last executing test programs:

3m4.888514273s ago: executing program 0 (id=707):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002dbd7000f9dbdf25010000000600020000000000050007001000000008000900dc781e2108000a000800000014001f00ff090000000000000000000000000001140020"], 0x5c}, 0x1, 0x0, 0x0, 0x40000}, 0x4008004)
setreuid$auto(0xffffffffffffffff, 0x0)
socket(0x2, 0x3, 0xa)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
bind$auto(0x3, 0x0, 0x68)
socket(0x10, 0x80002, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r5=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r4, &(0x7f0000000080)={0x0, 0xf000, &(0x7f0000000040)={&(0x7f0000000240)={0x24, r3, 0x13, 0x70bd26, 0x25dfdbdd, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r5}, @NL80211_ATTR_WIPHY_TX_POWER_SETTING={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x4004080}, 0x20040894)
sendmsg$auto_NL80211_CMD_SET_CHANNEL(r2, &(0x7f0000000100)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000000c0)={&(0x7f0000000680)={0x3ac, r3, 0x200, 0x70bd29, 0x25dfdbfd, {}, [@NL80211_ATTR_HIDDEN_SSID={0x8, 0x7e, 0xffff}, @NL80211_ATTR_CSA_IES={0x234, 0xb9, 0x0, 0x1, [@nested={0x188, 0x57, 0x0, 0x1, [@typed={0x4, 0x105}, @nested={0x4, 0xb9}, @nested={0x4, 0xfa}, @nested={0x4, 0x9}, @nested={0x4, 0x83}, @generic="6870e1cce7188311c57a058f98398271103896a2ad1eaa05cfde8801868b2f82439ccadf0057f04eb1bf0b2e22cab477e114da4f7600fcb3167bbe3546c1835c3f9ee9a7bff3d2ca9860c6c563406de32f77317f4c7978aa6b0344b46ac5a76a1124d84db0be9ec949aa8686fb03b8d92ebcab1cb2dea224183944a0bafecc282779c9f9ab289ce37015", @generic="9034c8c8da581565242379913406aa897e0d22105b720959b7c585ed08dff03c6327d7df7603d6b5b85d5d0ab044f313b1f2e43a21a0cf1b7ecd8cd169039f0cf1e9196098f38f2fd6baef484764b63703227d36a2ef0b3bca55ddfc11742da6c5aeff67dc87f71239fe64bc8c00371fe0b0c328987b0fe513fd852558601b9ad77f83e102a543b0f66a7102bed656c8360babbe65ae4807222d1188c8298da4eb6a2fc7434168467e51276901420dfd6047bab12e4b22cf482b48080ba3dfa0782060865ef5078ecf63c2962ee205f9bb496ba7402d1e58bf7499da6b6a8734e959f12515c6"]}, @typed={0x93, 0xc2, 0x0, 0x0, @binary="913ccf55f13b8561f606e4780c2da481ffe83da726817cd16339b560fc889759ded16dc5e6e9f66b9a9f56052e0615309790b5fb520562150e3e40c8dcce8fa2e7091ae83ecc2d805128995d6834af7378e14d45f828104afebf4725d316e56e9acbc8c65b2adc983d7698a34f6b7e80c2d20432ed728a6803148d4fa47efe922f0f5270608d3c86378e53c6288b76"}, @typed={0x14, 0x65, 0x0, 0x0, @ipv6=@mcast1}]}, @NL80211_ATTR_MAC_MASK={0x1e, 0xd7, "ca3fdaf4c8484f926fedb70642110fac5327b9a2697124e65337"}, @NL80211_ATTR_FTM_RESPONDER={0x8c, 0x10e, 0x0, 0x1, [@NL80211_FTM_RESP_ATTR_LCI={0x85, 0x2, "35dc11c357ac32cb777cb94bc26221f714654a470289d0682bdd2012e0283d9cbd7b3f7c2d59a33ee3da3c03c54478636df112646c9d8deff5c690871755cfa46a30f2619e069cbfde083ccc0908b743973dc867d44bcc8e29bedb0f71bfe14297c67922442c00c9d92a4ae66f52ec3b200464fe6f3f2aed7e484f54c49bb0e89c"}]}, @NL80211_ATTR_AUTH_DATA={0x9e, 0x9c, "e7bc0c570672200b26658690ad796c2309ea29693e7f03e44f7bed9cf13e83fff0ec3fed5ee243c7f4a5c660c7f1891b89cab7da7b69583f78b52783f50168e5c7b0ce6b3d817a4b4045ab62ad1605c18fee44301ef13369d5bca6170300f77f3bb6f36311a3912ccc6accc811dcc2420c67eda8659be6482e1f244e30bf360240e743eddcbbb854bcc1868045adda5c8fb7d1e8ba8212af3cc9"}, @NL80211_ATTR_SCHED_SCAN_INTERVAL={0x8, 0x77, 0x6}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x40}]}, 0x3ac}, 0x1, 0x0, 0x0, 0x8008840}, 0x1)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000007a80), 0xffffffffffffffff)

3m4.021398664s ago: executing program 0 (id=712):
mmap$auto(0x4, 0x400009, 0x8000000df, 0x2009b72, 0xffffffffffffffff, 0xfffffffffffffffa)
select$auto(0x0, &(0x7f0000000280)={[0x2, 0x9, 0x5, 0x0, 0x1, 0x7, 0x51ae5273, 0x1, 0x2, 0xfffffffffffffffd, 0x2e, 0x3, 0x25, 0x3b, 0x800, 0x7]}, &(0x7f0000000300)={[0xb75549, 0x6, 0x1, 0x7, 0x3, 0x2, 0x0, 0x6ec, 0xbf47, 0xb, 0x3ff, 0x6, 0x4, 0x1, 0xffffffff00000000, 0x7]}, &(0x7f0000000400)={[0xda10, 0xccc, 0x275a, 0x5, 0x2, 0x6, 0x2, 0x8, 0x2, 0x6, 0xdb7, 0x81, 0x19a5, 0x5, 0x3, 0x7]}, &(0x7f0000000380)={0xc, 0x2e})
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x0, 0x5, 0xa)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0)
r1 = syz_open_procfs$namespace(0x0, 0x0)
fstat$auto(r1, 0x0)
r2 = syz_genetlink_get_family_id$auto_gtp(&(0x7f00000000c0), r0)
sendmsg$auto_GTP_CMD_NEWPDP(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x5c, r2, 0x500, 0x70bd28, 0x25dfdbfc, {}, [@GTPA_LINK={0x8, 0x1, 0xa}, @GTPA_FLOW={0x6, 0x6, 0x6}, @GTPA_FLOW={0x6, 0x6, 0xa}, @GTPA_MS_ADDR6={0x14, 0xc, @mcast1}, @GTPA_LINK={0x8, 0x1, 0x5}, @GTPA_MS_ADDR6={0x14, 0xc, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}]}, 0x5c}, 0x1, 0x0, 0x0, 0x40}, 0x0)
write$auto(0x3, 0x0, 0xfdef)
mmap$auto(0x0, 0x580f, 0xffb, 0x8000000008011, 0x3, 0x0)
madvise$auto(0x0, 0x2003f0, 0x15)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x3f, 0x5)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/nbd10\x00', 0x22bc2, 0x0)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/thread-self/net/rpc/auth.unix.gid/channel\x00', 0x8f3b7a51b80ebd01, 0x0)
write$auto_proc_reg_file_ops_compat_inode(r3, &(0x7f0000000040)="20edd9d1027e0dc0023af10e9bfa1babfa3a3753ca9aee370a", 0x19)
write$auto(0x3, 0x0, 0x7fffffff)
syz_clone3(&(0x7f0000000200)={0x182000080, 0x0, 0x0, 0x0, {0x1a}, 0x0, 0x0, 0x0, 0x0}, 0x58)
openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000000), 0x8100, 0x0)

2m58.749791254s ago: executing program 0 (id=730):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/i8042/serio0/force_release\x00', 0xc2082, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x1, 0x6, 0x0, 0x1, 0x368e, 0x2, {0x100000000, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x1008000, 0x0, 0x80000004, 0x81, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x804})
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
ioctl$auto_USBDEVFS_RESETEP(0xffffffffffffffff, 0x80045503, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
connect$auto(0x3, 0x0, 0x54)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/kernel/numa_balancing\x00', 0x2002, 0x0)
r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/team_slave_0/rpl_seg_enabled\x00', 0x20202, 0x0)
sendfile$auto(r1, r2, 0x0, 0x1)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x8000000401, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/workqueue/nvme-delete-wq/affinity_strict\x00', 0x183042, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/kvm_amd/parameters/pause_filter_thresh\x00', 0x200, 0x0)
read$auto(r3, 0x0, 0x1)
write$auto(0x3, 0x0, 0xfdef)
r4 = socket(0x25, 0x5, 0x0)
sendmsg$auto_NL80211_CMD_REGISTER_BEACONS(r4, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000180)={&(0x7f0000001ac0)=ANY=[@ANYBLOB="cc120000", @ANYRES16=0x0, @ANYBLOB="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", @ANYRES32, @ANYBLOB="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"], 0x12cc}, 0x1, 0x0, 0x0, 0x20000895}, 0x1)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000001a80)='/dev/bus/usb/001/001\x00', 0x29202, 0x0)
ioctl$auto(0x3, 0x541b, 0x7f)
ioctl$auto_USBDEVFS_RELEASE_PORT(0xffffffffffffffff, 0x80045519, &(0x7f00000000c0)=0x9)
mmap$auto(0x0, 0x4, 0x4000000000e2, 0x40eb1, 0xffffffffffffffff, 0x10000)
mmap$auto(0x2, 0x5, 0xe1, 0xebf, 0x401, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
fanotify_mark$auto(0xffffffffffffffff, 0x917, 0x1, 0xffffffffffffffff, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0xc, 0x940, 0x1ffde, 0x3, 0x6, 0x2, 0x9, 0x5, 0x2, 0x7, 0xb0, 0x9, 0x2, 0x7, 0x5, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3]}, 0x1fe, 0x81)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)

2m54.258085816s ago: executing program 0 (id=744):
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/fs/cifs/LinuxExtensionsEnabled\x00', 0x842, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6c, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x1, 0x6, 0x0, 0x1, 0x80000000368e, 0x8, {0x100000000, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x1008000, 0x0, 0x80000004, 0x81, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x804})
r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000500)='/dev/video0\x00', 0x0, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffd]}, 0x0)
close_range$auto(r0, 0x8, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000009c0), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_ACT(r3, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000a00)={0x34, r4, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@ETHTOOL_A_CABLE_TEST_HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_PHY_INDEX={0x8, 0x4, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv0\x00'}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x40000}, 0x80)
socket(0xa, 0x3, 0x3b)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x25, 0x1, 0x5)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000040), 0xffffffffffffffff)
r5 = socket(0xa, 0x801, 0x84)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/gre0/gro_flush_timeout\x00', 0x80302, 0x0)
sendfile$auto(r6, r6, 0x0, 0x3)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mq_notify$auto(r5, &(0x7f0000000240)={@sival_int=0x6, @inferred=r2, 0x7, @_sigev_thread={&(0x7f0000000180)=&(0x7f0000000140)=0x3, &(0x7f00000001c0)="58f3881cad4a2bc87f7894c706159e458a5f7d11ca799b99d7fd0d12cd082402b0012fd5032ed2602d6e6cb9271522dc86d5f4f94645e6218dc1"}})
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)

2m52.902438848s ago: executing program 0 (id=748):
msgrcv$auto(0x0, 0x0, 0xff9, 0xfffffffffffffffc, 0xb4)
msgsnd$auto(0x0, 0x0, 0x8, 0x8)

2m51.316243545s ago: executing program 0 (id=753):
socket(0x2a, 0x80000, 0xfffffffd)
openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/tracing/per_cpu/cpu0/buffer_size_kb\x00', 0x280, 0x0)
r0 = socket(0x2, 0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, r0, 0x8000)
socket(0x10, 0x2, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r2 = socket(0x2, 0x3, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@xdp={0x2c, 0x0, 0x0, 0x3e}, 0x6a)
sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1a000}, 0x7, 0x0, 0x2, 0xb}, 0x7}, 0x5, 0x311)
syz_genetlink_get_family_id$auto_l2tp(0x0, 0xffffffffffffffff)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r1, 0x0, 0x0)
socket(0x5, 0x1, 0x84)
socketpair$auto(0xc6, 0x3, 0xfff, &(0x7f0000000000)=0x1)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000de, 0xeb1, 0x401, 0x8000)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
ioctl$auto(0x3, 0x400454ca, 0x38)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty22\x00', 0x800, 0x0)
ioctl$auto(r3, 0x4b44, 0x1)
write$auto(0xffffffffffffffff, 0x0, 0x81)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
socket(0x11, 0x3, 0x9)
mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x2, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
sysfs$auto(0x2, 0x0, 0x0)
open(0x0, 0x22240, 0x155)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket(0x10, 0x2, 0x0)

2m35.689562209s ago: executing program 32 (id=753):
socket(0x2a, 0x80000, 0xfffffffd)
openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/tracing/per_cpu/cpu0/buffer_size_kb\x00', 0x280, 0x0)
r0 = socket(0x2, 0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, r0, 0x8000)
socket(0x10, 0x2, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r2 = socket(0x2, 0x3, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@xdp={0x2c, 0x0, 0x0, 0x3e}, 0x6a)
sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1a000}, 0x7, 0x0, 0x2, 0xb}, 0x7}, 0x5, 0x311)
syz_genetlink_get_family_id$auto_l2tp(0x0, 0xffffffffffffffff)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r1, 0x0, 0x0)
socket(0x5, 0x1, 0x84)
socketpair$auto(0xc6, 0x3, 0xfff, &(0x7f0000000000)=0x1)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000de, 0xeb1, 0x401, 0x8000)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
ioctl$auto(0x3, 0x400454ca, 0x38)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty22\x00', 0x800, 0x0)
ioctl$auto(r3, 0x4b44, 0x1)
write$auto(0xffffffffffffffff, 0x0, 0x81)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
socket(0x11, 0x3, 0x9)
mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x2, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
sysfs$auto(0x2, 0x0, 0x0)
open(0x0, 0x22240, 0x155)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket(0x10, 0x2, 0x0)

8.203492806s ago: executing program 2 (id=1186):
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
wait4$auto(r0, 0x0, 0x2, 0x0)
r1 = socket(0x2a, 0x2, 0x1)
connect$auto(r1, &(0x7f00000000c0)=@qipcrtr={0x2a, 0xffffffff, 0xfffffffe}, 0x55)
r2 = openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0)
read$auto(r2, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
statmount$auto(0x0, 0x0, 0x227, 0x0)
r3 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/036/001\x00', 0x2ab01, 0x0)
ioctl$auto_USBDEVFS_BULK(r3, 0xc0185502, &(0x7f0000000080)={0x81, 0x7fdfff46, 0x8, 0x0})
openat$auto_ptdump_curusr_fops_(0xffffffffffffff9c, &(0x7f0000000200), 0x6800, 0x0)
sysfs$auto(0x2, 0x10000000000002a, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000340)='/proc/fs/lockd/nlm_end_grace\x00', 0x48041, 0x0)
bind$auto(0x3, 0x0, 0x6a)
connect$auto(0x3, 0x0, 0x54)
madvise$auto(0x110c230000, 0x8031ca, 0x9)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x3, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x16, 0x940, 0x1ffe0, 0x3, 0x6, 0x2, 0x9, 0x5, 0x2, 0x7, 0xb0, 0x9, 0x5, 0x3, 0x5, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb5, [0x0, 0x0, 0x0, 0x400000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff]}, 0x1fe, 0x81)
r4 = socket(0x10, 0x2, 0x0)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0xf7374674b920089e)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
sendmmsg$auto(r4, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008)

7.51897799s ago: executing program 4 (id=1187):
socket(0x22, 0x3, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x10004)
r0 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x101001, 0x0)
ioctl$auto_UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000040)={{0x0, 0xf2cf, 0x1ff, 0x4}, "6a034a07c7b82d90b69a39e32576f893fba86c9dd051a0094a3836d61c9100fefbbabea6ef9368c7996e841f3f1561d4992f726b0a6c36b0b2fd1678e816201cf562367fe6596824588a2e3d84ba165f", 0x8})
ioctl$auto_UI_DEV_CREATE(r0, 0x5501, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
symlink$auto(&(0x7f00000000c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f00000010c0)='./file0\x00')
readlinkat$auto(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='\\\x00', 0x80)
mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x9, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
msgget$auto(0xa, 0x77d9)
msgrcv$auto(0x7, 0x0, 0x2, 0x2, 0xb1)
msgrcv$auto(0xfffffffc, 0x0, 0xffc, 0x1, 0xb1)
msgsnd$auto(0x7, &(0x7f0000000140)={0x6, 0x9}, 0x8001, 0x7)
unshare$auto(0x40000080)
fcntl$auto(0x3, 0x400, 0x9ec0000000000000)
msgrcv$auto(0x0, 0x0, 0xff9, 0xfffffffffffffffc, 0xb4)
msgsnd$auto(0x0, &(0x7f0000000040)={0x1, 0x5}, 0x7, 0x9)
sendmsg$auto_NL802154_CMD_GET_WPAN_PHY(0xffffffffffffffff, 0x0, 0x40004)

7.205929232s ago: executing program 2 (id=1188):
mmap$auto(0x4, 0x400009, 0x8000000df, 0x2009b72, 0xffffffffffffffff, 0xfffffffffffffffa)
select$auto(0x0, &(0x7f0000000280)={[0x2, 0x9, 0x5, 0x0, 0x1, 0x7, 0x51ae5273, 0x1, 0x2, 0xfffffffffffffffd, 0x2e, 0x3, 0x25, 0x3b, 0x800, 0x7]}, &(0x7f0000000300)={[0xb75549, 0x6, 0x1, 0x7, 0x3, 0x2, 0x0, 0x6ec, 0xbf47, 0xb, 0x3ff, 0x6, 0x4, 0x1, 0xffffffff00000000, 0x7]}, &(0x7f0000000400)={[0xda10, 0xccc, 0x275a, 0x5, 0x2, 0x6, 0x2, 0x8, 0x2, 0x6, 0xdb7, 0x81, 0x19a5, 0x5, 0x3, 0x7]}, &(0x7f0000000380)={0xc, 0x2e})
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x0, 0x5, 0xa)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0)
r1 = syz_open_procfs$namespace(0x0, 0x0)
fstat$auto(r1, 0x0)
r2 = syz_genetlink_get_family_id$auto_gtp(&(0x7f00000000c0), r0)
sendmsg$auto_GTP_CMD_NEWPDP(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x5c, r2, 0x500, 0x70bd28, 0x25dfdbfc, {}, [@GTPA_LINK={0x8, 0x1, 0xa}, @GTPA_FLOW={0x6, 0x6, 0x6}, @GTPA_NET_NS_FD={0x8, 0x7, r1}, @GTPA_MS_ADDR6={0x14, 0xc, @mcast1}, @GTPA_LINK={0x8, 0x1, 0x5}, @GTPA_MS_ADDR6={0x14, 0xc, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}]}, 0x5c}, 0x1, 0x0, 0x0, 0x40}, 0x0)
write$auto(0x3, 0x0, 0xfdef)
mmap$auto(0x0, 0x580f, 0xffb, 0x8000000008011, 0x3, 0x0)
madvise$auto(0x0, 0x2003f0, 0x15)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x3f, 0x5)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/nbd10\x00', 0x22bc2, 0x0)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/thread-self/net/rpc/auth.unix.gid/channel\x00', 0x8f3b7a51b80ebd01, 0x0)
write$auto_proc_reg_file_ops_compat_inode(r3, &(0x7f0000000040)="20edd9d1027e0dc0023af10e9bfa1babfa3a3753ca9aee370a", 0x19)
write$auto(0x3, 0x0, 0x7fffffff)
syz_clone3(&(0x7f0000000200)={0x182000080, 0x0, 0x0, 0x0, {0x1a}, 0x0, 0x0, 0x0, 0x0}, 0x58)
openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000000), 0x8100, 0x0)

6.410097232s ago: executing program 3 (id=1189):
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/fs/cifs/LinuxExtensionsEnabled\x00', 0x842, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6c, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x1, 0x6, 0x0, 0x1, 0x80000000368e, 0x8, {0x100000000, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x1008000, 0x0, 0x80000004, 0x81, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x804})
r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000500)='/dev/video0\x00', 0x0, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffd]}, 0x0)
close_range$auto(r0, 0x8, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000009c0), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_ACT(r3, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000a00)={0x34, r4, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@ETHTOOL_A_CABLE_TEST_HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_PHY_INDEX={0x8, 0x4, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv0\x00'}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x40000}, 0x80)
socket(0xa, 0x3, 0x3b)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x25, 0x1, 0x5)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000040), 0xffffffffffffffff)
r5 = socket(0xa, 0x801, 0x84)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/gre0/gro_flush_timeout\x00', 0x80302, 0x0)
sendfile$auto(r6, r6, 0x0, 0x3)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mq_notify$auto(r5, &(0x7f0000000240)={@sival_int=0x6, @inferred=r2, 0x7, @_sigev_thread={&(0x7f0000000180)=&(0x7f0000000140)=0x3, &(0x7f00000001c0)="58f3881cad4a2bc87f7894c706159e458a5f7d11ca799b99d7fd0d12cd082402b0012fd5032ed2602d6e6cb9271522dc86d5f4f94645e6218dc1613127a9d198ec7d14ed949c34b240055e6a683246f7f9771f429ed31944169822cc71a018bde471160c283a"}})
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)

6.408889238s ago: executing program 4 (id=1190):
mmap$auto(0x4, 0x400009, 0x8000000df, 0x2009b72, 0xffffffffffffffff, 0xfffffffffffffffa)
select$auto(0x0, &(0x7f0000000280)={[0x2, 0x9, 0x5, 0x0, 0x1, 0x7, 0x51ae5273, 0x1, 0x2, 0xfffffffffffffffd, 0x2e, 0x3, 0x25, 0x3b, 0x800, 0x7]}, &(0x7f0000000300)={[0xb75549, 0x6, 0x1, 0x7, 0x3, 0x2, 0x0, 0x6ec, 0xbf47, 0xb, 0x3ff, 0x6, 0x4, 0x1, 0xffffffff00000000, 0x7]}, &(0x7f0000000400)={[0xda10, 0xccc, 0x275a, 0x5, 0x2, 0x6, 0x2, 0x8, 0x2, 0x6, 0xdb7, 0x81, 0x19a5, 0x5, 0x3, 0x7]}, &(0x7f0000000380)={0xc, 0x2e})
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x0, 0x5, 0xa)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0)
r1 = syz_open_procfs$namespace(0x0, 0x0)
fstat$auto(r1, 0x0)
r2 = syz_genetlink_get_family_id$auto_gtp(&(0x7f00000000c0), r0)
sendmsg$auto_GTP_CMD_NEWPDP(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x64, r2, 0x500, 0x70bd28, 0x25dfdbfc, {}, [@GTPA_LINK={0x8, 0x1, 0xa}, @GTPA_FLOW={0x6, 0x6, 0x6}, @GTPA_FLOW={0x6, 0x6, 0xa}, @GTPA_NET_NS_FD={0x8, 0x7, r1}, @GTPA_MS_ADDR6={0x14, 0xc, @mcast1}, @GTPA_LINK={0x8, 0x1, 0x5}, @GTPA_MS_ADDR6={0x14, 0xc, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}]}, 0x64}, 0x1, 0x0, 0x0, 0x40}, 0x0)
write$auto(0x3, 0x0, 0xfdef)
mmap$auto(0x0, 0x580f, 0xffb, 0x8000000008011, 0x3, 0x0)
madvise$auto(0x0, 0x2003f0, 0x15)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x3f, 0x5)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/nbd10\x00', 0x22bc2, 0x0)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/thread-self/net/rpc/auth.unix.gid/channel\x00', 0x8f3b7a51b80ebd01, 0x0)
write$auto_proc_reg_file_ops_compat_inode(r3, &(0x7f0000000040)="20edd9d1027e0dc0023af10e9bfa1babfa3a37", 0x13)
write$auto(0x3, 0x0, 0x7fffffff)
syz_clone3(&(0x7f0000000200)={0x182000080, 0x0, 0x0, 0x0, {0x1a}, 0x0, 0x0, 0x0, 0x0}, 0x58)
openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000000), 0x8100, 0x0)

5.53566825s ago: executing program 3 (id=1192):
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/fs/cifs/LinuxExtensionsEnabled\x00', 0x842, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6c, 0x0, 0x0, 0xfffffffffffffffe, 0xd4, 0x1, 0x6, 0x0, 0x1, 0x80000000368e, 0x7, {0x100000000, 0x10000}, 0x8005, 0x6, 0xfffffffffffffffd, 0x1008000, 0x0, 0x80000004, 0x81, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x804})
r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000500)='/dev/video0\x00', 0x20000, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
close_range$auto(r0, 0x8, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
ioctl$auto(0xffffffffffffffff, 0x4b4a, 0x9)
r2 = socket(0xa, 0x2, 0x0)
setsockopt$auto(r2, 0x29, 0x30, 0x0, 0xd393)

4.757089038s ago: executing program 3 (id=1194):
mmap$auto(0x0, 0x12000a, 0x1000, 0xeb2, 0x401, 0x7fffffffffffffff)
r0 = socket(0x10, 0x2, 0xfffffffc)
pwrite64$auto(0xffffffffffffffff, &(0x7f0000000140)='-$!\x00\xfa\xef\t\xa4\xe9\xb2r\x8cQ \xa6\xb7v\x93\xb6\b\xba\xfe\x1e\xab\xe7KC6z\x1a\xf0\x83~\xcd\x9a\x83\b\xb6\xb2\xd6PR\xbe\xec\xea\t\xde.\xc6%\x16\xc8\\\xb2\xe86\xe1\x84k\xa8\x02\xcb\xc9 \x1flY\xcb\xfa\xd9\xe0\xb8\x93\x12\xbc\xcf\xc2\'\x90\x9d\x1c\xb0\x1d\xb8\x80\xb4V\x9c\xf6J\xe8\"\xef@\xcd t\xe8\xe9Ip\xa74\x82\xb0\x9a\xecj\x9f\x8f\x9a\xe22\x8e\xce1\x9d\x0fW\xe7\xfb\"[\x17\x83\xfc}\xc7\xab\x93\xe4\x1ekP1\x01\bB\xbf*a\x93\xbd\xa7\xc8', 0x2, 0x4)
r1 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, 0x0, 0x102, 0x0)
r2 = socket(0x2, 0x3, 0x1)
connect$auto(r2, &(0x7f0000000000), 0x55)
sendmmsg$auto(r2, &(0x7f0000000200)={{&(0x7f0000000100), 0xf, 0x0, 0x2, 0x0, 0x800000000000003, 0xfffff2cf}, 0x6}, 0x2319, 0x5)
r3 = syz_genetlink_get_family_id$auto_nlbl_mgmt(&(0x7f0000000040), r0)
sendmsg$auto_NLBL_MGMT_C_ADDDEF(r2, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB, @ANYRES16=r3], 0x34}, 0x1, 0x0, 0x0, 0x1}, 0x40080)
write$auto_console_fops_tty_io(r1, &(0x7f0000000140)="671d264add69b6440843b6e6688a2b5ad9df2669e6f9cd236532b20ed763c1dbfee3f787fc87cd0f5600ac8caf4bde4c30b530ac6ebbff950e1a647d6a08a1b55dde5a409b3c", 0x46)
r4 = socket(0x28, 0x1, 0x0)
mmap$auto(0x0, 0x40006, 0xdf, 0x9b72, r4, 0x28000)
pipe2$auto(0x0, 0x80)
socket(0x28, 0x5, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x2c201, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
pipe$auto(0x0)
dup2$auto(0x5, 0x4)
splice$auto(0x4, 0x0, 0x2, 0x0, 0x80004001, 0x9)
write$auto(0x6, 0x0, 0x100000001)
recvmmsg$auto(0x3, 0x0, 0x7bf, 0x7bd6, 0x0)

