty_init_dev.part.0+0x1ec/0x500
[  509.643407][T15107]  tty_open+0xa50/0xf90
[  509.643441][T15107]  ? __pfx_tty_open+0x10/0x10
[  509.643469][T15107]  ? chrdev_open+0x10b/0x6a0
[  509.643498][T15107]  ? __pfx_tty_open+0x10/0x10
[  509.643532][T15107]  chrdev_open+0x231/0x6a0
[  509.643557][T15107]  ? __pfx_apparmor_file_open+0x10/0x10
[  509.643588][T15107]  ? __pfx_chrdev_open+0x10/0x10
[  509.643617][T15107]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  509.643657][T15107]  do_dentry_open+0x741/0x1c10
[  509.643682][T15107]  ? __pfx_chrdev_open+0x10/0x10
[  509.643714][T15107]  vfs_open+0x82/0x3f0
[  509.643746][T15107]  path_openat+0x1e5e/0x2d40
[  509.643778][T15107]  ? __pfx_path_openat+0x10/0x10
[  509.643808][T15107]  do_filp_open+0x20b/0x470
[  509.643830][T15107]  ? __pfx_do_filp_open+0x10/0x10
[  509.643878][T15107]  ? alloc_fd+0x471/0x7d0
[  509.643921][T15107]  do_sys_openat2+0x11b/0x1d0
[  509.643951][T15107]  ? __pfx_do_sys_openat2+0x10/0x10
[  509.643994][T15107]  __x64_sys_openat+0x174/0x210
[  509.644024][T15107]  ? __pfx___x64_sys_openat+0x10/0x10
[  509.644056][T15107]  ? rcu_is_watching+0x12/0xc0
[  509.644094][T15107]  do_syscall_64+0xcd/0x230
[  509.644131][T15107]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  509.644156][T15107] RIP: 0033:0x7f1cd1d8e969
[  509.644177][T15107] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  509.644201][T15107] RSP: 002b:00007f1cd2b79038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  509.644226][T15107] RAX: ffffffffffffffda RBX: 00007f1cd1fb5fa0 RCX: 00007f1cd1d8e969
[  509.644243][T15107] RDX: 0000000000040002 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  509.644260][T15107] RBP: 00007f1cd1e10ab1 R08: 0000000000000000 R09: 0000000000000000
[  509.644276][T15107] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000
[  509.644291][T15107] R13: 0000000000000000 R14: 00007f1cd1fb5fa0 R15: 00007ffe52454bc8
[  509.644342][T15107]  </TASK>
[  509.644355][T15107] warn_alloc: 1 callbacks suppressed
[  509.644368][T15107] syz.1.2268: vmalloc error: size 12288, failed to allocated page array size 24, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  510.140684][T15107] CPU: 0 UID: 0 PID: 15107 Comm: syz.1.2268 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[  510.140722][T15107] Tainted: [U]=USER
[  510.140730][T15107] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  510.140743][T15107] Call Trace:
[  510.140751][T15107]  <TASK>
[  510.140760][T15107]  dump_stack_lvl+0x16c/0x1f0
[  510.140792][T15107]  warn_alloc+0x248/0x3a0
[  510.140821][T15107]  ? __pfx_warn_alloc+0x10/0x10
[  510.140842][T15107]  ? dump_stack_lvl+0x185/0x1f0
[  510.140879][T15107]  ? rcu_is_watching+0x12/0xc0
[  510.140902][T15107]  ? __kmalloc_node_noprof+0x23b/0x500
[  510.140936][T15107]  __vmalloc_node_range_noprof+0x1110/0x1540
[  510.140982][T15107]  ? n_tty_open+0x1a/0x170
[  510.141015][T15107]  ? __ldsem_down_write_nested+0x10e/0x850
[  510.141047][T15107]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  510.141091][T15107]  ? n_tty_open+0x1a/0x170
[  510.141119][T15107]  vzalloc_noprof+0x6b/0x90
[  510.141151][T15107]  ? n_tty_open+0x1a/0x170
[  510.141176][T15107]  ? __pfx_n_tty_open+0x10/0x10
[  510.141202][T15107]  n_tty_open+0x1a/0x170
[  510.141228][T15107]  ? __pfx_n_tty_open+0x10/0x10
[  510.141253][T15107]  tty_ldisc_open+0x9c/0x120
[  510.141274][T15107]  tty_ldisc_setup+0x40/0x100
[  510.141295][T15107]  tty_init_dev.part.0+0x1ec/0x500
[  510.141322][T15107]  tty_open+0xa50/0xf90
[  510.141353][T15107]  ? __pfx_tty_open+0x10/0x10
[  510.141378][T15107]  ? chrdev_open+0x10b/0x6a0
[  510.141402][T15107]  ? __pfx_tty_open+0x10/0x10
[  510.141426][T15107]  chrdev_open+0x231/0x6a0
[  510.141445][T15107]  ? __pfx_apparmor_file_open+0x10/0x10
[  510.141479][T15107]  ? __pfx_chrdev_open+0x10/0x10
[  510.141505][T15107]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  510.141540][T15107]  do_dentry_open+0x741/0x1c10
[  510.141564][T15107]  ? __pfx_chrdev_open+0x10/0x10
[  510.141591][T15107]  vfs_open+0x82/0x3f0
[  510.141624][T15107]  path_openat+0x1e5e/0x2d40
[  510.141660][T15107]  ? __pfx_path_openat+0x10/0x10
[  510.141687][T15107]  do_filp_open+0x20b/0x470
[  510.141708][T15107]  ? __pfx_do_filp_open+0x10/0x10
[  510.141757][T15107]  ? alloc_fd+0x471/0x7d0
[  510.141801][T15107]  do_sys_openat2+0x11b/0x1d0
[  510.141828][T15107]  ? __pfx_do_sys_openat2+0x10/0x10
[  510.141871][T15107]  __x64_sys_openat+0x174/0x210
[  510.141899][T15107]  ? __pfx___x64_sys_openat+0x10/0x10
[  510.141929][T15107]  ? rcu_is_watching+0x12/0xc0
[  510.141960][T15107]  do_syscall_64+0xcd/0x230
[  510.141992][T15107]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  510.142015][T15107] RIP: 0033:0x7f1cd1d8e969
[  510.142034][T15107] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  510.142057][T15107] RSP: 002b:00007f1cd2b79038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  510.142079][T15107] RAX: ffffffffffffffda RBX: 00007f1cd1fb5fa0 RCX: 00007f1cd1d8e969
[  510.142095][T15107] RDX: 0000000000040002 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  510.142110][T15107] RBP: 00007f1cd1e10ab1 R08: 0000000000000000 R09: 0000000000000000
[  510.142123][T15107] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000
[  510.142136][T15107] R13: 0000000000000000 R14: 00007f1cd1fb5fa0 R15: 00007ffe52454bc8
[  510.142170][T15107]  </TASK>
[  510.142178][T15107] Mem-Info:
[  510.505235][T15107] active_anon:26436 inactive_anon:93 isolated_anon:0
[  510.505235][T15107]  active_file:9470 inactive_file:49762 isolated_file:0
[  510.505235][T15107]  unevictable:785 dirty:495 writeback:0
[  510.505235][T15107]  slab_reclaimable:11153 slab_unreclaimable:95608
[  510.505235][T15107]  mapped:24665 shmem:6946 pagetables:1059
[  510.505235][T15107]  sec_pagetables:0 bounce:0
[  510.505235][T15107]  kernel_misc_reclaimable:0
[  510.505235][T15107]  free:1301650 free_pcp:12416 free_cma:0
[  510.550681][    C0] vkms_vblank_simulate: vblank timer overrun
[  510.557086][T15107] Node 0 active_anon:105812kB inactive_anon:348kB active_file:37880kB inactive_file:199040kB unevictable:1604kB isolated(anon):0kB isolated(file):0kB mapped:98668kB dirty:1980kB writeback:0kB shmem:26228kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11228kB pagetables:4288kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  510.590728][    C0] vkms_vblank_simulate: vblank timer overrun
[  510.601387][T15107] Node 1 active_anon:0kB inactive_anon:24kB active_file:0kB inactive_file:8kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1568kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  510.632593][    C0] vkms_vblank_simulate: vblank timer overrun
[  510.677008][T15107] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  510.705156][T15107] lowmem_reserve[]: 0 2484 2486 2486 2486
[  510.711388][T15107] Node 0 DMA32 free:1326952kB boost:0kB min:34108kB low:42632kB high:51156kB reserved_highatomic:0KB active_anon:108164kB inactive_anon:348kB active_file:37880kB inactive_file:197228kB unevictable:1604kB writepending:1980kB present:3129332kB managed:2544188kB mlocked:68kB bounce:0kB free_pcp:3056kB local_pcp:816kB free_cma:0kB
[  510.746247][T15107] lowmem_reserve[]: 0 0 1 1 1
[  510.796050][T15107] Node 0 Normal free:28kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1812kB unevictable:0kB writepending:0kB present:1048580kB managed:1900kB mlocked:0kB bounce:0kB free_pcp:12kB local_pcp:4kB free_cma:0kB
[  510.833454][T15125] netlink: zone id is out of range
[  510.834154][T15107] lowmem_reserve[]:
[  510.843144][T15125] netlink: zone id is out of range
[  510.852918][T15125] netlink: zone id is out of range
[  510.858501][T15125] netlink: zone id is out of range
[  510.863710][T15125] netlink: zone id is out of range
[  510.869605][T15125] netlink: zone id is out of range
[  510.874799][T15125] netlink: zone id is out of range
[  510.880635][T15125] netlink: zone id is out of range
[  510.885907][T15125] netlink: zone id is out of range
[  510.891869][T15107]  0 0 0 0 0
[  510.895191][T15107] Node 1 Normal free:3861316kB boost:0kB min:55768kB low:69708kB high:83648kB reserved_highatomic:0KB active_anon:0kB inactive_anon:24kB active_file:0kB inactive_file:8kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:47820kB local_pcp:26900kB free_cma:0kB
[  510.999636][T15107] lowmem_reserve[]: 0 0 0 0 0
[  511.004439][T15107] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  511.069378][T15107] Node 0 DMA32: 3353*4kB (UM) 1975*8kB (UME) 1879*16kB (UME) 1148*32kB (UME) 934*64kB (UM) 702*128kB (UME) 269*256kB (UME) 163*512kB (UME) 68*1024kB (UME) 11*2048kB (UM) 204*4096kB (UM) = 1325708kB
[  511.107070][T15107] Node 0 Normal: 1*4kB (M) 1*8kB (M) 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 28kB
[  511.164259][T15107] Node 1 Normal: 784*4kB (UME) 14*8kB (UME) 7*16kB (ME) 23*32kB (UME) 95*64kB (UME) 31*128kB (UME) 17*256kB (UME) 8*512kB (UM) 9*1024kB (UME) 2*2048kB (ME) 934*4096kB (M) = 3861568kB
[  511.271673][T15107] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  511.281630][T15107] Node 0 hugepages_total=1 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  511.291655][T15107] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  511.301401][T15107] Node 1 hugepages_total=3 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB
[  511.311035][T15107] 66171 total pagecache pages
[  511.315881][T15107] 3 pages in swap cache
[  511.320897][T15107] Free swap  = 120700kB
[  511.325258][T15107] Total swap = 124996kB
[  511.329608][T15107] 2097051 pages RAM
[  511.333558][T15107] 0 pages HighMem/MovableOnly
[  511.342486][T15107] 428898 pages reserved
[  511.351533][T15107] 0 pages cma reserved
[  511.356341][T15107] tty tty3: ldisc open failed (-12), clearing slot 2
[  511.639507][T15152] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2280'.
[  511.675423][T15152] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2280'.
[  511.740215][T15152] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2280'.
[  514.742346][T15232] Process accounting resumed
[  515.133799][T15238] net_ratelimit: 120 callbacks suppressed
[  515.133823][T15238] netlink: zone id is out of range
[  515.184124][T15238] netlink: zone id is out of range
[  515.237103][T15238] netlink: zone id is out of range
[  515.262647][T15238] netlink: zone id is out of range
[  515.289033][T15238] netlink: zone id is out of range
[  515.326862][T15238] netlink: zone id is out of range
[  515.332044][T15238] netlink: zone id is out of range
[  515.386808][T15238] netlink: zone id is out of range
[  515.412295][T15238] netlink: zone id is out of range
[  515.439553][T15238] netlink: zone id is out of range
[  515.525819][T12651] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  515.543952][T12651] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  515.552618][T12651] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  515.561587][T12651] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  515.580325][T12651] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  515.884950][ T3537] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  516.533541][ T3537] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  516.699845][ T3537] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  517.008715][ T3537] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  517.250286][T15265] netlink: 'syz.0.2308': attribute type 13 has an invalid length.
[  517.667530][T12651] Bluetooth: hci3: command tx timeout
[  517.814966][T15240] chnl_net:caif_netlink_parms(): no params data found
[  517.857056][ T3537] team0: left allmulticast mode
[  517.862269][ T3537] team_slave_0: left allmulticast mode
[  517.880101][ T3537] team_slave_1: left allmulticast mode
[  517.885713][ T3537] team0: left promiscuous mode
[  517.916927][ T3537] team_slave_0: left promiscuous mode
[  517.923594][ T3537] team_slave_1: left promiscuous mode
[  517.948968][ T3537] bridge0: port 3(team0) entered disabled state
[  518.049903][ T3537] bridge_slave_1: left allmulticast mode
[  518.072599][ T3537] bridge_slave_1: left promiscuous mode
[  518.091137][ T3537] bridge0: port 2(bridge_slave_1) entered disabled state
[  518.423828][ T3537] bridge_slave_0: left allmulticast mode
[  518.436901][ T3537] bridge_slave_0: left promiscuous mode
[  518.442746][ T3537] bridge0: port 1(bridge_slave_0) entered disabled state
[  519.747182][T12651] Bluetooth: hci3: command tx timeout
[  520.687605][ T3537] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  520.740267][ T3537] bond0 (unregistering): Released all slaves
[  520.948750][ T3537] ovs_: left promiscuous mode
[  521.506145][ T3537] tipc: Left network mode
[  521.520316][T15240] bridge0: port 1(bridge_slave_0) entered blocking state
[  521.547085][T15240] bridge0: port 1(bridge_slave_0) entered disabled state
[  521.554343][T15240] bridge_slave_0: entered allmulticast mode
[  521.578589][T15240] bridge_slave_0: entered promiscuous mode
[  521.606409][T15240] bridge0: port 2(bridge_slave_1) entered blocking state
[  521.638829][T15240] bridge0: port 2(bridge_slave_1) entered disabled state
[  521.646107][T15240] bridge_slave_1: entered allmulticast mode
[  521.672233][T15240] bridge_slave_1: entered promiscuous mode
[  521.734822][T15324] FAULT_INJECTION: forcing a failure.
[  521.734822][T15324] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  521.809536][T15324] CPU: 1 UID: 0 PID: 15324 Comm: syz.0.2314 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[  521.809578][T15324] Tainted: [U]=USER
[  521.809585][T15324] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  521.809597][T15324] Call Trace:
[  521.809604][T15324]  <TASK>
[  521.809612][T15324]  dump_stack_lvl+0x16c/0x1f0
[  521.809645][T15324]  should_fail_ex+0x512/0x640
[  521.809677][T15324]  _copy_to_user+0x32/0xd0
[  521.809709][T15324]  simple_read_from_buffer+0xcb/0x170
[  521.809741][T15324]  proc_fail_nth_read+0x197/0x270
[  521.809770][T15324]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  521.809800][T15324]  ? rw_verify_area+0xcf/0x680
[  521.809828][T15324]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  521.809858][T15324]  vfs_read+0x1de/0xc70
[  521.809883][T15324]  ? __pfx___mutex_lock+0x10/0x10
[  521.809909][T15324]  ? __pfx_vfs_read+0x10/0x10
[  521.809938][T15324]  ? __fget_files+0x20e/0x3c0
[  521.809977][T15324]  ksys_read+0x12a/0x240
[  521.809996][T15324]  ? __pfx_ksys_read+0x10/0x10
[  521.810013][T15324]  ? rcu_is_watching+0x12/0xc0
[  521.810042][T15324]  do_syscall_64+0xcd/0x230
[  521.810071][T15324]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  521.810091][T15324] RIP: 0033:0x7f536db8d37c
[  521.810109][T15324] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  521.810129][T15324] RSP: 002b:00007f536e92d030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  521.810150][T15324] RAX: ffffffffffffffda RBX: 00007f536ddb5fa0 RCX: 00007f536db8d37c
[  521.810165][T15324] RDX: 000000000000000f RSI: 00007f536e92d0a0 RDI: 0000000000000004
[  521.810198][T15324] RBP: 00007f536e92d090 R08: 0000000000000000 R09: 0000000000000000
[  521.810212][T15324] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  521.810223][T15324] R13: 0000000000000000 R14: 00007f536ddb5fa0 R15: 00007ffe96b4c1f8
[  521.810252][T15324]  </TASK>
[  521.827055][T12651] Bluetooth: hci3: command tx timeout
[  522.121876][T15240] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  522.211845][T15240] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  522.380508][T15240] team0: Port device team_slave_0 added
[  522.408098][T15240] team0: Port device team_slave_1 added
[  522.597908][T15240] batman_adv: batadv0: Adding interface: batadv_slave_0
[  522.604905][T15240] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  522.666814][T15240] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  522.699290][T15240] batman_adv: batadv0: Adding interface: batadv_slave_1
[  522.706410][T15240] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  522.786905][T15240] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  523.294855][T15240] hsr_slave_0: entered promiscuous mode
[  523.323127][T15240] hsr_slave_1: entered promiscuous mode
[  523.340808][T15240] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  523.360448][T15240] Cannot create hsr debugfs directory
[  523.383347][T15360] net_ratelimit: 26 callbacks suppressed
[  523.383403][T15360] netlink: set zone limit has 8 unknown bytes
[  523.611434][T15367] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2316'.
[  523.672004][T15368] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2316'.
