last executing test programs:

5.955570639s ago: executing program 1 (id=728):
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x22d02, 0x0)
mmap$auto(0x7, 0x28009, 0x4000000000e2, 0x18, 0x401, 0x8000)
r0 = socket(0x1, 0x5, 0x0)
r1 = socket(0x11, 0x2, 0x0)
mmap$auto(0x0, 0x1000, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
r2 = io_uring_setup$auto(0x4, 0x0)
mmap$auto(0x0, 0x400008, 0x10000, 0x9b72, r2, 0x8000)
mmap$auto(0x9, 0x7fff, 0x100000000, 0x9b72, 0xffffffffffffffff, 0x3)
socket(0x15, 0x1, 0xfffffffd)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffff7, 0x8000)
socket(0x11, 0x2, 0x73)
pipe2$auto(0x0, 0x0)
io_uring_setup$auto(0x7e1b, 0x0)
socket(0x2, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x11, 0x2, 0x14)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptyd2\x00', 0x0, 0x0)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptyqc\x00', 0x4080, 0x0)
ioctl$auto_TIOCSETD2(r3, 0x5423, 0x0)
write$auto(0x3, 0x0, 0xfffffdef)
read$auto(r1, &(0x7f0000000040)='}[$%%%\x00', 0x1000)
getsockname$auto(r0, 0x0, 0x0)
io_uring_setup$auto(0x59, 0x0)
r4 = openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000d00), 0x60100, 0x0)
read$auto_vhci_fops_hci_vhci(r4, &(0x7f0000000d40)=""/16, 0x10)

4.97162649s ago: executing program 1 (id=731):
mmap$auto(0xfffffffffffffffb, 0x2, 0x100000021, 0x400009b75, 0xea8a, 0x8000)
r0 = socket(0x2, 0x3, 0x2)
setsockopt$auto(0x3, 0x0, 0xc8, 0xfffffffffffffffc, 0x4)
mmap$auto(0xd737, 0x2000000002020009, 0xf1, 0xcde, 0xfffffffffffffffa, 0x80000000001)
open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100)
r1 = open(&(0x7f0000000040)='./file0\x00', 0x1ebe02, 0x61)
mmap$auto(0x0, 0x11, 0xdf, 0x9b72, r1, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0x81, 0x0, 0x0, &(0x7f00000002c0)={[0x3dcbd9be, 0x80000001, 0xb7, 0x1, 0x948b, 0x3, 0x15f4de0a, 0x5, 0x8000, 0x64, 0x80000001, 0xfffffffffffffffe, 0x6d3f, 0x9, 0x2, 0x8]}, 0x0)
write$auto(r2, 0x0, 0x100000a3d9)
process_vm_readv$auto(0x0, 0x0, 0x6, &(0x7f0000000100)={0x0, 0x40000002001243}, 0x3, 0xfffffffffffffffc)
io_uring_setup$auto(0x58, 0x0)
r3 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/usbmon8\x00', 0x640, 0x0)
socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000)
setsockopt$auto(0x3, 0x10000000084, 0x80, 0x0, 0x208)
read$auto_mon_fops_binary_mon_bin(r3, 0x0, 0x2f)
close_range$auto(0x2, 0xa, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2000, 0x0)
r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/afs/cells\x00', 0x2000, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r5, &(0x7f0000000040)=""/229, 0xe5)
read$auto(r4, 0x0, 0x20)
syz_genetlink_get_family_id$auto_mac802154_hwsim(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$auto_MAC802154_HWSIM_CMD_SET_EDGE(r0, &(0x7f0000000700)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x8000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x40010)
r6 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f00000005c0)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r6, &(0x7f0000000200)={0x0, 0x7}, 0x3)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty26\x00', 0x40002, 0x300)

4.614616029s ago: executing program 1 (id=735):
r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000340)='/dev/bus/usb/004/001\x00', 0x201, 0x0)
ioctl$auto_USBDEVFS_DISCONNECT_CLAIM(r0, 0x8108551b, &(0x7f0000000540)={0x0, 0x7, "7636151d9b02ba4db36efb8adaeb205490055c8160618a793bc0ef02be6b53ab874d163664e76626154e19585266b4280ac77b4953f03208c9d0d81de29f87c95b44caf734b5f2e59f69b0fe4a5494f48d5300607cd488d34e391975e1aa7743568be0d261cfaa4f9b6174c390954234be5d151787f0c9c66dc02b5a5a89a56682d58f67fb6efb456c4569af2df4c3e2fe0f9223c43727d728cc77183d2ceb9a4b6797048cd4d028ae420b7deabcd6b4a367d87ec44bbe2522223a45c3c8c504c1bae057da778451ca39ef604724c73e5f577cda46ab42dd3392401d1c9bf8ba15c8299371980687c12430b63a504592439e0580a6f2a60bed1efbb23b7596b3"})
r1 = openat$auto_evm_xattr_ops_evm_secfs(0xffffffffffffff9c, &(0x7f0000000140), 0x189000, 0x0)
readv$auto(r1, &(0x7f00000018c0)={&(0x7f0000001880), 0x1}, 0x9)
r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x20800, 0x0)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x20000, 0x0)
ioctl$auto_TCSBRK2(r3, 0x5409, 0x0)
ioctl$auto_SNDCTL_SYNTH_INFO(r2, 0xc08c5102, &(0x7f0000000100)="b5af8abdd024aade135d0e8ab37e685a53d96119acf0e47ed653d56bfef3f56abe0c98ab")
r4 = accept4$auto(r1, &(0x7f0000000100)=@vsock={0x28, 0x0, 0x2710, @my=0x1}, &(0x7f00000000c0), 0x0)
close_range$auto(0x0, r4, 0x2)
sched_setaffinity$auto(0xffffffffffffffff, 0x4, &(0x7f0000000040)=0x2)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000004180)='/dev/snd/controlC1\x00', 0x28180, 0x0)
select$auto(0x4, &(0x7f0000000180)={[0x4, 0x6, 0x5, 0x6, 0x1b1, 0x0, 0xc6df, 0x4, 0x6, 0x9, 0xfffffffffffffffb, 0x2, 0xff4, 0x0, 0xffffffffcf28aa11, 0x4924ec02]}, &(0x7f0000000200)={[0x8, 0x0, 0xc79, 0x0, 0xd33f, 0x0, 0x5, 0x8000, 0xfffffffffffffffc, 0x8000000000000000, 0x7, 0x6, 0x8, 0xd, 0x1]}, &(0x7f0000000280)={[0x40, 0x9, 0x2, 0x3, 0x5, 0x7, 0x9, 0x8000, 0x6, 0x1, 0x5, 0x8, 0x2a, 0x800, 0x2]}, &(0x7f0000000080)={0xfffffffffc000000, 0x423})
r5 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000380), r4)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_REG(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r7, 0x301, 0x70bd2d, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x4000)
r8 = socket(0x1d, 0x2, 0x7)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000180)={'vcan0\x00', <r9=>0x0})
connect$auto(0x3, &(0x7f00000018c0)=@can={0x1d, r9}, 0x18)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000180)={'veth1_to_team\x00', <r11=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r11, @ANYRES32], 0x24}, 0x1, 0x0, 0x0, 0x404c0c0}, 0x80)
ioctl$auto_UDMABUF_CREATE(r4, 0x40187542, &(0x7f0000000480)={r8, 0xb96, 0x2, 0x8000000000000000})
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
shmctl$auto_SHM_UNLOCK(0x7f, 0xc, &(0x7f0000000440)={{0x1ff, 0x0, 0xffffffffffffffff, 0x2, 0x1, 0x0, 0x1000}, 0x8, 0x3ff, 0xfffffffffffff464, 0x6, @inferred, @raw=0x4, 0x1, 0x0, 0x0, 0x0})
readv$auto(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x40}, 0x6)
sendmsg$auto_NETDEV_CMD_QSTATS_GET(r4, &(0x7f0000000440)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000400)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="00022bbd7000fedbdf250c0000000891000000a5dcd470ce9fecdac4c6530ee33660f9d4529d7417e144ee41fe0eb94082e66995a2fec8bd47426d5422c773b60e25093260979de4e2ade9cc668af543bcddb66c8d092d121f312ee38c75249f55badeaaf87165b0920623", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=r9, @ANYBLOB="0c000400090000000000000008000100", @ANYRES32=r11, @ANYBLOB], 0x38}, 0x1, 0x0, 0x0, 0x20080040}, 0x20001)

3.785588419s ago: executing program 3 (id=736):
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x82000, 0x0)
socket(0xa, 0x1, 0x100)
mmap$auto(0x0, 0x4, 0xffffffffffffffff, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
openat$auto_bm_entry_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/fs/binfmt_misc/syz1\x00', 0x400, 0x0)
unshare$auto(0x40000080)
setsockopt$auto(0x400000000000003, 0x2d, 0x1c, 0x0, 0x3)
r0 = socket(0x10, 0x2, 0xc)
r1 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000002c0), 0xffffffffffffffff)
mmap$auto(0x0, 0x2000c, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r2 = socket(0x10, 0x2, 0xc)
r3 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$auto_CTRL_CMD_GETPOLICY(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)={0x24, r3, 0x10, 0x70bd2c, 0x25dfdbfa, {0xa, 0x0, 0xa00}, [@CTRL_ATTR_FAMILY_NAME={0x0, 0x2, '%/\x00\xe2\xa8\\A\xe7Z\x02q[\xcb\xc0\xb0N\\\xdc\xdf(\xff\xfee\xc3\x17py\x9f\xda\xb88\xaa\xf6q*\x82\xe6(\xc9\xe6B\x9aJ82\v-i(c\x92{\xd7D\xb4\xf7\xb4\t\xb2\x98b\xd3%vu\xd4\xfd\t\xd7J\x83\x19)\xb1\x00[\xdd(\xef?\xc5\xae(\x84\xefjx\xfe\xdb\xeb\xbceaAw\x1eW\x12Bh\xc3y2\xc9\x0e\xc9\x99#\x92j\x97\xbbDOi\x03\xa4\x11\x02F<y\xba\xf7\x8c5\x82\x7fF\xef\xb3{\xe9rw\xd8\x110\xbdC\xe3\x1c`4v\x10\xf3\xe6_=`\xd3\xd1\xe21\xc0\xcc#\xadV\xff#V]\x95\xcf\xaf\xc7\xa9*d\xda\x18\xc0\xc0\x1c'}, @CTRL_ATTR_FAMILY_ID={0x6, 0x1, 0x6}]}, 0x51}, 0x1, 0x0, 0x0, 0x24050803}, 0x10004010)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="18"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_CTRL_CMD_GETPOLICY(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB='q\x00\x00\x00', @ANYRES16=r1, @ANYBLOB], 0xf8}}, 0x10044010)

3.600493744s ago: executing program 1 (id=739):
r0 = socket(0x28, 0x5, 0x0)
sendmmsg$auto(r0, &(0x7f0000000080)={{0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x4}, 0x7}, 0x3, 0x0)
ioperm$auto(0x3, 0x1, 0x8)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D3\x00', 0x2841, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$auto(0x10, r1, 0x4, 0x7ff)
bind$auto(r0, &(0x7f0000000080)=@in={0x28, 0x4e20, @multicast2}, 0x68)

3.514207519s ago: executing program 2 (id=740):
truncate$auto(0x0, 0xfffffffffffffff9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mprotect$auto(0x1000, 0x400000, 0x4)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
fcntl$auto(r0, 0xf, 0x2)
syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket(0x2b, 0x1, 0x1)
ioctl$auto(r1, 0x8983, 0x4)

3.341253374s ago: executing program 1 (id=741):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/input/mouse0\x00', 0x100, 0x0)
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000140)='/dev/input/mice\x00', 0x80800, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
read$auto(r0, 0x0, 0x1f40)
r1 = openat$auto_nsim_dev_trap_fa_cookie_fops_dev(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim3/trap_flow_action_cookie\x00', 0x2202, 0x0)
write$auto(r1, 0x0, 0x1)
read$auto(r1, &(0x7f0000000100)='\x00', 0x8)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0xf2, 0xdf, 0xeb1, 0xf6f6, 0x8000)
socket(0x80000000000000a, 0x2, 0x0)
r2 = socket(0xa, 0x2, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r3 = signalfd4$auto(0xffffffff, 0x0, 0x8, 0x0)
setsockopt$auto_SO_PEEK_OFF(r2, 0x1ff, 0x2a, 0x0, 0xa0)
read$auto(r3, 0x0, 0x80000000006)
r4 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
ioctl$auto_SNDCTL_SEQ_CTRLRATE(r4, 0xc0045103, &(0x7f0000001940)="de66d023e0")
signalfd$auto(r3, 0x0, 0x8)
r5 = socket(0x2, 0x801, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
getsockopt$auto(r5, 0x84, 0x6d, 0x0, &(0x7f0000000280)=0x1000c0)
r6 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r6, &(0x7f0000000200)={0x0, 0x7}, 0x3)
openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x228c0, 0x0)
unshare$auto(0x40000080)

3.298073932s ago: executing program 3 (id=742):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$auto_SO_SNDTIMEO_NEW(r0, 0x1, 0x43, &(0x7f00000000c0)='gtp\x00', &(0x7f0000000180)=0x7)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000003fc0), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xd4, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
fanotify_init$auto(0x65, 0x2)
socket(0x1d, 0x2, 0x2)
connect$auto(0x3, 0x0, 0x55)
socket(0x10, 0x3, 0x6)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = open(&(0x7f0000000100)='.\x00', 0x40000, 0x0)
getdents64$auto(r3, 0x0, 0x400)
clone$auto(0x100000020003b49, 0x80000000002, 0x0, 0x0, 0x4)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8000, 0x0)
io_uring_setup$auto(0x59, &(0x7f0000000080)={0x2, 0xd, 0x2, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0x6, 0x6, 0xf, 0x29f, 0x100, 0x7f, 0x101, 0x6, 0x2}, {0x100, 0x1, 0x52, 0x2, 0x1, 0x40, 0x76c5, 0x8, 0x100000000}})
landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x400, 0x7}, 0x9, 0x0)
landlock_add_rule$auto(r4, 0x1, 0x0, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0x38}, 0x4, 0x0, 0x1, 0x9}, 0x4}, 0x8, 0x1f00)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x0, 0x100000000008000)
socket(0x2, 0x1, 0x106)
bind$auto(0x3, 0x0, 0x6a)
connect$auto(0x3, 0x0, 0x54)
sendmsg$auto_CTRL_CMD_GETFAMILY2(r1, &(0x7f00000040c0)={0x0, 0x0, &(0x7f0000004080)={&(0x7f0000000300)=ANY=[@ANYBLOB="a03263ec42366acb4cb81b506804579bf6c34bf8294fdd38625168d2cda6ed2ad4d8bd8eca1a87fc5d4a0086072fed58d7f975a036a8dc7b7b32ee99e8552507b290438a275e299a4b2d7d2e6ddd953fad472b58c65769be782829a2753d688af9ae1cbf1762e87c2f8459cb0a38d6a04402d057d6e9586901d4fab98b2f13b304bbca21e35f89bd832a3685ee39f20b211cc0c0005eb95c58e85b408e4c610f07dd5d6c4d5198cb15f8", @ANYRES16=r2, @ANYBLOB="01002cbd7000fddbdf25030000000f00020076657468305f766c616e0000"], 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000050)
sendmsg$auto_CTRL_CMD_GETPOLICY(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000100)={&(0x7f00000001c0)={0x108, r2, 0x4, 0x70bd2d, 0x25dfdbfd, {}, [@CTRL_ATTR_FAMILY_ID={0x6, 0x1, 0x6}, @CTRL_ATTR_FAMILY_NAME={0x8, 0x2, '.]\x87\x00'}, @CTRL_ATTR_FAMILY_NAME={0x5, 0x2, '\x00'}, @CTRL_ATTR_FAMILY_ID={0x6}, @CTRL_ATTR_FAMILY_ID={0x6, 0x1, 0x9}, @CTRL_ATTR_OP={0x8, 0xa, 0x6}, @CTRL_ATTR_FAMILY_NAME={0xac, 0x2, '\x00R\x9f(!6\r\x12\xf8\x15\xd2\xe6z8H\x16\x03\x00\x00\x00\x13\x1d\x89\xd6\x97\xb1\x0f\x1d\xe1\x1bD\x12\x94\x94)\x99\xf6\xc4\x9c\x86\xdbt\xfb<f\xc3C$\x03\x06VG/|\x90y\x19\xad*\x94\xda\xde\xbbE\x81\xc0\xae\xab\x8eL\xc6s\xafx\xbbl\xc1R\x9a\ae\xb9\x13\xe9\x00\x00\x00\x00\x00\x00\xf9\x1b|zU\x80\bF~_+(\x8do\xdc.\x9fVZ\x86\xa7&A\xb6d\xfe\x19\xc7o\x96\x80\xe8\x16\xa9\x93\x06Uo=\x96v\xb7\xbe\x84\xabV\x86v|\xd3\x1f(:\xc295\xf5\xb0\xb8\x1f\xb3\xb7[7\x80.M\xcbK\\\rS\x00\x00\x00\x00\x00\x00'}, @CTRL_ATTR_FAMILY_ID={0x6, 0x1, 0x8}, @CTRL_ATTR_FAMILY_ID={0x6, 0x1, 0xec2}, @CTRL_ATTR_FAMILY_ID={0x6, 0x1, 0xfffa}]}, 0x108}, 0x1, 0x0, 0x0, 0x90}, 0x80)

3.078406133s ago: executing program 3 (id=745):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
socket(0x18, 0xa, 0x1)
socket(0xa, 0x2, 0x0)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55)
sendmmsg$auto(0xffffffffffffffff, &(0x7f00000000c0)={{0x0, 0x6, 0x0, 0xa7, &(0x7f0000000040)='~', 0x8000, 0x1}, 0x8}, 0x1, 0x9)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0xff, 0x0, 0x1, 0x3}, 0xed7138c}, 0xb, 0xfe)

2.857337839s ago: executing program 0 (id=746):
r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000340)='/dev/bus/usb/004/001\x00', 0x201, 0x0)
ioctl$auto_USBDEVFS_DISCONNECT_CLAIM(r0, 0x8108551b, &(0x7f0000000540)={0x0, 0x7, "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"})
r1 = openat$auto_evm_xattr_ops_evm_secfs(0xffffffffffffff9c, &(0x7f0000000140), 0x189000, 0x0)
readv$auto(r1, &(0x7f00000018c0)={&(0x7f0000001880), 0x1}, 0x9)
r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x20800, 0x0)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x20000, 0x0)
ioctl$auto_TCSBRK2(r3, 0x5409, 0x0)
ioctl$auto_SNDCTL_SYNTH_INFO(r2, 0xc08c5102, &(0x7f0000000100)="b5af8abdd024aade135d0e8ab37e685a53d96119acf0e47ed653d56bfef3f56abe0c98ab")
r4 = accept4$auto(r1, &(0x7f0000000100)=@vsock={0x28, 0x0, 0x2710, @my=0x1}, &(0x7f00000000c0), 0x0)
close_range$auto(0x0, r4, 0x2)
sched_setaffinity$auto(0xffffffffffffffff, 0x4, &(0x7f0000000040)=0x2)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000004180)='/dev/snd/controlC1\x00', 0x28180, 0x0)
select$auto(0x4, &(0x7f0000000180)={[0x4, 0x6, 0x5, 0x6, 0x1b1, 0x0, 0xc6df, 0x4, 0x6, 0x9, 0xfffffffffffffffb, 0x2, 0xff4, 0x0, 0xffffffffcf28aa11, 0x4924ec02]}, &(0x7f0000000200)={[0x8, 0x0, 0xc79, 0x0, 0xd33f, 0x0, 0x5, 0x8000, 0xfffffffffffffffc, 0x8000000000000000, 0x7, 0x6, 0x8, 0xd, 0x1]}, &(0x7f0000000280)={[0x40, 0x9, 0x2, 0x3, 0x5, 0x7, 0x9, 0x8000, 0x6, 0x1, 0x5, 0x8, 0x2a, 0x800, 0x2]}, &(0x7f0000000080)={0xfffffffffc000000, 0x423})
r5 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000380), r4)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_REG(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r7, 0x301, 0x70bd2d, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x4000)
r8 = socket(0x1d, 0x2, 0x7)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000180)={'vcan0\x00', <r9=>0x0})
connect$auto(0x3, &(0x7f00000018c0)=@can={0x1d, r9}, 0x18)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000180)={'veth1_to_team\x00', <r11=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r11, @ANYRES32], 0x24}, 0x1, 0x0, 0x0, 0x404c0c0}, 0x80)
ioctl$auto_UDMABUF_CREATE(r4, 0x40187542, &(0x7f0000000480)={r8, 0xb96, 0x2, 0x8000000000000000})
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
shmctl$auto_SHM_UNLOCK(0x7f, 0xc, &(0x7f0000000440)={{0x1ff, 0x0, 0xffffffffffffffff, 0x2, 0x1, 0x0, 0x1000}, 0x8, 0x3ff, 0xfffffffffffff464, 0x6, @inferred, @raw=0x4, 0x1, 0x0, 0x0, 0x0})
r12 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/pagemap\x00', 0x0, 0x0)
readv$auto(r12, &(0x7f0000000400)={0x0, 0x40}, 0x6)
sendmsg$auto_NETDEV_CMD_QSTATS_GET(r4, &(0x7f0000000440)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000400)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="00022bbd7000fedbdf250c0000000891000000a5dcd470ce9fecdac4c6530ee33660f9d4529d7417e144ee41fe0eb94082e66995a2fec8bd47426d5422c773b60e25093260979de4e2ade9cc668af543bcddb66c8d092d121f312ee38c75249f55badeaaf87165b0920623", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=r9, @ANYBLOB="0c000400090000000000000008000100", @ANYRES32=r11, @ANYBLOB], 0x38}, 0x1, 0x0, 0x0, 0x20080040}, 0x20001)

2.771383795s ago: executing program 3 (id=747):
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000340)='.\x00', 0x40400, 0xd8)
fchmod$auto(r0, 0x9)
setreuid$auto(0x4, 0x8)
rmdir$auto(&(0x7f0000000300)='./cgroup\x00')

2.683165104s ago: executing program 2 (id=748):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/input/mouse0\x00', 0x100, 0x0)
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000140)='/dev/input/mice\x00', 0x80800, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
read$auto(r0, 0x0, 0x1f40)
r1 = openat$auto_nsim_dev_trap_fa_cookie_fops_dev(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim3/trap_flow_action_cookie\x00', 0x2202, 0x0)
write$auto(r1, 0x0, 0x1)
read$auto(r1, &(0x7f0000000100)='\x00', 0x8)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0xf2, 0xdf, 0xeb1, 0xf6f6, 0x8000)
socket(0x80000000000000a, 0x2, 0x0)
r2 = socket(0xa, 0x2, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r3 = signalfd4$auto(0xffffffff, 0x0, 0x8, 0x0)
setsockopt$auto_SO_PEEK_OFF(r2, 0x1ff, 0x2a, 0x0, 0xa0)
read$auto(r3, 0x0, 0x80000000006)
r4 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
ioctl$auto_SNDCTL_SEQ_CTRLRATE(r4, 0xc0045103, &(0x7f0000001940)="de66d023e0")
signalfd$auto(r3, 0x0, 0x8)
r5 = socket(0x2, 0x801, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
getsockopt$auto(r5, 0x84, 0x6d, 0x0, &(0x7f0000000280)=0x1000c0)
r6 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r6, &(0x7f0000000200)={0x0, 0x7}, 0x3)
openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x228c0, 0x0)
unshare$auto(0x40000080)

2.657419391s ago: executing program 3 (id=749):
openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x28082, 0x0)
sendmsg$auto_NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000940)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000900)={&(0x7f00000008c0)=ANY=[@ANYBLOB, @ANYRES16], 0x20}, 0x1, 0x0, 0x0, 0x24008010}, 0x51)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x9, 0x3, 0x16, 0x93f, 0x1ffe0, 0x3, 0x1006, 0x2, 0x0, 0x5, 0xfff, 0xf, 0xb0, 0x1, 0x5, 0x7, 0x9, 0x7, 0x0, 0x0, 0x0, 0x200, 0xfffffffe, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3043, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000000000, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x11, 0x8000000000000001]}, 0x1fe, 0x10081)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa503}, 0x800}, 0x7, 0x4008)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/graphics/fbcon/rotate\x00', 0x10b842, 0x0)
write$auto(r1, &(0x7f0000000040)='\xce*+#\x00', 0x80)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/dummy_hcd.7/usb8/bConfigurationValue\x00', 0x10b042, 0x0)
sendfile$auto(r2, r2, 0x0, 0x2)
r3 = socket(0x1d, 0x2, 0x6)
setsockopt$auto(r3, 0x6a, 0x3, 0x0, 0x4)
mmap$auto(0x0, 0x40009, 0xde, 0x9b72, 0x7, 0x28000)
capset$auto(0x0, 0x0)
socket(0xa, 0xa, 0x88)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000280)={'team0\x00'})
bpf$auto(0x0, 0x0, 0xf)

