last executing test programs:

28m4.371545979s ago: executing program 2 (id=400):
r0 = openat$auto_mon_fops_stat_usb_mon(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/usb/usbmon/19s\x00', 0x181080, 0x0)
close_range$auto(r0, r0, 0x241)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sysfs$auto(0x2, 0x4d, 0x0)
r1 = socket(0xa, 0x2, 0x88)
setsockopt$auto(r1, 0x11, 0xa, 0x0, 0x8)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55)
close_range$auto(r0, r0, 0x4)
sendmmsg$auto(0x3, 0x0, 0x3, 0x5e61)
socketpair$auto(0x1, 0x5, 0x8, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
socket(0x2b, 0x7, 0x40000)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(r0, r0, 0x3)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0x101000, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
capget$auto(0x0, 0xfffffffffffffffe)
capset$auto(0x0, &(0x7f0000000000)={0x3, 0x7, 0x8})
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_MAC802154_HWSIM_CMD_SET_EDGE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x86}, 0x4000841)
sendmmsg$auto(r0, &(0x7f0000000140)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x4, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0xfffffffd)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r3)
r4 = ioctl$auto_KVM_CREATE_VM(r2, 0xc028ae92, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_FTM_RESPONDER_STATS(r5, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="9c000000", @ANYRES16=r6, @ANYBLOB="000828bd7000fedbdf2582000000040044010800db00d4c77ee2ee0900000001b0c48a228e396b81f985e061d42b64fdf2a18cc8ac7f3a419da6498e9bb0ca762f07d22173f32ceaf1dfbb824e13db33ba4754b500bcc54360f1db92808db8e1c00464c6261cf161d8a6325016b194aa2a1f094f43301a3a8c6e81f41bc13671a3770c0327bb96cebd40ff7d3fdc1ec147786957228f9073", @ANYRES32=r4, @ANYBLOB="040034014700cd00a3b29b1ec853a88351e0db69ea40f4f5f7fcb6ef9e441724e6f95e24e4f9b3d70f4a18a334b16468483c3d4c7a15314ebf72f1175694a8ac113130ba37ff9d7168bd110008007e00ff0100000800a4000200000004006c0019000700a1f6c6ccc5f1b693d36d5cb3ccf65e971823fc484c000000"], 0x9c}, 0x1, 0x0, 0x0, 0x894}, 0x44)

28m3.848646552s ago: executing program 2 (id=403):
bpf$auto(0x0, &(0x7f0000000400)=@task_fd_query={0x6, 0x4, 0xfffffffa, 0xffffffff, 0x8, 0xc, <r0=>0x66b, 0x0, 0x1}, 0x6f4)
mmap$auto(0x0, 0x400, 0xdf, 0xeb1, 0x1272, 0x8000)
r1 = socket(0x1d, 0x2, 0x7)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'vcan0\x00', <r2=>0x0})
connect$auto(0x3, &(0x7f00000000c0)=@can={0x1d, r2}, 0x18)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0x4)
r3 = socket(0x1d, 0x2, 0x7)
close_range$auto(r0, r3, 0x8001)
r4 = socket(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000080)={'vcan0\x00'})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000180)={'vcan0\x00', <r5=>0x0})
connect$auto(0x3, &(0x7f00000018c0)=@can={0x1d, r5}, 0x18)
io_uring_setup$auto(0x6, 0x0)
getsockopt$auto(0xffffffffffffffff, 0x10f, 0x83, 0x0, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xffcc}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0xe, 0x940, 0x1ffde, 0x3, 0x2000000000000006, 0x3, 0x8, 0x5, 0x2, 0x7, 0x1, 0x9, 0x2, 0x3, 0x5, 0x7, 0x0, 0x0, 0x0, 0x0, 0x3bc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x10001]}, 0x1fe, 0x5)
close_range$auto(0x2, 0x8, 0x0)

28m3.052466264s ago: executing program 2 (id=404):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000000040), r0)
r2 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtd0\x00', 0x8000, 0x0)
r3 = fsopen$auto(0x0, 0x1)
fsconfig$auto(r3, 0x8, 0x0, 0x0, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_GINFO(r3, 0xc0f85403, &(0x7f0000000080)={{0x2, 0xfe, 0x5bd3, 0x1, 0x1}, 0xffff, 0x3, "0e3b69484fa1aceed910afce37014ae02a0c4d333fba265ff13af8b014a051ca1707707bb718358ad8b02126bb56567717f536b799b34a2b0e305abf723d192f", "9e920b68b99bbc18c416c4d7a6799e0b48398061017c381ef73c287860ede287461ce782e7c9c72474e3db10ccba5da90a4a757a32c82a293c507f41f0fd38f335137ba1fcc115db7a48b76ac6a36bf2", 0x8, 0x200, 0x7, 0xef34, 0x80000001, "7d99f0a01fa9b41d790c6caf9e845246c2e54ef724cd3cfd230c260f6c19128a"})
read$auto(r2, 0x0, 0x0)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000008080)={0x40, r1, 0x1b, 0x70bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0x10, 0x3, 0x0, 0x1, [@nested={0xc, 0x17, 0x0, 0x1, [@nested={0x4, 0x7f}, @generic="1047b707"]}]}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f1779048590828847"}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x40}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)

28m2.818248489s ago: executing program 2 (id=407):
close_range$auto(0x2, 0x8, 0x0) (async)
socket(0xa, 0x2, 0x0) (async)
socket(0x23, 0x80805, 0x0) (async, rerun: 64)
listen$auto(0x3, 0x83) (rerun: 64)
r0 = openat$auto_evm_xattr_ops_evm_secfs(0xffffffffffffff9c, &(0x7f0000000100), 0xa2400, 0x0) (async)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/net/rpc/nfs4.nametoid/channel\x00', 0x8f3b7a51b80ebd01, 0x0)
write$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000000040)="205c2020027e0dc0023af10e9bfa1babfa203753ca9a20370a", 0x19) (async)
r2 = socket(0x2, 0x3, 0xa45c) (async)
accept$auto(0x3, 0x0, 0x0) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0) (async, rerun: 32)
socket(0xa, 0x6, 0x0) (async, rerun: 32)
close_range$auto(0x0, 0x5, 0x0) (async)
prctl$auto(0x53564d41, 0x7, 0xffffffffffffffff, 0x3, 0x80000000f4ff) (async, rerun: 64)
msgsnd$auto(0xbb2, &(0x7f0000000000)={0x3, 0xfe}, 0x7, 0x2) (rerun: 64)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000002e00), 0xffffffffffffffff) (async, rerun: 64)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/controlC2\x00', 0x101082, 0x0) (async, rerun: 64)
r3 = openat$auto_proc_environ_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/self/environ\x00', 0x2000, 0x0)
read$auto_proc_environ_operations_base(r3, 0x0, 0x0) (async)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000002bc0)=""/82, 0x52) (async)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/bus/hid/drivers/viewsonic/unbind\x00', 0x32602, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000000080)=""/58, 0x3a) (async)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), r5)
madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r6, @ANYBLOB="01002bbd7000fcdb00000005190b2e000000c700a6cf21d008000000968e70c638000000767ab79700"], 0x1c}}, 0x4044820) (async)
pipe$auto(0x0)
fcntl$auto_F_GETLK(r2, 0x5, 0x7)
pipe$auto(0x0) (async)
tee$auto(r0, 0x3, 0x402, 0xd)

28m2.297048258s ago: executing program 2 (id=409):
r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0)
mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x8e051, r0, 0x0)
r1 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000040), 0x80000, 0x0)
ioctl$auto_UBI_IOCATT(r1, 0x40186f40, &(0x7f0000000080)={0xffffffff, 0x0, 0xf7d, 0x4, 0x1})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_OVS_DP_CMD_NEW(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010026bd7000fcdbdf250100000008000200", @ANYRES32=0x4, @ANYBLOB="080001002e53520008000200", @ANYRES32=0x9, @ANYBLOB="08000700040000005e7611ba00f95f72d01517f81675a3628ff2fa7f9b868c65d3e66cf48a26a55b675ecc66d03ed47dc2a041af1f3c53a838ed1c14fabc86f8ec1af5d2cce912c6f5aca21a5aa66b402dbb4943f3cc6871e9d44479641619226bf810ff26f474769f73e62dad17"], 0x34}, 0x1, 0x0, 0x0, 0x20000800}, 0x80)
bpf$auto(0xd, 0x0, 0x6f5)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
init_module$auto(0x0, 0xffff9, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x8000000000000000, 0x15)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r4 = socket(0x2b, 0x1, 0x0)
bind$auto(r0, &(0x7f0000000040)=@ethernet={0x1, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x35}}, 0x6a)
sendmmsg$auto(r4, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x80, 0xb}, 0x800009}, 0x5, 0x20000000)
sendmsg$auto_NL80211_CMD_DISASSOCIATE(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x60}, 0x1, 0x0, 0x0, 0x54}, 0x1)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000600)=ANY=[@ANYBLOB="8c326107d94ac0f9fb42391aac1221aa91087428636d6d558a822bbbdd9615c6c2da8bfe5a768263ab3869b08da1167d7bc8653afa2039d085ac77c61447e9b1197b800cb9455b02bcd56a0c793d77f11e88d5527d5292a82f3f9e3ccc5691a6e5cc2b5656c96e6e322429961f6882ed0db6d51043f0b1f05d2853e8e29bf6d112c99af8bca25031e59470df3f9e08dee9", @ANYRES16=r2, @ANYRES32], 0xc8}, 0x1, 0x0, 0x0, 0x200009c4}, 0x20058894)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=ANY=[@ANYBLOB="18000000", @ANYBLOB='v\x00'], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000)
r5 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r5, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
read$auto(0x3, 0x0, 0xfdef)
write$auto(0x3, 0x0, 0xfffffdef)
openat$auto_btrfs_ctl_fops_super(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x20006, 0x4000000000dd, 0x14, 0x6, 0x8000)
statmount$auto(0x0, &(0x7f0000000400)={0x8, 0x0, 0x9, 0x2, 0x2c, 0x940, 0x1ffde, 0x3, 0x6, 0x2, 0x9, 0x5, 0x2, 0x4, 0xb0, 0x7, 0x2, 0x3, 0x5, 0x7, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x4]}, 0x1fe, 0x7fffffff)
r6 = openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/usb/usbmon/9t\x00', 0x0, 0x0)
read$auto_mon_fops_text_t_mon_text(r6, 0x0, 0x0)
sendfile$auto(0x6, 0x3, 0x0, 0x8000)

27m59.819292646s ago: executing program 2 (id=424):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
ioctl$auto_dvb_demux_fops_dmxdev(0xffffffffffffffff, 0x403c6f2b, 0x0) (async, rerun: 32)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/pnp0/00:01/options\x00', 0x0, 0x0) (rerun: 32)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
sysfs$auto(0x2, 0x3f, 0x0) (async)
r1 = fsopen$auto(0x0, 0x1)
fsconfig$auto(r1, 0x8, 0x0, 0x0, 0x0) (async)
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio1\x00', 0x20b42, 0x0) (async)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) (async)
r3 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
read$auto(r3, 0x0, 0x1f40)
r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r4, &(0x7f0000000240)={0x0, 0x7}, 0x3) (async)
shmctl$auto_SHM_UNLOCK(0x2, 0xc, 0x0) (async)
write$auto(0xffffffffffffffff, 0x0, 0x3) (async, rerun: 64)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/system/node/node1/hugepages/hugepages-1048576kB/demote\x00', 0x183841, 0x0) (rerun: 64)
write$auto(r5, &(0x7f0000000080)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbbOO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(', 0x4) (async)
write$auto(r2, 0x0, 0x100085)
sendmsg$auto_NLBL_CALIPSO_C_LISTALL(r1, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x34, 0x0, 0x10, 0x70bd27, 0x25dfdbfc, {}, [@NLBL_CALIPSO_A_MTYPE={0x8, 0x2, 0x40}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x9415}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0xfff}, @NLBL_CALIPSO_A_MTYPE={0x8, 0x2, 0x40}]}, 0x34}}, 0x0)
write$auto(r0, &(0x7f0000000140)='/sys/devices/pnp0/00:01/options\x00', 0x7ff) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) (async)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000100)={{0x0, 0x4, 0x0, 0x2, 0x0, 0x20000}, 0x4}, 0x1f8, 0xb07e)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) (async, rerun: 64)
read$auto(0x3, 0x0, 0x1f40) (rerun: 64)
close_range$auto(0x2, 0x8, 0x0) (async, rerun: 32)
mmap$auto(0x0, 0x200006, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) (async, rerun: 32)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0)
io_uring_setup$auto(0x1, 0x0)

27m44.553412169s ago: executing program 32 (id=424):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
ioctl$auto_dvb_demux_fops_dmxdev(0xffffffffffffffff, 0x403c6f2b, 0x0) (async, rerun: 32)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/pnp0/00:01/options\x00', 0x0, 0x0) (rerun: 32)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
sysfs$auto(0x2, 0x3f, 0x0) (async)
r1 = fsopen$auto(0x0, 0x1)
fsconfig$auto(r1, 0x8, 0x0, 0x0, 0x0) (async)
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio1\x00', 0x20b42, 0x0) (async)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) (async)
r3 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
read$auto(r3, 0x0, 0x1f40)
r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r4, &(0x7f0000000240)={0x0, 0x7}, 0x3) (async)
shmctl$auto_SHM_UNLOCK(0x2, 0xc, 0x0) (async)
write$auto(0xffffffffffffffff, 0x0, 0x3) (async, rerun: 64)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/system/node/node1/hugepages/hugepages-1048576kB/demote\x00', 0x183841, 0x0) (rerun: 64)
write$auto(r5, &(0x7f0000000080)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbbOO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(', 0x4) (async)
write$auto(r2, 0x0, 0x100085)
sendmsg$auto_NLBL_CALIPSO_C_LISTALL(r1, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x34, 0x0, 0x10, 0x70bd27, 0x25dfdbfc, {}, [@NLBL_CALIPSO_A_MTYPE={0x8, 0x2, 0x40}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x9415}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0xfff}, @NLBL_CALIPSO_A_MTYPE={0x8, 0x2, 0x40}]}, 0x34}}, 0x0)
write$auto(r0, &(0x7f0000000140)='/sys/devices/pnp0/00:01/options\x00', 0x7ff) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) (async)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000100)={{0x0, 0x4, 0x0, 0x2, 0x0, 0x20000}, 0x4}, 0x1f8, 0xb07e)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) (async, rerun: 64)
read$auto(0x3, 0x0, 0x1f40) (rerun: 64)
close_range$auto(0x2, 0x8, 0x0) (async, rerun: 32)
mmap$auto(0x0, 0x200006, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) (async, rerun: 32)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0)
io_uring_setup$auto(0x1, 0x0)

22m58.485208194s ago: executing program 1 (id=1230):
syz_open_procfs$namespace(0x0, 0x0)
r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0)
ioctl$auto(r0, 0x5522, 0xf15)
ioctl$auto(r0, 0x5523, r0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xffffffff, 0x0)

22m57.277564363s ago: executing program 1 (id=1231):
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x2000, 0x0)
poll$auto(&(0x7f0000000040)={0x3, 0x1, 0x5}, 0x5, 0x80000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x9)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/dummy_hcd.1/usb2/2-0:1.0/bAlternateSetting\x00', 0x80000, 0x0)
read$auto(r1, 0x0, 0x20)
r2 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000680)='/dev/v4l-subdev0\x00', 0x20281, 0x0)
ioctl$auto(r2, 0xc040563e, r0)
semtimedop$auto(0x9, 0x0, 0x0, &(0x7f0000000040)={0x4, 0x1})
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x40008000)
pipe$auto(&(0x7f0000001480))
sendmsg$auto_NL80211_CMD_NOTIFY_RADAR(0xffffffffffffffff, 0x0, 0x1)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0x1ff7f}, 0x6)
mmap$auto_vmwgfx_driver_fops_vmwgfx_drv(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x1000004, 0x30, 0xffffffffffffffff, 0x8000000000000000)
ioctl$auto_PPPIOCSMRU(0xffffffffffffffff, 0x40047452, &(0x7f0000000080)=0x7)
signalfd4$auto(0xffffffffffffffff, 0x0, 0x8, 0xfffffffc)
ioperm$auto(0x90d5, 0xc, 0x2)
syz_clone3(&(0x7f00000004c0)={0x11200cd00, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58)
clock_settime$auto(0x0, &(0x7f0000000000)={0x7c, 0x101})
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x7ffc)
r3 = openat$auto_check_wx_fops_(0xffffffffffffff9c, &(0x7f00000001c0), 0x310000, 0x0)
pread64$auto(r3, 0x0, 0x5, 0x5)
futex_waitv$auto(&(0x7f0000000300)={0x0, 0x4, 0x2}, 0x1, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
open(0x0, 0x2a4c0, 0x20)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/thread-self/maps\x00', 0x840, 0x0)

22m55.70723809s ago: executing program 1 (id=1237):
set_mempolicy$auto(0x3, &(0x7f0000000000)=0x7, 0x9)
mmap$auto(0x0, 0x3, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0)
r1 = ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, 0x0)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x48140, 0x0)
readv$auto(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x5}, 0x200)
mbind$auto(0x0, 0x100000004, 0x100000003, 0x0, 0x6, 0x2)
ioctl$auto_TIOCVHANGUP2(r2, 0x5437, 0x0)
mmap$auto(0x0, 0x2020007, 0x3, 0xeb1, r1, 0x8000)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0x1010001, 0x100000003)
read$auto(r3, 0x0, 0x20)
futex$auto(0x0, 0x84, 0x1, 0x0, 0x0, 0x401)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x1c1800, 0x0)
get_robust_list$auto(0x1, 0x0, 0x0)
r4 = socket(0x2, 0x3, 0x1)
getsockopt$auto_SO_DEBUG(r4, 0xff, 0x1, 0x0, 0x0)

22m54.133385261s ago: executing program 1 (id=1241):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2b, 0x1, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0xa, 0x801, 0x84)
socket(0x11, 0x3, 0x9)
r0 = openat$auto_btrfs_dir_file_operations_inode(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000010c0), 0xffffffffffffffff)
sendmsg$auto_CTRL_CMD_GETPOLICY(r1, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010325bf7040ff00df250a0000000c000200657468746f6f6c00"], 0x20}, 0x1, 0x0, 0x0, 0x20000800}, 0xc040810)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), r1)
ioctl$auto_FS_IOC_MEASURE_VERITY(r0, 0xc0046686, &(0x7f00000001c0)={0x0, 0x1ff, "50ef0725328d01ea09dc1676165a271b5d828ded6bc52d658c25c7acb6e99fc6f9c0f7d4ce7dc9c6789b6b067eac15ad2d9316ecb2cbed45ab67812dbd5584ef3e2b383c19180daf3e9c72086f35635a0f40f239d6bf7de8cc20b284f38c1341411c3d83bd282b254354170813abd87471c69884565d3151d8dca53f67184bd50f89429e9e1700ca9ff641879ce519159a387da19401eb82fcdb8198fc52371826326cf1a7e0fe841362b226789feb2edc611264afb1769a33054329be656bb5b0591959f2f623712e447c46a5cab213c626"})
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, 0x0, 0x1, 0x0)
pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x89/s\x1cJ\x99\x00:\x00!\r?\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2\x00'/97, 0xe, 0x3)
sendmsg$auto_OVS_METER_CMD_SET(0xffffffffffffffff, 0x0, 0x880)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0x200007, 0x19)
select$auto(0x3, 0x0, 0x0, 0x0, 0x0)
syslog$auto(0x2, &(0x7f0000000000)='-#:\x00[\xda\xe2\xc3L\xd30{Q\xecvP\x93\x87\x1e\xdd\x95\x1b\x19qI\vv\xacO*X0V\x93\x85\xff\xb2\xdd\xd8\xd5Kh\xfa\xa3\xc7\x9b}\xec\x1e\xdc\x80\x1fR\xc30\x9a\xae\\\'\x14\x98\x98\xc3iDv\x97\xdfTMt\xe5?\xd0\xcc\xb8\xfa\a\x7f\x7f\x00\x00\x00\x00\x00\x00\x00n_\xb1\x1c\x7f\xb0y\xec\xe2\xcc\x1a/\xfa{d\xe4BN\x9c\xb9\x87.\xfe\xe7&1j\xe6]\xc3\x9anE6\x81\xe4\xec\xfa\xefE\xf7\x17h\xf4pumR\xd55Dd(\x0f(b\x1aD\xf4\x03\xc3\\\xdf\x8f\xa8\x82\xab\x102\xd1\xaf\xcaT\x86\x171\x11Q4\x94\x9d\xf5\x9c\xe3\xaa\xf3\xd26i\xf9\xb2\xd9T\xc9\xfd\xba\x91^\x19\x95\xde\xbc \xa8\x98\xc3\xed\xe9,{\xd4\xa1\xe4p\xcf\b\f\xb4\xbe_\xf2\xbe\xef\v\xf1d\xdd\x0e\xfc\xc3\xeaqt\x94\xe7\xce\xf1\xc5\x94~\xf6Cx\x0e\x98\xc7gE>*\x9c%\xa0\\\x14\t\tv.\x1c\x1a\xf1\xba\xc0>\xf4Hc\xc3\xfa\x033\x8f\xb9(\n/\xcdo\xc2', 0xcf)
close_range$auto(0x2, 0x8, 0x0)
clone$auto(0x1002, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x9)
sysfs$auto(0x2, 0x100000000000036, 0x0)
fsopen$auto(0x0, 0x1)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)

22m52.178637913s ago: executing program 1 (id=1246):
mmap$auto(0x1b18, 0x4, 0x2000000df, 0xeba, 0x401, 0x8000)
clock_nanosleep$auto(0x9, 0x0, &(0x7f0000000000)={0x0, 0x200}, 0x0)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000)
socket(0x2b, 0x1, 0x1)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f00000000c0)=""/17, 0x11)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-touch0\x00', 0xe0800, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
syz_genetlink_get_family_id$auto_taskstats(&(0x7f0000000100), r1)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0x10001, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xe5b2]}, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x1000, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0)
sendto$auto(0xffffffffffffffff, &(0x7f0000000480)="9bb9d4b346d5aaae67fe300fd8c0b0c941bb07fd74c160465854c660d80d1b3678b39749221427f9faedd24c3d3ed6b5850d890493f1ef537be05ec113201a8260e43bdb18ba2637c993ab2b12826b59eff30be9cd6fefa80de4601a420001c1f1c037c4b6109633c4764c019fffb8b29dc54d19fb95bf80e078198173853ea2b6882ac18ec68f9a8fe800c79e17f83831f11848b55e41b37c744fd74b4da03896002060be0a183ce35f73cefc86bf7f7673a30792a933c1aed50d126350777162bc9b1ab151d32d0e1f50f56cf3f516f08170b7c5", 0x7fffffff, 0xa, 0x0, 0x10001)
r2 = socket(0x10, 0x2, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0xb, 0x5, 0x1ffde, 0x3, 0x6, 0x2, 0x9, 0x5, 0x20000000003, 0x5, 0xb0, 0x7, 0x2, 0x3, 0x5, 0x7, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000000000476, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8]}, 0x1fe, 0x81)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x800}, 0x40000)
sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0xc20f0000, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x8)
r3 = syz_genetlink_get_family_id$auto_handshake(&(0x7f0000000800), r2)
sendmsg$auto_HANDSHAKE_CMD_DONE(r2, &(0x7f0000000900)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000008c0)={&(0x7f0000000840)={0x64, r3, 0x400, 0x70bd26, 0x25dfdbfd, {}, [@HANDSHAKE_A_DONE_STATUS={0x8, 0x1, 0xfffffffa}, @HANDSHAKE_A_DONE_STATUS={0x8, 0x1, 0x1000}, @HANDSHAKE_A_DONE_SOCKFD={0x8, 0x2, r2}, @HANDSHAKE_A_DONE_STATUS={0x8, 0x1, 0x2}, @HANDSHAKE_A_DONE_STATUS={0x8, 0x1, 0x4}, @HANDSHAKE_A_DONE_REMOTE_AUTH={0x8}, @HANDSHAKE_A_DONE_REMOTE_AUTH={0x8, 0x3, 0xbe32}, @HANDSHAKE_A_DONE_STATUS={0x8}, @HANDSHAKE_A_DONE_REMOTE_AUTH={0x8, 0x3, 0x1ff}, @HANDSHAKE_A_DONE_SOCKFD={0x8, 0x2, r2}]}, 0x64}, 0x1, 0x0, 0x0, 0x4}, 0x20000000)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000003680)={'wlan0\x00'})
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x129800, 0x0)

22m50.944430915s ago: executing program 1 (id=1250):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fb1\x00', 0x42a00, 0x0)
socket(0x2, 0x6, 0x0)
sysfs$auto(0x2, 0x0, 0x0)
epoll_create$auto(0x4)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
epoll_ctl$auto(0x5, 0x1, r0, 0x0)
r1 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000100)='/proc/kpageflags\x00', 0x2, 0x0)
read$auto(0x3, 0x0, 0x80)
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
fcntl$auto_F_SETLK(r2, 0x6, 0x0)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
r3 = openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
write$auto_qrtr_tun_ops_tun(r3, &(0x7f0000000300)="01000000d80746ebe4fa29705e2e654014f2bc90628546cda7e9ce67b7d2ab52b096b449a312a437bac96a8cbd5f23dc7bf6f14d15f2f273c36ef21cef7aeb39937ef4ea2f4dd48bc81624c1ed60c83c39ba4d4ebee5b273c9888dbd978927b4b89795bcfc7ce379345bea07636878f456f4e82905ddfef781fbf9825f22c3d1af4a2295e2fad62ed1a9fa2db5eff40233560c88004511ae", 0x98)
r4 = socket(0x2, 0x6, 0x0)
ioctl$auto(r4, 0x8919, 0x24)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
chmod$auto(0x0, 0x4)
ioctl$auto(r1, 0x400454ca, 0x38)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
epoll_ctl$auto(0x5, 0x3, r0, 0x0)

22m35.471991395s ago: executing program 33 (id=1250):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fb1\x00', 0x42a00, 0x0)
socket(0x2, 0x6, 0x0)
sysfs$auto(0x2, 0x0, 0x0)
epoll_create$auto(0x4)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
epoll_ctl$auto(0x5, 0x1, r0, 0x0)
r1 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000100)='/proc/kpageflags\x00', 0x2, 0x0)
read$auto(0x3, 0x0, 0x80)
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
fcntl$auto_F_SETLK(r2, 0x6, 0x0)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
r3 = openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
write$auto_qrtr_tun_ops_tun(r3, &(0x7f0000000300)="01000000d80746ebe4fa29705e2e654014f2bc90628546cda7e9ce67b7d2ab52b096b449a312a437bac96a8cbd5f23dc7bf6f14d15f2f273c36ef21cef7aeb39937ef4ea2f4dd48bc81624c1ed60c83c39ba4d4ebee5b273c9888dbd978927b4b89795bcfc7ce379345bea07636878f456f4e82905ddfef781fbf9825f22c3d1af4a2295e2fad62ed1a9fa2db5eff40233560c88004511ae", 0x98)
r4 = socket(0x2, 0x6, 0x0)
ioctl$auto(r4, 0x8919, 0x24)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
chmod$auto(0x0, 0x4)
ioctl$auto(r1, 0x400454ca, 0x38)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
epoll_ctl$auto(0x5, 0x3, r0, 0x0)

6m25.33230136s ago: executing program 5 (id=4040):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000000640)={0x0, 0x2f, &(0x7f0000000600)={&(0x7f0000000180)=ANY=[@ANYBLOB=' \x000\x00', @ANYRES16=r1, @ANYBLOB="036c25bd7000fddbdf2504006a00080017000200000004001d00"], 0x20}, 0x1, 0x0, 0x0, 0x404c884}, 0x64004890)

6m25.086380509s ago: executing program 5 (id=4042):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000000), 0x12, 0x0, 0x4, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x3)
write$auto(0x3, 0x0, 0xfdf3)
recvmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x3, &(0x7f0000000100)={0x0, 0xcc98}, 0x3, 0x0, 0xab15, 0xfffffffb}, 0x89}, 0x100, 0x1360, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
mmap$auto(0x0, 0x400004, 0xdf, 0x13, 0x2, 0x40)
mremap$auto(0x4000, 0xb8, 0x13fd4, 0x3, 0x10000)
move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2)

6m23.253669977s ago: executing program 5 (id=4046):
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mremap$auto(0x4000, 0xb8, 0x13fd4, 0x3, 0x10000)
r0 = openat$auto_tracing_cpumask_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/tracing_cpumask\x00', 0xa000, 0x0)
mmap$auto(0x81, 0xffffffffffff8ec6, 0x1000, 0x12, r0, 0x5)
move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2)

6m22.647102257s ago: executing program 5 (id=4048):
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
syz_clone3(&(0x7f0000000300)={0x13a00c000, 0x0, 0x0, 0x0, {0x3c}, 0x0, 0x0, 0x0, &(0x7f00000002c0)=[0x0], 0x1}, 0x58)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc2481, 0x0)
acct$auto(0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
getrandom$auto(0x0, 0x6000000, 0x3)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
madvise$auto(0x0, 0x20499d, 0x9)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, 0x0, 0xc0)
close_range$auto(0x2, 0x8, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
mremap$auto(0x0, 0x4, 0x3fd6, 0x3, 0x20000000)
syz_clone(0x0, 0x0, 0x57, 0x0, 0x0, 0x0)
munmap$auto(0x8000, 0xffffffff)
openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x400, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyua\x00', 0x20a04, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
poll$auto(&(0x7f0000000080)={0x3, 0x1, 0xa}, 0x5, 0x106)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x16, &(0x7f00000000c0)="6916cf7f5534290a29da5b0c615c7c5b6e3668e51be39c64645c4bc13fdc6fdcd0baf7555be00a974afa18bc7090ddc7468312d9430aa90082d4e4312cdb40d41b88d620b56f767217f9445b47dc24e38b546f674d1cc5b87d53e638c70149", 0x1)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x72d1c3, 0x0)