[  523.708715][ T3537] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  523.716303][ T3537] batman_adv: batadv0: Removing interface: batadv_slave_0
[  523.724124][T15369] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2316'.
[  523.761696][ T3537] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  523.780106][ T3537] batman_adv: batadv0: Removing interface: batadv_slave_1
[  524.003620][ T3537] veth1_macvtap: left promiscuous mode
[  524.024976][ T3537] veth0_macvtap: left promiscuous mode
[  524.044829][ T3537] veth1_vlan: left promiscuous mode
[  524.079259][T12651] Bluetooth: hci3: command tx timeout
[  525.393519][T15341] Process accounting paused
[  525.565835][ T3537] team0 (unregistering): Port device team_slave_1 removed
[  525.675173][ T3537] team0 (unregistering): Port device team_slave_0 removed
[  526.680381][T15378] openvswitch: ovs_: Dropping previously announced user features
[  527.011321][T15392] netlink: set zone limit has 8 unknown bytes
[  529.160137][T15452] netlink: zone id is out of range
[  529.165314][T15452] netlink: zone id is out of range
[  529.212556][T15452] netlink: zone id is out of range
[  529.253320][T15452] netlink: zone id is out of range
[  529.307178][T15452] netlink: zone id is out of range
[  529.323719][T15452] netlink: zone id is out of range
[  529.344305][T15452] netlink: zone id is out of range
[  529.384355][T15452] netlink: zone id is out of range
[  529.421202][T15452] netlink: zone id is out of range
[  529.446410][T15452] netlink: zone id is out of range
[  529.453000][T15240] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  529.514715][T15240] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  529.610921][T15240] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  529.643266][T15240] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  529.959355][T15240] 8021q: adding VLAN 0 to HW filter on device bond0
[  530.051365][T15240] 8021q: adding VLAN 0 to HW filter on device team0
[  530.139330][T11650] bridge0: port 1(bridge_slave_0) entered blocking state
[  530.146508][T11650] bridge0: port 1(bridge_slave_0) entered forwarding state
[  530.177829][T15476] can: request_module (can-proto-3) failed.
[  530.221224][T11650] bridge0: port 2(bridge_slave_1) entered blocking state
[  530.228430][T11650] bridge0: port 2(bridge_slave_1) entered forwarding state
[  530.371391][T15240] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  530.392697][T15240] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  530.941758][T15240] 8021q: adding VLAN 0 to HW filter on device batadv0
[  531.065817][T15240] veth0_vlan: entered promiscuous mode
[  531.089959][T15508] netlink: 'syz.3.2342': attribute type 1 has an invalid length.
[  531.100165][T15240] veth1_vlan: entered promiscuous mode
[  531.185765][T15240] veth0_macvtap: entered promiscuous mode
[  531.242139][T15240] veth1_macvtap: entered promiscuous mode
[  531.327255][T15240] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  531.340449][T15240] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  531.376857][T15240] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  531.406803][T15240] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  531.439861][T15240] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  531.450797][T15240] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  531.475070][T15240] batman_adv: batadv0: Interface activated: batadv_slave_0
[  531.505072][T15240] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  531.612384][T15240] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  531.622960][T15240] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  531.639372][T15240] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  531.649669][T15240] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  531.677013][T15240] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  531.694360][T15240] batman_adv: batadv0: Interface activated: batadv_slave_1
[  531.753779][T15525] FAULT_INJECTION: forcing a failure.
[  531.753779][T15525] name failslab, interval 1, probability 0, space 0, times 0
[  531.766732][T15525] CPU: 1 UID: 0 PID: 15525 Comm: syz.1.2347 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[  531.766778][T15525] Tainted: [U]=USER
[  531.766786][T15525] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  531.766801][T15525] Call Trace:
[  531.766809][T15525]  <TASK>
[  531.766819][T15525]  dump_stack_lvl+0x16c/0x1f0
[  531.766856][T15525]  should_fail_ex+0x512/0x640
[  531.766896][T15525]  should_failslab+0xc2/0x120
[  531.766926][T15525]  __kmalloc_cache_noprof+0x6a/0x3e0
[  531.766963][T15525]  ? __pfx___might_resched+0x10/0x10
[  531.766990][T15525]  ? cfcnfg_create+0x5e/0x500
[  531.767020][T15525]  ? __pfx_caif_init_net+0x10/0x10
[  531.767049][T15525]  cfcnfg_create+0x5e/0x500
[  531.767076][T15525]  ? debug_mutex_init+0x37/0x70
[  531.767111][T15525]  ? __pfx_caif_init_net+0x10/0x10
[  531.767137][T15525]  caif_init_net+0x7d/0xe0
[  531.767166][T15525]  ops_init+0x1df/0x5f0
[  531.767196][T15525]  setup_net+0x21e/0x850
[  531.767227][T15525]  ? __pfx_setup_net+0x10/0x10
[  531.767251][T15525]  ? lockdep_init_map_type+0x5c/0x280
[  531.767281][T15525]  ? __pfx_down_read_killable+0x10/0x10
[  531.767319][T15525]  ? debug_mutex_init+0x37/0x70
[  531.767358][T15525]  copy_net_ns+0x2a6/0x5f0
[  531.767389][T15525]  create_new_namespaces+0x3ea/0xad0
[  531.767424][T15525]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  531.767454][T15525]  ksys_unshare+0x45b/0xa40
[  531.767487][T15525]  ? __pfx_ksys_unshare+0x10/0x10
[  531.767515][T15525]  ? xfd_validate_state+0x5d/0x180
[  531.767553][T15525]  ? rcu_is_watching+0x12/0xc0
[  531.767583][T15525]  __x64_sys_unshare+0x31/0x40
[  531.767613][T15525]  do_syscall_64+0xcd/0x230
[  531.767660][T15525]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  531.767686][T15525] RIP: 0033:0x7f1cd1d8e969
[  531.767708][T15525] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  531.767734][T15525] RSP: 002b:00007f1cd2b37038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  531.767759][T15525] RAX: ffffffffffffffda RBX: 00007f1cd1fb6160 RCX: 00007f1cd1d8e969
[  531.767776][T15525] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  531.767790][T15525] RBP: 00007f1cd1e10ab1 R08: 0000000000000000 R09: 0000000000000000
[  531.767806][T15525] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  531.767821][T15525] R13: 0000000000000000 R14: 00007f1cd1fb6160 R15: 00007ffe52454bc8
[  531.767856][T15525]  </TASK>
[  532.039410][T15240] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  532.062144][T15240] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  532.110341][T15240] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  532.121947][T15240] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  532.488619][T11652] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  532.501648][T11652] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  532.801103][T11920] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  532.839176][T11920] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  534.369901][ T5141] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  534.410000][ T5141] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  534.422466][ T5141] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  534.460421][ T5141] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  534.472080][ T5141] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  534.949251][T10037] smc: removing net device syz_tun with user defined pnetid ETHTOOL
[  535.008960][T15628] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2362'.
[  535.212537][T15627] HfR: entered promiscuous mode
[  535.655562][T11652] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  535.732225][T15628] HfR: left promiscuous mode
[  536.059451][T11652] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  536.115040][T15625] HfR: entered promiscuous mode
[  536.546607][T11652] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  536.547680][T12651] Bluetooth: hci4: command tx timeout
[  536.589718][T15658] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2364'.
[  537.099057][T11652] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  537.174316][T15611] chnl_net:caif_netlink_parms(): no params data found
[  538.048252][T15611] bridge0: port 1(bridge_slave_0) entered blocking state
[  538.067560][T15611] bridge0: port 1(bridge_slave_0) entered disabled state
[  538.093909][T15611] bridge_slave_0: entered allmulticast mode
[  538.119759][T15611] bridge_slave_0: entered promiscuous mode
[  538.144468][T15611] bridge0: port 2(bridge_slave_1) entered blocking state
[  538.156926][T15611] bridge0: port 2(bridge_slave_1) entered disabled state
[  538.172472][T15611] bridge_slave_1: entered allmulticast mode
[  538.189366][T15611] bridge_slave_1: entered promiscuous mode
[  538.443962][T11652] bridge_slave_1: left allmulticast mode
[  538.476938][T11652] bridge_slave_1: left promiscuous mode
[  538.484378][T11652] bridge0: port 2(bridge_slave_1) entered disabled state
[  538.627018][T12651] Bluetooth: hci4: command tx timeout
[  538.641062][T11652] bridge_slave_0: left allmulticast mode
[  538.646749][T11652] bridge_slave_0: left promiscuous mode
[  538.673416][T11652] bridge0: port 1(bridge_slave_0) entered disabled state
[  539.063221][T15713] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2372'.
[  539.510024][T11652] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  539.531324][T11652] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  539.551032][T11652] bond0 (unregistering): Released all slaves
[  539.576535][T15611] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  539.613147][T15611] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  539.648413][T11652] ovs_: left promiscuous mode
[  539.684466][T15713] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  539.809068][T15713] batman_adv: batadv0: Removing interface: batadv_slave_1
[  539.937559][T11652] tipc: Left network mode
[  540.091676][T15611] team0: Port device team_slave_0 added
[  540.113570][T15611] team0: Port device team_slave_1 added
[  540.429680][T15611] batman_adv: batadv0: Adding interface: batadv_slave_0
[  540.461031][T15611] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  540.546839][T15611] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  540.717060][T12651] Bluetooth: hci4: command tx timeout
[  540.822052][T15611] batman_adv: batadv0: Adding interface: batadv_slave_1
[  540.958854][T15611] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  541.060271][T15611] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  541.804924][T15611] hsr_slave_0: entered promiscuous mode
[  541.828215][T15611] hsr_slave_1: entered promiscuous mode
[  541.845234][T15611] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  541.870679][T15611] Cannot create hsr debugfs directory
[  541.940527][T11652] hsr_slave_0: left promiscuous mode
[  541.960606][T11652] hsr_slave_1: left promiscuous mode
[  541.987893][T11652] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  542.047680][T11652] batman_adv: batadv0: Removing interface: batadv_slave_0
[  542.066851][    T9] Bluetooth: hci2: Opcode 0x0c1a failed: -110
[  542.066906][T12651] Bluetooth: hci2: command 0x0c1a tx timeout
[  542.084013][    T9] Bluetooth: hci2: Opcode 0x0406 failed: -110
[  542.087680][T11652] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  542.112967][T11652] batman_adv: batadv0: Removing interface: batadv_slave_1
[  542.164732][T11652] veth1_macvtap: left promiscuous mode
[  542.196913][T11652] veth0_macvtap: left promiscuous mode
[  542.202681][T11652] veth1_vlan: left promiscuous mode
[  542.790836][T12651] Bluetooth: hci4: command tx timeout
[  543.880036][T11652] team0 (unregistering): Port device team_slave_1 removed
[  544.058955][T11652] team0 (unregistering): Port device team_slave_0 removed
[  544.147120][T12651] Bluetooth: hci2: command 0x0c1a tx timeout
[  544.679872][T15779] input: isc as /devices/virtual/input/input8
[  544.722897][T15779] FAULT_INJECTION: forcing a failure.
[  544.722897][T15779] name failslab, interval 1, probability 0, space 0, times 0
[  544.756537][T15779] CPU: 1 UID: 0 PID: 15779 Comm: syz.0.2386 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[  544.756582][T15779] Tainted: [U]=USER
[  544.756590][T15779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  544.756606][T15779] Call Trace:
[  544.756614][T15779]  <TASK>
[  544.756625][T15779]  dump_stack_lvl+0x16c/0x1f0
[  544.756663][T15779]  should_fail_ex+0x512/0x640
[  544.756694][T15779]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  544.756725][T15779]  should_failslab+0xc2/0x120
[  544.756756][T15779]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  544.756778][T15779]  ? __kernfs_new_node+0xd2/0x8a0
[  544.756813][T15779]  __kernfs_new_node+0xd2/0x8a0
[  544.756847][T15779]  ? __pfx___kernfs_new_node+0x10/0x10
[  544.756889][T15779]  ? find_held_lock+0x2b/0x80
[  544.756913][T15779]  ? kernfs_root+0xee/0x2a0
[  544.756954][T15779]  kernfs_new_node+0x13c/0x1e0
[  544.756987][T15779]  __kernfs_create_file+0x53/0x350
[  544.757020][T15779]  sysfs_add_file_mode_ns+0x207/0x3c0
[  544.757056][T15779]  sysfs_merge_group+0x1aa/0x340
[  544.757076][T15779]  ? __pfx_sysfs_merge_group+0x10/0x10
[  544.757100][T15779]  ? __pfx_dev_add_physical_location+0x10/0x10
[  544.757126][T15779]  ? bus_to_subsys+0x131/0x160
[  544.757171][T15779]  dpm_sysfs_add+0x237/0x280
[  544.757198][T15779]  device_add+0x9a6/0x1a70
[  544.757228][T15779]  ? __pfx_device_add+0x10/0x10
[  544.757252][T15779]  ? __pfx_exact_lock+0x10/0x10
[  544.757278][T15779]  ? kobject_get+0xbb/0x150
[  544.757313][T15779]  cdev_device_add+0xc2/0x1e0
[  544.757341][T15779]  evdev_connect+0x3a4/0x4c0
[  544.757376][T15779]  input_attach_handler.isra.0+0x181/0x260
[  544.757409][T15779]  input_register_device+0xa84/0x1130
[  544.757443][T15779]  uinput_ioctl_handler.isra.0+0x1357/0x1df0
[  544.757482][T15779]  ? __pfx_uinput_ioctl_handler.isra.0+0x10/0x10
[  544.757526][T15779]  ? find_held_lock+0x2b/0x80
[  544.757568][T15779]  ? __pfx_uinput_ioctl+0x10/0x10
[  544.757602][T15779]  __x64_sys_ioctl+0x190/0x200
[  544.757636][T15779]  do_syscall_64+0xcd/0x230
[  544.757670][T15779]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  544.757694][T15779] RIP: 0033:0x7f536db8e969
[  544.757715][T15779] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  544.757740][T15779] RSP: 002b:00007f536e92d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  544.757765][T15779] RAX: ffffffffffffffda RBX: 00007f536ddb5fa0 RCX: 00007f536db8e969
[  544.757782][T15779] RDX: 0000000000000000 RSI: 0000000000005501 RDI: 0000000000000005
[  544.757797][T15779] RBP: 00007f536dc10ab1 R08: 0000000000000000 R09: 0000000000000000
[  544.757812][T15779] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  544.757827][T15779] R13: 0000000000000000 R14: 00007f536ddb5fa0 R15: 00007ffe96b4c1f8
[  544.757861][T15779]  </TASK>
[  545.068747][T15779] input: failed to attach handler evdev to device input8, error: -12
[  546.156676][T15802] net_ratelimit: 67 callbacks suppressed
[  546.156691][T15802] netlink: set zone limit has 8 unknown bytes
[  546.648773][T15611] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  546.682336][T15611] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  546.702428][T15611] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  546.715813][T15611] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  546.893384][T15611] 8021q: adding VLAN 0 to HW filter on device bond0
[  546.934857][T15611] 8021q: adding VLAN 0 to HW filter on device team0
[  546.966068][T11912] bridge0: port 1(bridge_slave_0) entered blocking state
[  546.973307][T11912] bridge0: port 1(bridge_slave_0) entered forwarding state
[  547.014395][T11912] bridge0: port 2(bridge_slave_1) entered blocking state
[  547.021626][T11912] bridge0: port 2(bridge_slave_1) entered forwarding state
[  547.125847][T15611] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  547.461928][T15839] ovs_: entered promiscuous mode
[  547.910480][T15611] 8021q: adding VLAN 0 to HW filter on device batadv0
[  548.218157][T15611] veth0_vlan: entered promiscuous mode
[  548.224132][T15864] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2396'.
[  548.272423][T15611] veth1_vlan: entered promiscuous mode
[  548.351014][T15864] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2396'.
[  548.377249][T15864] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2396'.
[  548.434766][T15864] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2396'.
[  548.534528][T15864] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2396'.
[  548.658490][T15611] veth0_macvtap: entered promiscuous mode
[  548.692542][T15611] veth1_macvtap: entered promiscuous mode
[  548.804809][T15611] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  548.839842][T15611] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  548.877044][T15611] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  548.911774][T15611] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  548.947284][T15611] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  548.967370][T15611] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  549.018592][T15611] batman_adv: batadv0: Interface activated: batadv_slave_0
[  549.083617][T15611] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  549.122125][T15611] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  549.146845][T15611] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  549.177992][T15611] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  549.218345][T15611] batman_adv: batadv0: Interface activated: batadv_slave_1
[  549.253566][T15611] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  549.266321][T15886] netlink: set zone limit has 8 unknown bytes
[  549.294531][T15611] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  549.313676][T15611] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  549.339983][T15611] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  549.551832][T11652] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  549.565354][T11652] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  549.616700][T11915] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  549.639159][T11915] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  550.224248][T15894] binder: 15893:15894 ioctl c00c620f 2000000000c0 returned -22
[  550.503550][T15901] ovs_: entered promiscuous mode
[  550.818136][T15903] unsupported nla_type 32969
[  552.115294][T15940] FAULT_INJECTION: forcing a failure.
