last executing test programs:

6m32.546675853s ago: executing program 0 (id=658):
mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffff6, 0x8000) (async)
syslog$auto_SYSLOG_ACTION_READ(0x2, 0xfffffffffffffffe, 0xbf) (async)
syslog$auto_SYSLOG_ACTION_READ(0x2, &(0x7f0000000000)='/sys/fs/ext4/sda1/last_error_time\x00', 0xf)
r0 = socket(0x25, 0x1, 0x5)
setsockopt$auto(r0, 0x3ff, 0x80, 0xfffffffffffffffd, 0x3)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/fs/ext4/sda1/last_error_time\x00', 0x0, 0x0)
read$auto(r1, 0x0, 0x20)

6m31.606727798s ago: executing program 0 (id=661):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
socket(0xa, 0x1, 0x100)
ioperm$auto(0x7, 0x5ad2, 0x8)
modify_ldt$auto(0x1, 0x0, 0x10)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40, 0x0)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
socket(0x1e, 0x1, 0x0)
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0)
mmap$auto(0xfffffffffffffffd, 0xc37, 0xdf, 0x9b72, 0x2, 0x8000)
io_uring_setup$auto(0x6, 0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x103e81, 0x0)
ioctl$auto_TIOCGWINSZ2(r0, 0x5413, &(0x7f0000000000))
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptyc0\x00', 0xa440, 0x0)
ioctl$auto_TIOCSTI2(r1, 0x5412, &(0x7f0000000140))
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio1\x00', 0x20b42, 0x0)
r2 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000080), 0xffffffffffffffff)
r3 = socket(0x10, 0x2, 0xf)
sendmsg$auto_NFSD_CMD_THREADS_SET(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x14, r2, 0xfffffffffffffffe, 0x70bd2d, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x40000021}, 0x8004)
acct$auto(&(0x7f0000000040)='/dev/mtd0\x00')
mmap$auto(0x0, 0x2, 0xffffffffffffffff, 0x40eb1, 0x602, 0x300000000000)
move_pages$auto(0x0, 0x1002, 0x0, &(0x7f0000001140), 0x0, 0x2)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x5)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
r4 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0xc00, 0x0)
ioctl$auto_EVIOCSMASK(r4, 0x40104593, 0x0)
close_range$auto(0x2, 0x8, 0x2)

6m30.55898147s ago: executing program 0 (id=666):
mknod$auto(&(0x7f0000000100)='./file0/../file0\x00', 0x1001, 0x804) (async)
rseq$auto(0x0, 0x8000, 0x0, 0x6)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) (async)
mmap$auto(0x0, 0x5, 0xd, 0x90, 0x401, 0x8003)
mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000)
io_uring_setup$auto(0x6, 0x0)
io_uring_setup$auto(0xa, 0x0)
ioctl$auto_SNDCTL_SEQ_TESTMIDI(0xffffffffffffffff, 0x40045108, &(0x7f00000001c0)="8a92e5407d07ee3d23d7bc2d29f267610b03f499de2e250c69817f8a2a9ed154071de7975fe6f63341b93324a5956138bbe5008af7e9470e1ac4284045492a3adcf120bd1b0d44e5eb43e978a9aedb23790749a9dd83b556") (async)
keyctl$auto(0x15, 0xfffffff9, 0x5, 0x100000004, 0x9) (async)
setsockopt$auto(0xffffffffffffffff, 0x29, 0xd1, 0x0, 0x2) (async)
mmap$auto(0x8, 0x600007, 0xe0, 0x9b72, 0xffffffffffffffff, 0x0) (async)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async)