6m20.821255073s ago: executing program 5 (id=4051):
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
r0 = openat$auto_tracing_iter_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/tracing/trace_options\x00', 0x40000, 0x0)
write$auto(0xca, &(0x7f0000000280)='\x04>2\x1b!\xe2\x00\x94\xf2\xa2\x00\x00z\x0e\x8d\xea!\xbc\xf8*\x84(rw\xee\x9c\xb4,\xdaW\x0f\xef7\xbf\n|\x9a\xd9\xc3\xe7%\xeb\x1b\xd0\xc4\xc0\xae\xf6\xdf\x90,\x84\x12o4\a\x87\xe6\xe6\x17t\xb3<\xed\x91*\x8a#\x938D\xb6s\x9f\x14\xd4\x97\fY\xad5\xf5\xe9Iv\xe0\xd9\xfd\xff\x02idN\x94\x81\xc3\xa6\xb1\x11pM-><C_\xaf,\x18\xc2\xf5\xd4E\xc2\xc7\xbf\xeaA\xe4\x01\x00\xdf\xfc\x9e\xb9\xe7\xd1\xe9az\xa2\xe1\xb7%v\x18\v\xf9n\x8d\xab)\xa6\x18x<\xeb\x800X\xfa\xe94\x9frA-', 0x7e)
mmap$auto(0x0, 0x4, 0xffb, 0x8000000008012, 0x3, 0x0)
listen$auto(r0, 0x3)
poll$auto(0x0, 0x6, 0x8)
socketpair$auto(0x20, 0x5, 0x4000, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = open(0x0, 0x7ffd, 0x12)
pwrite64$auto(0xffffffffffffffff, 0x0, 0x6, 0x8)
mmap$auto(0x0, 0x1ff, 0xe5, 0x200000810, r1, 0x8000)
madvise$auto(0x0, 0x200007, 0x19)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x9, 0x3)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
read$auto(0x3, 0x0, 0x80)
io_uring_setup$auto(0x406, 0x0)
mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0)
getrandom$auto(0x0, 0x6000000, 0x3)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
io_uring_enter$auto(0x3, 0xa84, 0x80000001, 0xa, 0x0, 0x46)
move_pages$auto(0x0, 0xa, 0x0, 0x0, 0x0, 0x2)

6m18.812992361s ago: executing program 5 (id=4055):
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6)
r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
getdents$auto(r0, 0x0, 0x3)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1)
vmsplice$auto(0x1, &(0x7f0000000000)={0x0, 0x5}, 0x6, 0x8)
shutdown$auto(0x200000003, 0x2)
recvmmsg$auto(0x3, 0x0, 0x86873cc1, 0xa, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0x16, 0x401, 0x8000)
mmap$auto(0x80000003, 0x6, 0x1, 0x13, 0xffffffffffffffff, 0x8)
ioctl$auto_MON_IOCX_MFETCH(0xffffffffffffffff, 0xc0109207, &(0x7f0000000100)={0x0, 0x2000004, 0x7})

6m3.68577211s ago: executing program 34 (id=4055):
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6)
r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
getdents$auto(r0, 0x0, 0x3)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1)
vmsplice$auto(0x1, &(0x7f0000000000)={0x0, 0x5}, 0x6, 0x8)
shutdown$auto(0x200000003, 0x2)
recvmmsg$auto(0x3, 0x0, 0x86873cc1, 0xa, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0x16, 0x401, 0x8000)
mmap$auto(0x80000003, 0x6, 0x1, 0x13, 0xffffffffffffffff, 0x8)
ioctl$auto_MON_IOCX_MFETCH(0xffffffffffffffff, 0xc0109207, &(0x7f0000000100)={0x0, 0x2000004, 0x7})

11.021424656s ago: executing program 4 (id=5872):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/pci0000:00/0000:00:03.0/resource\x00', 0xa00, 0x0) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/pci0000:00/0000:00:03.0/resource\x00', 0xa00, 0x0)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
socket(0x1d, 0x80000, 0x8)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_safesetid_gid_file_fops_securityfs(0xffffffffffffff9c, 0x0, 0x182, 0x0) (async)
openat$auto_safesetid_gid_file_fops_securityfs(0xffffffffffffff9c, 0x0, 0x182, 0x0)
sendmsg$auto_NL802154_CMD_SET_PAN_ID(0xffffffffffffffff, 0x0, 0x20000010)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
mmap$auto(0x0, 0x10000, 0x4000000000db, 0xeb1, 0x2, 0x8000) (async)
mmap$auto(0x0, 0x10000, 0x4000000000db, 0xeb1, 0x2, 0x8000)
read$auto(r0, 0x0, 0x20)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) (async)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
mmap$auto(0x0, 0x8, 0x3, 0x9b72, 0x2, 0x8000)
sysfs$auto(0x2, 0x10000000000000b, 0x0) (async)
sysfs$auto(0x2, 0x10000000000000b, 0x0)
madvise$auto(0x0, 0x5, 0x15)
mmap$auto(0x1f, 0xfffffffffffffffa, 0x5, 0x9b72, 0x2, 0x8000)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop1\x00', 0x80600, 0x0)
ioctl$auto_BLKIOMIN(r2, 0x1278, 0x0) (async)
ioctl$auto_BLKIOMIN(r2, 0x1278, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0xe0180, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/bus/scsi/drivers/st/fixed_buffer_size\x00', 0x0, 0x0)
read$auto(r4, 0x0, 0x3)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/fs/cifs/smbd_keep_alive_interval\x00', 0x48045, 0x0) (async)
r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/fs/cifs/smbd_keep_alive_interval\x00', 0x48045, 0x0)
write$auto(r5, 0x0, 0x6)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) (async)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)

10.005199557s ago: executing program 4 (id=5876):
mmap$auto(0x0, 0xc41a, 0xdf, 0xeb1, 0xffffffffffffffff, 0x0)
r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0)
semctl$auto_GETVAL(0xda8, 0x10, 0xc, 0x800)
read$auto(r1, 0x0, 0x20)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000100), r2)
sendmsg$auto_NL802154_CMD_GET_SEC_LEVEL(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1c00c069da9f8f966246e4", @ANYRES16=r3, @ANYBLOB="010f2cbd7000ffdbdf251f00000008002100f9ffffff"], 0x1c}, 0x1, 0x0, 0x0, 0x24040085}, 0x40)
writev$auto(r0, &(0x7f0000000200)={0x0, 0x7}, 0x3)
openat$auto_rts_threshold_ops_(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/ieee80211/phy12/rts_threshold\x00', 0x20000, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x40141, 0x0)

8.890548641s ago: executing program 4 (id=5879):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
r0 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000080), 0x48180, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000280)={{0x3, 0x1000, 0x1, 0x1, 0x8}, "654c6dbc7a4d30983899a7e1325b6a29ba1e184410ba9f74e82a3fa6c3ccf1bf"})
ioctl$auto_SNDRV_TIMER_IOCTL_INFO(r0, 0x80e85411, &(0x7f00000002c0)={0x7fe3, 0x6, "b908674cfda2f7f351c66f681b0cf4a6f675fcee96065fdca6f219ea386de55097e14dbb38e0462dd9d44d7c6c55e2a5937efe361800", "3b6e33d493a9c79b3387938d612ceab5a4a20e605cd0842aa149397ff8063b45d44f8ce95fa39df1e5e1fc5e51f00fa2dfcc38c9b1ef6596b9e746f5e48ac07048156ea6be1e1ca5d281c7bb11333d0f", 0x397, 0x3, "d3bc655e384df871894a5771758ff164f2cd8098ac193333046911421bc3f1a0cf5d0300000000000000a9001fa7efb0600cc93b5b84a000"}) (async)
socket(0xb, 0x800, 0x8) (async)
mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0x24b7}, 0x8, 0x0, 0x4000000000007, 0xa505}, 0x800}, 0x4, 0x6) (async)
r1 = socket(0x2, 0x6, 0x0) (async)
r2 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) (async)
recvmmsg$auto(r2, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0) (async)
ioctl$auto(r1, 0x8915, 0x24) (async)
openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/events/vmalloc/filter\x00', 0x8801, 0x0)
r3 = socket(0x11, 0x3, 0x9) (async)
r4 = socket$nl_generic(0x10, 0x3, 0x10) (async)
mmap$auto(0x0, 0x2020007, 0xffffffffffffffff, 0xeb1, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8, 0x0) (async)
r5 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000240), r3)
sendmsg$auto_L2TP_CMD_SESSION_GET(r4, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000280)={&(0x7f00000003c0)=ANY=[@ANYBLOB="480000d34fdec794928ce755e810e764468000000000000000d3079e00", @ANYRES16=r5, @ANYBLOB="000329bd7000ffdbdf2508000000050012000500000006001b004e2100000800090001000000060001000500000005000500070000000c000f000600000000000000"], 0x48}, 0x1, 0x0, 0x0, 0x40000}, 0x200000c0) (async)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x2c201, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) (async)
pipe$auto(0x0) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xebd, r4, 0x6)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[], 0x1ac}}, 0x801) (async)
open(&(0x7f0000000140)='./file0\x00', 0x381000, 0x10f)
socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_OVS_FLOW_CMD_GET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010029bd7000fedbdf2503000000040008000c00018008001000040010"], 0x24}, 0x1, 0x0, 0x0, 0x40010}, 0x800) (async)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) (async)
dup2$auto(0x5, 0x4)

8.448701857s ago: executing program 6 (id=5880):
openat$auto_full_fops_mem(0xffffffffffffff9c, &(0x7f0000000040), 0x10000, 0x0)
mmap$auto(0x0, 0x20008, 0x84, 0x100000000007fff, 0x2, 0x8001)
r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
close_range$auto(0x0, r0, 0x4000000000002)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = openat$auto_udmabuf_fops_udmabuf(0xffffffffffffff9c, &(0x7f0000000000), 0x20100, 0x0)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0)
read$auto(r3, 0x0, 0x20)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3)
ioctl$auto_UDMABUF_CREATE(r1, 0x40187542, &(0x7f00000000c0)={0xffffffffffffffff, 0x4, 0x0, 0x10000000008000})
openat$auto_xfs_dir_file_operations_xfs_file(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/mac80211_hwsim/hwsim13\x00', 0x440200, 0x0)
r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000640)='/dev/loop4\x00', 0x82, 0x0)
r5 = setfsuid$auto(0xee00)
r6 = setfsuid$auto(0xee01)
setresuid$auto(r5, r6, r5)
ioctl$auto_IOC_PR_RESERVE(r4, 0x401070c9, 0x0)

8.049136857s ago: executing program 4 (id=5883):
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000100)='/proc/kpageflags\x00', 0x2, 0x0)
read$auto(0x3, 0x0, 0x80)
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$auto_VHOST_SET_OWNER(r1, 0xaf01, 0x5)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/vulnerabilities/mmio_stale_data\x00', 0x0, 0x0)
socket(0x1d, 0x4, 0x3a)
mmap$auto(0x0, 0xdb81, 0x3, 0x40eb1, 0xffffffffffffffff, 0x300000000000)
r2 = io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x5, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
fanotify_init$auto(0x5, 0x2000000000002)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0x1c1200, 0x0)
ioctl$auto(r3, 0x2, 0x9)
ioctl$auto(r2, 0x400c4d06, r3)
rt_sigaction$auto(0x1, &(0x7f00000001c0)={&(0x7f0000000080)=0x0, 0x7fffffffffffffff, 0x0, {0x5}}, 0x0, 0x8)
bind$auto(0x3, &(0x7f0000000080)=@generic={0x2c, "68194373648c8cf4466903937bcc"}, 0x6b)
r4 = gettid()
rt_sigqueueinfo$auto(r4, 0x1, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x6)
close_range$auto(0x2, 0x8000, 0x0)
open(0x0, 0xa22c0, 0x155)
open(0x0, 0xa240, 0x1de)
socketpair$auto(0x1e, 0x1, 0xb4d, 0x0)
ioctl$auto(r1, 0x4008af03, r1)

7.355474959s ago: executing program 6 (id=5885):
r0 = socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r1 = socket(0x2c, 0x3, 0x0)
r2 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'hsr0\x00', <r3=>0x0})
sendmsg$auto_OVS_VPORT_CMD_NEW(r0, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x30, r2, 0x800, 0x70bd2b, 0x25dfdbfe, {}, [@OVS_VPORT_ATTR_NETNSID={0x8, 0x9, 0x7fff}, @OVS_VPORT_ATTR_IFINDEX={0x8, 0x8, r3}, @OVS_VPORT_ATTR_UPCALL_STATS={0x4, 0xa, 0x0, 0x1, [@generic]}, @OVS_VPORT_ATTR_NETNSID={0x8, 0x9, 0x80}]}, 0x30}, 0x1, 0x0, 0x0, 0x841}, 0x88c2)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/ipv6/neigh/nlmon0/retrans_time_ms\x00', 0x200, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
socket(0x10, 0x2, 0x0) (async)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) (async)
socket(0x2c, 0x3, 0x0) (async)
syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000040), 0xffffffffffffffff) (async)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'hsr0\x00'}) (async)
sendmsg$auto_OVS_VPORT_CMD_NEW(r0, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x30, r2, 0x800, 0x70bd2b, 0x25dfdbfe, {}, [@OVS_VPORT_ATTR_NETNSID={0x8, 0x9, 0x7fff}, @OVS_VPORT_ATTR_IFINDEX={0x8, 0x8, r3}, @OVS_VPORT_ATTR_UPCALL_STATS={0x4, 0xa, 0x0, 0x1, [@generic]}, @OVS_VPORT_ATTR_NETNSID={0x8, 0x9, 0x80}]}, 0x30}, 0x1, 0x0, 0x0, 0x841}, 0x88c2) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) (async)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/ipv6/neigh/nlmon0/retrans_time_ms\x00', 0x200, 0x0) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000) (async)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) (async)

6.628991173s ago: executing program 6 (id=5886):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = socket(0x23, 0x80805, 0x0)
capset$auto(0x0, 0x0)
socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x6, 0xdf, 0x400009b72, 0x2, 0x80000000)
socket(0x2, 0x1, 0x106)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
socket(0x15, 0x5, 0x0)
r1 = openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/psaux\x00', 0x2, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
write$auto_mousedev_fops_mousedev(r1, &(0x7f00000000c0)="13", 0x1)
mincore$auto(0x0, 0x10000, 0x0)
poll$auto(&(0x7f0000000040)={<r2=>r0, 0x7, 0x8}, 0x80, 0x400400)
setsockopt$auto(r2, 0x113, 0x1, 0x0, 0x81)
r3 = getpid()
pidfd_open$auto(r3, 0x0)
timer_create$auto(0x3, &(0x7f0000000000)={@sival_int=0xc, @raw=0x4, 0x7, @_tid=r3}, &(0x7f0000000080)=0x9)

6.211466403s ago: executing program 4 (id=5888):
syz_genetlink_get_family_id$auto_macsec(0x0, 0xffffffffffffffff)
r0 = socket(0x1e, 0x1, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1]}, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000004400)='/dev/dsp1\x00', 0x1, 0x0)
ioctl$auto_TIOCSETD2(r2, 0x5423, &(0x7f0000000500)="4f80058983c23d01e91f8c73f1a56eee02fabdd698a6dd488a607df72df1a2b40b597d276e38bfbad2ed1b3ed4ff794ad53336a4cd693fa8a2b3da2d871c993e74c02adc814b979c249c3c58e020256d2bfca045bd6b09f0a1bb42846cae7edec730e811b0888df7f1018f2b91cf85845ea8b582ac9775a01a22de99cfac86ef1507cc4d35036dc8d8d865a864d87e8731c701b25ae2ecd0c2ac35c7d361d0d02e30511eed3fd38a3cf579ca6e30ecc42f02d5063580d8")
ioctl$auto_SNDCTL_DSP_GETTRIGGER(r3, 0x80045010, &(0x7f0000004440))
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/afs/rootcell\x00', 0x1cb842, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x20005, 0xdf, 0xeb1, r1, 0x3)
r4 = open_by_handle_at$auto(r2, &(0x7f00000002c0)={0x1b, 0x136a, "8f42b1077e737d4629d7867bca48102625b1c2c21fa15504a19b9a"}, 0x7d)
setsockopt$auto(r4, 0x1, 0x1021, 0x0, 0xd)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mremap$auto(0x4000, 0xfee0, 0x9, 0x3, 0xfffff000)
mmap$auto(0x100000000, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
ioperm$auto(0x7, 0x6, 0x2)
close_range$auto(0x2, 0xa, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/vhci_hcd.0/usbip_debug\x00', 0x8002, 0x0)
r5 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_nfc(0x0, r2)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})
sendmsg$auto_NFC_CMD_DEP_LINK_DOWN(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000300)={&(0x7f0000000440)=ANY=[@ANYBLOB='d\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="000428bd7000ffdbdf25050000002e0002002f7379732f6b65726e656c2f73656375726974792f746f6d6f796f2f64676d61696e5f706f6c69637900000005000b002300000008001d008d0d000008000400bbb4000008001500090000007f19ce422836dd553063314f3e14fab2ae2d8958c03d7a6e2a4e55005075158e21f5f86d63a21af5aed90c79e2dd80d8791dc6c633526224d9bc5725bec6c3da66143317c1cd28e9bafa4d"], 0x64}, 0x1, 0x0, 0x0, 0x4008000}, 0x4000)
read$auto(r5, 0x0, 0xb4d3)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000200), r0)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80}, 0x20040004)
write$auto(0x3, 0x0, 0xffd8)

5.208918094s ago: executing program 0 (id=5890):
r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
write$auto_console_fops_tty_io(r0, 0x0, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
r1 = fanotify_init$auto(0x6a1, 0x2000000000002)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x40300, 0x0)
mmap$auto(0x0, 0x4020009, 0x0, 0xeb1, 0x401, 0x8000)
socket(0x23, 0x3, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptyz8\x00', 0x200001, 0x0)
mmap$auto(0x0, 0x2020007, 0xffffffffffffffff, 0xeb1, 0xffffffffffffffff, 0x8000)
socket(0xf, 0x3, 0x2)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto_safesetid_uid_file_fops_securityfs(r1, &(0x7f0000000040)="cc076d4b9ccf9a9602adc3fd519d59479550f87cdd3a17ce96ea711862402c7ce62fc53e129908946f6d7439cfabc5913f5151023a0ae0a8c23927b49165f68428db489b0f1f768be519033c6e6bb1237251dd35096ef882ecdeb84f00997a1dab1e86c44aed310caf3beaae62deca89617d4c75b2f9f4412a3e08bbd6d45139df33098cae5127d5663dcf6622225356d26eb05c86a428077b9da5c2c2f8e7ecd90c9eb7ca026c4c19e518da22ba7acfc72d2bc918768f3323102f795023ded0646389dae41109c35e3106f97fc84d6c2c5c306561597db1d313343facdf", 0xde)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x8001, 0x0)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x1, 0x6, 0x0, 0x1, 0x368e, 0x2, {0x100000000, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x1008000, 0x0, 0x80000004, 0x81, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x804})
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffff7, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x6a1, 0x2000000000002)
socket(0x26, 0x80805, 0x0)
socket(0x28, 0x1, 0x0)
socket(0x1, 0x1, 0x1)
open(&(0x7f0000000000)='./bus\x00', 0x22042, 0x45)
fanotify_mark$auto(0x0, 0x1, 0x9, 0x4, 0x0)
close_range$auto(0x2, 0x8, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
readv$auto(0x0, &(0x7f0000000080)={0x0, 0x60}, 0x3)
open(&(0x7f0000000000)='./bus\x00', 0x12ba7e, 0x45)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0)

4.499787856s ago: executing program 6 (id=5891):
sendmsg$auto_MACSEC_CMD_DEL_RXSC(0xffffffffffffffff, &(0x7f0000007500)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80}, 0x80)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/config/nvmet/discovery_nqn\x00', 0x189002, 0x0)
mmap$auto(0x0, 0x4, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_bch_chardev_fops_chardev(0xffffffffffffff9c, &(0x7f0000000100), 0x80, 0x0)
ioctl$auto_BCH_IOCTL_FSCK_OFFLINE(r0, 0x4018bc13, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x80000001, 0x20007, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
openat$auto_random_fops_random(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
write$auto(0x3, 0x0, 0xfdef)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/mm/ksm/merge_across_nodes\x00', 0x103a01, 0x0)
prlimit64$auto(0x0, 0x7, &(0x7f0000000cc0)={0xfff, 0xf1c6}, 0x0)
sendmsg$auto_NL80211_CMD_VENDOR(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x14, 0x0, 0x8, 0x70bd2a, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x48004)
poll$auto(&(0x7f0000000080)={0xffffffffffffffff, 0x0, 0xffff}, 0x3fa, 0x1c)
get_mempolicy$auto(0x0, &(0x7f0000000140)=0x9, 0x2, 0x86, 0x8)
bpf$auto(0x0, &(0x7f0000000100)=@bpf_attr_4={0x1e, 0x4, 0x3, 0x8}, 0x6f4)
r1 = openat$auto_transactions_fops_(0xffffffffffffff9c, &(0x7f0000001100), 0x40, 0x0)
read$auto_transactions_fops_(r1, &(0x7f0000001140)=""/67, 0x43)
socket(0xa, 0x801, 0x84)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
setsockopt$auto(0x3, 0x1, 0xd, 0x0, 0x8)
openat$auto_tracing_cpumask_fops_trace(0xffffffffffffff9c, &(0x7f0000000580)='/sys/kernel/tracing/tracing_cpumask\x00', 0x88002, 0x0)
setresgid$auto(0x0, 0x0, 0x0)
socket(0x10, 0x2, 0x0)

4.392031936s ago: executing program 0 (id=5892):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = memfd_create$auto(&(0x7f0000000040)='A^^\x02\x00\xef\x97\x8aY\x00\x00\xd2\x8c\xb05\x03\\\xb2\xbf247{\xde\t8\f\x00\x00\v\x00\x82\xcc\"K\xe1IIT\x00'/54, 0x5)
mmap$auto(0x0, 0x9, 0x2, 0x8000000008011, 0x4, 0x0)
mmap$auto(0x0, 0x9, 0xa861, 0x8000000008012, 0x1000000004, 0x0)
ioctl$auto_XFS_IOC_SWAPEXT(r1, 0xc0c0586d, &(0x7f0000000080)={0xf, @inferred=r0, @raw=0x1ff, 0x10001, 0xc, '\x00', {0x5, 0x1, 0x5, <r2=>0xffffffffffffffff, 0xee01, 0xa079f948, 0x7, 0xfb, {0x567b, 0xfffffff7}, {0x1, 0x3}, {0x9, 0x5}, 0x8, 0x6, 0x9, 0x9, 0x3, 0xd, 0x6, 0xfffe, 0x7, 0xfffa, '\x00', 0x10, 0xffff, 0x3, 0xfff7}})
statx$auto(r1, &(0x7f0000000000)='./file0\x00', 0x3, 0x5, &(0x7f0000000140)={0x7f, 0x800, 0xb, 0x9, 0xffffffffffffffff, <r3=>0xee01, 0x80, 0x0, 0x1, 0x4, 0x3, 0x38f7, {0xf72, 0x8001}, {0x1ff, 0x3}, {0x9, 0xe1a5}, {0x6, 0x1}, 0x7fffffff, 0x9, 0xd3, 0xe2, 0xde74, 0x8001, 0x80000001, 0x1, 0x8, 0xfffffff8, 0xe4, 0xffffffff, [0x8, 0x1, 0x1000, 0x7, 0x7f, 0x1, 0x200, 0x4]})
r4 = getpgid(0x0)
rt_tgsigqueueinfo$auto(0xffffffffffffffff, r4, 0x8, 0x0)
prlimit64$auto(r4, 0xa3d, 0x0, 0x0)
r5 = gettid()
msgctl$auto_IPC_INFO(0x4, 0x3, &(0x7f00000002c0)={{0xfffffffc, r2, r3, 0x2, 0x1000, 0xfffffffc, 0xf}, &(0x7f0000000240)=0x9a, &(0x7f0000000280)=0x4, 0x3, 0xfffffffffffffe01, 0x2, 0x5, 0x7fffffff, 0x6, 0xbf18, 0x2, @inferred=r4, @inferred=r5})
r6 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x20342, 0x0)
ioctl$auto_SNDCTL_DSP_SYNC(r6, 0x5001, 0xfffffffffffffffc)
mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0xc76, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10) (async)
memfd_create$auto(&(0x7f0000000040)='A^^\x02\x00\xef\x97\x8aY\x00\x00\xd2\x8c\xb05\x03\\\xb2\xbf247{\xde\t8\f\x00\x00\v\x00\x82\xcc\"K\xe1IIT\x00'/54, 0x5) (async)
mmap$auto(0x0, 0x9, 0x2, 0x8000000008011, 0x4, 0x0) (async)
mmap$auto(0x0, 0x9, 0xa861, 0x8000000008012, 0x1000000004, 0x0) (async)
ioctl$auto_XFS_IOC_SWAPEXT(r1, 0xc0c0586d, &(0x7f0000000080)={0xf, @inferred=r0, @raw=0x1ff, 0x10001, 0xc, '\x00', {0x5, 0x1, 0x5, 0xffffffffffffffff, 0xee01, 0xa079f948, 0x7, 0xfb, {0x567b, 0xfffffff7}, {0x1, 0x3}, {0x9, 0x5}, 0x8, 0x6, 0x9, 0x9, 0x3, 0xd, 0x6, 0xfffe, 0x7, 0xfffa, '\x00', 0x10, 0xffff, 0x3, 0xfff7}}) (async)
statx$auto(r1, &(0x7f0000000000)='./file0\x00', 0x3, 0x5, &(0x7f0000000140)={0x7f, 0x800, 0xb, 0x9, 0xffffffffffffffff, 0xee01, 0x80, 0x0, 0x1, 0x4, 0x3, 0x38f7, {0xf72, 0x8001}, {0x1ff, 0x3}, {0x9, 0xe1a5}, {0x6, 0x1}, 0x7fffffff, 0x9, 0xd3, 0xe2, 0xde74, 0x8001, 0x80000001, 0x1, 0x8, 0xfffffff8, 0xe4, 0xffffffff, [0x8, 0x1, 0x1000, 0x7, 0x7f, 0x1, 0x200, 0x4]}) (async)
getpgid(0x0) (async)
rt_tgsigqueueinfo$auto(0xffffffffffffffff, r4, 0x8, 0x0) (async)
prlimit64$auto(r4, 0xa3d, 0x0, 0x0) (async)
gettid() (async)
msgctl$auto_IPC_INFO(0x4, 0x3, &(0x7f00000002c0)={{0xfffffffc, r2, r3, 0x2, 0x1000, 0xfffffffc, 0xf}, &(0x7f0000000240)=0x9a, &(0x7f0000000280)=0x4, 0x3, 0xfffffffffffffe01, 0x2, 0x5, 0x7fffffff, 0x6, 0xbf18, 0x2, @inferred=r4, @inferred=r5}) (async)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x20342, 0x0) (async)
ioctl$auto_SNDCTL_DSP_SYNC(r6, 0x5001, 0xfffffffffffffffc) (async)
mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0xc76, 0x8000) (async)

3.30503626s ago: executing program 0 (id=5895):
r0 = openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000e40), 0x80001, 0x0)
ioctl$auto_NVRAM_SETCKS(r0, 0x7041, 0x0)
mmap$auto(0x0, 0x8, 0x2, 0x9b72, 0x5, 0x0)
r1 = getsockopt$auto(0xffffffffffffffff, 0x114, 0x271f, 0xfffffffffffffffc, 0x0)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x3d, &(0x7f0000000480)={0x0, 0x3}, 0xa000, 0x0, 0x4000000000007, 0xa508}, 0x800}, 0x4, 0x40000000)
r2 = socket(0x2, 0x6, 0x0)
r3 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000)
mmap$auto(0x5, 0x9, 0x9, 0x16, r1, 0x9)
recvmmsg$auto(r3, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0)
ioctl$auto(r2, 0x891b, 0x24)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
read$auto_nsim_dev_trap_fa_cookie_fops_dev(0xffffffffffffffff, 0x0, 0x0)
prctl$auto(0x1000000001c, 0x5, 0x100000000, 0x400000000009, 0x3fffffffff)
setreuid$auto(0x0, 0x5)
r4 = accept$auto(r2, &(0x7f0000000080)=@l2={0x1f, 0x4a30, @none, 0x82c4, 0x2}, &(0x7f00000000c0)=0x3)
recvmmsg$auto(r4, &(0x7f00000003c0)={{&(0x7f0000000280)="32dd24babe72590c4b0b6535fbe94fbcf0923bbe92e01339accd34a8716dc1dd35e41cc56559cb9bb8d8595f02f5ad87119b2e584108153a717c2c1b09b0bcfb9e7bbfb21371d961d7556c9e5994eaf9df90c30d9fadcd6fac76855e4b92e5177d32097443d0aebb5ddfb93999008ad782e146d13c75560ae3c8eab6e801750dd699aacc7e3161b1c0ecb9c69dc4dc4875c83bf3", 0xc2d, &(0x7f0000000140)={&(0x7f0000000340)="47459b8de6f795d7b918881010f0e261f7caea3b99080ae166cbc4e327bd92ed414d0412b28f4252e589a92a6cf56ae41ec51ded7597d11df31240873c5f571860afe2d097c7280c330f6852b702e130a5ba8bdb23bb64edc85063be9439a134d8f1878e7ddb734ee35e4518b412bd384b1e80946dd7941820"}, 0x0, &(0x7f0000000e80)="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", 0x3, 0x87fd}, 0x6}, 0xe, 0xfffffe01, &(0x7f0000000400)={0xaed3, 0x6})
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
prlimit64$auto(0x0, 0x7, 0x0, &(0x7f0000000080)={0x3ff})
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/kernel/watchdog_thresh\x00', 0x40100, 0x0)
syslog$auto_SYSLOG_ACTION_CONSOLE_ON(0x9, &(0x7f0000000440)='/dev/dsp\x00', 0x2400)
mmap$auto(0x0, 0x2020009, 0x2, 0xf8, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x2, 0x1)
io_uring_setup$auto(0x6, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
sendto$auto(0x3, 0x0, 0xfdef, 0xe, &(0x7f0000000100)=@in={0x2, 0x0, @rand_addr=0xe0000700}, 0x19)
socket$nl_generic(0x10, 0x3, 0x10)