[  552.115294][T15940] name failslab, interval 1, probability 0, space 0, times 0
[  552.144154][T15940] CPU: 1 UID: 0 PID: 15940 Comm: syz.2.2408 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[  552.144195][T15940] Tainted: [U]=USER
[  552.144203][T15940] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  552.144217][T15940] Call Trace:
[  552.144224][T15940]  <TASK>
[  552.144233][T15940]  dump_stack_lvl+0x16c/0x1f0
[  552.144269][T15940]  should_fail_ex+0x512/0x640
[  552.144291][T15940]  ? __kmalloc_noprof+0xbf/0x510
[  552.144308][T15940]  ? __register_sysctl_table+0xea2/0x1900
[  552.144323][T15940]  should_failslab+0xc2/0x120
[  552.144340][T15940]  __kmalloc_noprof+0xd2/0x510
[  552.144354][T15940]  ? __register_sysctl_table+0xe8e/0x1900
[  552.144373][T15940]  __register_sysctl_table+0xea2/0x1900
[  552.144392][T15940]  ? __pfx___register_sysctl_table+0x10/0x10
[  552.144406][T15940]  ? is_module_address+0x69/0xf0
[  552.144422][T15940]  ? register_net_sysctl_sz+0x228/0x3e0
[  552.144442][T15940]  ? __asan_memcpy+0x3c/0x60
[  552.144463][T15940]  sctp_sysctl_net_register+0x15d/0x200
[  552.144484][T15940]  ? __pfx_sctp_defaults_init+0x10/0x10
[  552.144502][T15940]  sctp_defaults_init+0x6c4/0xd80
[  552.144520][T15940]  ? __pfx_sctp_defaults_init+0x10/0x10
[  552.144538][T15940]  ops_init+0x1df/0x5f0
[  552.144558][T15940]  setup_net+0x21e/0x850
[  552.144574][T15940]  ? __pfx_setup_net+0x10/0x10
[  552.144588][T15940]  ? lockdep_init_map_type+0x5c/0x280
[  552.144605][T15940]  ? __pfx_down_read_killable+0x10/0x10
[  552.144626][T15940]  ? debug_mutex_init+0x37/0x70
[  552.144648][T15940]  copy_net_ns+0x2a6/0x5f0
[  552.144666][T15940]  create_new_namespaces+0x3ea/0xad0
[  552.144685][T15940]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  552.144701][T15940]  ksys_unshare+0x45b/0xa40
[  552.144719][T15940]  ? __pfx_ksys_unshare+0x10/0x10
[  552.144735][T15940]  ? xfd_validate_state+0x5d/0x180
[  552.144756][T15940]  ? rcu_is_watching+0x12/0xc0
[  552.144772][T15940]  __x64_sys_unshare+0x31/0x40
[  552.144789][T15940]  do_syscall_64+0xcd/0x230
[  552.144818][T15940]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  552.144833][T15940] RIP: 0033:0x7f1eda98e969
[  552.144846][T15940] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  552.144859][T15940] RSP: 002b:00007f1edb80d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  552.144873][T15940] RAX: ffffffffffffffda RBX: 00007f1edabb6160 RCX: 00007f1eda98e969
[  552.144882][T15940] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  552.144891][T15940] RBP: 00007f1edaa10ab1 R08: 0000000000000000 R09: 0000000000000000
[  552.144899][T15940] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  552.144907][T15940] R13: 0000000000000000 R14: 00007f1edabb6160 R15: 00007ffe3ddff088
[  552.144925][T15940]  </TASK>
[  552.145258][T15940] sysctl could not get directory: /net/sctp -12
[  552.462091][T15943] binder: 15942:15943 ioctl c00c620f 2000000000c0 returned -22
[  553.284643][T15963] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2415'.
[  554.069269][T15963] team0: Port device team_slave_0 removed
[  554.283603][ T5141] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  554.297058][ T5141] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  554.305994][ T5141] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  554.376331][ T5141] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  554.385721][ T5141] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  554.620721][T15980] binder: 15979:15980 ioctl c00c620f 2000000000c0 returned -22
[  555.026668][ T6468] smc: removing net device syz_tun with user defined pnetid ETHTOOL
[  555.081701][T15987] openvswitch: ovs_: Dropping previously announced user features
[  555.690456][T11651] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  555.705676][T15995] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2424'.
[  555.713927][T15961] Process accounting resumed
[  555.760965][T15995] veth1_macvtap: entered allmulticast mode
[  555.835632][T11651] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  556.038768][T11651] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  556.264743][T11651] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  556.338311][T15976] chnl_net:caif_netlink_parms(): no params data found
[  556.472384][T12651] Bluetooth: hci0: command tx timeout
[  556.579654][T16002] kernel read not supported for file /set_event_notrace_pid (pid: 16002 comm: syz.2.2426)
[  556.608589][   T30] audit: type=1800 audit(4294967300.690:14): pid=16002 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2426" name="set_event_notrace_pid" dev="tracefs" ino=1062 res=0 errno=0
[  556.965885][T15976] bridge0: port 1(bridge_slave_0) entered blocking state
[  557.028140][T15976] bridge0: port 1(bridge_slave_0) entered disabled state
[  557.035402][T15976] bridge_slave_0: entered allmulticast mode
[  557.045929][T15976] bridge_slave_0: entered promiscuous mode
[  557.191247][T15976] bridge0: port 2(bridge_slave_1) entered blocking state
[  557.198863][T15976] bridge0: port 2(bridge_slave_1) entered disabled state
[  557.206091][T15976] bridge_slave_1: entered allmulticast mode
[  557.271212][T15976] bridge_slave_1: entered promiscuous mode
[  557.326273][T11651] team0: left allmulticast mode
[  557.348612][T11651] team_slave_1: left allmulticast mode
[  557.379592][T11651] team0: left promiscuous mode
[  557.410779][T11651] team_slave_0: left promiscuous mode
[  557.443792][T11651] team_slave_1: left promiscuous mode
[  557.480263][T11651] bridge0: port 3(team0) entered disabled state
[  557.488070][T16010] input input9: cannot allocate more than FF_MAX_EFFECTS effects
[  557.514374][T11651] bridge_slave_1: left allmulticast mode
[  557.526899][T11651] bridge_slave_1: left promiscuous mode
[  557.532762][T11651] bridge0: port 2(bridge_slave_1) entered disabled state
[  557.551053][T11651] bridge_slave_0: left allmulticast mode
[  557.559473][T11651] bridge_slave_0: left promiscuous mode
[  557.565237][T11651] bridge0: port 1(bridge_slave_0) entered disabled state
[  557.901948][T16030] binder: 16028:16030 ioctl c00c620f 2000000000c0 returned -22
[  558.118690][T16033] netlink: set zone limit has 8 unknown bytes
[  558.256389][T11651] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  558.274083][T11651] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  558.286061][T11651] bond0 (unregistering): Released all slaves
[  558.414756][T15976] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  558.446244][T11651] ovs_: left promiscuous mode
[  558.472480][T15976] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  558.505102][T11651] ovs_��: left promiscuous mode
[  558.547008][T12651] Bluetooth: hci0: command tx timeout
[  558.613630][T15976] team0: Port device team_slave_0 added
[  558.623225][T11651] HfR: left promiscuous mode
[  558.654545][T15976] team0: Port device team_slave_1 added
[  558.831562][T15976] batman_adv: batadv0: Adding interface: batadv_slave_0
[  558.842474][T15976] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  558.875690][T15976] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  558.901745][T15976] batman_adv: batadv0: Adding interface: batadv_slave_1
[  558.937289][T15976] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  559.007647][T15976] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  559.196354][T15976] hsr_slave_0: entered promiscuous mode
[  559.217900][T15976] hsr_slave_1: entered promiscuous mode
[  559.250050][T15976] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  559.281396][T15976] Cannot create hsr debugfs directory
[  559.360261][T11651] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  559.381650][T11651] batman_adv: batadv0: Removing interface: batadv_slave_0
[  559.875189][T11651] veth1_macvtap: left promiscuous mode
[  559.891733][T11651] veth0_macvtap: left promiscuous mode
[  559.907270][T11651] veth1_vlan: left promiscuous mode
[  560.028071][T16058] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  560.037199][T16058] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  560.242987][T16076] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[  560.633165][T12651] Bluetooth: hci0: command tx timeout
[  560.696022][T16086] hub 3-0:1.0: USB hub found
[  560.703585][T16086] hub 3-0:1.0: 1 port detected
[  560.737519][T16085] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2438'.
[  560.783942][T16086] usb usb3: authorized to connect
[  561.053088][T11651] team0 (unregistering): Port device team_slave_1 removed
[  561.110748][T11651] team0 (unregistering): Port device team_slave_0 removed
[  561.874791][T16085] team0: Port device team_slave_0 removed
[  561.912135][T16089] openvswitch: ovs_: Dropping previously announced user features
[  562.418075][T16104] block2mtd: illegal erase size
[  562.710860][T12651] Bluetooth: hci0: command tx timeout
[  562.962613][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  562.970847][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  563.277099][T16124] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2443'.
[  563.883315][T15976] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  563.925873][T15976] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  563.969091][T15976] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  564.020864][T15976] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  565.060219][T15976] 8021q: adding VLAN 0 to HW filter on device bond0
[  565.211287][T15976] 8021q: adding VLAN 0 to HW filter on device team0
[  565.345177][T11650] bridge0: port 1(bridge_slave_0) entered blocking state
[  565.352402][T11650] bridge0: port 1(bridge_slave_0) entered forwarding state
[  565.507408][T11651] bridge0: port 2(bridge_slave_1) entered blocking state
[  565.514646][T11651] bridge0: port 2(bridge_slave_1) entered forwarding state
[  566.345642][T16205] netlink: 266 bytes leftover after parsing attributes in process `syz.1.2456'.
[  566.417831][T16205] IPv6: NLM_F_CREATE should be specified when creating new route
[  566.459228][T16205] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  566.459258][T16205] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  566.483837][T15976] 8021q: adding VLAN 0 to HW filter on device batadv0
[  566.571316][T16208] FAULT_INJECTION: forcing a failure.
[  566.571316][T16208] name failslab, interval 1, probability 0, space 0, times 0
[  566.612509][T15976] veth0_vlan: entered promiscuous mode
[  566.675238][T16215] netlink: 266 bytes leftover after parsing attributes in process `syz.1.2456'.
[  566.686248][T16208] CPU: 0 UID: 0 PID: 16208 Comm: syz.2.2457 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[  566.686290][T16208] Tainted: [U]=USER
[  566.686299][T16208] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  566.686314][T16208] Call Trace:
[  566.686322][T16208]  <TASK>
[  566.686333][T16208]  dump_stack_lvl+0x16c/0x1f0
[  566.686372][T16208]  should_fail_ex+0x512/0x640
[  566.686406][T16208]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  566.686448][T16208]  should_failslab+0xc2/0x120
[  566.686474][T16208]  __kmalloc_cache_noprof+0x6a/0x3e0
[  566.686518][T16208]  ? snd_seq_port_connect+0x61/0x550
[  566.686554][T16208]  snd_seq_port_connect+0x61/0x550
[  566.686580][T16208]  ? _raw_read_unlock+0x28/0x50
[  566.686607][T16208]  ? check_subscription_permission.isra.0+0xf5/0x240
[  566.686641][T16208]  snd_seq_ioctl_subscribe_port+0x211/0x450
[  566.686677][T16208]  ? __pfx_snd_seq_ioctl_subscribe_port+0x10/0x10
[  566.686724][T16208]  snd_seq_kernel_client_ctl+0x107/0x1c0
[  566.686760][T16208]  snd_seq_oss_midi_open+0x564/0x660
[  566.686794][T16208]  ? __pfx_snd_seq_oss_midi_open+0x10/0x10
[  566.686836][T16208]  ? lockdep_hardirqs_on+0x7c/0x110
[  566.686862][T16208]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  566.686895][T16208]  snd_seq_oss_synth_setup_midi+0x131/0x580
[  566.686938][T16208]  snd_seq_oss_open+0x893/0xa20
[  566.686975][T16208]  odev_open+0x6f/0x90
[  566.686999][T16208]  ? __pfx_odev_open+0x10/0x10
[  566.687025][T16208]  soundcore_open+0x409/0x580
[  566.687054][T16208]  ? __pfx_soundcore_open+0x10/0x10
[  566.687076][T16208]  chrdev_open+0x231/0x6a0
[  566.687111][T16208]  ? __pfx_apparmor_file_open+0x10/0x10
[  566.687141][T16208]  ? __pfx_chrdev_open+0x10/0x10
[  566.687170][T16208]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  566.687212][T16208]  do_dentry_open+0x741/0x1c10
[  566.687237][T16208]  ? __pfx_chrdev_open+0x10/0x10
[  566.687268][T16208]  vfs_open+0x82/0x3f0
[  566.687302][T16208]  path_openat+0x1e5e/0x2d40
[  566.687338][T16208]  ? __pfx_path_openat+0x10/0x10
[  566.687369][T16208]  do_filp_open+0x20b/0x470
[  566.687393][T16208]  ? __pfx_do_filp_open+0x10/0x10
[  566.687443][T16208]  ? alloc_fd+0x471/0x7d0
[  566.687486][T16208]  do_sys_openat2+0x11b/0x1d0
[  566.687515][T16208]  ? __pfx_do_sys_openat2+0x10/0x10
[  566.687559][T16208]  __x64_sys_openat+0x174/0x210
[  566.687585][T16208]  ? __pfx___x64_sys_openat+0x10/0x10
[  566.687630][T16208]  ? rcu_is_watching+0x12/0xc0
[  566.687669][T16208]  do_syscall_64+0xcd/0x230
[  566.687701][T16208]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  566.687725][T16208] RIP: 0033:0x7f1eda98e969
[  566.687746][T16208] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  566.687768][T16208] RSP: 002b:00007f1edb84f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  566.687791][T16208] RAX: ffffffffffffffda RBX: 00007f1edabb5fa0 RCX: 00007f1eda98e969
[  566.687807][T16208] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  566.687824][T16208] RBP: 00007f1edaa10ab1 R08: 0000000000000000 R09: 0000000000000000
[  566.687838][T16208] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  566.687853][T16208] R13: 0000000000000000 R14: 00007f1edabb5fa0 R15: 00007ffe3ddff088
[  566.687887][T16208]  </TASK>
[  566.780813][    C0] vkms_vblank_simulate: vblank timer overrun
[  567.013908][    C0] vkms_vblank_simulate: vblank timer overrun
[  567.019935][    C0] hrtimer: interrupt took 332029019 ns
[  567.119976][    C0] vkms_vblank_simulate: vblank timer overrun
[  567.129306][T15976] veth1_vlan: entered promiscuous mode
[  567.178998][T15976] veth0_macvtap: entered promiscuous mode
[  567.246696][T15976] veth1_macvtap: entered promiscuous mode
[  567.382251][T16213] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  567.407621][T15976] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  567.419177][T16213] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  567.425426][T15976] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  567.441184][T15976] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  567.452283][T15976] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  567.476875][T15976] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  567.496917][T15976] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  567.519852][T15976] batman_adv: batadv0: Interface activated: batadv_slave_0
[  567.528297][T16213] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  567.552162][T15976] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  567.577474][T15976] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  567.606883][T15976] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  567.617424][T15976] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  567.637950][T15976] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  567.671667][T15976] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  567.708403][T15976] batman_adv: batadv0: Interface activated: batadv_slave_1
[  567.718947][T16213] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  567.767210][T16213] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  567.779176][T15976] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  567.816944][T15976] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  567.825702][T15976] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  567.876863][T15976] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  567.898796][T16213] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  568.007614][T16213] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  568.037604][T16213] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  568.086030][T16213] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  568.247070][T11920] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  568.282834][T11920] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  568.418530][T11920] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  568.441884][T11920] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  568.499412][T16252] page: refcount:6 mapcount:5 mapping:0000000000000000 index:0x7f891736a pfn:0x78c00
[  568.547344][T16252] flags: 0xfff18000000214(referenced|dirty|workingset|node=0|zone=1|lastcpupid=0x7ff)
[  568.611566][T16252] raw: 00fff18000000214 0000000000000000 dead000000000122 0000000000000000
[  568.759258][T16252] raw: 00000007f891736a 0000000000000000 0000000600000004 0000000000000000
[  568.780860][T16254] could not allocate digest TFM handle 
[  568.867337][T16252] page dumped because: unmovable page
[  568.872745][T16252] page_owner tracks the page as allocated
[  568.942374][T16265] Invalid ELF header magic: != ELF
[  568.990913][T16252] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2dc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), pid 5822, tgid 5822 (syz-executor), ts 73620705832, free_ts 73440031820
[  569.010182][    C0] vkms_vblank_simulate: vblank timer overrun
[  569.111277][T16252]  post_alloc_hook+0x181/0x1b0
[  569.129370][T16252]  get_page_from_freelist+0x135c/0x3920
[  569.134981][T16252]  __alloc_frozen_pages_noprof+0x263/0x23a0
[  569.196912][T16252]  alloc_pages_mpol+0x1fb/0x550
[  569.201836][T16252]  alloc_pages_noprof+0x131/0x390
[  569.216952][T16252]  __vmalloc_node_range_noprof+0x732/0x1540
[  569.233168][T16252]  vmalloc_user_noprof+0x6b/0x90
[  569.243308][T16252]  kcov_ioctl+0x4c/0x730
[  569.253435][T16252]  __x64_sys_ioctl+0x190/0x200
[  569.267822][T16252]  do_syscall_64+0xcd/0x230
[  569.272402][T16252]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  569.306873][T16252] page last free pid 5816 tgid 5816 stack trace:
[  569.353230][T16252]  free_unref_folios+0x999/0x1630
[  569.372325][T16252]  folios_put_refs+0x56f/0x740
[  569.430513][T16252]  free_pages_and_swap_cache+0x245/0x4a0
[  569.436877][T12651] Bluetooth: hci3: command 0x0c1a tx timeout
[  569.543625][T16252]  __tlb_batch_free_encoded_pages+0xf9/0x290
[  569.635563][T16252]  tlb_finish_mmu+0x168/0x7b0
[  569.684297][T16252]  vms_clear_ptes+0x55e/0x770
[  569.707677][T16252]  vms_complete_munmap_vmas+0x1ca/0x970
[  569.731036][T16252]  do_vmi_align_munmap+0x43b/0x7d0
[  569.747316][T12651] Bluetooth: hci4: command 0x0c1a tx timeout
[  569.791908][T16252]  do_vmi_munmap+0x208/0x3e0
[  569.796669][T16252]  __vm_munmap+0x19a/0x390
[  569.987495][T16252]  __x64_sys_munmap+0x59/0x80
[  569.992581][T16252]  do_syscall_64+0xcd/0x230
[  570.037277][T16252]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  570.087312][T12651] Bluetooth: hci0: command 0x0c1a tx timeout
[  570.448560][T16280] random: crng reseeded on system resumption
[  571.512097][T12651] Bluetooth: hci3: command 0x0c1a tx timeout
[  571.831477][T12651] Bluetooth: hci4: command 0x0c1a tx timeout
[  572.156892][T12651] Bluetooth: hci0: command 0x0c1a tx timeout
[  572.947491][T16321] random: crng reseeded on system resumption
[  573.597837][T12651] Bluetooth: hci3: command 0x0c1a tx timeout
[  573.915876][T12651] Bluetooth: hci4: command 0x0c1a tx timeout
[  574.227150][T12651] Bluetooth: hci0: command 0x0c1a tx timeout
[  574.467680][T16339] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2470'.