4.495942831s ago: executing program 1 (id=1196):
openat$auto_urandom_fops_random(0xffffffffffffff9c, &(0x7f00000008c0), 0x400, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = waitid$auto_P_PGID(0x2, 0xffffffffffffffff, &(0x7f0000000040)={@siginfo_0_0={0x8, 0x57ca, 0x800, @_rt={<r1=>0xffffffffffffffff, 0xee01, @sival_int=0x9}}}, 0x4, &(0x7f00000000c0)={{0x8, 0x9}, {0x4, 0xffffffff80000000}, 0x3, 0x8000, 0x9, 0x0, 0xa3f, 0x7f, 0x881a, 0xa00, 0x2, 0x9, 0xe, 0xfffffffffffffff7, 0x7})
capset$auto(&(0x7f0000000180)={0x7, r1}, &(0x7f00000001c0)={0x2, 0x1, 0x6})
r2 = socket(0x11, 0x3, 0x2)
fcntl$auto(r2, 0xe149, r0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8955, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f00000009c0), 0xffffffffffffffff)
sendmsg$auto_IPVS_CMD_SET_SERVICE(r3, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000002a80)={&(0x7f0000000580)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010028bd7000fcdbdf2502000000180001800800058004007d000c00018002"], 0x2c}, 0x1, 0x0, 0x0, 0x4050}, 0x4000000)
readv$auto(0x3, &(0x7f0000000000)={0x0, 0x9c}, 0x1)

4.233399816s ago: executing program 4 (id=1197):
unshare$auto(0x40000080)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8000, 0x0)
r1 = socket(0x29, 0x805, 0x0)
sendmsg$auto_NLBL_MGMT_C_LISTALL(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x34, 0x0, 0x1, 0x70bd28, 0x25dfdbfb, {}, [@NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x8}, @NLBL_MGMT_A_VERSION={0x8, 0x3, 0x5}, @NLBL_MGMT_A_CV4DOI={0x8, 0x4, 0xfffffffc}, @NLBL_MGMT_A_CV4DOI={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x20040040}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8000, 0x0)
socket(0x29, 0x805, 0x0)
mmap$auto(0x4, 0x20006, 0x400000df, 0xeb1, 0x401, 0x8000)
unshare$auto(0xfffffffffffffffe)
r3 = openat$auto_ftrace_system_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/events/vmalloc/enable\x00', 0x80, 0x0)
readv$auto(r3, &(0x7f0000000140)={&(0x7f0000000040), 0x2}, 0x5)
sysfs$auto(0x2, 0x6, 0x0)
fsopen$auto(0x0, 0x8)
fsconfig$auto(r2, 0x1, &(0x7f00000001c0)='+\x00', &(0x7f0000000280), 0x0)
fsconfig$auto(r0, 0x1, &(0x7f00000001c0)='+\x00', &(0x7f0000000280), 0x0)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000)
ftruncate$auto(0x3, 0x700)
r4 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x2002, 0x0)
ioctl$auto_SG_GET_NUM_WAITING(r4, 0x227d, &(0x7f0000000080))
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'syz_tun\x00', <r6=>0x0})
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x5, 0x2000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x26, 0x80805, 0x0)
socket(0xa, 0x3, 0x6)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_5={@target_ifindex=r6, 0x7f, 0x99, 0x8, 0x1, @relative_id=0x8, 0x5}, 0x92)

4.129209025s ago: executing program 1 (id=1198):
socket(0x22, 0x3, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x10004)
r0 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x101001, 0x0)
ioctl$auto_UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000040)={{0x0, 0xf2cf, 0x1ff, 0x4}, "6a034a07c7b82d90b69a39e32576f893fba86c9dd051a0094a3836d61c9100fefbbabea6ef9368c7996e841f3f1561d4992f726b0a6c36b0b2fd1678e816201cf562367fe6596824588a2e3d84ba165f", 0x8})
ioctl$auto_UI_DEV_CREATE(r0, 0x5501, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
symlink$auto(&(0x7f00000000c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f00000010c0)='./file0\x00')
readlinkat$auto(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='\\\x00', 0x80)
mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x9, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
msgget$auto(0xa, 0x77d9)
msgrcv$auto(0x7, 0x0, 0x2, 0x2, 0xb1)
msgrcv$auto(0xfffffffc, 0x0, 0xffc, 0x1, 0xb1)
msgsnd$auto(0x7, &(0x7f0000000140)={0x6, 0x9}, 0x8001, 0x7)
unshare$auto(0x40000080)
fcntl$auto(0x3, 0x400, 0x9ec0000000000000)
msgrcv$auto(0x0, 0x0, 0xff9, 0xfffffffffffffffc, 0xb4)
msgsnd$auto(0x0, &(0x7f0000000040)={0x1, 0x5}, 0x7, 0x9)
sendmsg$auto_NL802154_CMD_GET_WPAN_PHY(0xffffffffffffffff, 0x0, 0x40004)

3.794236661s ago: executing program 4 (id=1199):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000003fc0)='/sys/kernel/debug/tracing/trace_pipe\x00', 0x20a02, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
close_range$auto(0x2, 0x8, 0x0)
r0 = bpf$auto(0x109, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x8}, 0xc)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000002c0), r0)
ioctl$auto_TIOCVHANGUP2(r0, 0x5437, &(0x7f0000000100)="e3ba2fa74c9c258fa3dc1af994d181fd2da4b1ff2f6ac0f1a4473308c725ada929c13a75c30047abca9e52bd199249343929465bd2fa003836a4d82e715a9c2b738e38c8d2639014556154fc32566e45cf23479f3eb85ef3e870705af07cac843e03e4cb24cbc768b1d03372ce105a001131648bde9cdea4617478495640eb44332d60770ca8d196c20bfb321c59034afa94ccae08d2ba04ff641624d8a3e9ceb11f6aa104d847b7ba1c39685eaa4872328d8a7ff42587726681b5eb80dac58fa2f349d75cf0090b7fc7e9601c8b874f8f60c3f7f2c1d07f4485cb2bab17731c5f06992d")
read$auto(0xffffffffffffffff, 0x0, 0x20)
r1 = socket(0x2, 0x2, 0x1)
connect$auto(r1, &(0x7f00000000c0)=@in={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x40}}, 0x55)
timer_create$auto(0xfffffff9, &(0x7f0000000000)={@sival_int=0x3, @inferred=<r2=>0xffffffffffffffff, 0x1, @_tid}, &(0x7f0000000040)=0x200)
r3 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/radio29\x00', 0x0, 0x0)
poll$auto(&(0x7f0000000040)={r3, 0xfffa, 0x6}, 0x1, 0x80000001)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000004c0)={'team_slave_0\x00'})
timer_settime$auto(0x0, 0x101, &(0x7f00000000c0)={{0xf, 0x10007}, {0x9}}, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$auto_TIPC_NL_BEARER_SET(r4, &(0x7f0000002040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x44}, 0x400c4)
msgctl$auto_MSG_INFO(0x2, 0xc, &(0x7f0000000300)={{0x1ff, <r6=>0xee01, 0xee01, 0x5, 0x1, 0x40, 0x4}, &(0x7f0000000080)=0x5, &(0x7f0000000280)=0x4, 0xcb, 0x4, 0x6, 0x8, 0xff, 0xa9b, 0x3, 0x3})
sendmsg$auto_TIPC_NL_BEARER_GET(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000e80)=ANY=[@ANYBLOB="8c0300667e561d4677cd90734caa26", @ANYRES16=r5, @ANYBLOB="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", @ANYRES32, @ANYBLOB="000095e1689682bc4466b52a0593321d630299e82b20add2c2ba433cb0478e870b5f09b82987c471403dc767903fbb096e94790192c7519e974f993510c69778a1e14a9dba88520f0936865ae9e3ad224ad9a4d260f92f94c2601167a6183231d0260f39e19613a679cdabe47474d9d67737c43ee60106a6f1a231fe917f6e5c63730ffb1fc83ab2e5f390023ce6ba0000000c00078008000e", @ANYRES32=r6, @ANYBLOB], 0x38c}, 0x1, 0x0, 0x0, 0x8000}, 0x20000884)
connect$auto(r1, &(0x7f0000000000)=@l2tp={0x2, 0x0, @multicast2, 0x1}, 0x7f)
write$auto(0x3, 0x0, 0xfdef)
ioctl$auto_BLKTRACESETUP2(0xffffffffffffffff, 0xc0481273, 0x0)
prctl$auto(0x1000000003b, 0x1, 0x0, 0x10000005, 0x10007)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)

3.361696393s ago: executing program 2 (id=1200):
mmap$auto(0x0, 0x12000a, 0x1000, 0xeb2, 0x401, 0x7fffffffffffffff)
getcwd$auto(&(0x7f0000000040)='/sys/kernel/debug/ieee80211/phy0/airtime_flags\x00', 0x2)
socket(0x10, 0x2, 0xfffffffc)
pwrite64$auto(0xffffffffffffffff, &(0x7f0000000140)='-$!\x00\xfa\xef\t\xa4\xe9\xb2r\x8cQ \xa6\xb7v\x93\xb6\b\xba\xfe\x1e\xab\xe7KC6z\x1a\xf0\x83~\xcd\x9a\x83\b\xb6\xb2\xd6PR\xbe\xec\xea\t\xde.\xc6%\x16\xc8\\\xb2\xe86\xe1\x84k\xa8\x02\xcb\xc9 \x1flY\xcb\xfa\xd9\xe0\xb8\x93\x12\xbc\xcf\xc2\'\x90\x9d\x1c\xb0\x1d\xb8\x80\xb4V\x9c\xf6J\xe8\"\xef@\xcd t\xe8\xe9Ip\xa74\x82\xb0\x9a\xecj\x9f\x8f\x9a\xe22\x8e\xce1\x9d\x0fW\xe7\xfb\"[\x17\x83\xfc}\xc7\xab\x93\xe4\x1ekP1\x01\bB\xbf*a\x93\xbd\xa7\xc8', 0x2, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
r1 = socket(0x2, 0x3, 0x1)
r2 = socket(0xa, 0x2, 0x73)
sendto$auto(r2, 0x0, 0x402, 0xfffffffe, &(0x7f0000000000)=@generic={0xa, "e2c483400200ff803636166b00"}, 0x1c)
connect$auto(r1, &(0x7f0000000000), 0x55)
sendmmsg$auto(r1, &(0x7f0000000200)={{&(0x7f0000000100), 0xf, 0x0, 0x2, 0x0, 0x800000000000003, 0xfffff2cf}, 0x6}, 0x2319, 0x5)
sendmsg$auto_NLBL_MGMT_C_ADDDEF(r1, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB, @ANYRES16], 0x34}, 0x1, 0x0, 0x0, 0x1}, 0x40080)
write$auto_console_fops_tty_io(r0, &(0x7f0000000140)="671d264add69b6440843b6e6688a2b5ad9df2669e6f9cd236532b20ed763c1dbfee3f787fc87cd0f5600ac8caf4bde4c30b530ac6ebbff950e1a647d6a08a1b55dde5a409b3c", 0x46)
r3 = socket(0x28, 0x1, 0x0)
mmap$auto(0x0, 0x40006, 0xdf, 0x9b72, r3, 0x28000)
pipe2$auto(0x0, 0x80)
socket(0x28, 0x5, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x2c201, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
pipe$auto(0x0)
dup2$auto(0x5, 0x4)
splice$auto(0x4, 0x0, 0x2, 0x0, 0x80004001, 0x9)
write$auto(0x6, 0x0, 0x100000001)
recvmmsg$auto(0x3, 0x0, 0x7bf, 0x7bd6, 0x0)

3.355217736s ago: executing program 3 (id=1208):
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r0 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/fs/ext4/sda1/fc_info\x00', 0x800, 0x0)
read$auto_fake_panic_fops_(r0, &(0x7f0000000040)=""/246, 0xf6)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x1a1942, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xb02, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x8ad00, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
sysfs$auto(0x2, 0x200000001d, 0x0)
fsopen$auto(0x0, 0x1)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x5, 0x0)
r1 = socket(0xa, 0x801, 0x84)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
msgctl$auto_IPC_INFO(0x100, 0x3, &(0x7f00000012c0)={{0x632, 0xffffffffffffffff, 0xee00, 0xfffffffd, 0x5, 0x1, 0x80}, 0x0, 0x0, 0x1b, 0x7, 0x5, 0x7, 0x1, 0xdd34, 0x7, 0x8, @raw=0x4})
connect$auto(r0, &(0x7f0000000140)=@l2tp={0x2, 0x0, @private=0xa010102, 0x2}, 0x10)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
lsm_list_modules$auto(0x0, 0x0, 0x0)
openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000001200), 0x8000, 0x0)
preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5)
setsockopt$auto(r1, 0x1, 0x3f, 0x0, 0xb)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x106, 0x0, 0x6c, 0x697c}, 0xed71390}, 0x9a6, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x1102, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r3=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="280200006ab5073ab23b85d7bfb0b460136b2684a977e1bba27182a6d6ce3a1d6a70b4ae9a52c85280ba2028f5819faf3f09949abc", @ANYRES16=0x0, @ANYBLOB="13002ebd7000dddbdf250200000008000300", @ANYRES32=r3, @ANYBLOB="0400d1000500590008000000"], 0x28}, 0x1, 0x0, 0x0, 0x4c0d4}, 0x20040894)
sendmsg$auto_NL80211_CMD_SET_WIPHY_NETNS(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x0, 0x2, 0x70bd27, 0x25dfdbfc}, 0x14}}, 0x440c0)
sendmsg$auto_NL80211_CMD_GET_INTERFACE(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x38, 0x0, 0x200, 0x70bd28, 0x25dfdbfc, {}, [@NL80211_ATTR_P2P_OPPPS={0x5, 0xa3, 0x4}, @NL80211_ATTR_BSS_BASIC_RATES={0xa, 0x24, "000f4e278bc6"}, @NL80211_ATTR_KEY_TYPE={0x8, 0x37, 0x53}, @NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}, @NL80211_ATTR_WIPHY_TXQ_PARAMS={0x4}]}, 0x38}, 0x1, 0x0, 0x0, 0x400}, 0x80)

3.34564504s ago: executing program 1 (id=1201):
socket(0x1e, 0x4, 0x10)
futex$auto(&(0x7f0000000080)=0x2948, 0x0, 0x2948, 0x0, 0x0, 0x5)
futex$auto(&(0x7f0000000080)=0x1, 0x9, 0x1, 0x0, 0x0, 0xfffffffa)
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/conf/veth0_to_team/arp_filter\x00', 0x82801, 0x0)
r1 = socket(0x11, 0x80003, 0x300)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x6, 0x0)
setsockopt$auto(r1, 0x107, 0x1, 0x0, 0x8004)
unshare$auto(0x40000080)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/bonding/updelay\x00', 0x8242, 0x0)
sendmsg$auto_TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000003780)={0x0, 0x0, &(0x7f0000003740)={&(0x7f0000000000)=ANY=[@ANYBLOB="b1000000", @ANYRES16, @ANYBLOB="01002dbd7000fddbdf25030000000c000180"], 0x20}, 0x1, 0x0, 0x0, 0x41}, 0x40080)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket(0x2, 0x6, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00', <r4=>0x0})
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(0xffffffffffffffff, &(0x7f0000021740)={0x0, 0x0, &(0x7f0000021700)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r4], 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x4004804)
write$auto(r2, &(0x7f0000000000)='@\x00', 0xfe)
close_range$auto(0x2, 0x8, 0x0)
write$auto_proc_sys_file_operations_proc_sysctl(r0, &(0x7f0000000080)="3880655bea", 0x5)
futex$auto(&(0x7f0000000080)=0x3, 0x3, 0x8, 0x0, &(0x7f0000000100)=0x4, 0x440a48d3)
r5 = openat$auto_virtual_ncidev_fops_virtual_ncidev(0xffffffffffffff9c, &(0x7f0000000000), 0x80, 0x0)
read$auto_virtual_ncidev_fops_virtual_ncidev(r5, &(0x7f0000000140)=""/98, 0x62)

2.089950095s ago: executing program 3 (id=1202):
madvise$auto(0x110c230000, 0x8031ca, 0x9)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/nbd10/queue/iosched/read_expire\x00', 0x1c2b02, 0x0)
sendfile$auto(r0, r0, 0x0, 0x3)
mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x1, 0x6, 0x0, 0x1, 0x368e, 0x2, {0x100000000, 0x1}, 0x5, 0x6, 0xfffffffffffffffd, 0x1008000, 0x0, 0x80000004, 0x81, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x803})
writev$auto(0xffffffffffffffff, 0x0, 0xff)
r1 = socket(0x10, 0x2, 0x0)
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='V'], 0x1ac}}, 0x40000)
sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x848000000015, 0x805, 0x0)
bind$auto(0x3, &(0x7f0000000000)=@in={0x2, 0x0, @local}, 0x68)
r2 = socket(0x15, 0x5, 0x0)
getsockopt$auto(r2, 0x114, 0x2715, 0xfffffffffffffffc, 0x0)
clock_adjtime$auto(0x2, &(0x7f00000000c0)={0x80000000, 0x0, 0x6, 0x6, 0x9, 0x200, 0x400, 0x0, 0x1, 0xa3e1, 0x2, {0x80000001, 0x40}, 0x0, 0x8000000000000001, 0x7f, 0xc, 0x0, 0x4, 0x1a67, 0x3ff, 0x6, 0x4, 0x4})
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/bonding/updelay\x00', 0x8242, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
gettid()
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001040)='/sys/devices/platform/dummy_hcd.3/usb4/power/wakeup_last_time_ms\x00', 0x80800, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000001080)='/proc/thread-self/net/rxrpc/locals\x00', 0x40080, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xac}, 0x5, 0x0, 0x1, 0x697b}, 0xed7138c}, 0x2, 0x9)
recvfrom$auto(0x4, 0x0, 0x101d0, 0x3ffffd, 0x0, 0x0)

2.00489906s ago: executing program 1 (id=1203):
r0 = socket(0x2, 0x1, 0x0)
r1 = getsockopt$auto(0xffffffffffffffff, 0x65, 0x2, 0xffffffffffffffff, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
write$auto(0x3, 0x0, 0xfffffdef)
mbind$auto(0x9, 0x84, 0x4, 0x0, 0x80000000, 0x7f)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
recvmmsg$auto(0x3, 0x0, 0x687bcbd, 0x8, 0x0)
openat$auto_bsg_fops_bsg(0xffffffffffffff9c, &(0x7f0000000100)='/dev/bsg/1:0:0:0\x00', 0x450000, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
socket(0xa, 0x2, 0x88)
openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000003fc0)='/sys/kernel/debug/tracing/trace_pipe\x00', 0x20a02, 0x0)
ioctl$auto_KVM_GET_DEVICE_ATTR(r1, 0x4018aee2, &(0x7f0000000000)={0x8000, 0x0, 0xfffffffffffffffb, 0x2})
sendfile$auto(0x1, 0x3, 0x0, 0xc01)

1.930365024s ago: executing program 2 (id=1204):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
mmap$auto(0x0, 0x20009, 0x12, 0xeb1, 0x401, 0x8000)
socket(0x2, 0x1, 0x0)
socket(0x2, 0x6, 0x0)
epoll_create$auto(0x4)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
userfaultfd$auto(0x1)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x4, 0x15f4da0a, 0x1, 0x3, 0x0, 0x80000001, 0x7, 0x6d3c, 0x5, 0x2]}, 0x0)
arch_prctl$auto_ARCH_GET_GS(0x1004, 0x4)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
epoll_ctl$auto(0x5, 0x1, r0, 0x0)
capset$auto(0x0, 0xfffffffffffffffe)
r1 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/ip_tables_targets\x00', 0xa80, 0x0)
read$auto_proc_iter_file_ops_compat_inode(r1, &(0x7f0000001040)=""/4088, 0xff8)
epoll_ctl$auto(0x5, 0x3, r0, 0x0)

1.876980801s ago: executing program 4 (id=1205):
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000040)=""/124, 0x7c)
r0 = prctl$auto(0x8, 0x1, 0xffffffffffffffff, 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = socket(0x11, 0x3, 0x6)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000200), r2)
sendmsg$auto_HWSIM_CMD_REGISTER(r1, &(0x7f00000003c0)={0x0, 0x3d, &(0x7f0000000380)={&(0x7f00000004c0)=ANY=[@ANYBLOB="14000000ed0e8c6f528e3c409776170152aef798ad5762f8c45e553ba5aee33f550c45e5403aa0a1c754b21899be4c11a82e92deecfd5724f2fc8eda62b0f661e9373065aa4397d825f966dd2b6eb70a47ecb4332c76", @ANYRESOCT=r1, @ANYBLOB="010028bd7000fddbdf2501000000"], 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x0)
capset$auto(0x0, &(0x7f0000000000)={0x1, 0x47, 0x4a})
sendmmsg$auto(r1, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5aa, &(0x7f0000000100)={&(0x7f00000003c0)='\a', 0x5ea}, 0x5, 0x0, 0x0, 0x1001}, 0x5}, 0x2, 0x100)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = getpid()
process_vm_readv$auto(r4, &(0x7f0000000000)={0x0, 0xfff}, 0x1, 0x0, 0x6, 0x0)
r5 = prctl$auto_PR_SET_SHADOW_STACK_STATUS(0x4b, 0x100000001, r4, 0xc, 0xd)
r6 = openat$auto_vsock_device_ops_af_vsock(0xffffffffffffff9c, &(0x7f0000000080), 0x101000, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
ioctl$auto_IOCTL_VM_SOCKETS_GET_LOCAL_CID(r6, 0x7b9, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$auto_handshake(&(0x7f0000000300), r5)
r9 = openat$auto_nsim_dev_trap_fa_cookie_fops_dev(0xffffffffffffff9c, &(0x7f0000000340)='/sys/kernel/debug/netdevsim/netdevsim2/trap_flow_action_cookie\x00', 0x200, 0x0)
sendmsg$auto_HANDSHAKE_CMD_DONE(r7, &(0x7f0000000400)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)=ANY=[@ANYBLOB=',\x00\x00', @ANYRES16=r8, @ANYBLOB="030000000000000086acbd7000fcdbdf2503", @ANYRES32=r9, @ANYBLOB="08000200", @ANYRES32=r0, @ANYBLOB="08000200", @ANYRES32=r0, @ANYBLOB], 0x2c}, 0x1, 0x0, 0x0, 0x40c5}, 0x20040000)
mq_getsetattr$auto(r3, &(0x7f0000000080)={0x5, 0x5, 0xfffffffffffffffc, 0x11}, &(0x7f00000000c0)={0x3a3, 0x5, 0xa, 0x4})
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/dri/renderD128\x00', 0x260a00, 0x0)
syz_genetlink_get_family_id$auto_nfsd(&(0x7f00000001c0), 0xffffffffffffffff)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x7ffd)
getsockopt$auto_SO_REUSEPORT(0xffffffffffffffff, 0x3, 0xf, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
statmount$auto(0x0, 0x0, 0xb, 0x4003)
openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)
socket(0x2, 0x5, 0x0)
bpf$auto(0x5, &(0x7f0000001080)=@bpf_attr_7={@prog_id=0xc, 0x92f1, 0x4}, 0xd2)

1.644473141s ago: executing program 3 (id=1206):
mmap$auto(0x4, 0x400009, 0x8000000df, 0x2009b72, 0xffffffffffffffff, 0xfffffffffffffffa)
select$auto(0x0, &(0x7f0000000280)={[0x2, 0x9, 0x5, 0x0, 0x1, 0x7, 0x51ae5273, 0x1, 0x2, 0xfffffffffffffffd, 0x2e, 0x3, 0x25, 0x3b, 0x800, 0x7]}, &(0x7f0000000300)={[0xb75549, 0x6, 0x1, 0x7, 0x3, 0x2, 0x0, 0x6ec, 0xbf47, 0xb, 0x3ff, 0x6, 0x4, 0x1, 0xffffffff00000000, 0x7]}, &(0x7f0000000400)={[0xda10, 0xccc, 0x275a, 0x5, 0x2, 0x6, 0x2, 0x8, 0x2, 0x6, 0xdb7, 0x81, 0x19a5, 0x5, 0x3, 0x7]}, &(0x7f0000000380)={0xc, 0x2e})
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x0, 0x5, 0xa)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0)
r1 = syz_open_procfs$namespace(0x0, 0x0)
fstat$auto(r1, 0x0)
r2 = syz_genetlink_get_family_id$auto_gtp(&(0x7f00000000c0), r0)
sendmsg$auto_GTP_CMD_NEWPDP(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x5c, r2, 0x500, 0x70bd28, 0x25dfdbfc, {}, [@GTPA_LINK={0x8, 0x1, 0xa}, @GTPA_FLOW={0x6, 0x6, 0x6}, @GTPA_NET_NS_FD={0x8, 0x7, r1}, @GTPA_MS_ADDR6={0x14, 0xc, @mcast1}, @GTPA_LINK={0x8, 0x1, 0x5}, @GTPA_MS_ADDR6={0x14, 0xc, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}]}, 0x5c}, 0x1, 0x0, 0x0, 0x40}, 0x0)
write$auto(0x3, 0x0, 0xfdef)
mmap$auto(0x0, 0x580f, 0xffb, 0x8000000008011, 0x3, 0x0)
madvise$auto(0x0, 0x2003f0, 0x15)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x3f, 0x5)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/nbd10\x00', 0x22bc2, 0x0)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/thread-self/net/rpc/auth.unix.gid/channel\x00', 0x8f3b7a51b80ebd01, 0x0)
write$auto_proc_reg_file_ops_compat_inode(r3, &(0x7f0000000040)="20edd9d1027e0dc0023af10e9bfa1babfa3a3753ca9aee370a", 0x19)
write$auto(0x3, 0x0, 0x7fffffff)
syz_clone3(&(0x7f0000000200)={0x182000080, 0x0, 0x0, 0x0, {0x1a}, 0x0, 0x0, 0x0, 0x0}, 0x58)
openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000000), 0x8100, 0x0)