2.303254103s ago: executing program 1 (id=750):
close_range$auto(0xffffffffffffffff, 0xfffffffffffff000, 0x2)
socket(0x10, 0x2, 0x0)
socket(0x2, 0x1, 0x106)
socket(0x2, 0x1, 0x106)
r0 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
read$auto_force_wakeup_fops_hci_vhci(r0, 0x0, 0x0)
read$auto_rfcomm_sock_debugfs_fops_(r0, &(0x7f0000000000)=""/79, 0x4f)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x29, 0x2, 0x0)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card0/pcm0p/oss\x00', 0xaa102, 0x0)
write$auto(r1, &(0x7f0000000100)='\x00\x00\x00\x00\x00\x00\x00x \xec(\x1d\x98\xe9\xc4\xe8\xfc@6=\xab\xf4\x89\x01\x93\xdc\x19\xffv\'\xa1\xd5\x14\x06S\xae\xadB}\xdf]\x99\xc9\x9f4\xbb\xc5\x81\x9d\x8ak\xdeB\xcbd\xd3\x05\xe4P\x84\xcb\xb8#\x13\nYU\'\x95R\xc8\x9d\xb7*\xe0.\xd2\xdf\x1b\x88D\x8c{k\xcec\xe1\xa2j\xec\xc9\xd2\x98\x94I\x102h\x06\x8c\xa2\xc8\x8a7\xb7t', 0x7ef)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x82040, 0x0)
socket(0xa, 0x1, 0x100)
ioperm$auto(0x7, 0x5ad2, 0xc)
pread64$auto(0xffffffffffffffff, 0x0, 0x0, 0x8000000000000001)
socket(0x2, 0x1, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_ETHTOOL_MSG_RSS_GET(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="09032dbd7000fcdbdf25260000000800070065000000d208570c74b962a9ba9f9fe197ec0e44cf98e73c7611ca1bc4c0202d4a00cf67f690afa85241898eadbbbff7f132858093d9feb9218fff3f0abec94a6ea4ee13254c04ee0eee09dfbe68c4249ab151dbd9335f0c168475eec8dfe2f49e5b0c7eaa"], 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x10)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0x12, 0x0, 0x0, &(0x7f0000000240)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x400000000000948f, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x3, 0x1, 0x9, 0x1]}, 0x0)
write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0)
ioctl$auto(0xc8, 0x400454cb, 0x5)
r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/kernel/kexec_load_disabled\x00', 0x202, 0x0)
sendfile$auto(r4, r4, 0x0, 0x0)
mmap$auto(0xc, 0x20009, 0x5, 0x14, r4, 0x0)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)

2.177437364s ago: executing program 0 (id=751):
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x82000, 0x0)
socket(0xa, 0x1, 0x100)
mmap$auto(0x0, 0x4, 0xffffffffffffffff, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
openat$auto_bm_entry_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/fs/binfmt_misc/syz1\x00', 0x400, 0x0)
unshare$auto(0x40000080)
setsockopt$auto(0x400000000000003, 0x2d, 0x1c, 0x0, 0x3)
r0 = socket(0x10, 0x2, 0xc)
r1 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000002c0), 0xffffffffffffffff)
mmap$auto(0x0, 0x2000c, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r2 = socket(0x10, 0x2, 0xc)
r3 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$auto_CTRL_CMD_GETPOLICY(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)={0x24, r3, 0x10, 0x70bd2c, 0x25dfdbfa, {0xa, 0x0, 0xa00}, [@CTRL_ATTR_FAMILY_NAME={0x0, 0x2, '%/\x00\xe2\xa8\\A\xe7Z\x02q[\xcb\xc0\xb0N\\\xdc\xdf(\xff\xfee\xc3\x17py\x9f\xda\xb88\xaa\xf6q*\x82\xe6(\xc9\xe6B\x9aJ82\v-i(c\x92{\xd7D\xb4\xf7\xb4\t\xb2\x98b\xd3%vu\xd4\xfd\t\xd7J\x83\x19)\xb1\x00[\xdd(\xef?\xc5\xae(\x84\xefjx\xfe\xdb\xeb\xbceaAw\x1eW\x12Bh\xc3y2\xc9\x0e\xc9\x99#\x92j\x97\xbbDOi\x03\xa4\x11\x02F<y\xba\xf7\x8c5\x82\x7fF\xef\xb3{\xe9rw\xd8\x110\xbdC\xe3\x1c`4v\x10\xf3\xe6_=`\xd3\xd1\xe21\xc0\xcc#\xadV\xff#V]\x95\xcf\xaf\xc7\xa9*d\xda\x18\xc0\xc0\x1c'}, @CTRL_ATTR_FAMILY_ID={0x6, 0x1, 0x6}]}, 0x51}, 0x1, 0x0, 0x0, 0x24050803}, 0x10004010)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="18"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_CTRL_CMD_GETPOLICY(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB='q\x00\x00\x00', @ANYRES16=r1, @ANYBLOB], 0xf8}}, 0x10044010)

1.508499418s ago: executing program 2 (id=752):
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000340)='.\x00', 0x40400, 0xd8)
fchmod$auto(r0, 0x9)
setreuid$auto(0x4, 0x8)
rmdir$auto(&(0x7f0000000300)='./cgroup\x00') (fail_nth: 1)

1.499800999s ago: executing program 0 (id=753):
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup\x00', 0x0, 0x148)
fchmod$auto(r0, 0x9)
setreuid$auto(0x4, 0x8)
rmdir$auto(&(0x7f0000000300)='./cgroup\x00')

1.3957709s ago: executing program 3 (id=754):
set_mempolicy$auto(0x5, &(0x7f00000001c0)=0x8, 0x81)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r0 = io_uring_setup$auto(0x6, 0x0)
madvise$auto(0x0, 0x200007, 0x19)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/sequencer2\x00', 0x80091, 0x0)
ioctl$auto(0x3, 0x80000541b, 0x38)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x880000, 0x3e0000000000, 0x3ff57696, 0x9b72, r0, 0x8000000000008000)
sendfile$auto(r0, r0, &(0x7f0000000040)=0x6, 0x4)
r1 = fsopen$auto(0x0, 0x1)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mbind$auto(0x2000, 0xa000000000000000, 0x100000000, 0x0, 0x5, 0x2)
write$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f00000000c0)="8dc9fc604f721b4b9b6fb75391e7e39755cc3cb395bbeb92c3807417bf1ff9a25a49c991b8928467fa6892bd2134d2b370b5483301f7f22130c3ebecaa9465c0c6c5641ad82adc8f2b12ca943d4de3658dd514b1fb698e93894b0dd0b3d306c32943eadea51e79b452099c1418bfbec96103e85c850857da852c9c4412a8d0c6907db9ef3ca7895f954c47b90d47baca32a1a2be6dd5c144bd78062790ea1b7ec15c4bfd2e5ef3aea5d501aa35cfe9bff7eee7c2f4", 0xb5)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
openat$auto_fuse_conn_congestion_threshold_ops_control(0xffffffffffffff9c, &(0x7f00000000c0), 0x42000, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual/block/nbd6/queue/scheduler\x00', 0x1a1842, 0x0)
write$auto(r2, &(0x7f0000000000)='9\x00d1L\xff\x15\xba\xa17=(\xc1\xf8\xff\xff\v\xb5^\xa1/[', 0x8)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
r3 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f00000005c0), 0x2000, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r3, 0x40345410, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_INFO(r3, 0x80e85411, 0x0)
mlockall$auto(0x7)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/cpu/cpu0/topology/cluster_cpus_list\x00', 0x20000, 0x0)
preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x2000000005)
write$auto_sg_fops_sg(r1, 0x0, 0x0)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000180), r0)
madvise$auto(0x9, 0x7, 0x54d)
socketpair$auto(0x7, 0x1fffffe, 0x315, 0x0)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)

1.328012893s ago: executing program 2 (id=755):
r0 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}}, 0x40000)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'})
rt_sigqueueinfo$auto(0x0, 0xc74, &(0x7f0000000000)={@siginfo_0_0={0xf9, 0x14, 0x7e73, @_timer={0x0, 0x80000001, @sival_ptr=0x0, 0x5}}})
r1 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x80086601, 0x0)
mmap$auto(0x2, 0x32a, 0x200, 0x11, r0, 0x8000)
r2 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec18\x00', 0x900, 0x0)
ioctl$auto_CEC_S_MODE(r2, 0x40046109, &(0x7f0000002c40)=0xf0)
ioctl$auto_CEC_S_MODE(r2, 0x40046109, 0x0)
r3 = socket(0x11, 0x3, 0x9)
sendmmsg$auto(r3, &(0x7f00000001c0)={{&(0x7f0000000000), 0xa013, &(0x7f0000000100)={&(0x7f0000000140), 0x49}, 0x4, &(0x7f00000000c0), 0x5, 0x1}, 0x1}, 0x5, 0x100)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NFC_CMD_STOP_POLL(r4, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000280)={&(0x7f00000001c0)={0x7c, 0x0, 0x8, 0x70bd27, 0x25dfdbfb, {}, [@NFC_ATTR_VENDOR_DATA={0x3d, 0x1f, "ae9d609771169df5d2db180966cfcc853fe3f9bd2cf13663268afbd9c4bfe17481a56310d52971978c3291e2d59366478070377f16622608ff"}, @NFC_ATTR_TARGET_INDEX={0x8, 0x4, 0x6}, @NFC_ATTR_COMM_MODE={0x5, 0xa, 0x2}, @NFC_ATTR_LLC_PARAM_RW={0x5, 0x10, 0xe3}, @NFC_ATTR_LLC_PARAM_MIUX={0x6, 0x11, 0x1}, @NFC_ATTR_TARGET_INDEX={0x8, 0x4, 0x40}]}, 0x7c}, 0x1, 0x0, 0x0, 0x40040}, 0x20000800)
bpf$auto(0x1, &(0x7f0000000000)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xf)
mmap$auto(0x0, 0x40009, 0xdb, 0x9b72, 0x7, 0x27ffe)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0xa, 0x801, 0x84)
socket(0x23, 0x5, 0x2)
setsockopt$auto(0x1, 0x1, 0xa, &(0x7f0000000000)='\xe1', 0xbb)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto(0x1, 0x541b, 0x8)
r5 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0)
ioctl$auto_UI_DEV_SETUP(r5, 0x405c5503, &(0x7f0000000040)={{0x90, 0xf2cf, 0x1ff, 0x4}, "6a034a07c7b82d90b69a39e32576f893fba86c9dd051a0094a3866691c9100fefbbabea6ef9368c7996e841f3f1561d4992f726b0a6c36b0b2fd1678e816203df562367fe6596824588a2e3d84ba165f", 0x8})
ioctl$auto_UI_DEV_CREATE(r5, 0x5501, 0x0)
ioctl$auto_UI_DEV_SETUP(r5, 0x405c5503, 0x0)
ioctl$auto_FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000140)="58fcb282bcbc38bfaef257e019406ea6c445cd4f7f7662ac0f8834baa918d5b3cea133243c4f2b9a39e536b67f5a1a2bfdf589da2b1c980e1ce53883444996d1721d7f3ae627c6c604000000000000007910fbc02d899a")

1.215362963s ago: executing program 0 (id=756):
mmap$auto(0x0, 0x400008, 0xdf, 0xf1, 0x2, 0x8000)
socket(0x2, 0x3, 0xa)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x7ff, 0x0) (fail_nth: 2)

561.373978ms ago: executing program 0 (id=757):
close_range$auto(0x2, 0x8, 0x0) (async)
io_uring_setup$auto(0x6, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
r1 = socket(0x2, 0x5, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/tcp_allowed_congestion_control\x00', 0x0, 0x0)
mmap$auto(0x0, 0x2000004020009, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0x2, 0x1, 0x0)
sysfs$auto(0x2, 0x0, 0x0) (async)
epoll_create$auto(0x4)
epoll_ctl$auto(0x5, 0x1, 0x8000000000000000, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/gretap0/carrier\x00', 0xa140, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000140)=""/122, 0x7a)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
epoll_ctl$auto(0x5, 0x1, r3, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73) (async)
socket(0x2, 0x1, 0x84) (async)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) (async)
sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1a000}, 0x9, 0x0, 0x2, 0xb}, 0x3dbfffff}, 0x5, 0x311) (async)
shutdown$auto(0x200000003, 0x2) (async)
r4 = prctl$auto(0x23, 0x6, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
close_range$auto(0x2, 0x8, 0x0) (async)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[], 0x68}, 0x1, 0x0, 0x0, 0x20044004}, 0x48090) (async)
close_range$auto(0x2, 0x8, 0x0)
r5 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000380), r4)
sendmsg$auto_BATADV_CMD_GET_HARDIF(r4, &(0x7f0000000440)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)=ANY=[@ANYBLOB="f0793477", @ANYRES16=r5, @ANYBLOB="10002cbd7000fcdbdf250500000008003200040000000a000900bbbbbbbbbbbb0000"], 0x28}, 0x1, 0x0, 0x0, 0x20000800}, 0x1)

480.263705ms ago: executing program 2 (id=758):
openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, 0x0, 0x2dc08f24db163610, 0x0)
mmap$auto(0x0, 0x40009, 0xdd, 0x9b72, 0x7, 0x28000)
r0 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000380)='/dev/fuse\x00', 0x700, 0x0)
r1 = epoll_create$auto(0x3e)
epoll_ctl$auto(r1, 0x1, r0, 0x0)
openat$auto_drm_edid_fops_drm_debugfs(0xffffffffffffff9c, 0x0, 0x40901, 0x0)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x1, 0x6, 0x0, 0x1, 0x368e, 0x2, {0x100000000, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x11008000, 0x0, 0x7, 0x81, 0xdfffffffffff628e, 0xeec, 0x10000, 0x808})
socket(0x2b, 0x1, 0x1)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000400)='/dev/audio1\x00', 0xa3db)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x4a000, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000)
openat$auto_uprobe_events_ops_trace_uprobe(0xffffffffffffff9c, 0x0, 0x12000, 0x0)
socket(0x3, 0x5, 0x5)
r2 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/mtd0ro\x00', 0x2000, 0x0)
sendmsg$auto_SMC_NETLINK_DISABLE_SEID(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x880}, 0x810)
r3 = open(&(0x7f00000001c0)=':,\x00\xbd\x80\xd6\x002\xb37\xff\x1a\x9e99\xda\xd1v\'\xc6\xd2Fw;\x00v\xdce\xad\xf4\xdb\xc7\x946\xe4\f\x9el]L+\x06\x130V\x1b,d\x8f\xa0\xabDUdk\xac\x82\\tyQ\xd8j\a\x1a[\xdb\x96\x1f{2\x04\xc5Y\xc1@\x0e\xeeWZ\x94N\xd4\xc8q=\x9b\xd1\x7fR3\xb6`\x00\xb3\xe5|1\xba\r\x85\x89\xfe\xed\xe1\xad`\x92\xc7\x9c\xd7\xd8\x15\t&\xb7\xfc\x82\xc4\xd3J\xae\x810\x19\x14\t\xc2\xa5V\xaa\x8d\x04\xf5\xf3\xd6\xd1\xe9k\xaf\x1a\xc6u\x96\xf7\xaa\x84\x92\x995m\xf9O\xc0\x1e\xa05\xdb\xa5\xae\r\x06\xe6\xc3\xd0\xf8:\xf7\xc5u\x91\xf8\x91\xee\xd8y\xb8\xc1)\xad\x05\xeb\xe9\xab\r\x9a@\aa(\x1a\xa4\xc1\xcf\\\xf0\xc3~\xbbd\x94\x9c\x02\xd4\xfc\xd2`\xd9\x83{-\x81zY\\\xac!#\xea\xba\x86)\xe9\xbc\x82\xf6\xd2\x7f\xdb\xa1\xd5\x89|\xa0O\xfcqZ\x85@A\x90\"\x11L\xdd\xa5\x9f\xf5\x00', 0x200000, 0x42)
mmap$auto(0xa1b0, 0xffffffffffffffff, 0xf4, 0x7297, r3, 0x4)
syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)
mknod$auto(0x0, 0x20e9, 0x103)
unlink$auto(&(0x7f0000000640)=':,\x00\xbd\x80\xd6\x002\xb37\xff\x1a\x9e99\xda\xd1v\'\xc6\xd2Fw;\x00v\xdce\xad\xf4\xdb\xc7\x946\xe4\f\x9el]L+\x06\x130V\x1b,d\x8f\xa0\xabDUdk\xac\x82\\tyQ\xd8j\a\x1a[\xdb\x96\x1f{2\x04\xc5Y\xc1@\x0e\xeeWZ\x94N\xd4\xc8q=\x9b\xd1\x7fR3\xb6`\x00\xb3\xe5|1\xba\r\x85\x89\xfe\xed\xe1\xad`\x92\xc7\x9c\xd7\xd8\x15\t&\xb7\xfc\x82\xc4\xd3J\xae\x810\x19\x14\t\xc2\xa5V\xaa\x8d\x04\xf5\xf3\xd6\xd1\xe9k\xaf\x1a\xc6u\x96\xf7\xaa\x84\x92\x995m\xf9O\xc0\x1e\xa05\xdb\xa5\xae\r\x06\xe6\xc3\xd0\xf8:\xf7\xc5u\x91\xf8\x91\xee\xd8y\xb8\xc1)\xad\x05\xeb\xe9\xab\r\x9a@\aa(\x1a\xa4\xc1\xcf\\\xf0\xc3~\xbbd\x94\x9c\x02\xd4\xfc\xd2`\xd9\x83{-\x81zY\\\xac!#\xea\xba\x86)\xe9\xbc\x82\xf6\xd2\x7f\xdb\xa1\xd5\x89|\xa0O\xfcqZ\x85@A\x90\"\x11L\xdd\xa5\x9f\xf5\x00')
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
read$auto(r2, 0x0, 0x1)
r4 = eventfd$auto(0x80)
readv$auto(r4, &(0x7f0000000380)={0x0, 0x8}, 0x4)
read$auto(r4, 0x0, 0xcc9c)
write$auto(r4, &(0x7f0000000400)='\'\x00', 0x8)
r5 = socket(0xb, 0x5, 0x0)
sendto$auto(r5, 0x0, 0x401, 0x7f, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe80fffe00"}, 0x1c)

59.979309ms ago: executing program 0 (id=759):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/input/mouse0\x00', 0x100, 0x0)
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000140)='/dev/input/mice\x00', 0x80800, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
read$auto(r0, 0x0, 0x1f40)
r1 = openat$auto_nsim_dev_trap_fa_cookie_fops_dev(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim3/trap_flow_action_cookie\x00', 0x2202, 0x0)
write$auto(r1, 0x0, 0x1)
read$auto(r1, &(0x7f0000000100)='\x00', 0x8)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0xf2, 0xdf, 0xeb1, 0xf6f6, 0x8000)
socket(0x80000000000000a, 0x2, 0x0)
r2 = socket(0xa, 0x2, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r3 = signalfd4$auto(0xffffffff, 0x0, 0x8, 0x0)
setsockopt$auto_SO_PEEK_OFF(r2, 0x1ff, 0x2a, 0x0, 0xa0)
read$auto(r3, 0x0, 0x80000000006)
r4 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
ioctl$auto_SNDCTL_SEQ_CTRLRATE(r4, 0xc0045103, &(0x7f0000001940)="de66d023e0")
signalfd$auto(r3, 0x0, 0x8)
r5 = socket(0x2, 0x801, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
getsockopt$auto(r5, 0x84, 0x6d, 0x0, &(0x7f0000000280)=0x1000c0)
r6 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r6, &(0x7f0000000200)={0x0, 0x7}, 0x3)
openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x228c0, 0x0)
unshare$auto(0x40000080)

0s ago: executing program 2 (id=760):
r0 = socket(0x2, 0x829fedbadf3c95bd, 0x0)
r1 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_L2TP_CMD_SESSION_CREATE(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000440)=ANY=[@ANYBLOB="b681dd81a03fe67b4bde1c000000", @ANYRES16=r1, @ANYBLOB="040026bd7000fddbdf25050000000800090006000000"], 0x1c}}, 0x4040)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
readv$auto(r0, &(0x7f0000000240)={&(0x7f0000000380)="48e834c6980a5ee0ba196763d0a3cabc18a3f2c5023729879c602df1f00a10bef440fd55e2d469ed044ab30f98baac24eb6ac3f203e82702152093455fb8bc1094715ea80d0b9eeaf17f1fb27d8ec60d2e40cc54d53ee1f785d6a6a1e124b0b44e33e353b388b7304bfa2fda48ec60daf2327b3025c14dcbef81d86a3ed81fc50a35688a0fb7563486c45798f59d523bf930d7b25949d38076e1187e9602b0e09e820f6adba640440f94b2b8", 0x2}, 0x800)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
socket(0x2, 0x1, 0x0)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x8000}, 0x4000804)
lstat$auto(0x0, &(0x7f0000000180)={0x5, 0x2000000000010, 0x9, 0x2, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x40000000000f, 0x7, 0x40000401, 0x8001, 0x9, 0xffffffff80000000, 0x7, 0x7})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
unshare$auto(0x40000080)
ioctl$auto_OTPERASE(r2, 0x400c4d19, &(0x7f0000000280)={0xbc98, 0x1, 0x7c})
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
munmap$auto(0x20001000, 0x7)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000000), r2)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x24044011}, 0x800)
sendmmsg$auto(0x3, &(0x7f00000000c0)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40090)

kernel console output (not intermixed with test programs):