3.142656971s ago: executing program 4 (id=5896):
keyctl$auto(0x2000000000000018, 0xffffffffbffffffd, 0x0, 0x400000000000005, 0x38)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/bus/pci/resource_alignment\x00', 0x8ea182, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000000), 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/mm/transparent_hugepage/hugepages-512kB/enabled\x00', 0x129302, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
init_module$auto(0x0, 0xfffff, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x8, 0x4, 0x1)
madvise$auto(0x0, 0x8000000000000000, 0x15)
madvise$auto(0x0, 0x2000000080000001, 0x3)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
capget$auto(0x0, 0xfffffffffffffffe)
capset$auto(0x0, 0x0)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x80, 0x0)
move_mount$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x91e4)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x1, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x0, 0x100000000008000)
mmap$auto(0x200000000000000, 0x400006, 0xdf, 0x12, 0x2, 0x8001)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000980)='/proc/self/pagemap\x00', 0x80800, 0x0)

2.514568474s ago: executing program 0 (id=5897):
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r0 = openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
write$auto_ima_measure_policy_ops_ima_fs(r0, &(0x7f0000000000)='#', 0x1)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
r2 = fanotify_init$auto(0x5, 0x2000000000002)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0000, 0x0)
ioctl$auto(r3, 0x2, 0x9)
ioctl$auto(0x3, 0x400c4d07, r3)
setsockopt$auto(r1, 0x1, 0x10, &(0x7f0000000040)='\x00\x15\x8d\xca`\xbcgY\xd2w\xf6\xaedN\xfb\xc2_\xf54\xb4z\n*\xaaL\'\xab>q\x9e\xdd`\x84_\r\xc2\x17\xb1\xaf\xd2\f\xfd[Iy\xbb*$\xec\xca\x8b\xde\xdcV@\x04+\x00'/82, 0xba)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), r1)
r4 = socket(0x2, 0x2, 0x0)
sendmmsg$auto(r4, &(0x7f00000001c0)={{&(0x7f0000000240)="163efbb8e7a07ca72cbc44b169bde344ad5274c697359b8043c54d6265a79cb19d9b25cef516ab23f70091f3e47f1abad850c9e56591efd55f1dd10b0f088b1c7a02368e2e5a8583fbff891cead404e0c3cdb6eefcd35e6d822243c340278709f8b9f219af5b020e917ec2df1c24f375cdee49f15b1ce5e47a95099e404a798c02921241df26cc9fb25b516ac2ecbb1969b35411cc88726b3ed5899a8a48780ea617431af6cef109c0ef101765aa6aed12bcd37ed29c1b72fd4d1d6271bc1c", 0x7, &(0x7f0000000180)={&(0x7f0000000000)="86b1e536929057a3fb6980f2be131ed79dd6", 0x8}, 0x0, &(0x7f0000000340)="6a4b06cf5f500fff6b3f129af4a0095e087cb5b7cdb49df840089b1449ad777550fc6f80780a505c6e79efc84c3a2d0c1e7049c73caca75e521f386360dc248b41d013ae8e50ccec482f7b8a2baebee0ad2b3c3818b1f64cb7c96e886c4602db450419235d54786a3ac13d9b63d94fa1374516a740615e20490a476d08e217a7af6a2dc8f97f84f05d49b22a39460ea94fd217ad6bd990ba86ee84b84872b68568a0dd705beadd393ab088c8f2ef3434c8a6144637", 0x5, 0x2}, 0x9}, 0x2, 0x3)
bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_4={0x1f, r4, 0x1}, 0x10)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/ifb0/phys_port_name\x00', 0x189600, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000001500), r5)
sendmsg$auto_NET_SHAPER_CMD_GROUP(r1, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000100)={0x1c, r6, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@NET_SHAPER_A_IFINDEX={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x44080}, 0x20040014)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
getcpu$auto(0x0, &(0x7f0000000200)=0x7fff, 0x0)
sendmsg$auto_NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(r2, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x1c, 0x0, 0x800, 0x70bd26, 0x25dfdbfd, {}, [@NL80211_ATTR_STA_AID={0x6, 0x10, 0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x2}, 0x20000000)

2.434090868s ago: executing program 3 (id=5898):
r0 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'veth1_virt_wifi\x00', <r1=>0x0})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'dvmrp0\x00', <r2=>0x0})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'veth1_to_batadv\x00', <r3=>0x0})
sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x3c, r0, 0x200, 0x70bd27, 0x25dfdbfb, {}, [@NETDEV_A_QUEUE_IFINDEX={0x8, 0x2, r1}, @NETDEV_A_QUEUE_IFINDEX={0x8, 0x2, r2}, @NETDEV_A_QUEUE_IFINDEX={0x8, 0x2, r3}, @NETDEV_A_QUEUE_TYPE={0x8, 0x3, 0x5}, @NETDEV_A_QUEUE_TYPE={0x8, 0x3, 0x7ff}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4004001}, 0x8800)
r4 = openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/snd/pcmC1D0p\x00', 0x54841, 0x0)
ioctl$auto_SNDRV_PCM_IOCTL_STATUS32(r4, 0x806c4120, &(0x7f0000000240)={0x3, 0x2, 0x0, 0xaf6c, 0xfffffc01, 0x1ff, 0x7ff, 0x5, 0xffff8001, 0x3, 0x401, 0x5, 0x2, 0x1f2, 0x9, 0x3, 0x9, 0x2, "bce14e3e5a9dc66d0c751417938b8101c065b16f7b88e2617790d44272eefbb4c5e7605e"})
sysfs$auto(0x7, 0x9, 0x9)
sysfs$auto(0xd4, 0x3, 0x3)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000002c0), r5)
r6 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ptyq9\x00', 0x44982, 0x0)
ioctl$auto_TIOCGDEV2(r6, 0x80045432, &(0x7f0000000340)=0x3)
r7 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000003c0), r5)
fstat$auto(r5, &(0x7f0000000400)={0x6, 0x27, 0x2, 0x2, <r8=>0xee00, 0x0, 0x0, 0x9, 0x7, 0x8001, 0x2000000000000000, 0x7fffffffffffffff, 0x8, 0x8, 0x7, 0x3, 0x2})
msgctl$auto_IPC_STAT(0x2, 0x2, &(0x7f0000000540)={{0x5, <r9=>0x0, 0x0, 0x23f, 0x7, 0x2, 0x4}, &(0x7f00000004c0), &(0x7f0000000500)=0x80, 0x7fffffff, 0x4, 0x4, 0x40, 0xfffffffffffffffc, 0x9, 0xc5, 0x6, @raw=0x1})
sendmsg$auto_NL80211_CMD_GET_STATION(r5, &(0x7f0000002b80)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000002b40)={&(0x7f00000005c0)={0x255c, r7, 0x800, 0x70bd28, 0x25dfdbfe, {}, [@NL80211_ATTR_DURATION={0x8, 0x57, 0x6a4d}, @NL80211_ATTR_MBSSID_ELEMS={0x57, 0x133, 0x0, 0x1, [@generic="6f3e6caf198f146cba7b3ae88abf4ca19675f2029600bec2711944942b309143e63d88614ec26e25de19b17944aedac7c80da544093acca0c650265fa24c2134389cbe61711ed6bc516239191000b1084b49bc"]}, @NL80211_ATTR_WOWLAN_TRIGGERS={0x24e2, 0x75, 0x0, 0x1, [@nested={0xa5, 0x150, 0x0, 0x1, [@typed={0x8, 0xba, 0x0, 0x0, @u32=0x4e7f07c3}, @generic="3b90ccba1fc0dc79b3d8290c1aca78ffaea0a12807af5ee2b18a291f417d573543e8664b5b21edbd9b5691484ba992993454d76d8dbfb0572aa8eed3d7fa433d49dcfd8744ffe3488a591c391385c126caf1067010035b9af70b6237b52ee8b5865032d6f9ebad673b5ba94305f0958875c43b715581f27239e0a1bc710e2b9f1a02e5d64732e3815bc075338d6000a84a41f22867bd20f318"]}, @generic="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", @nested={0x88, 0x12c, 0x0, 0x1, [@typed={0x8, 0x149, 0x0, 0x0, @uid=r8}, @typed={0x14, 0x35, 0x0, 0x0, @ipv6=@remote}, @nested={0x4, 0xd6}, @typed={0x8, 0xd9, 0x0, 0x0, @ipv4=@remote}, @nested={0x4, 0x63}, @typed={0x8, 0xc6, 0x0, 0x0, @fd=r6}, @generic="36c59c860833aa6c3e288426e9bb06cc6c6b6498a8537852ab7e2da39a647012acb14b5546db7f37aede6b65f5138548d16b7146c2a49f7c8435a39ac766123059f8ab621b3e398adac035bc75fad6f5"]}, @nested={0x1a7, 0x121, 0x0, 0x1, [@generic="fb56f901bfedf2beed7035d382cf1cb44e945c65ed41d358f6bf2d15915ba554c623c97b771843e56d6218816e6f95cebf05055498a9067e9168be710a3fa0bc5b69ea09092f0f883e78fa5e3a6767b84883ef61ac4f61f3c92a8081e2972c8cabcbecbd7bcf56df56f4a46fb4d45e9a45d60bba24a895a4439c96", @typed={0x8, 0x14, 0x0, 0x0, @str='\'{$\x00'}, @typed={0x8, 0x43, 0x0, 0x0, @fd=r4}, @nested={0x4, 0xff}, @typed={0x14, 0xd8, 0x0, 0x0, @ipv6=@remote}, @nested={0x4, 0x122}, @generic="a8b4862ab39a7d8cabcb9d345056baa129c3ddf502e45999c7f14a4f07bb68b9230d21c919bfcf9cc6a0d0ae76eb6137f6b59c6d3f8f27176a12b9e1334c1fd3b49e81dd350305013e5d3ce1cbcd9d5df2a54e23372e4383a497e1f6ad6030ef22db8ef298ec57cf0af227f76111d2504175f9c14078078f649478385e9ce80b38025401ad8983f5b0b2b30c416b69cd6934cf922a5c1c8de2b08532d8f89acacaea4d8c09c44dcb5cacf712616395a022c4faacc5004a188a62644915fa7cbcd795cc63d33502db66cc181de16f023d20ee096f7577582879ce54719af117d988beed9b9faacfd6988f33261498afeb8634939283df0cf8192807b6"]}, @nested={0x18, 0x8b, 0x0, 0x1, [@typed={0x12, 0xf, 0x0, 0x0, @str='\xf4\\!#@%\xed[/\xd0+@$\x00'}]}, @nested={0x110d, 0xb3, 0x0, 0x1, [@generic="34dfcb4c764e03f2efe1b550568438bc1879ab08c3e7b9d36b0999b5c9673b80723295d38aea42a023f1e50331263161823cd1070cb66fd0b6b4e33d32708fe7f466b738a9a47e4f58a78b42e2a371a07d773fec9c85e91e2686c20acfb5097bf2050e2c266f3f13b0d23fc4e39f92657579e5040fb792b9b2ca55e2c191e0f6b1d36c87fb775128ccbd3f0c0a76555796dbcd3ca487a651f365d90578dac21d9b1a72fa71b54a98668c674ba5ee6e891bb80864bfe5ced8698e9930a0aecc4b53ad43c11b3916f6d64a205985b98c173edce92a5e70c8bd0daa59110c9f96e656300fd1818bf2fcc87f0f2acdbf2d49763c5dad13232d390c8c9e04e66d5b0494a672a17318204eeb02d972ee7d072b7664dc7401fc79b68d6c6e611bf4b98812d21bd5cca1ddbcb8c5a261a613b7423cdbebb9e1acb45b60f38eaba302d4a84de373c8bda824af60ddcb4e50ec51c333133a6bd62b81b3535da9caa01f853c6e1ad53191eaa8214c6a0967a1b0abb6db23f53108b462d70008a149b70b96f37647c9267a0978d232ba5aba773ac93f9299dea48a4f79ffb250b3f0bebe8397c300a83671741ad0ae10f3bbb6fd0d9a1536e53ce4be41545cb357c3f79d01cfecb0592a28b99293d9b4a7249305f8e145d0691b57e79ce92cd92686269ed76d86411a091867e03e3565d3d3df601031d76e09988f6e2792a69855a7b900e641e12528e4e1a6b5b0181884b72cee23724865803fe296aad10a9060937f86a6f9b3fbb576aa0bc96e84ba0347ec44999fc9cd722a10e2495f90a59fb9d647300395feab9b78e5ddcfabe55fb07b777def5d62cad2a92f4b5e5b5c697b61b61e85a2ff60b1bad91d709509ae004fd8dc9eb6192398194bbe142ae61fd3cfdc311ee971f77f1b4a5586c9e50bd36fe86d182f484fd5ddeada2e8715f78d2a0621bda649d18749089fd1a73e9396942f5f000e03ec45bc5a924057711ac271bf78009f23620cac24d2f2269b773b6289027749d1b569e2bb73445d2f9768b573fba9b4b2586492a91069a76ce530fd7cf66d49547ebf91bfb9d3a40e6b4baea27dac4b4a687a4dda078d1e0de3fa96288a01faea8ae7c9af7f1f3fb2492566f939771f8c279b78f98c801c2ae9e64d0b9de5d69d2514e673c9d619ddcb0fe6822af0cfd99ff4b602de12dea0cf6c790390a640f2acbebea51fea5b49ea461ed67c1295d0033debc97d376134ce57f968e295ea7f7462ae3490aadd036acaf50861ef70d1efef39f60776d9cc47c6e6861f6df9d42ad82cd0a6b5795791afd54490bafca3100c7e01993a0c536448797cca55d1e0b5a8b2cabcf32f500833b6196bcd1ae3357e30657cdfab61d8bb731c76542394556ac00efcd2fac8e52f47f97c78bf12f82f725a8ea5feb8e90ea37eb38e439356e2b40ca9c2ba5b5ca3ef8013b96ef18bf033ab8f67e397ca2149bb3c93e330874d398f2f634176d1da9897f877b25415b3a15b4359d3e6d6dc2a5edb7f4788a77e8315e3b95942b1108524792427f1a73e7bc6b2ff3cecb1ab6ff7b3025fd9712f62dd9584aa3447896d604572cc68d68e6574563703df0116354248c477160fe6d3959b88c7c2c84edea0629590a0f51e6e77a21465e04a560e8ea82bbce3fbffd28355981c78861e0d1789b46ca470a3be099f519bd9080d265333ed1cc676b93bca60f49775cfc6ff98026d5532927082d03b51fcdd51570c92b721e73e7c4ec9ee79a6c5cb34a798a43a5fc61a1470b51694c5b8069c5517b412acc10ee8d5194c8816bbf6451415c53c59d8151b9feb54dd50004ef1f1d34f8021bd5a36484bc5ece7d9fd593be1c1bcdcb7463c33710b8155ffb9b234639a0f414967bdf76e149fa1886a4f8b5026089032a0ed3a27937f8b253f73ae8c7b92c279a6b038fd349a560ea8385f4deda3ff4dc854bf0a6a6bb4928e2fddb2f762405d56509f3de59396e94c0467106fb968519eb187e06015b7b2b1a8155a7b863833b5b4dc91374ebbf230f031d9397f77055cd7b202b0953438ece500229ebecaa618632e48def3fa9a852026e3a365c9be1f046183b901c12965cdc82fe12dedecc99440a4127b185567a746606e8128f3d72db645d16553730d911b2eb7123433f1f340415bcb0e1d49b5729aa76e0f50d21a66d7b3879469203ebf91df1b0d3a8dbdcd6aa7470da10881a80b3e1d9a05f2d866adc7a59748b1b9cd585716df700cb0fd416ede7c1ee5e8f92de013ce5441972f51fdba9e597279f30903b44b238982a246d1563ae682e3622e9f3500b40497e3e48d9c7dedd8ca811b8a81872fd4158d4f39cdac2a6468c775aa6f15947309f1fb813e677dbf292fc6ebef01f1f81d359dc31a6ff964c12e39d3a0ae29daf330a343378aa8a4db60288d3cde51768b3a8f973540688076526067118a327da7c8a39f15f6da9b9c55692c67dddfcd06d7f61f41c884f1b3ab699177bd8ee2e703b74627e0f9a0bdb6d408993e0ceed600399b6a81cbf92b9f32b86b7fd8a394b249e0ac66e72656dcc5cd958bd5c78c563137a71e0a39e63e57944c7040ccfe3f9da6f944eaf2608e3bc36005d98240a255276d6a627c59517292b7dcfa857d6613d6349682ba3bffae408dd4dc3c16b17cda1375949e878fb8465c8c603e296df624215688d874b6b2afc1f25bea4ce3a9d074757b4714ab43d76639cd6c078798d08ecd65dd98cc6185ebb87c516a78069b22c6d1cc4a7a55ce7b21a1de3345c91c4e40af6c134ea9cc961954da13f1643e994533e003294dcc8c89a6a53695a4fa4bc8ce975e284ac3a86fe1821de5ad3735ff43de03acc52295b97b9155e6380cd6f47a2c060e27efcaaa7342be783b06021a10ead297f054809e9ae3a0d8b1cfcfa36db0fa4d3ef08212983cd2dd903ddb47ec074d3a7f2a9753abd928101032f9d184d802152084823939d40ca25219bf4fab9238c0fcbceb53dc07388674ba7ae078f497870884c7ebceedc5bec1dfe451df382cd5a71d4fdea6f7a3ed64046f7d96d35e196ed354971a1e0c93153e31c35f0a807ff5cf49c7e43351faaa4e68bd2734146c035ab7d7457e6a48f5774dadb24dd7c6ad745340f91481bc76c0397b394bc0547d09199faa248079161f5635c392cf42eedecc4a1eecbdf77e01bb871dfd621fb4cf53bc5ebc3285ce72a6762d375ed3d2b9d83ce2eb731866ec9eb2be6d0eca98b42486b199c7f3aa527cd0593c5b40e1c89df485667262bc7291aabeec4afa242d32d115251e3070e70f3823e4035bb54f7bb58f3f05767ca634b5e3885db666e7077621b1b11f2f52fb7dc238846ba79742101b21d8c4e979f9b8f069490dc896fbf842b2077221de3c45daa493ca3f73039f8f629f0f9f6d46cb783614f1a33da825a5334ed4250c237ab77c11b5adbb449463185eaa390f831cb5bf98bb4255d5234925d6a62118b9cb3a808587ffba37b15cc3e47d1f2a0dd067ee4d85063b48307c10c5fd968a36cd1ac0da799ada957aded391779e3875df0d374881f1b0d128346bcf67c8f37737cf31a8a6f71a0820296544cb565d400c54c504c059be71558d4d647ab388b3707f09e7639814d6c564e5de900ff9932b3d6d8a040c77e2f2ce9858d7a056b7c48bc21698c6b0b6d9764bbbc32abcb0decf810c4d1e5dbf5d37ac24b3adb2a57894e63422d9fba083087698ea2b064776aac946ac5a7142b553da9a13caec930aa2c2003961483495dbe38bb841f081aaf6d4f2d1bbc2859bdc613f304d7bb532d3c570931c3a9053ffce435e061fdea752b992313a30f57e696fbbb0c3f85e2fafee7f95782ea9b12a82ac4a619bf932bfd2088e0bc6a5059f2282a55d037ced0894c3f4a2561aef281ffe2a010608cca178da494cef71b098ea67a7b6d0fbd4e98db63d513b78b65c86657ab630b09e6ce49eab01aff24e9e93ae3a42a40af3592b8bb234acfe6b6a0e09da3aed04ecbb405e656db2b381e9e55ef5af662e56bd0caf79e3d9c200de8c90d6d95cddd4c1ede1ca67196d1595a9d18935d133dd162e55df06f79aa248abc58a9f4c6564e5a2b0ccd7fd82521ccf6a433da8d6a0b205092874f766c71cc53c56855b9652f7edbc2566941a4abbfa13fc9f5028a48ef92fa721367715dbe1d8bcd6813098ba307cd77a23b1b205b1ed72b1029ca1e0d72439c97c40109f4134a42abcb14e99f8fb482b7326ec6431f4cd289de1d4d6529c48010f6534683f322113a3cef4231c8566314b7cbf2276f323372580bf49b32e88059183d5c8f695a1b639ecb0948249f893265ec2dc322d87926ffbea1ff26b9d6638614f118210cd644f7472e1a7b092ed7ddc7b7b2f0ca06571bb1fad96b9f940022d91547b5dfd2d25463c8d068ea029b501f76cadf358c95094ad066a94d9e5703a967bd97428e775dd87a21aefae9e784c28efad25781352bce46ecd0549e1aec2e737fb60793cd0d3140e3d0a16a056ea3460749dddad3c2021140d8583d51d6d919677bd3eb8502ff8269a474e05e094afc1ff94856e7bf9c47eef5355d31aa7b9299d9b1978f878476a26837eab0b3293ea3954fe90bec7541199325d90600902cff0ea35bdaa47d8a9c823570a87ab4296a86f7f9dc8d5a1ba94b0a1a0c29e7c8d65d5fa4215ccd378dbe468b8fa0fec4583a7589915699c9f1317c1263dd88844887d8e238ca2bbbc278077630b3e007193286dd1e03c7c06a49b53e9076d059b7a5a0ea76d3e5c9787df06e8b2b3c57cbc2213cd28fa2fc94344e0dba26b5d7dd127a9887aef0091a4159588d7bed8292a13b6ccf26837b22ecd235b9de4b637f9876066173e7824cc3272fb942faccd95f00fe06b269120bdb6eeef6257c8c0f04b763a8b11e10ff6d8ec9d4332033a6701f310eb2d45277c794e45a082dc5a878a33d2d3e0df672fbc2b53556cc48993e0d8c14f992a4d744ff77611d34f592790da5a2710be41cdbe98f1abaac4fce3ec8a86e64ed6d2d870458e829c86236e644601cd6090d2366b2ac55175a32d7bd886fddfb6adaa9c15aee4f80aae2d7928d1154b6402959a5b43354d293db93955a52c0560780d596f8286c940a63fa4b53b119fd460998c0bcd9e65c7907b8f9e9233272c870fc60fe4976b877bbc115dd94dbad98eb2133cd80739644890aa59ba1984650ef2fc417ccee926d05b3af8780640644ade63c0bba1381860e6439aecd12136ec0fdec57275282684272a931d3426a7b398af5de0a3f159c376b44815c7ce38184ba4cfbd5cd7d9aedcaf8fe869ed73cf60162b18c691c8728980009d868fb84eac6d799dd9153ca3bfe90d1da99563a768588aef4e604534c4f6043d167a4924ccc65194b65e3d403cba22a5dab5df75701926752522315e86b8f4d3c2fb92df7f268c3e456d0b9e41c894517f752721d42d1bc0ba178cf5e88277b88fdc9f759bc7f7eca33e4ff92da36e134f74dd094031b17a09320bd74faf245204e7418ff44a2dab903de255f65089e0a800fba562f42ec7dea658ccff6469f6efb65678a1c9d56315e0c2a8d10d397c47bb3f22357273a5870cea986484a8c95843bd6aee7ab6aac30e3db3da4152415a0f7dce73eee4ae2428eea2404a3e60462f5671f7dc9039820f4ed6959e5ed18fb6cec9bd613958951bb003d8f0665bdad22525fd2d3a86b5ab48ff6b11e066b5c507dd1adfe0743109c20939b0f9ee89cf2684641e467a51a62906240f6d3ec8285c591aa4b3eed8e96177a83dad329107fb06f1ea676c16a8ff8c", @generic="c6a7a2daf90f3b51df93b231953121a155a018a07495232591d18e66e51c795cd2e0a09be1435a60e9984e034cdc1a2ef5fa9e4ab0e2b0763ffca6b92e46b3f52520657714c55f74f3fd05e00fd0ced787c05fada64178a213c0e955864527367f4253b8eb13fd0d0ab03f1d7ce127b36581a7344d7ba5f4fa6ec8b32a3d19c0b9682da457f6f94855108a9fb84378d3856986978c9483d37b19aca4abb39d248c1a1fbd088533b49873e657de81ee597856f4c5c0c5ffdd0742bceb0c3dd0686d9c3e1c0388bee8dbbecd0b2f4305feb287ecb117bbe051569d578dea33cccd2e143183be34c2fee96baa", @typed={0x8, 0x150, 0x0, 0x0, @ipv4=@empty}, @typed={0x8, 0x32, 0x0, 0x0, @ipv4=@loopback}, @generic="2efd", @typed={0x5, 0x79, 0x0, 0x0, @str='\x00'}, @nested={0x4, 0x5b}]}, @typed={0x8, 0xf6, 0x0, 0x0, @u32=0x5}, @typed={0x8, 0x130, 0x0, 0x0, @uid=r9}, @nested={0xc, 0x4, 0x0, 0x1, [@nested={0x4, 0x98}, @nested={0x4, 0x84}]}, @generic="04ba2505a08e767f8cfacd35722d135d6ba27b9bc4fc81f9ba80ff3f1a3fb3ebdbcafd093743f82b76b5702f8d93ffe94529d48957a3b7d946de859aed4c63375d3e0a6647fc0b34b7d990a1772dc91a11892527139a631a1c1de6394a607f9ba882df0c5b82c700a94d367cb431500fa6e005a631753d4461baeb4fd2012f5afbac53338c31326c939ed64379bbc16f9d5d16a5f9ee09eb9132fbb7658fc065f7c30caf13f481ff4d4b15654e4635a1240f9425f66c1ba5e5a8e5b6cf868d2918bf"]}, @NL80211_ATTR_MLO_SUPPORT={0x4}]}, 0x255c}, 0x1, 0x0, 0x0, 0x24000000}, 0x4010)
timerfd_settime$auto(r4, 0x94e1, &(0x7f0000002bc0)={{0xfffffffffffffff0, 0x100000001}, {0x3e, 0x80}}, &(0x7f0000002c00)={{0x8000000000000001, 0xfff}, {0x9, 0x7}})
r10 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000002c80), r5)
sendmsg$auto_CTRL_CMD_GETPOLICY(r5, &(0x7f0000002d80)={&(0x7f0000002c40)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000002d40)={&(0x7f0000002cc0)={0x48, r10, 0x20, 0x70bd28, 0x25dfdbfc, {}, [@CTRL_ATTR_FAMILY_ID={0x6, 0x1, 0x67}, @CTRL_ATTR_FAMILY_NAME={0xb, 0x2, 'dvmrp0\x00'}, @CTRL_ATTR_OP={0x8, 0xa, 0x5}, @CTRL_ATTR_OP={0x8, 0xa, 0xfffffff8}, @CTRL_ATTR_OP={0x8, 0xa, 0x5}, @CTRL_ATTR_FAMILY_ID={0x6, 0x1, 0x6}]}, 0x48}, 0x1, 0x0, 0x0, 0x4804}, 0x174f756e0f21007a)
sysfs$auto(0xfa3, 0x6, 0x6294)
r11 = openat$auto_trace_options_core_fops_trace(0xffffffffffffff9c, &(0x7f0000002dc0)='/sys/kernel/debug/tracing/options/overwrite\x00', 0x200400, 0x0)
mmap$auto(0xa0, 0x9d62, 0x9, 0xfffffffffffffff8, r11, 0xb3e6)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000002e00)='/proc/irq/2/effective_affinity_list\x00', 0x80000, 0x0)
r12 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000002e80), r5)
sendmsg$auto_IPVS_CMD_DEL_DEST(r5, &(0x7f0000003280)={&(0x7f0000002e40)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000003240)={&(0x7f0000002ec0)={0x364, r12, 0x10, 0x70bd28, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_SERVICE={0xce, 0x1, 0x0, 0x1, [@generic="e5b8d1f162d80a0d7a9a792e1c275d8fd7808a8303ad9c186b82e4a7f6c08e83fcf393116a484bda59b60c6797be2e08170202a2b5967eba8c54c5603ab9fbe485b41e617bb4cd55e85bd817ecdedc532695434cdeb74e54ce3dd11b88fe3e94f5587cee75846c096bc624662ae5a3c40a0646756598f0bb860a1389d82f03957461216ce1a3ecc2438606c93d0d4b5ad853d245a7ef5f735ad9b9b36c928a756c670a6c72f17b3c0024aac790fc9356462007c0431f5b8e035a2bdccc4534b380007a633f5a6c2de669"]}, @IPVS_CMD_ATTR_DEST={0x278, 0x2, 0x0, 0x1, [@nested={0x21b, 0xe6, 0x0, 0x1, [@typed={0xb, 0x116, 0x0, 0x0, @str='nlctrl\x00'}, @nested={0x4, 0x30}, @typed={0x5, 0x143, 0x0, 0x0, @str='\x00'}, @generic="88168e857655a613cc282ad382d0bc6a59b653b5225140600afa317ed2b71d21c4c7bbdf530e47599071958629ba1ce4dbd741f5921bae402148af", @generic="bbdf314dff8727e61f2e1d6f1e54f1b16429c840a0f8737aae81e9b0963a85467b880b3cf43ad8290cbb18e853d7e96f51d4ecd3da326cdfc2ce1832acd297ca4b9aeddd2f6b86a5371aca6672a678fc2c26009d503e2dcb009268705b17780ad79689aa12469bd4194d9892da40e5569c50e6de9f4ee61d1d8ae56b6b76f9d0f900342c50edfa25766ac3d3be8822a3ad6b65017d3a57fb032d47df07d838d3f989ff426fb8e957a16a14d33e9b628f038e282e1ab697d4644c292955c5d7927c0e74110d1e5d3f49e43990a678bb89f1ed8e4cc12face26cc5d25fdfeb7497db", @nested={0x4, 0xb8}, @typed={0x11, 0xf3, 0x0, 0x0, @binary="d5b4f905c1dd4dcace4e5679c8"}, @generic="251553fb2208a8bcc9cda6224a1ea485eee914d6410fb7cabb71a462bacf159bd73d58693a1a3e33e394f48e209b3198b88fb70c7c654232ba2b2ea3e041c92b0dcae51a", @generic="2e49062742a38fa53fa01c9f7f84d3222dca810e5b76682a0ca754b9fdb3a8f530592c64c67c2ecf9913ad43f10fc8b56ac3a6bbad020579ccc1e295ebb1e1dc91c0b4863e3fd9c529290bdf25f42a69c58f6fafec07467864465d069bb14c7f28326ce3d8fb23247be117d67cddaa0d530b408e4cd9e1479467bb9249311609f7ed0b11ce3ce9"]}, @nested={0x58, 0x5c, 0x0, 0x1, [@typed={0x4c, 0xbc, 0x0, 0x0, @binary="7246b18748b753d4b454a905a8504499383fd072fea4fa6b8d2f9bf820506d8c012a10517e66cb16aba22b0a644cc1e5b775ff4fa8f851e435a8c0734a99bb123fa9c3e073351528"}, @nested={0x4, 0x48}, @nested={0x4, 0x53}]}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x6d2}]}, 0x364}, 0x1, 0x0, 0x0, 0x4000000}, 0x2404e840)
r13 = syz_genetlink_get_family_id$auto_nfc(&(0x7f0000003300), r5)
sendmsg$auto_NFC_CMD_DISABLE_SE(r11, &(0x7f0000003880)={&(0x7f00000032c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000003840)={&(0x7f0000003340)={0x4d8, r13, 0x20, 0x70bd27, 0x25dfdbfb, {}, [@NFC_ATTR_LLC_SDP={0x164, 0x13, 0x0, 0x1, [@typed={0x8, 0xea, 0x0, 0x0, @ipv4=@broadcast}, @nested={0x28, 0xd, 0x0, 0x1, [@nested={0x4, 0x45}, @typed={0x8, 0xfa, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}, @nested={0x4, 0x11b}, @typed={0x8, 0xf1, 0x0, 0x0, @uid=r8}, @nested={0x4, 0xc5}, @nested={0x4, 0x11e}, @nested={0x4, 0x12e}]}, @nested={0x127, 0xec, 0x0, 0x1, [@nested={0x4, 0x9d}, @typed={0x8, 0x54, 0x0, 0x0, @uid=r9}, @generic="89f332ec106b0c3712fc0b2bf2336d535ad8a89bf20680f44a914577f62d53f035454f052018e472f726ee9af117faeb83685541b9cdafac810aa85ab08222829324ee300ceb0c6bb879722dc4515f9e2133148cc047b339d8e09cbca7b87e60783b8160386ced5cc44e2cf23cd530472897abe551107933c79ccaa6b7edb58f916790b9e2beeae1f682e2f46bb61b1901678b5ad819ffc4c9f7d1f990da9eaa190cb5a2de4faec05c96e8477e606a80c8b6139bf21659de60a3b266120e5767d57bdcb46951f6ddf8039aa73f4f5d491e057e43be1ec6d1c0dd6d5f62653d76dea6084603447377a035ec691c4af3ea465eb8", @generic="c1c23e91adff765520f20c579fbe819d4f6fe34d3bd1c07b625d61fe9eaade5a", @nested={0x4, 0x10b}]}, @typed={0x8, 0x150, 0x0, 0x0, @uid=r9}]}, @NFC_ATTR_TARGET_INDEX={0x8, 0x4, 0x8}, @NFC_ATTR_LLC_SDP={0x267, 0x13, 0x0, 0x1, [@nested={0x1c9, 0x51, 0x0, 0x1, [@nested={0x4, 0xf7}, @typed={0x4, 0x1}, @typed={0x4, 0x30}, @generic="5da924dc00dedbe6f1f321657305abae2860ce825c689b9eba838d985dd549b5c166f0792540fd84f5ded4f1b212ff664f1b17b0151ed18289434dc8d980bab249c1c50e8a2ba929df283338c9a49cd3137c83c7ce69ceb19a6410330c78e38ee575dcaf39b6a898c3803bec3e426141de11", @generic="9600a7d1be2dffa4e9994e9c0198c9553ab3ec5dec698229d6f2c91870ab1b265681978ce88fc37c6bcce3846c4ee5adf03875abb3b6910dc5b1dbcf83b8aec74d50b2ccd5ba97390f20be275020c3f774726fd2afeb6cec785528a9f30644b44611695a27cc20bf09756fb6d58c35916f939f3fdda4add9c726ce262b0a56a78fa7863c9983f13b4680", @nested={0x4, 0xe2}, @generic="6698c79e63f18bac60e68f4ba3a488f698cf9d596cba8ec8211510e847def7fcf67cc94e27382c5e19de21b1858d70128b3be7b054839e72e31faf7b7f23f821a8515e2f12d588bdf345f385df21ed58360464cc5f42b1af5f50948fcfc74f267a4a1a3f4df5aefd80a06abc10168ae85b6ef781efaa3e4af2968f193c8d6924b14f6237f3af22339b579ec3ff78da90ab6ea5ccd9fc12034f85323327df21c68ad162c72b6cac7eb115e20b161ccf84a457e41687fd223fee"]}, @generic="23567e76e0394084b9b3041dd126408cdf85adc76874a49323295fa42ce747821c6a730d61b3e6a1ea3a4bbca91f2de3b6b4f40447332c71bc9b5948c41ef473b50080356eb8bb3b2be545118abeebb383f9d4e3f56daec48b901bdfa95db98f037b814b67dea43c32fcd3c78a54bbaaee7a87941976c29522563b6be59adbd8a41dc9f765558063de9a14", @typed={0xc, 0x4, 0x0, 0x0, @u64=0x5}]}, @NFC_ATTR_DEVICE_POWERED={0x5, 0xc, 0x8}, @NFC_ATTR_VENDOR_DATA={0xd8, 0x1f, "21272c9d98dc3cb00ab87336ac82757e3faec2288a4eab8a0e3204c90fcd7bd9dde2160e24d7fb1127467edbcb5c7a7fd1fcc81c7664bfeb2994a866e0b5e9e94366345704556f473e776422551774961ef7545e30c582683fa6119322e6c044cc3596ee2572f2800fa98f7b38a510f187544f167fa89e1d73839afa15bbb54734f064b24effefdf5c4761d7da60e6ff733b2df294928478bdf6fa7ac16f682f035c5804937328d05631af2fae9bb7f5fcf7aa6408aba2c8ea3a21f4d5f4eb42abca1dc205733156d89c6f14cfd13bb06b382e83"}, @NFC_ATTR_LLC_PARAM_LTO={0x5, 0xf, 0x2}, @NFC_ATTR_IM_PROTOCOLS={0x8, 0xd, 0x6}]}, 0x4d8}, 0x1, 0x0, 0x0, 0x81}, 0x4000000)
io_uring_register$auto_IORING_REGISTER_PBUF_STATUS(r6, 0x1a, &(0x7f00000038c0)="d0eede83cb625e021bff1f289414a58ad843e5d24f8aa42604cc1ed5b4c5355bde92d076ac2f7df75900db38b776352b23fdcf3bce1150005ff2e921527ac88c4a6b4557c6314a78b90bb55bd14e6fae94342662a3f58131a634813cba9ebd0358eae45c86b976d9805a9ebaa075d52a73beccc2168f44d4f0ff2ee0c2ee4d6bf76f959e4a9beee96f13112b3c2061b70bc9f3df89f043f1158f0ab196ec769affbb193a68470e9d2208e77c5a12ea090a97b568e2b2b9", 0x80000)
sendmsg$auto_NET_DM_CMD_START(r5, &(0x7f0000003b80)={&(0x7f0000003980)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000003b40)={&(0x7f0000003a00)={0x13c, 0x0, 0x200, 0x70bd27, 0x25dfdbfc, {}, [@NET_DM_ATTR_UNSPEC={0x26, 0x0, "50302ade8d954976c540b30d96742a10809f29e856d7aa0da31ca9bf009ad807288a"}, @NET_DM_ATTR_SW_DROPS={0x4}, @NET_DM_ATTR_UNSPEC={0xf9, 0x0, "af11c1c4ee52a60704ccbd71b83636b133e0b24965ebb3198129b1dffcdb061592a4e0056ba0e5a84e370dff7a67086ad2e41874c0e0695d0b8b6528cb355db4f42a029253bb9669c3929c86fc70f199981e900e16d0b91ba54481d977ff9fd576543484314fa36a1581ab67a02e6fec49f7fd8661e869ee3a771955b641114e3c20288cdbd3b8f70cef4d92f9b29a12ee0ef3a340dd6b53033288d3e68dd789e301d37ccc088fa59b391d58ddda6b9718bb351a0120fe8bb078bc3d7fdfe145a34a55c5f4b34ce7ddff4baaaa1675bee5a5bb7552334a4b0761a10a8f8b33000e163b73d5a8aa584eeaf7978ca90589fae2bb4f94"}]}, 0x13c}, 0x1, 0x0, 0x0, 0xc800}, 0x20000000)