[  574.854519][T16341] ICMPv6: process `syz.3.2471' is using deprecated sysctl (syscall) net.ipv6.neigh.ipvlan1.retrans_time - use net.ipv6.neigh.ipvlan1.retrans_time_ms instead
[  576.502293][T16358] FAULT_INJECTION: forcing a failure.
[  576.502293][T16358] name failslab, interval 1, probability 0, space 0, times 0
[  576.536902][T16358] CPU: 0 UID: 0 PID: 16358 Comm: syz.3.2476 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[  576.536944][T16358] Tainted: [U]=USER
[  576.536952][T16358] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  576.536967][T16358] Call Trace:
[  576.536975][T16358]  <TASK>
[  576.536984][T16358]  dump_stack_lvl+0x16c/0x1f0
[  576.537023][T16358]  should_fail_ex+0x512/0x640
[  576.537056][T16358]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  576.537087][T16358]  should_failslab+0xc2/0x120
[  576.537116][T16358]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  576.537141][T16358]  ? __proc_create+0xc3/0x8c0
[  576.537165][T16358]  ? __proc_create+0x2ce/0x8c0
[  576.537207][T16358]  __proc_create+0x2ce/0x8c0
[  576.537235][T16358]  ? __pfx___proc_create+0x10/0x10
[  576.537261][T16358]  ? pcpu_chunk_relocate+0x126/0x190
[  576.537288][T16358]  ? find_held_lock+0x2b/0x80
[  576.537318][T16358]  proc_create_reg+0x7d/0x180
[  576.537345][T16358]  ? __pfx_xfrm_statistics_seq_show+0x10/0x10
[  576.537371][T16358]  proc_create_net_single+0x86/0x170
[  576.537398][T16358]  ? __pfx_proc_create_net_single+0x10/0x10
[  576.537434][T16358]  ? __pfx_xfrm_net_init+0x10/0x10
[  576.537466][T16358]  xfrm_proc_init+0x4d/0x70
[  576.537488][T16358]  xfrm_net_init+0x1f0/0xcc0
[  576.537525][T16358]  ? __pfx_xfrm_net_init+0x10/0x10
[  576.537556][T16358]  ops_init+0x1df/0x5f0
[  576.537587][T16358]  setup_net+0x21e/0x850
[  576.537618][T16358]  ? __pfx_setup_net+0x10/0x10
[  576.537643][T16358]  ? lockdep_init_map_type+0x5c/0x280
[  576.537675][T16358]  ? __pfx_down_read_killable+0x10/0x10
[  576.537713][T16358]  ? debug_mutex_init+0x37/0x70
[  576.537751][T16358]  copy_net_ns+0x2a6/0x5f0
[  576.537784][T16358]  create_new_namespaces+0x3ea/0xad0
[  576.537818][T16358]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  576.537847][T16358]  ksys_unshare+0x45b/0xa40
[  576.537881][T16358]  ? __pfx_ksys_unshare+0x10/0x10
[  576.537909][T16358]  ? xfd_validate_state+0x5d/0x180
[  576.537946][T16358]  ? rcu_is_watching+0x12/0xc0
[  576.537977][T16358]  __x64_sys_unshare+0x31/0x40
[  576.538007][T16358]  do_syscall_64+0xcd/0x230
[  576.538039][T16358]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  576.538063][T16358] RIP: 0033:0x7fa14df8e969
[  576.538083][T16358] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  576.538106][T16358] RSP: 002b:00007fa14eddf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  576.538131][T16358] RAX: ffffffffffffffda RBX: 00007fa14e1b5fa0 RCX: 00007fa14df8e969
[  576.538148][T16358] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  576.538165][T16358] RBP: 00007fa14e010ab1 R08: 0000000000000000 R09: 0000000000000000
[  576.538181][T16358] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  576.538204][T16358] R13: 0000000000000000 R14: 00007fa14e1b5fa0 R15: 00007fff697fa098
[  576.538238][T16358]  </TASK>
[  578.297445][T16373] netlink: 296 bytes leftover after parsing attributes in process `syz.2.2478'.
[  578.427040][T16373] netlink: 296 bytes leftover after parsing attributes in process `syz.2.2478'.
[  580.039259][T16397] FAULT_INJECTION: forcing a failure.
[  580.039259][T16397] name failslab, interval 1, probability 0, space 0, times 0
[  580.183733][T16397] CPU: 1 UID: 0 PID: 16397 Comm: syz.2.2482 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[  580.183772][T16397] Tainted: [U]=USER
[  580.183780][T16397] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  580.183792][T16397] Call Trace:
[  580.183799][T16397]  <TASK>
[  580.183809][T16397]  dump_stack_lvl+0x16c/0x1f0
[  580.183844][T16397]  should_fail_ex+0x512/0x640
[  580.183876][T16397]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  580.183907][T16397]  should_failslab+0xc2/0x120
[  580.183934][T16397]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  580.183961][T16397]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  580.183992][T16397]  ? __d_alloc+0x31/0xaa0
[  580.184020][T16397]  __d_alloc+0x31/0xaa0
[  580.184057][T16397]  d_alloc_pseudo+0x1c/0xc0
[  580.184089][T16397]  alloc_file_pseudo+0xcf/0x230
[  580.184122][T16397]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  580.184153][T16397]  ? alloc_fd+0x471/0x7d0
[  580.184192][T16397]  sock_alloc_file+0x50/0x210
[  580.184219][T16397]  __sys_socket+0x1c0/0x260
[  580.184251][T16397]  ? __pfx___sys_socket+0x10/0x10
[  580.184284][T16397]  ? rcu_is_watching+0x12/0xc0
[  580.184313][T16397]  __x64_sys_socket+0x72/0xb0
[  580.184343][T16397]  ? lockdep_hardirqs_on+0x7c/0x110
[  580.184373][T16397]  do_syscall_64+0xcd/0x230
[  580.184406][T16397]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  580.184431][T16397] RIP: 0033:0x7f1eda98e969
[  580.184452][T16397] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  580.184476][T16397] RSP: 002b:00007f1edb82e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  580.184501][T16397] RAX: ffffffffffffffda RBX: 00007f1edabb6080 RCX: 00007f1eda98e969
[  580.184530][T16397] RDX: 0000000000000002 RSI: 0000000000000003 RDI: 000000000000000f
[  580.184545][T16397] RBP: 00007f1edaa10ab1 R08: 0000000000000000 R09: 0000000000000000
[  580.184560][T16397] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  580.184576][T16397] R13: 0000000000000000 R14: 00007f1edabb6080 R15: 00007ffe3ddff088
[  580.184610][T16397]  </TASK>
[  580.658715][ T5141] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  580.668795][ T5141] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  580.677108][ T5141] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  580.686141][ T5141] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  580.695298][ T5141] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  581.259777][T16400] chnl_net:caif_netlink_parms(): no params data found
[  582.391070][T16400] bridge0: port 1(bridge_slave_0) entered blocking state
[  582.408421][T16400] bridge0: port 1(bridge_slave_0) entered disabled state
[  582.415658][T16400] bridge_slave_0: entered allmulticast mode
[  582.449462][T16400] bridge_slave_0: entered promiscuous mode
[  582.503293][T16400] bridge0: port 2(bridge_slave_1) entered blocking state
[  582.520428][T16400] bridge0: port 2(bridge_slave_1) entered disabled state
[  582.542096][T16400] bridge_slave_1: entered allmulticast mode
[  582.564873][T16400] bridge_slave_1: entered promiscuous mode
[  582.787093][ T5141] Bluetooth: hci1: command tx timeout
[  583.203797][T16400] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  583.215297][T16400] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  583.339825][T16434] kernel read not supported for file /set_event_notrace_pid (pid: 16434 comm: syz.1.2491)
[  583.437766][   T30] audit: type=1800 audit(4294967333.528:15): pid=16434 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2491" name="set_event_notrace_pid" dev="tracefs" ino=1062 res=0 errno=0
[  583.973687][T16400] team0: Port device team_slave_0 added
[  583.992076][T16400] team0: Port device team_slave_1 added
[  584.364118][T16400] batman_adv: batadv0: Adding interface: batadv_slave_0
[  584.416827][T16400] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  584.516864][T16400] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  584.660979][T16400] batman_adv: batadv0: Adding interface: batadv_slave_1
[  584.686835][T16400] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  584.780380][T16400] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  584.866973][T12651] Bluetooth: hci1: command tx timeout
[  585.284108][T16400] hsr_slave_0: entered promiscuous mode
[  585.317931][T16400] hsr_slave_1: entered promiscuous mode
[  585.325290][T16400] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  585.366875][T16400] Cannot create hsr debugfs directory
[  586.503849][T16400] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  586.617536][T16400] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  586.673411][T16400] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  586.821681][T16400] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  586.947482][T12651] Bluetooth: hci1: command tx timeout
[  587.073924][T16400] 8021q: adding VLAN 0 to HW filter on device bond0
[  587.143680][T16400] 8021q: adding VLAN 0 to HW filter on device team0
[  587.234390][T11650] bridge0: port 1(bridge_slave_0) entered blocking state
[  587.241620][T11650] bridge0: port 1(bridge_slave_0) entered forwarding state
[  587.274947][T11650] bridge0: port 2(bridge_slave_1) entered blocking state
[  587.282218][T11650] bridge0: port 2(bridge_slave_1) entered forwarding state
[  587.728558][T16456] FAULT_INJECTION: forcing a failure.
[  587.728558][T16456] name failslab, interval 1, probability 0, space 0, times 0
[  587.843849][T16456] CPU: 0 UID: 0 PID: 16456 Comm: syz.2.2494 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[  587.843895][T16456] Tainted: [U]=USER
[  587.843903][T16456] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  587.843917][T16456] Call Trace:
[  587.843926][T16456]  <TASK>
[  587.843958][T16456]  dump_stack_lvl+0x16c/0x1f0
[  587.843997][T16456]  should_fail_ex+0x512/0x640
[  587.844029][T16456]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  587.844061][T16456]  should_failslab+0xc2/0x120
[  587.844089][T16456]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  587.844115][T16456]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  587.844146][T16456]  ? __d_alloc+0x31/0xaa0
[  587.844175][T16456]  __d_alloc+0x31/0xaa0
[  587.844207][T16456]  d_alloc_pseudo+0x1c/0xc0
[  587.844237][T16456]  alloc_file_pseudo+0xcf/0x230
[  587.844277][T16456]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  587.844308][T16456]  ? alloc_fd+0x471/0x7d0
[  587.844356][T16456]  sock_alloc_file+0x50/0x210
[  587.844388][T16456]  __sys_socket+0x1c0/0x260
[  587.844420][T16456]  ? __pfx___sys_socket+0x10/0x10
[  587.844452][T16456]  ? rcu_is_watching+0x12/0xc0
[  587.844480][T16456]  __x64_sys_socket+0x72/0xb0
[  587.844510][T16456]  ? lockdep_hardirqs_on+0x7c/0x110
[  587.844538][T16456]  do_syscall_64+0xcd/0x230
[  587.844570][T16456]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  587.844594][T16456] RIP: 0033:0x7f1eda98e969
[  587.844614][T16456] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  587.844638][T16456] RSP: 002b:00007f1edb84f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  587.844663][T16456] RAX: ffffffffffffffda RBX: 00007f1edabb5fa0 RCX: 00007f1eda98e969
[  587.844680][T16456] RDX: 0000000000000002 RSI: 0000000000000003 RDI: 000000000000000f
[  587.844694][T16456] RBP: 00007f1edaa10ab1 R08: 0000000000000000 R09: 0000000000000000
[  587.844709][T16456] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  587.844723][T16456] R13: 0000000000000000 R14: 00007f1edabb5fa0 R15: 00007ffe3ddff088
[  587.844755][T16456]  </TASK>
[  588.363916][T16400] 8021q: adding VLAN 0 to HW filter on device batadv0
[  589.026967][T12651] Bluetooth: hci1: command tx timeout
[  589.200281][T16400] veth0_vlan: entered promiscuous mode
[  589.234546][T16400] veth1_vlan: entered promiscuous mode
[  589.378898][T16400] veth0_macvtap: entered promiscuous mode
[  589.426427][T16400] veth1_macvtap: entered promiscuous mode
[  589.478668][T16400] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  589.526871][T16400] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  589.577701][T16400] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  589.607386][T16400] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  589.646852][T16400] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  589.667504][T16400] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  589.696873][T16400] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  589.716923][T16400] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  589.748987][T16400] batman_adv: batadv0: Interface activated: batadv_slave_0
[  589.772053][T16400] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  589.816873][T16400] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  589.826736][T16400] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  589.859388][T16400] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  589.886899][T16400] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  589.897451][T16400] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  589.916822][T16400] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  589.927414][T16400] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  589.948298][T16400] batman_adv: batadv0: Interface activated: batadv_slave_1
[  590.027689][T16400] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  590.036441][T16400] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  590.045686][T16400] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  590.054875][T16400] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  590.630870][T11650] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  590.657179][T11650] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  590.779460][T11920] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  590.805476][T11920] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  591.407967][T16489] netlink: set zone limit has 8 unknown bytes
[  592.597719][T16509] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2502'.
[  596.207924][T16511] kexec: Could not allocate control_code_buffer
[  597.313157][T16547] netlink: set zone limit has 8 unknown bytes
[  598.721453][T16571] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2516'.
[  598.806492][T16573] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2516'.
[  598.847665][T16573] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2516'.
[  599.114702][   T30] audit: type=1800 audit(4294967349.198:16): pid=16576 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2517" name="members" dev="configfs" ino=50407 res=0 errno=0
[  599.749049][T16587] FAULT_INJECTION: forcing a failure.
[  599.749049][T16587] name fail_futex, interval 1, probability 0, space 0, times 0
[  599.805234][T16587] CPU: 1 UID: 0 PID: 16587 Comm: syz.2.2521 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[  599.805280][T16587] Tainted: [U]=USER
[  599.805289][T16587] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  599.805303][T16587] Call Trace:
[  599.805312][T16587]  <TASK>
[  599.805321][T16587]  dump_stack_lvl+0x16c/0x1f0
[  599.805357][T16587]  should_fail_ex+0x512/0x640
[  599.805395][T16587]  get_futex_key+0x49e/0x1000
[  599.805417][T16587]  ? split_node+0xd14/0x10d0
[  599.805452][T16587]  ? __pfx_get_futex_key+0x10/0x10
[  599.805478][T16587]  ? __lock_acquire+0xaa4/0x1ba0
[  599.805515][T16587]  futex_wake+0xe7/0x4e0
[  599.805546][T16587]  ? __pfx_futex_wake+0x10/0x10
[  599.805576][T16587]  ? find_held_lock+0x2b/0x80
[  599.805598][T16587]  ? __might_fault+0xe3/0x190
[  599.805622][T16587]  ? __might_fault+0x13b/0x190
[  599.805656][T16587]  do_futex+0x1e3/0x350
[  599.805681][T16587]  ? __pfx_do_futex+0x10/0x10
[  599.805704][T16587]  ? __do_sys_ustat+0x126/0x1f0
[  599.805733][T16587]  ? __pfx___do_sys_ustat+0x10/0x10
[  599.805767][T16587]  __x64_sys_futex+0x1e0/0x4c0
[  599.805796][T16587]  ? __pfx___x64_sys_futex+0x10/0x10
[  599.805840][T16587]  do_syscall_64+0xcd/0x230
[  599.805875][T16587]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  599.805900][T16587] RIP: 0033:0x7f1eda98e969
[  599.805920][T16587] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  599.805944][T16587] RSP: 002b:00007f1edb84f0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  599.805969][T16587] RAX: ffffffffffffffda RBX: 00007f1edabb5fa8 RCX: 00007f1eda98e969
[  599.805994][T16587] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f1edabb5fac
[  599.806010][T16587] RBP: 00007f1edabb5fa0 R08: 00007f1edb850000 R09: 0000000000000000
[  599.806026][T16587] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f1edabb5fac
[  599.806041][T16587] R13: 0000000000000000 R14: 00007ffe3ddfefa0 R15: 00007ffe3ddff088
[  599.806075][T16587]  </TASK>
[  600.469435][T16603] netlink: set zone limit has 8 unknown bytes
[  602.080097][T16620] can: request_module (can-proto-3) failed.
[  603.433665][T16650] netlink: set zone limit has 8 unknown bytes
[  605.053631][T16698] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2542'.
[  610.702424][T16759] misc userio: No port type given on /dev/userio
[  610.741486][T16767] netlink: 'syz.2.2560': attribute type 2 has an invalid length.