7268] name failslab, interval 1, probability 0, space 0, times 0
[  186.943525][ T7268] CPU: 0 UID: 0 PID: 7268 Comm: syz.2.341 Tainted: G     U              6.15.0-syzkaller-11173-g546b1c9e93c2 #0 PREEMPT(full) 
[  186.943558][ T7268] Tainted: [U]=USER
[  186.943565][ T7268] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  186.943578][ T7268] Call Trace:
[  186.943585][ T7268]  <TASK>
[  186.943593][ T7268]  dump_stack_lvl+0x16c/0x1f0
[  186.943619][ T7268]  should_fail_ex+0x512/0x640
[  186.943646][ T7268]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  186.943682][ T7268]  should_failslab+0xc2/0x120
[  186.943706][ T7268]  __kmalloc_cache_noprof+0x6a/0x3e0
[  186.943739][ T7268]  ? device_create_groups_vargs+0x8a/0x270
[  186.943779][ T7268]  device_create_groups_vargs+0x8a/0x270
[  186.943817][ T7268]  device_create+0xed/0x130
[  186.943851][ T7268]  ? __pfx_device_create+0x10/0x10
[  186.943889][ T7268]  ? do_raw_spin_lock+0x12c/0x2b0
[  186.943928][ T7268]  ? is_console_locked+0x9/0x20
[  186.943955][ T7268]  ? con_is_visible+0x65/0x150
[  186.943976][ T7268]  ? csi_J+0x54a/0xad0
[  186.944008][ T7268]  vcs_make_sysfs+0x32/0x80
[  186.944031][ T7268]  vc_allocate+0x501/0x880
[  186.944061][ T7268]  ? __pfx_vc_allocate+0x10/0x10
[  186.944115][ T7268]  con_install+0xa1/0x600
[  186.944147][ T7268]  ? __pfx_con_install+0x10/0x10
[  186.944180][ T7268]  ? __pfx_con_install+0x10/0x10
[  186.944210][ T7268]  tty_init_dev.part.0+0x9c/0x500
[  186.944244][ T7268]  tty_open+0xa50/0xf90
[  186.944280][ T7268]  ? __pfx_tty_open+0x10/0x10
[  186.944312][ T7268]  ? chrdev_open+0x10b/0x6a0
[  186.944338][ T7268]  ? __pfx_tty_open+0x10/0x10
[  186.944368][ T7268]  chrdev_open+0x234/0x6a0
[  186.944389][ T7268]  ? __pfx_apparmor_file_open+0x10/0x10
[  186.944413][ T7268]  ? __pfx_chrdev_open+0x10/0x10
[  186.944437][ T7268]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  186.944477][ T7268]  do_dentry_open+0x741/0x1c10
[  186.944514][ T7268]  ? __pfx_chrdev_open+0x10/0x10
[  186.944543][ T7268]  vfs_open+0x82/0x3f0
[  186.944573][ T7268]  path_openat+0x1de4/0x2cb0
[  186.944619][ T7268]  ? __pfx_path_openat+0x10/0x10
[  186.944656][ T7268]  ? __lock_acquire+0xb8a/0x1c90
[  186.944691][ T7268]  do_filp_open+0x20b/0x470
[  186.944727][ T7268]  ? __pfx_do_filp_open+0x10/0x10
[  186.944785][ T7268]  ? alloc_fd+0x471/0x7d0
[  186.944827][ T7268]  do_sys_openat2+0x11b/0x1d0
[  186.944855][ T7268]  ? __pfx_do_sys_openat2+0x10/0x10
[  186.944901][ T7268]  __x64_sys_openat+0x174/0x210
[  186.944931][ T7268]  ? __pfx___x64_sys_openat+0x10/0x10
[  186.944973][ T7268]  do_syscall_64+0xcd/0x490
[  186.944999][ T7268]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  186.945023][ T7268] RIP: 0033:0x7f01d0f8e969
[  186.945040][ T7268] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  186.945062][ T7268] RSP: 002b:00007f01cedf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  186.945084][ T7268] RAX: ffffffffffffffda RBX: 00007f01d11b6080 RCX: 00007f01d0f8e969
[  186.945099][ T7268] RDX: 0000000000040002 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  186.945114][ T7268] RBP: 00007f01d1010ab1 R08: 0000000000000000 R09: 0000000000000000
[  186.945128][ T7268] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000
[  186.945141][ T7268] R13: 0000000000000000 R14: 00007f01d11b6080 R15: 00007fffa0127778
[  186.945171][ T7268]  </TASK>
[  187.041704][ T7274] FAULT_INJECTION: forcing a failure.
[  187.041704][ T7274] name failslab, interval 1, probability 0, space 0, times 0
[  187.041779][ T7274] CPU: 1 UID: 0 PID: 7274 Comm: syz.3.344 Tainted: G     U              6.15.0-syzkaller-11173-g546b1c9e93c2 #0 PREEMPT(full) 
[  187.041818][ T7274] Tainted: [U]=USER
[  187.041826][ T7274] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  187.041841][ T7274] Call Trace:
[  187.041850][ T7274]  <TASK>
[  187.041860][ T7274]  dump_stack_lvl+0x16c/0x1f0
[  187.041891][ T7274]  should_fail_ex+0x512/0x640
[  187.041923][ T7274]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  187.041972][ T7274]  should_failslab+0xc2/0x120
[  187.042001][ T7274]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  187.042044][ T7274]  ? lockdep_init_map_type+0x5c/0x280
[  187.042081][ T7274]  ? seq_open+0x55/0x170
[  187.042117][ T7274]  seq_open+0x55/0x170
[  187.042149][ T7274]  kernfs_fop_open+0x59f/0xda0
[  187.042184][ T7274]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  187.042228][ T7274]  do_dentry_open+0x741/0x1c10
[  187.042273][ T7274]  ? __pfx_kernfs_fop_open+0x10/0x10
[  187.042315][ T7274]  vfs_open+0x82/0x3f0
[  187.042351][ T7274]  path_openat+0x1de4/0x2cb0
[  187.042406][ T7274]  ? __pfx_path_openat+0x10/0x10
[  187.042450][ T7274]  ? __lock_acquire+0xb8a/0x1c90
[  187.042495][ T7274]  do_filp_open+0x20b/0x470
[  187.042538][ T7274]  ? __pfx_do_filp_open+0x10/0x10
[  187.042625][ T7274]  ? alloc_fd+0x471/0x7d0
[  187.042696][ T7274]  do_sys_openat2+0x11b/0x1d0
[  187.042732][ T7274]  ? __pfx_do_sys_openat2+0x10/0x10
[  187.042784][ T7274]  __x64_sys_openat+0x174/0x210
[  187.042820][ T7274]  ? __pfx___x64_sys_openat+0x10/0x10
[  187.042872][ T7274]  do_syscall_64+0xcd/0x490
[  187.042905][ T7274]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  187.042935][ T7274] RIP: 0033:0x7f932878e969
[  187.042957][ T7274] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  187.042984][ T7274] RSP: 002b:00007f9329613038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  187.043019][ T7274] RAX: ffffffffffffffda RBX: 00007f93289b5fa0 RCX: 00007f932878e969
[  187.043038][ T7274] RDX: 000000000010b142 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  187.043056][ T7274] RBP: 00007f9328810ab1 R08: 0000000000000000 R09: 0000000000000000
[  187.043073][ T7274] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  187.043090][ T7274] R13: 0000000000000000 R14: 00007f93289b5fa0 R15: 00007ffd89b59828
[  187.043126][ T7274]  </TASK>
[  188.045515][ T7264] tc_dump_action: action bad kind
[  188.294021][ T7268] tty tty26: ldisc open failed (-12), clearing slot 25
[  189.064060][ T7293] netlink: 16 bytes leftover after parsing attributes in process `syz.2.349'.
[  189.153921][ T7297] netlink: 93 bytes leftover after parsing attributes in process `syz.2.349'.
[  189.167083][ T7302] block nbd9: NBD_DISCONNECT
[  190.187966][ T7318] FAULT_INJECTION: forcing a failure.
[  190.187966][ T7318] name failslab, interval 1, probability 0, space 0, times 0
[  190.233491][ T7318] CPU: 1 UID: 0 PID: 7318 Comm: syz.3.355 Tainted: G     U              6.15.0-syzkaller-11173-g546b1c9e93c2 #0 PREEMPT(full) 
[  190.233538][ T7318] Tainted: [U]=USER
[  190.233547][ T7318] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  190.233563][ T7318] Call Trace:
[  190.233572][ T7318]  <TASK>
[  190.233583][ T7318]  dump_stack_lvl+0x16c/0x1f0
[  190.233625][ T7318]  should_fail_ex+0x512/0x640
[  190.233660][ T7318]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  190.233714][ T7318]  should_failslab+0xc2/0x120
[  190.233746][ T7318]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  190.233792][ T7318]  ? __pfx___might_resched+0x10/0x10
[  190.233822][ T7318]  ? alloc_vmap_area+0xdc8/0x29c0
[  190.233864][ T7318]  alloc_vmap_area+0xdc8/0x29c0
[  190.233917][ T7318]  ? __pfx_alloc_vmap_area+0x10/0x10
[  190.233964][ T7318]  __get_vm_area_node+0x1ca/0x330
[  190.234010][ T7318]  __vmalloc_node_range_noprof+0x271/0x14b0
[  190.234056][ T7318]  ? n_tty_open+0x1a/0x170
[  190.234116][ T7318]  ? do_raw_spin_unlock+0x172/0x230
[  190.234182][ T7318]  ? n_tty_open+0x1a/0x170
[  190.234240][ T7318]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  190.234284][ T7318]  ? console_unlock+0x184/0x210
[  190.234315][ T7318]  ? __pfx_console_unlock+0x10/0x10
[  190.234350][ T7318]  ? __pfx___ldsem_down_write_nested+0x10/0x10
[  190.234406][ T7318]  ? n_tty_open+0x1a/0x170
[  190.234452][ T7318]  __vmalloc_node_noprof+0xad/0xf0
[  190.234498][ T7318]  ? n_tty_open+0x1a/0x170
[  190.234545][ T7318]  ? __pfx_n_tty_open+0x10/0x10
[  190.234594][ T7318]  n_tty_open+0x1a/0x170
[  190.234649][ T7318]  ? __pfx_n_tty_open+0x10/0x10
[  190.234697][ T7318]  tty_ldisc_open+0x9c/0x120
[  190.234732][ T7318]  tty_ldisc_setup+0x40/0x100
[  190.234769][ T7318]  tty_init_dev.part.0+0x1ec/0x500
[  190.234818][ T7318]  tty_open+0xa50/0xf90
[  190.234870][ T7318]  ? __pfx_tty_open+0x10/0x10
[  190.234913][ T7318]  ? chrdev_open+0x10b/0x6a0
[  190.234950][ T7318]  ? __pfx_tty_open+0x10/0x10
[  190.234992][ T7318]  chrdev_open+0x234/0x6a0
[  190.235021][ T7318]  ? __pfx_apparmor_file_open+0x10/0x10
[  190.235054][ T7318]  ? __pfx_chrdev_open+0x10/0x10
[  190.235089][ T7318]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  190.235143][ T7318]  do_dentry_open+0x741/0x1c10
[  190.235196][ T7318]  ? __pfx_chrdev_open+0x10/0x10
[  190.235234][ T7318]  vfs_open+0x82/0x3f0
[  190.235286][ T7318]  path_openat+0x1de4/0x2cb0
[  190.235348][ T7318]  ? __pfx_path_openat+0x10/0x10
[  190.235387][ T7318]  ? __lock_acquire+0xb8a/0x1c90
[  190.235421][ T7318]  do_filp_open+0x20b/0x470
[  190.235462][ T7318]  ? __pfx_do_filp_open+0x10/0x10
[  190.235526][ T7318]  ? alloc_fd+0x471/0x7d0
[  190.235568][ T7318]  do_sys_openat2+0x11b/0x1d0
[  190.235598][ T7318]  ? __pfx_do_sys_openat2+0x10/0x10
[  190.235651][ T7318]  __x64_sys_openat+0x174/0x210
[  190.235686][ T7318]  ? __pfx___x64_sys_openat+0x10/0x10
[  190.235737][ T7318]  do_syscall_64+0xcd/0x490
[  190.235767][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  190.235794][ T7318] RIP: 0033:0x7f932878e969
[  190.235815][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  190.235843][ T7318] RSP: 002b:00007f93295f2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  190.235869][ T7318] RAX: ffffffffffffffda RBX: 00007f93289b6080 RCX: 00007f932878e969
[  190.235889][ T7318] RDX: 0000000000040002 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  190.235907][ T7318] RBP: 00007f9328810ab1 R08: 0000000000000000 R09: 0000000000000000
[  190.235925][ T7318] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000
[  190.235942][ T7318] R13: 0000000000000000 R14: 00007f93289b6080 R15: 00007ffd89b59828
[  190.235980][ T7318]  </TASK>
[  190.597912][    C1] vkms_vblank_simulate: vblank timer overrun
[  193.682659][ T7345] scsi_dev_info_list_add_str: bad dev info string ')���zD���5fk+*X��#�R8��4*�
�Vs�n�dv���qQW�}���~YrȀ-8VGDƘ���L�B�%v�†�v�}�Ypq|��?�O��[��,!��7xWDr���%�[�}�E�$3?�G����9��Ff=��l�r�GH;2L<��=��|�����8�-c��F�ո��"����[v�9�q��4��Mm�vq���k��[����(i���NDС�M��XPS��q��qX4�X`V��!;r�֍���)y]�W��zfI�H0���,�������v�{q8���שU�ܹ䑉m؛�H��T��w�C��z�-��nR%�2]��x0��5o�����Օ|3>�l�S*L���/�Cdgӑ��[C=Cw�e��m)����l#�' '��'�S���.�sHgi-��TY%ܹF��*8��nFT�H����?����i{' ''
[  195.159564][ T7366] FAULT_INJECTION: forcing a failure.
[  195.159564][ T7366] name failslab, interval 1, probability 0, space 0, times 0
[  195.248726][ T7366] CPU: 0 UID: 0 PID: 7366 Comm: syz.0.368 Tainted: G     U              6.15.0-syzkaller-11173-g546b1c9e93c2 #0 PREEMPT(full) 
[  195.248772][ T7366] Tainted: [U]=USER
[  195.248782][ T7366] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  195.248797][ T7366] Call Trace:
[  195.248806][ T7366]  <TASK>
[  195.248817][ T7366]  dump_stack_lvl+0x16c/0x1f0
[  195.248850][ T7366]  should_fail_ex+0x512/0x640
[  195.248883][ T7366]  ? __kmalloc_noprof+0xbf/0x510
[  195.248927][ T7366]  ? lsm_blob_alloc+0x68/0x90
[  195.248959][ T7366]  should_failslab+0xc2/0x120
[  195.248988][ T7366]  __kmalloc_noprof+0xd2/0x510
[  195.249036][ T7366]  lsm_blob_alloc+0x68/0x90
[  195.249071][ T7366]  security_sk_alloc+0x30/0x270
[  195.249112][ T7366]  sk_prot_alloc+0xfb/0x2a0
[  195.249148][ T7366]  sk_alloc+0x36/0xc20
[  195.249191][ T7366]  inet_create+0x3a1/0x1090
[  195.249238][ T7366]  ? inet_create+0x93/0x1090
[  195.249285][ T7366]  __sock_create+0x338/0x8d0
[  195.249327][ T7366]  smc_create+0x15d/0x2a0
[  195.249367][ T7366]  __sock_create+0x338/0x8d0
[  195.249408][ T7366]  __sys_socket+0x14d/0x260
[  195.249444][ T7366]  ? __pfx___sys_socket+0x10/0x10
[  195.249482][ T7366]  ? xfd_validate_state+0x61/0x180
[  195.249516][ T7366]  ? __pfx_do_writev+0x10/0x10
[  195.249560][ T7366]  __x64_sys_socket+0x72/0xb0
[  195.249594][ T7366]  ? lockdep_hardirqs_on+0x7c/0x110
[  195.249639][ T7366]  do_syscall_64+0xcd/0x490
[  195.249668][ T7366]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  195.249695][ T7366] RIP: 0033:0x7fad4318e969
[  195.249717][ T7366] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  195.249743][ T7366] RSP: 002b:00007fad440a8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  195.249768][ T7366] RAX: ffffffffffffffda RBX: 00007fad433b5fa0 RCX: 00007fad4318e969
[  195.249785][ T7366] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 000000000000002b
[  195.249800][ T7366] RBP: 00007fad43210ab1 R08: 0000000000000000 R09: 0000000000000000
[  195.249815][ T7366] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  195.249830][ T7366] R13: 0000000000000000 R14: 00007fad433b5fa0 R15: 00007fff790e8698
[  195.249865][ T7366]  </TASK>