2.163453608s ago: executing program 3 (id=5899):
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x4c810)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
r0 = landlock_create_ruleset$auto(&(0x7f0000000000)={0xd1d, 0x3, 0x7}, 0x9, 0x10000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(r0, r0, 0x4)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x1000)
io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3)

1.672532548s ago: executing program 3 (id=5900):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x0, 0x1f, 0x8000000000000000, 0x0)
sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, 0x0, 0x24004000)
openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/block/nbd4/hctx0/sched_tags\x00', 0x581481, 0x0)
socket(0x2, 0x801, 0x100) (async)
socket(0x2, 0x801, 0x100)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001ec0)='/sys/power/mem_sleep\x00', 0x1a9402, 0x0)
socket(0x18, 0x80802, 0x0)
socket(0x15, 0x5, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/workqueue/nf_ft_offload_stats/affinity_scope\x00', 0x2, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/acpi/wakeup\x00', 0x48041, 0x0)
mmap$auto(0xffffffffffffffff, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) (async)
mmap$auto(0xffffffffffffffff, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
shmat$auto(0x541, &(0x7f0000000740)='(\xd5\xa4N\xcfnC1\x97c\xd0<\xe4m\xf7\x0f/\xc9H\xa4\x97\x13\x96\a\xdc\xc3\xef\v\xb7\x97', 0xffefffff)
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) (async)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) (async)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
socket(0x2, 0x1, 0x0)
epoll_create$auto(0x4)
mq_open$auto(&(0x7f0000000000)='/dey/sequancer2\x00', 0xfffffffe, 0x2, &(0x7f0000000040)={0xe7a2, 0x0, 0x1, 0x102}) (async)
mq_open$auto(&(0x7f0000000000)='/dey/sequancer2\x00', 0xfffffffe, 0x2, &(0x7f0000000040)={0xe7a2, 0x0, 0x1, 0x102})
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000840)='/proc/sys/vm/dirty_background_ratio\x00', 0x80000, 0x0) (async)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000840)='/proc/sys/vm/dirty_background_ratio\x00', 0x80000, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1000000001ff, 0x7, 0xffffffffffffff96, 0x1, 0x948b, 0x80000000003, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x2800000000000, 0xd, 0x9, 0x5, 0xfffffffffffffffa]}, 0x0)
sched_get_priority_min$auto(0x40)
openat$auto_proc_projid_map_operations_base(0xffffffffffffff9c, 0x0, 0x301403, 0x0) (async)
openat$auto_proc_projid_map_operations_base(0xffffffffffffff9c, 0x0, 0x301403, 0x0)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) (async)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
sendmmsg$auto(r0, &(0x7f0000000700)={{&(0x7f00000000c0)="af5014c44275dd40761fbf058db1710e58cb22b3ce", 0x0, &(0x7f0000000640)={&(0x7f00000005c0)="a7bc43207d61dd08e0ec009427b7aa8e9f4058d4823f59c98d6ec0f0314218afcc588663ced13d6791343ec2cb9f0ee6a507e10801c5bc878103079f726445b6e57baf8a6d463b464276f310193b339e", 0x1}, 0xc, 0x0, 0x400, 0x5}, 0x3}, 0x2, 0x7)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) (async)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x800006, 0x7) (async)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x800006, 0x7)

1.214260284s ago: executing program 0 (id=5901):
syz_genetlink_get_family_id$auto_tcp_metrics(0x0, 0xffffffffffffffff) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001b80), 0xffffffffffffffff) (async)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r1, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)=ANY=[], 0x20}, 0x1, 0x0, 0x0, 0x220000c1}, 0x8000) (async)
r2 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000002640), 0x0, 0x0)
ioctl$auto_USB_RAW_IOCTL_INIT(r2, 0x41015500, &(0x7f00000002c0)={"a7a018b09bb196a05739a38a73f5452886bc599ef976c54a71a5ce72a9135c2a0e93a8760df83859e16320e8d0b1161f13d13afae66b1d900a4958396aa98d3504ca431aababcc6db7e3a89edabc32b8859c767780bfc15e3a03ce5b9300", "e600d778751f5f9e03e1f2b96e39a8ac08de7e036d650e2184857e6b64f6a2c7fb08c6f5ce3828fb4e9498c076bef49c99c9cd91332e12b53664dc20fa879020fbd184b8d300c13be6e57970685ce029fb2385ae6e132c1c6adbcfbd873a3b925d397a08fb733e19ef5ec4f40b0b473c72efd18b8a9e9f3d12c5e44468922beb", 0x3}) (async)
unshare$auto(0x8) (async, rerun: 64)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async, rerun: 64)
socket(0x23, 0x80805, 0x0) (async)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000002ac0), r3)
sendmsg$auto_NL802154_CMD_GET_WPAN_PHY(r3, &(0x7f0000002bc0)={0x0, 0x0, &(0x7f0000002b80)={&(0x7f0000000280)=ANY=[@ANYBLOB="1c000000", @ANYRES16=<r5=>r4, @ANYBLOB="831f2abd7000fbdbdf250100"], 0x1c}, 0x1, 0x0, 0x0, 0x20004041}, 0x40004) (async)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000400)={'caif0\x00', <r6=>0x0}) (async)
r7 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) (async)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r9=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000400)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="01002dbd7000fddbdf250800030008000300", @ANYRES32=r9], 0x24}, 0x1, 0x0, 0x0, 0x5c5fd097f751b33e}, 0x80) (async)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000440)={'geneve1\x00'}) (async)
r10 = socket(0xa, 0x2, 0x88)
r11 = socket$nl_generic(0x10, 0x3, 0x10) (async)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000040)={'bond0\x00', <r12=>0x0})
bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=<r13=>r12, <r14=>r11, 0x4, 0x1ff, r10, @relative_id=0x13, 0xe600}, 0xf)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000480)={'veth0_to_bridge\x00'}) (async)
sendmsg$auto_ETHTOOL_MSG_COALESCE_GET(r3, &(0x7f00000005c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0xc000}, 0xc, &(0x7f0000000580)={&(0x7f0000000600)=ANY=[@ANYBLOB="bc000000", @ANYRES16=0x0, @ANYBLOB="100029fd7000ffdbdf25130000002400018008000100", @ANYRES32=0x0, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="3c0001801400020068737230000000000000000000000000140002007465616d5f736c6176655f3100000000080003000000000008000100", @ANYRES8=r5, @ANYBLOB="1c000180080003000800000008000100", @ANYRES32=r6, @ANYBLOB="08000100", @ANYRES32=r14, @ANYRES8=r0, @ANYRES32, @ANYBLOB="08000100", @ANYRES32=r12, @ANYBLOB="080003000300000008000300ffffff7f080001ff", @ANYRESHEX=r13, @ANYBLOB="22cd19cb736d475595e3798cd82a7da496d942952f5e5f72757fdac775e384655ddda1b27e3fa8f814958b9cbba3ff58276efab040f7534aa7501665b3b532a52499850ee722f4a0425aae336597d8da15eb1c4c5bea0ec97724be2edae0b0a3679100"], 0xbc}, 0x1, 0x0, 0x0, 0x8000}, 0x800) (async)
mmap$auto(0x7, 0x3, 0x401, 0x12, r3, 0xfff) (async)
openat$auto_ext4_dir_operations_ext4(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/bluetooth/hci1/hci1:201\x00', 0x40400, 0x0) (async)
syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) (async)
close_range$auto(0x2, 0x8, 0x0)

1.041188285s ago: executing program 3 (id=5902):
openat$auto_full_fops_mem(0xffffffffffffff9c, &(0x7f0000000040), 0x10000, 0x0)
mmap$auto(0x0, 0x20008, 0x84, 0x100000000007fff, 0x2, 0x8001)
r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
close_range$auto(0x0, r0, 0x4000000000002)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = openat$auto_udmabuf_fops_udmabuf(0xffffffffffffff9c, &(0x7f0000000000), 0x20100, 0x0)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0)
read$auto(r3, 0x0, 0x20)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3)
ioctl$auto_UDMABUF_CREATE(r1, 0x40187542, &(0x7f00000000c0)={0xffffffffffffffff, 0x4, 0x0, 0x10000000008000})
openat$auto_xfs_dir_file_operations_xfs_file(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/mac80211_hwsim/hwsim13\x00', 0x440200, 0x0)
r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000640)='/dev/loop4\x00', 0x82, 0x0)
r5 = setfsuid$auto(0xee00)
r6 = setfsuid$auto(0xee01)
setresuid$auto(r5, r6, r5)
ioctl$auto_IOC_PR_RESERVE(r4, 0x401070c9, 0x0)

306.772302ms ago: executing program 6 (id=5903):
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x2000020009, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x8001)
close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x8001)
r0 = eventfd$auto(0x7)
sendmsg$auto_IEEE802154_LLSEC_DEL_SECLEVEL(r0, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4040800}, 0x10)
writev$auto(0x0, &(0x7f0000001140)={0x0, 0xc}, 0x40000000000000b)
socket(0x1d, 0x801, 0x84)
open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14aab4)
syz_genetlink_get_family_id$auto_hsr(&(0x7f0000000080), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioperm$auto(0x3, 0x5, 0x149)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000400), r2)
mmap$auto(0x0, 0x20009, 0xe1, 0xeb1, 0x3ff, 0x8000)
prctl$auto(0x9, 0x1, 0x0, 0x8000, 0x800e000)
mmap$auto(0x0, 0x400020009, 0xdf, 0xeb1, 0x401, 0x100000002)
pkey_mprotect$auto(0x7ffffffd, 0x2, 0x7, 0x4)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), r1)
socket(0x2, 0x1, 0x0)
socket(0x2a, 0xa, 0x430e780b)
socket(0x10, 0x2, 0xfffffffe)
memfd_create$auto(&(0x7f0000000000)='\xc4--:\xdd:,./-${\x00', 0x4)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x2, 0x3a)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x3, 0x6)

304.659617ms ago: executing program 3 (id=5904):
r0 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card1\x00', 0x0, 0x0)
ioctl$auto(r0, 0x64c6, 0x1e2) (async)
r1 = openat$auto_ftrace_event_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/events/vmalloc/purge_vmap_area_lazy/filter\x00', 0x80800, 0x0)
write$auto_ftrace_event_filter_fops_trace_events(r1, &(0x7f00000000c0)="db14a3a074f85161ea56394988a5884c81ff2d489e9d0464ae37eb7bef10d6e43ae18a970a58605dc17efe779b95c14078452b5bdd8c617d49c2aa8aeb3ca841d5ede4d63e1383845bceec5513fc383fd41b6edaa3a907da0623456b7405863b679a57c9a4ac11c01f16c5bc2a14bedf8e4354729b34191f46678c3c518a53b095ee651e9259ee347ae931711163f31447b11c1ee50f05482ee8625c428a5f4955f90503079751781aa6f7fb1830cd45592f15b9521e", 0xb6) (async)
close_range$auto(0x2, 0x8000, 0x0)

233.177586ms ago: executing program 0 (id=5905):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendfile$auto(0x1, 0x3, 0x0, 0xc01)
r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x8, 0x1, 0xfd86, 0x40eb2, r0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
set_mempolicy$auto(0x6, &(0x7f0000000000)=0x7fffffffffffffff, 0x4)
setsockopt$auto_SO_MARK(r1, 0xd, 0x24, &(0x7f0000000100)=']}&##/\'.\x00', 0x6)
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/psaux\x00', 0x2, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/udp_early_demux\x00', 0x28802, 0x0)
set_mempolicy$auto(0x8, &(0x7f0000000040)=0x1, 0xe061)
read$auto(0x3, 0x0, 0x80)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000440)='/dev/sequencer2\x00', 0x20000, 0x0)
ioctl$auto(r2, 0x40045108, 0x0)
r3 = openat$auto_nsim_pp_hold_fops_netdev(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/netdevsim/netdevsim0/ports/3/pp_hold\x00', 0xc0b02, 0x0)
write$auto(r3, 0x0, 0xc70)
bpf$auto(0x0, &(0x7f00000001c0)=@test={0xffffffffffffffff, 0xffff, 0xfffff0b6, 0xffff, 0x84, 0xac1, 0x2, 0x36242398, 0xfffff5b2, 0x3bb, 0x7, 0xffff, 0x6, 0x81, 0x68198}, 0x2)
semtimedop$auto(0x0, &(0x7f0000000140)={0x7, 0x81, 0x70}, 0x1f4, 0x0)
socket(0x1, 0x2, 0x4)
bpf$auto(0x0, &(0x7f0000000780)=@link_update={0xa, @new_map_fd=r1, 0x4007, @old_prog_fd=0x13b}, 0xa3)
quotactl_fd$auto(r0, 0x4, 0xffffffffffffffff, 0x0)
setpgid$auto(0x0, 0x0)
getdents64$auto(0xffffffffffffffff, 0x0, 0x400)
ioctl$auto_VHOST_VSOCK_SET_RUNNING(0xffffffffffffffff, 0x4004af61, 0x0)
madvise$auto(0x0, 0x8000000000000000, 0x15)
capget$auto(0x0, 0xfffffffffffffffe)

18.613258ms ago: executing program 3 (id=5906):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x0)
r0 = pidfd_open$auto(0x1, 0x0) (async, rerun: 32)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0) (rerun: 32)
read$auto(r1, 0x0, 0x20) (async)
writev$auto(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0xffffffff}, 0x5) (async, rerun: 64)
r2 = prctl$auto_SECCOMP_MODE_STRICT(0x200, 0x1, 0xffffffffffffffff, 0x2, 0x8) (rerun: 64)
r3 = syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000000340), r0)
sendmsg$auto_WG_CMD_GET_DEVICE(r2, &(0x7f00000004c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4e8af63a68570d25}, 0xc, &(0x7f0000000480)={&(0x7f0000000380)={0xd8, r3, 0x1, 0x70bd26, 0x25dfdbfe, {}, [@WGDEVICE_A_LISTEN_PORT={0x6, 0x6, 0x4e20}, @WGDEVICE_A_PUBLIC_KEY={0x4b, 0x4, "329cb7025a57219f11693b763ffff4f7aeab184cf7dee392a5f7d87d953c140334046b38b4a247058dd907535ffb6776295f06e3eb57f918a691809918f8177d214a42389ea696"}, @WGDEVICE_A_PUBLIC_KEY={0x53, 0x4, "9a131e25754fb01495da99645f32e072b90db22eafee9509e14fa70bd724ff44caab61381224fde20810a3ccb04bb6027f202ddc53061bc1d35e1a79102acf36f1587151bd973e9e65256a145fc53b"}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'dvmrp0\x00'}, @WGDEVICE_A_FWMARK={0x8, 0x7, 0x7}]}, 0xd8}, 0x1, 0x0, 0x0, 0x4004004}, 0x800) (async)
r4 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb1\x00', 0x20401, 0x0)
ioctl$auto_FBIOPUTCMAP(r4, 0x4605, 0x0)
r5 = userfaultfd$auto(0x1)
r6 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000540)='/dev/fb1\x00', 0x200, 0x0)
read$auto_fb_fops_fb_chrdev(r6, &(0x7f0000000580)=""/26, 0x1a) (async)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async)
unshare$auto(0x80003ff)
r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/system/memory/auto_online_blocks\x00', 0x2, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r7, &(0x7f0000000e80)=""/193, 0xc1) (async, rerun: 64)
r8 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000000), 0x101600, 0x0) (rerun: 64)
ioctl$auto_VHOST_SET_OWNER(r8, 0xaf01, 0x0) (async)
mmap$auto(0x25, 0xce, 0x2, 0x4254, r5, 0x9) (async, rerun: 32)
ioctl$auto_VHOST_SET_VRING_CALL(r8, 0x4008af21, &(0x7f0000002600)={0x0, <r9=>0xffffffffffffffff}) (rerun: 32)
r10 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), r9)
sendmsg$auto_NL80211_CMD_PROBE_CLIENT(r5, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="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", @ANYRES16=r10, @ANYBLOB="01002abd7000fddbdf255400000008000900faffffff08000d0000120000"], 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4040000)

0s ago: executing program 6 (id=5907):
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001140)='/sys/devices/virtual/block/zram0/comp_algorithm\x00', 0x20b42, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc2481, 0x0)
getrandom$auto(0x0, 0x6000000, 0x3)
madvise$auto(0x81, 0x2, 0x1)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, 0x0, 0xc0)
close_range$auto(0x2, 0x8, 0x0)
mremap$auto(0x0, 0x4, 0x3fd6, 0x3, 0x20000000)
openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x400, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyua\x00', 0x20a04, 0x0)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r1)
ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae89, &(0x7f0000000040)={0x2, 0x0, [{0x400000f5, 0x400, 0x9}]})
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/sockstat\x00', 0x280, 0x0)
pread64$auto(r2, 0x0, 0x5, 0x8d)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f00000031c0)='/dev/ttyua\x00', 0x109000, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
poll$auto(&(0x7f0000000080)={0x3, 0x1, 0xa}, 0x5, 0x106)
close_range$auto(0x2, 0x8, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'batadv_slave_1\x00'})
r3 = socket(0x10, 0x2, 0x4)
sendmsg$auto_NFSD_CMD_THREADS_SET(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
write$auto(r3, &(0x7f0000000000)='\x10\x00', 0x2fb)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)

kernel console output (not intermixed with test programs):