1.640218127s ago: executing program 1 (id=1207):
bpf$auto(0x0, 0x0, 0x6f4)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
connect$auto(0x3, &(0x7f0000000000)=@nl=@kern={0x10, 0x0, 0x0, 0x4000}, 0x55)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
getsockopt$auto(0x3, 0x200000000001, 0x1c, 0x0, 0x0)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000a80)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x40000, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_dev_fops_plock(0xffffffffffffff9c, 0x0, 0x62081, 0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty30\x00', 0x62c00, 0x0)
ioctl$auto(r0, 0x4b30, 0x20000009)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0xa, 0x2, 0x0)
io_uring_setup$auto(0x6, 0x0)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, 0x0, 0xa2741, 0x0)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0xdff1, 0xfffffffffffffffd, 0xd4, 0x3, 0x6, 0x0, 0x10000, 0x1, 0x2, {0x2100000000, 0x10000}, 0x3, 0x6, 0xffffffffffffffdd, 0x1008000, 0x0, 0x80000004, 0x8, 0x5, 0xfffffffffffffffd, 0xdeb1, 0x1800})
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
write$auto(0xca, &(0x7f0000000000)='\x04\x1d\x19\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xa4Cn\xb2./jn>9\xd2\xdb\x88\xf4\x1aVj\x13j\xe1\x96\xf7\xc2\xd3qm\xe6q\xf9\xa6u\x8eZ\x00\xf8*C]\xfd)/\xf3\xa1\x92|\x06|\xd0\x82\x93\xa5\x9a5if\xd0\x8e%g,\xc5\xec\xef\x87\x19\x17\xb0\xe1s\xf6U\xc0\x90r\xc5\xc8H\xa3\x9d\xce\x98\xe7\xb1B:\x179\xdc8\xa8) \x15\xce\xd8\x86\xff-\x80\xf5jMj\xda\x8f\x03EO\xe6\xa4Q\x81+v\xc9\xb8\x00\xcf\x94_\xa7\xadV\xc9\x7f;1R\xa0\x7f\xbe\x1e\x83\an/w[i\th\x9c\xb8\xd1\xed\xba\\\v\xe1\v\x81\xcc\xba\x03-N@ \x14\x1e\n\xe9g\x9fF\x05\xc8\x9f\xe5[\xba\xd2V\x9b\xc1\x9f\xf1%\x9c\xba\xf9\xb4\xa8\xd4\x05G\xf6\x82\xf3m\xe6V\xba\xa0\xf9K\x15\xcc_H\xce\xfd\xe2\x88\"\xe0\xd5Ld\x7f\x1c\x90^\x8d%\xb4', 0x9)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
mprotect$auto(0x10000, 0xd4, 0x7ff)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_TIPC_NL_MON_SET(r2, &(0x7f0000002580)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x85}, 0x4000)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dmmidi2\x00', 0x0, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001100)='/sys/devices/virtual/dmi/id/modalias\x00', 0x40280, 0x0)

707.694681ms ago: executing program 2 (id=1209):
r0 = socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
r1 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000100), r0)
sendmsg$auto_L2TP_CMD_SESSION_CREATE(r0, &(0x7f0000000280)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000180)={&(0x7f0000000380)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="00082dbd7000fbdbdf250500150006090000000e0000000000e2210b3ffea53ab7f911d580ce1060be1624ae161fad784c7c84aad0799f343490bbba201de44d02a5d4c057b9c50523ff36dd68002f44182df73e5ff24a9b76f9"], 0x2c}, 0x1, 0x0, 0x0, 0x40041}, 0x4048810)
socket(0x25, 0x1, 0x8cb)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x801, 0x84)
io_uring_setup$auto(0x4, 0x0)
mmap$auto(0x10000, 0x1, 0x6, 0x8000000008012, 0x3, 0x2)
r2 = clone3$auto(&(0x7f0000000300)={0x5, 0xa9, 0x1, 0x2, 0x8, 0x10000, 0x0, 0x3000000000000, 0x4, 0x7f, 0x2b}, 0x2)
move_pages$auto(r2, 0xe, 0x0, 0x0, 0x0, 0x2)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000001000)='/dev/loop5\x00', 0x8040, 0x0)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4004810}, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x2e}}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@llc={0x1a, 0x0, 0x7, 0x6, 0x47, 0x8, @multicast}, 0x54)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x33a00, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x6, 0x0)
init_module$auto(0x0, 0xffff9, 0x0)

273.724852ms ago: executing program 4 (id=1210):
unshare$auto(0x40000080)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8000, 0x0)
r1 = socket(0x29, 0x805, 0x0)
sendmsg$auto_NLBL_MGMT_C_LISTALL(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x34, 0x0, 0x1, 0x70bd28, 0x25dfdbfb, {}, [@NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x8}, @NLBL_MGMT_A_VERSION={0x8, 0x3, 0x5}, @NLBL_MGMT_A_CV4DOI={0x8, 0x4, 0xfffffffc}, @NLBL_MGMT_A_CV4DOI={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x20040040}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8000, 0x0)
socket(0x29, 0x805, 0x0)
mmap$auto(0x4, 0x20006, 0x400000df, 0xeb1, 0x401, 0x8000)
unshare$auto(0xfffffffffffffffe)
r3 = openat$auto_ftrace_system_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/events/vmalloc/enable\x00', 0x80, 0x0)
readv$auto(r3, &(0x7f0000000140)={&(0x7f0000000040), 0x2}, 0x5)
sysfs$auto(0x2, 0x6, 0x0)
fsopen$auto(0x0, 0x8)
fsconfig$auto(r2, 0x1, &(0x7f00000001c0)='+\x00', &(0x7f0000000280), 0x0)
fsconfig$auto(r0, 0x1, &(0x7f00000001c0)='+\x00', &(0x7f0000000280), 0x0)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000)
ftruncate$auto(0x3, 0x700)
r4 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x2002, 0x0)
ioctl$auto_SG_GET_NUM_WAITING(r4, 0x227d, &(0x7f0000000080))
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'syz_tun\x00', <r6=>0x0})
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x5, 0x2000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x26, 0x80805, 0x0)
socket(0xa, 0x3, 0x6)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_5={@target_ifindex=r6, 0x7f, 0x99, 0x8, 0x1, @relative_id=0x8, 0x5}, 0x92)

77.535641ms ago: executing program 1 (id=1211):
mmap$auto(0x4, 0x400009, 0x8000000df, 0x2009b72, 0xffffffffffffffff, 0xfffffffffffffffa)
select$auto(0x0, &(0x7f0000000280)={[0x2, 0x9, 0x5, 0x0, 0x1, 0x7, 0x51ae5273, 0x1, 0x2, 0xfffffffffffffffd, 0x2e, 0x3, 0x25, 0x3b, 0x800, 0x7]}, &(0x7f0000000300)={[0xb75549, 0x6, 0x1, 0x7, 0x3, 0x2, 0x0, 0x6ec, 0xbf47, 0xb, 0x3ff, 0x6, 0x4, 0x1, 0xffffffff00000000, 0x7]}, &(0x7f0000000400)={[0xda10, 0xccc, 0x275a, 0x5, 0x2, 0x6, 0x2, 0x8, 0x2, 0x6, 0xdb7, 0x81, 0x19a5, 0x5, 0x3, 0x7]}, &(0x7f0000000380)={0xc, 0x2e})
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x0, 0x5, 0xa)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0)
r1 = syz_open_procfs$namespace(0x0, 0x0)
fstat$auto(r1, 0x0)
r2 = syz_genetlink_get_family_id$auto_gtp(&(0x7f00000000c0), r0)
sendmsg$auto_GTP_CMD_NEWPDP(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x64, r2, 0x500, 0x70bd28, 0x25dfdbfc, {}, [@GTPA_LINK={0x8, 0x1, 0xa}, @GTPA_FLOW={0x6, 0x6, 0x6}, @GTPA_FLOW={0x6, 0x6, 0xa}, @GTPA_NET_NS_FD={0x8, 0x7, r1}, @GTPA_MS_ADDR6={0x14, 0xc, @mcast1}, @GTPA_LINK={0x8, 0x1, 0x5}, @GTPA_MS_ADDR6={0x14, 0xc, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}]}, 0x64}, 0x1, 0x0, 0x0, 0x40}, 0x0)
write$auto(0x3, 0x0, 0xfdef)
mmap$auto(0x0, 0x580f, 0xffb, 0x8000000008011, 0x3, 0x0)
madvise$auto(0x0, 0x2003f0, 0x15)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x3f, 0x5)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/nbd10\x00', 0x22bc2, 0x0)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/thread-self/net/rpc/auth.unix.gid/channel\x00', 0x8f3b7a51b80ebd01, 0x0)
write$auto_proc_reg_file_ops_compat_inode(r3, &(0x7f0000000040)="20edd9d1027e0dc0023af10e9bfa1babfa3a3753ca9a", 0x16)
write$auto(0x3, 0x0, 0x7fffffff)
syz_clone3(&(0x7f0000000200)={0x182000080, 0x0, 0x0, 0x0, {0x1a}, 0x0, 0x0, 0x0, 0x0}, 0x58)
openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000000), 0x8100, 0x0)

0s ago: executing program 2 (id=1212):
socket(0x28, 0x5, 0x0)
accept$auto(0x3, 0xffffffffffffffff, 0xffffffffffffffff)
mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/usb/usbmon/27u\x00', 0x14281, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram5\x00', 0x2000, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
socketpair$auto(0x5, 0x2, 0x7, 0x0)
syz_genetlink_get_family_id$auto_ovs_meter(0x0, 0xffffffffffffffff)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}}, 0x40000)
read$auto(r0, 0x0, 0x5)
ioperm$auto(0xfffffffffffffff8, 0x8000000000005, 0xe)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x48140, 0x0)
unshare$auto(0x800)
openat$auto_cachefiles_daemon_fops_internal(0xffffffffffffff9c, &(0x7f0000000280), 0x40000, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r1, &(0x7f0000000100)='/d-:\xe7J\x00'/23, 0x1eb07fd)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty17\x00', 0x1, 0x0)
write$auto_tty_fops_tty_io(r2, &(0x7f0000003200)="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", 0x8de)
setpriority$auto_PRIO_USER(0x2, 0x0, 0x75c)
r3 = openat$auto_force_devcoredump_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000c40)='/sys/kernel/debug/bluetooth/hci0/force_devcoredump\x00', 0x2, 0x0)
write$auto(r3, 0x0, 0xe)
bpf$auto(0x0, &(0x7f0000000380)=@task_fd_query={0x12, 0x3, 0x4, 0x8, 0x8, 0xae85, 0x66b, 0x4, 0x7ff}, 0x6f4)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x8000}, 0x4000804)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x1c, 0x9, 0x66, 0x0, 0x0, 0x0, 0xffc, 0x4, 0x80000000000000a, 0x40000402, 0x9, 0x9, 0xffffffff80000000, 0xd, 0xa, 0x200000100103})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r4, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})

kernel console output (not intermixed with test programs):

+0xcf/0x510
[  223.625601][ T7800]  ? neigh_parms_alloc+0x82/0x5d0
[  223.625628][ T7800]  kmemdup_noprof+0x29/0x60
[  223.625658][ T7800]  neigh_parms_alloc+0x82/0x5d0
[  223.625685][ T7800]  inetdev_init+0x135/0x5a0
[  223.625724][ T7800]  inetdev_event+0xc61/0x18a0
[  223.625762][ T7800]  ? ib_netdevice_event+0xfd/0x330
[  223.625785][ T7800]  ? __pfx_inetdev_event+0x10/0x10
[  223.625822][ T7800]  ? cfg802154_netdev_notifier_call+0x391/0xa00
[  223.625856][ T7800]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  223.625900][ T7800]  notifier_call_chain+0xb7/0x410
[  223.625929][ T7800]  ? __pfx_inetdev_event+0x10/0x10
[  223.625969][ T7800]  call_netdevice_notifiers_info+0xbe/0x140
[  223.626000][ T7800]  register_netdevice+0x17c2/0x1eb0
[  223.626031][ T7800]  ? __pfx_register_netdevice+0x10/0x10
[  223.626064][ T7800]  __ip_tunnel_create+0x4aa/0x690
[  223.626100][ T7800]  ? __pfx___ip_tunnel_create+0x10/0x10
[  223.626143][ T7800]  ip_tunnel_init_net+0x22a/0x790
[  223.626183][ T7800]  ? __pfx_ip_tunnel_init_net+0x10/0x10
[  223.626234][ T7800]  ? __kmalloc_noprof+0x23b/0x510
[  223.626275][ T7800]  ? __pfx_ipgre_init_net+0x10/0x10
[  223.626305][ T7800]  ops_init+0x1df/0x5f0
[  223.626332][ T7800]  setup_net+0x21f/0x860
[  223.626358][ T7800]  ? __pfx_setup_net+0x10/0x10
[  223.626380][ T7800]  ? down_read_killable+0xcc/0x380
[  223.626402][ T7800]  ? __pfx_down_read_killable+0x10/0x10
[  223.626424][ T7800]  ? __raw_spin_lock_init+0x3a/0x110
[  223.626450][ T7800]  ? debug_mutex_init+0x37/0x70
[  223.626478][ T7800]  copy_net_ns+0x2a6/0x5f0
[  223.626508][ T7800]  create_new_namespaces+0x3ea/0xad0
[  223.626554][ T7800]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  223.626597][ T7800]  ksys_unshare+0x45d/0xa40
[  223.626622][ T7800]  ? __pfx_ksys_unshare+0x10/0x10
[  223.626646][ T7800]  ? xfd_validate_state+0x5d/0x180
[  223.626689][ T7800]  __x64_sys_unshare+0x31/0x40
[  223.626713][ T7800]  do_syscall_64+0xcd/0x250
[  223.626751][ T7800]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  223.626786][ T7800] RIP: 0033:0x7fbd3658d169
[  223.626805][ T7800] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  223.626828][ T7800] RSP: 002b:00007fbd343d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  223.626849][ T7800] RAX: ffffffffffffffda RBX: 00007fbd367a6080 RCX: 00007fbd3658d169
[  223.626865][ T7800] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  223.626878][ T7800] RBP: 00007fbd3660e2a0 R08: 0000000000000000 R09: 0000000000000000
[  223.626892][ T7800] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  223.626906][ T7800] R13: 0000000000000000 R14: 00007fbd367a6080 R15: 00007fffebddc968
[  223.626934][ T7800]  </TASK>
[  225.361710][ T7818] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input10
[  226.923111][ T7825] netlink: 346 bytes leftover after parsing attributes in process `syz.3.443'.
[  228.626299][ T7842] netlink: 330 bytes leftover after parsing attributes in process `syz.3.448'.
[  228.657508][ T7842] netlink: 18 bytes leftover after parsing attributes in process `syz.3.448'.
[  229.112102][ T7850] FAULT_INJECTION: forcing a failure.
[  229.112102][ T7850] name failslab, interval 1, probability 0, space 0, times 0
[  229.231509][ T7850] CPU: 0 UID: 0 PID: 7850 Comm: syz.1.451 Not tainted 6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  229.231559][ T7850] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  229.231578][ T7850] Call Trace:
[  229.231588][ T7850]  <TASK>
[  229.231600][ T7850]  dump_stack_lvl+0x16c/0x1f0
[  229.231663][ T7850]  should_fail_ex+0x50a/0x650
[  229.231695][ T7850]  ? fs_reclaim_acquire+0xae/0x150
[  229.231743][ T7850]  should_failslab+0xc2/0x120
[  229.231776][ T7850]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  229.231827][ T7850]  ? vma_merge_new_range+0x40a/0xbb0
[  229.231883][ T7850]  ? vm_area_alloc+0x1f/0x230
[  229.231942][ T7850]  vm_area_alloc+0x1f/0x230
[  229.231992][ T7850]  __mmap_region+0x108d/0x27b0
[  229.232027][ T7850]  ? __pfx___mmap_region+0x10/0x10
[  229.232093][ T7850]  ? hlock_class+0x4e/0x130
[  229.232128][ T7850]  ? mark_lock+0xb5/0xc60
[  229.232185][ T7850]  ? __pfx___schedule+0x10/0x10
[  229.232276][ T7850]  ? mm_get_unmapped_area+0x95/0xe0
[  229.232332][ T7850]  mmap_region+0x1ab/0x3f0
[  229.232371][ T7850]  do_mmap+0xd8d/0x11b0
[  229.232423][ T7850]  ? __pfx_do_mmap+0x10/0x10
[  229.232467][ T7850]  ? __pfx_down_write_killable+0x10/0x10
[  229.232508][ T7850]  vm_mmap_pgoff+0x279/0x440
[  229.232562][ T7850]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  229.232610][ T7850]  ? __do_sys_capget+0x10a/0x520
[  229.232664][ T7850]  ? __x64_sys_futex+0x1e1/0x4c0
[  229.232703][ T7850]  ? __x64_sys_futex+0x1ea/0x4c0
[  229.232748][ T7850]  ksys_mmap_pgoff+0x7d/0x5c0
[  229.232789][ T7850]  ? rcu_is_watching+0x12/0xc0
[  229.232826][ T7850]  __x64_sys_mmap+0x125/0x190
[  229.232887][ T7850]  do_syscall_64+0xcd/0x250
[  229.232941][ T7850]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  229.232990][ T7850] RIP: 0033:0x7fbd3658d169
[  229.233017][ T7850] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  229.233151][ T7850] RSP: 002b:00007fbd343f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  229.233204][ T7850] RAX: ffffffffffffffda RBX: 00007fbd367a5fa0 RCX: 00007fbd3658d169
[  229.233228][ T7850] RDX: 0000000000000003 RSI: 0000000002020009 RDI: 00007ffffdfde000
[  229.233251][ T7850] RBP: 00007fbd3660e2a0 R08: fffffffffffffffa R09: 0000000000008000
[  229.233274][ T7850] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000
[  229.233296][ T7850] R13: 0000000000000000 R14: 00007fbd367a5fa0 R15: 00007fffebddc968
[  229.233342][ T7850]  </TASK>
[  231.987750][ T7885] netlink: 330 bytes leftover after parsing attributes in process `syz.2.463'.
[  232.050703][ T7885] netlink: 'syz.2.463': attribute type 16 has an invalid length.
[  232.078608][ T7885] netlink: 322 bytes leftover after parsing attributes in process `syz.2.463'.
[  232.126972][ T7889] netlink: 346 bytes leftover after parsing attributes in process `syz.1.464'.
[  234.090361][ T7934] FAULT_INJECTION: forcing a failure.
[  234.090361][ T7934] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  234.108991][ T7934] CPU: 1 UID: 0 PID: 7934 Comm: syz.0.474 Not tainted 6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  234.109034][ T7934] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  234.109052][ T7934] Call Trace:
[  234.109061][ T7934]  <TASK>
[  234.109073][ T7934]  dump_stack_lvl+0x16c/0x1f0
[  234.109128][ T7934]  should_fail_ex+0x50a/0x650
[  234.109173][ T7934]  _copy_from_iter+0x2a1/0x1560
[  234.109211][ T7934]  ? trace_lock_acquire+0x14e/0x1f0
[  234.109249][ T7934]  ? __alloc_skb+0x1fe/0x380
[  234.109301][ T7934]  ? __pfx__copy_from_iter+0x10/0x10
[  234.109334][ T7934]  ? __virt_addr_valid+0x1a4/0x590
[  234.109373][ T7934]  ? __virt_addr_valid+0x5e/0x590
[  234.109405][ T7934]  ? __phys_addr_symbol+0x30/0x80
[  234.109437][ T7934]  ? __check_object_size+0x488/0x710
[  234.109474][ T7934]  netlink_sendmsg+0x813/0xd70
[  234.109532][ T7934]  ? __pfx_netlink_sendmsg+0x10/0x10
[  234.109596][ T7934]  ____sys_sendmsg+0xaaf/0xc90
[  234.109637][ T7934]  ? copy_msghdr_from_user+0x10b/0x160
[  234.109690][ T7934]  ? __pfx_____sys_sendmsg+0x10/0x10
[  234.109727][ T7934]  ? __lock_acquire+0xcc5/0x3c40
[  234.109789][ T7934]  ___sys_sendmsg+0x135/0x1e0
[  234.109844][ T7934]  ? __pfx____sys_sendmsg+0x10/0x10
[  234.109914][ T7934]  ? trace_lock_acquire+0x14e/0x1f0
[  234.109977][ T7934]  __sys_sendmmsg+0x201/0x420
[  234.110012][ T7934]  ? __pfx___sys_sendmmsg+0x10/0x10
[  234.110056][ T7934]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  234.110119][ T7934]  ? fput+0x67/0x440
[  234.110151][ T7934]  ? ksys_write+0x1ba/0x250
[  234.110203][ T7934]  ? __pfx_ksys_write+0x10/0x10
[  234.110256][ T7934]  __x64_sys_sendmmsg+0x9c/0x100
[  234.110286][ T7934]  ? lockdep_hardirqs_on+0x7c/0x110
[  234.110331][ T7934]  do_syscall_64+0xcd/0x250
[  234.110383][ T7934]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  234.110428][ T7934] RIP: 0033:0x7f069158d169
[  234.110453][ T7934] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  234.110483][ T7934] RSP: 002b:00007f069245c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  234.110513][ T7934] RAX: ffffffffffffffda RBX: 00007f06917a5fa0 RCX: 00007f069158d169
[  234.110533][ T7934] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003
[  234.110552][ T7934] RBP: 00007f069245c090 R08: 0000000000000000 R09: 0000000000000000
[  234.110571][ T7934] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  234.110589][ T7934] R13: 0000000000000000 R14: 00007f06917a5fa0 R15: 00007ffc156b5b38
[  234.110628][ T7934]  </TASK>
[  234.811306][ T7941] netlink: 346 bytes leftover after parsing attributes in process `syz.3.476'.
[  235.013057][ T7944] netlink: 60 bytes leftover after parsing attributes in process `syz.2.477'.
[  235.061898][ T7944] netlink: 8 bytes leftover after parsing attributes in process `syz.2.477'.
[  237.600696][ T7987] netlink: 346 bytes leftover after parsing attributes in process `syz.0.488'.
[  240.715308][ T8032] netlink: 4 bytes leftover after parsing attributes in process `syz.3.500'.
[  243.415615][ T8056] netlink: 4 bytes leftover after parsing attributes in process `syz.1.505'.
[  245.390945][ T8066] FAULT_INJECTION: forcing a failure.
[  245.390945][ T8066] name failslab, interval 1, probability 0, space 0, times 0
[  245.425455][ T8066] CPU: 1 UID: 0 PID: 8066 Comm: syz.3.512 Not tainted 6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  245.425501][ T8066] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  245.425521][ T8066] Call Trace:
[  245.425530][ T8066]  <TASK>
[  245.425544][ T8066]  dump_stack_lvl+0x16c/0x1f0
[  245.425600][ T8066]  should_fail_ex+0x50a/0x650
[  245.425633][ T8066]  ? fs_reclaim_acquire+0xae/0x150
[  245.425680][ T8066]  should_failslab+0xc2/0x120
[  245.425713][ T8066]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  245.425767][ T8066]  ? alloc_vfsmnt+0x23/0x6f0
[  245.425803][ T8066]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  245.425858][ T8066]  alloc_vfsmnt+0x23/0x6f0
[  245.425896][ T8066]  clone_mnt+0x6d/0xf90
[  245.425935][ T8066]  ? lock_acquire+0x2f/0xb0
[  245.425980][ T8066]  ? copy_mnt_ns+0x14d/0xa70
[  245.426016][ T8066]  copy_tree+0xeb/0x9c0
[  245.426065][ T8066]  ? __pfx_down_write+0x10/0x10
[  245.426100][ T8066]  ? alloc_mnt_ns+0x325/0x520
[  245.426146][ T8066]  copy_mnt_ns+0x1b5/0xa70
[  245.426176][ T8066]  ? kmem_cache_alloc_noprof+0x279/0x3d0
[  245.426238][ T8066]  ? create_new_namespaces+0x30/0xad0
[  245.426300][ T8066]  create_new_namespaces+0xd3/0xad0
[  245.426355][ T8066]  ? bpf_lsm_capable+0x9/0x10
[  245.426389][ T8066]  ? security_capable+0x7e/0x260
[  245.426429][ T8066]  copy_namespaces+0x468/0x560
[  245.426492][ T8066]  copy_process+0x29fc/0x8c50
[  245.426554][ T8066]  ? __pfx_copy_process+0x10/0x10
[  245.426585][ T8066]  ? __pfx___futex_wait+0x10/0x10
[  245.426668][ T8066]  kernel_clone+0xfd/0x960
[  245.426703][ T8066]  ? __pfx_kernel_clone+0x10/0x10
[  245.426759][ T8066]  __do_sys_clone+0xcf/0x120
[  245.426791][ T8066]  ? __pfx___do_sys_clone+0x10/0x10
[  245.426844][ T8066]  ? rcu_is_watching+0x12/0xc0
[  245.426891][ T8066]  do_syscall_64+0xcd/0x250
[  245.426946][ T8066]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  245.426994][ T8066] RIP: 0033:0x7fed9218d169
[  245.427020][ T8066] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  245.427051][ T8066] RSP: 002b:00007fed930aefe8 EFLAGS: 00000202 ORIG_RAX: 0000000000000038
[  245.427081][ T8066] RAX: ffffffffffffffda RBX: 00007fed923a5fa0 RCX: 00007fed9218d169
[  245.427103][ T8066] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000001432a0091
[  245.427122][ T8066] RBP: 00007fed9220e2a0 R08: 0000000000000000 R09: 0000000000000000
[  245.427142][ T8066] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[  245.427162][ T8066] R13: 0000000000000000 R14: 00007fed923a5fa0 R15: 00007fff14239958
[  245.427216][ T8066]  </TASK>
[  248.229319][ T8104] netlink: 504 bytes leftover after parsing attributes in process `syz.0.520'.
[  248.345677][ T8106] netlink: 504 bytes leftover after parsing attributes in process `syz.0.520'.
[  249.181558][ T8115] netlink: 346 bytes leftover after parsing attributes in process `syz.3.524'.
[  253.495741][ T8150] nvme_fcloop: unknown parameter or missing value '7'
[  259.152546][ T8204] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 8 out of range (51000000..2150000000)
[  259.417082][ T8210] netlink: 'syz.1.542': attribute type 10 has an invalid length.
[  259.435238][ T8210] netlink: 230 bytes leftover after parsing attributes in process `syz.1.542'.
[  260.455299][ T8221] zswap: compressor  not available
[  260.881552][ T8235] netlink: 346 bytes leftover after parsing attributes in process `syz.3.549'.
[  261.397477][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  261.404498][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  261.724853][ T8255] FAULT_INJECTION: forcing a failure.
[  261.724853][ T8255] name failslab, interval 1, probability 0, space 0, times 0
[  261.800727][ T8255] CPU: 0 UID: 0 PID: 8255 Comm: syz.3.554 Not tainted 6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  261.800773][ T8255] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  261.800792][ T8255] Call Trace:
[  261.800801][ T8255]  <TASK>
[  261.800813][ T8255]  dump_stack_lvl+0x16c/0x1f0
[  261.800870][ T8255]  should_fail_ex+0x50a/0x650
[  261.800910][ T8255]  ? fs_reclaim_acquire+0xae/0x150
[  261.800957][ T8255]  ? xfrm_hash_alloc+0xd1/0x100
[  261.800989][ T8255]  should_failslab+0xc2/0x120
[  261.801022][ T8255]  __kmalloc_noprof+0xcb/0x510
[  261.801074][ T8255]  ? xfrm_nat_keepalive_net_init+0xf1/0x140
[  261.801121][ T8255]  ? __pfx_xfrm_net_init+0x10/0x10
[  261.801158][ T8255]  xfrm_hash_alloc+0xd1/0x100
[  261.801192][ T8255]  xfrm_state_init+0xde/0x630
[  261.801231][ T8255]  ? __pfx_xfrm_net_init+0x10/0x10
[  261.801264][ T8255]  xfrm_net_init+0x211/0xcb0
[  261.801305][ T8255]  ? __pfx_xfrm_net_init+0x10/0x10
[  261.801339][ T8255]  ops_init+0x1df/0x5f0
[  261.801377][ T8255]  setup_net+0x21f/0x860
[  261.801419][ T8255]  ? __pfx_setup_net+0x10/0x10
[  261.801451][ T8255]  ? down_read_killable+0xcc/0x380
[  261.801480][ T8255]  ? __pfx_down_read_killable+0x10/0x10
[  261.801509][ T8255]  ? __raw_spin_lock_init+0x3a/0x110
[  261.801548][ T8255]  ? debug_mutex_init+0x37/0x70
[  261.801590][ T8255]  copy_net_ns+0x2a6/0x5f0
[  261.801634][ T8255]  create_new_namespaces+0x3ea/0xad0
[  261.801699][ T8255]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  261.801760][ T8255]  ksys_unshare+0x45d/0xa40
[  261.801796][ T8255]  ? __pfx_ksys_unshare+0x10/0x10
[  261.801830][ T8255]  ? xfd_validate_state+0x5d/0x180
[  261.801898][ T8255]  __x64_sys_unshare+0x31/0x40
[  261.801932][ T8255]  do_syscall_64+0xcd/0x250
[  261.801982][ T8255]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  261.802028][ T8255] RIP: 0033:0x7fed9218d169
[  261.802053][ T8255] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  261.802085][ T8255] RSP: 002b:00007fed930af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  261.802116][ T8255] RAX: ffffffffffffffda RBX: 00007fed923a5fa0 RCX: 00007fed9218d169
[  261.802136][ T8255] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  261.802155][ T8255] RBP: 00007fed9220e2a0 R08: 0000000000000000 R09: 0000000000000000
[  261.802173][ T8255] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  261.802192][ T8255] R13: 0000000000000000 R14: 00007fed923a5fa0 R15: 00007fff14239958
[  261.802232][ T8255]  </TASK>
[  265.186751][ T5851] Bluetooth: hci0: unexpected event 0x17 length: 123 > 6
[  266.238351][ T8312] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 8 out of range (51000000..2150000000)
[  266.696734][ T8328] netlink: 346 bytes leftover after parsing attributes in process `syz.2.570'.
[  267.638885][ T8344] openvswitch: HfR: Dropping previously announced user features
[  268.091869][ T8346] do_dccp_getsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app
[  268.109698][ T8351] FAULT_INJECTION: forcing a failure.
[  268.109698][ T8351] name failslab, interval 1, probability 0, space 0, times 0
[  268.209803][ T8351] CPU: 1 UID: 0 PID: 8351 Comm: syz.0.575 Not tainted 6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  268.209849][ T8351] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  268.209868][ T8351] Call Trace:
[  268.209878][ T8351]  <TASK>
[  268.209891][ T8351]  dump_stack_lvl+0x16c/0x1f0
[  268.209948][ T8351]  should_fail_ex+0x50a/0x650
[  268.209981][ T8351]  ? fs_reclaim_acquire+0xae/0x150
[  268.210027][ T8351]  ? xfrm_hash_alloc+0xd1/0x100
[  268.210059][ T8351]  should_failslab+0xc2/0x120
[  268.210092][ T8351]  __kmalloc_noprof+0xcb/0x510
[  268.210144][ T8351]  ? xfrm_nat_keepalive_net_init+0xf1/0x140
[  268.210193][ T8351]  ? __pfx_xfrm_net_init+0x10/0x10
[  268.210231][ T8351]  xfrm_hash_alloc+0xd1/0x100
[  268.210265][ T8351]  xfrm_state_init+0xde/0x630
[  268.210304][ T8351]  ? __pfx_xfrm_net_init+0x10/0x10
[  268.210339][ T8351]  xfrm_net_init+0x211/0xcb0
[  268.210383][ T8351]  ? __pfx_xfrm_net_init+0x10/0x10
[  268.210419][ T8351]  ops_init+0x1df/0x5f0
[  268.210458][ T8351]  setup_net+0x21f/0x860
[  268.210502][ T8351]  ? __pfx_setup_net+0x10/0x10
[  268.210534][ T8351]  ? down_read_killable+0xcc/0x380
[  268.210567][ T8351]  ? __pfx_down_read_killable+0x10/0x10
[  268.210598][ T8351]  ? __raw_spin_lock_init+0x3a/0x110
[  268.210634][ T8351]  ? debug_mutex_init+0x37/0x70
[  268.210674][ T8351]  copy_net_ns+0x2a6/0x5f0
[  268.210717][ T8351]  create_new_namespaces+0x3ea/0xad0
[  268.210780][ T8351]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  268.210844][ T8351]  ksys_unshare+0x45d/0xa40
[  268.210880][ T8351]  ? __pfx_ksys_unshare+0x10/0x10
[  268.210912][ T8351]  ? xfd_validate_state+0x5d/0x180
[  268.210975][ T8351]  __x64_sys_unshare+0x31/0x40
[  268.211009][ T8351]  do_syscall_64+0xcd/0x250
[  268.211064][ T8351]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  268.211111][ T8351] RIP: 0033:0x7f069158d169
[  268.211137][ T8351] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  268.211168][ T8351] RSP: 002b:00007f069243b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  268.211199][ T8351] RAX: ffffffffffffffda RBX: 00007f06917a6080 RCX: 00007f069158d169
[  268.211220][ T8351] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  268.211240][ T8351] RBP: 00007f069160e2a0 R08: 0000000000000000 R09: 0000000000000000
[  268.211260][ T8351] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  268.211279][ T8351] R13: 0000000000000000 R14: 00007f06917a6080 R15: 00007ffc156b5b38
[  268.211322][ T8351]  </TASK>
[  270.599951][ T8363] zswap: compressor  not available
[  270.901922][ T8374] netlink: 346 bytes leftover after parsing attributes in process `syz.0.580'.
[  274.206589][ T8417] netlink: 4 bytes leftover after parsing attributes in process `syz.1.589'.
[  274.625969][ T8414] zswap: compressor  not available
[  274.972579][ T8430] FAULT_INJECTION: forcing a failure.
[  274.972579][ T8430] name failslab, interval 1, probability 0, space 0, times 0
[  275.010350][ T8430] CPU: 0 UID: 0 PID: 8430 Comm: syz.2.591 Not tainted 6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  275.010397][ T8430] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  275.010415][ T8430] Call Trace:
[  275.010425][ T8430]  <TASK>
[  275.010437][ T8430]  dump_stack_lvl+0x16c/0x1f0
[  275.010496][ T8430]  should_fail_ex+0x50a/0x650
[  275.010527][ T8430]  ? fs_reclaim_acquire+0xae/0x150
[  275.010574][ T8430]  should_failslab+0xc2/0x120
[  275.010606][ T8430]  __kmalloc_node_noprof+0xd1/0x510
[  275.010661][ T8430]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  275.010715][ T8430]  __kvmalloc_node_noprof+0xad/0x1a0
[  275.010764][ T8430]  alloc_netdev_mqs+0x101e/0x15d0
[  275.010806][ T8430]  internal_dev_create+0x8a/0x520
[  275.010861][ T8430]  ovs_vport_add+0x144/0x4d0
[  275.010910][ T8430]  new_vport+0x16/0x1d0
[  275.010946][ T8430]  ovs_dp_cmd_new+0x6b0/0xe50
[  275.010993][ T8430]  ? __pfx_ovs_dp_cmd_new+0x10/0x10
[  275.011040][ T8430]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  275.011084][ T8430]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  275.011129][ T8430]  genl_family_rcv_msg_doit+0x202/0x2f0
[  275.011165][ T8430]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  275.011199][ T8430]  ? trace_cap_capable+0x1a2/0x210
[  275.011243][ T8430]  ? bpf_lsm_capable+0x9/0x10
[  275.011276][ T8430]  ? security_capable+0x7e/0x260
[  275.011310][ T8430]  ? ns_capable+0xd7/0x110
[  275.011360][ T8430]  genl_rcv_msg+0x565/0x800
[  275.011397][ T8430]  ? __pfx_genl_rcv_msg+0x10/0x10
[  275.011431][ T8430]  ? __pfx_ovs_dp_cmd_new+0x10/0x10
[  275.011484][ T8430]  netlink_rcv_skb+0x16b/0x440
[  275.011532][ T8430]  ? __pfx_genl_rcv_msg+0x10/0x10
[  275.011567][ T8430]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  275.011633][ T8430]  ? down_read+0xc9/0x330
[  275.011681][ T8430]  ? __pfx_down_read+0x10/0x10
[  275.011735][ T8430]  ? netlink_deliver_tap+0x1ae/0xd30
[  275.011791][ T8430]  genl_rcv+0x28/0x40
[  275.011819][ T8430]  netlink_unicast+0x53c/0x7f0
[  275.011878][ T8430]  ? __pfx_netlink_unicast+0x10/0x10
[  275.011931][ T8430]  ? __phys_addr_symbol+0x30/0x80
[  275.011964][ T8430]  ? __check_object_size+0x488/0x710
[  275.012003][ T8430]  netlink_sendmsg+0x8b8/0xd70
[  275.012069][ T8430]  ? __pfx_netlink_sendmsg+0x10/0x10
[  275.012138][ T8430]  ____sys_sendmsg+0xaaf/0xc90
[  275.012181][ T8430]  ? copy_msghdr_from_user+0x10b/0x160
[  275.012234][ T8430]  ? __pfx_____sys_sendmsg+0x10/0x10
[  275.012296][ T8430]  ___sys_sendmsg+0x135/0x1e0
[  275.012374][ T8430]  ? __pfx____sys_sendmsg+0x10/0x10
[  275.012447][ T8430]  ? __pfx_lock_release+0x10/0x10
[  275.012495][ T8430]  ? trace_lock_acquire+0x14e/0x1f0
[  275.012549][ T8430]  ? __fget_files+0x206/0x3a0
[  275.012609][ T8430]  __sys_sendmsg+0x16e/0x220
[  275.012642][ T8430]  ? __pfx___sys_sendmsg+0x10/0x10
[  275.012673][ T8430]  ? __x64_sys_futex+0x1e1/0x4c0
[  275.012739][ T8430]  do_syscall_64+0xcd/0x250
[  275.012791][ T8430]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  275.012838][ T8430] RIP: 0033:0x7efd2078d169
[  275.012866][ T8430] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  275.012897][ T8430] RSP: 002b:00007efd216b4038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  275.012927][ T8430] RAX: ffffffffffffffda RBX: 00007efd209a5fa0 RCX: 00007efd2078d169
[  275.012948][ T8430] RDX: 0000000000000080 RSI: 0000200000000140 RDI: 0000000000000005
[  275.012967][ T8430] RBP: 00007efd2080e2a0 R08: 0000000000000000 R09: 0000000000000000
[  275.012986][ T8430] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  275.013004][ T8430] R13: 0000000000000000 R14: 00007efd209a5fa0 R15: 00007ffea8205528
[  275.013053][ T8430]  </TASK>
[  275.377621][    C0] vkms_vblank_simulate: vblank timer overrun
[  277.976040][ T8464] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input12
[  278.285313][ T8467] netlink: 'syz.1.600': attribute type 15 has an invalid length.
[  278.313754][ T8467] netlink: 186 bytes leftover after parsing attributes in process `syz.1.600'.
[  280.917097][ T8497] FAULT_INJECTION: forcing a failure.
[  280.917097][ T8497] name failslab, interval 1, probability 0, space 0, times 0
[  281.135194][ T8497] CPU: 1 UID: 0 PID: 8497 Comm: syz.0.606 Not tainted 6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  281.135237][ T8497] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  281.135265][ T8497] Call Trace:
[  281.135273][ T8497]  <TASK>
[  281.135285][ T8497]  dump_stack_lvl+0x16c/0x1f0
[  281.135340][ T8497]  should_fail_ex+0x50a/0x650
[  281.135380][ T8497]  ? fs_reclaim_acquire+0xae/0x150
[  281.135426][ T8497]  ? xfrm_hash_alloc+0xd1/0x100
[  281.135457][ T8497]  should_failslab+0xc2/0x120
[  281.135488][ T8497]  __kmalloc_noprof+0xcb/0x510
[  281.135538][ T8497]  ? xfrm_nat_keepalive_net_init+0xf1/0x140
[  281.135590][ T8497]  xfrm_hash_alloc+0xd1/0x100
[  281.135626][ T8497]  xfrm_state_init+0x11f/0x630
[  281.135667][ T8497]  ? __pfx_xfrm_net_init+0x10/0x10
[  281.135703][ T8497]  xfrm_net_init+0x211/0xcb0
[  281.135746][ T8497]  ? __pfx_xfrm_net_init+0x10/0x10
[  281.135781][ T8497]  ops_init+0x1df/0x5f0
[  281.135819][ T8497]  setup_net+0x21f/0x860
[  281.135856][ T8497]  ? __pfx_setup_net+0x10/0x10
[  281.135888][ T8497]  ? down_read_killable+0xcc/0x380
[  281.135920][ T8497]  ? __pfx_down_read_killable+0x10/0x10
[  281.135951][ T8497]  ? __raw_spin_lock_init+0x3a/0x110
[  281.135985][ T8497]  ? debug_mutex_init+0x37/0x70
[  281.136025][ T8497]  copy_net_ns+0x2a6/0x5f0
[  281.136067][ T8497]  create_new_namespaces+0x3ea/0xad0
[  281.136140][ T8497]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  281.136199][ T8497]  ksys_unshare+0x45d/0xa40
[  281.136236][ T8497]  ? __pfx_ksys_unshare+0x10/0x10
[  281.136269][ T8497]  ? xfd_validate_state+0x5d/0x180
[  281.136328][ T8497]  __x64_sys_unshare+0x31/0x40
[  281.136363][ T8497]  do_syscall_64+0xcd/0x250
[  281.136415][ T8497]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  281.136461][ T8497] RIP: 0033:0x7f069158d169
[  281.136487][ T8497] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  281.136518][ T8497] RSP: 002b:00007f069243b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  281.136548][ T8497] RAX: ffffffffffffffda RBX: 00007f06917a6080 RCX: 00007f069158d169
[  281.136570][ T8497] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  281.136589][ T8497] RBP: 00007f069160e2a0 R08: 0000000000000000 R09: 0000000000000000
[  281.136609][ T8497] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  281.136628][ T8497] R13: 0000000000000000 R14: 00007f06917a6080 R15: 00007ffc156b5b38
[  281.136669][ T8497]  </TASK>
[  285.585414][ T8555] netlink: zone id is out of range
[  285.595568][ T8555] netlink: zone id is out of range
[  285.600958][ T8555] netlink: zone id is out of range
[  285.606529][ T8555] netlink: zone id is out of range
[  285.611805][ T8555] netlink: zone id is out of range
[  285.625233][ T8555] netlink: zone id is out of range
[  285.630498][ T8555] netlink: zone id is out of range
[  285.636505][ T8555] netlink: zone id is out of range
[  285.641680][ T8555] netlink: zone id is out of range
[  285.697881][ T8555] netlink: zone id is out of range
[  286.367620][ T8561] random: crng reseeded on system resumption