[  611.180787][T16773] syz.2.2561: vmalloc error: size 1839104, failed to allocate pages, mode:0xcc2(GFP_KERNEL|__GFP_HIGHMEM), nodemask=(null),cpuset=/,mems_allowed=0-1
[  611.347904][T16773] CPU: 0 UID: 0 PID: 16773 Comm: syz.2.2561 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[  611.347959][T16773] Tainted: [U]=USER
[  611.347968][T16773] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  611.347983][T16773] Call Trace:
[  611.347991][T16773]  <TASK>
[  611.348001][T16773]  dump_stack_lvl+0x16c/0x1f0
[  611.348039][T16773]  warn_alloc+0x248/0x3a0
[  611.348068][T16773]  ? __pfx_warn_alloc+0x10/0x10
[  611.348096][T16773]  ? alloc_pages_mpol+0x25a/0x550
[  611.348123][T16773]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  611.348152][T16773]  ? trace_kmalloc+0x2b/0xd0
[  611.348190][T16773]  __vmalloc_node_range_noprof+0x12d2/0x1540
[  611.348238][T16773]  ? __snd_dma_alloc_pages+0x50/0x90
[  611.348278][T16773]  ? do_alloc_pages+0xd7/0x280
[  611.348311][T16773]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  611.348349][T16773]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  611.348385][T16773]  ? __snd_dma_alloc_pages+0x50/0x90
[  611.348422][T16773]  vmalloc_noprof+0x6b/0x90
[  611.348455][T16773]  ? __snd_dma_alloc_pages+0x50/0x90
[  611.348488][T16773]  ? __pfx_snd_dma_vmalloc_alloc+0x10/0x10
[  611.348511][T16773]  __snd_dma_alloc_pages+0x50/0x90
[  611.348547][T16773]  snd_dma_alloc_dir_pages+0x151/0x240
[  611.348586][T16773]  do_alloc_pages+0x115/0x280
[  611.348624][T16773]  snd_pcm_lib_malloc_pages+0x3df/0x980
[  611.348666][T16773]  snd_pcm_hw_params+0x15e1/0x1b40
[  611.348708][T16773]  ? __pfx_snd_pcm_hw_params+0x10/0x10
[  611.348743][T16773]  ? snd_pcm_hw_param_near.constprop.0+0x734/0x8e0
[  611.348781][T16773]  ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10
[  611.348813][T16773]  ? __asan_memset+0x23/0x50
[  611.348850][T16773]  snd_pcm_kernel_ioctl+0x147/0x2e0
[  611.348887][T16773]  snd_pcm_oss_change_params_locked+0x1432/0x3b40
[  611.348946][T16773]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  611.348983][T16773]  ? snd_pcm_oss_sync+0x30c/0x840
[  611.349038][T16773]  snd_pcm_oss_make_ready_locked+0xb7/0x130
[  611.349074][T16773]  snd_pcm_oss_sync+0x32e/0x840
[  611.349110][T16773]  ? __pfx_snd_pcm_oss_release+0x10/0x10
[  611.349140][T16773]  snd_pcm_oss_release+0x28b/0x310
[  611.349172][T16773]  ? __pfx_snd_pcm_oss_release+0x10/0x10
[  611.349199][T16773]  __fput+0x3ff/0xb70
[  611.349231][T16773]  task_work_run+0x14d/0x240
[  611.349270][T16773]  ? __pfx_task_work_run+0x10/0x10
[  611.349304][T16773]  ? __pfx___do_sys_close_range+0x10/0x10
[  611.349326][T16773]  ? rcu_is_watching+0x12/0xc0
[  611.349355][T16773]  syscall_exit_to_user_mode+0x27b/0x2a0
[  611.349392][T16773]  do_syscall_64+0xda/0x230
[  611.349425][T16773]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  611.349450][T16773] RIP: 0033:0x7f1eda98e969
[  611.349470][T16773] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  611.349493][T16773] RSP: 002b:00007f1edb84f038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  611.349516][T16773] RAX: 0000000000000000 RBX: 00007f1edabb5fa0 RCX: 00007f1eda98e969
[  611.349533][T16773] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  611.349548][T16773] RBP: 00007f1edaa10ab1 R08: 0000000000000000 R09: 0000000000000000
[  611.349563][T16773] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  611.349577][T16773] R13: 0000000000000000 R14: 00007f1edabb5fa0 R15: 00007ffe3ddff088
[  611.349611][T16773]  </TASK>
[  611.685933][T16773] Mem-Info:
[  611.690516][T16773] active_anon:85442 inactive_anon:0 isolated_anon:0
[  611.690516][T16773]  active_file:17448 inactive_file:43761 isolated_file:0
[  611.690516][T16773]  unevictable:768 dirty:616 writeback:0
[  611.690516][T16773]  slab_reclaimable:11093 slab_unreclaimable:99122
[  611.690516][T16773]  mapped:52715 shmem:65211 pagetables:1049
[  611.690516][T16773]  sec_pagetables:0 bounce:0
[  611.690516][T16773]  kernel_misc_reclaimable:0
[  611.690516][T16773]  free:1229567 free_pcp:7457 free_cma:0
[  611.736529][T16773] Node 0 active_anon:344068kB inactive_anon:0kB active_file:69792kB inactive_file:175036kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:210860kB dirty:2464kB writeback:0kB shmem:261600kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11588kB pagetables:4196kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  611.772412][T16773] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:8kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1544kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  611.803591][T16773] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  611.831330][T16773] lowmem_reserve[]: 0 2484 2486 2486 2486
[  611.837175][T16773] Node 0 DMA32 free:1003036kB boost:0kB min:34108kB low:42632kB high:51156kB reserved_highatomic:0KB active_anon:352220kB inactive_anon:0kB active_file:69792kB inactive_file:173224kB unevictable:1536kB writepending:2464kB present:3129332kB managed:2544188kB mlocked:0kB bounce:0kB free_pcp:9928kB local_pcp:3308kB free_cma:0kB
[  611.869664][T16773] lowmem_reserve[]: 0 0 1 1 1
[  611.874441][T16773] Node 0 Normal free:28kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1812kB unevictable:0kB writepending:0kB present:1048580kB managed:1900kB mlocked:0kB bounce:0kB free_pcp:12kB local_pcp:8kB free_cma:0kB
[  611.901936][T16773] lowmem_reserve[]: 0 0 0 0 0
[  611.906703][T16773] Node 1 Normal free:3883944kB boost:0kB min:55768kB low:69708kB high:83648kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:8kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:25208kB local_pcp:6604kB free_cma:0kB
[  611.936624][T16773] lowmem_reserve[]: 0 0 0 0 0
[  611.941447][T16773] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  611.956174][T16773] Node 0 DMA32: 2*4kB (E) 18*8kB (UME) 13*16kB (UME) 35*32kB (E) 40*64kB (UE) 182*128kB (UME) 276*256kB (UME) 147*512kB (UME) 60*1024kB (UME) 13*2048kB (UM) 181*4096kB (UME) = 1002696kB
[  611.974806][T16773] Node 0 Normal: 1*4kB (M) 1*8kB (M) 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 28kB
[  611.987887][T16773] Node 1 Normal: 199*4kB (UME) 60*8kB (UME) 38*16kB (UME) 210*32kB (UME) 97*64kB (UME) 32*128kB (UME) 18*256kB (UME) 8*512kB (UM) 12*1024kB (UME) 9*2048kB (ME) 934*4096kB (M) = 3883996kB
[  612.006580][T16773] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  612.016240][T16773] Node 0 hugepages_total=1 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[  612.025642][T16773] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  612.035743][T16773] Node 1 hugepages_total=3 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB
[  612.045684][T16773] 131030 total pagecache pages
[  612.096889][T16773] 1 pages in swap cache
[  612.101130][T16773] Free swap  = 123040kB
[  612.105284][T16773] Total swap = 124996kB
[  612.222649][T16773] 2097051 pages RAM
[  612.226506][T16773] 0 pages HighMem/MovableOnly
[  612.268302][T16773] 428898 pages reserved
[  612.292766][T16773] 0 pages cma reserved
[  613.790329][T16783] kexec: Could not allocate control_code_buffer
[  617.227784][T16854] netlink: 334 bytes leftover after parsing attributes in process `syz.1.2574'.
[  617.586362][T16853] netlink: set zone limit has 8 unknown bytes
[  617.706686][T16867] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2577'.
[  617.939659][T16874] Setting dangerous option i915.mitigations - tainting kernel
[  618.024124][T16878] Setting dangerous option i915.mitigations - tainting kernel
[  618.282826][T16880] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  618.559863][T16880] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  618.950765][T16880] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  619.543532][T16880] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  619.850417][T16907] ptrace attach of "./syz-executor exec"[16400] was attempted by "./syz-executor exec"[16907]
[  624.395006][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  624.401458][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  629.298495][T17058] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2610'.
[  630.021386][T17070] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2614'.
[  632.100623][   T30] audit: type=1806 audit(4294967382.189:17): xattr="0" res=-22
[  632.789564][T17122] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input11
[  635.291566][T17150] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2632'.
[  636.911721][T17156] netlink: set zone limit has 8 unknown bytes
[  636.936280][T17159] netlink: 44 bytes leftover after parsing attributes in process `syz.1.2634'.
[  636.991910][T17159] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2634'.
[  638.268599][T17173] sp0: Synchronizing with TNC
[  639.318937][T17190] ima: policy update failed
[  639.323695][   T30] audit: type=1802 audit(4294967389.409:18): pid=17190 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.4.2640" res=0 errno=0
[  640.306626][T17195] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  640.329798][T17195] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  640.375881][T17195] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  640.485917][T17195] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  640.492366][T17195] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  640.567988][T17195] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  640.703710][T17195] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  642.068732][T12651] Bluetooth: hci2: command 0x0c1a tx timeout
[  642.386070][T12651] Bluetooth: hci0: command 0x0c1a tx timeout
[  642.392378][T12651] Bluetooth: hci4: command 0x0c1a tx timeout
[  642.404175][T12651] Bluetooth: hci3: command 0x0c1a tx timeout
[  642.555884][T12651] Bluetooth: hci1: command 0x0c1a tx timeout
[  643.789300][T17271] netlink: 338 bytes leftover after parsing attributes in process `syz.4.2658'.
[  643.886679][T17272] netlink: 338 bytes leftover after parsing attributes in process `syz.4.2658'.
[  644.630837][T12651] Bluetooth: hci1: command 0x0c1a tx timeout
[  645.487228][T17296] block2mtd: error: cannot open device /sys/
[  646.705925][T12651] Bluetooth: hci1: command 0x0c1a tx timeout
[  646.997859][T17321] nvme_fabrics: missing parameter 'transport=%s'
[  647.036614][T17321] nvme_fabrics: missing parameter 'nqn=%s'
[  647.075951][T17318] netlink: set zone limit has 8 unknown bytes
[  647.694715][T17329] netlink: set zone limit has 8 unknown bytes
[  648.197307][T17345] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2672'.
[  648.530257][T17349] ubi0: attaching mtd0
[  648.546846][T17349] ubi0: scanning is finished
[  648.551547][T17349] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record
[  648.734505][T17349] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  649.486474][ T5843] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  649.497261][ T5843] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  649.507721][ T5843] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  649.516373][ T5843] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  649.524957][ T5843] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  650.116513][T17383] netlink: 98 bytes leftover after parsing attributes in process `syz.3.2683'.
[  651.021620][T17372] chnl_net:caif_netlink_parms(): no params data found
[  651.596811][ T5843] Bluetooth: hci5: command tx timeout
[  651.730377][T17372] bridge0: port 1(bridge_slave_0) entered blocking state
[  651.775948][T17372] bridge0: port 1(bridge_slave_0) entered disabled state
[  651.783321][T17372] bridge_slave_0: entered allmulticast mode
[  651.817649][T17372] bridge_slave_0: entered promiscuous mode
[  651.866846][T17372] bridge0: port 2(bridge_slave_1) entered blocking state
[  651.874029][T17372] bridge0: port 2(bridge_slave_1) entered disabled state
[  651.916090][T17372] bridge_slave_1: entered allmulticast mode
[  651.924902][T17372] bridge_slave_1: entered promiscuous mode
[  652.144382][T17372] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  652.196670][T17372] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  652.492086][T17372] team0: Port device team_slave_0 added
[  652.530847][T17372] team0: Port device team_slave_1 added
[  652.888122][T17372] batman_adv: batadv0: Adding interface: batadv_slave_0
[  652.925820][T17372] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  653.035830][T17372] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  653.195306][T17372] batman_adv: batadv0: Adding interface: batadv_slave_1
[  653.265844][T17372] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  653.385931][T17372] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  653.631502][T17424] FAULT_INJECTION: forcing a failure.
[  653.631502][T17424] name failslab, interval 1, probability 0, space 0, times 0
[  653.665931][ T5843] Bluetooth: hci5: command tx timeout
[  653.687639][T17424] CPU: 0 UID: 0 PID: 17424 Comm: syz.3.2691 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[  653.687681][T17424] Tainted: [U]=USER
[  653.687689][T17424] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  653.687703][T17424] Call Trace:
[  653.687712][T17424]  <TASK>
[  653.687721][T17424]  dump_stack_lvl+0x16c/0x1f0
[  653.687758][T17424]  should_fail_ex+0x512/0x640
[  653.687788][T17424]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  653.687828][T17424]  should_failslab+0xc2/0x120
[  653.687861][T17424]  __kmalloc_cache_noprof+0x6a/0x3e0
[  653.687894][T17424]  ? __mutex_lock+0x1ca/0xb90
[  653.687923][T17424]  ? alloc_tty_struct+0x96/0x8c0
[  653.687957][T17424]  alloc_tty_struct+0x96/0x8c0
[  653.687984][T17424]  ? __pfx___mutex_lock+0x10/0x10
[  653.688013][T17424]  ? __pfx_alloc_tty_struct+0x10/0x10
[  653.688041][T17424]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  653.688080][T17424]  tty_init_dev.part.0+0x1e/0x500
[  653.688109][T17424]  tty_init_dev+0x60/0x80
[  653.688136][T17424]  ? __pfx_ptmx_open+0x10/0x10
[  653.688167][T17424]  ptmx_open+0x10d/0x360
[  653.688200][T17424]  ? __pfx_ptmx_open+0x10/0x10
[  653.688232][T17424]  chrdev_open+0x231/0x6a0
[  653.688255][T17424]  ? __pfx_apparmor_file_open+0x10/0x10
[  653.688283][T17424]  ? __pfx_chrdev_open+0x10/0x10
[  653.688310][T17424]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  653.688350][T17424]  do_dentry_open+0x741/0x1c10
[  653.688373][T17424]  ? __pfx_chrdev_open+0x10/0x10
[  653.688404][T17424]  vfs_open+0x82/0x3f0
[  653.688436][T17424]  path_openat+0x1e5e/0x2d40
[  653.688471][T17424]  ? __pfx_path_openat+0x10/0x10
[  653.688503][T17424]  do_filp_open+0x20b/0x470
[  653.688526][T17424]  ? __pfx_do_filp_open+0x10/0x10
[  653.688573][T17424]  ? alloc_fd+0x471/0x7d0
[  653.688615][T17424]  do_sys_openat2+0x11b/0x1d0
[  653.688642][T17424]  ? __pfx_do_sys_openat2+0x10/0x10
[  653.688684][T17424]  __x64_sys_openat+0x174/0x210
[  653.688713][T17424]  ? __pfx___x64_sys_openat+0x10/0x10
[  653.688744][T17424]  ? rcu_is_watching+0x12/0xc0
[  653.688776][T17424]  do_syscall_64+0xcd/0x230
[  653.688807][T17424]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  653.688831][T17424] RIP: 0033:0x7fa14df8e969
[  653.688882][T17424] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  653.688905][T17424] RSP: 002b:00007fa14edbe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  653.688929][T17424] RAX: ffffffffffffffda RBX: 00007fa14e1b6080 RCX: 00007fa14df8e969
[  653.688945][T17424] RDX: 0000000000020540 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  653.688961][T17424] RBP: 00007fa14e010ab1 R08: 0000000000000000 R09: 0000000000000000
[  653.688976][T17424] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  653.688990][T17424] R13: 0000000000000000 R14: 00007fa14e1b6080 R15: 00007fff697fa098
[  653.689024][T17424]  </TASK>
[  654.343209][T17372] hsr_slave_0: entered promiscuous mode
[  654.377036][T17372] hsr_slave_1: entered promiscuous mode
[  654.383381][T17372] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  654.415824][T17372] Cannot create hsr debugfs directory
[  655.289276][T17434] Invalid ELF header magic: != ELF
[  655.746007][ T5843] Bluetooth: hci5: command tx timeout
[  656.240657][T17372] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  656.319872][T17438] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2693'.
[  656.331858][T17372] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  656.514410][T17372] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  656.616341][T17372] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  656.902739][T17372] 8021q: adding VLAN 0 to HW filter on device bond0
[  657.009086][T17372] 8021q: adding VLAN 0 to HW filter on device team0
[  657.061114][ T9023] bridge0: port 1(bridge_slave_0) entered blocking state
[  657.068338][ T9023] bridge0: port 1(bridge_slave_0) entered forwarding state
[  657.142088][T17443] netlink: 'syz.3.2695': attribute type 1 has an invalid length.
[  657.157003][T17443] netlink: 206 bytes leftover after parsing attributes in process `syz.3.2695'.
[  657.210450][ T9023] bridge0: port 2(bridge_slave_1) entered blocking state
[  657.217677][ T9023] bridge0: port 2(bridge_slave_1) entered forwarding state
[  657.836057][ T5843] Bluetooth: hci5: command tx timeout
[  658.009715][T17459] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2697'.
[  658.176689][T17372] 8021q: adding VLAN 0 to HW filter on device batadv0
[  658.778564][T17372] veth0_vlan: entered promiscuous mode
[  658.901805][T17372] veth1_vlan: entered promiscuous mode
[  658.989612][T17372] veth0_macvtap: entered promiscuous mode
[  659.000024][T17372] veth1_macvtap: entered promiscuous mode
[  659.030556][T17372] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  659.105800][T17372] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  659.195796][T17372] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  659.249557][T17372] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  659.301213][T17372] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  659.355850][T17372] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  659.390148][T17372] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  659.423749][T17372] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  659.438102][T17474] uvcvideo: [Deprecated]: nodrop parameter will be eventually removed.
[  659.461564][T17372] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  659.492546][T17372] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  659.524880][T17372] batman_adv: batadv0: Interface activated: batadv_slave_0
[  659.602227][T17372] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  659.681050][T17480] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  659.689783][T17372] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  659.706381][T17372] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  659.735839][T17372] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  659.771851][T17372] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  659.795673][T17372] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  659.827878][T17372] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  659.867863][T17372] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  659.905680][T17372] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  659.945795][T17372] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  659.997311][T17372] batman_adv: batadv0: Interface activated: batadv_slave_1
[  660.158590][T17483] bcachefs: bch2_ioctl_fsck_offline() ret EFAULT
[  660.273475][T17372] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  660.294335][T17372] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  660.325823][T17372] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  660.355026][T17372] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  661.291231][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  661.335806][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  661.386578][T11651] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  661.405344][T11651] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  665.557532][T17538] 0x000200000001-0xa29656a63616329 : ""
[  665.571546][T17538] mtd: partition "" is out of reach -- disabled
[  665.689117][T17538] ftl_cs: FTL header not found.