40
[ 1609.538400][T25820]  _copy_to_iter+0x2a4/0x15a0
[ 1609.538432][T25820]  ? __free_frozen_pages+0x734/0xff0
[ 1609.538458][T25820]  ? anon_pipe_read+0x7de/0x1210
[ 1609.538483][T25820]  ? __pfx__copy_to_iter+0x10/0x10
[ 1609.538515][T25820]  ? __folio_put+0x32e/0x450
[ 1609.538547][T25820]  ? __pfx___folio_put+0x10/0x10
[ 1609.538588][T25820]  copy_page_to_iter+0xf1/0x180
[ 1609.538622][T25820]  anon_pipe_read+0x47e/0x1210
[ 1609.538657][T25820]  ? __pfx_anon_pipe_read+0x10/0x10
[ 1609.538686][T25820]  ? __pfx_autoremove_wake_function+0x10/0x10
[ 1609.538718][T25820]  ? __pfx_aa_file_perm+0x10/0x10
[ 1609.538766][T25820]  fifo_pipe_read+0x1e/0xd0
[ 1609.538790][T25820]  do_iter_readv_writev+0x735/0x950
[ 1609.538831][T25820]  ? __pfx_do_iter_readv_writev+0x10/0x10
[ 1609.538874][T25820]  ? bpf_lsm_file_permission+0x9/0x10
[ 1609.538897][T25820]  ? security_file_permission+0x71/0x210
[ 1609.538930][T25820]  ? rw_verify_area+0xcf/0x680
[ 1609.538969][T25820]  vfs_readv+0x4c5/0x8a0
[ 1609.538998][T25820]  ? __pfx_vfs_readv+0x10/0x10
[ 1609.539040][T25820]  ? __fget_files+0x20e/0x3c0
[ 1609.539061][T25820]  ? __fget_files+0x1f0/0x3c0
[ 1609.539089][T25820]  ? do_readv+0x295/0x330
[ 1609.539108][T25820]  do_readv+0x295/0x330
[ 1609.539129][T25820]  ? __pfx_do_readv+0x10/0x10
[ 1609.539159][T25820]  do_syscall_64+0xcd/0x230
[ 1609.539196][T25820]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1609.539219][T25820] RIP: 0033:0x7fe28318e969
[ 1609.539237][T25820] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1609.539261][T25820] RSP: 002b:00007fe284065038 EFLAGS: 00000246 ORIG_RAX: 0000000000000013
[ 1609.539283][T25820] RAX: ffffffffffffffda RBX: 00007fe2833b6080 RCX: 00007fe28318e969
[ 1609.539298][T25820] RDX: 0000000000000001 RSI: 0000200000000a80 RDI: 0000000000000003
[ 1609.539313][T25820] RBP: 00007fe284065090 R08: 0000000000000000 R09: 0000000000000000
[ 1609.539327][T25820] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1609.539341][T25820] R13: 0000000000000001 R14: 00007fe2833b6080 R15: 00007ffffc6e4538
[ 1609.539370][T25820]  </TASK>
[ 1610.357522][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[ 1610.374586][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[ 1610.626964][T25827] bond0: option all_slaves_active: invalid value ()
[ 1611.528006][T17008] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18
[ 1612.446069][T25858] i2c i2c-0: Frontend requested software zigzag, but didn't set the frequency step size
[ 1614.015611][T25872] FAULT_INJECTION: forcing a failure.
[ 1614.015611][T25872] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1614.110478][T25872] CPU: 1 UID: 0 PID: 25872 Comm: syz.4.4181 Tainted: G     U              6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) 
[ 1614.110526][T25872] Tainted: [U]=USER
[ 1614.110534][T25872] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1614.110548][T25872] Call Trace:
[ 1614.110556][T25872]  <TASK>
[ 1614.110565][T25872]  dump_stack_lvl+0x16c/0x1f0
[ 1614.110604][T25872]  should_fail_ex+0x512/0x640
[ 1614.110637][T25872]  _copy_to_iter+0x2a4/0x15a0
[ 1614.110669][T25872]  ? __free_frozen_pages+0x734/0xff0
[ 1614.110695][T25872]  ? anon_pipe_read+0x7de/0x1210
[ 1614.110720][T25872]  ? __pfx__copy_to_iter+0x10/0x10
[ 1614.110751][T25872]  ? __folio_put+0x32e/0x450
[ 1614.110783][T25872]  ? __pfx___folio_put+0x10/0x10
[ 1614.110823][T25872]  copy_page_to_iter+0xf1/0x180
[ 1614.110857][T25872]  anon_pipe_read+0x47e/0x1210
[ 1614.110892][T25872]  ? __pfx_anon_pipe_read+0x10/0x10
[ 1614.110920][T25872]  ? __pfx_autoremove_wake_function+0x10/0x10
[ 1614.110956][T25872]  ? __pfx_aa_file_perm+0x10/0x10
[ 1614.110996][T25872]  fifo_pipe_read+0x1e/0xd0
[ 1614.111021][T25872]  do_iter_readv_writev+0x735/0x950
[ 1614.111061][T25872]  ? __pfx_do_iter_readv_writev+0x10/0x10
[ 1614.111105][T25872]  ? bpf_lsm_file_permission+0x9/0x10
[ 1614.111127][T25872]  ? security_file_permission+0x71/0x210
[ 1614.111160][T25872]  ? rw_verify_area+0xcf/0x680
[ 1614.111199][T25872]  vfs_readv+0x4c5/0x8a0
[ 1614.111228][T25872]  ? __pfx_vfs_readv+0x10/0x10
[ 1614.111270][T25872]  ? __fget_files+0x20e/0x3c0
[ 1614.111291][T25872]  ? __fget_files+0x1f0/0x3c0
[ 1614.111319][T25872]  ? do_readv+0x295/0x330
[ 1614.111338][T25872]  do_readv+0x295/0x330
[ 1614.111359][T25872]  ? __pfx_do_readv+0x10/0x10
[ 1614.111379][T25872]  ? rcu_is_watching+0x12/0xc0
[ 1614.111411][T25872]  do_syscall_64+0xcd/0x230
[ 1614.111447][T25872]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1614.111471][T25872] RIP: 0033:0x7fe28318e969
[ 1614.111506][T25872] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1614.111533][T25872] RSP: 002b:00007fe284065038 EFLAGS: 00000246 ORIG_RAX: 0000000000000013
[ 1614.111556][T25872] RAX: ffffffffffffffda RBX: 00007fe2833b6080 RCX: 00007fe28318e969
[ 1614.111571][T25872] RDX: 0000000000000001 RSI: 0000200000000a80 RDI: 0000000000000003
[ 1614.111586][T25872] RBP: 00007fe284065090 R08: 0000000000000000 R09: 0000000000000000
[ 1614.111600][T25872] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1614.111614][T25872] R13: 0000000000000001 R14: 00007fe2833b6080 R15: 00007ffffc6e4538
[ 1614.111643][T25872]  </TASK>
[ 1614.514224][T25870] ima: policy update failed
[ 1614.743387][   T30] audit: type=1802 audit(4294967359.015:22): pid=25870 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.6.4180" res=0 errno=0
[ 1616.070283][T25897] netlink: 330 bytes leftover after parsing attributes in process `syz.3.4187'.
[ 1617.536605][T25915] vivid-007: =================  START STATUS  =================
[ 1617.603058][T25915] vivid-007: Generate PTS: true
[ 1617.640994][T25915] vivid-007: Generate SCR: true
[ 1617.716976][T25915] tpg source WxH: 640x360 (Y'CbCr)
[ 1617.904413][T25915] tpg field: 1
[ 1617.908169][T25915] tpg crop: (0,0)/640x360
[ 1617.950244][T25915] tpg compose: (0,0)/640x360
[ 1617.950281][T25915] tpg colorspace: 8
[ 1617.950290][T25915] tpg transfer function: 0/0
[ 1617.950303][T25915] tpg Y'CbCr encoding: 0/0
[ 1617.950315][T25915] tpg quantization: 0/0
[ 1617.950326][T25915] tpg RGB range: 0/2
[ 1617.950338][T25915] vivid-007: ==================  END STATUS  ==================
[ 1620.794683][T25961] openvswitch: netlink: Key 5 has unexpected len 4 expected 2
[ 1620.837515][T25962] FAULT_INJECTION: forcing a failure.
[ 1620.837515][T25962] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1621.050803][T25962] CPU: 1 UID: 0 PID: 25962 Comm: syz.0.4199 Tainted: G     U              6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) 
[ 1621.050844][T25962] Tainted: [U]=USER
[ 1621.050852][T25962] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1621.050867][T25962] Call Trace:
[ 1621.050875][T25962]  <TASK>
[ 1621.050884][T25962]  dump_stack_lvl+0x16c/0x1f0
[ 1621.050922][T25962]  should_fail_ex+0x512/0x640
[ 1621.050954][T25962]  _copy_to_iter+0x2a4/0x15a0
[ 1621.050987][T25962]  ? __free_frozen_pages+0x734/0xff0
[ 1621.051011][T25962]  ? anon_pipe_read+0x7de/0x1210
[ 1621.051037][T25962]  ? __pfx__copy_to_iter+0x10/0x10
[ 1621.051068][T25962]  ? __folio_put+0x32e/0x450
[ 1621.051101][T25962]  ? __pfx___folio_put+0x10/0x10
[ 1621.051160][T25962]  copy_page_to_iter+0xf1/0x180
[ 1621.051195][T25962]  anon_pipe_read+0x47e/0x1210
[ 1621.051231][T25962]  ? __pfx_anon_pipe_read+0x10/0x10
[ 1621.051260][T25962]  ? __pfx_autoremove_wake_function+0x10/0x10
[ 1621.051291][T25962]  ? __pfx_aa_file_perm+0x10/0x10
[ 1621.051332][T25962]  fifo_pipe_read+0x1e/0xd0
[ 1621.051356][T25962]  do_iter_readv_writev+0x735/0x950
[ 1621.051397][T25962]  ? __pfx_do_iter_readv_writev+0x10/0x10
[ 1621.051440][T25962]  ? bpf_lsm_file_permission+0x9/0x10
[ 1621.051462][T25962]  ? security_file_permission+0x71/0x210
[ 1621.051496][T25962]  ? rw_verify_area+0xcf/0x680
[ 1621.051534][T25962]  vfs_readv+0x4c5/0x8a0
[ 1621.051564][T25962]  ? __pfx_vfs_readv+0x10/0x10
[ 1621.051606][T25962]  ? __fget_files+0x20e/0x3c0
[ 1621.051626][T25962]  ? __fget_files+0x1f0/0x3c0
[ 1621.051655][T25962]  ? do_readv+0x295/0x330
[ 1621.051674][T25962]  do_readv+0x295/0x330
[ 1621.051695][T25962]  ? __pfx_do_readv+0x10/0x10
[ 1621.051725][T25962]  do_syscall_64+0xcd/0x230
[ 1621.051762][T25962]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1621.051786][T25962] RIP: 0033:0x7f2db9d8e969
[ 1621.051804][T25962] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1621.051831][T25962] RSP: 002b:00007f2dbac51038 EFLAGS: 00000246 ORIG_RAX: 0000000000000013
[ 1621.051853][T25962] RAX: ffffffffffffffda RBX: 00007f2db9fb6080 RCX: 00007f2db9d8e969
[ 1621.051869][T25962] RDX: 0000000000000001 RSI: 0000200000000a80 RDI: 0000000000000003
[ 1621.051883][T25962] RBP: 00007f2dbac51090 R08: 0000000000000000 R09: 0000000000000000
[ 1621.051897][T25962] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1621.051911][T25962] R13: 0000000000000001 R14: 00007f2db9fb6080 R15: 00007fff28d95688
[ 1621.051944][T25962]  </TASK>
[ 1621.325865][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1622.335027][T25975] could not allocate digest TFM handle binfmt_misc
[ 1622.683832][T25985] bond0: option all_slaves_active: invalid value ()
[ 1622.713950][T25972] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff88807a400000 pfn:0x7a400
[ 1622.860959][T25972] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 1622.921779][T25972] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000
[ 1623.006425][T25972] raw: ffff88807a400000 0000000000000000 00000001ffffffff 0000000000000000
[ 1623.441805][T25972] page dumped because: unmovable page
[ 1623.534016][T25972] page_owner tracks the page as allocated
[ 1623.638387][T25972] page last allocated via order 0, migratetype Unmovable, gfp_mask 0xcc0(GFP_KERNEL), pid 20003, tgid 20003 (syz-executor), ts 1138245148299, free_ts 1138208019225
[ 1623.910326][T25972]  post_alloc_hook+0x181/0x1b0
[ 1623.991779][T25972]  get_page_from_freelist+0x135c/0x3920
[ 1624.081768][T25972]  __alloc_frozen_pages_noprof+0x263/0x23a0
[ 1624.088360][T25972]  alloc_pages_mpol+0x1fb/0x550
[ 1624.247632][T25972]  alloc_pages_noprof+0x131/0x390
[ 1624.292543][T25972]  get_free_pages_noprof+0xc/0x40
[ 1624.331695][T25972]  kasan_populate_vmalloc_pte+0x2d/0x160
[ 1624.390059][T25972]  __apply_to_page_range+0x617/0xd60
[ 1624.446136][T25972]  alloc_vmap_area+0x919/0x2970
[ 1624.478796][T25972]  __get_vm_area_node+0x1a7/0x300
[ 1624.528925][T25972]  __vmalloc_node_range_noprof+0x277/0x1540
[ 1624.535474][T25972]  vmalloc_user_noprof+0x6b/0x90
[ 1624.605418][T25972]  kcov_ioctl+0x4c/0x730
[ 1624.653988][T25972]  __x64_sys_ioctl+0x190/0x200
[ 1624.679661][T25972]  do_syscall_64+0xcd/0x230
[ 1624.740299][T25972]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1624.787327][T25972] page last free pid 8132 tgid 8132 stack trace:
[ 1624.831809][T25972]  __free_frozen_pages+0x69d/0xff0
[ 1624.890061][T25972]  tlb_finish_mmu+0x237/0x7b0
[ 1624.931321][T25972]  exit_mmap+0x403/0xb90
[ 1624.984101][T25972]  __mmput+0x12a/0x410
[ 1625.004242][T25972]  mmput+0x62/0x70
[ 1625.008755][T25972]  do_exit+0x9d1/0x2c30
[ 1625.072344][T25972]  do_group_exit+0xd3/0x2a0
[ 1625.115809][T25972]  get_signal+0x2673/0x26d0
[ 1625.120805][T25972]  arch_do_signal_or_restart+0x8f/0x7a0
[ 1625.207440][T25972]  syscall_exit_to_user_mode+0x150/0x2a0
[ 1625.249871][T25972]  do_syscall_64+0xda/0x230
[ 1625.275508][T25972]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1625.935730][T26008] openvswitch: netlink: nsh attribute has 4 unknown bytes.
[ 1630.074717][T15911] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18
[ 1631.397776][T26076] openvswitch: netlink: nsh attribute has 4 unknown bytes.
[ 1638.821305][T26159] openvswitch: netlink: nsh attribute has 4 unknown bytes.
[ 1641.228509][T26185] nvme_fabrics: missing parameter 'transport=%s'
[ 1641.309689][T26185] nvme_fabrics: missing parameter 'nqn=%s'
[ 1641.365274][T26188] nvme_fabrics: unknown parameter or missing value '0x0006000' in ctrl creation request
[ 1642.821088][T26206] netlink: 330 bytes leftover after parsing attributes in process `syz.0.4253'.
[ 1648.387770][T26274] netlink: 330 bytes leftover after parsing attributes in process `syz.0.4264'.
[ 1649.695342][T26286] vivid-007: =================  START STATUS  =================
[ 1649.841000][T26286] vivid-007: Generate PTS: true
[ 1649.974614][T26286] vivid-007: Generate SCR: true
[ 1650.079167][T26286] tpg source WxH: 640x360 (Y'CbCr)
[ 1650.255808][T26286] tpg field: 1
[ 1650.305299][T26286] tpg crop: (0,0)/640x360
[ 1650.310116][T26286] tpg compose: (0,0)/640x360
[ 1650.596467][T26286] tpg colorspace: 8
[ 1650.600702][T26286] tpg transfer function: 0/0
[ 1650.879460][T26286] tpg Y'CbCr encoding: 0/0
[ 1650.991764][T26286] tpg quantization: 0/0
[ 1650.996379][T26286] tpg RGB range: 0/2
[ 1651.190757][T26286] vivid-007: ==================  END STATUS  ==================
[ 1651.439236][T26303] vivid-007: =================  START STATUS  =================
[ 1651.519134][T26303] vivid-007: Generate PTS: true
[ 1651.524758][T26303] vivid-007: Generate SCR: true
[ 1651.662975][T26303] tpg source WxH: 640x360 (Y'CbCr)
[ 1651.727187][T26303] tpg field: 1
[ 1651.730945][T26303] tpg crop: (0,0)/640x360
[ 1651.794874][T26303] tpg compose: (0,0)/640x360
[ 1651.826758][T26303] tpg colorspace: 8
[ 1651.842785][T26303] tpg transfer function: 0/0
[ 1651.922252][T26303] tpg Y'CbCr encoding: 0/0
[ 1651.961345][T26303] tpg quantization: 0/0
[ 1652.035783][T26303] tpg RGB range: 0/2
[ 1652.040144][T26303] vivid-007: ==================  END STATUS  ==================
[ 1654.341518][T26326] netlink: 330 bytes leftover after parsing attributes in process `syz.6.4274'.
[ 1655.787955][T26338] netlink: 'syz.3.4278': attribute type 8 has an invalid length.
[ 1659.757061][T26385] netlink: 330 bytes leftover after parsing attributes in process `syz.4.4285'.
[ 1660.615752][T26394] nvme_fabrics: missing parameter 'transport=%s'
[ 1660.715921][T26394] nvme_fabrics: missing parameter 'nqn=%s'
[ 1660.850173][T26397] nvme_fabrics: unknown parameter or missing value '0x0006000' in ctrl creation request
[ 1664.172400][T26423] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4301'.
[ 1664.311861][T26427] netlink: 354 bytes leftover after parsing attributes in process `syz.0.4301'.
[ 1664.605713][T26425] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4294'.
[ 1665.364678][T26437] vivid-007: =================  START STATUS  =================
[ 1665.404354][T26437] vivid-007: Generate PTS: true
[ 1665.409775][T26437] vivid-007: Generate SCR: true
[ 1665.444216][T26437] tpg source WxH: 640x360 (Y'CbCr)
[ 1665.449904][T26437] tpg field: 1
[ 1665.453609][T26437] tpg crop: (0,0)/640x360
[ 1665.545722][T26437] tpg compose: (0,0)/640x360
[ 1665.550815][T26437] tpg colorspace: 8
[ 1665.703134][T26437] tpg transfer function: 0/0
[ 1665.708232][T26437] tpg Y'CbCr encoding: 0/0
[ 1665.850831][T26437] tpg quantization: 0/0
[ 1665.866124][T26437] tpg RGB range: 0/2
[ 1665.870466][T26437] vivid-007: ==================  END STATUS  ==================
[ 1669.804708][T26457] netlink: 50 bytes leftover after parsing attributes in process `syz.6.4298'.
[ 1670.034925][T26459] netlink: 16 bytes leftover after parsing attributes in process `syz.6.4298'.
[ 1670.655550][T26464] vivid-007: =================  START STATUS  =================
[ 1670.686909][T26464] vivid-007: Generate PTS: true
[ 1670.692305][T26464] vivid-007: Generate SCR: true
[ 1670.817606][T26464] tpg source WxH: 640x360 (Y'CbCr)
[ 1670.823270][T26464] tpg field: 1
[ 1671.016358][T26464] tpg crop: (0,0)/640x360
[ 1671.023593][T26464] tpg compose: (0,0)/640x360
[ 1671.144415][T26464] tpg colorspace: 8
[ 1671.148663][T26464] tpg transfer function: 0/0
[ 1671.153705][T26464] tpg Y'CbCr encoding: 0/0
[ 1671.410754][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[ 1671.423036][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[ 1671.433330][T26464] tpg quantization: 0/0
[ 1671.437928][T26464] tpg RGB range: 0/2
[ 1671.442207][T26464] vivid-007: ==================  END STATUS  ==================
[ 1678.008161][T26500] nvme_fabrics: missing parameter 'transport=%s'
[ 1678.052278][T26500] nvme_fabrics: missing parameter 'nqn=%s'
[ 1678.155982][T26506] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[ 1680.758643][T26533] nvme_fabrics: missing parameter 'transport=%s'
[ 1680.819064][T26533] nvme_fabrics: missing parameter 'nqn=%s'
[ 1681.012078][T26537] nvme_fabrics: missing parameter 'transport=%s'
[ 1681.070897][T26537] nvme_fabrics: missing parameter 'nqn=%s'
[ 1682.205764][T26553] Invalid ELF header magic: != ELF
[ 1682.533241][T26551] ima: policy update failed
[ 1682.615236][   T30] audit: type=1802 audit(4294967427.459:23): pid=26551 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.4321" res=0 errno=0
[ 1683.161325][T26568] nvme_fabrics: missing parameter 'transport=%s'
[ 1683.191424][T26568] nvme_fabrics: missing parameter 'nqn=%s'
[ 1683.260173][T26573] nvme_fabrics: unknown parameter or missing value '0x0006000' in ctrl creation request
[ 1683.960422][T26587] nvme_fabrics: missing parameter 'transport=%s'
[ 1683.967427][T26587] nvme_fabrics: missing parameter 'nqn=%s'
[ 1684.168884][T26589] nvme_fabrics: missing parameter 'transport=%s'
[ 1684.175888][T26589] nvme_fabrics: missing parameter 'nqn=%s'
[ 1684.393022][T26594] nvme_fabrics: missing parameter 'transport=%s'
[ 1684.445077][T26594] nvme_fabrics: missing parameter 'nqn=%s'
[ 1684.621219][T26599] nvme_fabrics: missing parameter 'transport=%s'
[ 1684.657904][T26599] nvme_fabrics: missing parameter 'nqn=%s'
[ 1684.879867][T26610] nvme_fabrics: missing parameter 'transport=%s'
[ 1684.894745][T26610] nvme_fabrics: missing parameter 'nqn=%s'
[ 1684.921761][T26613] nvme_fabrics: unknown parameter or missing value '0x0006000' in ctrl creation request
[ 1685.240366][T26615] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4336'.
[ 1687.282654][T26647] nvme_fabrics: missing parameter 'transport=%s'
[ 1687.329560][T26647] nvme_fabrics: missing parameter 'nqn=%s'
[ 1687.598918][T26649] nvme_fabrics: missing parameter 'transport=%s'
[ 1687.626289][T26649] nvme_fabrics: missing parameter 'nqn=%s'
[ 1688.125698][T26655] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4346'.
[ 1688.787089][   T30] audit: type=1326 audit(4294967433.661:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26673 comm="syz.6.4353" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6937f8e969 code=0x0
[ 1688.872392][T26679] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[ 1689.018183][T26680] Invalid ELF header magic: != ELF
[ 1690.830500][T26704] nvme_fabrics: missing parameter 'transport=%s'
[ 1690.860224][T26704] nvme_fabrics: missing parameter 'nqn=%s'
[ 1690.906955][T15911] Bluetooth: hci5: Malformed LE Event: 0x1b
[ 1691.106549][T26706] nvme_fabrics: missing parameter 'transport=%s'
[ 1691.147864][T26706] nvme_fabrics: missing parameter 'nqn=%s'
[ 1691.509531][T26718] vivid-007: =================  START STATUS  =================
[ 1691.550506][T26718] vivid-007: Generate PTS: true
[ 1691.556228][T26711] netlink: 28 bytes leftover after parsing attributes in process `syz.6.4360'.
[ 1691.582956][T26718] vivid-007: Generate SCR: true
[ 1691.632198][T26718] tpg source WxH: 640x360 (Y'CbCr)
[ 1691.679088][T26711] mac80211_hwsim hwsim56 wlan1: entered allmulticast mode
[ 1691.757438][T26718] tpg field: 1
[ 1691.782349][T26718] tpg crop: (0,0)/640x360
[ 1691.885953][T26718] tpg compose: (0,0)/640x360
[ 1691.940033][T26718] tpg colorspace: 8
[ 1692.020867][T26718] tpg transfer function: 0/0
[ 1692.097729][T26718] tpg Y'CbCr encoding: 0/0
[ 1692.180846][T26725] ima: policy update failed
[ 1692.189403][T26718] tpg quantization: 0/0
[ 1692.236487][   T30] audit: type=1802 audit(4294967437.129:25): pid=26725 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.4363" res=0 errno=0
[ 1692.306008][T26718] tpg RGB range: 0/2
[ 1692.356787][T26718] vivid-007: ==================  END STATUS  ==================
[ 1692.579151][T26738] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4367'.
[ 1692.625190][T26740] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4366'.
[ 1694.838810][T26768] ima: policy update failed
[ 1694.938984][   T30] audit: type=1802 audit(4294967439.833:26): pid=26768 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.4374" res=0 errno=0
[ 1695.303882][T26780] netlink: 50 bytes leftover after parsing attributes in process `syz.3.4379'.
[ 1695.752011][T26791] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4381'.
[ 1695.937264][T26796] vivid-007: =================  START STATUS  =================
[ 1695.982089][T26796] vivid-007: Generate PTS: true
[ 1696.034432][T26796] vivid-007: Generate SCR: true
[ 1696.174015][T26796] tpg source WxH: 640x360 (Y'CbCr)
[ 1696.227164][T26796] tpg field: 1
[ 1696.307117][T26796] tpg crop: (0,0)/640x360
[ 1696.411643][T26796] tpg compose: (0,0)/640x360
[ 1696.471484][T26796] tpg colorspace: 8
[ 1696.592104][T26796] tpg transfer function: 0/0
[ 1696.597241][T26796] tpg Y'CbCr encoding: 0/0
[ 1696.692670][T26796] tpg quantization: 0/0
[ 1696.697328][T26796] tpg RGB range: 0/2
[ 1696.782228][T26796] vivid-007: ==================  END STATUS  ==================
[ 1699.162457][T26829] ima: policy update failed
[ 1699.279566][   T30] audit: type=1802 audit(4294967444.206:27): pid=26829 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.6.4387" res=0 errno=0
[ 1700.241506][T26846] openvswitch: netlink: nsh attribute has 4 unknown bytes.
[ 1701.118667][T26854] vivid-007: =================  START STATUS  =================
[ 1701.188309][T26854] vivid-007: Generate PTS: true
[ 1701.211555][T26854] vivid-007: Generate SCR: true
[ 1701.268028][T26854] tpg source WxH: 640x360 (Y'CbCr)
[ 1701.305243][T26854] tpg field: 1
[ 1701.420893][T26854] tpg crop: (0,0)/640x360
[ 1701.425735][T26854] tpg compose: (0,0)/640x360
[ 1701.586256][T26854] tpg colorspace: 8
[ 1701.590519][T26854] tpg transfer function: 0/0
[ 1701.595571][T26854] tpg Y'CbCr encoding: 0/0
[ 1701.834265][T26854] tpg quantization: 0/0
[ 1701.914492][T26854] tpg RGB range: 0/2
[ 1701.918824][T26854] vivid-007: ==================  END STATUS  ==================
[ 1706.396278][T26900] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1706.468710][T26908] ima: policy update failed
[ 1706.522233][   T30] audit: type=1802 audit(4294967451.483:28): pid=26908 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.4405" res=0 errno=0
[ 1707.236533][T26931] Invalid ELF header magic: != ELF
[ 1707.258870][T26900] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1707.538273][T26900] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1707.693776][T26900] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1708.336421][T26942] openvswitch: netlink: nsh attribute has 4 unknown bytes.
[ 1708.646349][T26949] vivid-007: =================  START STATUS  =================
[ 1708.687952][T26949] vivid-007: Generate PTS: true
[ 1708.717023][T26949] vivid-007: Generate SCR: true
[ 1708.772354][T26949] tpg source WxH: 640x360 (Y'CbCr)
[ 1708.860921][T26949] tpg field: 1
[ 1708.914739][T26949] tpg crop: (0,0)/640x360
[ 1709.032060][T26949] tpg compose: (0,0)/640x360
[ 1709.037233][T26949] tpg colorspace: 8
[ 1709.135088][T26949] tpg transfer function: 0/0
[ 1709.276853][T26949] tpg Y'CbCr encoding: 0/0
[ 1709.373098][T26949] tpg quantization: 0/0
[ 1709.672480][T26949] tpg RGB range: 0/2
[ 1709.743828][T26949] vivid-007: ==================  END STATUS  ==================
		




	
	

	

	
		

	


	
	

		
	

	
				
	
		


	
		
	
	

	



			








	

	
	

	

	



	
	
	
	




	


	
		
	
			
	






	





	




		







	

	
	
	
		
	

	
	
	
		

	
		

	



	
	
		

	



	
	


			




			


	
	

	

	
				
	
		


	
		
	

		


		

		

	
	
	
	



	
	

	
	


		

		


		

		

	
	
	
	



	
	

	
	


		

		
	

	
	

	

	
				
	
		


	
		
	