syzkaller
syzkaller login: [  288.701248][ T8619] netlink: 346 bytes leftover after parsing attributes in process `syz.2.633'.
[  289.865785][ T5851] Bluetooth: hci3: Zero size dump init pkt
[  290.885522][ T8658] netlink: 346 bytes leftover after parsing attributes in process `syz.2.643'.
[  291.201835][ T8668] FAULT_INJECTION: forcing a failure.
[  291.201835][ T8668] name failslab, interval 1, probability 0, space 0, times 0
[  291.369040][ T8668] CPU: 1 UID: 0 PID: 8668 Comm: syz.0.645 Not tainted 6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  291.369090][ T8668] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  291.369109][ T8668] Call Trace:
[  291.369118][ T8668]  <TASK>
[  291.369130][ T8668]  dump_stack_lvl+0x16c/0x1f0
[  291.369186][ T8668]  should_fail_ex+0x50a/0x650
[  291.369217][ T8668]  ? fs_reclaim_acquire+0xae/0x150
[  291.369262][ T8668]  ? xfrm_hash_alloc+0xd1/0x100
[  291.369294][ T8668]  should_failslab+0xc2/0x120
[  291.369324][ T8668]  __kmalloc_noprof+0xcb/0x510
[  291.369374][ T8668]  ? xfrm_nat_keepalive_net_init+0xf1/0x140
[  291.369421][ T8668]  ? __pfx_xfrm_net_init+0x10/0x10
[  291.369455][ T8668]  xfrm_hash_alloc+0xd1/0x100
[  291.369487][ T8668]  xfrm_state_init+0xde/0x630
[  291.369524][ T8668]  ? __pfx_xfrm_net_init+0x10/0x10
[  291.369557][ T8668]  xfrm_net_init+0x211/0xcb0
[  291.369596][ T8668]  ? __pfx_xfrm_net_init+0x10/0x10
[  291.369630][ T8668]  ops_init+0x1df/0x5f0
[  291.369665][ T8668]  setup_net+0x21f/0x860
[  291.369701][ T8668]  ? __pfx_setup_net+0x10/0x10
[  291.369731][ T8668]  ? down_read_killable+0xcc/0x380
[  291.369763][ T8668]  ? __pfx_down_read_killable+0x10/0x10
[  291.369793][ T8668]  ? __raw_spin_lock_init+0x3a/0x110
[  291.369827][ T8668]  ? debug_mutex_init+0x37/0x70
[  291.369866][ T8668]  copy_net_ns+0x2a6/0x5f0
[  291.369909][ T8668]  create_new_namespaces+0x3ea/0xad0
[  291.369973][ T8668]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  291.370050][ T8668]  ksys_unshare+0x45d/0xa40
[  291.370087][ T8668]  ? __pfx_ksys_unshare+0x10/0x10
[  291.370121][ T8668]  ? xfd_validate_state+0x5d/0x180
[  291.370183][ T8668]  __x64_sys_unshare+0x31/0x40
[  291.370218][ T8668]  do_syscall_64+0xcd/0x250
[  291.370272][ T8668]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  291.370319][ T8668] RIP: 0033:0x7f069158d169
[  291.370345][ T8668] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  291.370375][ T8668] RSP: 002b:00007f069243b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  291.370406][ T8668] RAX: ffffffffffffffda RBX: 00007f06917a6080 RCX: 00007f069158d169
[  291.370428][ T8668] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  291.370448][ T8668] RBP: 00007f069160e2a0 R08: 0000000000000000 R09: 0000000000000000
[  291.370467][ T8668] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  291.370487][ T8668] R13: 0000000000000000 R14: 00007f06917a6080 R15: 00007ffc156b5b38
[  291.370523][ T8668]  </TASK>
[  293.023242][ T8689] program syz.0.648 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  296.463410][   T30] audit: type=1800 audit(4294967298.530:6): pid=8722 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.660" name="features" dev="configfs" ino=21332 res=0 errno=0
[  297.666729][ T8778] net_ratelimit: 19 callbacks suppressed
[  297.666756][ T8778] netlink: zone id is out of range
[  297.776298][ T8778] netlink: zone id is out of range
[  297.784067][ T8771] FAULT_INJECTION: forcing a failure.
[  297.784067][ T8771] name failslab, interval 1, probability 0, space 0, times 0
[  297.815197][ T8778] netlink: zone id is out of range
[  297.848619][ T8778] netlink: zone id is out of range
[  297.973847][ T8778] netlink: zone id is out of range
[  298.021838][ T8778] netlink: zone id is out of range
[  298.030461][ T8771] CPU: 1 UID: 0 PID: 8771 Comm: syz.0.666 Not tainted 6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  298.030505][ T8771] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  298.030523][ T8771] Call Trace:
[  298.030533][ T8771]  <TASK>
[  298.030545][ T8771]  dump_stack_lvl+0x16c/0x1f0
[  298.030634][ T8771]  should_fail_ex+0x50a/0x650
[  298.030668][ T8771]  ? fs_reclaim_acquire+0xae/0x150
[  298.030715][ T8771]  ? xfrm_hash_alloc+0xd1/0x100
[  298.030747][ T8771]  should_failslab+0xc2/0x120
[  298.030785][ T8771]  __kmalloc_noprof+0xcb/0x510
[  298.030837][ T8771]  ? xfrm_nat_keepalive_net_init+0xf1/0x140
[  298.030886][ T8771]  ? __pfx_xfrm_net_init+0x10/0x10
[  298.030930][ T8771]  xfrm_hash_alloc+0xd1/0x100
[  298.030963][ T8771]  xfrm_state_init+0xde/0x630
[  298.031002][ T8771]  ? __pfx_xfrm_net_init+0x10/0x10
[  298.031038][ T8771]  xfrm_net_init+0x211/0xcb0
[  298.031082][ T8771]  ? __pfx_xfrm_net_init+0x10/0x10
[  298.031118][ T8771]  ops_init+0x1df/0x5f0
[  298.031157][ T8771]  setup_net+0x21f/0x860
[  298.031194][ T8771]  ? __pfx_setup_net+0x10/0x10
[  298.031226][ T8771]  ? down_read_killable+0xcc/0x380
[  298.031258][ T8771]  ? __pfx_down_read_killable+0x10/0x10
[  298.031289][ T8771]  ? __raw_spin_lock_init+0x3a/0x110
[  298.031323][ T8771]  ? debug_mutex_init+0x37/0x70
[  298.031364][ T8771]  copy_net_ns+0x2a6/0x5f0
[  298.031407][ T8771]  create_new_namespaces+0x3ea/0xad0
[  298.031473][ T8771]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  298.031537][ T8771]  ksys_unshare+0x45d/0xa40
[  298.031585][ T8771]  ? __pfx_ksys_unshare+0x10/0x10
[  298.031619][ T8771]  ? xfd_validate_state+0x5d/0x180
[  298.031679][ T8771]  __x64_sys_unshare+0x31/0x40
[  298.031714][ T8771]  do_syscall_64+0xcd/0x250
[  298.031774][ T8771]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  298.031822][ T8771] RIP: 0033:0x7f069158d169
[  298.031848][ T8771] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  298.031879][ T8771] RSP: 002b:00007f069245c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  298.031910][ T8771] RAX: ffffffffffffffda RBX: 00007f06917a5fa0 RCX: 00007f069158d169
[  298.031932][ T8771] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  298.031951][ T8771] RBP: 00007f069160e2a0 R08: 0000000000000000 R09: 0000000000000000
[  298.031971][ T8771] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  298.031990][ T8771] R13: 0000000000000000 R14: 00007f06917a5fa0 R15: 00007ffc156b5b38
[  298.032033][ T8771]  </TASK>
[  298.386404][ T8778] netlink: zone id is out of range
[  298.417472][ T8778] netlink: zone id is out of range
[  298.439889][ T8778] netlink: zone id is out of range
[  298.526280][ T8778] netlink: zone id is out of range