syzkaller
syzkaller login: [  197.093014][ T7392] zswap: compressor  not available
[  197.099270][ T7379] Setting dangerous option i915.mitigations - tainting kernel
[  199.102441][ T7439] block nbd9: NBD_DISCONNECT
[  199.320664][ T7443] block nbd9: NBD_DISCONNECT
[  199.433586][ T1306] ieee802154 phy0 wpan0: encryption failed: -22
[  199.440035][ T1306] ieee802154 phy1 wpan1: encryption failed: -22
[  200.216207][ T7449] FAULT_INJECTION: forcing a failure.
[  200.216207][ T7449] name fail_futex, interval 1, probability 0, space 0, times 0
[  200.235767][ T7459] process 'syz.2.388' launched ':,' with NULL argv: empty string added
[  200.260626][ T7449] CPU: 1 UID: 0 PID: 7449 Comm: syz.0.386 Tainted: G     U              6.15.0-syzkaller-11173-g546b1c9e93c2 #0 PREEMPT(full) 
[  200.260673][ T7449] Tainted: [U]=USER
[  200.260683][ T7449] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  200.260700][ T7449] Call Trace:
[  200.260709][ T7449]  <TASK>
[  200.260720][ T7449]  dump_stack_lvl+0x16c/0x1f0
[  200.260758][ T7449]  should_fail_ex+0x512/0x640
[  200.260803][ T7449]  get_futex_key+0x1d0/0x1540
[  200.260841][ T7449]  ? __pfx_get_futex_key+0x10/0x10
[  200.260888][ T7449]  futex_wake+0xea/0x530
[  200.260932][ T7449]  ? __pfx_futex_wake+0x10/0x10
[  200.260977][ T7449]  ? errseq_sample+0x53/0x70
[  200.261013][ T7449]  ? file_init_path+0x4fe/0x760
[  200.261050][ T7449]  do_futex+0x1e3/0x350
[  200.261084][ T7449]  ? __pfx_do_futex+0x10/0x10
[  200.261118][ T7449]  ? fd_install+0x225/0x750
[  200.261165][ T7449]  __x64_sys_futex+0x1e0/0x4c0
[  200.261202][ T7449]  ? __sys_socket+0xac/0x260
[  200.261238][ T7449]  ? __fget_files+0x20e/0x3c0
[  200.261277][ T7449]  ? __pfx___x64_sys_futex+0x10/0x10
[  200.261312][ T7449]  ? xfd_validate_state+0x61/0x180
[  200.261361][ T7449]  do_syscall_64+0xcd/0x490
[  200.261392][ T7449]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  200.261419][ T7449] RIP: 0033:0x7fad4318e969
[  200.261442][ T7449] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  200.261468][ T7449] RSP: 002b:00007fad440a80e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  200.261494][ T7449] RAX: ffffffffffffffda RBX: 00007fad433b5fa8 RCX: 00007fad4318e969
[  200.261512][ T7449] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fad433b5fac
[  200.261537][ T7449] RBP: 00007fad433b5fa0 R08: 00007fad440a9000 R09: 0000000000000000
[  200.261556][ T7449] R10: 0000000000000006 R11: 0000000000000246 R12: 00007fad433b5fac
[  200.261573][ T7449] R13: 0000000000000000 R14: 00007fff790e85b0 R15: 00007fff790e8698
[  200.261607][ T7449]  </TASK>
[  200.492922][ T7459] FAULT_INJECTION: forcing a failure.
[  200.492922][ T7459] name failslab, interval 1, probability 0, space 0, times 0
[  200.532864][ T7459] CPU: 0 UID: 0 PID: 7459 Comm: syz.2.388 Tainted: G     U              6.15.0-syzkaller-11173-g546b1c9e93c2 #0 PREEMPT(full) 
[  200.532914][ T7459] Tainted: [U]=USER
[  200.532924][ T7459] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  200.532941][ T7459] Call Trace:
[  200.532950][ T7459]  <TASK>
[  200.532962][ T7459]  dump_stack_lvl+0x16c/0x1f0
[  200.532997][ T7459]  should_fail_ex+0x512/0x640
[  200.533032][ T7459]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  200.533089][ T7459]  should_failslab+0xc2/0x120
[  200.533119][ T7459]  __kmalloc_cache_noprof+0x6a/0x3e0
[  200.533158][ T7459]  ? devlink_fmsg_nest_common.part.0+0x48/0x1e0
[  200.533201][ T7459]  devlink_fmsg_nest_common.part.0+0x48/0x1e0
[  200.533241][ T7459]  devlink_fmsg_obj_nest_start+0xa2/0xc0
[  200.533277][ T7459]  nsim_dev_dummy_fmsg_put+0x16d/0x1e0
[  200.533321][ T7459]  devlink_health_do_dump+0x243/0x620
[  200.533364][ T7459]  devlink_health_report+0x3c9/0x9c0
[  200.533409][ T7459]  ? __pfx_devlink_health_report+0x10/0x10
[  200.533451][ T7459]  ? _copy_from_user+0x59/0xd0
[  200.533491][ T7459]  nsim_dev_health_break_write+0x166/0x210
[  200.533534][ T7459]  ? __pfx_nsim_dev_health_break_write+0x10/0x10
[  200.533589][ T7459]  full_proxy_write+0x13c/0x200
[  200.533623][ T7459]  ? __pfx_full_proxy_write+0x10/0x10
[  200.533653][ T7459]  vfs_write+0x2a0/0x1150
[  200.533701][ T7459]  ? __pfx___mutex_lock+0x10/0x10
[  200.533729][ T7459]  ? __pfx_vfs_write+0x10/0x10
[  200.533787][ T7459]  ? __fget_files+0x20e/0x3c0
[  200.533839][ T7459]  ksys_write+0x12a/0x250
[  200.533881][ T7459]  ? __pfx_ksys_write+0x10/0x10
[  200.533934][ T7459]  do_syscall_64+0xcd/0x490
[  200.533964][ T7459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  200.533992][ T7459] RIP: 0033:0x7f01d0f8e969
[  200.534014][ T7459] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  200.534041][ T7459] RSP: 002b:00007f01d1d20038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  200.534068][ T7459] RAX: ffffffffffffffda RBX: 00007f01d11b5fa0 RCX: 00007f01d0f8e969
[  200.534086][ T7459] RDX: 00000000000001ff RSI: 0000000000000000 RDI: 0000000000000005
[  200.534119][ T7459] RBP: 00007f01d1010ab1 R08: 0000000000000000 R09: 0000000000000000
[  200.534136][ T7459] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  200.534172][ T7459] R13: 0000000000000000 R14: 00007f01d11b5fa0 R15: 00007fffa0127778
[  200.534215][ T7459]  </TASK>
[  201.457327][ T7472] FAULT_INJECTION: forcing a failure.
[  201.457327][ T7472] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  201.471226][ T7472] CPU: 0 UID: 0 PID: 7472 Comm: syz.3.391 Tainted: G     U              6.15.0-syzkaller-11173-g546b1c9e93c2 #0 PREEMPT(full) 
[  201.471269][ T7472] Tainted: [U]=USER
[  201.471278][ T7472] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  201.471294][ T7472] Call Trace:
[  201.471304][ T7472]  <TASK>
[  201.471314][ T7472]  dump_stack_lvl+0x16c/0x1f0
[  201.471346][ T7472]  should_fail_ex+0x512/0x640
[  201.471387][ T7472]  _copy_from_user+0x2e/0xd0
[  201.471426][ T7472]  kern_select+0xc0/0x1e0
[  201.471478][ T7472]  ? __pfx_kern_select+0x10/0x10
[  201.471540][ T7472]  ? __pfx_ksys_write+0x10/0x10
[  201.471591][ T7472]  __x64_sys_select+0xbd/0x160
[  201.471632][ T7472]  ? do_syscall_64+0x91/0x490
[  201.471661][ T7472]  ? lockdep_hardirqs_on+0x7c/0x110
[  201.471707][ T7472]  do_syscall_64+0xcd/0x490
[  201.471745][ T7472]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  201.471775][ T7472] RIP: 0033:0x7f932878e969
[  201.471798][ T7472] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  201.471825][ T7472] RSP: 002b:00007f93295f2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017
[  201.471851][ T7472] RAX: ffffffffffffffda RBX: 00007f93289b6080 RCX: 00007f932878e969
[  201.471870][ T7472] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000009
[  201.471886][ T7472] RBP: 00007f93295f2090 R08: 0000200000000280 R09: 0000000000000000
[  201.471904][ T7472] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  201.471920][ T7472] R13: 0000000000000000 R14: 00007f93289b6080 R15: 00007ffd89b59828
[  201.471957][ T7472]  </TASK>
[  203.340318][ T7502] openvswitch: netlink: Geneve option length err (len 256, max 255).
[  203.542897][ T7506] FAULT_INJECTION: forcing a failure.
[  203.542897][ T7506] name failslab, interval 1, probability 0, space 0, times 0
[  203.592695][ T7506] CPU: 1 UID: 0 PID: 7506 Comm: syz.0.399 Tainted: G     U              6.15.0-syzkaller-11173-g546b1c9e93c2 #0 PREEMPT(full) 
[  203.592729][ T7506] Tainted: [U]=USER
[  203.592735][ T7506] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  203.592747][ T7506] Call Trace:
[  203.592754][ T7506]  <TASK>
[  203.592761][ T7506]  dump_stack_lvl+0x16c/0x1f0
[  203.592786][ T7506]  should_fail_ex+0x512/0x640
[  203.592811][ T7506]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  203.592848][ T7506]  should_failslab+0xc2/0x120
[  203.592870][ T7506]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  203.592904][ T7506]  ? __d_alloc+0x31/0xaa0
[  203.592926][ T7506]  __d_alloc+0x31/0xaa0
[  203.592947][ T7506]  d_alloc_pseudo+0x1c/0xc0
[  203.592972][ T7506]  alloc_file_pseudo+0xcf/0x230
[  203.593017][ T7506]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  203.593052][ T7506]  __shmem_file_setup+0x1a3/0x330
[  203.593086][ T7506]  shmem_zero_setup+0x93/0x1a0
[  203.593124][ T7506]  __mmap_region+0x1ed0/0x25e0
[  203.593164][ T7506]  ? __pfx___mmap_region+0x10/0x10
[  203.593207][ T7506]  ? is_bpf_text_address+0x8a/0x1a0
[  203.593240][ T7506]  ? bpf_ksym_find+0x124/0x1c0
[  203.593265][ T7506]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  203.593292][ T7506]  ? is_bpf_text_address+0x94/0x1a0
[  203.593337][ T7506]  ? kernel_text_address+0x8d/0x100
[  203.593372][ T7506]  ? __kernel_text_address+0xd/0x40
[  203.593452][ T7506]  ? trace_cap_capable+0x18d/0x200
[  203.593493][ T7506]  mmap_region+0x1ab/0x3f0
[  203.593513][ T7506]  ? __get_unmapped_area+0x267/0x440
[  203.593543][ T7506]  do_mmap+0xa3e/0x1210
[  203.593575][ T7506]  ? __pfx_do_mmap+0x10/0x10
[  203.593602][ T7506]  ? __pfx_down_write_killable+0x10/0x10
[  203.593634][ T7506]  vm_mmap_pgoff+0x281/0x450
[  203.593664][ T7506]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  203.593691][ T7506]  ? __fget_files+0x20e/0x3c0
[  203.593731][ T7506]  ksys_mmap_pgoff+0x7d/0x5c0
[  203.593758][ T7506]  ? __pfx_ksys_write+0x10/0x10
[  203.593795][ T7506]  __x64_sys_mmap+0x125/0x190
[  203.593829][ T7506]  do_syscall_64+0xcd/0x490
[  203.593853][ T7506]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  203.593875][ T7506] RIP: 0033:0x7fad4318e969
[  203.593892][ T7506] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  203.593912][ T7506] RSP: 002b:00007fad440a8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  203.593932][ T7506] RAX: ffffffffffffffda RBX: 00007fad433b5fa0 RCX: 00007fad4318e969
[  203.593947][ T7506] RDX: 0000000000000003 RSI: 0000000002020009 RDI: 0000000000000000
[  203.593960][ T7506] RBP: 00007fad440a8090 R08: fffffffffffffffa R09: 0000000000008000
[  203.593974][ T7506] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000001
[  203.593987][ T7506] R13: 0000000000000000 R14: 00007fad433b5fa0 R15: 00007fff790e8698
[  203.594014][ T7506]  </TASK>
[  205.594437][ T7538] block nbd9: NBD_DISCONNECT
[  207.062433][ T7559] netlink: 330 bytes leftover after parsing attributes in process `syz.1.412'.
[  207.119608][ T7559] gretap0: refused to change device tx_queue_len
[  207.537572][ T7573] ubi0: attaching mtd0
[  207.553554][ T7573] ubi0: scanning is finished
[  207.591572][ T7573] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record
[  207.903184][ T7577] Invalid ELF header magic: != ELF
[  207.935713][ T7575] Invalid ELF header magic: != ELF
[  207.961997][ T7573] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  208.451998][ T7587] netlink: 16 bytes leftover after parsing attributes in process `syz.3.418'.
[  208.463655][ T7587] netlink: 93 bytes leftover after parsing attributes in process `syz.3.418'.
[  209.632591][ T7605] netlink: 16 bytes leftover after parsing attributes in process `syz.1.423'.
[  209.684634][ T7608] netlink: 93 bytes leftover after parsing attributes in process `syz.1.423'.
[  209.899610][ T7599] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  209.913445][ T7599] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  209.948950][ T7599] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  210.002166][ T7599] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  210.047054][ T7599] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  210.058712][ T7616] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input16
[  210.088459][ T7599] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  210.170050][ T7599] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  210.189599][ T7599] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  210.238231][ T7599] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  210.287136][ T7599] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  210.300071][ T7599] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  210.344230][ T7599] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  210.360181][ T7617] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input17
[  210.380174][ T7599] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  211.590704][ T5837] Bluetooth: hci0: command 0x0c1a tx timeout
[  211.736907][ T7637] input: jJǸ-���9�%v����l��Q�	J8fi� as /devices/virtual/input/input18
[  211.936792][ T7635] zswap: compressor  not available
[  211.955915][ T6894] udevd[6894]: setting owner of /dev/input/event4 to uid=0, gid=104 failed: No such file or directory
[  212.001278][ T7633] Setting dangerous option i915.mitigations - tainting kernel
[  212.080716][ T5837] Bluetooth: hci1: command 0x0c1a tx timeout
[  212.232559][ T5837] Bluetooth: hci2: command 0x0c1a tx timeout
[  212.311090][ T5837] Bluetooth: hci3: command 0x0c1a tx timeout
[  212.818639][ T7658] .SR: entered promiscuous mode
[  212.885724][ T7658] Invalid ELF header magic: != ELF
[  213.678188][ T5850] Bluetooth: hci0: command 0x0c1a tx timeout
[  213.730945][ T7674] sctp: [Deprecated]: syz.1.441 (pid 7674) Use of int in max_burst socket option deprecated.
[  213.730945][ T7674] Use struct sctp_assoc_value instead
[  214.025598][ T7681] can: request_module (can-proto-3) failed.
[  214.150593][ T5837] Bluetooth: hci1: command 0x0c1a tx timeout
[  214.310757][ T5837] Bluetooth: hci2: command 0x0c1a tx timeout
[  214.400542][ T5837] Bluetooth: hci3: command 0x0c1a tx timeout
[  214.822295][ T7696] block nbd9: NBD_DISCONNECT
[  215.753994][ T5837] Bluetooth: hci0: command 0x0c1a tx timeout
[  216.232081][ T5837] Bluetooth: hci1: command 0x0c1a tx timeout
[  216.403385][ T5837] Bluetooth: hci2: command 0x0c1a tx timeout
[  216.470697][ T5837] Bluetooth: hci3: command 0x0c1a tx timeout
[  218.551101][ T5837] Bluetooth: hci3: command 0x0c1a tx timeout
[  219.371450][ T7758] block nbd9: NBD_DISCONNECT
[  219.599298][ T7762] block nbd9: NBD_DISCONNECT
[  220.171916][ T7771] input: jJǸ-���9�%v����l��Q�	J8fi� as /devices/virtual/input/input19
[  220.572736][ T7782] vcan0: tx drop: invalid da for name 0x000000000000003f
[  221.036597][ T7795] FAULT_INJECTION: forcing a failure.
[  221.036597][ T7795] name failslab, interval 1, probability 0, space 0, times 0
[  221.060331][ T7795] CPU: 0 UID: 0 PID: 7795 Comm: syz.0.477 Tainted: G     U              6.15.0-syzkaller-11173-g546b1c9e93c2 #0 PREEMPT(full) 
[  221.060375][ T7795] Tainted: [U]=USER
[  221.060382][ T7795] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  221.060396][ T7795] Call Trace:
[  221.060404][ T7795]  <TASK>
[  221.060412][ T7795]  dump_stack_lvl+0x16c/0x1f0
[  221.060449][ T7795]  should_fail_ex+0x512/0x640
[  221.060495][ T7795]  should_failslab+0xc2/0x120
[  221.060523][ T7795]  __kmalloc_cache_noprof+0x6a/0x3e0
[  221.060557][ T7795]  ? cfctrl_create+0x9a/0x320
[  221.060584][ T7795]  cfctrl_create+0x9a/0x320
[  221.060607][ T7795]  ? __pfx_cfctrl_create+0x10/0x10
[  221.060630][ T7795]  ? __raw_spin_lock_init+0x3a/0x110
[  221.060669][ T7795]  cfcnfg_create+0xb2/0x500
[  221.060689][ T7795]  ? debug_mutex_init+0x37/0x70
[  221.060710][ T7795]  ? __pfx_caif_init_net+0x10/0x10
[  221.060744][ T7795]  caif_init_net+0x7d/0xe0
[  221.060779][ T7795]  ops_init+0x1e2/0x5f0
[  221.060807][ T7795]  setup_net+0x1ff/0x510
[  221.060830][ T7795]  ? lockdep_init_map_type+0x5c/0x280
[  221.060861][ T7795]  ? __pfx_setup_net+0x10/0x10
[  221.060887][ T7795]  ? debug_mutex_init+0x37/0x70
[  221.060911][ T7795]  copy_net_ns+0x2a6/0x5f0
[  221.060942][ T7795]  create_new_namespaces+0x3ea/0xa90
[  221.060975][ T7795]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  221.061003][ T7795]  ksys_unshare+0x45b/0xa40
[  221.061033][ T7795]  ? __pfx_ksys_unshare+0x10/0x10
[  221.061064][ T7795]  ? xfd_validate_state+0x61/0x180
[  221.061101][ T7795]  __x64_sys_unshare+0x31/0x40
[  221.061141][ T7795]  do_syscall_64+0xcd/0x490
[  221.061166][ T7795]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  221.061189][ T7795] RIP: 0033:0x7fad4318e969
[  221.061207][ T7795] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  221.061228][ T7795] RSP: 002b:00007fad440a8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  221.061249][ T7795] RAX: ffffffffffffffda RBX: 00007fad433b5fa0 RCX: 00007fad4318e969
[  221.061264][ T7795] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  221.061277][ T7795] RBP: 00007fad43210ab1 R08: 0000000000000000 R09: 0000000000000000
[  221.061291][ T7795] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  221.061304][ T7795] R13: 0000000000000000 R14: 00007fad433b5fa0 R15: 00007fff790e8698
[  221.061333][ T7795]  </TASK>
[  221.751713][ T7812] input: jJǸ-���9�%v����l��Q�	J8fi� as /devices/virtual/input/input20
[  222.126830][ T7823] netlink: 8 bytes leftover after parsing attributes in process `syz.1.487'.
[  222.359098][ T7816] FAULT_INJECTION: forcing a failure.
[  222.359098][ T7816] name failslab, interval 1, probability 0, space 0, times 0
[  222.400553][ T7816] CPU: 1 UID: 0 PID: 7816 Comm: syz.0.486 Tainted: G     U              6.15.0-syzkaller-11173-g546b1c9e93c2 #0 PREEMPT(full) 
[  222.400603][ T7816] Tainted: [U]=USER
[  222.400613][ T7816] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  222.400630][ T7816] Call Trace:
[  222.400639][ T7816]  <TASK>
[  222.400650][ T7816]  dump_stack_lvl+0x16c/0x1f0
[  222.400686][ T7816]  should_fail_ex+0x512/0x640
[  222.400720][ T7816]  ? __kmalloc_noprof+0xbf/0x510
[  222.400769][ T7816]  ? __seq_open_private+0x22/0xd0
[  222.400807][ T7816]  should_failslab+0xc2/0x120
[  222.400837][ T7816]  __kmalloc_noprof+0xd2/0x510
[  222.400891][ T7816]  __seq_open_private+0x22/0xd0
[  222.400931][ T7816]  seq_open_private+0x24/0x40
[  222.400968][ T7816]  proc_seq_open+0xc4/0x100
[  222.401007][ T7816]  ? __pfx_proc_seq_open+0x10/0x10
[  222.401042][ T7816]  proc_reg_open+0x286/0x610
[  222.401089][ T7816]  do_dentry_open+0x741/0x1c10
[  222.401135][ T7816]  ? __pfx_proc_reg_open+0x10/0x10
[  222.401185][ T7816]  vfs_open+0x82/0x3f0
[  222.401221][ T7816]  path_openat+0x1de4/0x2cb0
[  222.401274][ T7816]  ? __pfx_path_openat+0x10/0x10
[  222.401318][ T7816]  ? __lock_acquire+0xb8a/0x1c90
[  222.401359][ T7816]  do_filp_open+0x20b/0x470
[  222.401401][ T7816]  ? __pfx_do_filp_open+0x10/0x10
[  222.401469][ T7816]  ? alloc_fd+0x471/0x7d0
[  222.401518][ T7816]  do_sys_openat2+0x11b/0x1d0
[  222.401550][ T7816]  ? __pfx_do_sys_openat2+0x10/0x10
[  222.401599][ T7816]  __x64_sys_openat+0x174/0x210
[  222.401632][ T7816]  ? __pfx___x64_sys_openat+0x10/0x10
[  222.401681][ T7816]  do_syscall_64+0xcd/0x490
[  222.401711][ T7816]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  222.401755][ T7816] RIP: 0033:0x7fad4318e969
[  222.401780][ T7816] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  222.401809][ T7816] RSP: 002b:00007fad440a8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  222.401837][ T7816] RAX: ffffffffffffffda RBX: 00007fad433b5fa0 RCX: 00007fad4318e969
[  222.401855][ T7816] RDX: 00000000001c9802 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  222.401874][ T7816] RBP: 00007fad43210ab1 R08: 0000000000000000 R09: 0000000000000000
[  222.401891][ T7816] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  222.401908][ T7816] R13: 0000000000000000 R14: 00007fad433b5fa0 R15: 00007fff790e8698
[  222.401945][ T7816]  </TASK>
[  222.894037][ T7843] FAULT_INJECTION: forcing a failure.
[  222.894037][ T7843] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  222.970745][ T7843] CPU: 1 UID: 0 PID: 7843 Comm: syz.0.492 Tainted: G     U              6.15.0-syzkaller-11173-g546b1c9e93c2 #0 PREEMPT(full) 
[  222.970788][ T7843] Tainted: [U]=USER
[  222.970796][ T7843] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  222.970811][ T7843] Call Trace:
[  222.970820][ T7843]  <TASK>
[  222.970829][ T7843]  dump_stack_lvl+0x16c/0x1f0
[  222.970861][ T7843]  should_fail_ex+0x512/0x640
[  222.970899][ T7843]  _copy_from_user+0x2e/0xd0
[  222.970935][ T7843]  copy_msghdr_from_user+0x98/0x160
[  222.970963][ T7843]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  222.970999][ T7843]  ? __lock_acquire+0x622/0x1c90
[  222.971040][ T7843]  ___sys_recvmsg+0xdb/0x1a0
[  222.971067][ T7843]  ? __pfx____sys_recvmsg+0x10/0x10
[  222.971097][ T7843]  ? find_held_lock+0x2b/0x80
[  222.971145][ T7843]  do_recvmmsg+0x2fe/0x750
[  222.971176][ T7843]  ? __pfx_do_recvmmsg+0x10/0x10
[  222.971228][ T7843]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  222.971269][ T7843]  ? __fget_files+0x20e/0x3c0
[  222.971317][ T7843]  __x64_sys_recvmmsg+0x22a/0x280
[  222.971345][ T7843]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  222.971379][ T7843]  do_syscall_64+0xcd/0x490
[  222.971403][ T7843]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  222.971425][ T7843] RIP: 0033:0x7fad4318e969
[  222.971444][ T7843] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  222.971466][ T7843] RSP: 002b:00007fad440a8038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  222.971488][ T7843] RAX: ffffffffffffffda RBX: 00007fad433b5fa0 RCX: 00007fad4318e969
[  222.971503][ T7843] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000003
[  222.971516][ T7843] RBP: 00007fad440a8090 R08: 0000000000000000 R09: 0000000000000000
[  222.971530][ T7843] R10: 00000000000007ff R11: 0000000000000246 R12: 0000000000000001
[  222.971543][ T7843] R13: 0000000000000000 R14: 00007fad433b5fa0 R15: 00007fff790e8698
[  222.971570][ T7843]  </TASK>
[  224.062846][ T7858] input: jJǸ-���9�%v����l��Q�	J8fi� as /devices/virtual/input/input21
[  225.044901][ T7884] FAULT_INJECTION: forcing a failure.
[  225.044901][ T7884] name failslab, interval 1, probability 0, space 0, times 0
[  225.087223][ T7884] CPU: 0 UID: 0 PID: 7884 Comm: syz.2.503 Tainted: G     U              6.15.0-syzkaller-11173-g546b1c9e93c2 #0 PREEMPT(full) 
[  225.087257][ T7884] Tainted: [U]=USER
[  225.087264][ T7884] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  225.087276][ T7884] Call Trace:
[  225.087283][ T7884]  <TASK>
[  225.087290][ T7884]  dump_stack_lvl+0x16c/0x1f0
[  225.087316][ T7884]  should_fail_ex+0x512/0x640
[  225.087342][ T7884]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  225.087375][ T7884]  should_failslab+0xc2/0x120
[  225.087399][ T7884]  __kmalloc_cache_noprof+0x6a/0x3e0
[  225.087429][ T7884]  ? lockdep_init_map_type+0x5c/0x280
[  225.087457][ T7884]  ? qrtr_endpoint_register+0x85/0x500
[  225.087485][ T7884]  qrtr_endpoint_register+0x85/0x500
[  225.087511][ T7884]  qrtr_tun_open+0x151/0x220
[  225.087540][ T7884]  ? __pfx_qrtr_tun_open+0x10/0x10
[  225.087570][ T7884]  misc_open+0x35a/0x420
[  225.087590][ T7884]  ? __pfx_misc_open+0x10/0x10
[  225.087610][ T7884]  chrdev_open+0x234/0x6a0
[  225.087629][ T7884]  ? __pfx_apparmor_file_open+0x10/0x10
[  225.087651][ T7884]  ? __pfx_chrdev_open+0x10/0x10
[  225.087674][ T7884]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  225.087711][ T7884]  do_dentry_open+0x741/0x1c10
[  225.087745][ T7884]  ? __pfx_chrdev_open+0x10/0x10
[  225.087771][ T7884]  vfs_open+0x82/0x3f0
[  225.087806][ T7884]  path_openat+0x1de4/0x2cb0
[  225.087848][ T7884]  ? __pfx_path_openat+0x10/0x10
[  225.087883][ T7884]  ? __lock_acquire+0xb8a/0x1c90
[  225.087914][ T7884]  do_filp_open+0x20b/0x470
[  225.087948][ T7884]  ? __pfx_do_filp_open+0x10/0x10
[  225.088000][ T7884]  ? alloc_fd+0x471/0x7d0
[  225.088037][ T7884]  do_sys_openat2+0x11b/0x1d0
[  225.088062][ T7884]  ? __pfx_do_sys_openat2+0x10/0x10
[  225.088099][ T7884]  __x64_sys_openat+0x174/0x210
[  225.088125][ T7884]  ? __pfx___x64_sys_openat+0x10/0x10
[  225.088163][ T7884]  do_syscall_64+0xcd/0x490
[  225.088187][ T7884]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  225.088213][ T7884] RIP: 0033:0x7f01d0f8e969