syzkaller
syzkaller login: [ 1726.558639][T27163] vivid-007: =================  START STATUS  =================
[ 1726.606086][T27163] vivid-007: Generate PTS: true
[ 1726.630118][T27163] vivid-007: Generate SCR: true
[ 1726.655892][T27163] tpg source WxH: 640x360 (Y'CbCr)
[ 1726.710023][T27163] tpg field: 1
[ 1726.746722][T27163] tpg crop: (0,0)/640x360
[ 1726.868009][T27163] tpg compose: (0,0)/640x360
[ 1726.873460][T27163] tpg colorspace: 8
[ 1727.023237][T27163] tpg transfer function: 0/0
[ 1727.140012][T27163] tpg Y'CbCr encoding: 0/0
[ 1727.165065][T27163] tpg quantization: 0/0
[ 1727.233559][T27163] tpg RGB range: 0/2
[ 1727.281520][T27163] vivid-007: ==================  END STATUS  ==================
[ 1728.337445][T27181] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4460'.
[ 1728.350939][T27186] netlink: 342 bytes leftover after parsing attributes in process `syz.4.4461'.
[ 1728.964782][T27198] openvswitch: netlink: nsh attribute has 4 unknown bytes.
[ 1729.651758][T27209] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff88807a400000 pfn:0x7a400
[ 1729.651865][T27209] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 1729.732539][T27209] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000
[ 1729.732571][T27209] raw: ffff88807a400000 0000000000000000 00000001ffffffff 0000000000000000
[ 1729.732587][T27209] page dumped because: unmovable page
[ 1729.732600][T27209] page_owner tracks the page as allocated
[ 1729.732695][T27209] page last allocated via order 0, migratetype Unmovable, gfp_mask 0xcc0(GFP_KERNEL), pid 20003, tgid 20003 (syz-executor), ts 1138245148299, free_ts 1138208019225
[ 1729.732732][T27209]  post_alloc_hook+0x181/0x1b0
[ 1729.732761][T27209]  get_page_from_freelist+0x135c/0x3920
[ 1729.732789][T27209]  __alloc_frozen_pages_noprof+0x263/0x23a0
[ 1729.732817][T27209]  alloc_pages_mpol+0x1fb/0x550
[ 1729.732847][T27209]  alloc_pages_noprof+0x131/0x390
[ 1729.732876][T27209]  get_free_pages_noprof+0xc/0x40
[ 1729.732910][T27209]  kasan_populate_vmalloc_pte+0x2d/0x160
[ 1729.732936][T27209]  __apply_to_page_range+0x617/0xd60
[ 1729.732958][T27209]  alloc_vmap_area+0x919/0x2970
[ 1729.732992][T27209]  __get_vm_area_node+0x1a7/0x300
[ 1729.733028][T27209]  __vmalloc_node_range_noprof+0x277/0x1540
[ 1729.733051][T27209]  vmalloc_user_noprof+0x6b/0x90
[ 1729.733073][T27209]  kcov_ioctl+0x4c/0x730
[ 1729.733105][T27209]  __x64_sys_ioctl+0x190/0x200
[ 1729.733138][T27209]  do_syscall_64+0xcd/0x230
[ 1729.733172][T27209]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1729.733196][T27209] page last free pid 8132 tgid 8132 stack trace:
[ 1729.733211][T27209]  __free_frozen_pages+0x69d/0xff0
[ 1729.733233][T27209]  tlb_finish_mmu+0x237/0x7b0
[ 1729.733258][T27209]  exit_mmap+0x403/0xb90
[ 1729.733279][T27209]  __mmput+0x12a/0x410
[ 1729.733307][T27209]  mmput+0x62/0x70
[ 1729.733335][T27209]  do_exit+0x9d1/0x2c30
[ 1729.733367][T27209]  do_group_exit+0xd3/0x2a0
[ 1729.733401][T27209]  get_signal+0x2673/0x26d0
[ 1729.733430][T27209]  arch_do_signal_or_restart+0x8f/0x7a0
[ 1729.733486][T27209]  syscall_exit_to_user_mode+0x150/0x2a0
[ 1729.733521][T27209]  do_syscall_64+0xda/0x230
[ 1729.733554][T27209]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1730.367235][T27213] ima: policy update failed
[ 1730.369684][   T30] audit: type=1802 audit(4294967475.457:32): pid=27213 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.4.4470" res=0 errno=0
[ 1730.823823][T27233] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4473'.
[ 1731.638040][T27251] openvswitch: netlink: nsh attribute has 4 unknown bytes.
[ 1732.520714][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[ 1732.527761][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[ 1733.436889][T27271] ima: policy update failed
[ 1733.509246][   T30] audit: type=1802 audit(4294967478.614:33): pid=27271 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.6.4482" res=0 errno=0
[ 1733.707956][T27282] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4485'.
[ 1734.717228][T27310] tc_dump_action: action bad kind
[ 1736.166055][T27334] ima: policy update failed
[ 1736.269357][   T30] audit: type=1802 audit(4294967481.378:34): pid=27334 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.4495" res=0 errno=0
[ 1737.292163][T27350] nvme_fabrics: missing parameter 'transport=%s'
[ 1737.339680][T27350] nvme_fabrics: missing parameter 'nqn=%s'
[ 1738.601137][T27380] FAULT_INJECTION: forcing a failure.
[ 1738.601137][T27380] name failslab, interval 1, probability 0, space 0, times 0
[ 1738.768957][T27380] CPU: 1 UID: 0 PID: 27380 Comm: syz.4.4507 Tainted: G     U              6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) 
[ 1738.769000][T27380] Tainted: [U]=USER
[ 1738.769009][T27380] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1738.769024][T27380] Call Trace:
[ 1738.769032][T27380]  <TASK>
[ 1738.769043][T27380]  dump_stack_lvl+0x16c/0x1f0
[ 1738.769082][T27380]  should_fail_ex+0x512/0x640
[ 1738.769111][T27380]  ? __kmalloc_cache_noprof+0x57/0x3e0
[ 1738.769140][T27380]  should_failslab+0xc2/0x120
[ 1738.769171][T27380]  __kmalloc_cache_noprof+0x6a/0x3e0
[ 1738.769197][T27380]  ? snd_card_file_add+0x52/0x330
[ 1738.769240][T27380]  snd_card_file_add+0x52/0x330
[ 1738.769281][T27380]  snd_mixer_oss_open+0xd0/0x300
[ 1738.769315][T27380]  ? __pfx_snd_mixer_oss_open+0x10/0x10
[ 1738.769351][T27380]  soundcore_open+0x409/0x580
[ 1738.769387][T27380]  ? __pfx_soundcore_open+0x10/0x10
[ 1738.769420][T27380]  chrdev_open+0x231/0x6a0
[ 1738.769447][T27380]  ? __pfx_apparmor_file_open+0x10/0x10
[ 1738.769479][T27380]  ? __pfx_chrdev_open+0x10/0x10
[ 1738.769508][T27380]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[ 1738.769551][T27380]  do_dentry_open+0x741/0x1c10
[ 1738.769578][T27380]  ? __pfx_chrdev_open+0x10/0x10
[ 1738.769611][T27380]  vfs_open+0x82/0x3f0
[ 1738.769648][T27380]  path_openat+0x1e5e/0x2d40
[ 1738.769683][T27380]  ? __pfx_path_openat+0x10/0x10
[ 1738.769715][T27380]  do_filp_open+0x20b/0x470
[ 1738.769741][T27380]  ? __pfx_do_filp_open+0x10/0x10
[ 1738.769786][T27380]  ? alloc_fd+0x471/0x7d0
[ 1738.769816][T27380]  do_sys_openat2+0x11b/0x1d0
[ 1738.769850][T27380]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1738.769895][T27380]  __x64_sys_openat+0x174/0x210
[ 1738.769939][T27380]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1738.769976][T27380]  ? rcu_is_watching+0x12/0xc0
[ 1738.770009][T27380]  do_syscall_64+0xcd/0x230
[ 1738.770046][T27380]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1738.770071][T27380] RIP: 0033:0x7fe28318e969
[ 1738.770089][T27380] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1738.770114][T27380] RSP: 002b:00007fe284065038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1738.770136][T27380] RAX: ffffffffffffffda RBX: 00007fe2833b6080 RCX: 00007fe28318e969
[ 1738.770152][T27380] RDX: 0000000000000000 RSI: 0000200000000000 RDI: ffffffffffffff9c
[ 1738.770167][T27380] RBP: 00007fe283210ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1738.770183][T27380] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1738.770198][T27380] R13: 0000000000000000 R14: 00007fe2833b6080 R15: 00007ffffc6e4538
[ 1738.770227][T27380]  </TASK>
[ 1742.754762][T27499] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1742.776290][T27499] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1742.789586][T27499] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1742.814981][T27499] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1742.827186][T27499] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1743.085251][T16520] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1743.398056][T16520] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1743.693231][T16520] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1744.646760][T16520] hsr0: left allmulticast mode
[ 1744.677976][T16520] hsr_slave_0: left allmulticast mode
[ 1744.714650][T16520] hsr_slave_1: left allmulticast mode
[ 1744.720670][T16520] hsr0: left promiscuous mode
[ 1744.786446][T16520] bridge0: port 3(hsr0) entered disabled state
[ 1744.852534][T27499] Bluetooth: hci1: command tx timeout
[ 1744.917968][T16520] bridge_slave_1: left allmulticast mode
[ 1744.972999][T16520] bridge_slave_1: left promiscuous mode
[ 1744.979540][T16520] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1745.110803][T16520] bridge_slave_0: left allmulticast mode
[ 1745.117056][T16520] bridge_slave_0: left promiscuous mode
[ 1745.209516][T16520] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1746.920570][T27499] Bluetooth: hci1: command tx timeout
[ 1747.995319][T16520] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1748.094871][T16520] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1748.171799][T16520] bond0 (unregistering): Released all slaves
[ 1748.638225][T27495] chnl_net:caif_netlink_parms(): no params data found
[ 1748.707830][T16520] .SR: left promiscuous mode
[ 1749.013949][T27499] Bluetooth: hci1: command tx timeout
[ 1749.788545][T27495] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1749.861412][T27495] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1749.906526][T27495] bridge_slave_0: entered allmulticast mode
[ 1749.978546][T27495] bridge_slave_0: entered promiscuous mode
[ 1750.036661][T27495] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1750.088280][T27495] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1750.144212][T27495] bridge_slave_1: entered allmulticast mode
[ 1750.213530][T27495] bridge_slave_1: entered promiscuous mode
[ 1750.595673][T27495] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1750.692869][T27495] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1751.059441][T27499] Bluetooth: hci1: command tx timeout
[ 1751.114024][T27495] team0: Port device team_slave_0 added
[ 1751.216783][T27495] team0: Port device team_slave_1 added
[ 1751.537478][T27495] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1751.545166][T27495] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1751.814018][T27495] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1751.926792][T27495] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1751.984048][T27495] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1752.174091][T27495] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1752.612899][T27495] hsr_slave_0: entered promiscuous mode
[ 1752.666243][T27495] hsr_slave_1: entered promiscuous mode
[ 1754.139364][T16520] hsr_slave_0: left promiscuous mode
[ 1754.182386][T16520] hsr_slave_1: left promiscuous mode
[ 1754.238144][T16520] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1754.289477][T16520] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1754.411832][T16520] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1754.420008][T16520] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1754.587822][T16520] veth0_macvtap: left promiscuous mode
[ 1754.680200][T16520] veth1_vlan: left promiscuous mode
[ 1754.733514][T16520] veth0_vlan: left promiscuous mode
[ 1758.416845][T16520] team0 (unregistering): Port device team_slave_1 removed
[ 1758.817164][T16520] team0 (unregistering): Port device team_slave_0 removed
[ 1763.368435][T27495] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1763.449774][T27495] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1763.544576][T27495] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1763.619341][T27495] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1764.189089][T27495] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1764.349435][T27495] 8021q: adding VLAN 0 to HW filter on device team0
[ 1764.460547][T16520] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1764.468441][T16520] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1764.579062][T16520] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1764.586916][T16520] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1764.833615][T27495] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1764.944265][T27495] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1765.784932][T27495] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1766.018696][T27495] veth0_vlan: entered promiscuous mode
[ 1766.124691][T27495] veth1_vlan: entered promiscuous mode
[ 1766.306036][T27495] veth0_macvtap: entered promiscuous mode
[ 1766.407665][T27495] veth1_macvtap: entered promiscuous mode
[ 1766.541543][T27495] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1766.626855][T27495] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1766.687675][T27495] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1766.767454][T27495] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1766.835103][T27495] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1766.911833][T27495] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1766.977694][T27495] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1767.103666][T27495] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1767.195171][T27495] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1767.257595][T27495] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1767.330544][T27495] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1767.405164][T27495] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1767.490023][T27495] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1767.558800][T27495] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1767.625420][T27495] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1767.687795][T27495] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1768.206451][T16519] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1768.275696][T16519] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1768.395701][T24234] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1768.465868][T24234] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1770.551439][T17008] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1770.575266][T17008] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1770.584979][T17008] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1770.597624][T17008] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1770.608679][T17008] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1770.831156][T17008] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260
[ 1770.831192][T17008] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260
[ 1770.855876][T17008] Bluetooth: hci1: Unknown advertising packet type: 0x7f
[ 1770.855927][T17008] Bluetooth: hci1: Unknown advertising packet type: 0x74
[ 1770.864104][T17008] Bluetooth: hci1: adv larger than maximum supported
[ 1770.875868][T17008] Bluetooth: hci1: Unknown advertising packet type: 0x20
[ 1770.883248][T17008] Bluetooth: hci1: adv larger than maximum supported
[ 1770.891092][T17008] Bluetooth: hci1: Malformed LE Event: 0x0d
[ 1770.956965][T28448] nvme_fabrics: missing parameter 'transport=%s'
[ 1770.964314][T28448] nvme_fabrics: missing parameter 'nqn=%s'
[ 1771.027618][T16519] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1771.558114][T16519] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1772.012835][T16519] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1772.402126][T16519] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1772.628022][T17008] Bluetooth: hci2: command tx timeout
[ 1773.471005][T16519] bridge_slave_1: left allmulticast mode
[ 1773.533042][T16519] bridge_slave_1: left promiscuous mode
[ 1773.569770][T16519] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1773.609597][T16519] bridge_slave_0: left allmulticast mode
[ 1773.639655][T16519] bridge_slave_0: left promiscuous mode
[ 1773.674714][T16519] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1774.696066][T27499] Bluetooth: hci2: command tx timeout
[ 1775.917219][T16519] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1775.973728][T16519] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1776.027260][T16519] bond0 (unregistering): Released all slaves
[ 1776.140525][T28449] chnl_net:caif_netlink_parms(): no params data found
[ 1776.248460][T16519] .SR: left promiscuous mode
[ 1776.770204][T27499] Bluetooth: hci2: command tx timeout
[ 1777.433593][T28449] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1777.441462][T28449] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1777.636243][T28449] bridge_slave_0: entered allmulticast mode
[ 1777.691667][T28449] bridge_slave_0: entered promiscuous mode
[ 1777.822633][T28449] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1777.903119][T28449] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1777.995818][T28449] bridge_slave_1: entered allmulticast mode
[ 1778.083631][T28449] bridge_slave_1: entered promiscuous mode
[ 1778.684016][T28449] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1778.836750][T27499] Bluetooth: hci2: command tx timeout
[ 1779.109138][T28449] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1779.720405][T28449] team0: Port device team_slave_0 added
[ 1780.028870][T16519] hsr_slave_0: left promiscuous mode
[ 1780.084142][T16519] hsr_slave_1: left promiscuous mode
[ 1780.209287][T16519] veth1_macvtap: left promiscuous mode
[ 1780.241715][T16519] veth0_macvtap: left promiscuous mode
[ 1780.310207][T16519] veth1_vlan: left promiscuous mode
[ 1780.316088][T16519] veth0_vlan: left promiscuous mode
[ 1782.816122][T16519] team0 (unregistering): Port device team_slave_1 removed
[ 1782.962255][T16519] team0 (unregistering): Port device team_slave_0 removed
[ 1784.527608][T28449] team0: Port device team_slave_1 added
[ 1784.978442][T28449] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1785.048207][T28449] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1785.076824][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1785.326235][T28449] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1785.429425][T28449] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1785.483060][T28449] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1785.511557][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1785.703937][T28449] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1785.791240][T28633] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5444'.
[ 1785.938623][T28641] =======================================================
[ 1785.938623][T28641] WARNING: The mand mount option has been deprecated and
[ 1785.938623][T28641]          and is ignored by this kernel. Remove the mand
[ 1785.938623][T28641]          option from the mount to silence this warning.
[ 1785.938623][T28641] =======================================================
[ 1785.977041][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1786.192891][T28449] hsr_slave_0: entered promiscuous mode
[ 1786.245399][T28449] hsr_slave_1: entered promiscuous mode
[ 1786.295292][T28449] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1786.325954][T28449] Cannot create hsr debugfs directory
[ 1787.206556][T28449] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 1787.246091][T28449] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 1787.276951][T28449] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 1787.303768][T28449] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 1787.494316][T28449] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1787.553256][T28449] 8021q: adding VLAN 0 to HW filter on device team0
[ 1787.587090][T16515] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1787.594989][T16515] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1787.651469][T16515] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1787.659378][T16515] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1788.164864][T28449] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1788.301468][T28449] veth0_vlan: entered promiscuous mode
[ 1788.348621][T28449] veth1_vlan: entered promiscuous mode
[ 1788.426932][T28449] veth0_macvtap: entered promiscuous mode
[ 1788.460234][T28449] veth1_macvtap: entered promiscuous mode
[ 1788.523438][T28449] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1788.557547][T28449] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1788.583695][T28449] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1788.619655][T28449] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1788.652801][T28449] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1788.685568][T28449] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1788.712539][T28449] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1788.753250][T28449] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1788.785186][T28449] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1788.844345][T28449] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1788.881617][T28449] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1788.902039][T28449] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1788.935177][T28449] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1788.974988][T28449] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1789.001488][T28449] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1789.032604][T28449] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1789.082113][T28449] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1789.114152][T28449] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1789.135874][T28449] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1789.160800][T28449] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1789.385357][   T83] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1789.430953][   T83] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1789.512410][   T83] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1789.551341][   T83] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1791.511427][T17008] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1791.533087][T17008] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1791.542373][T17008] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1791.552593][T17008] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1791.563819][T17008] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1791.850877][T16518] bridge_slave_1: left allmulticast mode
[ 1791.910256][T16518] bridge_slave_1: left promiscuous mode
[ 1791.975032][T16518] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1792.024891][T16518] bridge_slave_0: left allmulticast mode
[ 1792.072218][T16518] bridge_slave_0: left promiscuous mode
[ 1792.119562][T16518] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1793.644271][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[ 1793.651429][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[ 1793.658571][T17008] Bluetooth: hci0: command tx timeout
[ 1795.377615][T16518] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1795.451729][T16518] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1795.504196][T16518] bond0 (unregistering): Released all slaves
[ 1795.624251][T17008] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260
[ 1795.624286][T17008] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260
[ 1795.641794][T17008] Bluetooth: hci2: adv larger than maximum supported
[ 1795.641838][T17008] Bluetooth: hci2: adv larger than maximum supported
[ 1795.651123][T17008] Bluetooth: hci2: adv larger than maximum supported
[ 1795.658832][T17008] Bluetooth: hci2: adv larger than maximum supported
[ 1795.666184][T17008] Bluetooth: hci2: Unknown advertising packet type: 0x20
[ 1795.707727][T17008] Bluetooth: hci0: command tx timeout
[ 1797.506650][T16518] hsr_slave_0: left promiscuous mode
[ 1797.557153][T16518] hsr_slave_1: left promiscuous mode
[ 1797.583745][T16518] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1797.644717][T16518] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1797.691573][T16518] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1797.741901][T16518] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1797.781242][T17008] Bluetooth: hci0: command tx timeout
[ 1797.813998][T16518] veth1_macvtap: left promiscuous mode
[ 1797.890721][T16518] veth0_macvtap: left promiscuous mode
[ 1797.923705][T16518] veth1_vlan: left promiscuous mode
[ 1799.339597][T28847] ima: policy update failed
[ 1799.353284][   T30] audit: type=1802 audit(4294967544.786:35): pid=28847 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.5522" res=0 errno=0
[ 1799.846398][T17008] Bluetooth: hci0: command tx timeout
[ 1799.874657][T16518] team0 (unregistering): Port device team_slave_1 removed
[ 1799.937337][T16518] team0 (unregistering): Port device team_slave_0 removed
[ 1800.774390][T28732] chnl_net:caif_netlink_parms(): no params data found
[ 1801.486975][T28732] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1801.537812][T28732] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1801.556702][T28732] bridge_slave_0: entered allmulticast mode
[ 1801.577413][T28732] bridge_slave_0: entered promiscuous mode
[ 1801.609781][T28732] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1801.633000][T28732] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1801.659264][T28732] bridge_slave_1: entered allmulticast mode
[ 1801.680602][T28732] bridge_slave_1: entered promiscuous mode
[ 1801.781485][T28732] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1801.812991][T28732] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1801.934749][T28732] team0: Port device team_slave_0 added
[ 1801.981024][T28732] team0: Port device team_slave_1 added
[ 1802.128862][T28732] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1802.145948][T28732] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1802.211098][T28732] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1802.244637][T28732] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1802.265688][T28732] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1802.340328][T28732] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1802.595005][T28732] hsr_slave_0: entered promiscuous mode
[ 1802.615861][T28732] hsr_slave_1: entered promiscuous mode
[ 1802.629942][T28732] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1802.663592][T28732] Cannot create hsr debugfs directory
[ 1803.150750][T28732] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1803.177291][T28732] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1803.212988][T28732] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1803.233622][T28732] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1803.553537][T28732] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1803.596802][T28732] 8021q: adding VLAN 0 to HW filter on device team0
[ 1803.651096][T24089] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1803.659016][T24089] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1803.709347][T17008] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260
[ 1803.709380][T17008] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260
[ 1803.730551][T17008] Bluetooth: hci1: adv larger than maximum supported
[ 1803.730578][T17008] Bluetooth: hci1: adv larger than maximum supported
[ 1803.738221][T17008] Bluetooth: hci1: adv larger than maximum supported
[ 1803.755763][T17008] Bluetooth: hci1: adv larger than maximum supported
[ 1803.763147][T17008] Bluetooth: hci1: Unknown advertising packet type: 0x20
[ 1803.793478][T24089] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1803.809155][T24089] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1804.342671][T28732] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1804.825834][T28913] openvswitch: netlink: nsh attribute has 4 unknown bytes.
[ 1805.330006][T28924] overlayfs: "check_copy_up" module option is obsolete
[ 1805.578883][T28732] veth0_vlan: entered promiscuous mode
[ 1805.644397][T28732] veth1_vlan: entered promiscuous mode
[ 1805.743948][T28732] veth0_macvtap: entered promiscuous mode
[ 1805.793588][T28732] veth1_macvtap: entered promiscuous mode
[ 1805.866336][T28732] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1805.903405][T28732] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1805.940034][T28732] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1805.973544][T28732] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1806.023178][T28732] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1806.052077][T28732] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1806.072378][T28732] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1806.100855][T28732] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1806.130753][T28732] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1806.173623][T28732] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1806.205847][T28732] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1806.235596][T28732] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1806.269711][T28732] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1806.294195][T28732] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1806.326809][T28732] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1806.357825][T28732] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1806.397976][T28732] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1806.434615][T28732] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1806.454070][T28732] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1806.476667][T28732] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1806.717782][   T83] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1806.754274][   T83] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1806.822567][T24089] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1806.845615][T24089] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1807.141774][T28932] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5568'.
[ 1808.062122][T28955] capability: warning: `syz.3.5560' uses deprecated v2 capabilities in a way that may be insecure
[ 1809.159355][T17008] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260
[ 1809.159388][T17008] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260
[ 1809.175730][T17008] Bluetooth: hci0: adv larger than maximum supported
[ 1809.175773][T17008] Bluetooth: hci0: adv larger than maximum supported
[ 1809.183654][T17008] Bluetooth: hci0: adv larger than maximum supported
[ 1809.191951][T17008] Bluetooth: hci0: adv larger than maximum supported
[ 1809.200221][T17008] Bluetooth: hci0: Unknown advertising packet type: 0x20
[ 1809.494199][T28989] FAULT_INJECTION: forcing a failure.
[ 1809.494199][T28989] name fail_futex, interval 1, probability 0, space 0, times 0
[ 1809.665419][T28989] CPU: 1 UID: 0 PID: 28989 Comm: syz.3.5580 Tainted: G     U              6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) 
[ 1809.665461][T28989] Tainted: [U]=USER
[ 1809.665469][T28989] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1809.665484][T28989] Call Trace:
[ 1809.665492][T28989]  <TASK>
[ 1809.665502][T28989]  dump_stack_lvl+0x16c/0x1f0
[ 1809.665542][T28989]  should_fail_ex+0x512/0x640
[ 1809.665575][T28989]  get_futex_key+0x49e/0x1000
[ 1809.665606][T28989]  ? __pfx_get_futex_key+0x10/0x10
[ 1809.665635][T28989]  ? find_held_lock+0x2b/0x80
[ 1809.665665][T28989]  futex_wait_setup+0x78/0x290
[ 1809.665705][T28989]  __futex_wait+0x266/0x3c0
[ 1809.665740][T28989]  ? __pfx___futex_wait+0x10/0x10
[ 1809.665779][T28989]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1809.665815][T28989]  ? udmabuf_create+0x250/0x11a0
[ 1809.665857][T28989]  futex_wait+0xe8/0x380
[ 1809.665890][T28989]  ? __pfx_futex_wait+0x10/0x10
[ 1809.665929][T28989]  ? __might_fault+0xe3/0x190
[ 1809.665958][T28989]  ? __might_fault+0xe3/0x190
[ 1809.665985][T28989]  ? __might_fault+0x13b/0x190
[ 1809.666019][T28989]  do_futex+0x229/0x350
[ 1809.666047][T28989]  ? __pfx_do_futex+0x10/0x10
[ 1809.666074][T28989]  ? udmabuf_ioctl+0x19f/0x310
[ 1809.666115][T28989]  __x64_sys_futex+0x1e0/0x4c0
[ 1809.666145][T28989]  ? __x64_sys_openat+0x174/0x210
[ 1809.666187][T28989]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1809.666217][T28989]  ? rcu_is_watching+0x12/0xc0
[ 1809.666250][T28989]  do_syscall_64+0xcd/0x230
[ 1809.666287][T28989]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1809.666311][T28989] RIP: 0033:0x7fe9bcb8e969
[ 1809.666331][T28989] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1809.666356][T28989] RSP: 002b:00007fe9bd9de0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1809.666381][T28989] RAX: ffffffffffffffda RBX: 00007fe9bcdb5fa8 RCX: 00007fe9bcb8e969
[ 1809.666398][T28989] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fe9bcdb5fa8
[ 1809.666413][T28989] RBP: 00007fe9bcdb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 1809.666427][T28989] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fe9bcdb5fac
[ 1809.666442][T28989] R13: 0000000000000000 R14: 00007ffd263ebb50 R15: 00007ffd263ebc38
[ 1809.666471][T28989]  </TASK>
[ 1812.425006][T29045] FAULT_INJECTION: forcing a failure.
[ 1812.425006][T29045] name failslab, interval 1, probability 0, space 0, times 0
[ 1812.745891][T29045] CPU: 1 UID: 0 PID: 29045 Comm: syz.0.5606 Tainted: G     U              6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) 
[ 1812.745932][T29045] Tainted: [U]=USER
[ 1812.745940][T29045] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1812.745958][T29045] Call Trace:
[ 1812.745968][T29045]  <TASK>
[ 1812.745980][T29045]  dump_stack_lvl+0x16c/0x1f0
[ 1812.746018][T29045]  should_fail_ex+0x512/0x640
[ 1812.746047][T29045]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1812.746079][T29045]  should_failslab+0xc2/0x120
[ 1812.746120][T29045]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1812.746148][T29045]  ? __pfx___schedule+0x10/0x10
[ 1812.746179][T29045]  ? do_raw_spin_unlock+0x172/0x230
[ 1812.746200][T29045]  ? alloc_empty_file+0x55/0x1e0
[ 1812.746237][T29045]  alloc_empty_file+0x55/0x1e0
[ 1812.746269][T29045]  path_openat+0xe0/0x2d40
[ 1812.746291][T29045]  ? __x64_sys_openat+0x174/0x210
[ 1812.746324][T29045]  ? do_syscall_64+0xcd/0x230
[ 1812.746357][T29045]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1812.746391][T29045]  ? __pfx_path_openat+0x10/0x10
[ 1812.746423][T29045]  do_filp_open+0x20b/0x470
[ 1812.746448][T29045]  ? __pfx_do_filp_open+0x10/0x10
[ 1812.746493][T29045]  ? alloc_fd+0x471/0x7d0
[ 1812.746522][T29045]  do_sys_openat2+0x11b/0x1d0
[ 1812.746556][T29045]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1812.746588][T29045]  ? udmabuf_ioctl+0x19f/0x310
[ 1812.746633][T29045]  __x64_sys_openat+0x174/0x210
[ 1812.746668][T29045]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1812.746704][T29045]  ? rcu_is_watching+0x12/0xc0
[ 1812.746735][T29045]  do_syscall_64+0xcd/0x230
[ 1812.746772][T29045]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1812.746795][T29045] RIP: 0033:0x7fb51eb8e969
[ 1812.746814][T29045] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1812.746838][T29045] RSP: 002b:00007fb51fac1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1812.746861][T29045] RAX: ffffffffffffffda RBX: 00007fb51edb5fa0 RCX: 00007fb51eb8e969
[ 1812.746877][T29045] RDX: 0000000000020402 RSI: 00002000000001c0 RDI: ffffffffffffff9c
[ 1812.746893][T29045] RBP: 00007fb51ec10ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1812.746907][T29045] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1812.746922][T29045] R13: 0000000000000000 R14: 00007fb51edb5fa0 R15: 00007ffd2ea4fa18
[ 1812.746953][T29045]  </TASK>
[ 1813.877756][T29069] nbd: must specify a size in bytes for the device
[ 1815.489548][T29111] FAULT_INJECTION: forcing a failure.
[ 1815.489548][T29111] name failslab, interval 1, probability 0, space 0, times 0
[ 1815.603209][T29111] CPU: 1 UID: 0 PID: 29111 Comm: syz.3.5638 Tainted: G     U              6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) 
[ 1815.603251][T29111] Tainted: [U]=USER
[ 1815.603259][T29111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1815.603274][T29111] Call Trace:
[ 1815.603286][T29111]  <TASK>
[ 1815.603296][T29111]  dump_stack_lvl+0x16c/0x1f0
[ 1815.603335][T29111]  should_fail_ex+0x512/0x640
[ 1815.603363][T29111]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1815.603397][T29111]  should_failslab+0xc2/0x120
[ 1815.603429][T29111]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1815.603456][T29111]  ? __pfx___schedule+0x10/0x10
[ 1815.603485][T29111]  ? find_held_lock+0x2b/0x80
[ 1815.603509][T29111]  ? alloc_empty_file+0x55/0x1e0
[ 1815.603545][T29111]  alloc_empty_file+0x55/0x1e0
[ 1815.603578][T29111]  path_openat+0xe0/0x2d40
[ 1815.603601][T29111]  ? __x64_sys_openat+0x174/0x210
[ 1815.603635][T29111]  ? do_syscall_64+0xcd/0x230
[ 1815.603668][T29111]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1815.603702][T29111]  ? __pfx_path_openat+0x10/0x10
[ 1815.603734][T29111]  do_filp_open+0x20b/0x470
[ 1815.603760][T29111]  ? __pfx_do_filp_open+0x10/0x10
[ 1815.603805][T29111]  ? alloc_fd+0x471/0x7d0
[ 1815.603835][T29111]  do_sys_openat2+0x11b/0x1d0
[ 1815.603869][T29111]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1815.603909][T29111]  ? udmabuf_ioctl+0x19f/0x310
[ 1815.603955][T29111]  __x64_sys_openat+0x174/0x210
[ 1815.603990][T29111]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1815.604027][T29111]  ? rcu_is_watching+0x12/0xc0
[ 1815.604059][T29111]  do_syscall_64+0xcd/0x230
[ 1815.604096][T29111]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1815.604119][T29111] RIP: 0033:0x7fe9bcb8e969
[ 1815.604138][T29111] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1815.604161][T29111] RSP: 002b:00007fe9bd9de038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1815.604184][T29111] RAX: ffffffffffffffda RBX: 00007fe9bcdb5fa0 RCX: 00007fe9bcb8e969
[ 1815.604200][T29111] RDX: 0000000000020402 RSI: 00002000000001c0 RDI: ffffffffffffff9c
[ 1815.604216][T29111] RBP: 00007fe9bcc10ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1815.604231][T29111] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1815.604246][T29111] R13: 0000000000000000 R14: 00007fe9bcdb5fa0 R15: 00007ffd263ebc38
[ 1815.604276][T29111]  </TASK>
[ 1816.402532][T29123] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5643'.
[ 1816.453462][T29119] HfR: entered promiscuous mode
[ 1816.486848][T29123] HfR: left promiscuous mode
[ 1816.533629][T29128] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5643'.
[ 1820.340123][T29199] FAULT_INJECTION: forcing a failure.
[ 1820.340123][T29199] name fail_futex, interval 1, probability 0, space 0, times 0
[ 1820.462708][T29199] CPU: 1 UID: 0 PID: 29199 Comm: syz.4.5682 Tainted: G     U              6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) 
[ 1820.462752][T29199] Tainted: [U]=USER
[ 1820.462760][T29199] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1820.462775][T29199] Call Trace:
[ 1820.462784][T29199]  <TASK>
[ 1820.462793][T29199]  dump_stack_lvl+0x16c/0x1f0
[ 1820.462832][T29199]  should_fail_ex+0x512/0x640
[ 1820.462866][T29199]  get_futex_key+0x49e/0x1000
[ 1820.462896][T29199]  ? __pfx_get_futex_key+0x10/0x10
[ 1820.462926][T29199]  ? find_held_lock+0x2b/0x80
[ 1820.462956][T29199]  futex_wait_setup+0x78/0x290
[ 1820.462996][T29199]  __futex_wait+0x266/0x3c0
[ 1820.463031][T29199]  ? __pfx___futex_wait+0x10/0x10
[ 1820.463070][T29199]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1820.463107][T29199]  ? udmabuf_create+0x250/0x11a0
[ 1820.463149][T29199]  futex_wait+0xe8/0x380
[ 1820.463181][T29199]  ? __pfx_futex_wait+0x10/0x10
[ 1820.463221][T29199]  ? __might_fault+0xe3/0x190