syzkaller
syzkaller login: [  303.846461][ T8844] random: crng reseeded on system resumption
[  308.943318][ T8889] netlink: 8 bytes leftover after parsing attributes in process `syz.2.695'.
[  310.205669][ T8912] cougar: G6 mapped to space
[  312.110840][ T8934] netlink: 504 bytes leftover after parsing attributes in process `syz.1.709'.
[  312.166277][ T8934] netlink: 504 bytes leftover after parsing attributes in process `syz.1.709'.
[  318.520270][ T9013] busy
[  321.164609][ T9051] FAULT_INJECTION: forcing a failure.
[  321.164609][ T9051] name failslab, interval 1, probability 0, space 0, times 0
[  321.346706][ T9051] CPU: 1 UID: 0 PID: 9051 Comm: syz.2.740 Not tainted 6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  321.346751][ T9051] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  321.346784][ T9051] Call Trace:
[  321.346795][ T9051]  <TASK>
[  321.346808][ T9051]  dump_stack_lvl+0x16c/0x1f0
[  321.346916][ T9051]  should_fail_ex+0x50a/0x650
[  321.346951][ T9051]  ? fs_reclaim_acquire+0xae/0x150
[  321.346998][ T9051]  ? xfrm_hash_alloc+0xd1/0x100
[  321.347031][ T9051]  should_failslab+0xc2/0x120
[  321.347064][ T9051]  __kmalloc_noprof+0xcb/0x510
[  321.347116][ T9051]  ? xfrm_nat_keepalive_net_init+0xf1/0x140
[  321.347166][ T9051]  ? __pfx_xfrm_net_init+0x10/0x10
[  321.347204][ T9051]  xfrm_hash_alloc+0xd1/0x100
[  321.347238][ T9051]  xfrm_state_init+0xde/0x630
[  321.347278][ T9051]  ? __pfx_xfrm_net_init+0x10/0x10
[  321.347312][ T9051]  xfrm_net_init+0x211/0xcb0
[  321.347356][ T9051]  ? __pfx_xfrm_net_init+0x10/0x10
[  321.347393][ T9051]  ops_init+0x1df/0x5f0
[  321.347431][ T9051]  setup_net+0x21f/0x860
[  321.347469][ T9051]  ? __pfx_setup_net+0x10/0x10
[  321.347501][ T9051]  ? down_read_killable+0xcc/0x380
[  321.347533][ T9051]  ? __pfx_down_read_killable+0x10/0x10
[  321.347564][ T9051]  ? __raw_spin_lock_init+0x3a/0x110
[  321.347600][ T9051]  ? debug_mutex_init+0x37/0x70
[  321.347640][ T9051]  copy_net_ns+0x2a6/0x5f0
[  321.347683][ T9051]  create_new_namespaces+0x3ea/0xad0
[  321.347754][ T9051]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  321.347837][ T9051]  ksys_unshare+0x45d/0xa40
[  321.347881][ T9051]  ? __pfx_ksys_unshare+0x10/0x10
[  321.347915][ T9051]  ? xfd_validate_state+0x5d/0x180
[  321.347979][ T9051]  __x64_sys_unshare+0x31/0x40
[  321.348025][ T9051]  do_syscall_64+0xcd/0x250
[  321.348080][ T9051]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  321.348129][ T9051] RIP: 0033:0x7efd2078d169
[  321.348156][ T9051] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  321.348186][ T9051] RSP: 002b:00007efd216b4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  321.348217][ T9051] RAX: ffffffffffffffda RBX: 00007efd209a5fa0 RCX: 00007efd2078d169
[  321.348238][ T9051] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  321.348258][ T9051] RBP: 00007efd2080e2a0 R08: 0000000000000000 R09: 0000000000000000
[  321.348282][ T9051] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  321.348302][ T9051] R13: 0000000000000000 R14: 00007efd209a5fa0 R15: 00007ffea8205528
[  321.348344][ T9051]  </TASK>
[  322.165968][ T9062] rnbd_client L202: map_device: Unknown parameter or missing value '('
[  322.817876][ T9072] vivid-003: =================  START STATUS  =================
[  322.845561][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  322.851973][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  322.875607][ T9072] vivid-003: Radio HW Seek Mode: Bounded
[  322.881746][ T9072] vivid-003: Radio Programmable HW Seek: false
[  322.924503][ T9072] vivid-003: RDS Rx I/O Mode: Block I/O
[  322.975285][ T9072] vivid-003: Generate RBDS Instead of RDS: false
[  322.981748][ T9072] vivid-003: RDS Reception: true
[  323.083154][ T9072] vivid-003: RDS Program Type: 0 inactive
[  323.201158][ T9072] vivid-003: RDS PS Name:  inactive
[  323.268176][ T9072] vivid-003: RDS Radio Text:  inactive
[  323.303756][ T9072] vivid-003: RDS Traffic Announcement: false inactive
[  323.455344][ T9072] vivid-003: RDS Traffic Program: false inactive
[  323.492881][ T9072] vivid-003: RDS Music: false inactive
[  323.601037][ T9072] vivid-003: ==================  END STATUS  ==================
[  324.478258][ T9093] FAULT_INJECTION: forcing a failure.
[  324.478258][ T9093] name failslab, interval 1, probability 0, space 0, times 0
[  324.586756][ T9093] CPU: 0 UID: 0 PID: 9093 Comm: syz.3.750 Not tainted 6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  324.586800][ T9093] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  324.586820][ T9093] Call Trace:
[  324.586830][ T9093]  <TASK>
[  324.586842][ T9093]  dump_stack_lvl+0x16c/0x1f0
[  324.586900][ T9093]  should_fail_ex+0x50a/0x650
[  324.586932][ T9093]  ? fs_reclaim_acquire+0xae/0x150
[  324.586979][ T9093]  ? xfrm_hash_alloc+0xd1/0x100
[  324.587011][ T9093]  should_failslab+0xc2/0x120
[  324.587043][ T9093]  __kmalloc_noprof+0xcb/0x510
[  324.587095][ T9093]  ? xfrm_nat_keepalive_net_init+0xf1/0x140
[  324.587148][ T9093]  xfrm_hash_alloc+0xd1/0x100
[  324.587182][ T9093]  xfrm_state_init+0x160/0x630
[  324.587220][ T9093]  ? __pfx_xfrm_net_init+0x10/0x10
[  324.587256][ T9093]  xfrm_net_init+0x211/0xcb0
[  324.587299][ T9093]  ? __pfx_xfrm_net_init+0x10/0x10
[  324.587335][ T9093]  ops_init+0x1df/0x5f0
[  324.587374][ T9093]  setup_net+0x21f/0x860
[  324.587411][ T9093]  ? __pfx_setup_net+0x10/0x10
[  324.587444][ T9093]  ? down_read_killable+0xcc/0x380
[  324.587477][ T9093]  ? __pfx_down_read_killable+0x10/0x10
[  324.587517][ T9093]  ? __raw_spin_lock_init+0x3a/0x110
[  324.587554][ T9093]  ? debug_mutex_init+0x37/0x70
[  324.587595][ T9093]  copy_net_ns+0x2a6/0x5f0
[  324.587638][ T9093]  create_new_namespaces+0x3ea/0xad0
[  324.587705][ T9093]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  324.587768][ T9093]  ksys_unshare+0x45d/0xa40
[  324.587805][ T9093]  ? __pfx_ksys_unshare+0x10/0x10
[  324.587839][ T9093]  ? xfd_validate_state+0x5d/0x180
[  324.587901][ T9093]  __x64_sys_unshare+0x31/0x40
[  324.587936][ T9093]  do_syscall_64+0xcd/0x250
[  324.587989][ T9093]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  324.588038][ T9093] RIP: 0033:0x7fed9218d169
[  324.588064][ T9093] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  324.588092][ T9093] RSP: 002b:00007fed930af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  324.588123][ T9093] RAX: ffffffffffffffda RBX: 00007fed923a5fa0 RCX: 00007fed9218d169
[  324.588144][ T9093] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  324.588177][ T9093] RBP: 00007fed9220e2a0 R08: 0000000000000000 R09: 0000000000000000
[  324.588197][ T9093] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  324.588215][ T9093] R13: 0000000000000000 R14: 00007fed923a5fa0 R15: 00007fff14239958
[  324.588256][ T9093]  </TASK>
[  329.427417][ T9138] FAULT_INJECTION: forcing a failure.
[  329.427417][ T9138] name failslab, interval 1, probability 0, space 0, times 0
[  329.515420][ T9138] CPU: 1 UID: 0 PID: 9138 Comm: syz.2.761 Not tainted 6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  329.515463][ T9138] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  329.515482][ T9138] Call Trace:
[  329.515491][ T9138]  <TASK>
[  329.515503][ T9138]  dump_stack_lvl+0x16c/0x1f0
[  329.515557][ T9138]  should_fail_ex+0x50a/0x650
[  329.515588][ T9138]  ? fs_reclaim_acquire+0xae/0x150
[  329.515631][ T9138]  ? xfrm_hash_alloc+0xd1/0x100
[  329.515663][ T9138]  should_failslab+0xc2/0x120
[  329.515695][ T9138]  __kmalloc_noprof+0xcb/0x510
[  329.515746][ T9138]  ? xfrm_nat_keepalive_net_init+0xf1/0x140
[  329.515794][ T9138]  ? __pfx_xfrm_net_init+0x10/0x10
[  329.515830][ T9138]  xfrm_hash_alloc+0xd1/0x100
[  329.515863][ T9138]  xfrm_state_init+0xde/0x630
[  329.515902][ T9138]  ? __pfx_xfrm_net_init+0x10/0x10
[  329.515936][ T9138]  xfrm_net_init+0x211/0xcb0
[  329.515978][ T9138]  ? __pfx_xfrm_net_init+0x10/0x10
[  329.516013][ T9138]  ops_init+0x1df/0x5f0
[  329.516053][ T9138]  setup_net+0x21f/0x860
[  329.516091][ T9138]  ? __pfx_setup_net+0x10/0x10
[  329.516122][ T9138]  ? down_read_killable+0xcc/0x380
[  329.516155][ T9138]  ? __pfx_down_read_killable+0x10/0x10
[  329.516185][ T9138]  ? __raw_spin_lock_init+0x3a/0x110
[  329.516219][ T9138]  ? debug_mutex_init+0x37/0x70
[  329.516259][ T9138]  copy_net_ns+0x2a6/0x5f0
[  329.516310][ T9138]  create_new_namespaces+0x3ea/0xad0
[  329.516374][ T9138]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  329.516433][ T9138]  ksys_unshare+0x45d/0xa40
[  329.516475][ T9138]  ? __pfx_ksys_unshare+0x10/0x10
[  329.516508][ T9138]  ? xfd_validate_state+0x5d/0x180
[  329.516569][ T9138]  __x64_sys_unshare+0x31/0x40
[  329.516603][ T9138]  do_syscall_64+0xcd/0x250
[  329.516654][ T9138]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  329.516700][ T9138] RIP: 0033:0x7efd2078d169
[  329.516725][ T9138] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  329.516756][ T9138] RSP: 002b:00007efd216b4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  329.516785][ T9138] RAX: ffffffffffffffda RBX: 00007efd209a5fa0 RCX: 00007efd2078d169
[  329.516806][ T9138] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  329.516826][ T9138] RBP: 00007efd2080e2a0 R08: 0000000000000000 R09: 0000000000000000
[  329.516846][ T9138] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  329.516865][ T9138] R13: 0000000000000000 R14: 00007efd209a5fa0 R15: 00007ffea8205528
[  329.516906][ T9138]  </TASK>
[  331.762557][ T9163] nfsd: Unknown parameter ''
[  334.114886][ T9184] FAULT_INJECTION: forcing a failure.
[  334.114886][ T9184] name failslab, interval 1, probability 0, space 0, times 0
[  334.383916][ T9184] CPU: 0 UID: 0 PID: 9184 Comm: syz.3.771 Not tainted 6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  334.383960][ T9184] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  334.383978][ T9184] Call Trace:
[  334.383987][ T9184]  <TASK>
[  334.383999][ T9184]  dump_stack_lvl+0x16c/0x1f0
[  334.384056][ T9184]  should_fail_ex+0x50a/0x650
[  334.384088][ T9184]  ? fs_reclaim_acquire+0xae/0x150
[  334.384135][ T9184]  ? xfrm_hash_alloc+0xd1/0x100
[  334.384166][ T9184]  should_failslab+0xc2/0x120
[  334.384198][ T9184]  __kmalloc_noprof+0xcb/0x510
[  334.384249][ T9184]  ? xfrm_nat_keepalive_net_init+0xf1/0x140
[  334.384299][ T9184]  ? __pfx_xfrm_net_init+0x10/0x10
[  334.384336][ T9184]  xfrm_hash_alloc+0xd1/0x100
[  334.384369][ T9184]  xfrm_state_init+0xde/0x630
[  334.384408][ T9184]  ? __pfx_xfrm_net_init+0x10/0x10
[  334.384443][ T9184]  xfrm_net_init+0x211/0xcb0
[  334.384485][ T9184]  ? __pfx_xfrm_net_init+0x10/0x10
[  334.384520][ T9184]  ops_init+0x1df/0x5f0
[  334.384558][ T9184]  setup_net+0x21f/0x860
[  334.384596][ T9184]  ? __pfx_setup_net+0x10/0x10
[  334.384626][ T9184]  ? down_read_killable+0xcc/0x380
[  334.384666][ T9184]  ? __pfx_down_read_killable+0x10/0x10
[  334.384703][ T9184]  ? __raw_spin_lock_init+0x3a/0x110
[  334.384738][ T9184]  ? debug_mutex_init+0x37/0x70
[  334.384778][ T9184]  copy_net_ns+0x2a6/0x5f0
[  334.384820][ T9184]  create_new_namespaces+0x3ea/0xad0
[  334.384883][ T9184]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  334.384949][ T9184]  ksys_unshare+0x45d/0xa40
[  334.384985][ T9184]  ? __pfx_ksys_unshare+0x10/0x10
[  334.385019][ T9184]  ? xfd_validate_state+0x5d/0x180
[  334.385075][ T9184]  __x64_sys_unshare+0x31/0x40
[  334.385107][ T9184]  do_syscall_64+0xcd/0x250
[  334.385158][ T9184]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  334.385205][ T9184] RIP: 0033:0x7fed9218d169
[  334.385230][ T9184] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  334.385258][ T9184] RSP: 002b:00007fed930af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  334.385286][ T9184] RAX: ffffffffffffffda RBX: 00007fed923a5fa0 RCX: 00007fed9218d169
[  334.385308][ T9184] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  334.385327][ T9184] RBP: 00007fed9220e2a0 R08: 0000000000000000 R09: 0000000000000000
[  334.385346][ T9184] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  334.385365][ T9184] R13: 0000000000000000 R14: 00007fed923a5fa0 R15: 00007fff14239958
[  334.385406][ T9184]  </TASK>
[  341.901640][ T5850] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  341.914211][ T5850] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  341.923700][ T5850] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  341.935602][ T5850] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  341.949559][ T5850] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  341.964523][ T5850] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  342.273731][ T9244] netlink: 'syz.3.785': attribute type 1 has an invalid length.
[  342.365250][ T9244] netlink: 32 bytes leftover after parsing attributes in process `syz.3.785'.
[  342.869604][ T9240] chnl_net:caif_netlink_parms(): no params data found
[  343.881929][ T9240] bridge0: port 1(bridge_slave_0) entered blocking state
[  343.895186][ T9240] bridge0: port 1(bridge_slave_0) entered disabled state
[  343.902696][ T9240] bridge_slave_0: entered allmulticast mode
[  343.956660][ T9240] bridge_slave_0: entered promiscuous mode
[  343.968477][ T9240] bridge0: port 2(bridge_slave_1) entered blocking state
[  343.995315][ T9240] bridge0: port 2(bridge_slave_1) entered disabled state
[  344.002822][ T9240] bridge_slave_1: entered allmulticast mode
[  344.036255][ T5850] Bluetooth: hci4: command tx timeout
[  344.046214][ T9240] bridge_slave_1: entered promiscuous mode
[  344.609650][ T9240] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  344.764847][ T9240] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  345.438863][ T9240] team0: Port device team_slave_0 added
[  345.448391][ T9240] team0: Port device team_slave_1 added
[  345.952916][ T9240] batman_adv: batadv0: Adding interface: batadv_slave_0
[  346.001123][ T9240] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  346.075381][ T9240] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  346.118961][ T5850] Bluetooth: hci4: command tx timeout
[  346.145317][ T9240] batman_adv: batadv0: Adding interface: batadv_slave_1
[  346.152535][ T9240] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  346.205157][ T9240] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  346.477468][ T9240] hsr_slave_0: entered promiscuous mode
[  346.504511][ T9240] hsr_slave_1: entered promiscuous mode
[  346.525887][ T9240] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  346.561477][ T9240] Cannot create hsr debugfs directory
[  346.995170][ T9288] netlink: 346 bytes leftover after parsing attributes in process `syz.3.795'.
[  347.449422][ T9240] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  347.476507][ T9240] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  347.558656][ T9240] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  347.597006][ T9240] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  347.892670][ T9240] 8021q: adding VLAN 0 to HW filter on device bond0
[  348.094434][ T9240] 8021q: adding VLAN 0 to HW filter on device team0
[  348.189473][   T37] bridge0: port 1(bridge_slave_0) entered blocking state
[  348.195402][ T5850] Bluetooth: hci4: command tx timeout
[  348.196835][   T37] bridge0: port 1(bridge_slave_0) entered forwarding state
[  348.278255][   T37] bridge0: port 2(bridge_slave_1) entered blocking state
[  348.285531][   T37] bridge0: port 2(bridge_slave_1) entered forwarding state
[  348.818088][ T9303] FAULT_INJECTION: forcing a failure.
[  348.818088][ T9303] name failslab, interval 1, probability 0, space 0, times 0
[  348.935739][ T9303] CPU: 0 UID: 0 PID: 9303 Comm: syz.2.798 Not tainted 6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  348.935783][ T9303] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  348.935802][ T9303] Call Trace:
[  348.935810][ T9303]  <TASK>
[  348.935823][ T9303]  dump_stack_lvl+0x16c/0x1f0
[  348.935882][ T9303]  should_fail_ex+0x50a/0x650
[  348.935924][ T9303]  ? fs_reclaim_acquire+0xae/0x150
[  348.935971][ T9303]  ? xfrm_hash_alloc+0xd1/0x100
[  348.936004][ T9303]  should_failslab+0xc2/0x120
[  348.936037][ T9303]  __kmalloc_noprof+0xcb/0x510
[  348.936090][ T9303]  ? xfrm_nat_keepalive_net_init+0xf1/0x140
[  348.936138][ T9303]  ? __pfx_xfrm_net_init+0x10/0x10
[  348.936176][ T9303]  xfrm_hash_alloc+0xd1/0x100
[  348.936210][ T9303]  xfrm_state_init+0xde/0x630
[  348.936248][ T9303]  ? __pfx_xfrm_net_init+0x10/0x10
[  348.936283][ T9303]  xfrm_net_init+0x211/0xcb0
[  348.936326][ T9303]  ? __pfx_xfrm_net_init+0x10/0x10
[  348.936363][ T9303]  ops_init+0x1df/0x5f0
[  348.936401][ T9303]  setup_net+0x21f/0x860
[  348.936437][ T9303]  ? __pfx_setup_net+0x10/0x10
[  348.936468][ T9303]  ? down_read_killable+0xcc/0x380
[  348.936501][ T9303]  ? __pfx_down_read_killable+0x10/0x10
[  348.936531][ T9303]  ? __raw_spin_lock_init+0x3a/0x110
[  348.936566][ T9303]  ? debug_mutex_init+0x37/0x70
[  348.936606][ T9303]  copy_net_ns+0x2a6/0x5f0
[  348.936648][ T9303]  create_new_namespaces+0x3ea/0xad0
[  348.936713][ T9303]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  348.936773][ T9303]  ksys_unshare+0x45d/0xa40
[  348.936810][ T9303]  ? __pfx_ksys_unshare+0x10/0x10
[  348.936843][ T9303]  ? xfd_validate_state+0x5d/0x180
[  348.937043][ T9303]  __x64_sys_unshare+0x31/0x40
[  348.937090][ T9303]  do_syscall_64+0xcd/0x250
[  348.937148][ T9303]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  348.937196][ T9303] RIP: 0033:0x7efd2078d169
[  348.937223][ T9303] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  348.937258][ T9303] RSP: 002b:00007efd216b4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  348.937291][ T9303] RAX: ffffffffffffffda RBX: 00007efd209a5fa0 RCX: 00007efd2078d169
[  348.937313][ T9303] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  348.937332][ T9303] RBP: 00007efd2080e2a0 R08: 0000000000000000 R09: 0000000000000000
[  348.937352][ T9303] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  348.937370][ T9303] R13: 0000000000000000 R14: 00007efd209a5fa0 R15: 00007ffea8205528
[  348.937406][ T9303]  </TASK>
[  349.916657][ T9240] 8021q: adding VLAN 0 to HW filter on device batadv0
[  350.282243][ T5850] Bluetooth: hci4: command tx timeout
[  350.716485][ T9240] veth0_vlan: entered promiscuous mode
[  350.752627][ T9240] veth1_vlan: entered promiscuous mode
[  350.853010][ T9240] veth0_macvtap: entered promiscuous mode
[  350.912607][ T9240] veth1_macvtap: entered promiscuous mode
[  350.983429][ T9240] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  351.033149][ T9240] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  351.065269][ T9240] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  351.095675][ T9240] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  351.115256][ T9240] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  351.163006][ T9240] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  351.187939][ T9240] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  351.235591][ T9240] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  351.262642][ T9240] batman_adv: batadv0: Interface activated: batadv_slave_0
[  351.317945][ T9240] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  351.375432][ T9240] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  351.393227][ T9240] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  351.445220][ T9240] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  351.465133][ T9240] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  351.485352][ T9240] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  351.515207][ T9240] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  351.665127][ T9240] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  351.686737][ T9240] batman_adv: batadv0: Interface activated: batadv_slave_1
[  351.719481][ T9240] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  351.765156][ T9240] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  351.774221][ T9240] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  351.841790][ T9240] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  352.377259][ T9352] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input14
[  352.394503][   T37] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  352.444596][   T37] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  352.586396][   T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  352.594296][   T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  354.482338][ T9379] netlink: 346 bytes leftover after parsing attributes in process `syz.1.804'.
[  355.469424][ T5850] Bluetooth: hci4: unexpected event 0x1d length: 6 > 5
[  357.191326][ T9411] netlink: 'syz.4.811': attribute type 1 has an invalid length.
[  358.166619][ T5850] Bluetooth: hci2: unexpected event 0x10 length: 11 > 1
[  358.169666][ T5850] Bluetooth: hci2: hardware error 0x00
[  358.426090][ T9418] netlink: 28 bytes leftover after parsing attributes in process `syz.1.813'.
[  358.455850][ T9418] vxcan1: entered promiscuous mode
[  358.875133][ T9430] erspan0: entered allmulticast mode
[  359.711951][ T9442] FAULT_INJECTION: forcing a failure.
[  359.711951][ T9442] name failslab, interval 1, probability 0, space 0, times 0
[  359.825137][ T9442] CPU: 1 UID: 0 PID: 9442 Comm: syz.1.818 Not tainted 6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  359.825180][ T9442] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  359.825200][ T9442] Call Trace:
[  359.825210][ T9442]  <TASK>
[  359.825223][ T9442]  dump_stack_lvl+0x16c/0x1f0
[  359.825279][ T9442]  should_fail_ex+0x50a/0x650
[  359.825311][ T9442]  ? fs_reclaim_acquire+0xae/0x150
[  359.825354][ T9442]  ? xfrm_hash_alloc+0xd1/0x100
[  359.825385][ T9442]  should_failslab+0xc2/0x120
[  359.825416][ T9442]  __kmalloc_noprof+0xcb/0x510
[  359.825470][ T9442]  ? __pfx_xfrm_statistics_seq_show+0x10/0x10
[  359.825521][ T9442]  ? __pfx_xfrm_net_init+0x10/0x10
[  359.825558][ T9442]  xfrm_hash_alloc+0xd1/0x100
[  359.825592][ T9442]  xfrm_state_init+0x96/0x630
[  359.825631][ T9442]  ? __pfx_xfrm_net_init+0x10/0x10
[  359.825666][ T9442]  xfrm_net_init+0x211/0xcb0
[  359.825709][ T9442]  ? __pfx_xfrm_net_init+0x10/0x10
[  359.825745][ T9442]  ops_init+0x1df/0x5f0
[  359.825791][ T9442]  setup_net+0x21f/0x860
[  359.825826][ T9442]  ? __pfx_setup_net+0x10/0x10
[  359.825857][ T9442]  ? down_read_killable+0xcc/0x380
[  359.825887][ T9442]  ? __pfx_down_read_killable+0x10/0x10
[  359.825915][ T9442]  ? __raw_spin_lock_init+0x3a/0x110
[  359.825949][ T9442]  ? debug_mutex_init+0x37/0x70
[  359.825988][ T9442]  copy_net_ns+0x2a6/0x5f0
[  359.826031][ T9442]  create_new_namespaces+0x3ea/0xad0
[  359.826096][ T9442]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  359.826156][ T9442]  ksys_unshare+0x45d/0xa40
[  359.826190][ T9442]  ? __pfx_ksys_unshare+0x10/0x10
[  359.826221][ T9442]  ? xfd_validate_state+0x5d/0x180
[  359.826278][ T9442]  __x64_sys_unshare+0x31/0x40
[  359.826312][ T9442]  do_syscall_64+0xcd/0x250
[  359.826364][ T9442]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  359.826411][ T9442] RIP: 0033:0x7fbd3658d169
[  359.826438][ T9442] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  359.826469][ T9442] RSP: 002b:00007fbd343f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  359.826500][ T9442] RAX: ffffffffffffffda RBX: 00007fbd367a5fa0 RCX: 00007fbd3658d169
[  359.826522][ T9442] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  359.826542][ T9442] RBP: 00007fbd3660e2a0 R08: 0000000000000000 R09: 0000000000000000
[  359.826563][ T9442] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  359.826583][ T9442] R13: 0000000000000000 R14: 00007fbd367a5fa0 R15: 00007fffebddc968
[  359.826626][ T9442]  </TASK>
[  360.436147][ T5850] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  360.770770][ T9446] tty tty12: ldisc open failed (-12), clearing slot 11
[  361.276208][ T9458] netlink: 346 bytes leftover after parsing attributes in process `syz.4.822'.
[  364.473917][ T9488] netlink: 8 bytes leftover after parsing attributes in process `syz.1.829'.
[  365.737186][ T9502] netlink: 346 bytes leftover after parsing attributes in process `syz.1.832'.
[  366.609501][   T37] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  366.903416][ T9517] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(2)
[  366.917021][   T37] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  367.081695][ T9522] FAULT_INJECTION: forcing a failure.
[  367.081695][ T9522] name failslab, interval 1, probability 0, space 0, times 0
[  367.167642][   T37] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  367.208722][ T9522] CPU: 0 UID: 0 PID: 9522 Comm: syz.2.837 Not tainted 6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  367.208764][ T9522] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  367.208781][ T9522] Call Trace:
[  367.208790][ T9522]  <TASK>
[  367.208801][ T9522]  dump_stack_lvl+0x16c/0x1f0
[  367.208874][ T9522]  should_fail_ex+0x50a/0x650