write$auto(0x3, 0x0, 0x7fffffff) (async)
r1 = epoll_create$auto(0x1)
fremovexattr$auto(r1, &(0x7f0000000000)='&\x00')
read$auto_v4l2_fops_v4l2_dev(r1, &(0x7f0000000280)=""/54, 0x36)
write$auto(0x1, 0x0, 0x80000000) (async)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async)
getcwd$auto(0x0, 0xfffffffeffffffff)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) (async)
fanotify_init$auto(0x8, 0x2000000000002) (async)
r2 = open(&(0x7f0000000000)='./bus\x00', 0x12ba7e, 0x45)
fanotify_mark$auto(0x0, 0x451, 0xa, r2, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket(0xa, 0x5, 0x0)
inotify_init1$auto(0x3000000000000) (async)
inotify_add_watch$auto(0x4, 0x0, 0xe6e) (async)
openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, 0x0, 0xa2481, 0x0)
mmap$auto(0x6dea, 0x5, 0x9, 0x17, r0, 0x10001)

6m29.511888486s ago: executing program 0 (id=668):
openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/block/nbd5/sched/owned_by_driver\x00', 0x2000, 0x0) (async)
r0 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/block/nbd5/sched/owned_by_driver\x00', 0x2000, 0x0)
read$auto_blk_mq_debugfs_fops_blk_mq_debugfs(r0, &(0x7f0000000040)=""/163, 0xa3)
mmap$auto(0x0, 0x202000c, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r1 = io_uring_setup$auto(0x1000, 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84) (async)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84)
close_range$auto(0x2, 0x8000, 0x0)
r3 = socket(0xa, 0x2, 0x88)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_fd=r5, r5, 0x4, 0x1ff, r3, @relative_fd=<r6=>r2, 0xe600}, 0xf)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, r2, 0x0, 0x3}, 0xc)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(0xffffffffffffffff, 0xc1105517, &(0x7f0000000200)={{@raw=0x7, 0xf, 0x1, 0x5, "3112d585005a614d19e22af9ffb683dbede3d0bf828bbfba40f035f4be6b7fe5e2f94bd90484b0755015e48d", @raw=0x10001}, 0x2, 0x5, 0x0, @inferred, @integer64={0x7, 0x5, 0xb}, "7a9fc199a16a2311eacf2fc7ae1da978dc3e8090334fdd73340238d212b6debe0eda71bdd70925450e24e87212f0bcab84a16f7ce8cbce0bb32777702b8d7c2d"})
rt_sigqueueinfo$auto(0x0, 0x4, &(0x7f0000000000)={@siginfo_0_0={0xf9, 0x14, 0x7e73, @_timer={0x0, 0x80000001, @sival_ptr=0x0, 0x5}}})
getsockopt$auto_SO_OOBINLINE(r0, 0x5, 0xa, &(0x7f0000000140)='/sys/kernel/debug/block/nbd5/sched/owned_by_driver\x00', &(0x7f0000000180)=0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/ptp/ptp0/n_alarms\x00', 0x42080, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r7, &(0x7f0000000240)=""/217, 0x115)
socket(0x2, 0x2, 0x1) (async)
socket(0x2, 0x2, 0x1)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) (async)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) (async)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
futex$auto(0x0, 0x6, 0x47, 0x0, 0x0, 0x0)
setsockopt$auto(0x3, 0x1, 0x29, 0x0, 0x28) (async)
setsockopt$auto(0x3, 0x1, 0x29, 0x0, 0x28)
r8 = syz_genetlink_get_family_id$auto_seg6(&(0x7f00000003c0), r1)