[ 1820.463249][T29199]  ? __might_fault+0xe3/0x190
[ 1820.463275][T29199]  ? __might_fault+0x13b/0x190
[ 1820.463310][T29199]  do_futex+0x229/0x350
[ 1820.463338][T29199]  ? __pfx_do_futex+0x10/0x10
[ 1820.463365][T29199]  ? udmabuf_ioctl+0x19f/0x310
[ 1820.463405][T29199]  __x64_sys_futex+0x1e0/0x4c0
[ 1820.463436][T29199]  ? __x64_sys_openat+0x174/0x210
[ 1820.463471][T29199]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1820.463501][T29199]  ? rcu_is_watching+0x12/0xc0
[ 1820.463533][T29199]  do_syscall_64+0xcd/0x230
[ 1820.463576][T29199]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1820.463601][T29199] RIP: 0033:0x7fab7df8e969
[ 1820.463627][T29199] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1820.463651][T29199] RSP: 002b:00007fab7ed470e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1820.463675][T29199] RAX: ffffffffffffffda RBX: 00007fab7e1b5fa8 RCX: 00007fab7df8e969
[ 1820.463691][T29199] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fab7e1b5fa8
[ 1820.463707][T29199] RBP: 00007fab7e1b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 1820.463721][T29199] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fab7e1b5fac
[ 1820.463737][T29199] R13: 0000000000000000 R14: 00007fffb5a63230 R15: 00007fffb5a63318
[ 1820.463767][T29199]  </TASK>
[ 1820.714258][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1820.783948][T29196] ima: policy update failed
[ 1820.915308][   T30] audit: type=1802 audit(4294967566.358:36): pid=29196 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.5681" res=0 errno=0
[ 1821.558869][T27499] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1821.572738][T27499] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1821.588592][T27499] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1821.616288][T27499] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1821.625205][T27499] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1822.209509][T29227] Setting dangerous option i915.mitigations - tainting kernel
[ 1822.559553][   T12] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1822.754933][   T12] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1822.914146][   T12] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1823.025625][T29234] random: crng reseeded on system resumption
[ 1823.176556][   T12] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1823.727118][T17008] Bluetooth: hci3: command tx timeout
[ 1823.910956][   T12] bridge_slave_1: left allmulticast mode
[ 1823.946862][   T12] bridge_slave_1: left promiscuous mode
[ 1823.980035][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1824.108533][   T12] bridge_slave_0: left allmulticast mode
[ 1824.167188][T29239] ima: policy update failed
[ 1824.172491][   T12] bridge_slave_0: left promiscuous mode
[ 1824.218539][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1824.238584][   T30] audit: type=1802 audit(4294967569.825:37): pid=29239 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.5692" res=0 errno=0
[ 1824.902986][T29268] nvme_fcloop: unknown parameter or missing value '7'
[ 1825.793004][T17008] Bluetooth: hci3: command tx timeout
[ 1826.631918][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1826.664666][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1826.698971][   T12] bond0 (unregistering): Released all slaves
[ 1826.831344][T29288] netlink: 266 bytes leftover after parsing attributes in process `syz.3.5696'.
[ 1826.874787][T29288] IPv6: NLM_F_CREATE should be specified when creating new route
[ 1827.859497][T17008] Bluetooth: hci3: command tx timeout
[ 1828.110677][T29221] chnl_net:caif_netlink_parms(): no params data found
[ 1828.948542][   T12] hsr_slave_0: left promiscuous mode
[ 1828.983563][   T12] hsr_slave_1: left promiscuous mode
[ 1829.016568][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1829.069083][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1829.141824][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1829.186356][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1829.269840][T29312] ima: policy update failed
[ 1829.332438][   T12] veth1_macvtap: left promiscuous mode
[ 1829.338541][   T12] veth0_macvtap: left promiscuous mode
[ 1829.379523][   T30] audit: type=1802 audit(4294967574.972:38): pid=29312 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.5700" res=0 errno=0
[ 1829.398837][T29319] netlink: 40 bytes leftover after parsing attributes in process `syz.4.5701'.
[ 1829.411029][   T12] veth1_vlan: left promiscuous mode
[ 1829.434462][   T12] veth0_vlan: left promiscuous mode
[ 1829.711697][T29330] FAULT_INJECTION: forcing a failure.
[ 1829.711697][T29330] name fail_futex, interval 1, probability 0, space 0, times 0
[ 1829.773964][T29330] CPU: 1 UID: 0 PID: 29330 Comm: syz.3.5702 Tainted: G     U              6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) 
[ 1829.774007][T29330] Tainted: [U]=USER
[ 1829.774016][T29330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1829.774031][T29330] Call Trace:
[ 1829.774040][T29330]  <TASK>
[ 1829.774049][T29330]  dump_stack_lvl+0x16c/0x1f0
[ 1829.774088][T29330]  should_fail_ex+0x512/0x640
[ 1829.774121][T29330]  get_futex_key+0x49e/0x1000
[ 1829.774152][T29330]  ? __pfx_get_futex_key+0x10/0x10
[ 1829.774191][T29330]  ? find_held_lock+0x2b/0x80
[ 1829.774222][T29330]  futex_wait_setup+0x78/0x290
[ 1829.774262][T29330]  __futex_wait+0x266/0x3c0
[ 1829.774297][T29330]  ? __pfx___futex_wait+0x10/0x10
[ 1829.774336][T29330]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1829.774373][T29330]  ? udmabuf_create+0x250/0x11a0
[ 1829.774415][T29330]  futex_wait+0xe8/0x380
[ 1829.774447][T29330]  ? __pfx_futex_wait+0x10/0x10
[ 1829.774486][T29330]  ? __might_fault+0xe3/0x190
[ 1829.774515][T29330]  ? __might_fault+0xe3/0x190
[ 1829.774542][T29330]  ? __might_fault+0x13b/0x190
[ 1829.774577][T29330]  do_futex+0x229/0x350
[ 1829.774605][T29330]  ? __pfx_do_futex+0x10/0x10
[ 1829.774631][T29330]  ? udmabuf_ioctl+0x19f/0x310
[ 1829.774672][T29330]  __x64_sys_futex+0x1e0/0x4c0
[ 1829.774703][T29330]  ? __x64_sys_openat+0x174/0x210
[ 1829.774738][T29330]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1829.774768][T29330]  ? rcu_is_watching+0x12/0xc0
[ 1829.774800][T29330]  do_syscall_64+0xcd/0x230
[ 1829.774837][T29330]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1829.774861][T29330] RIP: 0033:0x7fe9bcb8e969
[ 1829.774880][T29330] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1829.774905][T29330] RSP: 002b:00007fe9bd9de0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1829.774930][T29330] RAX: ffffffffffffffda RBX: 00007fe9bcdb5fa8 RCX: 00007fe9bcb8e969
[ 1829.774946][T29330] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fe9bcdb5fa8
[ 1829.774962][T29330] RBP: 00007fe9bcdb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 1829.774976][T29330] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fe9bcdb5fac
[ 1829.774991][T29330] R13: 0000000000000000 R14: 00007ffd263ebb50 R15: 00007ffd263ebc38
[ 1829.775021][T29330]  </TASK>
[ 1830.025728][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1830.139468][T17008] Bluetooth: hci3: command tx timeout
[ 1830.265228][T27499] Bluetooth: hci2: unexpected subevent 0x19 length: 252 > 28
[ 1830.273620][T27499] Bluetooth: hci2: Unable to find connection with handle 0xc3d2
[ 1830.282371][T27499] Bluetooth: hci2: unexpected subevent 0x19 length: 252 > 28
[ 1830.290608][T27499] Bluetooth: hci2: Unable to find connection with handle 0xc3d2
[ 1830.299221][T27499] Bluetooth: hci2: unexpected subevent 0x19 length: 252 > 28
[ 1830.315021][T27499] Bluetooth: hci2: Unable to find connection with handle 0xc3d2
[ 1830.324954][T27499] Bluetooth: hci2: unexpected subevent 0x19 length: 252 > 28
[ 1830.338395][T27499] Bluetooth: hci2: Unable to find connection with handle 0xc3d2
[ 1830.348624][T27499] Bluetooth: hci2: unexpected subevent 0x19 length: 252 > 28
[ 1830.357312][T27499] Bluetooth: hci2: Unable to find connection with handle 0xc3d2
[ 1830.365997][T27499] Bluetooth: hci2: unexpected subevent 0x19 length: 252 > 28
[ 1830.374728][T27499] Bluetooth: hci2: Unable to find connection with handle 0xc3d2
[ 1830.383605][T27499] Bluetooth: hci2: unexpected subevent 0x19 length: 252 > 28
[ 1830.392384][T27499] Bluetooth: hci2: Unable to find connection with handle 0xc3d2
[ 1830.401314][T27499] Bluetooth: hci2: unexpected subevent 0x19 length: 252 > 28
[ 1830.409876][T27499] Bluetooth: hci2: Unable to find connection with handle 0xc3d2
[ 1830.418752][T27499] Bluetooth: hci2: unexpected subevent 0x19 length: 252 > 28
[ 1830.427303][T27499] Bluetooth: hci2: Unable to find connection with handle 0xc3d2
[ 1830.435993][T27499] Bluetooth: hci2: unexpected subevent 0x19 length: 252 > 28
[ 1830.445720][T27499] Bluetooth: hci2: Unable to find connection with handle 0xc3d2
[ 1830.454714][T27499] Bluetooth: hci2: unexpected subevent 0x19 length: 252 > 28
[ 1830.463246][T27499] Bluetooth: hci2: Unable to find connection with handle 0xc3d2
[ 1830.472475][T27499] Bluetooth: hci2: unexpected subevent 0x19 length: 252 > 28
[ 1830.480838][T27499] Bluetooth: hci2: Unable to find connection with handle 0xc3d2
[ 1830.489928][T27499] Bluetooth: hci2: unexpected subevent 0x19 length: 252 > 28
[ 1830.498408][T27499] Bluetooth: hci2: Unable to find connection with handle 0xc3d2
[ 1830.507328][T27499] Bluetooth: hci2: unexpected subevent 0x19 length: 252 > 28
[ 1830.515804][T27499] Bluetooth: hci2: Unable to find connection with handle 0xc3d2
[ 1830.525733][T27499] Bluetooth: hci2: unexpected subevent 0x19 length: 252 > 28
[ 1830.533924][T27499] Bluetooth: hci2: Unable to find connection with handle 0xc3d2
[ 1830.543268][T27499] Bluetooth: hci2: unexpected subevent 0x19 length: 252 > 28
[ 1830.552998][T27499] Bluetooth: hci2: Unable to find connection with handle 0xc3d2
[ 1830.562079][T27499] Bluetooth: hci2: unexpected subevent 0x19 length: 252 > 28
[ 1830.571566][T27499] Bluetooth: hci2: Unable to find connection with handle 0xc3d2
[ 1830.585399][T27499] Bluetooth: hci2: unexpected subevent 0x19 length: 252 > 28
[ 1830.595669][T27499] Bluetooth: hci2: Unable to find connection with handle 0xc3d2
[ 1830.604382][T27499] Bluetooth: hci2: unexpected subevent 0x19 length: 252 > 28
[ 1830.613054][T27499] Bluetooth: hci2: Unable to find connection with handle 0xc3d2
[ 1830.621883][T27499] Bluetooth: hci2: unexpected subevent 0x19 length: 252 > 28
[ 1830.630521][T27499] Bluetooth: hci2: Unable to find connection with handle 0xc3d2
[ 1830.639358][T27499] Bluetooth: hci2: unexpected subevent 0x19 length: 252 > 28
[ 1830.649198][T27499] Bluetooth: hci2: Unable to find connection with handle 0xc3d2
[ 1830.658366][T27499] Bluetooth: hci2: unexpected subevent 0x19 length: 252 > 28
[ 1830.666796][T27499] Bluetooth: hci2: Unable to find connection with handle 0xc3d2
[ 1830.675464][T27499] Bluetooth: hci2: unexpected subevent 0x19 length: 252 > 28
[ 1830.683760][T27499] Bluetooth: hci2: Unable to find connection with handle 0xc3d2
[ 1830.692576][T27499] Bluetooth: hci2: unexpected subevent 0x19 length: 252 > 28
[ 1830.700989][T27499] Bluetooth: hci2: Unable to find connection with handle 0xc3d2
[ 1830.709613][T27499] Bluetooth: hci2: unexpected subevent 0x19 length: 252 > 28
[ 1830.718011][T27499] Bluetooth: hci2: Unable to find connection with handle 0xc3d2
[ 1830.732744][T27499] Bluetooth: hci2: unexpected subevent 0x19 length: 252 > 28
[ 1830.741096][T27499] Bluetooth: hci2: Unable to find connection with handle 0xc3d2
[ 1830.751688][T27499] Bluetooth: hci2: unexpected subevent 0x19 length: 252 > 28
[ 1830.760272][T27499] Bluetooth: hci2: Unable to find connection with handle 0xc3d2
[ 1830.769003][T27499] Bluetooth: hci2: unexpected subevent 0x19 length: 252 > 28
[ 1830.777452][T27499] Bluetooth: hci2: Unable to find connection with handle 0xc3d2
[ 1830.786258][T27499] Bluetooth: hci2: unexpected subevent 0x19 length: 252 > 28
[ 1830.794628][T27499] Bluetooth: hci2: Unable to find connection with handle 0xc3d2
[ 1830.803352][T27499] Bluetooth: hci2: unexpected subevent 0x19 length: 252 > 28
[ 1830.811782][T27499] Bluetooth: hci2: Unable to find connection with handle 0xc3d2
[ 1830.820514][T27499] Bluetooth: hci2: unexpected subevent 0x19 length: 252 > 28
[ 1830.829005][T27499] Bluetooth: hci2: Unable to find connection with handle 0xc3d2
[ 1830.837837][T27499] Bluetooth: hci2: unexpected subevent 0x19 length: 252 > 28
[ 1830.847858][T27499] Bluetooth: hci2: Unable to find connection with handle 0xc3d2
[ 1830.858346][T27499] Bluetooth: hci2: unexpected subevent 0x19 length: 252 > 28
[ 1830.868996][T27499] Bluetooth: hci2: Unable to find connection with handle 0xc3d2
[ 1832.061962][   T12] team0 (unregistering): Port device team_slave_1 removed
[ 1832.133469][   T12] team0 (unregistering): Port device team_slave_0 removed
[ 1833.272360][T29221] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1833.334424][T29221] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1833.385958][T29221] bridge_slave_0: entered allmulticast mode
[ 1833.427863][T29221] bridge_slave_0: entered promiscuous mode
[ 1833.568142][T29221] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1833.608476][T29221] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1833.635507][T29221] bridge_slave_1: entered allmulticast mode
[ 1833.668341][T29221] bridge_slave_1: entered promiscuous mode
[ 1833.931293][T29221] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1834.037831][T29221] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1834.252756][T29221] team0: Port device team_slave_0 added
[ 1834.301051][T29221] team0: Port device team_slave_1 added
[ 1834.674193][T29221] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1834.681874][T29221] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1835.088670][T29221] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1835.187312][T29221] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1835.230913][T29221] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1835.400256][T29221] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1836.002401][T29221] hsr_slave_0: entered promiscuous mode
[ 1836.037773][T29396] FAULT_INJECTION: forcing a failure.
[ 1836.037773][T29396] name failslab, interval 1, probability 0, space 0, times 0
[ 1836.063537][T29221] hsr_slave_1: entered promiscuous mode
[ 1836.102747][T29221] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1836.123653][T29221] Cannot create hsr debugfs directory
[ 1836.141707][T29396] CPU: 1 UID: 0 PID: 29396 Comm: syz.4.5713 Tainted: G     U              6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) 
[ 1836.141747][T29396] Tainted: [U]=USER
[ 1836.141755][T29396] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1836.141770][T29396] Call Trace:
[ 1836.141778][T29396]  <TASK>
[ 1836.141788][T29396]  dump_stack_lvl+0x16c/0x1f0
[ 1836.141826][T29396]  should_fail_ex+0x512/0x640
[ 1836.141863][T29396]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1836.141896][T29396]  should_failslab+0xc2/0x120
[ 1836.141928][T29396]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1836.141956][T29396]  ? __pfx___schedule+0x10/0x10
[ 1836.141986][T29396]  ? do_raw_spin_unlock+0x172/0x230
[ 1836.142007][T29396]  ? alloc_empty_file+0x55/0x1e0
[ 1836.142048][T29396]  alloc_empty_file+0x55/0x1e0
[ 1836.142081][T29396]  path_openat+0xe0/0x2d40
[ 1836.142104][T29396]  ? __x64_sys_openat+0x174/0x210
[ 1836.142138][T29396]  ? do_syscall_64+0xcd/0x230
[ 1836.142171][T29396]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1836.142205][T29396]  ? __pfx_path_openat+0x10/0x10
[ 1836.142238][T29396]  do_filp_open+0x20b/0x470
[ 1836.142263][T29396]  ? __pfx_do_filp_open+0x10/0x10
[ 1836.142309][T29396]  ? alloc_fd+0x471/0x7d0
[ 1836.142338][T29396]  do_sys_openat2+0x11b/0x1d0
[ 1836.142372][T29396]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1836.142405][T29396]  ? udmabuf_ioctl+0x19f/0x310
[ 1836.142451][T29396]  __x64_sys_openat+0x174/0x210
[ 1836.142485][T29396]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1836.142522][T29396]  ? rcu_is_watching+0x12/0xc0
[ 1836.142554][T29396]  do_syscall_64+0xcd/0x230
[ 1836.142590][T29396]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1836.142613][T29396] RIP: 0033:0x7fab7df8e969
[ 1836.142632][T29396] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1836.142655][T29396] RSP: 002b:00007fab7ed47038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1836.142677][T29396] RAX: ffffffffffffffda RBX: 00007fab7e1b5fa0 RCX: 00007fab7df8e969
[ 1836.142693][T29396] RDX: 0000000000020402 RSI: 00002000000001c0 RDI: ffffffffffffff9c
[ 1836.142708][T29396] RBP: 00007fab7e010ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1836.142727][T29396] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1836.142741][T29396] R13: 0000000000000000 R14: 00007fab7e1b5fa0 R15: 00007fffb5a63318
[ 1836.142770][T29396]  </TASK>
[ 1839.644456][T29452] Invalid ELF header magic: != ELF
[ 1839.784394][T29221] netdevsim netdevsim6 netdevsim0: renamed from eth0
[ 1839.822795][T29452] Invalid ELF header magic: != ELF
[ 1839.874255][T29221] netdevsim netdevsim6 netdevsim1: renamed from eth1
[ 1839.960434][T29221] netdevsim netdevsim6 netdevsim2: renamed from eth2
[ 1840.064916][T29221] netdevsim netdevsim6 netdevsim3: renamed from eth3
[ 1840.235878][T29464] FAULT_INJECTION: forcing a failure.
[ 1840.235878][T29464] name fail_futex, interval 1, probability 0, space 0, times 0
[ 1840.349129][T29464] CPU: 1 UID: 0 PID: 29464 Comm: syz.4.5722 Tainted: G     U              6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) 
[ 1840.349171][T29464] Tainted: [U]=USER
[ 1840.349179][T29464] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1840.349193][T29464] Call Trace:
[ 1840.349201][T29464]  <TASK>
[ 1840.349211][T29464]  dump_stack_lvl+0x16c/0x1f0
[ 1840.349250][T29464]  should_fail_ex+0x512/0x640
[ 1840.349282][T29464]  get_futex_key+0x49e/0x1000
[ 1840.349313][T29464]  ? __pfx_get_futex_key+0x10/0x10
[ 1840.349341][T29464]  ? find_held_lock+0x2b/0x80
[ 1840.349372][T29464]  futex_wait_setup+0x78/0x290
[ 1840.349412][T29464]  __futex_wait+0x266/0x3c0
[ 1840.349447][T29464]  ? __pfx___futex_wait+0x10/0x10
[ 1840.349486][T29464]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1840.349522][T29464]  ? udmabuf_create+0x250/0x11a0
[ 1840.349572][T29464]  futex_wait+0xe8/0x380
[ 1840.349605][T29464]  ? __pfx_futex_wait+0x10/0x10
[ 1840.349644][T29464]  ? __might_fault+0xe3/0x190
[ 1840.349672][T29464]  ? __might_fault+0xe3/0x190
[ 1840.349700][T29464]  ? __might_fault+0x13b/0x190
[ 1840.349734][T29464]  do_futex+0x229/0x350
[ 1840.349763][T29464]  ? __pfx_do_futex+0x10/0x10
[ 1840.349790][T29464]  ? udmabuf_ioctl+0x19f/0x310
[ 1840.349830][T29464]  __x64_sys_futex+0x1e0/0x4c0
[ 1840.349860][T29464]  ? __x64_sys_openat+0x174/0x210
[ 1840.349896][T29464]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1840.349926][T29464]  ? rcu_is_watching+0x12/0xc0
[ 1840.349958][T29464]  do_syscall_64+0xcd/0x230
[ 1840.349995][T29464]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1840.350019][T29464] RIP: 0033:0x7fab7df8e969
[ 1840.350037][T29464] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1840.350061][T29464] RSP: 002b:00007fab7ed470e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1840.350084][T29464] RAX: ffffffffffffffda RBX: 00007fab7e1b5fa8 RCX: 00007fab7df8e969
[ 1840.350100][T29464] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fab7e1b5fa8
[ 1840.350116][T29464] RBP: 00007fab7e1b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 1840.350131][T29464] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fab7e1b5fac
[ 1840.350146][T29464] R13: 0000000000000000 R14: 00007fffb5a63230 R15: 00007fffb5a63318
[ 1840.350175][T29464]  </TASK>
[ 1841.030044][T29221] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1841.159678][T29221] 8021q: adding VLAN 0 to HW filter on device team0
[ 1841.229232][T24234] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1841.237168][T24234] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1841.269764][T29466] ima: policy update failed
[ 1841.367641][T24234] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1841.375548][T24234] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1841.414742][   T30] audit: type=1802 audit(4294967587.024:39): pid=29466 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.5723" res=0 errno=0
[ 1841.619537][T29221] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1842.721779][T29221] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1844.003445][T29221] veth0_vlan: entered promiscuous mode
[ 1844.109996][T29221] veth1_vlan: entered promiscuous mode
[ 1844.291126][T29221] veth0_macvtap: entered promiscuous mode
[ 1844.469522][T29221] veth1_macvtap: entered promiscuous mode
[ 1844.610310][T29517] Invalid ELF header magic: != ELF
[ 1844.925575][T29221] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1845.010140][T29221] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1845.088136][T29221] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1845.143694][T29221] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1845.204821][T29221] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1845.278834][T29221] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1845.337120][T29221] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1845.401229][T29221] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1845.463880][T29221] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1845.565551][T29221] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1845.644960][T29221] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1845.709550][T29221] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1845.763077][T29221] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1845.830903][T29221] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1845.888706][T29221] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1845.948782][T29221] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1846.158139][T29221] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1846.219250][T29221] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1846.274731][T29221] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1846.327346][T29221] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1846.944515][T16518] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1847.004557][T16518] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1847.194927][T24089] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1847.264990][T24089] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1848.549157][T29562] netlink: 338 bytes leftover after parsing attributes in process `syz.3.5732'.
[ 1848.634337][   T30] audit: type=1800 audit(4294967594.342:40): pid=29581 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.5734" name="dbroot" dev="configfs" ino=107954 res=0 errno=0
[ 1849.004310][T27499] Bluetooth: hci1: unexpected subevent 0x01 length: 122 > 18
[ 1849.012786][T27499] Bluetooth: hci1: Invalid handle: 0x1e1a > 0x0eff
[ 1849.918315][T29587] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1849.937711][T29587] Bluetooth: hci1: Opcode 0x0406 failed: -4
[ 1850.084779][T29587] Bluetooth: hci1: Opcode 0x0406 failed: -4
[ 1850.188348][T29587] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1850.253424][T29587] Bluetooth: hci2: Opcode 0x0406 failed: -4
[ 1850.335053][T29587] Bluetooth: hci2: Opcode 0x0406 failed: -4
[ 1850.420191][T29587] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1850.468425][T29587] Bluetooth: hci0: Opcode 0x0406 failed: -4
[ 1850.603139][T29587] Bluetooth: hci0: Opcode 0x0406 failed: -4
[ 1850.671778][T29587] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1850.719128][T29587] Bluetooth: hci3: Opcode 0x0406 failed: -4
[ 1850.816193][T29587] Bluetooth: hci3: Opcode 0x0406 failed: -4
[ 1850.904189][T29587] CPU0 is offline.
[ 1851.339082][T17008] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1851.439694][T29599] ima: policy update failed
[ 1851.444894][   T30] audit: type=1802 audit(4294967597.157:41): pid=29599 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.6.5737" res=0 errno=0
[ 1852.212996][T17008] Bluetooth: hci2: command 0x0c1a tx timeout
[ 1852.453634][T17008] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1852.690530][T17008] Bluetooth: hci3: command 0x0c1a tx timeout
[ 1853.409125][T17008] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1853.478416][T29663] openvswitch: netlink: Missing valid actions attribute.
[ 1854.283392][T17008] Bluetooth: hci2: command 0x0c1a tx timeout
[ 1854.531040][T17008] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1854.768649][T17008] Bluetooth: hci3: command 0x0c1a tx timeout
[ 1854.782227][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[ 1854.789264][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[ 1854.979435][T29688] netlink: 'syz.6.5752': attribute type 19 has an invalid length.
[ 1855.037231][T29688] netlink: 334 bytes leftover after parsing attributes in process `syz.6.5752'.
[ 1855.484697][T17008] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1855.976976][T29707] can: request_module (can-proto-0) failed.
[ 1856.351509][T17008] Bluetooth: hci2: command 0x0c1a tx timeout
[ 1856.544560][T29681] usb usb28: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1856.590561][T17008] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1856.830266][T17008] Bluetooth: hci3: command 0x0c1a tx timeout
[ 1857.219124][T29719] ima: policy update failed
[ 1857.294376][   T30] audit: type=1802 audit(4294967603.037:42): pid=29719 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.5754" res=0 errno=0
[ 1858.111356][T29734] Invalid ELF header magic: != ELF
[ 1859.951431][T29756] ubi0: attaching mtd0
[ 1859.990372][T29756] ubi0: scanning is finished
[ 1860.031852][T29756] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record
[ 1860.316458][T29760] Invalid ELF header magic: != ELF
[ 1860.423082][T29765] FAULT_INJECTION: forcing a failure.
[ 1860.423082][T29765] name failslab, interval 1, probability 0, space 0, times 0
[ 1860.511742][T29764] Invalid ELF header magic: != ELF
[ 1860.695445][T29756] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[ 1860.753710][T29770] Invalid ELF header magic: != ELF
[ 1860.763063][T29765] CPU: 1 UID: 0 PID: 29765 Comm: syz.6.5763 Tainted: G     U              6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) 
[ 1860.763104][T29765] Tainted: [U]=USER
[ 1860.763112][T29765] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1860.763127][T29765] Call Trace:
[ 1860.763135][T29765]  <TASK>
[ 1860.763145][T29765]  dump_stack_lvl+0x16c/0x1f0
[ 1860.763184][T29765]  should_fail_ex+0x512/0x640
[ 1860.763218][T29765]  ? aa_label_asxprint+0x75/0x140
[ 1860.763242][T29765]  should_failslab+0xc2/0x120
[ 1860.763273][T29765]  __kmalloc_noprof+0xd2/0x510
[ 1860.763311][T29765]  aa_label_asxprint+0x75/0x140
[ 1860.763339][T29765]  apparmor_lsmprop_to_secctx+0xb2/0x1a0
[ 1860.763375][T29765]  security_lsmprop_to_secctx+0x94/0x260
[ 1860.763410][T29765]  audit_log_task_context+0x134/0x1a0
[ 1860.763440][T29765]  ? __pfx_audit_log_task_context+0x10/0x10
[ 1860.763472][T29765]  ? from_kuid+0x8d/0xd0
[ 1860.763505][T29765]  ? __pfx_from_kuid+0x10/0x10
[ 1860.763545][T29765]  integrity_audit_message+0x269/0x580
[ 1860.763581][T29765]  ? __pfx_integrity_audit_message+0x10/0x10
[ 1860.763617][T29765]  ? __pfx_ima_add_template_entry+0x10/0x10
[ 1860.763657][T29765]  integrity_audit_msg+0x41/0x60
[ 1860.763692][T29765]  ima_add_violation+0x1b4/0x3d0
[ 1860.763721][T29765]  ? __pfx_ima_add_violation+0x10/0x10
[ 1860.763745][T29765]  ? ima_d_path+0x12b/0x2a0
[ 1860.763766][T29765]  ? __pfx___might_resched+0x10/0x10
[ 1860.763803][T29765]  ? __pfx_ima_d_path+0x10/0x10
[ 1860.763832][T29765]  ? __pfx_down_write+0x10/0x10
[ 1860.763878][T29765]  process_measurement+0x1674/0x23e0
[ 1860.763925][T29765]  ? __pfx_process_measurement+0x10/0x10
[ 1860.763962][T29765]  ? __pfx___might_resched+0x10/0x10
[ 1860.763992][T29765]  ? rcu_is_watching+0x12/0xc0
[ 1860.764017][T29765]  ? find_held_lock+0x2b/0x80
[ 1860.764042][T29765]  ? trace_array_get+0x83/0xe0
[ 1860.764101][T29765]  ? tracing_open_generic+0x94/0xc0
[ 1860.764130][T29765]  ? subsystem_open+0x18f/0x3e0
[ 1860.764162][T29765]  ? inode_to_bdi+0x9e/0x160
[ 1860.764200][T29765]  ima_file_check+0xc5/0x110
[ 1860.764237][T29765]  ? __pfx_ima_file_check+0x10/0x10
[ 1860.764282][T29765]  security_file_post_open+0x8e/0x210
[ 1860.764314][T29765]  path_openat+0x147d/0x2d40
[ 1860.764351][T29765]  ? __pfx_path_openat+0x10/0x10
[ 1860.764384][T29765]  do_filp_open+0x20b/0x470
[ 1860.764410][T29765]  ? __pfx_do_filp_open+0x10/0x10
[ 1860.764434][T29765]  ? rcu_is_watching+0x12/0xc0
[ 1860.764478][T29765]  ? alloc_fd+0x471/0x7d0
[ 1860.764509][T29765]  do_sys_openat2+0x11b/0x1d0
[ 1860.764542][T29765]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1860.764579][T29765]  ? __pfx___might_resched+0x10/0x10
[ 1860.764614][T29765]  __x64_sys_openat+0x174/0x210
[ 1860.764649][T29765]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1860.764685][T29765]  ? rcu_is_watching+0x12/0xc0
[ 1860.764718][T29765]  do_syscall_64+0xcd/0x230
[ 1860.764754][T29765]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1860.764779][T29765] RIP: 0033:0x7fb4ca78e969
[ 1860.764805][T29765] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1860.764829][T29765] RSP: 002b:00007fb4c85b4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1860.764853][T29765] RAX: ffffffffffffffda RBX: 00007fb4ca9b6160 RCX: 00007fb4ca78e969
[ 1860.764869][T29765] RDX: 0000000000109041 RSI: 0000200000007380 RDI: ffffffffffffff9c
[ 1860.764886][T29765] RBP: 00007fb4ca810ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1860.764901][T29765] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1860.764917][T29765] R13: 0000000000000000 R14: 00007fb4ca9b6160 R15: 00007fff54620518
[ 1860.764947][T29765]  </TASK>
[ 1860.764960][T29765] audit: error in audit_log_task_context
[ 1861.823859][T29771] could not allocate digest TFM handle 
[ 1861.838332][T29770] could not allocate digest TFM handle 
[ 1862.043864][T29780] ima: policy update failed
[ 1862.095850][   T30] audit: type=1802 audit(4294967607.822:44): pid=29780 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.5767" res=0 errno=0
[ 1862.977376][   T30] audit: type=1804 audit(4294967606.194:43): pid=29765 uid=0 auid=4294967295 ses=4294967295 op=invalid_pcr cause=ToMToU comm="syz.6.5763" name="/newroot/sys/kernel/tracing/events/vmalloc/filter" dev="tracefs" ino=19680823 res=1 errno=0
[ 1863.002284][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1863.616812][T17008] Bluetooth: hci3: unexpected subevent 0x01 length: 122 > 18
[ 1863.625191][T17008] Bluetooth: hci3: Invalid handle: 0x1e1a > 0x0eff
[ 1864.366010][T29818] netlink: 'syz.0.5774': attribute type 1 has an invalid length.
[ 1864.437255][T29813] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1864.455197][T29813] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1864.496612][T29813] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1864.541809][T29813] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1864.581695][T29813] CPU0 is offline.
[ 1866.221285][T27499] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1866.464972][T27499] Bluetooth: hci2: command 0x0c1a tx timeout
[ 1866.538660][T17008] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1866.545353][T27499] Bluetooth: hci3: command 0x0c1a tx timeout
[ 1867.671758][T29867] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet.
[ 1874.924015][   T30] audit: type=1800 audit(4294967620.759:45): pid=29959 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.5800" name="SYSV00000400" dev="tmpfs" ino=0 res=0 errno=0
[ 1875.730673][T29983] sd 0:0:1:0: PR command failed: 1026
[ 1875.736672][T29983] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[ 1875.837293][T29983] sd 0:0:1:0: Add. Sense: Invalid command operation code
[ 1877.948121][T30014] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5807'.
[ 1878.853914][T30025] Invalid ELF header magic: != ELF
[ 1880.471796][T30056] FAULT_INJECTION: forcing a failure.
[ 1880.471796][T30056] name failslab, interval 1, probability 0, space 0, times 0
[ 1880.556560][T30056] CPU: 1 UID: 0 PID: 30056 Comm: syz.3.5817 Tainted: G     U              6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) 
[ 1880.556602][T30056] Tainted: [U]=USER
[ 1880.556610][T30056] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1880.556625][T30056] Call Trace:
[ 1880.556633][T30056]  <TASK>
[ 1880.556643][T30056]  dump_stack_lvl+0x16c/0x1f0
[ 1880.556682][T30056]  should_fail_ex+0x512/0x640
[ 1880.556711][T30056]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1880.556744][T30056]  should_failslab+0xc2/0x120
[ 1880.556776][T30056]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1880.556804][T30056]  ? __pfx___schedule+0x10/0x10
[ 1880.556834][T30056]  ? do_raw_spin_unlock+0x172/0x230
[ 1880.556855][T30056]  ? alloc_empty_file+0x55/0x1e0
[ 1880.556891][T30056]  alloc_empty_file+0x55/0x1e0
[ 1880.556925][T30056]  path_openat+0xe0/0x2d40
[ 1880.556947][T30056]  ? __x64_sys_openat+0x174/0x210
[ 1880.556981][T30056]  ? do_syscall_64+0xcd/0x230
[ 1880.557014][T30056]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1880.557048][T30056]  ? __pfx_path_openat+0x10/0x10
[ 1880.557081][T30056]  do_filp_open+0x20b/0x470
[ 1880.557106][T30056]  ? __pfx_do_filp_open+0x10/0x10
[ 1880.557151][T30056]  ? alloc_fd+0x471/0x7d0
[ 1880.557181][T30056]  do_sys_openat2+0x11b/0x1d0
[ 1880.557215][T30056]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1880.557247][T30056]  ? udmabuf_ioctl+0x19f/0x310
[ 1880.557292][T30056]  __x64_sys_openat+0x174/0x210
[ 1880.557327][T30056]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1880.557363][T30056]  ? rcu_is_watching+0x12/0xc0
[ 1880.557395][T30056]  do_syscall_64+0xcd/0x230
[ 1880.557452][T30056]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1880.557484][T30056] RIP: 0033:0x7fe9bcb8e969
[ 1880.557503][T30056] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1880.557527][T30056] RSP: 002b:00007fe9bd9de038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1880.557551][T30056] RAX: ffffffffffffffda RBX: 00007fe9bcdb5fa0 RCX: 00007fe9bcb8e969
[ 1880.557567][T30056] RDX: 0000000000020402 RSI: 00002000000001c0 RDI: ffffffffffffff9c
[ 1880.557583][T30056] RBP: 00007fe9bcc10ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1880.557598][T30056] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1880.557613][T30056] R13: 0000000000000000 R14: 00007fe9bcdb5fa0 R15: 00007ffd263ebc38
[ 1880.557642][T30056]  </TASK>
[ 1882.962022][T30072] Setting dangerous option i915.mitigations - tainting kernel
[ 1883.884518][T30083] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5823'.
[ 1886.525991][T30114] FAULT_INJECTION: forcing a failure.
[ 1886.525991][T30114] name failslab, interval 1, probability 0, space 0, times 0
[ 1886.638090][T30114] CPU: 1 UID: 0 PID: 30114 Comm: syz.4.5830 Tainted: G     U              6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) 
[ 1886.638160][T30114] Tainted: [U]=USER
[ 1886.638168][T30114] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1886.638183][T30114] Call Trace:
[ 1886.638191][T30114]  <TASK>
[ 1886.638200][T30114]  dump_stack_lvl+0x16c/0x1f0
[ 1886.638241][T30114]  should_fail_ex+0x512/0x640
[ 1886.638272][T30114]  ? __kmalloc_cache_noprof+0x57/0x3e0
[ 1886.638302][T30114]  should_failslab+0xc2/0x120
[ 1886.638335][T30114]  __kmalloc_cache_noprof+0x6a/0x3e0
[ 1886.638360][T30114]  ? fib6_net_init+0x24b/0xb00
[ 1886.638392][T30114]  fib6_net_init+0x24b/0xb00
[ 1886.638421][T30114]  ? __pfx_fib6_net_init+0x10/0x10
[ 1886.638448][T30114]  ops_init+0x1df/0x5f0
[ 1886.638485][T30114]  setup_net+0x21e/0x850
[ 1886.638525][T30114]  ? __pfx_setup_net+0x10/0x10
[ 1886.638558][T30114]  ? lockdep_init_map_type+0x5c/0x280
[ 1886.638593][T30114]  ? __pfx_down_read_killable+0x10/0x10
[ 1886.638619][T30114]  ? debug_mutex_init+0x37/0x70
[ 1886.638647][T30114]  copy_net_ns+0x2a6/0x5f0
[ 1886.638687][T30114]  create_new_namespaces+0x3ea/0xad0
[ 1886.638722][T30114]  unshare_nsproxy_namespaces+0xc0/0x1f0
[ 1886.638754][T30114]  ksys_unshare+0x45b/0xa40
[ 1886.638790][T30114]  ? __pfx_ksys_unshare+0x10/0x10
[ 1886.638823][T30114]  ? xfd_validate_state+0x5d/0x180
[ 1886.638849][T30114]  ? rcu_is_watching+0x12/0xc0
[ 1886.638880][T30114]  __x64_sys_unshare+0x31/0x40
[ 1886.638915][T30114]  do_syscall_64+0xcd/0x230
[ 1886.638952][T30114]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1886.638976][T30114] RIP: 0033:0x7fab7df8e969
[ 1886.638995][T30114] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1886.639019][T30114] RSP: 002b:00007fab7ed47038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1886.639041][T30114] RAX: ffffffffffffffda RBX: 00007fab7e1b5fa0 RCX: 00007fab7df8e969
[ 1886.639057][T30114] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 1886.639072][T30114] RBP: 00007fab7e010ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1886.639087][T30114] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1886.639101][T30114] R13: 0000000000000000 R14: 00007fab7e1b5fa0 R15: 00007fffb5a63318
[ 1886.639137][T30114]  </TASK>
[ 1888.415977][T30153] FAULT_INJECTION: forcing a failure.
[ 1888.415977][T30153] name failslab, interval 1, probability 0, space 0, times 0
[ 1888.502426][T30153] CPU: 1 UID: 0 PID: 30153 Comm: syz.0.5840 Tainted: G     U              6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) 
[ 1888.502468][T30153] Tainted: [U]=USER
[ 1888.502476][T30153] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1888.502490][T30153] Call Trace:
[ 1888.502499][T30153]  <TASK>
[ 1888.502508][T30153]  dump_stack_lvl+0x16c/0x1f0
[ 1888.502547][T30153]  should_fail_ex+0x512/0x640
[ 1888.502576][T30153]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1888.502609][T30153]  should_failslab+0xc2/0x120
[ 1888.502641][T30153]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1888.502670][T30153]  ? getname_flags.part.0+0x4c/0x550
[ 1888.502708][T30153]  getname_flags.part.0+0x4c/0x550
[ 1888.502745][T30153]  getname_flags+0x93/0xf0
[ 1888.502768][T30153]  do_sys_openat2+0xb8/0x1d0
[ 1888.502802][T30153]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1888.502834][T30153]  ? udmabuf_ioctl+0x19f/0x310
[ 1888.502881][T30153]  __x64_sys_openat+0x174/0x210
[ 1888.502916][T30153]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1888.502952][T30153]  ? rcu_is_watching+0x12/0xc0
[ 1888.502986][T30153]  do_syscall_64+0xcd/0x230
[ 1888.503023][T30153]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1888.503047][T30153] RIP: 0033:0x7fb51eb8e969
[ 1888.503066][T30153] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1888.503090][T30153] RSP: 002b:00007fb51fac1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1888.503112][T30153] RAX: ffffffffffffffda RBX: 00007fb51edb5fa0 RCX: 00007fb51eb8e969
[ 1888.503128][T30153] RDX: 0000000000020402 RSI: 00002000000001c0 RDI: ffffffffffffff9c
[ 1888.503144][T30153] RBP: 00007fb51ec10ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1888.503158][T30153] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1888.503173][T30153] R13: 0000000000000000 R14: 00007fb51edb5fa0 R15: 00007ffd2ea4fa18
[ 1888.503202][T30153]  </TASK>