[  666.166027][T17543] netlink: set zone limit has 8 unknown bytes
[  666.196455][T17544] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2713'.
[  666.236157][T17541] svc: failed to register nfsdv3 RPC service (errno 111).
[  666.369492][T17541] svc: failed to register nfsaclv3 RPC service (errno 111).
[  666.722316][T17540] ima: policy update failed
[  666.748667][   T30] audit: type=1802 audit(4294967416.839:19): pid=17540 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.2713" res=0 errno=0
[  669.751687][T17584] netlink: 342 bytes leftover after parsing attributes in process `syz.4.2724'.
[  669.917254][T17587] netlink: set zone limit has 8 unknown bytes
[  670.018592][T17593] netlink: 'syz.1.2726': attribute type 21 has an invalid length.
[  670.041981][T17593] netlink: 326 bytes leftover after parsing attributes in process `syz.1.2726'.
[  670.092103][T17593] IPv6: NLM_F_CREATE should be specified when creating new route
[  670.156083][T17593] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2726'.
[  670.294045][T17593] ovs_��: entered promiscuous mode
[  670.364975][T17601] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2723'.
[  671.156364][T17610] Scaler: =================  START STATUS  =================
[  671.164096][T17610] Scaler: ==================  END STATUS  ==================
[  671.298901][T17610] vhci_hcd: invalid port number 242
[  671.318638][T17610] vhci_hcd: default hub control req: f2ff vffff i00f2 l65535
[  671.537642][T17619] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2731'.
[  671.891821][T17621] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2732'.
[  679.356185][T17691] kexec: Could not allocate control_code_buffer
[  683.269776][T17788] netlink: set zone limit has 8 unknown bytes
[  684.049436][T17801] can: request_module (can-proto-3) failed.
[  684.116105][T17811] netlink: 93 bytes leftover after parsing attributes in process `syz.1.2772'.
[  684.180559][T17810] netlink: 93 bytes leftover after parsing attributes in process `syz.1.2772'.
[  685.619364][T17835] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2776'.
[  685.846251][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  685.852589][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  687.184213][T17862] netlink: set zone limit has 8 unknown bytes
[  688.125117][T17883] Setting dangerous option i915.mitigations - tainting kernel
[  689.203001][T17876] delete_channel: no stack
[  689.695179][T17901] FAULT_INJECTION: forcing a failure.
[  689.695179][T17901] name failslab, interval 1, probability 0, space 0, times 0
[  689.746585][T17901] CPU: 0 UID: 0 PID: 17901 Comm: syz.3.2789 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[  689.746631][T17901] Tainted: [U]=USER
[  689.746640][T17901] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  689.746654][T17901] Call Trace:
[  689.746662][T17901]  <TASK>
[  689.746671][T17901]  dump_stack_lvl+0x16c/0x1f0
[  689.746721][T17901]  should_fail_ex+0x512/0x640
[  689.746755][T17901]  ? __kmalloc_noprof+0xbf/0x510
[  689.746783][T17901]  ? sk_prot_alloc+0x1a8/0x2a0
[  689.746811][T17901]  should_failslab+0xc2/0x120
[  689.746842][T17901]  __kmalloc_noprof+0xd2/0x510
[  689.746875][T17901]  sk_prot_alloc+0x1a8/0x2a0
[  689.746908][T17901]  sk_alloc+0x36/0xc20
[  689.746932][T17901]  __netlink_create+0x5e/0x2c0
[  689.746966][T17901]  ? __wake_up+0x3f/0x60
[  689.746993][T17901]  netlink_create+0x39e/0x620
[  689.747016][T17901]  ? __pfx_genl_bind+0x10/0x10
[  689.747043][T17901]  ? __pfx_genl_unbind+0x10/0x10
[  689.747068][T17901]  ? __pfx_genl_release+0x10/0x10
[  689.747101][T17901]  __sock_create+0x335/0x8d0
[  689.747139][T17901]  __sys_socket+0x14d/0x260
[  689.747170][T17901]  ? __pfx___sys_socket+0x10/0x10
[  689.747203][T17901]  ? rcu_is_watching+0x12/0xc0
[  689.747232][T17901]  __x64_sys_socket+0x72/0xb0
[  689.747263][T17901]  ? lockdep_hardirqs_on+0x7c/0x110
[  689.747292][T17901]  do_syscall_64+0xcd/0x230
[  689.747325][T17901]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  689.747350][T17901] RIP: 0033:0x7fa14df8e969
[  689.747370][T17901] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  689.747394][T17901] RSP: 002b:00007fa14eddf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  689.747419][T17901] RAX: ffffffffffffffda RBX: 00007fa14e1b5fa0 RCX: 00007fa14df8e969
[  689.747436][T17901] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010
[  689.747451][T17901] RBP: 00007fa14e010ab1 R08: 0000000000000000 R09: 0000000000000000
[  689.747466][T17901] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  689.747481][T17901] R13: 0000000000000000 R14: 00007fa14e1b5fa0 R15: 00007fff697fa098
[  689.747514][T17901]  </TASK>
[  747.271369][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  747.281746][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  751.682557][ T5201] udevd[5201]: worker [15274] /devices/pci0000:00/0000:00:03.0/virtio0/host0/target0:0:1/0:0:1:0/block/sda is taking a long time
[  774.976594][ T5843] Bluetooth: hci5: command 0x0406 tx timeout
[  808.714493][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  808.720995][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  849.026103][   T31] INFO: task kworker/u8:0:12 blocked for more than 143 seconds.
[  849.034024][   T31]       Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0
[  849.075825][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  849.084700][   T31] task:kworker/u8:0    state:D stack:23960 pid:12    tgid:12    ppid:2      task_flags:0x4248160 flags:0x00004000
[  849.113152][   T31] Workqueue: writeback wb_workfn (flush-8:0)
[  849.129881][   T31] Call Trace:
[  849.133204][   T31]  <TASK>
[  849.146031][   T31]  __schedule+0x116f/0x5de0
[  849.150588][   T31]  ? blk_mq_flush_plug_list+0x75a/0x1c70
[  849.166011][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[  849.171012][   T31]  ? __pfx___schedule+0x10/0x10
[  849.186329][   T31]  ? __blk_flush_plug+0x2f3/0x4b0
[  849.191851][   T31]  ? find_held_lock+0x2b/0x80
[  849.205862][   T31]  ? schedule+0x2d7/0x3a0
[  849.212276][   T31]  schedule+0xe7/0x3a0
[  849.225850][   T31]  io_schedule+0xbf/0x130
[  849.230236][   T31]  bit_wait_io+0x15/0xe0
[  849.234500][   T31]  __wait_on_bit_lock+0x112/0x1a0
[  849.255819][   T31]  ? __pfx_bit_wait_io+0x10/0x10
[  849.260823][   T31]  out_of_line_wait_on_bit_lock+0xd9/0x110
[  849.275949][   T31]  ? __pfx_out_of_line_wait_on_bit_lock+0x10/0x10
[  849.282428][   T31]  ? __pfx_wake_bit_function+0x10/0x10
[  849.295810][   T31]  ? __pfx___might_resched+0x10/0x10
[  849.301165][   T31]  __lock_buffer+0x67/0x70
[  849.305606][   T31]  do_get_write_access+0x8cd/0x12a0
[  849.335790][   T31]  ? jbd2_write_access_granted+0x61/0x3d0
[  849.341582][   T31]  jbd2_journal_get_write_access+0x1d6/0x280
[  849.355800][   T31]  __ext4_journal_get_write_access+0x6a/0x340
[  849.361934][   T31]  ext4_mb_mark_context+0x175/0xd40
[  849.376183][   T31]  ? find_held_lock+0x2b/0x80
[  849.380904][   T31]  ? __pfx_ext4_mb_mark_context+0x10/0x10
[  849.405862][   T31]  ext4_mb_mark_diskspace_used+0x466/0x8c0
[  849.411745][   T31]  ? ext4_mb_use_preallocated.constprop.0+0xec/0x1550
[  849.435826][   T31]  ? __pfx_ext4_mb_mark_diskspace_used+0x10/0x10
[  849.442236][   T31]  ? ext4_mb_new_blocks+0x977/0x4f00
[  849.456152][   T31]  ext4_mb_new_blocks+0xa5b/0x4f00
[  849.461326][   T31]  ? __pfx___might_resched+0x10/0x10
[  849.476148][   T31]  ? bh_uptodate_or_lock+0x3c/0x140
[  849.481403][   T31]  ? __read_extent_tree_block+0x2ca/0x640
[  849.495947][   T31]  ? __pfx_ext4_mb_new_blocks+0x10/0x10
[  849.502009][   T31]  ? ext4_ext_search_right+0x2c2/0xb90
[  849.525878][   T31]  ext4_ext_map_blocks+0x1b95/0x5d60
[  849.531259][   T31]  ? stack_trace_save+0x8e/0xc0
[  849.546187][   T31]  ? __pfx_stack_trace_save+0x10/0x10
[  849.551635][   T31]  ? __pfx_ext4_ext_map_blocks+0x10/0x10
[  849.566195][   T31]  ? __kasan_slab_alloc+0x89/0x90
[  849.571264][   T31]  ? ext4_do_writepages+0x1432/0x3490
[  849.586187][   T31]  ? __pfx___might_resched+0x10/0x10
[  849.591534][   T31]  ? __pfx_down_write+0x10/0x10
[  849.615791][   T31]  ? ext4_es_lookup_extent+0xc7/0xc50
[  849.623573][   T31]  ext4_map_blocks+0x45b/0x1390
[  849.635806][   T31]  ? __pfx_ext4_map_blocks+0x10/0x10
[  849.641146][   T31]  ? trace_kmem_cache_alloc+0x28/0xc0
[  849.673387][   T31]  ? kmem_cache_alloc_noprof+0x21e/0x3b0
[  849.680145][   T31]  ext4_do_writepages+0x1a2c/0x3490
[  849.685419][   T31]  ? __pfx_ext4_do_writepages+0x10/0x10
[  849.716062][   T31]  ? ext4_writepages+0x37a/0x7d0
[  849.721098][   T31]  ext4_writepages+0x37a/0x7d0
[  849.735830][   T31]  ? __pfx_ext4_writepages+0x10/0x10
[  849.741205][   T31]  ? blk_finish_plug+0x16/0xa0
[  849.755872][   T31]  ? do_writepages+0x6b6/0x820
[  849.760717][   T31]  ? __pfx_ext4_writepages+0x10/0x10
[  849.775849][   T31]  do_writepages+0x1b2/0x820
[  849.780538][   T31]  ? __pfx_do_writepages+0x10/0x10
[  849.785702][   T31]  ? __lock_acquire+0xaa4/0x1ba0
[  849.804944][   T31]  ? reacquire_held_locks+0xcd/0x1f0
[  849.819802][   T31]  __writeback_single_inode+0x160/0xfb0
[  849.836003][   T31]  ? __pfx___writeback_single_inode+0x10/0x10
[  849.842151][   T31]  ? do_raw_spin_unlock+0x172/0x230
[  849.855839][   T31]  writeback_sb_inodes+0x601/0xf90
[  849.861047][   T31]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  849.875882][   T31]  ? __pfx___up_read+0x10/0x10
[  849.880712][   T31]  ? __writeback_inodes_wb+0x104/0x2d0
[  849.895838][   T31]  __writeback_inodes_wb+0xf8/0x2d0
[  849.901104][   T31]  ? __pfx___writeback_inodes_wb+0x10/0x10
[  849.925842][   T31]  ? queue_io+0x3f6/0x520
[  849.930247][   T31]  wb_writeback+0x7f3/0xb70
[  849.934792][   T31]  ? __pfx_wb_writeback+0x10/0x10
[  849.955842][   T31]  ? get_nr_dirty_inodes+0x170/0x1e0
[  849.961224][   T31]  wb_workfn+0x8ca/0xbe0
[  849.965522][   T31]  ? try_to_wake_up+0x157/0x1680
[  849.985866][   T31]  ? __pfx_wb_workfn+0x10/0x10
[  849.990727][   T31]  ? preempt_schedule_thunk+0x16/0x30
[  850.005808][   T31]  process_one_work+0x9cc/0x1b70
[  850.011885][   T31]  ? __pfx_process_one_work+0x10/0x10
[  850.025889][   T31]  ? assign_work+0x1a0/0x250
[  850.030549][   T31]  worker_thread+0x6c8/0xf10
[  850.035197][   T31]  ? __pfx_worker_thread+0x10/0x10
[  850.055840][   T31]  kthread+0x3c2/0x780
[  850.059992][   T31]  ? __pfx_kthread+0x10/0x10
[  850.064616][   T31]  ? __pfx_kthread+0x10/0x10
[  850.085801][   T31]  ? __pfx_kthread+0x10/0x10
[  850.090464][   T31]  ? __pfx_kthread+0x10/0x10
[  850.095100][   T31]  ? rcu_is_watching+0x12/0xc0
[  850.105804][   T31]  ? __pfx_kthread+0x10/0x10
[  850.110466][   T31]  ret_from_fork+0x45/0x80
[  850.125801][   T31]  ? __pfx_kthread+0x10/0x10
[  850.130461][   T31]  ret_from_fork_asm+0x1a/0x30
[  850.135282][   T31]  </TASK>
[  850.146487][   T31] INFO: task jbd2/sda1-8:5163 blocked for more than 144 seconds.
[  850.154248][   T31]       Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0
[  850.195867][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  850.204588][   T31] task:jbd2/sda1-8     state:D stack:26504 pid:5163  tgid:5163  ppid:2      task_flags:0x240040 flags:0x00004000
[  850.245796][   T31] Call Trace:
[  850.249229][   T31]  <TASK>
[  850.252182][   T31]  __schedule+0x116f/0x5de0
[  850.265855][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[  850.270867][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[  850.285997][   T31]  ? __pfx___schedule+0x10/0x10
[  850.290921][   T31]  ? find_held_lock+0x2b/0x80
[  850.295616][   T31]  ? schedule+0x2d7/0x3a0
[  850.316303][   T31]  schedule+0xe7/0x3a0
[  850.320458][   T31]  io_schedule+0xbf/0x130
[  850.324821][   T31]  bit_wait_io+0x15/0xe0
[  850.345825][   T31]  __wait_on_bit+0x62/0x180
[  850.350395][   T31]  ? __pfx_bit_wait_io+0x10/0x10
[  850.355357][   T31]  out_of_line_wait_on_bit+0xd9/0x110
[  850.361341][   T31]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[  850.367660][   T31]  ? __pfx_wake_bit_function+0x10/0x10
[  850.373158][   T31]  ? __pfx___might_resched+0x10/0x10
[  850.378879][   T31]  __wait_on_buffer+0x64/0x70
[  850.383594][   T31]  jbd2_journal_commit_transaction+0x382e/0x6830
[  850.395984][   T31]  ? __pfx_jbd2_journal_commit_transaction+0x10/0x10
[  850.402723][   T31]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  850.425813][   T31]  ? debug_object_deactivate+0x1ec/0x3a0
[  850.431512][   T31]  ? __pfx_debug_object_deactivate+0x10/0x10
[  850.455817][   T31]  ? find_held_lock+0x2b/0x80
[  850.460564][   T31]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  850.476166][   T31]  ? rcu_is_watching+0x12/0xc0
[  850.480999][   T31]  kjournald2+0x1f4/0x760
[  850.485366][   T31]  ? __pfx_kjournald2+0x10/0x10
[  850.505977][   T31]  ? find_held_lock+0x2b/0x80
[  850.510723][   T31]  ? __pfx_autoremove_wake_function+0x10/0x10
[  850.525824][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[  850.531081][   T31]  ? __kthread_parkme+0x19e/0x250
[  850.537240][   T31]  ? __pfx_kjournald2+0x10/0x10
[  850.545075][   T31]  kthread+0x3c2/0x780
[  850.553964][   T31]  ? __pfx_kthread+0x10/0x10
[  850.559628][   T31]  ? __pfx_kthread+0x10/0x10
[  850.564253][   T31]  ? __pfx_kthread+0x10/0x10
[  850.572569][   T31]  ? __pfx_kthread+0x10/0x10
[  850.578127][   T31]  ? rcu_is_watching+0x12/0xc0
[  850.582915][   T31]  ? __pfx_kthread+0x10/0x10
[  850.591238][   T31]  ret_from_fork+0x45/0x80
[  850.595691][   T31]  ? __pfx_kthread+0x10/0x10
[  850.601375][   T31]  ret_from_fork_asm+0x1a/0x30
[  850.612039][   T31]  </TASK>
[  850.615124][   T31] INFO: task syz-executor:5816 blocked for more than 144 seconds.