sendmsg$auto_SEG6_CMD_GET_TUNSRC(r4, &(0x7f0000000780)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000740)={&(0x7f0000000400)={0x304, r8, 0x10, 0x70bd2a, 0x25dfdbfc, {}, [@SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x69}, @SEG6_ATTR_SECRET={0x4b, 0x4, "0f746232d4d802379c9887ab20e2b0bed6a5048ccb7a237c932f88259593ff8af81d44636b5beee48c5a3e193e1e3fc410b814a5c81394fa20b977ec2426d10f362f7d097e0419"}, @SEG6_ATTR_DSTLEN={0x8, 0x2, 0x4}, @SEG6_ATTR_SECRET={0x90, 0x4, "ed01020aed24bbefdea6c76be1183c398ab7f619f553516cce1ee1146703b725df420d26c4eaa95ef46ae2efc18bb46e67187ab9734bf401fe9fc6af627582190231047af8c7bf56114d5202d64bb2ed82eddbeef18e542bc5943870863969fdf1f06d0022ae07311cc732acaf4df219afc1373ea1dac17c4bbdeef4b7dfcf870d27bbbdd1ec895ffee3e184"}, @SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x7}, @SEG6_ATTR_SECRET={0xf1, 0x4, "888c45325076f89f9abba61ede8a0a12c4f009f71c1069df7ab7fc5148f436b456d9eacfbb7dbf66a22135ad9e8b2ed829382bd699a04a6f4c21fb89ad187d7f6b4a29601e9a3f6e23045831f2ccfd6ac012efadc5682b9702fc148a9b9c01f46e6fb89971d1f667684eb2909f3b153149ed7f95ae576d9dee9a4be29a8dd60efc147edde75039690bd400ab1029513f314c529af45f600a37bf48389dcca3ec598d9cd897d64740c20812b1f3d1f6d8cad0f6c66052786985742bb415dde0145c0b0a23038097b2bf188edcc0e7e7be3b58d5c399d73fdf1bf8f0b91d4ff5a70133261a22948d1007bf06a07a"}, @SEG6_ATTR_SECRET={0xf1, 0x4, "82d88efa94e60212bd34a620a85fb8d713571dfc2b4765b72d85da1272746fd2b856528d2cbcbb2da2fb4164bb959dc3c626ee20803947eb9b7d35d9fca6e879a14b9f47083fc6dad99507371462d39251040909376561750e3ef19359012d44a183e44705a222ec15e1f10a88a7f114cea8f7327c7705baa9b4e3ab7557a044909ca96e8fee136f94415d12bb35d6b9fab92beb9d261330dfe22485f3525f80daccccdc93a825131febd5390a54d715652eee7f198123e46e0aac03d36a620ba0f2aec56ad7592d4e99ae5702f83d4d07524e537b737399e7a3f483a8803e23465d8d378dcbb46cdf488e05c9"}, @SEG6_ATTR_DST={0x14, 0x1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}]}, 0x304}, 0x1, 0x0, 0x0, 0x40}, 0x800)
io_uring_setup$auto(0x6, 0x0) (async)
io_uring_setup$auto(0x6, 0x0)
setsockopt$auto(r6, 0xc, 0x1a, &(0x7f0000000340)='/sys/devices/virtual/ptp/ptp0/n_alarms\x00', 0x9)
write$auto(0x3, 0x0, 0xfdef)
socket(0x11, 0x3, 0x9) (async)
r9 = socket(0x11, 0x3, 0x9)
sendmmsg$auto(r9, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5ac, &(0x7f0000000100)={&(0x7f0000000200)='M', 0x21}, 0x5, &(0x7f0000000180), 0x5, 0xe}, 0x5}, 0x2, 0x100) (async)
sendmmsg$auto(r9, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5ac, &(0x7f0000000100)={&(0x7f0000000200)='M', 0x21}, 0x5, &(0x7f0000000180), 0x5, 0xe}, 0x5}, 0x2, 0x100)

6m28.194305284s ago: executing program 0 (id=675):
tkill$auto(0x1, 0x7)
keyctl$auto_KEYCTL_SESSION_TO_PARENT(0x12, 0x8, 0x3fffffc, 0xffffffeffffffffa, 0x5)
mmap$auto(0x3, 0x20009, 0x8, 0xeb1, 0x401, 0x8000)
r0 = syz_clone(0x10010000, &(0x7f0000000300)="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", 0x1000, &(0x7f0000000080), &(0x7f0000000100), &(0x7f0000000140)="8be8164fcbde7a8d861ce3a6eb3cf234f758b4fbde53ee29879203a87a")