[  225.088230][ T7884] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  225.088252][ T7884] RSP: 002b:00007f01cedd5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  225.088272][ T7884] RAX: ffffffffffffffda RBX: 00007f01d11b6160 RCX: 00007f01d0f8e969
[  225.088286][ T7884] RDX: 0000000000000101 RSI: 00002000000000c0 RDI: ffffffffffffff9c
[  225.088300][ T7884] RBP: 00007f01d1010ab1 R08: 0000000000000000 R09: 0000000000000000
[  225.088313][ T7884] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  225.088326][ T7884] R13: 0000000000000000 R14: 00007f01d11b6160 R15: 00007fffa0127778
[  225.088353][ T7884]  </TASK>
[  225.352781][    C0] vkms_vblank_simulate: vblank timer overrun
[  226.258756][ T7904] input: jJǸ-���9�%v����l��Q�	J8fi� as /devices/virtual/input/input22
[  227.327951][ T7921] netlink: 20 bytes leftover after parsing attributes in process `syz.0.514'.
[  227.419020][ T7925] FAULT_INJECTION: forcing a failure.
[  227.419020][ T7925] name failslab, interval 1, probability 0, space 0, times 0
[  227.419062][ T7925] CPU: 0 UID: 0 PID: 7925 Comm: syz.3.516 Tainted: G     U              6.15.0-syzkaller-11173-g546b1c9e93c2 #0 PREEMPT(full) 
[  227.419091][ T7925] Tainted: [U]=USER
[  227.419097][ T7925] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  227.419109][ T7925] Call Trace:
[  227.419115][ T7925]  <TASK>
[  227.419123][ T7925]  dump_stack_lvl+0x16c/0x1f0
[  227.419146][ T7925]  should_fail_ex+0x512/0x640
[  227.419170][ T7925]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  227.419206][ T7925]  should_failslab+0xc2/0x120
[  227.419227][ T7925]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  227.419260][ T7925]  ? shmem_alloc_inode+0x25/0x50
[  227.419285][ T7925]  ? __pfx_shmem_alloc_inode+0x10/0x10
[  227.419305][ T7925]  shmem_alloc_inode+0x25/0x50
[  227.419326][ T7925]  alloc_inode+0x61/0x240
[  227.419359][ T7925]  new_inode+0x22/0x1c0
[  227.419384][ T7925]  shmem_get_inode+0x19a/0xfb0
[  227.419414][ T7925]  shmem_mknod+0x1a8/0x450
[  227.419442][ T7925]  ? __pfx_shmem_create+0x10/0x10
[  227.419465][ T7925]  lookup_open.isra.0+0x11d3/0x1580
[  227.419498][ T7925]  ? __pfx_lookup_open.isra.0+0x10/0x10
[  227.419539][ T7925]  ? __pfx_down_write+0x10/0x10
[  227.419564][ T7925]  ? mnt_get_write_access+0x20c/0x300
[  227.419592][ T7925]  path_openat+0x893/0x2cb0
[  227.419636][ T7925]  ? __pfx_path_openat+0x10/0x10
[  227.419668][ T7925]  ? __lock_acquire+0xb8a/0x1c90
[  227.419699][ T7925]  do_filp_open+0x20b/0x470
[  227.419730][ T7925]  ? __pfx_do_filp_open+0x10/0x10
[  227.419779][ T7925]  ? alloc_fd+0x471/0x7d0
[  227.419814][ T7925]  do_sys_openat2+0x11b/0x1d0
[  227.419837][ T7925]  ? __pfx_do_sys_openat2+0x10/0x10
[  227.419889][ T7925]  __x64_sys_openat+0x174/0x210
[  227.419915][ T7925]  ? __pfx___x64_sys_openat+0x10/0x10
[  227.419952][ T7925]  do_syscall_64+0xcd/0x490
[  227.419976][ T7925]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  227.420005][ T7925] RIP: 0033:0x7f932878e969
[  227.420028][ T7925] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  227.420057][ T7925] RSP: 002b:00007f9329613038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  227.420086][ T7925] RAX: ffffffffffffffda RBX: 00007f93289b5fa0 RCX: 00007f932878e969
[  227.420100][ T7925] RDX: 000000000010b142 RSI: 0000000000000000 RDI: ffffffffffffff9c
[  227.420113][ T7925] RBP: 00007f9328810ab1 R08: 0000000000000000 R09: 0000000000000000
[  227.420126][ T7925] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  227.420138][ T7925] R13: 0000000000000000 R14: 00007f93289b5fa0 R15: 00007ffd89b59828
[  227.420165][ T7925]  </TASK>
[  227.619075][ T7928] netlink: 8 bytes leftover after parsing attributes in process `syz.3.517'.
[  228.381391][ T7951] mmap: syz.2.526 (7951) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  228.406443][ T7952] block nbd9: NBD_DISCONNECT
[  228.467259][ T7951] program syz.2.526 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  229.933634][ T7977] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  230.501569][ T7999] block nbd9: NBD_DISCONNECT
[  230.593825][ T8003] FAULT_INJECTION: forcing a failure.
[  230.593825][ T8003] name failslab, interval 1, probability 0, space 0, times 0
[  230.616010][ T8003] CPU: 0 UID: 0 PID: 8003 Comm: syz.1.541 Tainted: G     U              6.15.0-syzkaller-11173-g546b1c9e93c2 #0 PREEMPT(full) 
[  230.616056][ T8003] Tainted: [U]=USER
[  230.616066][ T8003] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  230.616090][ T8003] Call Trace:
[  230.616101][ T8003]  <TASK>
[  230.616111][ T8003]  dump_stack_lvl+0x16c/0x1f0
[  230.616146][ T8003]  should_fail_ex+0x512/0x640
[  230.616180][ T8003]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  230.616235][ T8003]  should_failslab+0xc2/0x120
[  230.616267][ T8003]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  230.616313][ T8003]  ? __pfx___might_resched+0x10/0x10
[  230.616354][ T8003]  ? alloc_vmap_area+0x645/0x29c0
[  230.616412][ T8003]  alloc_vmap_area+0x645/0x29c0
[  230.616464][ T8003]  ? __pfx_alloc_vmap_area+0x10/0x10
[  230.616512][ T8003]  __get_vm_area_node+0x1ca/0x330
[  230.616558][ T8003]  __vmalloc_node_range_noprof+0x271/0x14b0
[  230.616601][ T8003]  ? n_tty_open+0x1a/0x170
[  230.616642][ T8003]  ? do_raw_spin_unlock+0x172/0x230
[  230.616699][ T8003]  ? n_tty_open+0x1a/0x170
[  230.616750][ T8003]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  230.616790][ T8003]  ? console_unlock+0x184/0x210
[  230.616818][ T8003]  ? __pfx_console_unlock+0x10/0x10
[  230.616849][ T8003]  ? __pfx___ldsem_down_write_nested+0x10/0x10
[  230.616899][ T8003]  ? n_tty_open+0x1a/0x170
[  230.616939][ T8003]  __vmalloc_node_noprof+0xad/0xf0
[  230.616978][ T8003]  ? n_tty_open+0x1a/0x170
[  230.617020][ T8003]  ? __pfx_n_tty_open+0x10/0x10
[  230.617064][ T8003]  n_tty_open+0x1a/0x170
[  230.617112][ T8003]  ? __pfx_n_tty_open+0x10/0x10
[  230.617153][ T8003]  tty_ldisc_open+0x9c/0x120
[  230.617205][ T8003]  tty_ldisc_setup+0x40/0x100
[  230.617242][ T8003]  tty_init_dev.part.0+0x1ec/0x500
[  230.617287][ T8003]  tty_open+0xa50/0xf90
[  230.617337][ T8003]  ? __pfx_tty_open+0x10/0x10
[  230.617380][ T8003]  ? chrdev_open+0x10b/0x6a0
[  230.617422][ T8003]  ? __pfx_tty_open+0x10/0x10
[  230.617464][ T8003]  chrdev_open+0x234/0x6a0
[  230.617493][ T8003]  ? __pfx_apparmor_file_open+0x10/0x10
[  230.617526][ T8003]  ? __pfx_chrdev_open+0x10/0x10
[  230.617561][ T8003]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  230.617617][ T8003]  do_dentry_open+0x741/0x1c10
[  230.617668][ T8003]  ? __pfx_chrdev_open+0x10/0x10
[  230.617708][ T8003]  vfs_open+0x82/0x3f0
[  230.617764][ T8003]  path_openat+0x1de4/0x2cb0
[  230.617823][ T8003]  ? __pfx_path_openat+0x10/0x10
[  230.617871][ T8003]  ? __lock_acquire+0xb8a/0x1c90
[  230.617915][ T8003]  do_filp_open+0x20b/0x470
[  230.617961][ T8003]  ? __pfx_do_filp_open+0x10/0x10
[  230.618037][ T8003]  ? alloc_fd+0x471/0x7d0
[  230.618106][ T8003]  do_sys_openat2+0x11b/0x1d0
[  230.618140][ T8003]  ? __pfx_do_sys_openat2+0x10/0x10
[  230.618190][ T8003]  __x64_sys_openat+0x174/0x210
[  230.618225][ T8003]  ? __pfx___x64_sys_openat+0x10/0x10
[  230.618276][ T8003]  do_syscall_64+0xcd/0x490
[  230.618306][ T8003]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  230.618334][ T8003] RIP: 0033:0x7f1dfad8e969
[  230.618357][ T8003] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  230.618384][ T8003] RSP: 002b:00007f1dfbc9a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  230.618410][ T8003] RAX: ffffffffffffffda RBX: 00007f1dfafb6160 RCX: 00007f1dfad8e969
[  230.618428][ T8003] RDX: 0000000000040002 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  230.618445][ T8003] RBP: 00007f1dfae10ab1 R08: 0000000000000000 R09: 0000000000000000
[  230.618461][ T8003] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000
[  230.618477][ T8003] R13: 0000000000000000 R14: 00007f1dfafb6160 R15: 00007ffec2bf0bb8
[  230.618515][ T8003]  </TASK>
[  230.977689][    C0] vkms_vblank_simulate: vblank timer overrun
[  231.002458][ T8003] syz.1.541: vmalloc error: size 9128, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  231.035585][ T8003] CPU: 1 UID: 0 PID: 8003 Comm: syz.1.541 Tainted: G     U              6.15.0-syzkaller-11173-g546b1c9e93c2 #0 PREEMPT(full) 
[  231.035621][ T8003] Tainted: [U]=USER
[  231.035627][ T8003] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  231.035640][ T8003] Call Trace:
[  231.035647][ T8003]  <TASK>
[  231.035654][ T8003]  dump_stack_lvl+0x16c/0x1f0
[  231.035681][ T8003]  warn_alloc+0x248/0x3a0
[  231.035717][ T8003]  ? __pfx_warn_alloc+0x10/0x10
[  231.035752][ T8003]  ? kfree+0x2b4/0x4d0
[  231.035794][ T8003]  ? __get_vm_area_node+0x208/0x330
[  231.035827][ T8003]  __vmalloc_node_range_noprof+0xb2d/0x14b0
[  231.035856][ T8003]  ? do_raw_spin_unlock+0x172/0x230
[  231.035897][ T8003]  ? n_tty_open+0x1a/0x170
[  231.035935][ T8003]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  231.035963][ T8003]  ? console_unlock+0x184/0x210
[  231.035983][ T8003]  ? __pfx_console_unlock+0x10/0x10
[  231.036005][ T8003]  ? __pfx___ldsem_down_write_nested+0x10/0x10
[  231.036041][ T8003]  ? n_tty_open+0x1a/0x170
[  231.036079][ T8003]  __vmalloc_node_noprof+0xad/0xf0
[  231.036108][ T8003]  ? n_tty_open+0x1a/0x170
[  231.036137][ T8003]  ? __pfx_n_tty_open+0x10/0x10
[  231.036170][ T8003]  n_tty_open+0x1a/0x170
[  231.036199][ T8003]  ? __pfx_n_tty_open+0x10/0x10
[  231.036229][ T8003]  tty_ldisc_open+0x9c/0x120
[  231.036252][ T8003]  tty_ldisc_setup+0x40/0x100
[  231.036276][ T8003]  tty_init_dev.part.0+0x1ec/0x500
[  231.036310][ T8003]  tty_open+0xa50/0xf90
[  231.036344][ T8003]  ? __pfx_tty_open+0x10/0x10
[  231.036372][ T8003]  ? chrdev_open+0x10b/0x6a0
[  231.036396][ T8003]  ? __pfx_tty_open+0x10/0x10
[  231.036424][ T8003]  chrdev_open+0x234/0x6a0
[  231.036443][ T8003]  ? __pfx_apparmor_file_open+0x10/0x10
[  231.036465][ T8003]  ? __pfx_chrdev_open+0x10/0x10
[  231.036488][ T8003]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  231.036523][ T8003]  do_dentry_open+0x741/0x1c10
[  231.036557][ T8003]  ? __pfx_chrdev_open+0x10/0x10
[  231.036583][ T8003]  vfs_open+0x82/0x3f0
[  231.036671][ T8003]  path_openat+0x1de4/0x2cb0
[  231.036733][ T8003]  ? __pfx_path_openat+0x10/0x10
[  231.036802][ T8003]  ? __lock_acquire+0xb8a/0x1c90
[  231.036835][ T8003]  do_filp_open+0x20b/0x470
[  231.036870][ T8003]  ? __pfx_do_filp_open+0x10/0x10
[  231.036925][ T8003]  ? alloc_fd+0x471/0x7d0
[  231.036965][ T8003]  do_sys_openat2+0x11b/0x1d0
[  231.036992][ T8003]  ? __pfx_do_sys_openat2+0x10/0x10
[  231.037030][ T8003]  __x64_sys_openat+0x174/0x210
[  231.037058][ T8003]  ? __pfx___x64_sys_openat+0x10/0x10
[  231.037101][ T8003]  do_syscall_64+0xcd/0x490
[  231.037127][ T8003]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  231.037150][ T8003] RIP: 0033:0x7f1dfad8e969
[  231.037168][ T8003] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  231.037191][ T8003] RSP: 002b:00007f1dfbc9a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  231.037213][ T8003] RAX: ffffffffffffffda RBX: 00007f1dfafb6160 RCX: 00007f1dfad8e969
[  231.037228][ T8003] RDX: 0000000000040002 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  231.037243][ T8003] RBP: 00007f1dfae10ab1 R08: 0000000000000000 R09: 0000000000000000
[  231.037257][ T8003] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000
[  231.037271][ T8003] R13: 0000000000000000 R14: 00007f1dfafb6160 R15: 00007ffec2bf0bb8
[  231.037299][ T8003]  </TASK>
[  231.037308][ T8003] Mem-Info:
[  231.488325][ T8003] active_anon:11761 inactive_anon:0 isolated_anon:0
[  231.488325][ T8003]  active_file:16782 inactive_file:40463 isolated_file:0
[  231.488325][ T8003]  unevictable:768 dirty:421 writeback:0
[  231.488325][ T8003]  slab_reclaimable:10597 slab_unreclaimable:92667
[  231.488325][ T8003]  mapped:25251 shmem:1361 pagetables:1102
[  231.488325][ T8003]  sec_pagetables:0 bounce:0
[  231.488325][ T8003]  kernel_misc_reclaimable:0
[  231.488325][ T8003]  free:1323660 free_pcp:16554 free_cma:0
[  231.533848][    C0] vkms_vblank_simulate: vblank timer overrun
[  231.546681][ T8003] Node 0 active_anon:47044kB inactive_anon:0kB active_file:67128kB inactive_file:161648kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:101004kB dirty:1680kB writeback:0kB shmem:3624kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10652kB pagetables:4252kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  231.619376][ T8003] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1820kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:156kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  231.651801][ T8003] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  231.680648][    C0] vkms_vblank_simulate: vblank timer overrun
[  231.726218][ T8003] lowmem_reserve[]: 0 2481 2483 2483 2483
[  231.736330][ T8003] Node 0 DMA32 free:1378904kB boost:0kB min:34092kB low:42612kB high:51132kB reserved_highatomic:0KB free_highatomic:0KB active_anon:46796kB inactive_anon:0kB active_file:67016kB inactive_file:160080kB unevictable:1536kB writepending:1680kB present:3129332kB managed:2541088kB mlocked:0kB bounce:0kB free_pcp:44592kB local_pcp:21468kB free_cma:0kB
[  231.768742][    C0] vkms_vblank_simulate: vblank timer overrun
[  231.787433][ T8003] lowmem_reserve[]: 0 0 1 1 1
[  231.828778][ T8003] Node 0 Normal free:12kB boost:0kB min:20kB low:24kB high:28kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1568kB unevictable:0kB writepending:0kB present:1048580kB managed:1644kB mlocked:0kB bounce:0kB free_pcp:16kB local_pcp:8kB free_cma:0kB
[  231.857843][    C0] vkms_vblank_simulate: vblank timer overrun
[  231.890199][ T8017] sctp: [Deprecated]: syz.2.545 (pid 8017) Use of int in max_burst socket option deprecated.
[  231.890199][ T8017] Use struct sctp_assoc_value instead
[  231.909147][ T8003] lowmem_reserve[]: 0 0 0 0 0
[  231.951264][ T8003] Node 1 Normal free:3900692kB boost:0kB min:55788kB low:69732kB high:83676kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:20716kB local_pcp:10176kB free_cma:0kB
[  231.982543][    C0] vkms_vblank_simulate: vblank timer overrun
[  232.029851][ T8003] lowmem_reserve[]: 0 0 0 0 0
[  232.035858][ T8003] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  232.053530][ T8003] Node 0 DMA32: 627*4kB (UM) 940*8kB (UM) 1395*16kB (UME) 903*32kB (UME) 385*64kB (UM) 156*128kB (UME) 64*256kB (UM) 22*512kB (UM) 14*1024kB (UME) 7*2048kB (UM) 297*4096kB (UM) = 1378684kB
[  232.090713][ T8003] Node 0 Normal: 1*4kB (M) 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12kB
[  232.109039][ T8003] Node 1 Normal: 218*4kB (UME) 32*8kB (UME) 42*16kB (UME) 120*32kB (UME) 35*64kB (UME) 11*128kB (UME) 5*256kB (ME) 4*512kB (UM) 3*1024kB (UE) 3*2048kB (UME) 947*4096kB (M) = 3900744kB
[  232.128748][ T8003] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  232.143168][ T8003] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  232.153111][ T8003] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  232.164042][ T8003] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  232.173807][ T8003] 58601 total pagecache pages
[  232.178583][ T8003] 27 pages in swap cache
[  232.182950][ T8003] Free swap  = 124888kB
[  232.187291][ T8003] Total swap = 124996kB
[  232.192707][ T8003] 2097051 pages RAM
[  232.196614][ T8003] 0 pages HighMem/MovableOnly
[  232.204131][ T8003] 429737 pages reserved
[  232.208418][ T8003] 0 pages cma reserved
[  232.212978][ T8003] tty tty26: ldisc open failed (-12), clearing slot 25
[  233.785870][ T8052] netlink: 20 bytes leftover after parsing attributes in process `syz.1.557'.
[  237.048259][ T8102] ubi0: attaching mtd0
[  237.059046][ T8102] ubi0: scanning is finished
[  237.070697][ T8102] ubi0 error: ubi_read_volume_table: the layout volume was not found
[  237.301071][ T8102] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  239.175770][ T8143] FAULT_INJECTION: forcing a failure.
[  239.175770][ T8143] name failslab, interval 1, probability 0, space 0, times 0
[  239.202954][ T8142] input: jJǸ-���9�%v����l��Q�	J8fi� as /devices/virtual/input/input24
[  239.241315][ T8143] CPU: 0 UID: 0 PID: 8143 Comm: syz.2.580 Tainted: G     U              6.15.0-syzkaller-11173-g546b1c9e93c2 #0 PREEMPT(full) 
[  239.241361][ T8143] Tainted: [U]=USER
[  239.241370][ T8143] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  239.241393][ T8143] Call Trace:
[  239.241402][ T8143]  <TASK>
[  239.241412][ T8143]  dump_stack_lvl+0x16c/0x1f0
[  239.241446][ T8143]  should_fail_ex+0x512/0x640
[  239.241481][ T8143]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  239.241530][ T8143]  should_failslab+0xc2/0x120
[  239.241559][ T8143]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  239.241605][ T8143]  ? shmem_alloc_inode+0x25/0x50
[  239.241640][ T8143]  ? __pfx_shmem_alloc_inode+0x10/0x10
[  239.241668][ T8143]  shmem_alloc_inode+0x25/0x50
[  239.241696][ T8143]  alloc_inode+0x61/0x240
[  239.241727][ T8143]  new_inode+0x22/0x1c0
[  239.241761][ T8143]  shmem_get_inode+0x19a/0xfb0
[  239.241802][ T8143]  shmem_mknod+0x1a8/0x450
[  239.241860][ T8143]  ? __pfx_shmem_create+0x10/0x10
[  239.241893][ T8143]  lookup_open.isra.0+0x11d3/0x1580
[  239.241949][ T8143]  ? __pfx_lookup_open.isra.0+0x10/0x10
[  239.242011][ T8143]  ? __pfx_down_write+0x10/0x10
[  239.242045][ T8143]  ? mnt_get_write_access+0x20c/0x300
[  239.242087][ T8143]  path_openat+0x893/0x2cb0
[  239.242147][ T8143]  ? __pfx_path_openat+0x10/0x10
[  239.242197][ T8143]  ? __lock_acquire+0xb8a/0x1c90
[  239.242240][ T8143]  do_filp_open+0x20b/0x470
[  239.242285][ T8143]  ? __pfx_do_filp_open+0x10/0x10
[  239.242360][ T8143]  ? alloc_fd+0x471/0x7d0
[  239.242420][ T8143]  do_sys_openat2+0x11b/0x1d0
[  239.242457][ T8143]  ? __pfx_do_sys_openat2+0x10/0x10
[  239.242509][ T8143]  __x64_sys_openat+0x174/0x210
[  239.242546][ T8143]  ? __pfx___x64_sys_openat+0x10/0x10
[  239.242600][ T8143]  do_syscall_64+0xcd/0x490
[  239.242633][ T8143]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  239.242664][ T8143] RIP: 0033:0x7f01d0f8e969
[  239.242689][ T8143] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  239.242717][ T8143] RSP: 002b:00007f01cedf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  239.242745][ T8143] RAX: ffffffffffffffda RBX: 00007f01d11b6080 RCX: 00007f01d0f8e969
[  239.242764][ T8143] RDX: 000000000010b142 RSI: 0000000000000000 RDI: ffffffffffffff9c
[  239.242783][ T8143] RBP: 00007f01d1010ab1 R08: 0000000000000000 R09: 0000000000000000
[  239.242801][ T8143] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  239.242818][ T8143] R13: 0000000000000000 R14: 00007f01d11b6080 R15: 00007fffa0127778
[  239.242857][ T8143]  </TASK>
[  239.508364][ T8145] input: jJǸ-���9�%v����l��Q�	J8fi� as /devices/virtual/input/input25
[  241.003441][ T8179] netlink: 16 bytes leftover after parsing attributes in process `syz.2.589'.
[  241.216794][ T8182] FAULT_INJECTION: forcing a failure.
[  241.216794][ T8182] name failslab, interval 1, probability 0, space 0, times 0
[  241.266600][ T8182] CPU: 1 UID: 0 PID: 8182 Comm: syz.3.590 Tainted: G     U              6.15.0-syzkaller-11173-g546b1c9e93c2 #0 PREEMPT(full) 
[  241.266645][ T8182] Tainted: [U]=USER
[  241.266654][ T8182] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  241.266676][ T8182] Call Trace:
[  241.266689][ T8182]  <TASK>
[  241.266703][ T8182]  dump_stack_lvl+0x16c/0x1f0
[  241.266737][ T8182]  should_fail_ex+0x512/0x640
[  241.266772][ T8182]  ? fs_reclaim_acquire+0xae/0x150
[  241.266814][ T8182]  ? tomoyo_encode2+0x100/0x3e0
[  241.266843][ T8182]  should_failslab+0xc2/0x120
[  241.266873][ T8182]  __kmalloc_noprof+0xd2/0x510
[  241.266929][ T8182]  tomoyo_encode2+0x100/0x3e0
[  241.266966][ T8182]  tomoyo_encode+0x29/0x50
[  241.266996][ T8182]  tomoyo_realpath_from_path+0x18f/0x6e0
[  241.267032][ T8182]  ? tomoyo_profile+0x47/0x60
[  241.267074][ T8182]  tomoyo_path_number_perm+0x245/0x580
[  241.267118][ T8182]  ? tomoyo_path_number_perm+0x237/0x580
[  241.267168][ T8182]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  241.267218][ T8182]  ? find_held_lock+0x2b/0x80
[  241.267288][ T8182]  ? find_held_lock+0x2b/0x80
[  241.267317][ T8182]  ? hook_file_ioctl_common+0x145/0x410
[  241.267369][ T8182]  ? __fget_files+0x20e/0x3c0
[  241.267417][ T8182]  security_file_ioctl+0x9b/0x240
[  241.267447][ T8182]  __x64_sys_ioctl+0xb7/0x210
[  241.267488][ T8182]  do_syscall_64+0xcd/0x490
[  241.267522][ T8182]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  241.267551][ T8182] RIP: 0033:0x7f932878e969
[  241.267574][ T8182] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  241.267602][ T8182] RSP: 002b:00007f9329613038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  241.267629][ T8182] RAX: ffffffffffffffda RBX: 00007f93289b5fa0 RCX: 00007f932878e969
[  241.267652][ T8182] RDX: 0000000000000000 RSI: 00000000c048aeca RDI: 0000000000000004
[  241.267669][ T8182] RBP: 00007f9329613090 R08: 0000000000000000 R09: 0000000000000000
[  241.267687][ T8182] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  241.267704][ T8182] R13: 0000000000000000 R14: 00007f93289b5fa0 R15: 00007ffd89b59828
[  241.267740][ T8182]  </TASK>
[  241.267786][ T8182] ERROR: Out of memory at tomoyo_realpath_from_path.
[  241.702641][ T8188] FAULT_INJECTION: forcing a failure.
[  241.702641][ T8188] name failslab, interval 1, probability 0, space 0, times 0
[  241.752776][ T8188] CPU: 0 UID: 0 PID: 8188 Comm: syz.0.591 Tainted: G     U              6.15.0-syzkaller-11173-g546b1c9e93c2 #0 PREEMPT(full) 
[  241.752829][ T8188] Tainted: [U]=USER
[  241.752839][ T8188] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  241.752857][ T8188] Call Trace:
[  241.752866][ T8188]  <TASK>
[  241.752876][ T8188]  dump_stack_lvl+0x16c/0x1f0
[  241.752911][ T8188]  should_fail_ex+0x512/0x640
[  241.752947][ T8188]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  241.753000][ T8188]  should_failslab+0xc2/0x120
[  241.753032][ T8188]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  241.753081][ T8188]  ? shmem_alloc_inode+0x25/0x50
[  241.753119][ T8188]  ? __pfx_shmem_alloc_inode+0x10/0x10
[  241.753150][ T8188]  shmem_alloc_inode+0x25/0x50
[  241.753181][ T8188]  alloc_inode+0x61/0x240
[  241.753214][ T8188]  new_inode+0x22/0x1c0
[  241.753252][ T8188]  shmem_get_inode+0x19a/0xfb0
[  241.753297][ T8188]  shmem_mknod+0x1a8/0x450
[  241.753339][ T8188]  ? __pfx_shmem_create+0x10/0x10
[  241.753372][ T8188]  lookup_open.isra.0+0x11d3/0x1580
[  241.753422][ T8188]  ? __pfx_lookup_open.isra.0+0x10/0x10
[  241.753494][ T8188]  ? __pfx_down_write+0x10/0x10
[  241.753527][ T8188]  ? mnt_get_write_access+0x20c/0x300
[  241.753568][ T8188]  path_openat+0x893/0x2cb0
[  241.753628][ T8188]  ? __pfx_path_openat+0x10/0x10
[  241.753677][ T8188]  ? __lock_acquire+0xb8a/0x1c90
[  241.753723][ T8188]  do_filp_open+0x20b/0x470
[  241.753790][ T8188]  ? __pfx_do_filp_open+0x10/0x10
[  241.753871][ T8188]  ? alloc_fd+0x471/0x7d0
[  241.753928][ T8188]  do_sys_openat2+0x11b/0x1d0
[  241.753967][ T8188]  ? __pfx_do_sys_openat2+0x10/0x10
[  241.754023][ T8188]  __x64_sys_openat+0x174/0x210
[  241.754064][ T8188]  ? __pfx___x64_sys_openat+0x10/0x10
[  241.754141][ T8188]  do_syscall_64+0xcd/0x490
[  241.754178][ T8188]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  241.754211][ T8188] RIP: 0033:0x7fad4318e969
[  241.754238][ T8188] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  241.754271][ T8188] RSP: 002b:00007fad44087038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  241.754302][ T8188] RAX: ffffffffffffffda RBX: 00007fad433b6080 RCX: 00007fad4318e969
[  241.754324][ T8188] RDX: 000000000010b142 RSI: 0000000000000000 RDI: ffffffffffffff9c