syzkaller
syzkaller login: [ 1889.934417][T30183] kAFS: Invalid Command on /proc/fs/afs/cells file
[ 1889.951694][T30177] FAULT_INJECTION: forcing a failure.
[ 1889.951694][T30177] name failslab, interval 1, probability 0, space 0, times 0
[ 1890.119004][T30177] CPU: 1 UID: 0 PID: 30177 Comm: syz.6.5846 Tainted: G     U              6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) 
[ 1890.119047][T30177] Tainted: [U]=USER
[ 1890.119055][T30177] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1890.119069][T30177] Call Trace:
[ 1890.119078][T30177]  <TASK>
[ 1890.119087][T30177]  dump_stack_lvl+0x16c/0x1f0
[ 1890.119126][T30177]  should_fail_ex+0x512/0x640
[ 1890.119155][T30177]  ? __kmalloc_cache_noprof+0x57/0x3e0
[ 1890.119183][T30177]  should_failslab+0xc2/0x120
[ 1890.119215][T30177]  __kmalloc_cache_noprof+0x6a/0x3e0
[ 1890.119239][T30177]  ? do_raw_spin_lock+0x12c/0x2b0
[ 1890.119261][T30177]  ? ip6addrlbl_alloc+0x9a/0x2c0
[ 1890.119303][T30177]  ip6addrlbl_alloc+0x9a/0x2c0
[ 1890.119342][T30177]  ip6addrlbl_net_init+0x13d/0x400
[ 1890.119383][T30177]  ? __pfx_ip6addrlbl_net_init+0x10/0x10
[ 1890.119421][T30177]  ops_init+0x1df/0x5f0
[ 1890.119458][T30177]  setup_net+0x21e/0x850
[ 1890.119495][T30177]  ? __pfx_setup_net+0x10/0x10
[ 1890.119527][T30177]  ? lockdep_init_map_type+0x5c/0x280
[ 1890.119561][T30177]  ? __pfx_down_read_killable+0x10/0x10
[ 1890.119587][T30177]  ? debug_mutex_init+0x37/0x70
[ 1890.119615][T30177]  copy_net_ns+0x2a6/0x5f0
[ 1890.119655][T30177]  create_new_namespaces+0x3ea/0xad0
[ 1890.119691][T30177]  unshare_nsproxy_namespaces+0xc0/0x1f0
[ 1890.119722][T30177]  ksys_unshare+0x45b/0xa40
[ 1890.119757][T30177]  ? __pfx_ksys_unshare+0x10/0x10
[ 1890.119790][T30177]  ? xfd_validate_state+0x5d/0x180
[ 1890.119816][T30177]  ? rcu_is_watching+0x12/0xc0
[ 1890.119848][T30177]  __x64_sys_unshare+0x31/0x40
[ 1890.119882][T30177]  do_syscall_64+0xcd/0x230
[ 1890.119926][T30177]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1890.119950][T30177] RIP: 0033:0x7fb4ca78e969
[ 1890.119970][T30177] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1890.119994][T30177] RSP: 002b:00007fb4c85f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1890.120017][T30177] RAX: ffffffffffffffda RBX: 00007fb4ca9b5fa0 RCX: 00007fb4ca78e969
[ 1890.120034][T30177] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 1890.120049][T30177] RBP: 00007fb4ca810ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1890.120064][T30177] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1890.120079][T30177] R13: 0000000000000000 R14: 00007fb4ca9b5fa0 R15: 00007fff54620518
[ 1890.120109][T30177]  </TASK>
[ 1891.486437][T30208] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5850'.
[ 1893.757454][T27499] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[ 1897.875584][T30436] Invalid ELF header magic: != ELF
[ 1898.674643][T30439] could not allocate digest TFM handle 
[ 1898.728065][T30436] could not allocate digest TFM handle 
[ 1899.203469][T30472] FAULT_INJECTION: forcing a failure.
[ 1899.203469][T30472] name failslab, interval 1, probability 0, space 0, times 0
[ 1899.362215][T30472] CPU: 1 UID: 0 PID: 30472 Comm: syz.4.5876 Tainted: G     U              6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) 
[ 1899.362258][T30472] Tainted: [U]=USER
[ 1899.362266][T30472] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1899.362281][T30472] Call Trace:
[ 1899.362289][T30472]  <TASK>
[ 1899.362299][T30472]  dump_stack_lvl+0x16c/0x1f0
[ 1899.362344][T30472]  should_fail_ex+0x512/0x640
[ 1899.362372][T30472]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1899.362406][T30472]  should_failslab+0xc2/0x120
[ 1899.362439][T30472]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1899.362469][T30472]  ? getname_flags.part.0+0x4c/0x550
[ 1899.362506][T30472]  getname_flags.part.0+0x4c/0x550
[ 1899.362544][T30472]  getname_flags+0x93/0xf0
[ 1899.362566][T30472]  do_sys_openat2+0xb8/0x1d0
[ 1899.362601][T30472]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1899.362646][T30472]  __x64_sys_openat+0x174/0x210
[ 1899.362681][T30472]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1899.362728][T30472]  ? rcu_is_watching+0x12/0xc0
[ 1899.362761][T30472]  do_syscall_64+0xcd/0x230
[ 1899.362798][T30472]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1899.362823][T30472] RIP: 0033:0x7fab7df8e969
[ 1899.362842][T30472] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1899.362866][T30472] RSP: 002b:00007fab7ed47038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1899.362889][T30472] RAX: ffffffffffffffda RBX: 00007fab7e1b5fa0 RCX: 00007fab7df8e969
[ 1899.362906][T30472] RDX: 0000000000040141 RSI: 0000000000000000 RDI: ffffffffffffff9c
[ 1899.362921][T30472] RBP: 00007fab7e010ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1899.362936][T30472] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1899.362950][T30472] R13: 0000000000000000 R14: 00007fab7e1b5fa0 R15: 00007fffb5a63318
[ 1899.362980][T30472]  </TASK>
[ 1900.713890][T30500] FAULT_INJECTION: forcing a failure.
[ 1900.713890][T30500] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1900.970606][T30500] CPU: 1 UID: 0 PID: 30500 Comm: syz.6.5880 Tainted: G     U              6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) 
[ 1900.970649][T30500] Tainted: [U]=USER
[ 1900.970658][T30500] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1900.970674][T30500] Call Trace:
[ 1900.970681][T30500]  <TASK>
[ 1900.970691][T30500]  dump_stack_lvl+0x16c/0x1f0
[ 1900.970730][T30500]  should_fail_ex+0x512/0x640
[ 1900.970764][T30500]  strncpy_from_user+0x3b/0x2e0
[ 1900.970794][T30500]  getname_flags.part.0+0x8f/0x550
[ 1900.970832][T30500]  getname_flags+0x93/0xf0
[ 1900.970854][T30500]  do_sys_openat2+0xb8/0x1d0
[ 1900.970888][T30500]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1900.970920][T30500]  ? udmabuf_ioctl+0x19f/0x310
[ 1900.970966][T30500]  __x64_sys_openat+0x174/0x210
[ 1900.971000][T30500]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1900.971037][T30500]  ? rcu_is_watching+0x12/0xc0
[ 1900.971069][T30500]  do_syscall_64+0xcd/0x230
[ 1900.971106][T30500]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1900.971130][T30500] RIP: 0033:0x7fb4ca78e969
[ 1900.971149][T30500] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1900.971173][T30500] RSP: 002b:00007fb4c85f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1900.971196][T30500] RAX: ffffffffffffffda RBX: 00007fb4ca9b5fa0 RCX: 00007fb4ca78e969
[ 1900.971212][T30500] RDX: 0000000000000082 RSI: 0000200000000640 RDI: ffffffffffffff9c
[ 1900.971228][T30500] RBP: 00007fb4ca810ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1900.971243][T30500] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1900.971257][T30500] R13: 0000000000000000 R14: 00007fb4ca9b5fa0 R15: 00007fff54620518
[ 1900.971287][T30500]  </TASK>
[ 1901.858724][T30533] netlink: 338 bytes leftover after parsing attributes in process `syz.6.5885'.
[ 1902.723101][T30579] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5887'.
[ 1904.720722][T30631] FAULT_INJECTION: forcing a failure.
[ 1904.720722][T30631] name failslab, interval 1, probability 0, space 0, times 0
[ 1904.819471][T30631] CPU: 1 UID: 0 PID: 30631 Comm: syz.3.5893 Tainted: G     U              6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) 
[ 1904.819513][T30631] Tainted: [U]=USER
[ 1904.819522][T30631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1904.819537][T30631] Call Trace:
[ 1904.819545][T30631]  <TASK>
[ 1904.819554][T30631]  dump_stack_lvl+0x16c/0x1f0
[ 1904.819593][T30631]  should_fail_ex+0x512/0x640
[ 1904.819622][T30631]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1904.819655][T30631]  should_failslab+0xc2/0x120
[ 1904.819687][T30631]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1904.819717][T30631]  ? getname_flags.part.0+0x4c/0x550
[ 1904.819755][T30631]  getname_flags.part.0+0x4c/0x550
[ 1904.819791][T30631]  getname_flags+0x93/0xf0
[ 1904.819814][T30631]  do_sys_openat2+0xb8/0x1d0
[ 1904.819848][T30631]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1904.819880][T30631]  ? udmabuf_ioctl+0x19f/0x310
[ 1904.819926][T30631]  __x64_sys_openat+0x174/0x210
[ 1904.819961][T30631]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1904.819997][T30631]  ? rcu_is_watching+0x12/0xc0
[ 1904.820029][T30631]  do_syscall_64+0xcd/0x230
[ 1904.820066][T30631]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1904.820090][T30631] RIP: 0033:0x7fe9bcb8e969
[ 1904.820108][T30631] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1904.820133][T30631] RSP: 002b:00007fe9bd9de038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1904.820156][T30631] RAX: ffffffffffffffda RBX: 00007fe9bcdb5fa0 RCX: 00007fe9bcb8e969
[ 1904.820172][T30631] RDX: 0000000000000082 RSI: 0000200000000640 RDI: ffffffffffffff9c
[ 1904.820188][T30631] RBP: 00007fe9bcc10ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1904.820203][T30631] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1904.820217][T30631] R13: 0000000000000000 R14: 00007fe9bcdb5fa0 R15: 00007ffd263ebc38
[ 1904.820247][T30631]  </TASK>
[ 1905.036210][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1906.140405][T30654] Invalid ELF header magic: != ELF
[ 1907.446856][T30663] ima: policy update failed
[ 1907.500335][   T30] audit: type=1802 audit(4294967656.505:46): pid=30663 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.5897" res=0 errno=0
[ 1907.823869][T30679] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5901'.
[ 1907.899088][T30682] FAULT_INJECTION: forcing a failure.
[ 1907.899088][T30682] name failslab, interval 1, probability 0, space 0, times 0
[ 1907.969092][T30682] CPU: 1 UID: 0 PID: 30682 Comm: syz.3.5902 Tainted: G     U              6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) 
[ 1907.969135][T30682] Tainted: [U]=USER
[ 1907.969143][T30682] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1907.969158][T30682] Call Trace:
[ 1907.969166][T30682]  <TASK>
[ 1907.969176][T30682]  dump_stack_lvl+0x16c/0x1f0
[ 1907.969215][T30682]  should_fail_ex+0x512/0x640
[ 1907.969243][T30682]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1907.969275][T30682]  should_failslab+0xc2/0x120
[ 1907.969317][T30682]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1907.969346][T30682]  ? getname_flags.part.0+0x4c/0x550
[ 1907.969384][T30682]  getname_flags.part.0+0x4c/0x550
[ 1907.969421][T30682]  getname_flags+0x93/0xf0
[ 1907.969444][T30682]  do_sys_openat2+0xb8/0x1d0
[ 1907.969477][T30682]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1907.969510][T30682]  ? udmabuf_ioctl+0x19f/0x310
[ 1907.969556][T30682]  __x64_sys_openat+0x174/0x210
[ 1907.969590][T30682]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1907.969627][T30682]  ? rcu_is_watching+0x12/0xc0
[ 1907.969659][T30682]  do_syscall_64+0xcd/0x230
[ 1907.969696][T30682]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1907.969720][T30682] RIP: 0033:0x7fe9bcb8e969
[ 1907.969739][T30682] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1907.969763][T30682] RSP: 002b:00007fe9bd9de038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1907.969786][T30682] RAX: ffffffffffffffda RBX: 00007fe9bcdb5fa0 RCX: 00007fe9bcb8e969
[ 1907.969802][T30682] RDX: 0000000000000082 RSI: 0000200000000640 RDI: ffffffffffffff9c
[ 1907.969818][T30682] RBP: 00007fe9bcc10ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1907.969833][T30682] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1907.969847][T30682] R13: 0000000000000000 R14: 00007fe9bcdb5fa0 R15: 00007ffd263ebc38
[ 1907.969876][T30682]  </TASK>
[ 1909.045015][T30724] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] SMP KASAN PTI
[ 1909.058137][T30724] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
[ 1909.067393][T30724] CPU: 1 UID: 0 PID: 30724 Comm: syz.6.5907 Tainted: G     U              6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) 
[ 1909.082392][T30724] Tainted: [U]=USER
[ 1909.086571][T30724] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1909.097629][T30724] RIP: 0010:strcmp+0x39/0xb0
[ 1909.102695][T30724] Code: df 41 54 55 53 48 89 fb 48 83 ec 08 eb 08 40 84 ed 74 61 4c 89 e6 48 89 df 48 83 c3 01 48 89 f8 48 89 fa 48 c1 e8 03 83 e2 07 <42> 0f b6 04 28 38 d0 7f 04 84 c0 75 58 48 89 f0 48 89 f2 0f b6 6b
[ 1909.124268][T30724] RSP: 0018:ffffc9000bd9f968 EFLAGS: 00010246
[ 1909.130985][T30724] RAX: 0000000000000000 RBX: 0000000000000001 RCX: ffffc9000e709000
[ 1909.139753][T30724] RDX: 0000000000000000 RSI: ffffffff8c21ad20 RDI: 0000000000000000
[ 1909.148522][T30724] RBP: ffffffff8c219da0 R08: 0000000000000001 R09: ffffed1004c38f09
[ 1909.157288][T30724] R10: ffff8880261c784f R11: 0000000000000001 R12: ffff88806140c000
[ 1909.166057][T30724] R13: dffffc0000000000 R14: dffffc0000000000 R15: 0000000000000000
[ 1909.174855][T30724] FS:  00007fb4c85f66c0(0000) GS:ffff888124abf000(0000) knlGS:0000000000000000
[ 1909.184683][T30724] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1909.191925][T30724] CR2: 0000001b2c61bff8 CR3: 000000002331c000 CR4: 00000000003526f0
[ 1909.200699][T30724] Call Trace:
[ 1909.204305][T30724]  <TASK>
[ 1909.207527][T30724]  ? __pfx_down_read+0x10/0x10
[ 1909.212794][T30724]  zcomp_available_show+0x72/0x150
[ 1909.218445][T30724]  ? __pfx_comp_algorithm_show+0x10/0x10
[ 1909.224646][T30724]  comp_algorithm_show+0x96/0xd0
[ 1909.230101][T30724]  dev_attr_show+0x53/0xe0
[ 1909.234977][T30724]  ? __pfx_dev_attr_show+0x10/0x10
[ 1909.240813][T30724]  sysfs_kf_seq_show+0x213/0x3e0
[ 1909.246278][T30724]  seq_read_iter+0x506/0x12c0
[ 1909.251460][T30724]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[ 1909.258081][T30724]  kernfs_fop_read_iter+0x40f/0x5a0
[ 1909.263812][T30724]  copy_splice_read+0x615/0xba0
[ 1909.269181][T30724]  ? __mutex_lock+0x1ca/0xb90
[ 1909.274340][T30724]  ? __pfx_copy_splice_read+0x10/0x10
[ 1909.280264][T30724]  ? __pfx___mutex_lock+0x10/0x10
[ 1909.285807][T30724]  ? __fget_files+0x204/0x3c0
[ 1909.290963][T30724]  ? __pfx_copy_splice_read+0x10/0x10
[ 1909.296893][T30724]  do_splice_read+0x282/0x370
[ 1909.302073][T30724]  splice_file_to_pipe+0x109/0x120
[ 1909.307726][T30724]  do_sendfile+0x400/0xe50
[ 1909.312617][T30724]  ? __pfx_do_sendfile+0x10/0x10
[ 1909.318158][T30724]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1909.323603][T30724]  ? __x64_sys_futex+0x1e9/0x4c0
[ 1909.329044][T30724]  __x64_sys_sendfile64+0x1d8/0x220
[ 1909.334773][T30724]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[ 1909.341071][T30724]  ? rcu_is_watching+0x12/0xc0
[ 1909.346320][T30724]  do_syscall_64+0xcd/0x230
[ 1909.351409][T30724]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1909.357925][T30724] RIP: 0033:0x7fb4ca78e969
[ 1909.362795][T30724] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1909.384372][T30724] RSP: 002b:00007fb4c85f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 1909.393652][T30724] RAX: ffffffffffffffda RBX: 00007fb4ca9b5fa0 RCX: 00007fb4ca78e969
[ 1909.402451][T30724] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000001
[ 1909.411227][T30724] RBP: 00007fb4ca810ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1909.420014][T30724] R10: 000000007ffff000 R11: 0000000000000246 R12: 0000000000000000
[ 1909.428793][T30724] R13: 0000000000000000 R14: 00007fb4ca9b5fa0 R15: 00007fff54620518
[ 1909.437577][T30724]  </TASK>
[ 1909.440905][T30724] Modules linked in:
[ 1909.445325][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1909.452916][T30724] ---[ end trace 0000000000000000 ]---
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 1911.396529][T30724] RIP: 0010:strcmp+0x39/0xb0
[ 1911.446422][T30724] Code: df 41 54 55 53 48 89 fb 48 83 ec 08 eb 08 40 84 ed 74 61 4c 89 e6 48 89 df 48 83 c3 01 48 89 f8 48 89 fa 48 c1 e8 03 83 e2 07 <42> 0f b6 04 28 38 d0 7f 04 84 c0 75 58 48 89 f0 48 89 f2 0f b6 6b
[ 1911.596047][T30724] RSP: 0018:ffffc9000bd9f968 EFLAGS: 00010246
[ 1911.645132][T30724] RAX: 0000000000000000 RBX: 0000000000000001 RCX: ffffc9000e709000
[ 1911.666671][T30724] RDX: 0000000000000000 RSI: ffffffff8c21ad20 RDI: 0000000000000000
[ 1911.684722][T30724] RBP: ffffffff8c219da0 R08: 0000000000000001 R09: ffffed1004c38f09
[ 1911.704691][T30724] R10: ffff8880261c784f R11: 0000000000000001 R12: ffff88806140c000
[ 1911.724556][T30724] R13: dffffc0000000000 R14: dffffc0000000000 R15: 0000000000000000
[ 1911.745931][T30724] FS:  00007fb4c85f66c0(0000) GS:ffff888124abf000(0000) knlGS:0000000000000000
[ 1911.766184][T30724] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1911.784191][T30724] CR2: 0000001b2c5ebff8 CR3: 000000002331c000 CR4: 00000000003526f0
[ 1911.802262][T30724] Kernel panic - not syncing: Fatal exception
[ 1911.809050][T30724] Kernel Offset: disabled
[ 1911.813841][T30724] Rebooting in 86400 seconds..