kcmp$auto_KCMP_FS(r0, 0xffffffffffffffff, 0x3, 0x7, 0x101)
r1 = openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/config/target/dbroot\x00', 0x2001, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
prctl$auto_PR_SET_MM_START_STACK(0x9, 0x5, r0, 0x100000000, 0x4)
r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r4 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000180), 0x2a002, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_PVERSION(r4, 0x80045400, &(0x7f0000000240))
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x800)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x5, 0x0)
mknod$auto(&(0x7f0000000580)='u[,&*}\x00\a\x00\x00\x00?\xa4\x1fN\xa1~5Z\xc7\r\f}M4\xa8m\xe6\x19[11\xab\xff-E\xac9(\xb4O\xa0t4h\x9f-gn\x1f\x01\x00\x00\x00\x00\x00\x00\x00\xaeR\x81\r_\x0e\x19\b\x85\bvv(e\xdax)\t\x15\xf6\xc8\xee\x04\x16\xc1\x9a!\x87I7\x8cD&zg\xb0a\xab|E\xde\x14\xee[\xc8\xc0\xa8Nh\x0f\xa3\xdbT\xb3\xb8\xd2F\xa0\xc4]\xaf\xc43&\xe4\x01\x05\xd2\x15\xf8\xf1!\x9d\x92\xbbH\xd3^aD\x87\xd8\xe7\xd2\xf3[r\xc5S&}D[\x97\xf1\xd9\xf8Y\x1c\x03\x84\xb4\xd7\x16\x19\xe5\x17\x10\xd8fcG:\xfbY8\x17w\x98?\x03@\xe5\x02\x05\x93h\xb9\xf7\xef\x84\x8aGlN\a\x1e\x00\x00\x00\x00\x00\x00\x00\xf1p\xeb\xe9(%\x89\xef\x85\xdfr\xce\x00\x00\x00\x00\xff\x00\xa2M\'d\x12\x1c\x12\xca\xa5_\x8d\xdf\xc5\x8d\x19?\xfc~\xb3X\x14\xa7\xa9M\x87\xfcTW\x1bR\xbci\x8d\x8aNEO\xb3~~\xa8\xa6\x894\x80;s\xb7\xa3V\x1b\x14|\x9e\xd4\x05\x85\x0f!\xab-E\'\x97Y\xb7\xe8fMv_\xf8\xa0S\xef\xb7\b\xe7!T.g\x92\x87\t$\x06\xa4\xfb\x83\x8c\x17^\x82\xe7\xd3\xf6q\x1a\xa0\xf82[W\x90\xdd\xe3\xde\xa9\xde\x94`-\x9a\x1e}\xebO*\xb85,v.\xfc5\xba?vlt\xda%\x06a\x15I\x1f\xe3\x05+\x810T2\xf9\x9b\xc7\xd1<w\xd3:\x835\xac\r\x06\xc9\xc1HG\x1c\xd4J\x8aZ%+\xe6/~\xd6\xe1[+Z\xb1\x8d\xc5\x9b\xcfhb\'\x80\xeb7%>\t\x03\xf2\x8d\x8a\x90\xb54\bH<9\xf1\x91 D\x85g,\xaa\xca\xcd\xd5\xcb\x9a\xb1j\xf2F\xce\x14\x92\xf9\xd7\xec\xc5\x1e\x8aq2\xce\x881f\xd7\xd4\x9e\xf6\xb6P\x01\xe8T\xb5X\xb9d-I\xd6\x91\xc3\xe2\x88S\x82l=\x02t$p\t\x8cY\x06\r\x83\xb0\x86\xc6\x84\x1c\xce\xb6\xf0\xdfC\x9fj<\xfe\xa4\x1f\x82L\xe4\x13+H\x00\x00\x00\x00\x00\x00\x00\x01M\x16\xa0\xbeB6\xfb\xa2-\x17\x93Q\x9fKusl5\xa2$M\xb4\x18\x1db\xf3\xce\x8c\xe5Rna\xd5\xbbQ\xc7\xa7+\vH\xc1l\x1bIv\xe8_', 0x1081, 0x9)
acct$auto(&(0x7f0000000480)='u[,&*}\x00\a\x00\x00\x00?\xa4\x1fN\xa1~5Z\xc7\r\f}M4\xa8m\xe6\x19[11\xab\xff-E\xac9(\xb4O\xa0t4h\x9f-gn\x1f\x0f\x18\xc5\x82-s\x83\xe6\xaeR\x81\r_\x0e\x19\x12\x85\bvf(e\xday)\t\x15\xf6\xc8\xee\x04\x16\xc1\x9a!\x87I7\x8cD&zg\xb0a\xab|E\xde\x14\xee[\xc8\xc0\xa8Nh\x0f\xa3\xdbT\xb3\xb8\xd2F\xa0\xc4]\xaf\xc43&\xe4\x01\x05\xd2\x15\xf8\xf1!\x9d\x92\xbbHL9aD\xb4\x80\xed\xba>\"\xb6\x7f\xa3f\x1d\a\xa1\x87\x84uA\xd8\xe7\xd2\xf3[r\xc5S&}D[\x97\xf1\xd9\xf8Y\x03\x84\xb4\xd7\x16\x19\xe5\x17\x10\xd8fcG:\xfbY8\x17w\x98?\x03@\xe5\x02\x05\x93h\xb9\xf7\xef\x84\x8aGlN\a\x1e')
open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x880c2, 0x95)
close_range$auto(0x2, 0x8, 0x0)
acct$auto(&(0x7f0000000280)='/sys/devices/virtual/mtd/mtd0/size\x00')