[  367.208905][ T9522]  ? fs_reclaim_acquire+0xae/0x150
[  367.208949][ T9522]  should_failslab+0xc2/0x120
[  367.208989][ T9522]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  367.209039][ T9522]  ? __xlate_proc_name+0x173/0x210
[  367.209095][ T9522]  ? __proc_create+0x2c0/0x8b0
[  367.209152][ T9522]  __proc_create+0x2c0/0x8b0
[  367.209200][ T9522]  ? __pfx___proc_create+0x10/0x10
[  367.209250][ T9522]  ? __pfx_lock_release+0x10/0x10
[  367.209303][ T9522]  proc_create_reg+0x7d/0x180
[  367.209331][ T9522]  ? __pfx_xfrm_statistics_seq_show+0x10/0x10
[  367.209371][ T9522]  proc_create_net_single+0x87/0x170
[  367.209400][ T9522]  ? __pfx_proc_create_net_single+0x10/0x10
[  367.209434][ T9522]  ? __pfx_xfrm_net_init+0x10/0x10
[  367.209464][ T9522]  xfrm_proc_init+0x4d/0x70
[  367.209499][ T9522]  xfrm_net_init+0x1f1/0xcb0
[  367.209534][ T9522]  ? __pfx_xfrm_net_init+0x10/0x10
[  367.209563][ T9522]  ops_init+0x1df/0x5f0
[  367.209594][ T9522]  setup_net+0x21f/0x860
[  367.209624][ T9522]  ? __pfx_setup_net+0x10/0x10
[  367.209649][ T9522]  ? down_read_killable+0xcc/0x380
[  367.209675][ T9522]  ? __pfx_down_read_killable+0x10/0x10
[  367.209699][ T9522]  ? __raw_spin_lock_init+0x3a/0x110
[  367.209727][ T9522]  ? debug_mutex_init+0x37/0x70
[  367.209759][ T9522]  copy_net_ns+0x2a6/0x5f0
[  367.209793][ T9522]  create_new_namespaces+0x3ea/0xad0
[  367.209846][ T9522]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  367.209894][ T9522]  ksys_unshare+0x45d/0xa40
[  367.209922][ T9522]  ? __pfx_ksys_unshare+0x10/0x10
[  367.209957][ T9522]  ? xfd_validate_state+0x5d/0x180
[  367.210014][ T9522]  __x64_sys_unshare+0x31/0x40
[  367.210043][ T9522]  do_syscall_64+0xcd/0x250
[  367.210088][ T9522]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  367.210127][ T9522] RIP: 0033:0x7efd2078d169
[  367.210149][ T9522] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  367.210175][ T9522] RSP: 002b:00007efd216b4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  367.210201][ T9522] RAX: ffffffffffffffda RBX: 00007efd209a5fa0 RCX: 00007efd2078d169
[  367.210220][ T9522] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  367.210237][ T9522] RBP: 00007efd2080e2a0 R08: 0000000000000000 R09: 0000000000000000
[  367.210253][ T9522] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  367.210268][ T9522] R13: 0000000000000000 R14: 00007efd209a5fa0 R15: 00007ffea8205528
[  367.210300][ T9522]  </TASK>
[  367.493227][    C0] vkms_vblank_simulate: vblank timer overrun
[  368.017224][   T37] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  368.805610][   T37] bridge_slave_1: left allmulticast mode
[  368.816073][   T37] bridge_slave_1: left promiscuous mode
[  368.834282][   T37] bridge0: port 2(bridge_slave_1) entered disabled state
[  368.914477][   T37] bridge_slave_0: left allmulticast mode
[  368.948151][   T37] bridge_slave_0: left promiscuous mode
[  368.954099][   T37] bridge0: port 1(bridge_slave_0) entered disabled state
[  370.204716][ T5850] Bluetooth: hci5: Opcode 0x0c03 failed: -110
[  371.282930][   T37] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  371.332802][   T37] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  371.366825][   T37] bond0 (unregistering): Released all slaves
[  371.431042][ T9546] netlink: 346 bytes leftover after parsing attributes in process `syz.2.842'.
[  372.104747][ T9577] FAULT_INJECTION: forcing a failure.
[  372.104747][ T9577] name failslab, interval 1, probability 0, space 0, times 0
[  372.176643][ T9577] CPU: 0 UID: 0 PID: 9577 Comm: syz.3.849 Not tainted 6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  372.176687][ T9577] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  372.176706][ T9577] Call Trace:
[  372.176716][ T9577]  <TASK>
[  372.176728][ T9577]  dump_stack_lvl+0x16c/0x1f0
[  372.176786][ T9577]  should_fail_ex+0x50a/0x650
[  372.176820][ T9577]  ? fs_reclaim_acquire+0xae/0x150
[  372.176867][ T9577]  ? xfrm_hash_alloc+0xd1/0x100
[  372.176898][ T9577]  should_failslab+0xc2/0x120
[  372.176932][ T9577]  __kmalloc_noprof+0xcb/0x510
[  372.176983][ T9577]  ? __pfx_xfrm_statistics_seq_show+0x10/0x10
[  372.177033][ T9577]  ? __pfx_xfrm_net_init+0x10/0x10
[  372.177070][ T9577]  xfrm_hash_alloc+0xd1/0x100
[  372.177104][ T9577]  xfrm_state_init+0x96/0x630
[  372.177144][ T9577]  ? __pfx_xfrm_net_init+0x10/0x10
[  372.177180][ T9577]  xfrm_net_init+0x211/0xcb0
[  372.177223][ T9577]  ? __pfx_xfrm_net_init+0x10/0x10
[  372.177259][ T9577]  ops_init+0x1df/0x5f0
[  372.177298][ T9577]  setup_net+0x21f/0x860
[  372.177335][ T9577]  ? __pfx_setup_net+0x10/0x10
[  372.177367][ T9577]  ? down_read_killable+0xcc/0x380
[  372.177400][ T9577]  ? __pfx_down_read_killable+0x10/0x10
[  372.177430][ T9577]  ? __raw_spin_lock_init+0x3a/0x110
[  372.177475][ T9577]  ? debug_mutex_init+0x37/0x70
[  372.177515][ T9577]  copy_net_ns+0x2a6/0x5f0
[  372.177554][ T9577]  create_new_namespaces+0x3ea/0xad0
[  372.177616][ T9577]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  372.177681][ T9577]  ksys_unshare+0x45d/0xa40
[  372.177718][ T9577]  ? __pfx_ksys_unshare+0x10/0x10
[  372.177751][ T9577]  ? xfd_validate_state+0x5d/0x180
[  372.177811][ T9577]  __x64_sys_unshare+0x31/0x40
[  372.177846][ T9577]  do_syscall_64+0xcd/0x250
[  372.177900][ T9577]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  372.177947][ T9577] RIP: 0033:0x7fed9218d169
[  372.177972][ T9577] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  372.178006][ T9577] RSP: 002b:00007fed930af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  372.178037][ T9577] RAX: ffffffffffffffda RBX: 00007fed923a5fa0 RCX: 00007fed9218d169
[  372.178058][ T9577] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  372.178078][ T9577] RBP: 00007fed9220e2a0 R08: 0000000000000000 R09: 0000000000000000
[  372.178097][ T9577] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  372.178115][ T9577] R13: 0000000000000000 R14: 00007fed923a5fa0 R15: 00007fff14239958
[  372.178155][ T9577]  </TASK>
[  375.482716][   T37] hsr_slave_0: left promiscuous mode
[  375.590692][   T37] hsr_slave_1: left promiscuous mode
[  375.614367][   T37] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  375.661834][   T37] batman_adv: batadv0: Removing interface: batadv_slave_0
[  375.726923][   T37] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  375.734560][   T37] batman_adv: batadv0: Removing interface: batadv_slave_1
[  375.894436][   T37] veth1_macvtap: left promiscuous mode
[  375.922394][   T37] veth0_macvtap: left promiscuous mode
[  375.951801][   T37] veth1_vlan: left promiscuous mode
[  375.972209][   T37] veth0_vlan: left promiscuous mode
[  377.637531][ T9647] FAULT_INJECTION: forcing a failure.
[  377.637531][ T9647] name failslab, interval 1, probability 0, space 0, times 0
[  377.703201][ T9647] CPU: 0 UID: 0 PID: 9647 Comm: syz.2.861 Not tainted 6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  377.703249][ T9647] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  377.703268][ T9647] Call Trace:
[  377.703277][ T9647]  <TASK>
[  377.703290][ T9647]  dump_stack_lvl+0x16c/0x1f0
[  377.703347][ T9647]  should_fail_ex+0x50a/0x650
[  377.703381][ T9647]  ? fs_reclaim_acquire+0xae/0x150
[  377.703427][ T9647]  ? xfrm_hash_alloc+0xd1/0x100
[  377.703459][ T9647]  should_failslab+0xc2/0x120
[  377.703491][ T9647]  __kmalloc_noprof+0xcb/0x510
[  377.703544][ T9647]  ? xfrm_nat_keepalive_net_init+0xf1/0x140
[  377.703592][ T9647]  ? __pfx_xfrm_net_init+0x10/0x10
[  377.703628][ T9647]  xfrm_hash_alloc+0xd1/0x100
[  377.703661][ T9647]  xfrm_state_init+0xde/0x630
[  377.703701][ T9647]  ? __pfx_xfrm_net_init+0x10/0x10
[  377.703736][ T9647]  xfrm_net_init+0x211/0xcb0
[  377.703779][ T9647]  ? __pfx_xfrm_net_init+0x10/0x10
[  377.703816][ T9647]  ops_init+0x1df/0x5f0
[  377.703855][ T9647]  setup_net+0x21f/0x860
[  377.703892][ T9647]  ? __pfx_setup_net+0x10/0x10
[  377.703923][ T9647]  ? down_read_killable+0xcc/0x380
[  377.703956][ T9647]  ? __pfx_down_read_killable+0x10/0x10
[  377.703986][ T9647]  ? __raw_spin_lock_init+0x3a/0x110
[  377.704021][ T9647]  ? debug_mutex_init+0x37/0x70
[  377.704062][ T9647]  copy_net_ns+0x2a6/0x5f0
[  377.704104][ T9647]  create_new_namespaces+0x3ea/0xad0
[  377.704197][ T9647]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  377.704264][ T9647]  ksys_unshare+0x45d/0xa40
[  377.704301][ T9647]  ? __pfx_ksys_unshare+0x10/0x10
[  377.704334][ T9647]  ? xfd_validate_state+0x5d/0x180
[  377.704396][ T9647]  __x64_sys_unshare+0x31/0x40
[  377.704431][ T9647]  do_syscall_64+0xcd/0x250
[  377.704486][ T9647]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  377.704534][ T9647] RIP: 0033:0x7efd2078d169
[  377.704561][ T9647] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  377.704593][ T9647] RSP: 002b:00007efd216b4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  377.704623][ T9647] RAX: ffffffffffffffda RBX: 00007efd209a5fa0 RCX: 00007efd2078d169
[  377.704644][ T9647] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  377.704664][ T9647] RBP: 00007efd2080e2a0 R08: 0000000000000000 R09: 0000000000000000
[  377.704683][ T9647] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  377.704702][ T9647] R13: 0000000000000000 R14: 00007efd209a5fa0 R15: 00007ffea8205528
[  377.704742][ T9647]  </TASK>
[  378.510040][   T37] team0 (unregistering): Port device team_slave_0 removed
[  378.907698][ T9655] snd_aloop snd_aloop.0: control 1:6:6:���_�he�R����:0 is already present
[  380.197425][ T9629] netlink: 346 bytes leftover after parsing attributes in process `syz.1.857'.
[  382.650974][ T9703] FAULT_INJECTION: forcing a failure.
[  382.650974][ T9703] name fail_futex, interval 1, probability 0, space 0, times 0
[  382.735178][ T9703] CPU: 0 UID: 0 PID: 9703 Comm: syz.3.871 Not tainted 6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  382.735225][ T9703] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  382.735244][ T9703] Call Trace:
[  382.735252][ T9703]  <TASK>
[  382.735264][ T9703]  dump_stack_lvl+0x16c/0x1f0
[  382.735318][ T9703]  should_fail_ex+0x50a/0x650
[  382.735348][ T9703]  ? __pfx___lock_acquire+0x10/0x10
[  382.735400][ T9703]  get_futex_key+0x4a3/0x1000
[  382.735443][ T9703]  ? __pfx_get_futex_key+0x10/0x10
[  382.735483][ T9703]  ? __pfx_shmem_get_unmapped_area+0x10/0x10
[  382.735518][ T9703]  ? find_held_lock+0x2d/0x110
[  382.735560][ T9703]  futex_wake+0xe8/0x4e0
[  382.735604][ T9703]  ? __pfx_userfaultfd_unmap_complete+0x10/0x10
[  382.735657][ T9703]  ? __pfx_futex_wake+0x10/0x10
[  382.735713][ T9703]  ? up_write+0x1b2/0x520
[  382.735771][ T9703]  do_futex+0x1e5/0x350
[  382.735812][ T9703]  ? __pfx_do_futex+0x10/0x10
[  382.735854][ T9703]  ? __do_sys_capget+0x10a/0x520
[  382.735908][ T9703]  __x64_sys_futex+0x1e1/0x4c0
[  382.735954][ T9703]  ? __pfx___x64_sys_futex+0x10/0x10
[  382.735994][ T9703]  ? ksys_mmap_pgoff+0x85/0x5c0
[  382.736037][ T9703]  ? rcu_is_watching+0x12/0xc0
[  382.736082][ T9703]  do_syscall_64+0xcd/0x250
[  382.736132][ T9703]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  382.736179][ T9703] RIP: 0033:0x7fed9218d169
[  382.736204][ T9703] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  382.736236][ T9703] RSP: 002b:00007fed930af0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  382.736267][ T9703] RAX: ffffffffffffffda RBX: 00007fed923a5fa8 RCX: 00007fed9218d169
[  382.736303][ T9703] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fed923a5fac
[  382.736324][ T9703] RBP: 00007fed923a5fa0 R08: 00007fed930b0000 R09: 0000000000000000
[  382.736345][ T9703] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007fed923a5fac
[  382.736365][ T9703] R13: 0000000000000000 R14: 00007fff14239870 R15: 00007fff14239958
[  382.736403][ T9703]  </TASK>
[  383.644698][ T9722] netlink: 346 bytes leftover after parsing attributes in process `syz.1.874'.
[  384.278284][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  384.284870][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  384.923174][ T9731] hub 2-0:1.0: USB hub found
[  384.954145][ T9731] hub 2-0:1.0: 1 port detected
[  386.254477][ T9766] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 3000000000
[  386.305209][ T9740] could not allocate digest TFM handle 
[  387.727424][ T9799] netlink: 146 bytes leftover after parsing attributes in process `syz.4.886'.
[  388.766581][ T9829] FAULT_INJECTION: forcing a failure.
[  388.766581][ T9829] name failslab, interval 1, probability 0, space 0, times 0
[  388.896140][ T9829] CPU: 0 UID: 0 PID: 9829 Comm: syz.2.888 Not tainted 6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  388.896185][ T9829] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  388.896205][ T9829] Call Trace:
[  388.896214][ T9829]  <TASK>
[  388.896226][ T9829]  dump_stack_lvl+0x16c/0x1f0
[  388.896282][ T9829]  should_fail_ex+0x50a/0x650
[  388.896314][ T9829]  ? fs_reclaim_acquire+0xae/0x150
[  388.896361][ T9829]  should_failslab+0xc2/0x120
[  388.896393][ T9829]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  388.896445][ T9829]  ? __xlate_proc_name+0x173/0x210
[  388.896498][ T9829]  ? __proc_create+0x2c0/0x8b0
[  388.896563][ T9829]  __proc_create+0x2c0/0x8b0
[  388.896618][ T9829]  ? __pfx___proc_create+0x10/0x10
[  388.896669][ T9829]  ? __pfx_lock_release+0x10/0x10
[  388.896738][ T9829]  proc_create_reg+0x7d/0x180
[  388.896772][ T9829]  ? __pfx_xfrm_statistics_seq_show+0x10/0x10
[  388.896822][ T9829]  proc_create_net_single+0x87/0x170
[  388.896856][ T9829]  ? __pfx_proc_create_net_single+0x10/0x10
[  388.896901][ T9829]  ? __pfx_xfrm_net_init+0x10/0x10
[  388.896938][ T9829]  xfrm_proc_init+0x4d/0x70
[  388.896978][ T9829]  xfrm_net_init+0x1f1/0xcb0
[  388.897022][ T9829]  ? __pfx_xfrm_net_init+0x10/0x10
[  388.897058][ T9829]  ops_init+0x1df/0x5f0
[  388.897096][ T9829]  setup_net+0x21f/0x860
[  388.897139][ T9829]  ? __pfx_setup_net+0x10/0x10
[  388.897171][ T9829]  ? down_read_killable+0xcc/0x380
[  388.897203][ T9829]  ? __pfx_down_read_killable+0x10/0x10
[  388.897235][ T9829]  ? __raw_spin_lock_init+0x3a/0x110
[  388.897270][ T9829]  ? debug_mutex_init+0x37/0x70
[  388.897309][ T9829]  copy_net_ns+0x2a6/0x5f0
[  388.897351][ T9829]  create_new_namespaces+0x3ea/0xad0
[  388.897416][ T9829]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  388.897474][ T9829]  ksys_unshare+0x45d/0xa40
[  388.897509][ T9829]  ? __pfx_ksys_unshare+0x10/0x10
[  388.897541][ T9829]  ? xfd_validate_state+0x5d/0x180
[  388.897600][ T9829]  __x64_sys_unshare+0x31/0x40
[  388.897633][ T9829]  do_syscall_64+0xcd/0x250
[  388.897834][ T9829]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  388.897888][ T9829] RIP: 0033:0x7efd2078d169
[  388.897915][ T9829] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  388.897947][ T9829] RSP: 002b:00007efd216b4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  388.897982][ T9829] RAX: ffffffffffffffda RBX: 00007efd209a5fa0 RCX: 00007efd2078d169
[  388.898004][ T9829] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  388.898025][ T9829] RBP: 00007efd2080e2a0 R08: 0000000000000000 R09: 0000000000000000
[  388.898043][ T9829] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  388.898062][ T9829] R13: 0000000000000000 R14: 00007efd209a5fa0 R15: 00007ffea8205528
[  388.898103][ T9829]  </TASK>
[  390.137424][ T9846] FAULT_INJECTION: forcing a failure.
[  390.137424][ T9846] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  390.197621][ T9846] CPU: 0 UID: 0 PID: 9846 Comm: syz.3.892 Not tainted 6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  390.197665][ T9846] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  390.197684][ T9846] Call Trace:
[  390.197692][ T9846]  <TASK>
[  390.197704][ T9846]  dump_stack_lvl+0x16c/0x1f0
[  390.197757][ T9846]  should_fail_ex+0x50a/0x650
[  390.197791][ T9846]  _copy_from_user+0x2e/0xd0
[  390.197829][ T9846]  copy_msghdr_from_user+0x99/0x160
[  390.197883][ T9846]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  390.197934][ T9846]  ? __lock_acquire+0xcc5/0x3c40
[  390.197985][ T9846]  ? hlock_class+0x4e/0x130
[  390.198018][ T9846]  ? __lock_acquire+0x15a9/0x3c40
[  390.198074][ T9846]  ___sys_sendmsg+0xff/0x1e0
[  390.198129][ T9846]  ? __pfx____sys_sendmsg+0x10/0x10
[  390.198179][ T9846]  ? __pfx___lock_acquire+0x10/0x10
[  390.198259][ T9846]  ? __pfx___might_resched+0x10/0x10
[  390.198310][ T9846]  ? __might_fault+0xe3/0x190
[  390.198350][ T9846]  __sys_sendmmsg+0x201/0x420
[  390.198386][ T9846]  ? __pfx___sys_sendmmsg+0x10/0x10
[  390.198430][ T9846]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  390.198496][ T9846]  ? fput+0x67/0x440
[  390.198539][ T9846]  ? ksys_write+0x1ba/0x250
[  390.198585][ T9846]  ? __pfx_ksys_write+0x10/0x10
[  390.198637][ T9846]  __x64_sys_sendmmsg+0x9c/0x100
[  390.198668][ T9846]  ? lockdep_hardirqs_on+0x7c/0x110
[  390.198715][ T9846]  do_syscall_64+0xcd/0x250
[  390.198766][ T9846]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  390.198813][ T9846] RIP: 0033:0x7fed9218d169
[  390.198838][ T9846] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  390.198869][ T9846] RSP: 002b:00007fed930af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  390.198899][ T9846] RAX: ffffffffffffffda RBX: 00007fed923a5fa0 RCX: 00007fed9218d169
[  390.198919][ T9846] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003
[  390.198939][ T9846] RBP: 00007fed930af090 R08: 0000000000000000 R09: 0000000000000000
[  390.198957][ T9846] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  390.198974][ T9846] R13: 0000000000000000 R14: 00007fed923a5fa0 R15: 00007fff14239958
[  390.199012][ T9846]  </TASK>
[  392.416155][ T9899] netlink: 346 bytes leftover after parsing attributes in process `syz.4.899'.
[  396.018198][ T9958] FAULT_INJECTION: forcing a failure.
[  396.018198][ T9958] name failslab, interval 1, probability 0, space 0, times 0
[  396.095162][ T9958] CPU: 0 UID: 0 PID: 9958 Comm: syz.1.912 Not tainted 6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  396.095211][ T9958] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  396.095232][ T9958] Call Trace:
[  396.095241][ T9958]  <TASK>
[  396.095251][ T9958]  dump_stack_lvl+0x16c/0x1f0
[  396.095300][ T9958]  should_fail_ex+0x50a/0x650
[  396.095327][ T9958]  ? fs_reclaim_acquire+0xae/0x150
[  396.095366][ T9958]  ? xfrm_hash_alloc+0xd1/0x100
[  396.095392][ T9958]  should_failslab+0xc2/0x120
[  396.095418][ T9958]  __kmalloc_noprof+0xcb/0x510
[  396.095460][ T9958]  ? __pfx_xfrm_statistics_seq_show+0x10/0x10
[  396.095501][ T9958]  ? __pfx_xfrm_net_init+0x10/0x10
[  396.095531][ T9958]  xfrm_hash_alloc+0xd1/0x100
[  396.095559][ T9958]  xfrm_state_init+0x96/0x630
[  396.095590][ T9958]  ? __pfx_xfrm_net_init+0x10/0x10
[  396.095618][ T9958]  xfrm_net_init+0x211/0xcb0
[  396.095652][ T9958]  ? __pfx_xfrm_net_init+0x10/0x10
[  396.095681][ T9958]  ops_init+0x1df/0x5f0
[  396.095712][ T9958]  setup_net+0x21f/0x860
[  396.095742][ T9958]  ? __pfx_setup_net+0x10/0x10
[  396.095767][ T9958]  ? down_read_killable+0xcc/0x380
[  396.095793][ T9958]  ? __pfx_down_read_killable+0x10/0x10
[  396.095817][ T9958]  ? __raw_spin_lock_init+0x3a/0x110
[  396.095845][ T9958]  ? debug_mutex_init+0x37/0x70
[  396.095879][ T9958]  copy_net_ns+0x2a6/0x5f0
[  396.095992][ T9958]  create_new_namespaces+0x3ea/0xad0
[  396.096047][ T9958]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  396.096096][ T9958]  ksys_unshare+0x45d/0xa40
[  396.096127][ T9958]  ? __pfx_ksys_unshare+0x10/0x10
[  396.096154][ T9958]  ? xfd_validate_state+0x5d/0x180
[  396.096204][ T9958]  __x64_sys_unshare+0x31/0x40
[  396.096232][ T9958]  do_syscall_64+0xcd/0x250
[  396.096277][ T9958]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  396.096317][ T9958] RIP: 0033:0x7fbd3658d169
[  396.096340][ T9958] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  396.096368][ T9958] RSP: 002b:00007fbd343f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  396.096395][ T9958] RAX: ffffffffffffffda RBX: 00007fbd367a5fa0 RCX: 00007fbd3658d169
[  396.096413][ T9958] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  396.096430][ T9958] RBP: 00007fbd3660e2a0 R08: 0000000000000000 R09: 0000000000000000
[  396.096446][ T9958] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  396.096462][ T9958] R13: 0000000000000000 R14: 00007fbd367a5fa0 R15: 00007fffebddc968
[  396.096496][ T9958]  </TASK>
[  398.030281][ T9981] netlink: 346 bytes leftover after parsing attributes in process `syz.1.914'.
[  399.392718][T10008] FAULT_INJECTION: forcing a failure.
[  399.392718][T10008] name failslab, interval 1, probability 0, space 0, times 0
[  399.472517][T10008] CPU: 1 UID: 0 PID: 10008 Comm: syz.4.921 Not tainted 6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  399.472564][T10008] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  399.472585][T10008] Call Trace:
[  399.472606][T10008]  <TASK>
[  399.472619][T10008]  dump_stack_lvl+0x16c/0x1f0
[  399.472678][T10008]  should_fail_ex+0x50a/0x650
[  399.472712][T10008]  ? fs_reclaim_acquire+0xae/0x150
[  399.472761][T10008]  should_failslab+0xc2/0x120
[  399.472798][T10008]  kmem_cache_alloc_lru_noprof+0x73/0x3d0
[  399.472852][T10008]  ? __d_alloc+0x31/0xaa0
[  399.472894][T10008]  __d_alloc+0x31/0xaa0
[  399.472923][T10008]  ? hlock_class+0x4e/0x130
[  399.472964][T10008]  d_alloc+0x4a/0x1e0
[  399.472997][T10008]  d_alloc_parallel+0xe7/0x12b0
[  399.473062][T10008]  ? __pfx_d_alloc_parallel+0x10/0x10
[  399.473103][T10008]  ? hlock_class+0x4e/0x130
[  399.473139][T10008]  ? lockdep_init_map_type+0x16d/0x7d0
[  399.473194][T10008]  ? lockdep_init_map_type+0x16d/0x7d0
[  399.473257][T10008]  __lookup_slow+0x194/0x470
[  399.473298][T10008]  ? __pfx___lookup_slow+0x10/0x10
[  399.473335][T10008]  ? trace_lock_acquire+0x14e/0x1f0
[  399.473398][T10008]  ? d_lookup+0xe7/0x190
[  399.473448][T10008]  lookup_one_len+0x181/0x1b0
[  399.473487][T10008]  ? __pfx_lookup_one_len+0x10/0x10
[  399.473530][T10008]  ? mntput+0x10/0x90
[  399.473579][T10008]  start_creating.part.0+0x12f/0x3a0
[  399.473648][T10008]  debugfs_create_dir+0x6c/0x5f0
[  399.473686][T10008]  ptp_open+0x307/0x520
[  399.473726][T10008]  ? __pfx_ptp_open+0x10/0x10
[  399.473771][T10008]  ? __pfx_ptp_open+0x10/0x10
[  399.473804][T10008]  posix_clock_open+0x157/0x260
[  399.473845][T10008]  ? __pfx_posix_clock_open+0x10/0x10
[  399.473885][T10008]  chrdev_open+0x237/0x6a0
[  399.473936][T10008]  ? __pfx_apparmor_file_open+0x10/0x10
[  399.473983][T10008]  ? __pfx_chrdev_open+0x10/0x10
[  399.474039][T10008]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  399.474094][T10008]  do_dentry_open+0x735/0x1c40
[  399.474142][T10008]  ? __pfx_chrdev_open+0x10/0x10
[  399.474199][T10008]  ? inode_permission+0xdd/0x5f0
[  399.474255][T10008]  vfs_open+0x82/0x3f0
[  399.474288][T10008]  ? may_open+0x1f2/0x400
[  399.474331][T10008]  path_openat+0x1e88/0x2d80
[  399.474397][T10008]  ? __pfx_path_openat+0x10/0x10
[  399.474448][T10008]  ? __pfx___lock_acquire+0x10/0x10
[  399.474493][T10008]  ? lock_acquire.part.0+0x11b/0x380
[  399.474542][T10008]  ? find_held_lock+0x2d/0x110
[  399.474584][T10008]  do_filp_open+0x20c/0x470
[  399.474644][T10008]  ? __pfx_do_filp_open+0x10/0x10
[  399.474691][T10008]  ? find_held_lock+0x2d/0x110
[  399.474758][T10008]  ? alloc_fd+0x41f/0x760
[  399.474821][T10008]  do_sys_openat2+0x17a/0x1e0
[  399.474857][T10008]  ? __pfx_do_sys_openat2+0x10/0x10
[  399.474909][T10008]  __x64_sys_openat+0x175/0x210
[  399.474947][T10008]  ? __pfx___x64_sys_openat+0x10/0x10
[  399.475002][T10008]  do_syscall_64+0xcd/0x250
[  399.475051][T10008]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  399.475095][T10008] RIP: 0033:0x7f8b2378d169
[  399.475119][T10008] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  399.475149][T10008] RSP: 002b:00007f8b24521038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  399.475183][T10008] RAX: ffffffffffffffda RBX: 00007f8b239a6080 RCX: 00007f8b2378d169
[  399.475206][T10008] RDX: 0000000000000440 RSI: 0000200000000140 RDI: ffffffffffffff9c
[  399.475229][T10008] RBP: 00007f8b2380e2a0 R08: 0000000000000000 R09: 0000000000000000
[  399.475250][T10008] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  399.475271][T10008] R13: 0000000000000000 R14: 00007f8b239a6080 R15: 00007ffc1106b718
[  399.475314][T10008]  </TASK>
[  402.342177][T10052] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input15
[  403.374713][T10065] Invalid ELF header magic: != ELF
[  409.096119][T10190] netlink: 346 bytes leftover after parsing attributes in process `syz.3.952'.
[  411.408207][T10234] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78c00
[  411.430930][T10234] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  411.497279][T10234] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  411.567595][T10234] page_type: f5(slab)
[  411.571799][T10234] raw: 00fff00000000040 ffff88814040aa00 dead000000000122 0000000000000000
[  411.703775][T10234] raw: 0000000000000000 00000000000c000c 00000000f5000000 0000000000000000