[  241.754344][ T8188] RBP: 00007fad43210ab1 R08: 0000000000000000 R09: 0000000000000000
[  241.754365][ T8188] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  241.754384][ T8188] R13: 0000000000000000 R14: 00007fad433b6080 R15: 00007fff790e8698
[  241.754427][ T8188]  </TASK>
[  242.011719][    C0] vkms_vblank_simulate: vblank timer overrun
[  242.655594][ T8195] input: jJǸ-���9�%v����l��Q�	J8fi� as /devices/virtual/input/input26
[  242.988262][ T8203] netlink: 28 bytes leftover after parsing attributes in process `syz.3.596'.
[  243.091739][ T8203] mac80211_hwsim hwsim3 wlan1: entered allmulticast mode
[  244.541951][ T8229] zswap: compressor  not available
[  244.620058][ T8239] netlink: 16 bytes leftover after parsing attributes in process `syz.1.600'.
[  245.440071][ T8252] mkiss: ax0: crc mode is auto.
[  245.681554][ T8259] input: jJǸ-���9�%v����l��Q�	J8fi� as /devices/virtual/input/input27
[  248.329516][ T5837] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260
[  248.329544][ T5837] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260
[  248.344558][ T5837] Bluetooth: hci1: Unknown advertising packet type: 0x7f
[  248.344614][ T5837] Bluetooth: hci1: Unknown advertising packet type: 0x3e
[  248.351906][ T5837] Bluetooth: hci1: Unknown advertising packet type: 0x7f
[  248.358957][ T5837] Bluetooth: hci1: Malformed LE Event: 0x0d
[  249.602840][ T8322] netlink: 28 bytes leftover after parsing attributes in process `syz.1.621'.
[  252.248946][ T8351] random: crng reseeded on system resumption
[  253.155003][ T8367] FAULT_INJECTION: forcing a failure.
[  253.155003][ T8367] name failslab, interval 1, probability 0, space 0, times 0
[  253.173895][ T8367] CPU: 1 UID: 0 PID: 8367 Comm: syz.0.632 Tainted: G     U              6.15.0-syzkaller-11173-g546b1c9e93c2 #0 PREEMPT(full) 
[  253.173927][ T8367] Tainted: [U]=USER
[  253.173934][ T8367] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  253.173963][ T8367] Call Trace:
[  253.173970][ T8367]  <TASK>
[  253.173978][ T8367]  dump_stack_lvl+0x16c/0x1f0
[  253.174002][ T8367]  should_fail_ex+0x512/0x640
[  253.174028][ T8367]  ? __kmalloc_noprof+0xbf/0x510
[  253.174063][ T8367]  ? lsm_blob_alloc+0x68/0x90
[  253.174089][ T8367]  should_failslab+0xc2/0x120
[  253.174111][ T8367]  __kmalloc_noprof+0xd2/0x510
[  253.174170][ T8367]  lsm_blob_alloc+0x68/0x90
[  253.174200][ T8367]  security_sk_alloc+0x30/0x270
[  253.174237][ T8367]  sk_prot_alloc+0x1c7/0x2a0
[  253.174269][ T8367]  sk_alloc+0x36/0xc20
[  253.174338][ T8367]  tap_open+0x2f0/0x1170
[  253.174391][ T8367]  ? __pfx_tap_open+0x10/0x10
[  253.174439][ T8367]  chrdev_open+0x234/0x6a0
[  253.174470][ T8367]  ? __pfx_apparmor_file_open+0x10/0x10
[  253.174503][ T8367]  ? __pfx_chrdev_open+0x10/0x10
[  253.174542][ T8367]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  253.174598][ T8367]  do_dentry_open+0x741/0x1c10
[  253.174652][ T8367]  ? __pfx_chrdev_open+0x10/0x10
[  253.174694][ T8367]  vfs_open+0x82/0x3f0
[  253.174737][ T8367]  path_openat+0x1de4/0x2cb0
[  253.174803][ T8367]  ? __pfx_path_openat+0x10/0x10
[  253.174857][ T8367]  ? __lock_acquire+0xb8a/0x1c90
[  253.174907][ T8367]  do_filp_open+0x20b/0x470
[  253.174958][ T8367]  ? __pfx_do_filp_open+0x10/0x10
[  253.175041][ T8367]  ? alloc_fd+0x471/0x7d0
[  253.175101][ T8367]  do_sys_openat2+0x11b/0x1d0
[  253.175140][ T8367]  ? __pfx_do_sys_openat2+0x10/0x10
[  253.175197][ T8367]  __x64_sys_openat+0x174/0x210
[  253.175238][ T8367]  ? __pfx___x64_sys_openat+0x10/0x10
[  253.175281][ T8367]  ? syscall_user_dispatch+0x78/0x140
[  253.175353][ T8367]  do_syscall_64+0xcd/0x490
[  253.175399][ T8367]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  253.175429][ T8367] RIP: 0033:0x7fad4318e969
[  253.175452][ T8367] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  253.175483][ T8367] RSP: 002b:00007fad440a8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  253.175511][ T8367] RAX: ffffffffffffffda RBX: 00007fad433b5fa0 RCX: 00007fad4318e969
[  253.175531][ T8367] RDX: 0000000000080000 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  253.175549][ T8367] RBP: 00007fad43210ab1 R08: 0000000000000000 R09: 0000000000000000
[  253.175568][ T8367] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  253.175585][ T8367] R13: 0000000000000000 R14: 00007fad433b5fa0 R15: 00007fff790e8698
[  253.175623][ T8367]  </TASK>
[  253.729417][ T8374] FAULT_INJECTION: forcing a failure.
[  253.729417][ T8374] name failslab, interval 1, probability 0, space 0, times 0
[  253.780574][ T8374] CPU: 1 UID: 0 PID: 8374 Comm: syz.3.633 Tainted: G     U              6.15.0-syzkaller-11173-g546b1c9e93c2 #0 PREEMPT(full) 
[  253.780618][ T8374] Tainted: [U]=USER
[  253.780627][ T8374] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  253.780643][ T8374] Call Trace:
[  253.780652][ T8374]  <TASK>
[  253.780662][ T8374]  dump_stack_lvl+0x16c/0x1f0
[  253.780694][ T8374]  should_fail_ex+0x512/0x640
[  253.780728][ T8374]  ? fs_reclaim_acquire+0xae/0x150
[  253.780766][ T8374]  ? tomoyo_encode2+0x100/0x3e0
[  253.780797][ T8374]  should_failslab+0xc2/0x120
[  253.780825][ T8374]  __kmalloc_noprof+0xd2/0x510
[  253.780867][ T8374]  ? d_absolute_path+0x136/0x1a0
[  253.780901][ T8374]  tomoyo_encode2+0x100/0x3e0
[  253.780936][ T8374]  tomoyo_encode+0x29/0x50
[  253.780963][ T8374]  tomoyo_realpath_from_path+0x18f/0x6e0
[  253.781004][ T8374]  tomoyo_path_number_perm+0x245/0x580
[  253.781047][ T8374]  ? tomoyo_path_number_perm+0x237/0x580
[  253.781095][ T8374]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  253.781173][ T8374]  ? d_alloc_parallel+0x979/0x12e0
[  253.781210][ T8374]  ? current_check_access_path+0x33c/0x460
[  253.781267][ T8374]  ? __pfx_current_check_access_path+0x10/0x10
[  253.781324][ T8374]  tomoyo_path_mknod+0x10c/0x190
[  253.781359][ T8374]  ? __pfx_tomoyo_path_mknod+0x10/0x10
[  253.781396][ T8374]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  253.781443][ T8374]  security_path_mknod+0x161/0x310
[  253.781489][ T8374]  lookup_open.isra.0+0xc17/0x1580
[  253.781534][ T8374]  ? __pfx_lookup_open.isra.0+0x10/0x10
[  253.781592][ T8374]  ? __pfx_down_write+0x10/0x10
[  253.781620][ T8374]  ? mnt_get_write_access+0x20c/0x300
[  253.781658][ T8374]  path_openat+0x893/0x2cb0
[  253.781714][ T8374]  ? __pfx_path_openat+0x10/0x10
[  253.781756][ T8374]  ? __lock_acquire+0xb8a/0x1c90
[  253.781796][ T8374]  do_filp_open+0x20b/0x470
[  253.781839][ T8374]  ? __pfx_do_filp_open+0x10/0x10
[  253.781909][ T8374]  ? alloc_fd+0x471/0x7d0
[  253.781962][ T8374]  do_sys_openat2+0x11b/0x1d0
[  253.781996][ T8374]  ? __pfx_do_sys_openat2+0x10/0x10
[  253.782044][ T8374]  __x64_sys_openat+0x174/0x210
[  253.782079][ T8374]  ? __pfx___x64_sys_openat+0x10/0x10
[  253.782128][ T8374]  do_syscall_64+0xcd/0x490
[  253.782159][ T8374]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  253.782186][ T8374] RIP: 0033:0x7f932878e969
[  253.782208][ T8374] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  253.782234][ T8374] RSP: 002b:00007f93295f2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  253.782268][ T8374] RAX: ffffffffffffffda RBX: 00007f93289b6080 RCX: 00007f932878e969
[  253.782287][ T8374] RDX: 000000000010b142 RSI: 0000000000000000 RDI: ffffffffffffff9c
[  253.782305][ T8374] RBP: 00007f9328810ab1 R08: 0000000000000000 R09: 0000000000000000
[  253.782321][ T8374] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  253.782338][ T8374] R13: 0000000000000000 R14: 00007f93289b6080 R15: 00007ffd89b59828
[  253.782375][ T8374]  </TASK>
[  253.782402][ T8374] ERROR: Out of memory at tomoyo_realpath_from_path.
[  254.456547][ T8385] block nbd9: NBD_DISCONNECT
[  254.480831][ T8382] FAULT_INJECTION: forcing a failure.
[  254.480831][ T8382] name failslab, interval 1, probability 0, space 0, times 0
[  254.550683][ T8382] CPU: 0 UID: 0 PID: 8382 Comm: syz.2.635 Tainted: G     U              6.15.0-syzkaller-11173-g546b1c9e93c2 #0 PREEMPT(full) 
[  254.550728][ T8382] Tainted: [U]=USER
[  254.550737][ T8382] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  254.550753][ T8382] Call Trace:
[  254.550762][ T8382]  <TASK>
[  254.550773][ T8382]  dump_stack_lvl+0x16c/0x1f0
[  254.550805][ T8382]  should_fail_ex+0x512/0x640
[  254.550837][ T8382]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  254.550892][ T8382]  should_failslab+0xc2/0x120
[  254.550922][ T8382]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  254.550968][ T8382]  ? shmem_alloc_inode+0x25/0x50
[  254.551003][ T8382]  ? __pfx_shmem_alloc_inode+0x10/0x10
[  254.551030][ T8382]  shmem_alloc_inode+0x25/0x50
[  254.551058][ T8382]  alloc_inode+0x61/0x240
[  254.551089][ T8382]  new_inode+0x22/0x1c0
[  254.551122][ T8382]  shmem_get_inode+0x19a/0xfb0
[  254.551163][ T8382]  shmem_mknod+0x1a8/0x450
[  254.551201][ T8382]  ? __pfx_shmem_create+0x10/0x10
[  254.551244][ T8382]  lookup_open.isra.0+0x11d3/0x1580
[  254.551292][ T8382]  ? __pfx_lookup_open.isra.0+0x10/0x10
[  254.551351][ T8382]  ? __pfx_down_write+0x10/0x10
[  254.551380][ T8382]  ? mnt_get_write_access+0x20c/0x300
[  254.551419][ T8382]  path_openat+0x893/0x2cb0
[  254.551474][ T8382]  ? __pfx_path_openat+0x10/0x10
[  254.551519][ T8382]  ? __lock_acquire+0xb8a/0x1c90
[  254.551561][ T8382]  do_filp_open+0x20b/0x470
[  254.551605][ T8382]  ? __pfx_do_filp_open+0x10/0x10
[  254.551674][ T8382]  ? alloc_fd+0x471/0x7d0
[  254.551724][ T8382]  do_sys_openat2+0x11b/0x1d0
[  254.551761][ T8382]  ? __pfx_do_sys_openat2+0x10/0x10
[  254.551810][ T8382]  __x64_sys_openat+0x174/0x210
[  254.551844][ T8382]  ? __pfx___x64_sys_openat+0x10/0x10
[  254.551892][ T8382]  do_syscall_64+0xcd/0x490
[  254.551922][ T8382]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  254.551949][ T8382] RIP: 0033:0x7f01d0f8e969
[  254.551971][ T8382] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  254.551999][ T8382] RSP: 002b:00007f01cedf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  254.552026][ T8382] RAX: ffffffffffffffda RBX: 00007f01d11b6080 RCX: 00007f01d0f8e969
[  254.552043][ T8382] RDX: 000000000010b142 RSI: 0000000000000000 RDI: ffffffffffffff9c
[  254.552059][ T8382] RBP: 00007f01d1010ab1 R08: 0000000000000000 R09: 0000000000000000
[  254.552075][ T8382] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  254.552091][ T8382] R13: 0000000000000000 R14: 00007f01d11b6080 R15: 00007fffa0127778
[  254.552126][ T8382]  </TASK>
[  256.107102][ T5837] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18
[  256.592971][ T8424] input: jJǸ-���9�%v����l��Q�	J8fi� as /devices/virtual/input/input28
[  256.688367][ T8431] netlink: 16 bytes leftover after parsing attributes in process `syz.0.647'.
[  257.600836][ T8455] block nbd9: NBD_DISCONNECT
[  258.679677][ T8473] input: jJǸ-���9�%v����l��Q�	J8fi� as /devices/virtual/input/input29
[  259.020904][ T8478] FAULT_INJECTION: forcing a failure.
[  259.020904][ T8478] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  259.045053][ T8478] CPU: 1 UID: 0 PID: 8478 Comm: syz.1.659 Tainted: G     U              6.15.0-syzkaller-11173-g546b1c9e93c2 #0 PREEMPT(full) 
[  259.045099][ T8478] Tainted: [U]=USER
[  259.045107][ T8478] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  259.045120][ T8478] Call Trace:
[  259.045128][ T8478]  <TASK>
[  259.045137][ T8478]  dump_stack_lvl+0x16c/0x1f0
[  259.045164][ T8478]  should_fail_ex+0x512/0x640
[  259.045197][ T8478]  should_fail_alloc_page+0xe7/0x130
[  259.045225][ T8478]  prepare_alloc_pages+0x3c2/0x610
[  259.045260][ T8478]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  259.045305][ T8478]  ? find_held_lock+0x2b/0x80
[  259.045329][ T8478]  ? is_bpf_text_address+0x8a/0x1a0
[  259.045373][ T8478]  ? bpf_ksym_find+0x124/0x1c0
[  259.045398][ T8478]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  259.045431][ T8478]  ? is_bpf_text_address+0x94/0x1a0
[  259.045464][ T8478]  ? __kernel_text_address+0xd/0x40
[  259.045496][ T8478]  ? unwind_get_return_address+0x59/0xa0
[  259.045540][ T8478]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  259.045574][ T8478]  ? policy_nodemask+0xea/0x4e0
[  259.045597][ T8478]  alloc_pages_mpol+0x1fb/0x550
[  259.045620][ T8478]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  259.045639][ T8478]  ? kasan_save_stack+0x33/0x60
[  259.045671][ T8478]  ? __kasan_kmalloc+0xaa/0xb0
[  259.045701][ T8478]  ? __get_vm_area_node+0x101/0x330
[  259.045733][ T8478]  alloc_pages_noprof+0x131/0x390
[  259.045755][ T8478]  get_free_pages_noprof+0x10/0xb0
[  259.045778][ T8478]  kasan_populate_vmalloc+0x89/0x1f0
[  259.045821][ T8478]  alloc_vmap_area+0x959/0x29c0
[  259.045859][ T8478]  ? __pfx_alloc_vmap_area+0x10/0x10
[  259.045892][ T8478]  __get_vm_area_node+0x1ca/0x330
[  259.045926][ T8478]  __vmalloc_node_range_noprof+0x271/0x14b0
[  259.045956][ T8478]  ? n_tty_open+0x1a/0x170
[  259.045987][ T8478]  ? do_raw_spin_unlock+0x172/0x230
[  259.046027][ T8478]  ? n_tty_open+0x1a/0x170
[  259.046063][ T8478]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  259.046092][ T8478]  ? console_unlock+0x184/0x210
[  259.046112][ T8478]  ? __pfx_console_unlock+0x10/0x10
[  259.046134][ T8478]  ? __pfx___ldsem_down_write_nested+0x10/0x10
[  259.046170][ T8478]  ? n_tty_open+0x1a/0x170
[  259.046200][ T8478]  __vmalloc_node_noprof+0xad/0xf0
[  259.046228][ T8478]  ? n_tty_open+0x1a/0x170
[  259.046258][ T8478]  ? __pfx_n_tty_open+0x10/0x10
[  259.046289][ T8478]  n_tty_open+0x1a/0x170
[  259.046319][ T8478]  ? __pfx_n_tty_open+0x10/0x10
[  259.046349][ T8478]  tty_ldisc_open+0x9c/0x120
[  259.046372][ T8478]  tty_ldisc_setup+0x40/0x100
[  259.046396][ T8478]  tty_init_dev.part.0+0x1ec/0x500
[  259.046428][ T8478]  tty_open+0xa50/0xf90
[  259.046461][ T8478]  ? __pfx_tty_open+0x10/0x10
[  259.046489][ T8478]  ? chrdev_open+0x10b/0x6a0
[  259.046513][ T8478]  ? __pfx_tty_open+0x10/0x10
[  259.046540][ T8478]  chrdev_open+0x234/0x6a0
[  259.046559][ T8478]  ? __pfx_apparmor_file_open+0x10/0x10
[  259.046581][ T8478]  ? __pfx_chrdev_open+0x10/0x10
[  259.046603][ T8478]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  259.046639][ T8478]  do_dentry_open+0x741/0x1c10
[  259.046673][ T8478]  ? __pfx_chrdev_open+0x10/0x10
[  259.046699][ T8478]  vfs_open+0x82/0x3f0
[  259.046727][ T8478]  path_openat+0x1de4/0x2cb0
[  259.046769][ T8478]  ? __pfx_path_openat+0x10/0x10
[  259.046803][ T8478]  ? __lock_acquire+0xb8a/0x1c90
[  259.046841][ T8478]  do_filp_open+0x20b/0x470
[  259.046875][ T8478]  ? __pfx_do_filp_open+0x10/0x10
[  259.046928][ T8478]  ? alloc_fd+0x471/0x7d0
[  259.046968][ T8478]  do_sys_openat2+0x11b/0x1d0
[  259.046994][ T8478]  ? __pfx_do_sys_openat2+0x10/0x10
[  259.047031][ T8478]  __x64_sys_openat+0x174/0x210
[  259.047058][ T8478]  ? __pfx___x64_sys_openat+0x10/0x10
[  259.047095][ T8478]  do_syscall_64+0xcd/0x490
[  259.047119][ T8478]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  259.047140][ T8478] RIP: 0033:0x7f1dfad8e969
[  259.047157][ T8478] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  259.047178][ T8478] RSP: 002b:00007f1dfbcbb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  259.047198][ T8478] RAX: ffffffffffffffda RBX: 00007f1dfafb6080 RCX: 00007f1dfad8e969
[  259.047213][ T8478] RDX: 0000000000040002 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  259.047227][ T8478] RBP: 00007f1dfae10ab1 R08: 0000000000000000 R09: 0000000000000000
[  259.047241][ T8478] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000
[  259.047253][ T8478] R13: 0000000000000000 R14: 00007f1dfafb6080 R15: 00007ffec2bf0bb8
[  259.047281][ T8478]  </TASK>
[  259.047337][ T8478] syz.1.659: vmalloc error: size 9128, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  259.568982][ T8478] CPU: 0 UID: 0 PID: 8478 Comm: syz.1.659 Tainted: G     U              6.15.0-syzkaller-11173-g546b1c9e93c2 #0 PREEMPT(full) 
[  259.569014][ T8478] Tainted: [U]=USER
[  259.569028][ T8478] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  259.569040][ T8478] Call Trace:
[  259.569046][ T8478]  <TASK>
[  259.569053][ T8478]  dump_stack_lvl+0x16c/0x1f0
[  259.569077][ T8478]  warn_alloc+0x248/0x3a0
[  259.569111][ T8478]  ? __pfx_warn_alloc+0x10/0x10
[  259.569144][ T8478]  ? kfree+0x2b4/0x4d0
[  259.569176][ T8478]  ? __get_vm_area_node+0x208/0x330
[  259.569208][ T8478]  __vmalloc_node_range_noprof+0xb2d/0x14b0
[  259.569235][ T8478]  ? do_raw_spin_unlock+0x172/0x230
[  259.569292][ T8478]  ? n_tty_open+0x1a/0x170
[  259.569330][ T8478]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  259.569359][ T8478]  ? console_unlock+0x184/0x210
[  259.569379][ T8478]  ? __pfx_console_unlock+0x10/0x10
[  259.569401][ T8478]  ? __pfx___ldsem_down_write_nested+0x10/0x10
[  259.569437][ T8478]  ? n_tty_open+0x1a/0x170
[  259.569466][ T8478]  __vmalloc_node_noprof+0xad/0xf0
[  259.569494][ T8478]  ? n_tty_open+0x1a/0x170
[  259.569524][ T8478]  ? __pfx_n_tty_open+0x10/0x10
[  259.569567][ T8478]  n_tty_open+0x1a/0x170
[  259.569594][ T8478]  ? __pfx_n_tty_open+0x10/0x10
[  259.569641][ T8478]  tty_ldisc_open+0x9c/0x120
[  259.569664][ T8478]  tty_ldisc_setup+0x40/0x100
[  259.569690][ T8478]  tty_init_dev.part.0+0x1ec/0x500
[  259.569721][ T8478]  tty_open+0xa50/0xf90
[  259.569754][ T8478]  ? __pfx_tty_open+0x10/0x10
[  259.569785][ T8478]  ? chrdev_open+0x10b/0x6a0
[  259.569808][ T8478]  ? __pfx_tty_open+0x10/0x10
[  259.569836][ T8478]  chrdev_open+0x234/0x6a0
[  259.569855][ T8478]  ? __pfx_apparmor_file_open+0x10/0x10
[  259.569876][ T8478]  ? __pfx_chrdev_open+0x10/0x10
[  259.569899][ T8478]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  259.569935][ T8478]  do_dentry_open+0x741/0x1c10
[  259.569970][ T8478]  ? __pfx_chrdev_open+0x10/0x10
[  259.570000][ T8478]  vfs_open+0x82/0x3f0
[  259.570046][ T8478]  path_openat+0x1de4/0x2cb0
[  259.570104][ T8478]  ? __pfx_path_openat+0x10/0x10
[  259.570140][ T8478]  ? __lock_acquire+0xb8a/0x1c90
[  259.570171][ T8478]  do_filp_open+0x20b/0x470
[  259.570204][ T8478]  ? __pfx_do_filp_open+0x10/0x10
[  259.570257][ T8478]  ? alloc_fd+0x471/0x7d0
[  259.570295][ T8478]  do_sys_openat2+0x11b/0x1d0
[  259.570321][ T8478]  ? __pfx_do_sys_openat2+0x10/0x10
[  259.570357][ T8478]  __x64_sys_openat+0x174/0x210
[  259.570383][ T8478]  ? __pfx___x64_sys_openat+0x10/0x10
[  259.570433][ T8478]  do_syscall_64+0xcd/0x490
[  259.570466][ T8478]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  259.570496][ T8478] RIP: 0033:0x7f1dfad8e969
[  259.570519][ T8478] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  259.570548][ T8478] RSP: 002b:00007f1dfbcbb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  259.570574][ T8478] RAX: ffffffffffffffda RBX: 00007f1dfafb6080 RCX: 00007f1dfad8e969
[  259.570594][ T8478] RDX: 0000000000040002 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  259.570612][ T8478] RBP: 00007f1dfae10ab1 R08: 0000000000000000 R09: 0000000000000000
[  259.570630][ T8478] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000
[  259.570647][ T8478] R13: 0000000000000000 R14: 00007f1dfafb6080 R15: 00007ffec2bf0bb8
[  259.570686][ T8478]  </TASK>
[  259.897503][ T8478] Mem-Info:
[  259.964889][ T8478] active_anon:12557 inactive_anon:0 isolated_anon:0
[  259.964889][ T8478]  active_file:16709 inactive_file:40542 isolated_file:0
[  259.964889][ T8478]  unevictable:768 dirty:772 writeback:0
[  259.964889][ T8478]  slab_reclaimable:10876 slab_unreclaimable:92733
[  259.964889][ T8478]  mapped:25424 shmem:1361 pagetables:1128
[  259.964889][ T8478]  sec_pagetables:0 bounce:0
[  259.964889][ T8478]  kernel_misc_reclaimable:0
[  259.964889][ T8478]  free:1324952 free_pcp:15133 free_cma:0
[  260.046315][ T8486] netlink: 16 bytes leftover after parsing attributes in process `syz.0.661'.
[  260.229780][ T8478] Node 0 active_anon:54008kB inactive_anon:0kB active_file:66836kB inactive_file:161964kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:109696kB dirty:3084kB writeback:0kB shmem:3624kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10836kB pagetables:4356kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  260.300722][ T8478] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1820kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:156kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  260.569410][ T8478] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  260.642025][ T8478] lowmem_reserve[]: 0 2481 2483 2483 2483
[  260.658677][ T8478] Node 0 DMA32 free:1376308kB boost:0kB min:34092kB low:42612kB high:51132kB reserved_highatomic:0KB free_highatomic:0KB active_anon:52380kB inactive_anon:0kB active_file:66836kB inactive_file:160396kB unevictable:1536kB writepending:3492kB present:3129332kB managed:2541088kB mlocked:0kB bounce:0kB free_pcp:43108kB local_pcp:20800kB free_cma:0kB
[  260.797830][ T8478] lowmem_reserve[]: 0 0 1 1 1
[  260.803003][ T8478] Node 0 Normal free:12kB boost:0kB min:20kB low:24kB high:28kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1568kB unevictable:0kB writepending:0kB present:1048580kB managed:1644kB mlocked:0kB bounce:0kB free_pcp:16kB local_pcp:8kB free_cma:0kB
[  260.881102][ T1306] ieee802154 phy0 wpan0: encryption failed: -22
[  260.887582][ T1306] ieee802154 phy1 wpan1: encryption failed: -22
[  260.907256][ T8478] lowmem_reserve[]: 0 0 0 0 0
[  260.964341][ T8478] Node 1 Normal free:3902776kB boost:0kB min:55788kB low:69732kB high:83676kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:18664kB local_pcp:9664kB free_cma:0kB
[  261.047941][ T8502] netlink: 28 bytes leftover after parsing attributes in process `syz.3.663'.
[  261.263052][ T8478] lowmem_reserve[]: 0 0 0 0 0
[  261.303687][ T8478] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  261.341868][ T8478] Node 0 DMA32: 1225*4kB (UME) 1788*8kB (UM) 1129*16kB (UME) 1136*32kB (UM) 426*64kB (UM) 164*128kB (UM) 77*256kB (UME) 25*512kB (UM) 15*1024kB (UME) 1*2048kB (M) 294*4096kB (UM) = 1376020kB
[  261.396151][ T8478] Node 0 Normal: 1*4kB (M) 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12kB
[  261.410724][ T8478] Node 1 Normal: 212*4kB (UME) 33*8kB (UME) 42*16kB (UME) 126*32kB (UME) 40*64kB (UME) 11*128kB (UME) 5*256kB (ME) 7*512kB (UM) 3*1024kB (UE) 3*2048kB (UME) 947*4096kB (M) = 3902776kB
[  261.459475][ T8478] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  261.493382][ T8478] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  261.554998][ T8478] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  261.635997][ T8478] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  261.666353][ T8478] 60097 total pagecache pages
[  261.716816][ T8478] 0 pages in swap cache
[  261.736033][ T8478] Free swap  = 124996kB
[  261.769949][ T8478] Total swap = 124996kB
[  261.814877][ T8478] 2097051 pages RAM
[  261.818746][ T8478] 0 pages HighMem/MovableOnly
[  261.845249][ T8478] 429737 pages reserved
[  261.849456][ T8478] 0 pages cma reserved
[  261.890538][ T8478] tty tty26: ldisc open failed (-12), clearing slot 25
[  261.925386][ T8493] ttyS ttyS2: ldisc open failed (-12), clearing slot 2
[  262.703613][ T8517] FAULT_INJECTION: forcing a failure.
[  262.703613][ T8517] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  262.730818][ T8517] CPU: 0 UID: 0 PID: 8517 Comm: syz.3.667 Tainted: G     U              6.15.0-syzkaller-11173-g546b1c9e93c2 #0 PREEMPT(full) 
[  262.730865][ T8517] Tainted: [U]=USER
[  262.730875][ T8517] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  262.730891][ T8517] Call Trace:
[  262.730900][ T8517]  <TASK>
[  262.730910][ T8517]  dump_stack_lvl+0x16c/0x1f0
[  262.730953][ T8517]  should_fail_ex+0x512/0x640
[  262.730990][ T8517]  _copy_from_user+0x2e/0xd0
[  262.731026][ T8517]  core_sys_select+0x2c8/0xc10