socket(0x2, 0x3, 0x100)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000340), 0xffffffffffffffff)
sendmsg$auto_TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x2)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000002c0)={'macvtap0\x00', <r5=>0x0})
sendmsg$auto_ETHTOOL_MSG_TSINFO_GET(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001300)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="e5b726bd7000fcdbdd251900000020000180010002006d61637674617030000000000000000008000100e4f8a774f9f469435ccef52f7340692809e27168fc1031bf472aa255a27f7996f673c86687ea4b43ed74ec1df3fec14bb7caa1dad34c9272a5daf7368ef55ac01647ed34c0c02c5e009b957c88f32fbeaf88b923c9674927c7ac89879510689868567f6bc23a65065db8dbb67a61e96c0337fb5a00f1c726e24ae6278c5a9f3b4bdb822ea0c7415e64b0d5fc2375015ead3a0d706f43e48839b562ce74c50594859f", @ANYRES32=r5, @ANYBLOB], 0x34}, 0x1, 0x0, 0x0, 0x4010}, 0x4048800)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x7ffffffff000}, 0x7)

6m26.626030983s ago: executing program 0 (id=678):
ioctl$auto(0xffffffffffffffff, 0x64d0, 0x40)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = prctl$auto(0x19, 0x92b4, 0xffffffffffffffff, 0x1fb8200000000, 0x7)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), r0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/v4l-subdev1\x00', 0xe0800, 0x0)
ioctl$auto(r1, 0xc0205648, r1)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0xd1b, 0x3, 0x7fff, r0, 0x8001)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, 0x0, 0x6e8c3, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
prctl$auto(0x1000000003b, 0x7, 0x4, 0x9, 0x7)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
mmap$auto(0x0, 0x2, 0x7, 0x18, 0xffffffffffffffff, 0x8000)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
read$auto(r3, 0x0, 0x20)
r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3)
unshare$auto(0x40000080)
msgsnd$auto(0x0, 0x0, 0x8, 0x7)
madvise$auto_MADV_GUARD_INSTALL(0x3, 0x9978, 0x66)
r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/self/net/ip6_flowlabel\x00', 0x42000, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r5, &(0x7f0000002100)=""/15, 0xf)

6m25.758393791s ago: executing program 32 (id=678):
ioctl$auto(0xffffffffffffffff, 0x64d0, 0x40)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = prctl$auto(0x19, 0x92b4, 0xffffffffffffffff, 0x1fb8200000000, 0x7)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), r0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/v4l-subdev1\x00', 0xe0800, 0x0)
ioctl$auto(r1, 0xc0205648, r1)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0xd1b, 0x3, 0x7fff, r0, 0x8001)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, 0x0, 0x6e8c3, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
prctl$auto(0x1000000003b, 0x7, 0x4, 0x9, 0x7)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
mmap$auto(0x0, 0x2, 0x7, 0x18, 0xffffffffffffffff, 0x8000)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