[  411.798564][T10234] head: 00fff00000000040 ffff88814040aa00 dead000000000122 0000000000000000
[  411.945134][T10234] head: 0000000000000000 00000000000c000c 00000000f5000000 0000000000000000
[  411.954116][T10234] head: 00fff00000000002 ffffea0001e30001 ffffffffffffffff 0000000000000000
[  412.075530][T10234] head: 0000000000000004 0000000000000000 00000000ffffffff 0000000000000000
[  412.084419][T10234] page dumped because: unmovable page
[  412.092366][T10234] page_owner tracks the page as allocated
[  412.175753][T10236] could not allocate digest TFM handle binfmt_misc
[  412.246838][T10234] page last allocated via order 2, migratetype Reclaimable, gfp_mask 0xd20d0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_RECLAIMABLE), pid 5209, tgid 5209 (udevd), ts 60724166843, free_ts 33967907564
[  412.372586][T10234]  post_alloc_hook+0x181/0x1b0
[  412.395186][T10234]  get_page_from_freelist+0xfce/0x2f80
[  412.438422][T10234]  __alloc_frozen_pages_noprof+0x221/0x2470
[  412.444748][T10234]  alloc_pages_mpol+0x1fc/0x540
[  412.493219][T10234]  new_slab+0x23d/0x330
[  412.515366][T10234]  ___slab_alloc+0xc5d/0x1720
[  412.520560][T10234]  __slab_alloc.constprop.0+0x56/0xb0
[  412.575175][T10234]  kmem_cache_alloc_lru_noprof+0xff/0x3d0
[  412.581292][T10234]  alloc_inode+0xbf/0x230
[  412.643216][T10234]  iget_locked+0x2ee/0x8a0
[  412.685197][T10234]  kernfs_get_inode+0x48/0x460
[  412.690729][T10234]  kernfs_iop_lookup+0x1ec/0x330
[  412.740613][T10234]  __lookup_slow+0x24f/0x470
[  412.762135][T10234]  walk_component+0x350/0x5b0
[  412.795322][T10234]  link_path_walk.part.0.constprop.0+0x669/0xd40
[  412.834748][T10234]  path_openat+0x228/0x2d80
[  412.845377][T10234] page last free pid 1 tgid 1 stack trace:
[  412.851710][T10234]  free_frozen_pages+0x6db/0xfb0
[  412.895299][T10234]  free_contig_range+0x133/0x3f0
[  412.900484][T10234]  destroy_args+0x66f/0x830
[  412.935317][T10234]  debug_vm_pgtable+0x130f/0x2d60
[  412.945907][T10234]  do_one_initcall+0x128/0x700
[  412.985153][T10234]  kernel_init_freeable+0x5c7/0x900
[  412.990664][T10234]  kernel_init+0x1c/0x2b0
[  413.087029][T10234]  ret_from_fork+0x45/0x80
[  413.091581][T10234]  ret_from_fork_asm+0x1a/0x30
[  413.774402][T10269] netlink: 8 bytes leftover after parsing attributes in process `syz.4.961'.
[  416.990905][T10274] kexec: Could not allocate control_code_buffer
[  417.315645][T10310] FAULT_INJECTION: forcing a failure.
[  417.315645][T10310] name failslab, interval 1, probability 0, space 0, times 0
[  417.350480][T10310] CPU: 1 UID: 0 PID: 10310 Comm: syz.1.969 Not tainted 6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  417.350528][T10310] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  417.350547][T10310] Call Trace:
[  417.350556][T10310]  <TASK>
[  417.350570][T10310]  dump_stack_lvl+0x16c/0x1f0
[  417.350626][T10310]  should_fail_ex+0x50a/0x650
[  417.350668][T10310]  ? fs_reclaim_acquire+0xae/0x150
[  417.350712][T10310]  ? xfrm_hash_alloc+0xd1/0x100
[  417.350743][T10310]  should_failslab+0xc2/0x120
[  417.350774][T10310]  __kmalloc_noprof+0xcb/0x510
[  417.350826][T10310]  ? xfrm_nat_keepalive_net_init+0xf1/0x140
[  417.350874][T10310]  ? __pfx_xfrm_net_init+0x10/0x10
[  417.350911][T10310]  xfrm_hash_alloc+0xd1/0x100
[  417.350944][T10310]  xfrm_state_init+0xde/0x630
[  417.350983][T10310]  ? __pfx_xfrm_net_init+0x10/0x10
[  417.351018][T10310]  xfrm_net_init+0x211/0xcb0
[  417.351060][T10310]  ? __pfx_xfrm_net_init+0x10/0x10
[  417.351094][T10310]  ops_init+0x1df/0x5f0
[  417.351130][T10310]  setup_net+0x21f/0x860
[  417.351165][T10310]  ? __pfx_setup_net+0x10/0x10
[  417.351196][T10310]  ? down_read_killable+0xcc/0x380
[  417.351228][T10310]  ? __pfx_down_read_killable+0x10/0x10
[  417.351258][T10310]  ? __raw_spin_lock_init+0x3a/0x110
[  417.351292][T10310]  ? debug_mutex_init+0x37/0x70
[  417.351332][T10310]  copy_net_ns+0x2a6/0x5f0
[  417.351375][T10310]  create_new_namespaces+0x3ea/0xad0
[  417.351440][T10310]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  417.351499][T10310]  ksys_unshare+0x45d/0xa40
[  417.351536][T10310]  ? __pfx_ksys_unshare+0x10/0x10
[  417.351568][T10310]  ? xfd_validate_state+0x5d/0x180
[  417.351627][T10310]  __x64_sys_unshare+0x31/0x40
[  417.351665][T10310]  do_syscall_64+0xcd/0x250
[  417.351711][T10310]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  417.351750][T10310] RIP: 0033:0x7fbd3658d169
[  417.351772][T10310] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  417.351803][T10310] RSP: 002b:00007fbd343f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  417.351833][T10310] RAX: ffffffffffffffda RBX: 00007fbd367a5fa0 RCX: 00007fbd3658d169
[  417.351854][T10310] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  417.351872][T10310] RBP: 00007fbd3660e2a0 R08: 0000000000000000 R09: 0000000000000000
[  417.351890][T10310] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  417.351907][T10310] R13: 0000000000000000 R14: 00007fbd367a5fa0 R15: 00007fffebddc968
[  417.351947][T10310]  </TASK>
[  418.505285][T10331] netlink: 346 bytes leftover after parsing attributes in process `syz.2.975'.
[  418.633870][T10329] FAULT_INJECTION: forcing a failure.
[  418.633870][T10329] name failslab, interval 1, probability 0, space 0, times 0
[  418.704094][T10329] CPU: 1 UID: 0 PID: 10329 Comm: syz.1.974 Not tainted 6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  418.704139][T10329] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  418.704158][T10329] Call Trace:
[  418.704168][T10329]  <TASK>
[  418.704180][T10329]  dump_stack_lvl+0x16c/0x1f0
[  418.704237][T10329]  should_fail_ex+0x50a/0x650
[  418.704269][T10329]  ? fs_reclaim_acquire+0xae/0x150
[  418.704316][T10329]  ? tomoyo_encode2+0x100/0x3e0
[  418.704362][T10329]  should_failslab+0xc2/0x120
[  418.704393][T10329]  __kmalloc_noprof+0xcb/0x510
[  418.704442][T10329]  ? d_absolute_path+0x137/0x1b0
[  418.704485][T10329]  tomoyo_encode2+0x100/0x3e0
[  418.704537][T10329]  tomoyo_encode+0x29/0x50
[  418.704592][T10329]  tomoyo_realpath_from_path+0x19d/0x720
[  418.704652][T10329]  tomoyo_check_open_permission+0x2ad/0x3c0
[  418.704697][T10329]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  418.704781][T10329]  ? __pfx_hook_file_open+0x10/0x10
[  418.704823][T10329]  ? lock_acquire+0x2f/0xb0
[  418.704869][T10329]  ? mnt_get_write_access+0x6a/0x300
[  418.704910][T10329]  tomoyo_file_open+0x6b/0x90
[  418.704945][T10329]  security_file_open+0x84/0x1e0
[  418.704991][T10329]  do_dentry_open+0x57c/0x1c40
[  418.705049][T10329]  ? inode_permission+0xdd/0x5f0
[  418.705090][T10329]  vfs_open+0x82/0x3f0
[  418.705121][T10329]  ? may_open+0x1f2/0x400
[  418.705163][T10329]  path_openat+0x1e88/0x2d80
[  418.705226][T10329]  ? __pfx_path_openat+0x10/0x10
[  418.705276][T10329]  ? __pfx___lock_acquire+0x10/0x10
[  418.705322][T10329]  ? lock_acquire.part.0+0x11b/0x380
[  418.705367][T10329]  ? find_held_lock+0x2d/0x110
[  418.705407][T10329]  do_filp_open+0x20c/0x470
[  418.705455][T10329]  ? __pfx_do_filp_open+0x10/0x10
[  418.705502][T10329]  ? find_held_lock+0x2d/0x110
[  418.705563][T10329]  ? _raw_spin_unlock+0x28/0x50
[  418.705614][T10329]  ? alloc_fd+0x41f/0x760
[  418.705673][T10329]  do_sys_openat2+0x17a/0x1e0
[  418.705707][T10329]  ? __pfx_do_sys_openat2+0x10/0x10
[  418.705759][T10329]  __x64_sys_open+0x154/0x1e0
[  418.705794][T10329]  ? __pfx___x64_sys_open+0x10/0x10
[  418.705846][T10329]  do_syscall_64+0xcd/0x250
[  418.705898][T10329]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  418.705943][T10329] RIP: 0033:0x7fbd3658d169
[  418.705969][T10329] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  418.706002][T10329] RSP: 002b:00007fbd343d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[  418.706033][T10329] RAX: ffffffffffffffda RBX: 00007fbd367a6080 RCX: 00007fbd3658d169
[  418.706054][T10329] RDX: 0000000000000100 RSI: 0000000000020102 RDI: 0000200000000280
[  418.706074][T10329] RBP: 00007fbd3660e2a0 R08: 0000000000000000 R09: 0000000000000000
[  418.706092][T10329] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  418.706110][T10329] R13: 0000000000000000 R14: 00007fbd367a6080 R15: 00007fffebddc968
[  418.706150][T10329]  </TASK>
[  419.233188][T10329] ERROR: Out of memory at tomoyo_realpath_from_path.
[  420.164747][T10355] netlink: 346 bytes leftover after parsing attributes in process `syz.4.981'.
[  420.267662][T10353] FAULT_INJECTION: forcing a failure.
[  420.267662][T10353] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  420.332792][T10353] CPU: 0 UID: 0 PID: 10353 Comm: syz.1.980 Not tainted 6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  420.332835][T10353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  420.332852][T10353] Call Trace:
[  420.332861][T10353]  <TASK>
[  420.332872][T10353]  dump_stack_lvl+0x16c/0x1f0
[  420.332923][T10353]  should_fail_ex+0x50a/0x650
[  420.332960][T10353]  _copy_from_iter+0x2a1/0x1560
[  420.332997][T10353]  ? trace_lock_acquire+0x14e/0x1f0
[  420.333040][T10353]  ? __pfx__copy_from_iter+0x10/0x10
[  420.333074][T10353]  ? __virt_addr_valid+0x1a4/0x590
[  420.333114][T10353]  ? __virt_addr_valid+0x5e/0x590
[  420.333147][T10353]  ? __phys_addr_symbol+0x30/0x80
[  420.333178][T10353]  ? __check_object_size+0x488/0x710
[  420.333215][T10353]  skb_copy_datagram_from_iter+0x124/0x710
[  420.333262][T10353]  ? lock_acquire+0x2f/0xb0
[  420.333317][T10353]  packet_sendmsg+0x2243/0x5750
[  420.333367][T10353]  ? __pfx___might_resched+0x10/0x10
[  420.333416][T10353]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  420.333471][T10353]  ? __pfx_packet_sendmsg+0x10/0x10
[  420.333504][T10353]  ? aa_label_find_merge+0x3b0/0xa80
[  420.333535][T10353]  ? __might_fault+0xe3/0x190
[  420.333565][T10353]  ? __might_fault+0xe3/0x190
[  420.333613][T10353]  ____sys_sendmsg+0xaaf/0xc90
[  420.333663][T10353]  ? __pfx_____sys_sendmsg+0x10/0x10
[  420.333701][T10353]  ? __lock_acquire+0xcc5/0x3c40
[  420.333763][T10353]  ___sys_sendmsg+0x135/0x1e0
[  420.333822][T10353]  ? __pfx____sys_sendmsg+0x10/0x10
[  420.333887][T10353]  ? trace_lock_acquire+0x14e/0x1f0
[  420.333948][T10353]  __sys_sendmmsg+0x201/0x420
[  420.333982][T10353]  ? __pfx___sys_sendmmsg+0x10/0x10
[  420.334026][T10353]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  420.334092][T10353]  ? fput+0x67/0x440
[  420.334124][T10353]  ? ksys_write+0x1ba/0x250
[  420.334167][T10353]  ? __pfx_ksys_write+0x10/0x10
[  420.334219][T10353]  __x64_sys_sendmmsg+0x9c/0x100
[  420.334248][T10353]  ? lockdep_hardirqs_on+0x7c/0x110
[  420.334291][T10353]  do_syscall_64+0xcd/0x250
[  420.334342][T10353]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  420.334388][T10353] RIP: 0033:0x7fbd3658d169
[  420.334413][T10353] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  420.334442][T10353] RSP: 002b:00007fbd343f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  420.334471][T10353] RAX: ffffffffffffffda RBX: 00007fbd367a5fa0 RCX: 00007fbd3658d169
[  420.334491][T10353] RDX: 0000000000000002 RSI: 0000200000000400 RDI: 0000000000000003
[  420.334510][T10353] RBP: 00007fbd343f6090 R08: 0000000000000000 R09: 0000000000000000
[  420.334529][T10353] R10: 0000000000000100 R11: 0000000000000246 R12: 0000000000000001
[  420.334547][T10353] R13: 0000000000000000 R14: 00007fbd367a5fa0 R15: 00007fffebddc968
[  420.334593][T10353]  </TASK>
[  420.699178][T10361] FAULT_INJECTION: forcing a failure.
[  420.699178][T10361] name failslab, interval 1, probability 0, space 0, times 0
[  420.811358][T10361] CPU: 0 UID: 0 PID: 10361 Comm: syz.4.983 Not tainted 6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  420.811406][T10361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  420.811425][T10361] Call Trace:
[  420.811435][T10361]  <TASK>
[  420.811449][T10361]  dump_stack_lvl+0x16c/0x1f0
[  420.811515][T10361]  should_fail_ex+0x50a/0x650
[  420.811556][T10361]  ? fs_reclaim_acquire+0xae/0x150
[  420.811606][T10361]  ? xfrm_hash_alloc+0xd1/0x100
[  420.811638][T10361]  should_failslab+0xc2/0x120
[  420.811668][T10361]  __kmalloc_noprof+0xcb/0x510
[  420.811719][T10361]  ? xfrm_nat_keepalive_net_init+0xf1/0x140
[  420.811768][T10361]  ? __pfx_xfrm_net_init+0x10/0x10
[  420.811805][T10361]  xfrm_hash_alloc+0xd1/0x100
[  420.811839][T10361]  xfrm_state_init+0xde/0x630
[  420.811877][T10361]  ? __pfx_xfrm_net_init+0x10/0x10
[  420.811912][T10361]  xfrm_net_init+0x211/0xcb0
[  420.811956][T10361]  ? __pfx_xfrm_net_init+0x10/0x10
[  420.811990][T10361]  ops_init+0x1df/0x5f0
[  420.812027][T10361]  setup_net+0x21f/0x860
[  420.812079][T10361]  ? __pfx_setup_net+0x10/0x10
[  420.812110][T10361]  ? down_read_killable+0xcc/0x380
[  420.812140][T10361]  ? __pfx_down_read_killable+0x10/0x10
[  420.812170][T10361]  ? __raw_spin_lock_init+0x3a/0x110
[  420.812203][T10361]  ? debug_mutex_init+0x37/0x70
[  420.812255][T10361]  copy_net_ns+0x2a6/0x5f0
[  420.812301][T10361]  create_new_namespaces+0x3ea/0xad0
[  420.812368][T10361]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  420.812424][T10361]  ksys_unshare+0x45d/0xa40
[  420.812459][T10361]  ? __pfx_ksys_unshare+0x10/0x10
[  420.812492][T10361]  ? xfd_validate_state+0x5d/0x180
[  420.812562][T10361]  __x64_sys_unshare+0x31/0x40
[  420.812598][T10361]  do_syscall_64+0xcd/0x250
[  420.812653][T10361]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  420.812710][T10361] RIP: 0033:0x7f8b2378d169
[  420.812736][T10361] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  420.812770][T10361] RSP: 002b:00007f8b24542038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  420.812801][T10361] RAX: ffffffffffffffda RBX: 00007f8b239a5fa0 RCX: 00007f8b2378d169
[  420.812821][T10361] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  420.812840][T10361] RBP: 00007f8b2380e2a0 R08: 0000000000000000 R09: 0000000000000000
[  420.812859][T10361] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  420.812877][T10361] R13: 0000000000000000 R14: 00007f8b239a5fa0 R15: 00007ffc1106b718
[  420.812917][T10361]  </TASK>
[  422.311871][T10388] zswap: compressor  not available
[  422.389786][T10398] FAULT_INJECTION: forcing a failure.
[  422.389786][T10398] name failslab, interval 1, probability 0, space 0, times 0
[  422.475419][T10398] CPU: 1 UID: 0 PID: 10398 Comm: syz.1.992 Not tainted 6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  422.475467][T10398] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  422.475487][T10398] Call Trace:
[  422.475497][T10398]  <TASK>
[  422.475510][T10398]  dump_stack_lvl+0x16c/0x1f0
[  422.475567][T10398]  should_fail_ex+0x50a/0x650
[  422.475605][T10398]  ? fs_reclaim_acquire+0xae/0x150
[  422.475654][T10398]  should_failslab+0xc2/0x120
[  422.475694][T10398]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  422.475750][T10398]  ? security_file_alloc+0x34/0x2b0
[  422.475804][T10398]  security_file_alloc+0x34/0x2b0
[  422.475850][T10398]  init_file+0x93/0x4c0
[  422.475885][T10398]  alloc_empty_file+0x91/0x1e0
[  422.475923][T10398]  alloc_file_pseudo+0x13b/0x230
[  422.475963][T10398]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  422.476000][T10398]  ? shmem_get_inode+0x73a/0xf00
[  422.476060][T10398]  __shmem_file_setup+0x210/0x300
[  422.476098][T10398]  shmem_zero_setup+0x93/0x1b0
[  422.476142][T10398]  __mmap_region+0x2059/0x27b0
[  422.476178][T10398]  ? __pfx___mmap_region+0x10/0x10
[  422.476243][T10398]  ? hlock_class+0x4e/0x130
[  422.476279][T10398]  ? mark_lock+0xb5/0xc60
[  422.476334][T10398]  ? __pfx___schedule+0x10/0x10
[  422.476438][T10398]  ? cap_capable+0xb3/0x250
[  422.476483][T10398]  mmap_region+0x1ab/0x3f0
[  422.476526][T10398]  do_mmap+0xd8d/0x11b0
[  422.476580][T10398]  ? __pfx_do_mmap+0x10/0x10
[  422.476634][T10398]  ? __pfx_down_write_killable+0x10/0x10
[  422.476676][T10398]  vm_mmap_pgoff+0x279/0x440
[  422.476737][T10398]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  422.476796][T10398]  ? __x64_sys_futex+0x1e1/0x4c0
[  422.476836][T10398]  ? __x64_sys_futex+0x1ea/0x4c0
[  422.476883][T10398]  ksys_mmap_pgoff+0x7d/0x5c0
[  422.476926][T10398]  ? rcu_is_watching+0x12/0xc0
[  422.476967][T10398]  __x64_sys_mmap+0x125/0x190
[  422.477022][T10398]  do_syscall_64+0xcd/0x250
[  422.477074][T10398]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  422.477122][T10398] RIP: 0033:0x7fbd3658d169
[  422.477150][T10398] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  422.477181][T10398] RSP: 002b:00007fbd343f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  422.477213][T10398] RAX: ffffffffffffffda RBX: 00007fbd367a5fa0 RCX: 00007fbd3658d169
[  422.477234][T10398] RDX: 0000000000000003 RSI: 0000000002020009 RDI: 0000000000000000
[  422.477253][T10398] RBP: 00007fbd3660e2a0 R08: fffffffffffffffa R09: 0000000000008000
[  422.477273][T10398] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000
[  422.477292][T10398] R13: 0000000000000000 R14: 00007fbd367a5fa0 R15: 00007fffebddc968
[  422.477332][T10398]  </TASK>
[  422.873081][T10401] net_ratelimit: 19 callbacks suppressed
[  422.873110][T10401] do_dccp_getsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app
[  427.516383][T10457] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  427.536048][T10457] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  427.654626][T10457] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  427.674980][T10457] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  427.773386][T10457] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  427.807818][T10457] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  427.833206][T10468] netlink: 346 bytes leftover after parsing attributes in process `syz.4.1008'.
[  427.928948][T10457] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  428.325825][T10481] netlink: 186 bytes leftover after parsing attributes in process `syz.1.1011'.
[  428.755998][ T5850] Bluetooth: hci1: command 0x0406 tx timeout
[  429.316066][T10500] nfs: Bad value for 'source'
[  429.350760][T10487] program syz.4.1013 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  429.568571][T10491] =======================================================
[  429.568571][T10491] WARNING: The mand mount option has been deprecated and
[  429.568571][T10491]          and is ignored by this kernel. Remove the mand
[  429.568571][T10491]          option from the mount to silence this warning.
[  429.568571][T10491] =======================================================
[  429.723322][ T5850] Bluetooth: hci3: command 0x0406 tx timeout
[  429.795200][ T5850] Bluetooth: hci4: command 0x0c1a tx timeout
[  430.181802][T10510] netlink: 346 bytes leftover after parsing attributes in process `syz.3.1021'.
[  430.840670][ T5850] Bluetooth: hci1: command 0x0406 tx timeout
[  431.804815][ T5850] Bluetooth: hci3: command 0x0406 tx timeout
[  431.875253][ T5850] Bluetooth: hci4: command 0x0c1a tx timeout
[  432.074860][T10528] FAULT_INJECTION: forcing a failure.
[  432.074860][T10528] name failslab, interval 1, probability 0, space 0, times 0
[  432.245130][T10528] CPU: 0 UID: 0 PID: 10528 Comm: syz.4.1026 Not tainted 6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  432.245178][T10528] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  432.245198][T10528] Call Trace:
[  432.245208][T10528]  <TASK>
[  432.245221][T10528]  dump_stack_lvl+0x16c/0x1f0
[  432.245280][T10528]  should_fail_ex+0x50a/0x650
[  432.245313][T10528]  ? fs_reclaim_acquire+0xae/0x150
[  432.245360][T10528]  ? blk_alloc_queue_stats+0x3f/0x110
[  432.245417][T10528]  should_failslab+0xc2/0x120
[  432.245450][T10528]  __kmalloc_cache_noprof+0x68/0x410
[  432.245497][T10528]  ? kmem_cache_alloc_node_noprof+0x272/0x3c0
[  432.245560][T10528]  blk_alloc_queue_stats+0x3f/0x110
[  432.245613][T10528]  blk_alloc_queue+0xda/0x700
[  432.245655][T10528]  __blk_alloc_disk+0xa6/0x170
[  432.245702][T10528]  ? __pfx___blk_alloc_disk+0x10/0x10
[  432.245775][T10528]  ? __pfx_idr_alloc+0x10/0x10
[  432.245826][T10528]  ? __raw_spin_lock_init+0x3a/0x110
[  432.245864][T10528]  ? __pfx_hot_add_show+0x10/0x10
[  432.245915][T10528]  zram_add+0x160/0x6b0
[  432.245967][T10528]  ? __pfx_zram_add+0x10/0x10
[  432.246044][T10528]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  432.246096][T10528]  ? rcu_is_watching+0x12/0xc0
[  432.246147][T10528]  ? __pfx_hot_add_show+0x10/0x10
[  432.246201][T10528]  hot_add_show+0x21/0x80
[  432.246252][T10528]  class_attr_show+0x6f/0xa0
[  432.246302][T10528]  ? __pfx_class_attr_show+0x10/0x10
[  432.246349][T10528]  sysfs_kf_seq_show+0x23e/0x410
[  432.246401][T10528]  seq_read_iter+0x4f4/0x12b0
[  432.246467][T10528]  kernfs_fop_read_iter+0x414/0x580
[  432.246503][T10528]  ? rw_verify_area+0xcf/0x680
[  432.246554][T10528]  vfs_read+0x886/0xbf0
[  432.246609][T10528]  ? __pfx_vfs_read+0x10/0x10
[  432.246687][T10528]  ksys_read+0x12b/0x250
[  432.246734][T10528]  ? __pfx_ksys_read+0x10/0x10
[  432.246795][T10528]  do_syscall_64+0xcd/0x250
[  432.246850][T10528]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  432.246899][T10528] RIP: 0033:0x7f8b2378d169
[  432.246926][T10528] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  432.246959][T10528] RSP: 002b:00007f8b24542038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  432.246998][T10528] RAX: ffffffffffffffda RBX: 00007f8b239a5fa0 RCX: 00007f8b2378d169
[  432.247019][T10528] RDX: 0000000000001000 RSI: 0000200000000ec0 RDI: 0000000000000007
[  432.247039][T10528] RBP: 00007f8b2380e2a0 R08: 0000000000000000 R09: 0000000000000000
[  432.247058][T10528] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  432.247077][T10528] R13: 0000000000000000 R14: 00007f8b239a5fa0 R15: 00007ffc1106b718
[  432.247128][T10528]  </TASK>
[  432.248960][T10528] zram: Error allocating disk structure for device 1
[  433.964967][ T5850] Bluetooth: hci4: command 0x0c1a tx timeout
[  435.060161][T10555] netlink: 346 bytes leftover after parsing attributes in process `syz.4.1033'.
[  435.872835][T10562] ICMPv6: process `syz.2.1036' is using deprecated sysctl (syscall) net.ipv6.neigh.macsec0.base_reachable_time - use net.ipv6.neigh.macsec0.base_reachable_time_ms instead
[  439.971482][T10617] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1043'.
[  439.985223][T10616] svc: failed to register nfsdv3 RPC service (errno 111).
[  439.997442][T10616] svc: failed to register nfsaclv3 RPC service (errno 111).
[  441.904234][T10632] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  441.955421][T10632] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  445.722384][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  445.734106][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  447.304471][T10712] hub 2-0:1.0: USB hub found
[  447.322774][T10712] hub 2-0:1.0: 1 port detected
[  451.315502][T10756] ovs_: entered promiscuous mode
[  452.768186][T10772] FAULT_INJECTION: forcing a failure.
[  452.768186][T10772] name failslab, interval 1, probability 0, space 0, times 0
[  452.860200][T10772] CPU: 1 UID: 0 PID: 10772 Comm: syz.1.1084 Not tainted 6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  452.860244][T10772] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  452.860263][T10772] Call Trace:
[  452.860272][T10772]  <TASK>
[  452.860284][T10772]  dump_stack_lvl+0x16c/0x1f0
[  452.860340][T10772]  should_fail_ex+0x50a/0x650
[  452.860372][T10772]  ? fs_reclaim_acquire+0xae/0x150
[  452.860417][T10772]  should_failslab+0xc2/0x120
[  452.860449][T10772]  kmem_cache_alloc_node_noprof+0x72/0x3c0
[  452.860501][T10772]  ? __alloc_skb+0x2b1/0x380
[  452.860557][T10772]  __alloc_skb+0x2b1/0x380
[  452.860606][T10772]  ? __pfx___alloc_skb+0x10/0x10
[  452.860671][T10772]  netlink_alloc_large_skb+0x69/0x130
[  452.860725][T10772]  netlink_sendmsg+0x689/0xd70
[  452.860783][T10772]  ? __pfx_netlink_sendmsg+0x10/0x10
[  452.860848][T10772]  ____sys_sendmsg+0xaaf/0xc90
[  452.860890][T10772]  ? copy_msghdr_from_user+0x10b/0x160
[  452.860942][T10772]  ? __pfx_____sys_sendmsg+0x10/0x10
[  452.860980][T10772]  ? __lock_acquire+0xcc5/0x3c40
[  452.861031][T10772]  ? hlock_class+0x4e/0x130
[  452.861064][T10772]  ? __lock_acquire+0x15a9/0x3c40
[  452.861119][T10772]  ___sys_sendmsg+0x135/0x1e0
[  452.861181][T10772]  ? __pfx____sys_sendmsg+0x10/0x10
[  452.861231][T10772]  ? __pfx___lock_acquire+0x10/0x10
[  452.861311][T10772]  ? __pfx___might_resched+0x10/0x10
[  452.861364][T10772]  ? __might_fault+0xe3/0x190
[  452.861400][T10772]  __sys_sendmmsg+0x201/0x420
[  452.861434][T10772]  ? __pfx___sys_sendmmsg+0x10/0x10
[  452.861476][T10772]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  452.861541][T10772]  ? fput+0x67/0x440
[  452.861573][T10772]  ? ksys_write+0x1ba/0x250
[  452.861617][T10772]  ? __pfx_ksys_write+0x10/0x10
[  452.861669][T10772]  __x64_sys_sendmmsg+0x9c/0x100
[  452.861700][T10772]  ? lockdep_hardirqs_on+0x7c/0x110
[  452.861747][T10772]  do_syscall_64+0xcd/0x250
[  452.861800][T10772]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  452.861847][T10772] RIP: 0033:0x7fbd3658d169