[  262.731060][ T8517]  ? __pfx_core_sys_select+0x10/0x10
[  262.731113][ T8517]  ? read_tsc+0x9/0x20
[  262.731132][ T8517]  ? ktime_get_ts64+0x256/0x400
[  262.731163][ T8517]  kern_select+0x15d/0x1e0
[  262.731191][ T8517]  ? __pfx_kern_select+0x10/0x10
[  262.731222][ T8517]  ? __pfx_ksys_write+0x10/0x10
[  262.731255][ T8517]  __x64_sys_select+0xbd/0x160
[  262.731282][ T8517]  ? do_syscall_64+0x91/0x490
[  262.731301][ T8517]  ? lockdep_hardirqs_on+0x7c/0x110
[  262.731333][ T8517]  do_syscall_64+0xcd/0x490
[  262.731353][ T8517]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  262.731373][ T8517] RIP: 0033:0x7f932878e969
[  262.731389][ T8517] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  262.731408][ T8517] RSP: 002b:00007f93295f2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017
[  262.731426][ T8517] RAX: ffffffffffffffda RBX: 00007f93289b6080 RCX: 00007f932878e969
[  262.731439][ T8517] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000009
[  262.731451][ T8517] RBP: 00007f93295f2090 R08: 0000200000000280 R09: 0000000000000000
[  262.731464][ T8517] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  262.731476][ T8517] R13: 0000000000000000 R14: 00007f93289b6080 R15: 00007ffd89b59828
[  262.731506][ T8517]  </TASK>
[  263.717163][ T8534] FAULT_INJECTION: forcing a failure.
[  263.717163][ T8534] name failslab, interval 1, probability 0, space 0, times 0
[  263.780707][ T8534] CPU: 1 UID: 0 PID: 8534 Comm: syz.2.671 Tainted: G     U              6.15.0-syzkaller-11173-g546b1c9e93c2 #0 PREEMPT(full) 
[  263.780759][ T8534] Tainted: [U]=USER
[  263.780771][ T8534] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  263.780789][ T8534] Call Trace:
[  263.780799][ T8534]  <TASK>
[  263.780812][ T8534]  dump_stack_lvl+0x16c/0x1f0
[  263.780848][ T8534]  should_fail_ex+0x512/0x640
[  263.780886][ T8534]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  263.780953][ T8534]  should_failslab+0xc2/0x120
[  263.780984][ T8534]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  263.781033][ T8534]  ? shmem_alloc_inode+0x25/0x50
[  263.781070][ T8534]  ? __pfx_shmem_alloc_inode+0x10/0x10
[  263.781121][ T8534]  shmem_alloc_inode+0x25/0x50
[  263.781155][ T8534]  alloc_inode+0x61/0x240
[  263.781190][ T8534]  new_inode+0x22/0x1c0
[  263.781230][ T8534]  shmem_get_inode+0x19a/0xfb0
[  263.781275][ T8534]  shmem_mknod+0x1a8/0x450
[  263.781317][ T8534]  ? __pfx_shmem_create+0x10/0x10
[  263.781352][ T8534]  lookup_open.isra.0+0x11d3/0x1580
[  263.781404][ T8534]  ? __pfx_lookup_open.isra.0+0x10/0x10
[  263.781481][ T8534]  ? __pfx_down_write+0x10/0x10
[  263.781515][ T8534]  ? mnt_get_write_access+0x20c/0x300
[  263.781558][ T8534]  path_openat+0x893/0x2cb0
[  263.781621][ T8534]  ? __pfx_path_openat+0x10/0x10
[  263.781673][ T8534]  ? __lock_acquire+0xb8a/0x1c90
[  263.781720][ T8534]  do_filp_open+0x20b/0x470
[  263.781780][ T8534]  ? __pfx_do_filp_open+0x10/0x10
[  263.781854][ T8534]  ? alloc_fd+0x471/0x7d0
[  263.781906][ T8534]  do_sys_openat2+0x11b/0x1d0
[  263.781941][ T8534]  ? __pfx_do_sys_openat2+0x10/0x10
[  263.781990][ T8534]  __x64_sys_openat+0x174/0x210
[  263.782026][ T8534]  ? __pfx___x64_sys_openat+0x10/0x10
[  263.782078][ T8534]  do_syscall_64+0xcd/0x490
[  263.782112][ T8534]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  263.782142][ T8534] RIP: 0033:0x7f01d0f8e969
[  263.782165][ T8534] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  263.782193][ T8534] RSP: 002b:00007f01d1d20038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  263.782219][ T8534] RAX: ffffffffffffffda RBX: 00007f01d11b5fa0 RCX: 00007f01d0f8e969
[  263.782233][ T8534] RDX: 000000000010b142 RSI: 0000000000000000 RDI: ffffffffffffff9c
[  263.782250][ T8534] RBP: 00007f01d1010ab1 R08: 0000000000000000 R09: 0000000000000000
[  263.782263][ T8534] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  263.782275][ T8534] R13: 0000000000000000 R14: 00007f01d11b5fa0 R15: 00007fffa0127778
[  263.782302][ T8534]  </TASK>
[  264.827992][ T8551] FAULT_INJECTION: forcing a failure.
[  264.827992][ T8551] name failslab, interval 1, probability 0, space 0, times 0
[  264.888025][ T8551] CPU: 0 UID: 0 PID: 8551 Comm: syz.1.673 Tainted: G     U              6.15.0-syzkaller-11173-g546b1c9e93c2 #0 PREEMPT(full) 
[  264.888079][ T8551] Tainted: [U]=USER
[  264.888088][ T8551] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  264.888107][ T8551] Call Trace:
[  264.888117][ T8551]  <TASK>
[  264.888146][ T8551]  dump_stack_lvl+0x16c/0x1f0
[  264.888182][ T8551]  should_fail_ex+0x512/0x640
[  264.888222][ T8551]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  264.888280][ T8551]  should_failslab+0xc2/0x120
[  264.888314][ T8551]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  264.888373][ T8551]  ? d_instantiate+0x77/0x90
[  264.888402][ T8551]  ? alloc_empty_file+0x55/0x1e0
[  264.888445][ T8551]  alloc_empty_file+0x55/0x1e0
[  264.888483][ T8551]  alloc_file_pseudo+0x13a/0x230
[  264.888525][ T8551]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  264.888577][ T8551]  __shmem_file_setup+0x1a3/0x330
[  264.888627][ T8551]  shmem_zero_setup+0x93/0x1a0
[  264.888682][ T8551]  __mmap_region+0x1ed0/0x25e0
[  264.888740][ T8551]  ? __pfx___mmap_region+0x10/0x10
[  264.888803][ T8551]  ? is_bpf_text_address+0x8a/0x1a0
[  264.888862][ T8551]  ? bpf_ksym_find+0x124/0x1c0
[  264.888897][ T8551]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  264.888933][ T8551]  ? is_bpf_text_address+0x94/0x1a0
[  264.888979][ T8551]  ? kernel_text_address+0x8d/0x100
[  264.889029][ T8551]  ? __kernel_text_address+0xd/0x40
[  264.889146][ T8551]  ? trace_cap_capable+0x18d/0x200
[  264.889203][ T8551]  mmap_region+0x1ab/0x3f0
[  264.889232][ T8551]  ? __get_unmapped_area+0x267/0x440
[  264.889274][ T8551]  do_mmap+0xa3e/0x1210
[  264.889319][ T8551]  ? __pfx_do_mmap+0x10/0x10
[  264.889373][ T8551]  ? __pfx_down_write_killable+0x10/0x10
[  264.889416][ T8551]  vm_mmap_pgoff+0x281/0x450
[  264.889455][ T8551]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  264.889490][ T8551]  ? __fget_files+0x20e/0x3c0
[  264.889544][ T8551]  ksys_mmap_pgoff+0x7d/0x5c0
[  264.889577][ T8551]  ? __pfx_ksys_write+0x10/0x10
[  264.889627][ T8551]  __x64_sys_mmap+0x125/0x190
[  264.889672][ T8551]  do_syscall_64+0xcd/0x490
[  264.889705][ T8551]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  264.889734][ T8551] RIP: 0033:0x7f1dfad8e969
[  264.889774][ T8551] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  264.889805][ T8551] RSP: 002b:00007f1dfbcdc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  264.889834][ T8551] RAX: ffffffffffffffda RBX: 00007f1dfafb5fa0 RCX: 00007f1dfad8e969
[  264.889854][ T8551] RDX: 0000000000000003 RSI: 0000000002020009 RDI: 0000000000000000
[  264.889872][ T8551] RBP: 00007f1dfbcdc090 R08: fffffffffffffffa R09: 0000000000008000
[  264.889891][ T8551] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000001
[  264.889910][ T8551] R13: 0000000000000000 R14: 00007f1dfafb5fa0 R15: 00007ffec2bf0bb8
[  264.889950][ T8551]  </TASK>
[  268.950966][ T8589] zswap: compressor  not available
[  268.959099][ T8586] Setting dangerous option i915.mitigations - tainting kernel
[  270.858819][ T8628] dlm: plock device version mismatch: kernel (1.2.0), user (1489226698.240317300.1121487582)
[  272.281198][ T8645] FAULT_INJECTION: forcing a failure.
[  272.281198][ T8645] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  272.336628][ T8645] CPU: 0 UID: 0 PID: 8645 Comm: syz.0.689 Tainted: G     U              6.15.0-syzkaller-11173-g546b1c9e93c2 #0 PREEMPT(full) 
[  272.336666][ T8645] Tainted: [U]=USER
[  272.336673][ T8645] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  272.336687][ T8645] Call Trace:
[  272.336693][ T8645]  <TASK>
[  272.336702][ T8645]  dump_stack_lvl+0x16c/0x1f0
[  272.336727][ T8645]  should_fail_ex+0x512/0x640
[  272.336763][ T8645]  should_fail_alloc_page+0xe7/0x130
[  272.336789][ T8645]  prepare_alloc_pages+0x3c2/0x610
[  272.336823][ T8645]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  272.336864][ T8645]  ? find_held_lock+0x2b/0x80
[  272.336886][ T8645]  ? is_bpf_text_address+0x8a/0x1a0
[  272.336917][ T8645]  ? bpf_ksym_find+0x124/0x1c0
[  272.336942][ T8645]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  272.336976][ T8645]  ? is_bpf_text_address+0x94/0x1a0
[  272.337009][ T8645]  ? __kernel_text_address+0xd/0x40
[  272.337055][ T8645]  ? unwind_get_return_address+0x59/0xa0
[  272.337097][ T8645]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  272.337129][ T8645]  ? policy_nodemask+0xea/0x4e0
[  272.337151][ T8645]  alloc_pages_mpol+0x1fb/0x550
[  272.337173][ T8645]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  272.337192][ T8645]  ? kasan_save_stack+0x33/0x60
[  272.337222][ T8645]  ? __kasan_kmalloc+0xaa/0xb0
[  272.337250][ T8645]  ? __get_vm_area_node+0x101/0x330
[  272.337280][ T8645]  alloc_pages_noprof+0x131/0x390
[  272.337302][ T8645]  get_free_pages_noprof+0x10/0xb0
[  272.337324][ T8645]  kasan_populate_vmalloc+0x89/0x1f0
[  272.337359][ T8645]  alloc_vmap_area+0x959/0x29c0
[  272.337392][ T8645]  ? __pfx_alloc_vmap_area+0x10/0x10
[  272.337423][ T8645]  __get_vm_area_node+0x1ca/0x330
[  272.337453][ T8645]  __vmalloc_node_range_noprof+0x271/0x14b0
[  272.337481][ T8645]  ? n_tty_open+0x1a/0x170
[  272.337509][ T8645]  ? do_raw_spin_unlock+0x172/0x230
[  272.337547][ T8645]  ? n_tty_open+0x1a/0x170
[  272.337581][ T8645]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  272.337608][ T8645]  ? console_unlock+0x184/0x210
[  272.337626][ T8645]  ? __pfx_console_unlock+0x10/0x10
[  272.337647][ T8645]  ? __pfx___ldsem_down_write_nested+0x10/0x10
[  272.337680][ T8645]  ? n_tty_open+0x1a/0x170
[  272.337708][ T8645]  __vmalloc_node_noprof+0xad/0xf0
[  272.337734][ T8645]  ? n_tty_open+0x1a/0x170
[  272.337767][ T8645]  ? __pfx_n_tty_open+0x10/0x10
[  272.337797][ T8645]  n_tty_open+0x1a/0x170
[  272.337843][ T8645]  ? __pfx_n_tty_open+0x10/0x10
[  272.337873][ T8645]  tty_ldisc_open+0x9c/0x120
[  272.337896][ T8645]  tty_ldisc_setup+0x40/0x100
[  272.337920][ T8645]  tty_init_dev.part.0+0x1ec/0x500
[  272.337950][ T8645]  tty_open+0xa50/0xf90
[  272.337983][ T8645]  ? __pfx_tty_open+0x10/0x10
[  272.338011][ T8645]  ? chrdev_open+0x10b/0x6a0
[  272.338034][ T8645]  ? __pfx_tty_open+0x10/0x10
[  272.338061][ T8645]  chrdev_open+0x234/0x6a0
[  272.338079][ T8645]  ? __pfx_apparmor_file_open+0x10/0x10
[  272.338101][ T8645]  ? __pfx_chrdev_open+0x10/0x10
[  272.338122][ T8645]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  272.338157][ T8645]  do_dentry_open+0x741/0x1c10
[  272.338191][ T8645]  ? __pfx_chrdev_open+0x10/0x10
[  272.338217][ T8645]  vfs_open+0x82/0x3f0
[  272.338244][ T8645]  path_openat+0x1de4/0x2cb0
[  272.338284][ T8645]  ? __pfx_path_openat+0x10/0x10
[  272.338318][ T8645]  ? __lock_acquire+0xb8a/0x1c90
[  272.338360][ T8645]  do_filp_open+0x20b/0x470
[  272.338392][ T8645]  ? __pfx_do_filp_open+0x10/0x10
[  272.338441][ T8645]  ? alloc_fd+0x471/0x7d0
[  272.338477][ T8645]  do_sys_openat2+0x11b/0x1d0
[  272.338500][ T8645]  ? __pfx_do_sys_openat2+0x10/0x10
[  272.338534][ T8645]  __x64_sys_openat+0x174/0x210
[  272.338559][ T8645]  ? __pfx___x64_sys_openat+0x10/0x10
[  272.338594][ T8645]  do_syscall_64+0xcd/0x490
[  272.338617][ T8645]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  272.338638][ T8645] RIP: 0033:0x7fad4318e969
[  272.338655][ T8645] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  272.338675][ T8645] RSP: 002b:00007fad440a8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  272.338694][ T8645] RAX: ffffffffffffffda RBX: 00007fad433b5fa0 RCX: 00007fad4318e969
[  272.338708][ T8645] RDX: 0000000000040002 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  272.338722][ T8645] RBP: 00007fad43210ab1 R08: 0000000000000000 R09: 0000000000000000
[  272.338734][ T8645] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000
[  272.338746][ T8645] R13: 0000000000000000 R14: 00007fad433b5fa0 R15: 00007fff790e8698
[  272.338778][ T8645]  </TASK>
[  273.032541][ T8645] syz.0.689: vmalloc error: size 9128, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  273.278145][ T8645] CPU: 0 UID: 0 PID: 8645 Comm: syz.0.689 Tainted: G     U              6.15.0-syzkaller-11173-g546b1c9e93c2 #0 PREEMPT(full) 
[  273.278188][ T8645] Tainted: [U]=USER
[  273.278196][ T8645] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  273.278212][ T8645] Call Trace:
[  273.278220][ T8645]  <TASK>
[  273.278231][ T8645]  dump_stack_lvl+0x16c/0x1f0
[  273.278263][ T8645]  warn_alloc+0x248/0x3a0
[  273.278309][ T8645]  ? __pfx_warn_alloc+0x10/0x10
[  273.278355][ T8645]  ? kfree+0x2b4/0x4d0
[  273.278399][ T8645]  ? __get_vm_area_node+0x208/0x330
[  273.278441][ T8645]  __vmalloc_node_range_noprof+0xb2d/0x14b0
[  273.278481][ T8645]  ? do_raw_spin_unlock+0x172/0x230
[  273.278534][ T8645]  ? n_tty_open+0x1a/0x170
[  273.278582][ T8645]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  273.278617][ T8645]  ? console_unlock+0x184/0x210
[  273.278642][ T8645]  ? __pfx_console_unlock+0x10/0x10
[  273.278671][ T8645]  ? __pfx___ldsem_down_write_nested+0x10/0x10
[  273.278721][ T8645]  ? n_tty_open+0x1a/0x170
[  273.278756][ T8645]  __vmalloc_node_noprof+0xad/0xf0
[  273.278790][ T8645]  ? n_tty_open+0x1a/0x170
[  273.278826][ T8645]  ? __pfx_n_tty_open+0x10/0x10
[  273.278862][ T8645]  n_tty_open+0x1a/0x170
[  273.278896][ T8645]  ? __pfx_n_tty_open+0x10/0x10
[  273.278930][ T8645]  tty_ldisc_open+0x9c/0x120
[  273.278959][ T8645]  tty_ldisc_setup+0x40/0x100
[  273.278991][ T8645]  tty_init_dev.part.0+0x1ec/0x500
[  273.279030][ T8645]  tty_open+0xa50/0xf90
[  273.279072][ T8645]  ? __pfx_tty_open+0x10/0x10
[  273.279108][ T8645]  ? chrdev_open+0x10b/0x6a0
[  273.279139][ T8645]  ? __pfx_tty_open+0x10/0x10
[  273.279173][ T8645]  chrdev_open+0x234/0x6a0
[  273.279198][ T8645]  ? __pfx_apparmor_file_open+0x10/0x10
[  273.279225][ T8645]  ? __pfx_chrdev_open+0x10/0x10
[  273.279254][ T8645]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  273.279300][ T8645]  do_dentry_open+0x741/0x1c10
[  273.279345][ T8645]  ? __pfx_chrdev_open+0x10/0x10
[  273.279378][ T8645]  vfs_open+0x82/0x3f0
[  273.279414][ T8645]  path_openat+0x1de4/0x2cb0
[  273.279468][ T8645]  ? __pfx_path_openat+0x10/0x10
[  273.279512][ T8645]  ? __lock_acquire+0xb8a/0x1c90
[  273.279552][ T8645]  do_filp_open+0x20b/0x470
[  273.279594][ T8645]  ? __pfx_do_filp_open+0x10/0x10
[  273.279663][ T8645]  ? alloc_fd+0x471/0x7d0
[  273.279721][ T8645]  do_sys_openat2+0x11b/0x1d0
[  273.279754][ T8645]  ? __pfx_do_sys_openat2+0x10/0x10
[  273.279802][ T8645]  __x64_sys_openat+0x174/0x210
[  273.279836][ T8645]  ? __pfx___x64_sys_openat+0x10/0x10
[  273.279885][ T8645]  do_syscall_64+0xcd/0x490
[  273.279915][ T8645]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  273.279943][ T8645] RIP: 0033:0x7fad4318e969
[  273.279965][ T8645] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  273.279993][ T8645] RSP: 002b:00007fad440a8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  273.280018][ T8645] RAX: ffffffffffffffda RBX: 00007fad433b5fa0 RCX: 00007fad4318e969
[  273.280036][ T8645] RDX: 0000000000040002 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  273.280053][ T8645] RBP: 00007fad43210ab1 R08: 0000000000000000 R09: 0000000000000000
[  273.280069][ T8645] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000
[  273.280084][ T8645] R13: 0000000000000000 R14: 00007fad433b5fa0 R15: 00007fff790e8698
[  273.280120][ T8645]  </TASK>
[  273.280130][ T8645] Mem-Info:
[  273.622067][ T8645] active_anon:39620 inactive_anon:0 isolated_anon:0
[  273.622067][ T8645]  active_file:17733 inactive_file:40552 isolated_file:0
[  273.622067][ T8645]  unevictable:768 dirty:882 writeback:0
[  273.622067][ T8645]  slab_reclaimable:10680 slab_unreclaimable:92957
[  273.622067][ T8645]  mapped:28450 shmem:29035 pagetables:1172
[  273.622067][ T8645]  sec_pagetables:0 bounce:0
[  273.622067][ T8645]  kernel_misc_reclaimable:0
[  273.622067][ T8645]  free:1285977 free_pcp:24231 free_cma:0
[  273.816939][ T8645] Node 0 active_anon:158180kB inactive_anon:0kB active_file:66832kB inactive_file:162004kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:109900kB dirty:3524kB writeback:0kB shmem:112320kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10584kB pagetables:4332kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  274.002465][ T8645] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1820kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:156kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  274.124972][ T8645] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  274.191482][ T8645] lowmem_reserve[]: 0 2481 2483 2483 2483
[  274.229086][ T8645] Node 0 DMA32 free:1250684kB boost:0kB min:34092kB low:42612kB high:51132kB reserved_highatomic:0KB free_highatomic:0KB active_anon:140576kB inactive_anon:0kB active_file:66836kB inactive_file:160436kB unevictable:1536kB writepending:3588kB present:3129332kB managed:2541088kB mlocked:0kB bounce:0kB free_pcp:72668kB local_pcp:38000kB free_cma:0kB
[  274.320527][ T8645] lowmem_reserve[]: 0 0 1 1 1
[  274.396699][ T8645] Node 0 Normal free:12kB boost:0kB min:20kB low:24kB high:28kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1568kB unevictable:0kB writepending:0kB present:1048580kB managed:1644kB mlocked:0kB bounce:0kB free_pcp:16kB local_pcp:8kB free_cma:0kB
[  274.687403][ T8645] lowmem_reserve[]: 0 0 0 0 0
[  274.710147][ T8645] Node 1 Normal free:3900508kB boost:0kB min:55788kB low:69732kB high:83676kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:19904kB local_pcp:9144kB free_cma:0kB
[  274.792219][ T8645] lowmem_reserve[]: 0 0 0 0 0
[  274.852836][ T8645] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  274.920256][ T8645] Node 0 DMA32: 13947*4kB (UME) 1247*8kB (UM) 121*16kB (UME) 221*32kB (UM) 87*64kB (UM) 20*128kB (UM) 5*256kB (UME) 4*512kB (UM) 8*1024kB (UME) 4*2048kB (M) 285*4096kB (UM) = 1269972kB
[  274.972101][ T8663] bridge0: port 2(vlan1) entered blocking state
[  274.979354][ T8663] bridge0: port 2(vlan1) entered disabled state
[  275.015113][ T8645] Node 0 Normal: 1*4kB (M) 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12kB
[  275.044051][ T8663] vlan1: entered allmulticast mode
[  275.050380][ T8663] veth0_vlan: entered allmulticast mode
[  275.068173][ T8663] vlan1: entered promiscuous mode
[  275.073772][ T8645] Node 1 Normal: 6*4kB (UME) 6*8kB (UME) 9*16kB (ME) 94*32kB (UE) 39*64kB (UME) 10*128kB (UME) 4*256kB (ME) 5*512kB (UM) 5*1024kB (UME) 3*2048kB (UME) 947*4096kB (M) = 3900760kB
[  275.092133][ T8645] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  275.101991][ T8645] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  275.122699][ T8645] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  275.132591][ T8645] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  275.143952][ T8645] 78281 total pagecache pages
[  275.148634][ T8645] 0 pages in swap cache
[  275.153230][ T8645] Free swap  = 124996kB
[  275.157389][ T8645] Total swap = 124996kB
[  275.163402][ T8645] 2097051 pages RAM
[  275.167213][ T8645] 0 pages HighMem/MovableOnly
[  275.172308][ T8645] 429737 pages reserved
[  275.176765][ T8645] 0 pages cma reserved
[  275.182131][ T8645] tty tty26: ldisc open failed (-12), clearing slot 25
[  275.212528][ T8663] bridge0: port 2(vlan1) entered blocking state
[  275.219120][ T8663] bridge0: port 2(vlan1) entered forwarding state
[  275.567757][ T8669] input: jJǸ-���9�%v����l��Q�	J8fi� as /devices/virtual/input/input30
[  275.741406][ T8678] FAULT_INJECTION: forcing a failure.
[  275.741406][ T8678] name failslab, interval 1, probability 0, space 0, times 0
[  275.741473][ T8678] CPU: 1 UID: 0 PID: 8678 Comm: syz.3.700 Tainted: G     U              6.15.0-syzkaller-11173-g546b1c9e93c2 #0 PREEMPT(full) 
[  275.741535][ T8678] Tainted: [U]=USER
[  275.741545][ T8678] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  275.741562][ T8678] Call Trace:
[  275.741572][ T8678]  <TASK>
[  275.741583][ T8678]  dump_stack_lvl+0x16c/0x1f0
[  275.741618][ T8678]  should_fail_ex+0x512/0x640
[  275.741662][ T8678]  should_failslab+0xc2/0x120
[  275.741699][ T8678]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  275.741778][ T8678]  ? skb_clone+0x190/0x3f0
[  275.741817][ T8678]  skb_clone+0x190/0x3f0
[  275.741849][ T8678]  netlink_deliver_tap+0xabd/0xd30
[  275.741893][ T8678]  netlink_unicast+0x6b2/0x7f0
[  275.741933][ T8678]  ? __pfx_netlink_unicast+0x10/0x10
[  275.741967][ T8678]  ? genl_rcv_msg+0x4bb/0x800
[  275.742020][ T8678]  netlink_ack+0x696/0xb80
[  275.742080][ T8678]  netlink_rcv_skb+0x332/0x420
[  275.742126][ T8678]  ? __pfx_genl_rcv_msg+0x10/0x10
[  275.742178][ T8678]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  275.742242][ T8678]  ? netlink_deliver_tap+0x1ae/0xd30
[  275.742291][ T8678]  genl_rcv+0x28/0x40
[  275.742334][ T8678]  netlink_unicast+0x53a/0x7f0
[  275.742383][ T8678]  ? __pfx_netlink_unicast+0x10/0x10
[  275.742440][ T8678]  netlink_sendmsg+0x8d1/0xdd0
[  275.742500][ T8678]  ? __pfx_netlink_sendmsg+0x10/0x10
[  275.742561][ T8678]  ____sys_sendmsg+0xa98/0xc70
[  275.742609][ T8678]  ? copy_msghdr_from_user+0x10a/0x160
[  275.742644][ T8678]  ? __pfx_____sys_sendmsg+0x10/0x10
[  275.742712][ T8678]  ___sys_sendmsg+0x134/0x1d0
[  275.742749][ T8678]  ? __pfx____sys_sendmsg+0x10/0x10
[  275.742780][ T8678]  ? __lock_acquire+0x622/0x1c90
[  275.742884][ T8678]  __sys_sendmsg+0x16d/0x220
[  275.742922][ T8678]  ? __pfx___sys_sendmsg+0x10/0x10
[  275.743013][ T8678]  do_syscall_64+0xcd/0x490
[  275.743053][ T8678]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  275.743089][ T8678] RIP: 0033:0x7f932878e969
[  275.743115][ T8678] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  275.743149][ T8678] RSP: 002b:00007f9329613038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  275.743182][ T8678] RAX: ffffffffffffffda RBX: 00007f93289b5fa0 RCX: 00007f932878e969
[  275.743205][ T8678] RDX: 0000000000008880 RSI: 0000200000001e00 RDI: 0000000000000003
[  275.743228][ T8678] RBP: 00007f9329613090 R08: 0000000000000000 R09: 0000000000000000
[  275.743248][ T8678] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  275.743270][ T8678] R13: 0000000000000000 R14: 00007f93289b5fa0 R15: 00007ffd89b59828
[  275.743315][ T8678]  </TASK>
[  277.654724][ T8695] block nbd9: NBD_DISCONNECT
[  277.656553][ T8698] can: request_module (can-proto-3) failed.
[  278.373989][ T8712] FAULT_INJECTION: forcing a failure.
[  278.373989][ T8712] name failslab, interval 1, probability 0, space 0, times 0
[  278.388028][ T8712] CPU: 0 UID: 0 PID: 8712 Comm: syz.1.707 Tainted: G     U              6.15.0-syzkaller-11173-g546b1c9e93c2 #0 PREEMPT(full) 
[  278.388067][ T8712] Tainted: [U]=USER
[  278.388074][ T8712] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  278.388086][ T8712] Call Trace:
[  278.388092][ T8712]  <TASK>
[  278.388099][ T8712]  dump_stack_lvl+0x16c/0x1f0
[  278.388123][ T8712]  should_fail_ex+0x512/0x640
[  278.388147][ T8712]  ? __kmalloc_cache_node_noprof+0x5a/0x420
[  278.388182][ T8712]  should_failslab+0xc2/0x120
[  278.388203][ T8712]  __kmalloc_cache_node_noprof+0x6d/0x420
[  278.388233][ T8712]  ? register_lock_class+0x41/0x4c0
[  278.388266][ T8712]  ? __get_vm_area_node+0x101/0x330
[  278.388295][ T8712]  __get_vm_area_node+0x101/0x330
[  278.388320][ T8712]  ? __lock_acquire+0xb8a/0x1c90
[  278.388348][ T8712]  __vmalloc_node_range_noprof+0x271/0x14b0
[  278.388377][ T8712]  ? n_tty_open+0x1a/0x170
[  278.388406][ T8712]  ? do_raw_spin_unlock+0x172/0x230
[  278.388443][ T8712]  ? n_tty_open+0x1a/0x170