read$auto(r3, 0x0, 0x20)
r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3)
unshare$auto(0x40000080)
msgsnd$auto(0x0, 0x0, 0x8, 0x7)
madvise$auto_MADV_GUARD_INSTALL(0x3, 0x9978, 0x66)
r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/self/net/ip6_flowlabel\x00', 0x42000, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r5, &(0x7f0000002100)=""/15, 0xf)

5m28.052233068s ago: executing program 4 (id=820):
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket(0xa, 0x1, 0x3)
r0 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, 0x0, 0xc0000, 0x0)
pread64$auto(r0, &(0x7f0000000040)='\x00\x00\x00\x88\xde\x90\a\'\x9bM\xa0\x848\xbbz(\xe9\x05<\x82\xfe\xe2\xf6 \x0f8\xfb\xa7\xb4\xa0\x9e\xcb\xec\x9e{W\xed>\xe7l\xcb\x90\\/\x84\x99!*\xe3\x99}x\xd4\xa5D\xfa\xe5\xf9od^\xa6', 0x7ff, 0x400)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xfffffffffffffffe, 0x8000)
fcntl$auto(0x8000000000000001, 0x5, 0x8)
clock_nanosleep$auto(0x2, 0x1000, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8013)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
select$auto(0x12, 0x0, 0x0, 0x0, 0x0)
close_range$auto(0x2, 0xa, 0x0)
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x6, 0xa, 0x1000009, 0x5f, 0x0, 0x3}, 0x6f3)
socket(0xa, 0x2, 0x88)
mmap$auto(0x0, 0x400008, 0xdf, 0x100000009b72, 0x2, 0x8002)
mincore$auto(0x1000, 0x8003, 0x0)
setsockopt$auto(0x3, 0x0, 0x20, 0x0, 0x28)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004810}, 0x24000001)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x4004)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(r0, &(0x7f0000000180)=@sco, 0x4)
recvmmsg$auto(r1, 0x0, 0xa, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
socket(0xf, 0x1, 0x6)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, 0x0, 0x40000, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/mnt\x00')
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
madvise$auto(0x0, 0x20499d, 0x9)

5m26.320405395s ago: executing program 4 (id=824):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, 0x0, 0x82000, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
mmap$auto(0x0, 0x400008, 0x1000df, 0x9b72, 0x2, 0x8000)
socket(0xa, 0x2, 0x3a)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4)
madvise$auto(0x110c230000, 0x1, 0x9)
socket(0x2, 0xa, 0xe57a)
ioctl$auto(0x3, 0x9, 0xfffffffffffff4e0)
write$auto(0x3, 0x0, 0x7fffffff)
write$auto(0x1, 0x0, 0x80000000)
openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5)
r1 = socket(0x2b, 0x1, 0x1)
ioctl$auto_PPPIOCSMRU(0xffffffffffffffff, 0xc004743e, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC1\x00', 0xa02, 0x0)
sendmsg$auto_NFC_CMD_DEP_LINK_DOWN(r1, 0x0, 0x20000001)
unshare$auto(0x40000080)
r2 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f00000000c0), 0x210000, 0x0)
read$auto_zero_fops_mem(r2, &(0x7f0000000180)=""/4096, 0x1000)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
socket(0x2, 0x5, 0x0)