[  452.861872][T10772] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  452.861901][T10772] RSP: 002b:00007fbd343f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  452.861931][T10772] RAX: ffffffffffffffda RBX: 00007fbd367a5fa0 RCX: 00007fbd3658d169
[  452.861950][T10772] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003
[  452.861968][T10772] RBP: 00007fbd343f6090 R08: 0000000000000000 R09: 0000000000000000
[  452.861986][T10772] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  452.862003][T10772] R13: 0000000000000000 R14: 00007fbd367a5fa0 R15: 00007fffebddc968
[  452.862039][T10772]  </TASK>
[  456.442703][T10801] FAULT_INJECTION: forcing a failure.
[  456.442703][T10801] name failslab, interval 1, probability 0, space 0, times 0
[  456.575086][T10801] CPU: 1 UID: 0 PID: 10801 Comm: syz.1.1092 Not tainted 6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  456.575130][T10801] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  456.575151][T10801] Call Trace:
[  456.575161][T10801]  <TASK>
[  456.575174][T10801]  dump_stack_lvl+0x16c/0x1f0
[  456.575229][T10801]  should_fail_ex+0x50a/0x650
[  456.575260][T10801]  ? fs_reclaim_acquire+0xae/0x150
[  456.575304][T10801]  ? xfrm_hash_alloc+0xd1/0x100
[  456.575334][T10801]  should_failslab+0xc2/0x120
[  456.575364][T10801]  __kmalloc_noprof+0xcb/0x510
[  456.575416][T10801]  ? xfrm_nat_keepalive_net_init+0xf1/0x140
[  456.575464][T10801]  ? __pfx_xfrm_net_init+0x10/0x10
[  456.575515][T10801]  xfrm_hash_alloc+0xd1/0x100
[  456.575550][T10801]  xfrm_state_init+0xde/0x630
[  456.575591][T10801]  ? __pfx_xfrm_net_init+0x10/0x10
[  456.575626][T10801]  xfrm_net_init+0x211/0xcb0
[  456.575669][T10801]  ? __pfx_xfrm_net_init+0x10/0x10
[  456.575706][T10801]  ops_init+0x1df/0x5f0
[  456.575745][T10801]  setup_net+0x21f/0x860
[  456.575783][T10801]  ? __pfx_setup_net+0x10/0x10
[  456.575816][T10801]  ? down_read_killable+0xcc/0x380
[  456.575849][T10801]  ? __pfx_down_read_killable+0x10/0x10
[  456.575879][T10801]  ? __raw_spin_lock_init+0x3a/0x110
[  456.575915][T10801]  ? debug_mutex_init+0x37/0x70
[  456.575955][T10801]  copy_net_ns+0x2a6/0x5f0
[  456.575999][T10801]  create_new_namespaces+0x3ea/0xad0
[  456.576064][T10801]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  456.576124][T10801]  ksys_unshare+0x45d/0xa40
[  456.576160][T10801]  ? __pfx_ksys_unshare+0x10/0x10
[  456.576193][T10801]  ? xfd_validate_state+0x5d/0x180
[  456.576255][T10801]  __x64_sys_unshare+0x31/0x40
[  456.576290][T10801]  do_syscall_64+0xcd/0x250
[  456.576344][T10801]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  456.576391][T10801] RIP: 0033:0x7fbd3658d169
[  456.576418][T10801] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  456.576450][T10801] RSP: 002b:00007fbd343f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  456.576489][T10801] RAX: ffffffffffffffda RBX: 00007fbd367a5fa0 RCX: 00007fbd3658d169
[  456.576512][T10801] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  456.576532][T10801] RBP: 00007fbd3660e2a0 R08: 0000000000000000 R09: 0000000000000000
[  456.576553][T10801] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  456.576573][T10801] R13: 0000000000000000 R14: 00007fbd367a5fa0 R15: 00007fffebddc968
[  456.576615][T10801]  </TASK>
[  461.425953][T10845] netlink: 186 bytes leftover after parsing attributes in process `syz.1.1102'.
[  464.419489][T10894] netlink: 'syz.2.1115': attribute type 1 has an invalid length.
[  466.563870][T10919] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed
[  466.637854][T10919] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff)
[  466.796769][T10919] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed
[  466.804473][T10919] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff)
[  471.764696][T10972] program syz.2.1134 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  472.295782][T10979] FAULT_INJECTION: forcing a failure.
[  472.295782][T10979] name failslab, interval 1, probability 0, space 0, times 0
[  472.367949][T10979] CPU: 1 UID: 0 PID: 10979 Comm: syz.2.1136 Not tainted 6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  472.367995][T10979] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  472.368015][T10979] Call Trace:
[  472.368025][T10979]  <TASK>
[  472.368038][T10979]  dump_stack_lvl+0x16c/0x1f0
[  472.368097][T10979]  should_fail_ex+0x50a/0x650
[  472.368130][T10979]  ? fs_reclaim_acquire+0xae/0x150
[  472.368177][T10979]  ? xfrm_hash_alloc+0xd1/0x100
[  472.368211][T10979]  should_failslab+0xc2/0x120
[  472.368243][T10979]  __kmalloc_noprof+0xcb/0x510
[  472.368295][T10979]  ? xfrm_nat_keepalive_net_init+0xf1/0x140
[  472.368344][T10979]  ? __pfx_xfrm_net_init+0x10/0x10
[  472.368381][T10979]  xfrm_hash_alloc+0xd1/0x100
[  472.368414][T10979]  xfrm_state_init+0xde/0x630
[  472.368453][T10979]  ? __pfx_xfrm_net_init+0x10/0x10
[  472.368488][T10979]  xfrm_net_init+0x211/0xcb0
[  472.368530][T10979]  ? __pfx_xfrm_net_init+0x10/0x10
[  472.368566][T10979]  ops_init+0x1df/0x5f0
[  472.368603][T10979]  setup_net+0x21f/0x860
[  472.368640][T10979]  ? __pfx_setup_net+0x10/0x10
[  472.368671][T10979]  ? down_read_killable+0xcc/0x380
[  472.368702][T10979]  ? __pfx_down_read_killable+0x10/0x10
[  472.368732][T10979]  ? __raw_spin_lock_init+0x3a/0x110
[  472.368767][T10979]  ? debug_mutex_init+0x37/0x70
[  472.368823][T10979]  copy_net_ns+0x2a6/0x5f0
[  472.368865][T10979]  create_new_namespaces+0x3ea/0xad0
[  472.368929][T10979]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  472.368989][T10979]  ksys_unshare+0x45d/0xa40
[  472.369023][T10979]  ? __pfx_ksys_unshare+0x10/0x10
[  472.369054][T10979]  ? xfd_validate_state+0x5d/0x180
[  472.369113][T10979]  __x64_sys_unshare+0x31/0x40
[  472.369148][T10979]  do_syscall_64+0xcd/0x250
[  472.369203][T10979]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  472.369249][T10979] RIP: 0033:0x7efd2078d169
[  472.369276][T10979] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  472.369308][T10979] RSP: 002b:00007efd216b4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  472.369339][T10979] RAX: ffffffffffffffda RBX: 00007efd209a5fa0 RCX: 00007efd2078d169
[  472.369361][T10979] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  472.369380][T10979] RBP: 00007efd2080e2a0 R08: 0000000000000000 R09: 0000000000000000
[  472.369399][T10979] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  472.369418][T10979] R13: 0000000000000000 R14: 00007efd209a5fa0 R15: 00007ffea8205528
[  472.369459][T10979]  </TASK>
[  475.712406][T11014] netlink: 146 bytes leftover after parsing attributes in process `syz.3.1153'.
[  478.509974][T11053] FAULT_INJECTION: forcing a failure.
[  478.509974][T11053] name failslab, interval 1, probability 0, space 0, times 0
[  478.523281][T11051] Invalid ELF header magic: != ELF
[  478.666285][T11053] CPU: 0 UID: 0 PID: 11053 Comm: syz.3.1148 Not tainted 6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  478.666331][T11053] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  478.666350][T11053] Call Trace:
[  478.666359][T11053]  <TASK>
[  478.666373][T11053]  dump_stack_lvl+0x16c/0x1f0
[  478.666428][T11053]  should_fail_ex+0x50a/0x650
[  478.666461][T11053]  ? fs_reclaim_acquire+0xae/0x150
[  478.666511][T11053]  should_failslab+0xc2/0x120
[  478.666544][T11053]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  478.666597][T11053]  ? lockdep_init_map_type+0x16d/0x7d0
[  478.666649][T11053]  ? security_inode_alloc+0x3b/0x2b0
[  478.666696][T11053]  security_inode_alloc+0x3b/0x2b0
[  478.666738][T11053]  inode_init_always_gfp+0xce4/0x1030
[  478.666798][T11053]  alloc_inode+0x82/0x230
[  478.666831][T11053]  new_inode+0x22/0x210
[  478.666860][T11053]  ? start_creating.part.0+0x25d/0x3a0
[  478.666920][T11053]  debugfs_create_dir+0xdd/0x5f0
[  478.666956][T11053]  ptp_open+0x307/0x520
[  478.666995][T11053]  ? __pfx_ptp_open+0x10/0x10
[  478.667041][T11053]  ? __pfx_ptp_open+0x10/0x10
[  478.667072][T11053]  posix_clock_open+0x157/0x260
[  478.667113][T11053]  ? __pfx_posix_clock_open+0x10/0x10
[  478.667166][T11053]  chrdev_open+0x237/0x6a0
[  478.667216][T11053]  ? __pfx_apparmor_file_open+0x10/0x10
[  478.667261][T11053]  ? __pfx_chrdev_open+0x10/0x10
[  478.667317][T11053]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  478.667371][T11053]  do_dentry_open+0x735/0x1c40
[  478.667420][T11053]  ? __pfx_chrdev_open+0x10/0x10
[  478.667475][T11053]  ? inode_permission+0xdd/0x5f0
[  478.667517][T11053]  vfs_open+0x82/0x3f0
[  478.667549][T11053]  ? may_open+0x1f2/0x400
[  478.667591][T11053]  path_openat+0x1e88/0x2d80
[  478.667657][T11053]  ? __pfx_path_openat+0x10/0x10
[  478.667706][T11053]  ? __pfx___lock_acquire+0x10/0x10
[  478.667750][T11053]  ? lock_acquire.part.0+0x11b/0x380
[  478.667797][T11053]  ? find_held_lock+0x2d/0x110
[  478.667837][T11053]  do_filp_open+0x20c/0x470
[  478.667886][T11053]  ? __pfx_do_filp_open+0x10/0x10
[  478.667932][T11053]  ? find_held_lock+0x2d/0x110
[  478.667997][T11053]  ? alloc_fd+0x41f/0x760
[  478.668058][T11053]  do_sys_openat2+0x17a/0x1e0
[  478.668095][T11053]  ? __pfx_do_sys_openat2+0x10/0x10
[  478.668157][T11053]  __x64_sys_openat+0x175/0x210
[  478.668195][T11053]  ? __pfx___x64_sys_openat+0x10/0x10
[  478.668253][T11053]  do_syscall_64+0xcd/0x250
[  478.668308][T11053]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  478.668356][T11053] RIP: 0033:0x7fed9218d169
[  478.668382][T11053] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  478.668415][T11053] RSP: 002b:00007fed9308e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  478.668447][T11053] RAX: ffffffffffffffda RBX: 00007fed923a6080 RCX: 00007fed9218d169
[  478.668470][T11053] RDX: 0000000000000440 RSI: 0000200000000140 RDI: ffffffffffffff9c
[  478.668491][T11053] RBP: 00007fed9220e2a0 R08: 0000000000000000 R09: 0000000000000000
[  478.668511][T11053] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  478.668531][T11053] R13: 0000000000000000 R14: 00007fed923a6080 R15: 00007fff14239958
[  478.668572][T11053]  </TASK>
[  479.058145][T11053] debugfs: out of free dentries, can not create directory '0xffff888025394000'
[  480.452100][T11073] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input17
[  480.491986][T11073] FAULT_INJECTION: forcing a failure.
[  480.491986][T11073] name failslab, interval 1, probability 0, space 0, times 0
[  480.515937][T11073] CPU: 1 UID: 0 PID: 11073 Comm: syz.3.1155 Not tainted 6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  480.515992][T11073] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  480.516011][T11073] Call Trace:
[  480.516021][T11073]  <TASK>
[  480.516033][T11073]  dump_stack_lvl+0x16c/0x1f0
[  480.516089][T11073]  should_fail_ex+0x50a/0x650
[  480.516122][T11073]  ? fs_reclaim_acquire+0xae/0x150
[  480.516168][T11073]  should_failslab+0xc2/0x120
[  480.516201][T11073]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  480.516252][T11073]  ? __kernfs_new_node+0xd3/0x890
[  480.516302][T11073]  __kernfs_new_node+0xd3/0x890
[  480.516344][T11073]  ? __pfx_register_lock_class+0x10/0x10
[  480.516393][T11073]  ? __pfx___lock_acquire+0x10/0x10
[  480.516439][T11073]  ? __pfx___kernfs_new_node+0x10/0x10
[  480.516502][T11073]  ? lock_acquire.part.0+0x11b/0x380
[  480.516557][T11073]  ? find_held_lock+0x2d/0x110
[  480.516597][T11073]  kernfs_new_node+0x186/0x240
[  480.516648][T11073]  ? __pfx_lock_release+0x10/0x10
[  480.516696][T11073]  __kernfs_create_file+0x53/0x350
[  480.516737][T11073]  sysfs_add_file_mode_ns+0x1ff/0x3b0
[  480.516782][T11073]  sysfs_create_file_ns+0x13e/0x1d0
[  480.516837][T11073]  ? __pfx_lock_release+0x10/0x10
[  480.516876][T11073]  ? __pfx_sysfs_create_file_ns+0x10/0x10
[  480.516926][T11073]  device_create_file+0xf2/0x1e0
[  480.516982][T11073]  device_add+0xa2d/0x1a70
[  480.517028][T11073]  ? __pfx_device_add+0x10/0x10
[  480.517068][T11073]  ? __pfx_exact_lock+0x10/0x10
[  480.517114][T11073]  ? kobject_get+0xbb/0x150
[  480.517160][T11073]  cdev_device_add+0xc2/0x1e0
[  480.517206][T11073]  evdev_connect+0x3a4/0x4c0
[  480.517243][T11073]  input_attach_handler.isra.0+0x181/0x260
[  480.517279][T11073]  input_register_device+0xa84/0x1130
[  480.517310][T11073]  ? input_ff_create+0x256/0x350
[  480.517354][T11073]  uinput_ioctl_handler.isra.0+0x130c/0x1d70
[  480.517402][T11073]  ? __pfx_uinput_ioctl_handler.isra.0+0x10/0x10
[  480.517450][T11073]  ? __pfx_lock_release+0x10/0x10
[  480.517487][T11073]  ? trace_lock_acquire+0x14e/0x1f0
[  480.517531][T11073]  ? __fget_files+0x206/0x3a0
[  480.517575][T11073]  ? __pfx_uinput_ioctl+0x10/0x10
[  480.517619][T11073]  __x64_sys_ioctl+0x190/0x200
[  480.517655][T11073]  do_syscall_64+0xcd/0x250
[  480.517698][T11073]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  480.517737][T11073] RIP: 0033:0x7fed9218d169
[  480.517758][T11073] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  480.517784][T11073] RSP: 002b:00007fed930af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  480.517810][T11073] RAX: ffffffffffffffda RBX: 00007fed923a5fa0 RCX: 00007fed9218d169
[  480.517828][T11073] RDX: 0000000000000000 RSI: 0000000000005501 RDI: 0000000000000008
[  480.517844][T11073] RBP: 00007fed9220e2a0 R08: 0000000000000000 R09: 0000000000000000
[  480.517860][T11073] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  480.517875][T11073] R13: 0000000000000000 R14: 00007fed923a5fa0 R15: 00007fff14239958
[  480.517908][T11073]  </TASK>
[  480.905227][T11073] input: failed to attach handler evdev to device input17, error: -12
[  488.832094][T11179] usb usb36: usbfs: process 11179 (syz.2.1186) did not claim interface 0 before use
[  489.064943][T11179] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1186'.
[  489.125971][T11179] vxcan1: entered promiscuous mode
[  489.182125][T11183] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input18
[  492.334900][T11221] netlink: 'syz.1.1196': attribute type 1 has an invalid length.
[  492.577323][T11228] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input19
[  493.707459][T11246] netlink: 'syz.1.1201': attribute type 1 has an invalid length.
[  493.843183][T11246] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1201'.
[  495.432819][ T5850] Bluetooth: hci1: unexpected event 0x1d length: 6 > 5
[  496.406885][T11276] Invalid ELF header magic: != ELF
[  497.210130][T11291] ==================================================================
[  497.218283][T11291] BUG: KASAN: slab-use-after-free in force_devcd_write+0x317/0x330
[  497.226360][T11291] Read of size 8 at addr ffff888143bf3800 by task syz.2.1212/11291
[  497.234314][T11291] 
[  497.236675][T11291] CPU: 1 UID: 0 PID: 11291 Comm: syz.2.1212 Not tainted 6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  497.236717][T11291] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  497.236737][T11291] Call Trace:
[  497.236750][T11291]  <TASK>
[  497.236763][T11291]  dump_stack_lvl+0x116/0x1f0
[  497.236818][T11291]  print_report+0xc3/0x670
[  497.236850][T11291]  ? __virt_addr_valid+0x5e/0x590
[  497.236885][T11291]  ? __phys_addr+0xc6/0x150
[  497.236920][T11291]  kasan_report+0xd9/0x110
[  497.236951][T11291]  ? force_devcd_write+0x317/0x330
[  497.237001][T11291]  ? force_devcd_write+0x317/0x330
[  497.237054][T11291]  force_devcd_write+0x317/0x330
[  497.237102][T11291]  ? __pfx_force_devcd_write+0x10/0x10
[  497.237152][T11291]  ? __debugfs_file_get+0x1ff/0x850
[  497.237197][T11291]  ? __pfx___debugfs_file_get+0x10/0x10
[  497.237241][T11291]  ? rcu_is_watching+0x12/0xc0
[  497.237277][T11291]  ? trace_lock_acquire+0x14e/0x1f0
[  497.237319][T11291]  full_proxy_write+0x13c/0x200
[  497.237365][T11291]  ? __pfx_full_proxy_write+0x10/0x10
[  497.237411][T11291]  vfs_write+0x24c/0x1150
[  497.237463][T11291]  ? __fget_files+0x1fc/0x3a0
[  497.237513][T11291]  ? __pfx___mutex_lock+0x10/0x10
[  497.237563][T11291]  ? __pfx_vfs_write+0x10/0x10
[  497.237616][T11291]  ? __fget_files+0x206/0x3a0
[  497.237671][T11291]  ksys_write+0x12b/0x250
[  497.237717][T11291]  ? __pfx_ksys_write+0x10/0x10
[  497.237770][T11291]  do_syscall_64+0xcd/0x250
[  497.237822][T11291]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  497.237871][T11291] RIP: 0033:0x7efd2078d169
[  497.237897][T11291] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  497.237930][T11291] RSP: 002b:00007efd21693038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  497.237960][T11291] RAX: ffffffffffffffda RBX: 00007efd209a6080 RCX: 00007efd2078d169
[  497.237982][T11291] RDX: 000000000000000e RSI: 0000000000000000 RDI: 000000000000000b
[  497.238001][T11291] RBP: 00007efd2080e2a0 R08: 0000000000000000 R09: 0000000000000000
[  497.238021][T11291] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  497.238041][T11291] R13: 0000000000000000 R14: 00007efd209a6080 R15: 00007ffea8205528
[  497.238071][T11291]  </TASK>
[  497.238082][T11291] 
[  497.462753][T11291] Allocated by task 25:
[  497.467032][T11291]  kasan_save_stack+0x33/0x60
[  497.471846][T11291]  kasan_save_track+0x14/0x30
[  497.476568][T11291]  __kasan_kmalloc+0xaa/0xb0
[  497.481302][T11291]  __kmalloc_noprof+0x21c/0x510
[  497.486192][T11291]  ieee802_11_parse_elems_full+0x1d0/0x3240
[  497.492521][T11291]  ieee80211_inform_bss+0xfd/0x1100
[  497.497777][T11291]  cfg80211_inform_single_bss_data+0x8f9/0x1df0
[  497.504526][T11291]  cfg80211_inform_bss_data+0x205/0x3ba0
[  497.510263][T11291]  cfg80211_inform_bss_frame_data+0x272/0x7a0
[  497.516522][T11291]  ieee80211_bss_info_update+0x311/0xab0
[  497.522383][T11291]  ieee80211_scan_rx+0x474/0xac0
[  497.528148][T11291]  ieee80211_rx_list+0x1bd7/0x2970
[  497.533375][T11291]  ieee80211_rx_napi+0xdd/0x400
[  497.538869][T11291]  ieee80211_handle_queued_frames+0xd5/0x130
[  497.544892][T11291]  tasklet_action_common+0x251/0x3f0
[  497.550245][T11291]  handle_softirqs+0x213/0x8f0
[  497.555145][T11291]  run_ksoftirqd+0x3a/0x60
[  497.559602][T11291]  smpboot_thread_fn+0x661/0xa30
[  497.564583][T11291]  kthread+0x3af/0x750
[  497.568706][T11291]  ret_from_fork+0x45/0x80
[  497.573167][T11291]  ret_from_fork_asm+0x1a/0x30
[  497.577984][T11291] 
[  497.580324][T11291] Freed by task 25:
[  497.584427][T11291]  kasan_save_stack+0x33/0x60
[  497.589162][T11291]  kasan_save_track+0x14/0x30
[  497.593914][T11291]  kasan_save_free_info+0x3b/0x60
[  497.599083][T11291]  __kasan_slab_free+0x51/0x70
[  497.603921][T11291]  kfree+0x2c4/0x4d0
[  497.607860][T11291]  ieee80211_inform_bss+0x76e/0x1100
[  497.613446][T11291]  cfg80211_inform_single_bss_data+0x8f9/0x1df0
[  497.619749][T11291]  cfg80211_inform_bss_data+0x205/0x3ba0
[  497.625588][T11291]  cfg80211_inform_bss_frame_data+0x272/0x7a0
[  497.632011][T11291]  ieee80211_bss_info_update+0x311/0xab0
[  497.637770][T11291]  ieee80211_scan_rx+0x474/0xac0
[  497.642737][T11291]  ieee80211_rx_list+0x1bd7/0x2970
[  497.647970][T11291]  ieee80211_rx_napi+0xdd/0x400
[  497.652944][T11291]  ieee80211_handle_queued_frames+0xd5/0x130
[  497.659213][T11291]  tasklet_action_common+0x251/0x3f0
[  497.664597][T11291]  handle_softirqs+0x213/0x8f0
[  497.669418][T11291]  run_ksoftirqd+0x3a/0x60
[  497.673875][T11291]  smpboot_thread_fn+0x661/0xa30
[  497.678931][T11291]  kthread+0x3af/0x750
[  497.683028][T11291]  ret_from_fork+0x45/0x80
[  497.687478][T11291]  ret_from_fork_asm+0x1a/0x30
[  497.692270][T11291] 
[  497.694608][T11291] The buggy address belongs to the object at ffff888143bf3800
[  497.694608][T11291]  which belongs to the cache kmalloc-1k of size 1024
[  497.709050][T11291] The buggy address is located 0 bytes inside of
[  497.709050][T11291]  freed 1024-byte region [ffff888143bf3800, ffff888143bf3c00)
[  497.723081][T11291] 
[  497.725482][T11291] The buggy address belongs to the physical page:
[  497.731912][T11291] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888143bf4800 pfn:0x143bf0
[  497.742170][T11291] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  497.750792][T11291] flags: 0x57ff00000000240(workingset|head|node=1|zone=2|lastcpupid=0x7ff)
[  497.759403][T11291] page_type: f5(slab)
[  497.763411][T11291] raw: 057ff00000000240 ffff88801b041dc0 ffffea00050ce610 ffffea0005356210
[  497.772204][T11291] raw: ffff888143bf4800 0000000000100004 00000000f5000000 0000000000000000
[  497.780899][T11291] head: 057ff00000000240 ffff88801b041dc0 ffffea00050ce610 ffffea0005356210
[  497.789614][T11291] head: ffff888143bf4800 0000000000100004 00000000f5000000 0000000000000000
[  497.798572][T11291] head: 057ff00000000003 ffffea00050efc01 ffffffffffffffff 0000000000000000
[  497.807501][T11291] head: 0000000000000008 0000000000000000 00000000ffffffff 0000000000000000
[  497.816289][T11291] page dumped because: kasan: bad access detected
[  497.822815][T11291] page_owner tracks the page as allocated
[  497.828542][T11291] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 1, tgid 1 (swapper/0), ts 14373881250, free_ts 0
[  497.848312][T11291]  post_alloc_hook+0x181/0x1b0
[  497.853128][T11291]  get_page_from_freelist+0xfce/0x2f80
[  497.858630][T11291]  __alloc_frozen_pages_noprof+0x221/0x2470
[  497.864576][T11291]  alloc_pages_mpol+0x1fc/0x540
[  497.869462][T11291]  new_slab+0x23d/0x330
[  497.873650][T11291]  ___slab_alloc+0xc5d/0x1720
[  497.878383][T11291]  __slab_alloc.constprop.0+0x56/0xb0
[  497.883889][T11291]  __kmalloc_cache_noprof+0xfa/0x410
[  497.889212][T11291]  loop_add+0xbf/0xb60
[  497.893402][T11291]  loop_init+0x164/0x270
[  497.897781][T11291]  do_one_initcall+0x128/0x700
[  497.903208][T11291]  kernel_init_freeable+0x5c7/0x900
[  497.908451][T11291]  kernel_init+0x1c/0x2b0
[  497.913032][T11291]  ret_from_fork+0x45/0x80
[  497.917571][T11291]  ret_from_fork_asm+0x1a/0x30
[  497.922366][T11291] page_owner free stack trace missing
[  497.927842][T11291] 
[  497.930356][T11291] Memory state around the buggy address:
[  497.936195][T11291]  ffff888143bf3700: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  497.944383][T11291]  ffff888143bf3780: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  497.952463][T11291] >ffff888143bf3800: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  497.960664][T11291]                    ^
[  497.964788][T11291]  ffff888143bf3880: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  497.973526][T11291]  ffff888143bf3900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  497.981799][T11291] ==================================================================
[  498.055481][T11291] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  498.062934][T11291] CPU: 0 UID: 0 PID: 11291 Comm: syz.2.1212 Not tainted 6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  498.073752][T11291] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  498.083864][T11291] Call Trace:
[  498.087274][T11291]  <TASK>
[  498.090242][T11291]  dump_stack_lvl+0x3d/0x1f0
[  498.094915][T11291]  panic+0x71d/0x800
[  498.098879][T11291]  ? __pfx_panic+0x10/0x10
[  498.103358][T11291]  ? preempt_schedule_thunk+0x1a/0x30
[  498.108803][T11291]  ? preempt_schedule_common+0x44/0xc0
[  498.114480][T11291]  check_panic_on_warn+0xab/0xb0
[  498.119755][T11291]  end_report+0x117/0x180
[  498.124140][T11291]  kasan_report+0xe9/0x110
[  498.128602][T11291]  ? force_devcd_write+0x317/0x330
[  498.133869][T11291]  ? force_devcd_write+0x317/0x330
[  498.139254][T11291]  force_devcd_write+0x317/0x330
[  498.144253][T11291]  ? __pfx_force_devcd_write+0x10/0x10
[  498.149778][T11291]  ? __debugfs_file_get+0x1ff/0x850
[  498.155019][T11291]  ? __pfx___debugfs_file_get+0x10/0x10
[  498.160602][T11291]  ? rcu_is_watching+0x12/0xc0
[  498.165402][T11291]  ? trace_lock_acquire+0x14e/0x1f0
[  498.170690][T11291]  full_proxy_write+0x13c/0x200
[  498.175671][T11291]  ? __pfx_full_proxy_write+0x10/0x10
[  498.181079][T11291]  vfs_write+0x24c/0x1150
[  498.185470][T11291]  ? __fget_files+0x1fc/0x3a0
[  498.190197][T11291]  ? __pfx___mutex_lock+0x10/0x10
[  498.195278][T11291]  ? __pfx_vfs_write+0x10/0x10
[  498.200198][T11291]  ? __fget_files+0x206/0x3a0
[  498.205044][T11291]  ksys_write+0x12b/0x250
[  498.209540][T11291]  ? __pfx_ksys_write+0x10/0x10
[  498.214449][T11291]  do_syscall_64+0xcd/0x250
[  498.219005][T11291]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  498.224997][T11291] RIP: 0033:0x7efd2078d169
[  498.229571][T11291] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  498.249228][T11291] RSP: 002b:00007efd21693038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  498.257858][T11291] RAX: ffffffffffffffda RBX: 00007efd209a6080 RCX: 00007efd2078d169
[  498.266134][T11291] RDX: 000000000000000e RSI: 0000000000000000 RDI: 000000000000000b
[  498.274122][T11291] RBP: 00007efd2080e2a0 R08: 0000000000000000 R09: 0000000000000000
[  498.282232][T11291] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  498.290250][T11291] R13: 0000000000000000 R14: 00007efd209a6080 R15: 00007ffea8205528
[  498.298363][T11291]  </TASK>
[  498.301746][T11291] Kernel Offset: disabled
[  498.306102][T11291] Rebooting in 86400 seconds..