[  278.388478][ T8712]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  278.388505][ T8712]  ? console_unlock+0x184/0x210
[  278.388523][ T8712]  ? __pfx_console_unlock+0x10/0x10
[  278.388544][ T8712]  ? __pfx___ldsem_down_write_nested+0x10/0x10
[  278.388578][ T8712]  ? n_tty_open+0x1a/0x170
[  278.388605][ T8712]  __vmalloc_node_noprof+0xad/0xf0
[  278.388633][ T8712]  ? n_tty_open+0x1a/0x170
[  278.388661][ T8712]  ? __pfx_n_tty_open+0x10/0x10
[  278.388691][ T8712]  n_tty_open+0x1a/0x170
[  278.388720][ T8712]  ? __pfx_n_tty_open+0x10/0x10
[  278.388750][ T8712]  tty_ldisc_open+0x9c/0x120
[  278.388774][ T8712]  tty_ldisc_setup+0x40/0x100
[  278.388798][ T8712]  tty_init_dev.part.0+0x1ec/0x500
[  278.388828][ T8712]  tty_open+0xa50/0xf90
[  278.388860][ T8712]  ? __pfx_tty_open+0x10/0x10
[  278.388886][ T8712]  ? chrdev_open+0x10b/0x6a0
[  278.388908][ T8712]  ? __pfx_tty_open+0x10/0x10
[  278.388934][ T8712]  chrdev_open+0x234/0x6a0
[  278.388952][ T8712]  ? __pfx_apparmor_file_open+0x10/0x10
[  278.388972][ T8712]  ? __pfx_chrdev_open+0x10/0x10
[  278.388993][ T8712]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  278.389027][ T8712]  do_dentry_open+0x741/0x1c10
[  278.389059][ T8712]  ? __pfx_chrdev_open+0x10/0x10
[  278.389083][ T8712]  vfs_open+0x82/0x3f0
[  278.389109][ T8712]  path_openat+0x1de4/0x2cb0
[  278.389148][ T8712]  ? __pfx_path_openat+0x10/0x10
[  278.389180][ T8712]  ? __lock_acquire+0xb8a/0x1c90
[  278.389209][ T8712]  do_filp_open+0x20b/0x470
[  278.389240][ T8712]  ? __pfx_do_filp_open+0x10/0x10
[  278.389295][ T8712]  ? alloc_fd+0x471/0x7d0
[  278.389332][ T8712]  do_sys_openat2+0x11b/0x1d0
[  278.389356][ T8712]  ? __pfx_do_sys_openat2+0x10/0x10
[  278.389391][ T8712]  __x64_sys_openat+0x174/0x210
[  278.389416][ T8712]  ? __pfx___x64_sys_openat+0x10/0x10
[  278.389451][ T8712]  do_syscall_64+0xcd/0x490
[  278.389474][ T8712]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  278.389494][ T8712] RIP: 0033:0x7f1dfad8e969
[  278.389512][ T8712] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  278.389532][ T8712] RSP: 002b:00007f1dfbcbb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  278.389552][ T8712] RAX: ffffffffffffffda RBX: 00007f1dfafb6080 RCX: 00007f1dfad8e969
[  278.389565][ T8712] RDX: 0000000000040002 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  278.389578][ T8712] RBP: 00007f1dfae10ab1 R08: 0000000000000000 R09: 0000000000000000
[  278.389590][ T8712] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000
[  278.389602][ T8712] R13: 0000000000000000 R14: 00007f1dfafb6080 R15: 00007ffec2bf0bb8
[  278.389627][ T8712]  </TASK>
[  278.389640][ T8712] tty tty26: ldisc open failed (-12), clearing slot 25
[  279.106767][ T8723] input: jJǸ-���9�%v����l��Q�	J8fi� as /devices/virtual/input/input31
[  279.154035][ T8725] WARNING! power/level is deprecated; use power/control instead
[  279.353410][ T8729] FAULT_INJECTION: forcing a failure.
[  279.353410][ T8729] name failslab, interval 1, probability 0, space 0, times 0
[  279.380560][ T8729] CPU: 1 UID: 0 PID: 8729 Comm: syz.2.712 Tainted: G     U              6.15.0-syzkaller-11173-g546b1c9e93c2 #0 PREEMPT(full) 
[  279.380604][ T8729] Tainted: [U]=USER
[  279.380614][ T8729] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  279.380629][ T8729] Call Trace:
[  279.380638][ T8729]  <TASK>
[  279.380648][ T8729]  dump_stack_lvl+0x16c/0x1f0
[  279.380681][ T8729]  should_fail_ex+0x512/0x640
[  279.380715][ T8729]  ? __kmalloc_noprof+0xbf/0x510
[  279.380763][ T8729]  ? __register_sysctl_table+0xea2/0x1900
[  279.380792][ T8729]  should_failslab+0xc2/0x120
[  279.380822][ T8729]  __kmalloc_noprof+0xd2/0x510
[  279.380863][ T8729]  ? __register_sysctl_table+0xe8e/0x1900
[  279.380901][ T8729]  __register_sysctl_table+0xea2/0x1900
[  279.380940][ T8729]  ? __pfx___register_sysctl_table+0x10/0x10
[  279.380968][ T8729]  ? is_module_address+0x69/0xf0
[  279.381006][ T8729]  ? register_net_sysctl_sz+0x228/0x3e0
[  279.381047][ T8729]  __devinet_sysctl_register+0x1b9/0x360
[  279.381091][ T8729]  ? __pfx___devinet_sysctl_register+0x10/0x10
[  279.381134][ T8729]  ? devinet_init_net+0xeb/0x910
[  279.381172][ T8729]  ? __asan_memcpy+0x3c/0x60
[  279.381216][ T8729]  devinet_init_net+0x347/0x910
[  279.381255][ T8729]  ? __pfx_devinet_init_net+0x10/0x10
[  279.381293][ T8729]  ops_init+0x1e2/0x5f0
[  279.381326][ T8729]  setup_net+0x1ff/0x510
[  279.381353][ T8729]  ? lockdep_init_map_type+0x5c/0x280
[  279.381391][ T8729]  ? __pfx_setup_net+0x10/0x10
[  279.381423][ T8729]  ? debug_mutex_init+0x37/0x70
[  279.381460][ T8729]  copy_net_ns+0x2a6/0x5f0
[  279.381498][ T8729]  create_new_namespaces+0x3ea/0xa90
[  279.381538][ T8729]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  279.381571][ T8729]  ksys_unshare+0x45b/0xa40
[  279.381608][ T8729]  ? __pfx_ksys_unshare+0x10/0x10
[  279.381645][ T8729]  ? xfd_validate_state+0x61/0x180
[  279.381692][ T8729]  __x64_sys_unshare+0x31/0x40
[  279.381728][ T8729]  do_syscall_64+0xcd/0x490
[  279.381758][ T8729]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  279.381787][ T8729] RIP: 0033:0x7f01d0f8e969
[  279.381809][ T8729] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  279.381837][ T8729] RSP: 002b:00007f01d1d20038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  279.381862][ T8729] RAX: ffffffffffffffda RBX: 00007f01d11b5fa0 RCX: 00007f01d0f8e969
[  279.381880][ T8729] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  279.381896][ T8729] RBP: 00007f01d1010ab1 R08: 0000000000000000 R09: 0000000000000000
[  279.381912][ T8729] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  279.381929][ T8729] R13: 0000000000000000 R14: 00007f01d11b5fa0 R15: 00007fffa0127778
[  279.381965][ T8729]  </TASK>
[  279.381976][ T8729] sysctl could not get directory: /net/ipv4/conf/default -12
[  279.687808][ T8735] input input33: cannot allocate more than FF_MAX_EFFECTS effects
[  280.162151][ T8750] block nbd9: NBD_DISCONNECT
[  281.563480][ T8777] netlink: 16 bytes leftover after parsing attributes in process `syz.1.723'.
[  281.596700][ T8778] FAULT_INJECTION: forcing a failure.
[  281.596700][ T8778] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  281.620244][ T8777] netlink: 93 bytes leftover after parsing attributes in process `syz.1.723'.
[  281.639723][ T8778] CPU: 1 UID: 0 PID: 8778 Comm: syz.3.724 Tainted: G     U              6.15.0-syzkaller-11173-g546b1c9e93c2 #0 PREEMPT(full) 
[  281.639764][ T8778] Tainted: [U]=USER
[  281.639773][ T8778] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  281.639788][ T8778] Call Trace:
[  281.639797][ T8778]  <TASK>
[  281.639807][ T8778]  dump_stack_lvl+0x16c/0x1f0
[  281.639839][ T8778]  should_fail_ex+0x512/0x640
[  281.639877][ T8778]  _copy_to_iter+0x463/0x16f0
[  281.639924][ T8778]  ? __pfx__copy_to_iter+0x10/0x10
[  281.639963][ T8778]  ? find_held_lock+0x2b/0x80
[  281.639991][ T8778]  ? if6_seq_stop+0x31/0xb0
[  281.640023][ T8778]  seq_read_iter+0xcf8/0x12c0
[  281.640075][ T8778]  seq_read+0x39e/0x4e0
[  281.640111][ T8778]  ? __pfx_seq_read+0x10/0x10
[  281.640147][ T8778]  ? copy_iovec_from_user+0x131/0x170
[  281.640185][ T8778]  ? iovec_from_user+0xbb/0x140
[  281.640241][ T8778]  ? __pfx_seq_read+0x10/0x10
[  281.640276][ T8778]  proc_reg_read+0x240/0x330
[  281.640303][ T8778]  ? __pfx_proc_reg_read+0x10/0x10
[  281.640328][ T8778]  vfs_readv+0x5be/0x8b0
[  281.640373][ T8778]  ? __pfx_vfs_readv+0x10/0x10
[  281.640417][ T8778]  ? find_held_lock+0x2b/0x80
[  281.640463][ T8778]  ? __fget_files+0x20e/0x3c0
[  281.640511][ T8778]  ? do_preadv+0x1a6/0x270
[  281.640547][ T8778]  do_preadv+0x1a6/0x270
[  281.640586][ T8778]  ? __pfx_do_preadv+0x10/0x10
[  281.640634][ T8778]  do_syscall_64+0xcd/0x490
[  281.640665][ T8778]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  281.640693][ T8778] RIP: 0033:0x7f932878e969
[  281.640714][ T8778] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  281.640741][ T8778] RSP: 002b:00007f93295f2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  281.640767][ T8778] RAX: ffffffffffffffda RBX: 00007f93289b6080 RCX: 00007f932878e969
[  281.640784][ T8778] RDX: 0000000000000006 RSI: 0000200000000080 RDI: 0040000000000003
[  281.640802][ T8778] RBP: 00007f93295f2090 R08: 0000000000000005 R09: 0000000000000000
[  281.640818][ T8778] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000001
[  281.640833][ T8778] R13: 0000000000000001 R14: 00007f93289b6080 R15: 00007ffd89b59828
[  281.640869][ T8778]  </TASK>
[  284.394469][ T8831] netlink: 16 bytes leftover after parsing attributes in process `syz.3.736'.
[  284.461449][ T8831] netlink: 93 bytes leftover after parsing attributes in process `syz.3.736'.
[  284.970604][ T8854] input: jJǸ-���9�%v����l��Q�	J8fi� as /devices/virtual/input/input34
[  285.484126][ T8868] netlink: 28 bytes leftover after parsing attributes in process `syz.3.749'.
[  285.793480][ T8870] hub 8-0:1.0: USB hub found
[  285.817072][ T8870] hub 8-0:1.0: 1 port detected
[  285.989655][ T8880] netlink: 16 bytes leftover after parsing attributes in process `syz.0.751'.
[  286.051304][ T8883] netlink: 93 bytes leftover after parsing attributes in process `syz.0.751'.
[  286.701323][ T8893] input: jJǸ-���9�%v����l��Q�	J8fi� as /devices/virtual/input/input35
[  286.841526][ T8898] FAULT_INJECTION: forcing a failure.
[  286.841526][ T8898] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  286.876947][ T8898] CPU: 0 UID: 0 PID: 8898 Comm: syz.0.756 Tainted: G     U              6.15.0-syzkaller-11173-g546b1c9e93c2 #0 PREEMPT(full) 
[  286.876990][ T8898] Tainted: [U]=USER
[  286.876999][ T8898] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  286.877015][ T8898] Call Trace:
[  286.877024][ T8898]  <TASK>
[  286.877035][ T8898]  dump_stack_lvl+0x16c/0x1f0
[  286.877066][ T8898]  should_fail_ex+0x512/0x640
[  286.877104][ T8898]  should_fail_alloc_page+0xe7/0x130
[  286.877136][ T8898]  prepare_alloc_pages+0x3c2/0x610
[  286.877170][ T8898]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  286.877206][ T8898]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  286.877253][ T8898]  ? arch_stack_walk+0xa6/0x100
[  286.877306][ T8898]  ? __lock_acquire+0x622/0x1c90
[  286.877342][ T8898]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  286.877390][ T8898]  ? stack_depot_save_flags+0x28/0xa40
[  286.877433][ T8898]  ? register_lock_class+0x41/0x4c0
[  286.877468][ T8898]  ? find_held_lock+0x2b/0x80
[  286.877495][ T8898]  ? ima_match_policy+0x7f9/0x22e0
[  286.877538][ T8898]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  286.877591][ T8898]  ? policy_nodemask+0xea/0x4e0
[  286.877622][ T8898]  alloc_pages_mpol+0x1fb/0x550
[  286.877652][ T8898]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  286.877691][ T8898]  alloc_pages_noprof+0x131/0x390
[  286.877720][ T8898]  __pmd_alloc+0x3b/0x930
[  286.877751][ T8898]  ? find_held_lock+0x2b/0x80
[  286.877781][ T8898]  __handle_mm_fault+0xaac/0x5490
[  286.877831][ T8898]  ? __pfx___handle_mm_fault+0x10/0x10
[  286.877867][ T8898]  ? __pfx_mt_find+0x10/0x10
[  286.877917][ T8898]  ? find_vma+0xbf/0x140
[  286.877946][ T8898]  ? __pfx_find_vma+0x10/0x10
[  286.877980][ T8898]  handle_mm_fault+0x589/0xd10
[  286.878022][ T8898]  ? __pkru_allows_pkey+0x21/0xb0
[  286.878061][ T8898]  do_user_addr_fault+0x7a6/0x1370
[  286.878102][ T8898]  ? rcu_is_watching+0x12/0xc0
[  286.878136][ T8898]  exc_page_fault+0x5c/0xb0
[  286.878179][ T8898]  asm_exc_page_fault+0x26/0x30
[  286.878205][ T8898] RIP: 0010:rep_movs_alternative+0x30/0x90
[  286.878242][ T8898] Code: 83 f9 08 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 bd 10 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08
[  286.878269][ T8898] RSP: 0018:ffffc90003937a58 EFLAGS: 00050206
[  286.878292][ T8898] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000038
[  286.878308][ T8898] RDX: fffff52000726f5c RSI: 0000000000000000 RDI: ffffc90003937aa8
[  286.878326][ T8898] RBP: 0000000000000038 R08: 0000000000000001 R09: fffff52000726f5b
[  286.878342][ T8898] R10: ffffc90003937adf R11: 0000000000000001 R12: 0000000000000000
[  286.878358][ T8898] R13: ffffc90003937aa8 R14: ffffc90003937b90 R15: ffffc90003937aa8
[  286.878395][ T8898]  _copy_from_user+0x98/0xd0
[  286.878435][ T8898]  copy_msghdr_from_user+0x98/0x160
[  286.878464][ T8898]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  286.878500][ T8898]  ? __lock_acquire+0x622/0x1c90
[  286.878542][ T8898]  ___sys_recvmsg+0xdb/0x1a0
[  286.878575][ T8898]  ? __pfx____sys_recvmsg+0x10/0x10
[  286.878607][ T8898]  ? find_held_lock+0x2b/0x80
[  286.878657][ T8898]  do_recvmmsg+0x2fe/0x750
[  286.878690][ T8898]  ? __pfx_do_recvmmsg+0x10/0x10
[  286.878726][ T8898]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  286.878766][ T8898]  ? __fget_files+0x20e/0x3c0
[  286.878815][ T8898]  __x64_sys_recvmmsg+0x22a/0x280
[  286.878847][ T8898]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  286.878889][ T8898]  do_syscall_64+0xcd/0x490
[  286.878919][ T8898]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  286.878946][ T8898] RIP: 0033:0x7fad4318e969
[  286.878985][ T8898] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  286.879013][ T8898] RSP: 002b:00007fad440a8038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  286.879040][ T8898] RAX: ffffffffffffffda RBX: 00007fad433b5fa0 RCX: 00007fad4318e969
[  286.879058][ T8898] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000003
[  286.879075][ T8898] RBP: 00007fad440a8090 R08: 0000000000000000 R09: 0000000000000000
[  286.879092][ T8898] R10: 00000000000007ff R11: 0000000000000246 R12: 0000000000000001
[  286.879109][ T8898] R13: 0000000000000000 R14: 00007fad433b5fa0 R15: 00007fff790e8698
[  286.879146][ T8898]  </TASK>
[  287.291685][    C0] vkms_vblank_simulate: vblank timer overrun
[  288.402262][ T8899] 
[  288.404710][ T8899] ======================================================
[  288.411738][ T8899] WARNING: possible circular locking dependency detected
[  288.418773][ T8899] 6.15.0-syzkaller-11173-g546b1c9e93c2 #0 Tainted: G     U             
[  288.427145][ T8899] ------------------------------------------------------
[  288.434215][ T8899] syz.3.754/8899 is trying to acquire lock:
[  288.440106][ T8899] ffff8881427e4a58 (&q->elevator_lock){+.+.}-{4:4}, at: elevator_change+0x103/0x400
[  288.449513][ T8899] 
[  288.449513][ T8899] but task is already holding lock:
[  288.456887][ T8899] ffff8881427e4520 (&q->q_usage_counter(io)#55){++++}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20
[  288.468160][ T8899] 
[  288.468160][ T8899] which lock already depends on the new lock.
[  288.468160][ T8899] 
[  288.478571][ T8899] 
[  288.478571][ T8899] the existing dependency chain (in reverse order) is:
[  288.487594][ T8899] 
[  288.487594][ T8899] -> #3 (&q->q_usage_counter(io)#55){++++}-{0:0}:
[  288.496232][ T8899]        blk_alloc_queue+0x619/0x760
[  288.501538][ T8899]        blk_mq_alloc_queue+0x175/0x290
[  288.507111][ T8899]        __blk_mq_alloc_disk+0x29/0x120
[  288.512675][ T8899]        nbd_dev_add+0x4a0/0xbc0
[  288.517643][ T8899]        nbd_init+0x181/0x320
[  288.522351][ T8899]        do_one_initcall+0x120/0x6e0
[  288.527655][ T8899]        kernel_init_freeable+0x5c2/0x900
[  288.533393][ T8899]        kernel_init+0x1c/0x2b0
[  288.538265][ T8899]        ret_from_fork+0x5d7/0x6f0
[  288.543406][ T8899]        ret_from_fork_asm+0x1a/0x30
[  288.548713][ T8899] 
[  288.548713][ T8899] -> #2 (fs_reclaim){+.+.}-{0:0}:
[  288.555948][ T8899]        fs_reclaim_acquire+0x102/0x150
[  288.561543][ T8899]        prepare_alloc_pages+0x162/0x610
[  288.567207][ T8899]        __alloc_frozen_pages_noprof+0x18b/0x23f0
[  288.573656][ T8899]        __alloc_pages_noprof+0xb/0x1b0
[  288.579259][ T8899]        pcpu_populate_chunk+0x110/0xb00
[  288.584921][ T8899]        pcpu_alloc_noprof+0x86a/0x1470
[  288.590521][ T8899]        xt_percpu_counter_alloc+0x13e/0x1b0
[  288.596533][ T8899]        find_check_entry.constprop.0+0xbc/0x9b0
[  288.602890][ T8899]        translate_table+0xc98/0x1720
[  288.608330][ T8899]        ipt_register_table+0x102/0x430
[  288.613921][ T8899]        iptable_nat_table_init+0x4b/0x250
[  288.619759][ T8899]        xt_find_table_lock+0x2e4/0x520
[  288.625345][ T8899]        xt_request_find_table_lock+0x28/0xf0
[  288.631447][ T8899]        get_info+0x190/0x610
[  288.636163][ T8899]        do_ipt_get_ctl+0x169/0xa10
[  288.641384][ T8899]        nf_getsockopt+0x79/0xe0
[  288.646366][ T8899]        ip_getsockopt+0x18c/0x1e0
[  288.651509][ T8899]        tcp_getsockopt+0x9e/0x100
[  288.656656][ T8899]        do_sock_getsockopt+0x3ff/0x800
[  288.662224][ T8899]        __sys_getsockopt+0x123/0x1b0
[  288.667609][ T8899]        __x64_sys_getsockopt+0xbd/0x160
[  288.673253][ T8899]        do_syscall_64+0xcd/0x490
[  288.678290][ T8899]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  288.684740][ T8899] 
[  288.684740][ T8899] -> #1 (pcpu_alloc_mutex){+.+.}-{4:4}:
[  288.692504][ T8899]        __mutex_lock+0x199/0xb90
[  288.697567][ T8899]        pcpu_alloc_noprof+0xb4c/0x1470
[  288.703138][ T8899]        sbitmap_init_node+0x2fd/0x770
[  288.708627][ T8899]        sbitmap_queue_init_node+0x41/0x560
[  288.714552][ T8899]        blk_mq_init_tags+0x12d/0x2b0
[  288.719955][ T8899]        blk_mq_alloc_map_and_rqs+0x237/0xf60
[  288.726042][ T8899]        blk_mq_init_sched+0x30c/0x610
[  288.731548][ T8899]        elevator_switch+0x1e1/0x7f0
[  288.736843][ T8899]        elevator_change+0x2ac/0x400
[  288.742143][ T8899]        elevator_set_default+0x292/0x320
[  288.747880][ T8899]        blk_register_queue+0x393/0x4f0
[  288.753465][ T8899]        __add_disk+0x74a/0xf00
[  288.758350][ T8899]        add_disk_fwnode+0x13f/0x5d0
[  288.763664][ T8899]        nbd_dev_add+0x791/0xbc0
[  288.768626][ T8899]        nbd_init+0x181/0x320
[  288.773323][ T8899]        do_one_initcall+0x120/0x6e0
[  288.778625][ T8899]        kernel_init_freeable+0x5c2/0x900
[  288.784367][ T8899]        kernel_init+0x1c/0x2b0
[  288.789260][ T8899]        ret_from_fork+0x5d7/0x6f0
[  288.794411][ T8899]        ret_from_fork_asm+0x1a/0x30
[  288.799739][ T8899] 
[  288.799739][ T8899] -> #0 (&q->elevator_lock){+.+.}-{4:4}:
[  288.807673][ T8899]        __lock_acquire+0x126f/0x1c90
[  288.813076][ T8899]        lock_acquire+0x179/0x350
[  288.818124][ T8899]        __mutex_lock+0x199/0xb90
[  288.823190][ T8899]        elevator_change+0x103/0x400
[  288.828497][ T8899]        elv_iosched_store+0x2eb/0x3a0
[  288.833984][ T8899]        queue_attr_store+0x276/0x320
[  288.839382][ T8899]        sysfs_kf_write+0xef/0x150
[  288.844525][ T8899]        kernfs_fop_write_iter+0x354/0x510
[  288.850367][ T8899]        vfs_write+0x6c4/0x1150
[  288.855264][ T8899]        ksys_write+0x12a/0x250
[  288.860164][ T8899]        do_syscall_64+0xcd/0x490
[  288.865244][ T8899]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  288.871683][ T8899] 
[  288.871683][ T8899] other info that might help us debug this:
[  288.871683][ T8899] 
[  288.881936][ T8899] Chain exists of:
[  288.881936][ T8899]   &q->elevator_lock --> fs_reclaim --> &q->q_usage_counter(io)#55
[  288.881936][ T8899] 
[  288.895710][ T8899]  Possible unsafe locking scenario:
[  288.895710][ T8899] 
[  288.903172][ T8899]        CPU0                    CPU1
[  288.908546][ T8899]        ----                    ----
[  288.913914][ T8899]   lock(&q->q_usage_counter(io)#55);
[  288.919311][ T8899]                                lock(fs_reclaim);
[  288.925856][ T8899]                                lock(&q->q_usage_counter(io)#55);
[  288.933773][ T8899]   lock(&q->elevator_lock);
[  288.938382][ T8899] 
[  288.938382][ T8899]  *** DEADLOCK ***
[  288.938382][ T8899] 
[  288.946534][ T8899] 6 locks held by syz.3.754/8899:
[  288.951562][ T8899]  #0: ffff888035e9c428 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[  288.960600][ T8899]  #1: ffff888142765888 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x510
[  288.970399][ T8899]  #2: ffff8881482a7c38 (kn->active#125){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2b2/0x510
[  288.980539][ T8899]  #3: ffff88802652b188 (&set->update_nr_hwq_lock){++++}-{4:4}, at: elv_iosched_store+0x337/0x3a0
[  288.991222][ T8899]  #4: ffff8881427e4520 (&q->q_usage_counter(io)#55){++++}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20
[  289.002919][ T8899]  #5: ffff8881427e4558 (&q->q_usage_counter(queue)#7){+.+.}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20
[  289.014808][ T8899] 
[  289.014808][ T8899] stack backtrace:
[  289.020724][ T8899] CPU: 1 UID: 0 PID: 8899 Comm: syz.3.754 Tainted: G     U              6.15.0-syzkaller-11173-g546b1c9e93c2 #0 PREEMPT(full) 
[  289.020759][ T8899] Tainted: [U]=USER
[  289.020766][ T8899] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  289.020780][ T8899] Call Trace:
[  289.020789][ T8899]  <TASK>
[  289.020797][ T8899]  dump_stack_lvl+0x116/0x1f0
[  289.020822][ T8899]  print_circular_bug+0x275/0x350
[  289.020853][ T8899]  check_noncircular+0x14c/0x170
[  289.020886][ T8899]  __lock_acquire+0x126f/0x1c90
[  289.020921][ T8899]  lock_acquire+0x179/0x350
[  289.020950][ T8899]  ? elevator_change+0x103/0x400
[  289.020972][ T8899]  ? __pfx___might_resched+0x10/0x10
[  289.020997][ T8899]  __mutex_lock+0x199/0xb90
[  289.021020][ T8899]  ? elevator_change+0x103/0x400
[  289.021040][ T8899]  ? elevator_change+0x103/0x400
[  289.021061][ T8899]  ? __pfx___mutex_lock+0x10/0x10
[  289.021086][ T8899]  ? blk_mq_cancel_work_sync+0xd8/0x110
[  289.021114][ T8899]  ? __pfx_blk_mq_cancel_work_sync+0x10/0x10
[  289.021145][ T8899]  ? elevator_change+0x103/0x400
[  289.021164][ T8899]  elevator_change+0x103/0x400
[  289.021186][ T8899]  elv_iosched_store+0x2eb/0x3a0
[  289.021208][ T8899]  ? __pfx_elv_iosched_store+0x10/0x10
[  289.021235][ T8899]  ? __mutex_trylock_common+0xe9/0x250
[  289.021268][ T8899]  ? __pfx_elv_iosched_store+0x10/0x10
[  289.021290][ T8899]  queue_attr_store+0x276/0x320
[  289.021321][ T8899]  ? __pfx_queue_attr_store+0x10/0x10
[  289.021349][ T8899]  ? __lock_acquire+0x622/0x1c90
[  289.021385][ T8899]  ? find_held_lock+0x2b/0x80
[  289.021407][ T8899]  ? sysfs_file_kobj+0xe4/0x290
[  289.021439][ T8899]  ? __pfx_queue_attr_store+0x10/0x10
[  289.021468][ T8899]  sysfs_kf_write+0xef/0x150
[  289.021499][ T8899]  kernfs_fop_write_iter+0x354/0x510
[  289.021526][ T8899]  ? __pfx_sysfs_kf_write+0x10/0x10
[  289.021558][ T8899]  vfs_write+0x6c4/0x1150
[  289.021593][ T8899]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  289.021623][ T8899]  ? __pfx_vfs_write+0x10/0x10
[  289.021660][ T8899]  ? do_futex+0x122/0x350
[  289.021693][ T8899]  ? __x64_sys_futex+0x1e0/0x4c0
[  289.021721][ T8899]  ? __x64_sys_futex+0x1e9/0x4c0
[  289.021750][ T8899]  ksys_write+0x12a/0x250
[  289.021785][ T8899]  ? __pfx_ksys_write+0x10/0x10
[  289.021823][ T8899]  do_syscall_64+0xcd/0x490
[  289.021847][ T8899]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  289.021869][ T8899] RIP: 0033:0x7f932878e969
[  289.021887][ T8899] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  289.021910][ T8899] RSP: 002b:00007f93295f2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  289.021931][ T8899] RAX: ffffffffffffffda RBX: 00007f93289b6080 RCX: 00007f932878e969
[  289.021947][ T8899] RDX: 0000000000000008 RSI: 0000200000000000 RDI: 0000000000000001
[  289.021961][ T8899] RBP: 00007f9328810ab1 R08: 0000000000000000 R09: 0000000000000000
[  289.021975][ T8899] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  289.021988][ T8899] R13: 0000000000000000 R14: 00007f93289b6080 R15: 00007ffd89b59828
[  289.022010][ T8899]  </TASK>