[  850.632551][   T31]       Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0
[  850.649874][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  850.660452][   T31] task:syz-executor    state:D stack:23432 pid:5816  tgid:5816  ppid:5814   task_flags:0x440100 flags:0x00000002
[  850.675998][   T31] Call Trace:
[  850.679303][   T31]  <TASK>
[  850.682250][   T31]  __schedule+0x116f/0x5de0
[  850.691472][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[  850.696705][   T31]  ? __pfx___schedule+0x10/0x10
[  850.701587][   T31]  ? find_held_lock+0x2b/0x80
[  850.710837][   T31]  ? schedule+0x2d7/0x3a0
[  850.715266][   T31]  schedule+0xe7/0x3a0
[  850.722279][   T31]  io_schedule+0xbf/0x130
[  850.733114][   T31]  bit_wait_io+0x15/0xe0
[  850.739666][   T31]  __wait_on_bit+0x62/0x180
[  850.747548][   T31]  ? __pfx_bit_wait_io+0x10/0x10
[  850.752542][   T31]  out_of_line_wait_on_bit+0xd9/0x110
[  850.762776][   T31]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[  850.769982][   T31]  ? __pfx_wake_bit_function+0x10/0x10
[  850.775484][   T31]  do_get_write_access+0x93d/0x12a0
[  850.785221][   T31]  jbd2_journal_get_write_access+0x1d6/0x280
[  850.793898][   T31]  __ext4_journal_get_write_access+0x6a/0x340
[  850.804455][   T31]  ext4_reserve_inode_write+0x1be/0x320
[  850.810441][   T31]  __ext4_mark_inode_dirty+0x197/0x870
[  850.820352][   T31]  ? trace_kmem_cache_alloc+0x28/0xc0
[  850.829619][   T31]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[  850.835660][   T31]  ? rcu_is_watching+0x12/0xc0
[  850.848646][   T31]  ? trace_jbd2_handle_start+0x1a8/0x230
[  850.854340][   T31]  ? jbd2__journal_start+0xf6/0x6a0
[  850.864631][   T31]  ? __ext4_journal_start_sb+0x195/0x690
[  850.873525][   T31]  ? __ext4_journal_start_sb+0x19e/0x690
[  850.884530][   T31]  ? ext4_dirty_inode+0xa1/0x130
[  850.890748][   T31]  ? __pfx_ext4_dirty_inode+0x10/0x10
[  850.900463][   T31]  ext4_dirty_inode+0xd9/0x130
[  850.905258][   T31]  ? rcu_is_watching+0x12/0xc0
[  850.910515][   T31]  __mark_inode_dirty+0x1eb/0xe50
[  850.915581][   T31]  generic_update_time+0xcf/0xf0
[  850.925378][   T31]  file_update_time+0x17d/0x1c0
[  850.931648][   T31]  ext4_page_mkwrite+0x35e/0x1750
[  850.943342][   T31]  ? find_held_lock+0x2b/0x80
[  850.953713][   T31]  ? __might_fault+0xe3/0x190
[  850.962731][   T31]  ? __might_fault+0xe3/0x190
[  850.968706][   T31]  ? __pfx_ext4_page_mkwrite+0x10/0x10
[  850.974244][   T31]  ? vm_normal_page+0x13b/0x2b0
[  850.983692][   T31]  ? find_held_lock+0x2b/0x80
[  850.989684][   T31]  ? find_held_lock+0x2b/0x80
[  850.994393][   T31]  do_page_mkwrite+0x171/0x380
[  851.003637][   T31]  do_wp_page+0xb9e/0x58e0
[  851.008365][   T31]  ? __pfx_do_wp_page+0x10/0x10
[  851.013242][   T31]  ? do_raw_spin_lock+0x12c/0x2b0
[  851.022709][   T31]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  851.028401][   T31]  ? ___pte_offset_map+0x1bc/0x540
[  851.034533][   T31]  __handle_mm_fault+0x1ada/0x2a40
[  851.044106][   T31]  ? __pfx___handle_mm_fault+0x10/0x10
[  851.055564][   T31]  ? lock_vma_under_rcu+0x47d/0x970
[  851.067226][   T31]  ? lock_vma_under_rcu+0x47d/0x970
[  851.072496][   T31]  handle_mm_fault+0x3fe/0xad0
[  851.080771][   T31]  do_user_addr_fault+0x60c/0x1370
[  851.088249][   T31]  exc_page_fault+0x5c/0xc0
[  851.092782][   T31]  asm_exc_page_fault+0x26/0x30
[  851.101177][   T31] RIP: 0033:0x7f891d0689c5
[  851.105625][   T31] RSP: 002b:00007ffebf6bcc40 EFLAGS: 00010202
[  851.114263][   T31] RAX: 00007f8917f8fb00 RBX: 00007ffebf6bcd40 RCX: 0000000000000000
[  851.124561][   T31] RDX: 00007f8917f8fafc RSI: 0000000000000008 RDI: 00007ffebf6bcd40
[  851.135458][   T31] RBP: 00000000000003e6 R08: 0000000000000000 R09: 0000000000000000
[  851.146279][   T31] R10: 00007ffebf6bcd20 R11: 0000000000000000 R12: 0000000000000000
[  851.164182][   T31] R13: 0000000000070500 R14: fffffffffff8fb00 R15: 0000000000070500
[  851.174202][   T31]  </TASK>
[  851.180922][   T31] INFO: task syz.5.2784:17873 blocked for more than 145 seconds.
[  851.191395][   T31]       Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0
[  851.205179][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  851.215832][   T31] task:syz.5.2784      state:D stack:26488 pid:17873 tgid:17873 ppid:17372  task_flags:0x440040 flags:0x00000004
[  851.232166][   T31] Call Trace:
[  851.235462][   T31]  <TASK>
[  851.239773][   T31]  __schedule+0x116f/0x5de0
[  851.244325][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[  851.253668][   T31]  ? __pfx___schedule+0x10/0x10
[  851.261615][   T31]  ? find_held_lock+0x2b/0x80
[  851.273950][   T31]  ? schedule+0x2d7/0x3a0
[  851.279846][   T31]  schedule+0xe7/0x3a0
[  851.283962][   T31]  io_schedule+0xbf/0x130
[  851.292807][   T31]  bit_wait_io+0x15/0xe0
[  851.298961][   T31]  __wait_on_bit+0x62/0x180
[  851.303518][   T31]  ? __pfx_bit_wait_io+0x10/0x10
[  851.312957][   T31]  out_of_line_wait_on_bit+0xd9/0x110
[  851.318655][   T31]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[  851.324672][   T31]  ? __pfx_wake_bit_function+0x10/0x10
[  851.335464][   T31]  do_get_write_access+0x93d/0x12a0
[  851.342063][   T31]  jbd2_journal_get_write_access+0x1d6/0x280
[  851.352507][   T31]  __ext4_journal_get_write_access+0x6a/0x340
[  851.361707][   T31]  ext4_reserve_inode_write+0x1be/0x320
[  851.371743][   T31]  __ext4_mark_inode_dirty+0x197/0x870
[  851.379859][   T31]  ? trace_kmem_cache_alloc+0x28/0xc0
[  851.385281][   T31]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[  851.397150][   T31]  ? rcu_is_watching+0x12/0xc0
[  851.401961][   T31]  ? trace_jbd2_handle_start+0x1a8/0x230
[  851.412029][   T31]  ? jbd2__journal_start+0xf6/0x6a0
[  851.418982][   T31]  ? __ext4_journal_start_sb+0x195/0x690
[  851.424679][   T31]  ? __ext4_journal_start_sb+0x19e/0x690
[  851.433490][   T31]  ? ext4_dirty_inode+0xa1/0x130
[  851.441201][   T31]  ? __pfx_ext4_dirty_inode+0x10/0x10
[  851.451575][   T31]  ext4_dirty_inode+0xd9/0x130
[  851.458024][   T31]  ? rcu_is_watching+0x12/0xc0
[  851.468662][   T31]  __mark_inode_dirty+0x1eb/0xe50
[  851.473735][   T31]  generic_update_time+0xcf/0xf0
[  851.480690][   T31]  file_update_time+0x17d/0x1c0
[  851.485585][   T31]  ext4_page_mkwrite+0x35e/0x1750
[  851.495604][   T31]  ? __pfx_ext4_page_mkwrite+0x10/0x10
[  851.504522][   T31]  do_page_mkwrite+0x171/0x380
[  851.512423][   T31]  do_pte_missing+0x29c/0x3fb0
[  851.519935][   T31]  ? __handle_mm_fault+0x1010/0x2a40
[  851.525258][   T31]  __handle_mm_fault+0x103d/0x2a40
[  851.533447][   T31]  ? __pfx___handle_mm_fault+0x10/0x10
[  851.540572][   T31]  ? lock_vma_under_rcu+0x47d/0x970
[  851.550637][   T31]  ? lock_vma_under_rcu+0x47d/0x970
[  851.557540][   T31]  handle_mm_fault+0x3fe/0xad0
[  851.565227][   T31]  do_user_addr_fault+0x60c/0x1370
[  851.573323][   T31]  exc_page_fault+0x5c/0xc0
[  851.579556][   T31]  asm_exc_page_fault+0x26/0x30
[  851.584431][   T31] RIP: 0033:0x7f70fda6f282
[  851.592335][   T31] RSP: 002b:00007fffa5d80c80 EFLAGS: 00010202
[  851.602737][   T31] RAX: 0000000000074008 RBX: 00007f70fe8e5720 RCX: 0000000000000000
[  851.615089][   T31] RDX: 0000001b30cac000 RSI: 0000000000000008 RDI: 00007f70fe8e5720
[  851.640822][   T31] RBP: 00000000000004c2 R08: 00007f70fd1ff070 R09: 00007f70fdda2000
[  851.650058][   T31] R10: 00007f70fd1ff008 R11: 000000000000000d R12: ffffffff821bc0da
[  851.675805][   T31] R13: 00007f70fddb6038 R14: 00000000000001f8 R15: fffffffffff8c000
[  851.683834][   T31]  ? policy_nodemask+0xea/0x4e0
[  851.712573][   T31]  </TASK>
[  851.715677][   T31] INFO: task syz.3.2790:17906 blocked for more than 146 seconds.
[  851.736001][   T31]       Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0
[  851.745259][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  851.775861][   T31] task:syz.3.2790      state:D stack:26488 pid:17906 tgid:17906 ppid:15976  task_flags:0x440040 flags:0x00000004
[  851.805786][   T31] Call Trace:
[  851.809121][   T31]  <TASK>
[  851.812068][   T31]  __schedule+0x116f/0x5de0
[  851.826192][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[  851.831212][   T31]  ? __pfx___schedule+0x10/0x10
[  851.846156][   T31]  ? find_held_lock+0x2b/0x80
[  851.850883][   T31]  ? schedule+0x2d7/0x3a0
[  851.855624][   T31]  schedule+0xe7/0x3a0
[  851.875820][   T31]  io_schedule+0xbf/0x130
[  851.880205][   T31]  bit_wait_io+0x15/0xe0
[  851.884488][   T31]  __wait_on_bit+0x62/0x180
[  851.905899][   T31]  ? __pfx_bit_wait_io+0x10/0x10
[  851.910910][   T31]  out_of_line_wait_on_bit+0xd9/0x110
[  851.935963][   T31]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[  851.942033][   T31]  ? __pfx_wake_bit_function+0x10/0x10
[  851.956155][   T31]  do_get_write_access+0x93d/0x12a0
[  851.961452][   T31]  jbd2_journal_get_write_access+0x1d6/0x280
[  851.971613][   T31]  __ext4_journal_get_write_access+0x6a/0x340
[  851.980015][   T31]  ext4_reserve_inode_write+0x1be/0x320
[  851.985620][   T31]  __ext4_mark_inode_dirty+0x197/0x870
[  851.995215][   T31]  ? trace_kmem_cache_alloc+0x28/0xc0
[  852.003280][   T31]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[  852.013564][   T31]  ? rcu_is_watching+0x12/0xc0
[  852.018468][   T31]  ? trace_jbd2_handle_start+0x1a8/0x230
[  852.024147][   T31]  ? jbd2__journal_start+0xf6/0x6a0
[  852.033638][   T31]  ? __ext4_journal_start_sb+0x195/0x690
[  852.039681][   T31]  ? __ext4_journal_start_sb+0x19e/0x690
[  852.045348][   T31]  ? ext4_dirty_inode+0xa1/0x130
[  852.054821][   T31]  ? __pfx_ext4_dirty_inode+0x10/0x10
[  852.065107][   T31]  ext4_dirty_inode+0xd9/0x130
[  852.075219][   T31]  ? rcu_is_watching+0x12/0xc0
[  852.081250][   T31]  __mark_inode_dirty+0x1eb/0xe50
[  852.092046][   T31]  generic_update_time+0xcf/0xf0
[  852.097318][   T31]  file_update_time+0x17d/0x1c0
[  852.102195][   T31]  ext4_page_mkwrite+0x35e/0x1750
[  852.112951][   T31]  ? __pfx_ext4_page_mkwrite+0x10/0x10
[  852.118736][   T31]  do_page_mkwrite+0x171/0x380
[  852.123531][   T31]  do_pte_missing+0x29c/0x3fb0
[  852.132796][   T31]  ? __handle_mm_fault+0x1010/0x2a40
[  852.138457][   T31]  __handle_mm_fault+0x103d/0x2a40
[  852.143608][   T31]  ? __pfx___handle_mm_fault+0x10/0x10
[  852.153900][   T31]  ? lock_vma_under_rcu+0x47d/0x970
[  852.161103][   T31]  ? lock_vma_under_rcu+0x47d/0x970
[  852.173607][   T31]  handle_mm_fault+0x3fe/0xad0
[  852.179690][   T31]  do_user_addr_fault+0x60c/0x1370
[  852.184845][   T31]  exc_page_fault+0x5c/0xc0
[  852.193817][   T31]  asm_exc_page_fault+0x26/0x30
[  852.200254][   T31] RIP: 0033:0x7fa14de6eada
[  852.204695][   T31] RSP: 002b:00007fff697fa0d0 EFLAGS: 00010202
[  852.215697][   T31] RAX: 0000001b32410000 RBX: 00007fa14ece5720 RCX: 0000001b3240fff8
[  852.231327][   T31] RDX: 0000001b32020220 RSI: 0000000000000008 RDI: 00007fa14ece5720
[  852.239684][   T31] RBP: ffffffff8b6445c2 R08: 00007fa14e1b61f8 R09: 00007fa14e1a2000
[  852.252057][   T31] R10: 00007fa14cdfb008 R11: 0000000000000009 R12: 0000000000000009
[  852.260388][   T31] R13: 0000000000000165 R14: ffffffff8b644fb9 R15: 0000000000000b51
[  852.274288][   T31]  ? radix_tree_next_chunk+0x289/0xb20
[  852.283743][   T31]  ? __radix_tree_delete+0x92/0x3d0
[  852.293536][   T31]  </TASK>
[  852.296937][   T31] INFO: task syz.1.2791:17911 blocked for more than 146 seconds.
[  852.304671][   T31]       Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0
[  852.319948][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  852.331687][   T31] task:syz.1.2791      state:D stack:27320 pid:17911 tgid:17911 ppid:15611  task_flags:0x440040 flags:0x00000004
[  852.348034][   T31] Call Trace:
[  852.351344][   T31]  <TASK>
[  852.354287][   T31]  __schedule+0x116f/0x5de0
[  852.360873][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[  852.370361][   T31]  ? __pfx___schedule+0x10/0x10
[  852.375259][   T31]  ? find_held_lock+0x2b/0x80
[  852.381793][   T31]  ? schedule+0x2d7/0x3a0
[  852.393577][   T31]  schedule+0xe7/0x3a0
[  852.399400][   T31]  io_schedule+0xbf/0x130
[  852.403764][   T31]  bit_wait_io+0x15/0xe0
[  852.411383][   T31]  __wait_on_bit+0x62/0x180
[  852.417568][   T31]  ? __pfx_bit_wait_io+0x10/0x10
[  852.422541][   T31]  out_of_line_wait_on_bit+0xd9/0x110
[  852.431912][   T31]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[  852.440778][   T31]  ? __pfx_wake_bit_function+0x10/0x10
[  852.449511][   T31]  do_get_write_access+0x93d/0x12a0
[  852.454764][   T31]  jbd2_journal_get_write_access+0x1d6/0x280
[  852.462616][   T31]  __ext4_journal_get_write_access+0x6a/0x340
[  852.473340][   T31]  ext4_reserve_inode_write+0x1be/0x320
[  852.480631][   T31]  __ext4_mark_inode_dirty+0x197/0x870
[  852.490066][   T31]  ? trace_kmem_cache_alloc+0x28/0xc0
[  852.495478][   T31]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[  852.509264][   T31]  ? rcu_is_watching+0x12/0xc0
[  852.514404][   T31]  ? trace_jbd2_handle_start+0x1a8/0x230
[  852.521953][   T31]  ? jbd2__journal_start+0xf6/0x6a0
[  852.530229][   T31]  ? __ext4_journal_start_sb+0x195/0x690
[  852.538534][   T31]  ? __ext4_journal_start_sb+0x19e/0x690
[  852.544220][   T31]  ? ext4_dirty_inode+0xa1/0x130
[  852.553276][   T31]  ? __pfx_ext4_dirty_inode+0x10/0x10
[  852.560833][   T31]  ext4_dirty_inode+0xd9/0x130
[  852.565632][   T31]  ? rcu_is_watching+0x12/0xc0
[  852.575183][   T31]  __mark_inode_dirty+0x1eb/0xe50
[  852.582018][   T31]  generic_update_time+0xcf/0xf0
[  852.590893][   T31]  file_update_time+0x17d/0x1c0
[  852.597486][   T31]  ext4_page_mkwrite+0x35e/0x1750
[  852.602553][   T31]  ? __pfx_ext4_page_mkwrite+0x10/0x10
[  852.613790][   T31]  ? __pfx_filemap_map_pages+0x10/0x10
[  852.621224][   T31]  ? pte_alloc_one+0x2b1/0x380
[  852.634081][   T31]  do_page_mkwrite+0x171/0x380
[  852.640580][   T31]  do_pte_missing+0x29c/0x3fb0
[  852.645374][   T31]  ? do_raw_spin_unlock+0x172/0x230
[  852.654634][   T31]  ? __pmd_alloc+0x3c2/0x870
[  852.662345][   T31]  __handle_mm_fault+0x103d/0x2a40
[  852.672491][   T31]  ? __pfx___handle_mm_fault+0x10/0x10
[  852.679748][   T31]  ? lock_vma_under_rcu+0x47d/0x970
[  852.684987][   T31]  ? lock_vma_under_rcu+0x47d/0x970
[  852.693624][   T31]  handle_mm_fault+0x3fe/0xad0
[  852.700775][   T31]  do_user_addr_fault+0x60c/0x1370
[  852.709989][   T31]  exc_page_fault+0x5c/0xc0
[  852.714538][   T31]  asm_exc_page_fault+0x26/0x30
[  852.725654][   T31] RIP: 0033:0x7f87bd66547b
[  852.732529][   T31] RSP: 002b:00007ffca9bc5640 EFLAGS: 00010246
[  852.741681][   T31] RAX: 00000000003ffde8 RBX: 0000000000000000 RCX: 0000000000000000
[  852.752048][   T31] RDX: 0000001b32120000 RSI: 0000000000400000 RDI: 00007f87bd898d50
[  852.763383][   T31] RBP: 0000000000000000 R08: 0000000000000004 R09: 0000000000040000
[  852.778531][   T31] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  852.789162][   T31] R13: 00000000000927c0 R14: 00000000000a890c R15: 00007ffca9bc58f0
[  852.801480][   T31]  </TASK>
[  852.804542][   T31] INFO: task syz.4.2792:17912 blocked for more than 147 seconds.
[  852.814181][   T31]       Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0
[  852.830624][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  852.841702][   T31] task:syz.4.2792      state:D stack:28632 pid:17912 tgid:17912 ppid:16400  task_flags:0x440040 flags:0x00000004
[  852.858048][   T31] Call Trace:
[  852.861439][   T31]  <TASK>
[  852.864389][   T31]  __schedule+0x116f/0x5de0
[  852.874266][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[  852.884765][   T31]  ? __pfx___schedule+0x10/0x10
[  852.891291][   T31]  ? find_held_lock+0x2b/0x80
[  852.900093][   T31]  ? schedule+0x2d7/0x3a0
[  852.904480][   T31]  schedule+0xe7/0x3a0
[  852.911095][   T31]  io_schedule+0xbf/0x130
[  852.915491][   T31]  bit_wait_io+0x15/0xe0
[  852.923149][   T31]  __wait_on_bit+0x62/0x180
[  852.929334][   T31]  ? __pfx_bit_wait_io+0x10/0x10
[  852.934306][   T31]  out_of_line_wait_on_bit+0xd9/0x110
[  852.946023][   T31]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[  852.952061][   T31]  ? __pfx_wake_bit_function+0x10/0x10
[  852.966521][   T31]  do_get_write_access+0x93d/0x12a0
[  852.971789][   T31]  jbd2_journal_get_write_access+0x1d6/0x280
[  852.984718][   T31]  __ext4_journal_get_write_access+0x6a/0x340
[  852.992167][   T31]  ext4_reserve_inode_write+0x1be/0x320
[  853.003013][   T31]  __ext4_mark_inode_dirty+0x197/0x870
[  853.008773][   T31]  ? trace_kmem_cache_alloc+0x28/0xc0
[  853.014177][   T31]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[  853.025367][   T31]  ? rcu_is_watching+0x12/0xc0
[  853.031900][   T31]  ? trace_jbd2_handle_start+0x1a8/0x230
[  853.041878][   T31]  ? jbd2__journal_start+0xf6/0x6a0
[  853.050353][   T31]  ? __ext4_journal_start_sb+0x195/0x690
[  853.061186][   T31]  ? __ext4_journal_start_sb+0x19e/0x690
[  853.067180][   T31]  ? ext4_dirty_inode+0xa1/0x130
[  853.072154][   T31]  ? __pfx_ext4_dirty_inode+0x10/0x10
[  853.081220][   T31]  ext4_dirty_inode+0xd9/0x130
[  853.089727][   T31]  ? rcu_is_watching+0x12/0xc0
[  853.094522][   T31]  __mark_inode_dirty+0x1eb/0xe50
[  853.103999][   T31]  generic_update_time+0xcf/0xf0
[  853.111315][   T31]  file_update_time+0x17d/0x1c0
[  853.118530][   T31]  ext4_page_mkwrite+0x35e/0x1750
[  853.123596][   T31]  ? __pfx_ext4_page_mkwrite+0x10/0x10
[  853.132003][   T31]  ? __pfx_filemap_map_pages+0x10/0x10
[  853.140187][   T31]  ? pte_alloc_one+0x2b1/0x380
[  853.144995][   T31]  do_page_mkwrite+0x171/0x380
[  853.152440][   T31]  do_pte_missing+0x29c/0x3fb0
[  853.162617][   T31]  ? do_raw_spin_unlock+0x172/0x230
[  853.170214][   T31]  ? __pmd_alloc+0x3c2/0x870
[  853.174854][   T31]  __handle_mm_fault+0x103d/0x2a40
[  853.182623][   T31]  ? __pfx___handle_mm_fault+0x10/0x10
[  853.192215][   T31]  ? lock_vma_under_rcu+0x47d/0x970
[  853.200866][   T31]  ? lock_vma_under_rcu+0x47d/0x970
[  853.211101][   T31]  handle_mm_fault+0x3fe/0xad0
[  853.218319][   T31]  do_user_addr_fault+0x60c/0x1370
[  853.223471][   T31]  exc_page_fault+0x5c/0xc0
[  853.230680][   T31]  asm_exc_page_fault+0x26/0x30
[  853.235567][   T31] RIP: 0033:0x7f8ee966547b
[  853.242535][   T31] RSP: 002b:00007ffd0aa68a20 EFLAGS: 00010246
[  853.252087][   T31] RAX: 00000000003ffde8 RBX: 0000000000000000 RCX: 0000000000000000
[  853.262469][   T31] RDX: 0000001b2c720000 RSI: 0000000000400000 RDI: 00007f8ee9898d50
[  853.275910][   T31] RBP: 0000000000000000 R08: 0000000000000004 R09: 0000000000040000
[  853.283925][   T31] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  853.297325][   T31] R13: 00000000000927c0 R14: 00000000000a8a01 R15: 00007ffd0aa68cd0
[  853.310253][   T31]  </TASK>
[  853.313354][   T31] 
[  853.313354][   T31] Showing all locks held in the system:
[  853.324093][   T31] 6 locks held by kworker/u8:0/12:
[  853.332439][   T31]  #0: ffff8881412e4148 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[  853.344930][   T31]  #1: ffffc90000117d18 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[  853.361733][   T31]  #2: ffff88814db540e0 (&type->s_umount_key#32){++++}-{4:4}, at: super_trylock_shared+0x1e/0xf0
[  853.372860][   T31]  #3: ffff88814db56b98 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: do_writepages+0x1b2/0x820
[  853.393072][   T31]  #4: ffff888030758950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410
[  853.403827][   T31]  #5: ffff88807d323e38 (&ei->i_data_sem){++++}-{4:4}, at: ext4_map_blocks+0x355/0x1390
[  853.419928][   T31] 1 lock held by khungtaskd/31:
[  853.424821][   T31]  #0: ffffffff8e3bf440 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x36/0x1c0
[  853.441402][   T31] 3 locks held by syz-executor/5816:
[  853.446984][   T31]  #0: ffff8880344e6588 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370
[  853.460736][   T31]  #1: ffff88814db54518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380
[  853.470723][   T31]  #2: ffff888030758950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410
[  853.484970][   T31] 2 locks held by kworker/u8:23/11914:
[  853.493468][   T31]  #0: ffff8880b8539f18 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x29/0x130
[  853.512472][   T31]  #1: ffff8880b8523c48 (&per_cpu_ptr(group->pcpu, cpu)->seq){-.-.}-{0:0}, at: psi_task_switch+0x2c1/0x8e0
[  853.525449][   T31] 1 lock held by syz.0.2451/16154:
[  853.535149][   T31] 1 lock held by syz.2.2630/17143:
[  853.541660][   T31] 3 locks held by syz.5.2784/17873:
[  853.551594][   T31]  #0: ffff888075296948 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370
[  853.562048][   T31]  #1: ffff88814db54518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380
[  853.575542][   T31]  #2: ffff888030758950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410
[  853.589633][   T31] 2 locks held by getty/17892:
[  853.597802][   T31]  #0: ffff888031c020a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80
[  853.614020][   T31]  #1: ffffc900043d52f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x41b/0x14f0
[  853.624626][   T31] 3 locks held by syz.3.2790/17906:
[  853.635355][   T31]  #0: ffff888034b5c6c8 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370
[  853.650421][   T31]  #1: ffff88814db54518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380
[  853.661328][   T31]  #2: ffff888030758950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410
[  853.680552][   T31] 3 locks held by syz.1.2791/17911:
[  853.686148][   T31]  #0: ffff888032e66d08 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370
[  853.701489][   T31]  #1: ffff88814db54518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380
[  853.712862][   T31]  #2: ffff888030758950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410
[  853.728839][   T31] 3 locks held by syz.4.2792/17912:
[  853.734076][   T31]  #0: ffff888030458948 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370
[  853.750662][   T31]  #1: ffff88814db54518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380
[  853.762992][   T31]  #2: ffff888030758950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410
[  853.776148][   T31] 
[  853.778497][   T31] =============================================
[  853.778497][   T31] 
[  853.791422][   T31] NMI backtrace for cpu 1
[  853.791448][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[  853.791482][   T31] Tainted: [U]=USER
[  853.791489][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  853.791503][   T31] Call Trace:
[  853.791511][   T31]  <TASK>
[  853.791520][   T31]  dump_stack_lvl+0x116/0x1f0
[  853.791552][   T31]  nmi_cpu_backtrace+0x27b/0x390
[  853.791576][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  853.791610][   T31]  nmi_trigger_cpumask_backtrace+0x29c/0x300
[  853.791636][   T31]  watchdog+0xf70/0x12c0
[  853.791669][   T31]  ? __pfx_watchdog+0x10/0x10
[  853.791694][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[  853.791723][   T31]  ? __kthread_parkme+0x19e/0x250
[  853.791750][   T31]  ? __pfx_watchdog+0x10/0x10
[  853.791776][   T31]  kthread+0x3c2/0x780
[  853.791805][   T31]  ? __pfx_kthread+0x10/0x10
[  853.791831][   T31]  ? __pfx_kthread+0x10/0x10
[  853.791857][   T31]  ? __pfx_kthread+0x10/0x10
[  853.791884][   T31]  ? __pfx_kthread+0x10/0x10
[  853.791917][   T31]  ? rcu_is_watching+0x12/0xc0
[  853.791939][   T31]  ? __pfx_kthread+0x10/0x10
[  853.791968][   T31]  ret_from_fork+0x45/0x80
[  853.791998][   T31]  ? __pfx_kthread+0x10/0x10
[  853.792026][   T31]  ret_from_fork_asm+0x1a/0x30
[  853.792071][   T31]  </TASK>
[  853.792079][   T31] Sending NMI from CPU 1 to CPUs 0:
[  853.932901][    C0] NMI backtrace for cpu 0
[  853.932923][    C0] CPU: 0 UID: 0 PID: 16154 Comm: syz.0.2451 Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[  853.932957][    C0] Tainted: [U]=USER
[  853.932965][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  853.932979][    C0] RIP: 0010:sha256_transform_rorx+0x748/0x1120
[  853.933013][    C0] Code: 02 c4 42 25 00 dc c5 a5 fe f0 45 31 e6 45 89 cc 45 21 dc 44 09 e6 44 01 f2 44 01 fa 01 f2 48 8d 35 cd f8 57 0c c5 45 fe 0c 3e <c5> 7d 7f 4c 3c 60 89 d6 c4 63 7b f0 e8 19 c4 63 7b f0 f0 0b 44 03
[  853.933036][    C0] RSP: 0018:ffffc90003b471c0 EFLAGS: 00000217
[  853.933055][    C0] RAX: 00000000c0983cce RBX: 0000000088905335 RCX: 00000000f1025cd5
[  853.933070][    C0] RDX: 0000000016cb75c3 RSI: ffffffff8dcd53e0 RDI: 0000000000000100
[  853.933085][    C0] RBP: ffffc90003b473e0 R08: 00000000af3d8c61 R09: 000000005b0c62ea
[  853.933101][    C0] R10: 00000000999d374e R11: 00000000ab4e0338 R12: 000000000b0c0228
[  853.933116][    C0] R13: 00000000f8bac982 R14: 00000000b01a69b5 R15: 000000009fe8a5d7
[  853.933132][    C0] FS:  00007f536e92d6c0(0000) GS:ffff8881249ed000(0000) knlGS:0000000000000000
[  853.933155][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  853.933178][    C0] CR2: 000055bf9eed9600 CR3: 000000003269e000 CR4: 00000000003526f0
[  853.933193][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  853.933207][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  853.933222][    C0] Call Trace:
[  853.933230][    C0]  <TASK>
[  853.933264][    C0]  ? __pfx_sha256_transform_rorx+0x10/0x10
[  853.933292][    C0]  lib_sha256_base_do_update.isra.0+0x130/0x150
[  853.933322][    C0]  ? __pfx_sha256_transform_rorx+0x10/0x10
[  853.933348][    C0]  _sha256_update+0xbe/0xf0
[  853.933374][    C0]  ima_calc_file_hash_tfm+0x300/0x3d0
[  853.933410][    C0]  ? __pfx_ima_calc_file_hash_tfm+0x10/0x10
[  853.933461][    C0]  ? stack_trace_save+0x8e/0xc0
[  853.933484][    C0]  ? ima_alloc_tfm+0x21a/0x2e0
[  853.933514][    C0]  ? generic_fillattr+0x6bf/0x940
[  853.933541][    C0]  ima_calc_file_hash+0x1ba/0x490
[  853.933578][    C0]  ima_collect_measurement+0x897/0xa40
[  853.933604][    C0]  ? __pfx_ima_collect_measurement+0x10/0x10
[  853.933636][    C0]  ? trace_contention_end+0xdd/0x130
[  853.933665][    C0]  ? __mutex_lock+0x1ca/0xb90
[  853.933694][    C0]  ? is_bad_inode+0xd/0x40
[  853.933722][    C0]  ? xattr_resolve_name+0x27b/0x3f0
[  853.933757][    C0]  ? vfs_getxattr_alloc+0xec/0x340
[  853.933793][    C0]  ? ima_get_hash_algo+0x27c/0x400
[  853.933822][    C0]  ? __pfx_ima_get_hash_algo+0x10/0x10
[  853.933855][    C0]  ? process_measurement+0x11fa/0x23e0
[  853.933886][    C0]  process_measurement+0x11fa/0x23e0
[  853.933922][    C0]  ? __pfx_process_measurement+0x10/0x10
[  853.933953][    C0]  ? __lock_acquire+0x5ca/0x1ba0
[  853.933981][    C0]  ? init_file+0x93/0x4c0
[  853.934004][    C0]  ? alloc_empty_file+0x73/0x1e0
[  853.934030][    C0]  ? hugetlb_file_setup+0x4cd/0x620
[  853.934058][    C0]  ? ksys_mmap_pgoff+0x189/0x5c0
[  853.934087][    C0]  ? __x64_sys_mmap+0x125/0x190
[  853.934129][    C0]  ima_file_mmap+0x1b1/0x1d0
[  853.934165][    C0]  ? __pfx_ima_file_mmap+0x10/0x10
[  853.934201][    C0]  security_mmap_file+0x88c/0x990
[  853.934229][    C0]  vm_mmap_pgoff+0xec/0x450
[  853.934261][    C0]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  853.934291][    C0]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  853.934319][    C0]  ? hugetlbfs_get_inode+0x31f/0x730
[  853.934349][    C0]  ksys_mmap_pgoff+0x1c8/0x5c0
[  853.934382][    C0]  __x64_sys_mmap+0x125/0x190
[  853.934405][    C0]  do_syscall_64+0xcd/0x230
[  853.934435][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  853.934459][    C0] RIP: 0033:0x7f536db8e969
[  853.934477][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  853.934513][    C0] RSP: 002b:00007f536e92d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  853.934533][    C0] RAX: ffffffffffffffda RBX: 00007f536ddb5fa0 RCX: 00007f536db8e969
[  853.934549][    C0] RDX: 00004000000000df RSI: 0004000000200004 RDI: 0000000000000000
[  853.934564][    C0] RBP: 00007f536dc10ab1 R08: 0000000000000402 R09: 0000300000000000
[  853.934579][    C0] R10: 0000000000040eb2 R11: 0000000000000246 R12: 0000000000000000
[  853.934593][    C0] R13: 0000000000000001 R14: 00007f536ddb5fa0 R15: 00007ffe96b4c1f8
[  853.934614][    C0]  </TASK>
[  853.937444][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[  853.937466][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Tainted: G     U              6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[  853.937500][   T31] Tainted: [U]=USER
[  853.937509][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  853.937522][   T31] Call Trace:
[  853.937531][   T31]  <TASK>
[  853.937540][   T31]  dump_stack_lvl+0x3d/0x1f0
[  853.937572][   T31]  panic+0x71c/0x800
[  853.937603][   T31]  ? __pfx_panic+0x10/0x10
[  853.937630][   T31]  ? preempt_schedule_thunk+0x16/0x30
[  853.937668][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  853.937700][   T31]  ? preempt_schedule_thunk+0x16/0x30
[  853.937734][   T31]  ? watchdog+0xdda/0x12c0
[  853.937761][   T31]  ? watchdog+0xdcd/0x12c0
[  853.937792][   T31]  watchdog+0xdeb/0x12c0
[  853.937823][   T31]  ? __pfx_watchdog+0x10/0x10
[  853.937848][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[  853.937878][   T31]  ? __kthread_parkme+0x19e/0x250
[  853.937905][   T31]  ? __pfx_watchdog+0x10/0x10
[  853.937938][   T31]  kthread+0x3c2/0x780
[  853.937967][   T31]  ? __pfx_kthread+0x10/0x10
[  853.937994][   T31]  ? __pfx_kthread+0x10/0x10
[  853.938021][   T31]  ? __pfx_kthread+0x10/0x10
[  853.938048][   T31]  ? __pfx_kthread+0x10/0x10
[  853.938082][   T31]  ? rcu_is_watching+0x12/0xc0
[  853.938103][   T31]  ? __pfx_kthread+0x10/0x10
[  853.938133][   T31]  ret_from_fork+0x45/0x80
[  853.938163][   T31]  ? __pfx_kthread+0x10/0x10
[  853.938192][   T31]  ret_from_fork_asm+0x1a/0x30
[  853.938234][   T31]  </TASK>
[  854.509586][   T31] Kernel Offset: disabled
[  854.513898][   T31] Rebooting in 86400 seconds..