5m22.692870717s ago: executing program 4 (id=835):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2, 0x1, 0x106)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
r0 = openat$dir(0xffffffffffffff9c, 0x0, 0x40000, 0x0)
bind$auto(0x3, 0x0, 0x6a)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x109001, 0x0)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
read$auto_cpu_latency_qos_fops_qos(r2, &(0x7f0000000340)=""/100, 0x64)
lsm_list_modules$auto(&(0x7f0000000080)=0x1, &(0x7f0000000140)=0x7a28, 0x4b1d)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0x11, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da07, 0x3, 0x3, 0x62, 0x8000001f, 0x40007, 0x6d3e, 0x9, 0x2, 0x8]}, 0x0)
sendmsg$auto(0xffffffffffffffff, 0x0, 0xfff)
select$auto(0x9, &(0x7f00000000c0)={[0xeeda, 0x7, 0x100000001, 0x9, 0x6, 0x1ff, 0x6, 0x3, 0x4, 0x4618ecd2, 0x3, 0x42ff, 0x6, 0x9a8c, 0x9, 0x10001]}, 0x0, 0x0, &(0x7f0000000280)={0x6, 0xc8})
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
write$auto(0x3, 0x0, 0xfffffdef)
ioctl$auto(0xffffffffffffffff, 0x900064b5, 0xc14)
msgctl$auto(0x9, 0xf8, &(0x7f00000001c0)={{0x8, 0xee00, 0x0, 0x4, 0xa771, 0x7, 0x9}, &(0x7f0000000140)=0x1, &(0x7f0000000180)=0x1, 0xc28a, 0x5f52, 0x3, 0x9, 0x8, 0x2cce, 0xfffc, 0x6, @inferred, @inferred=0xffffffffffffffff})
sendmsg$auto_MACSEC_CMD_UPD_RXSC(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)={0x28, 0x0, 0x201, 0x70bd2a, 0x25dfdbfe, {}, [@MACSEC_ATTR_RXSC_CONFIG={0xc, 0x2, 0x0, 0x1, [@typed={0x8, 0x1, 0x0, 0x0, @uid}]}, @MACSEC_ATTR_IFINDEX={0x8}]}, 0x28}}, 0x48010)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f00000027c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000002780)={&(0x7f0000000700)=ANY=[@ANYBLOB="06fd6491cebca78beafc4b687ed8f3666c5a6d88c7f09791cdd11c597f22290fb5c9bd51421da568156e5fdc5918efbcb4c2ff5cb5ff2ca078cec1061a5dc8c7512d6a4f506f55f59e4b394709cd8b73734f2ce3e79db92e", @ANYBLOB="00022dbd7000fcdbdf250200000008000800", @ANYRES32=0x0, @ANYBLOB="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", @ANYRES32, @ANYBLOB="0c007c0002000000000000000400908079d31828245d1d00a100e6809a9ee0a2123a8fa92a4224c5e320835bc1df4b86308f1eb106b640770860908a7ee198191bec22d0e1fe7b49b4428100781fc9231baa218eb9dff6587e85758d2557a569379b8216c1a1a193109a24a6cbf4ca980e8cd518672d8170bfc296672040c805d2805a666b2c10da076637bada153ac529599e829086c0d426fe1187195bc35fd30700a5007d2b00000800d8000a01010008003f00", @ANYRES32=r0, @ANYBLOB="0000000800b6006401010178679f385b78dc0f0041002f6465762f6164737031000034dbb4a18fb580bda46a26cb741baeb66648b73e16593e6280ab1f493bdceced1b1cb8e704a055f6ba30c848e10359186bdac20f914fc3e87ed1e9d944940d1af2861a7aa210570710731e24a2b60c000004000a8008000100050000000800090000000000"], 0x260}, 0x1, 0x0, 0x0, 0xd5}, 0x4000040)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20002, 0x0)
sendmsg$auto_MACSEC_CMD_UPD_RXSC(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)={0x28, 0x0, 0x201, 0x70bd2a, 0x25dfdbfe, {}, [@MACSEC_ATTR_RXSC_CONFIG={0xc, 0x2, 0x0, 0x1, [@typed={0x8, 0x1, 0x0, 0x0, @uid}]}, @MACSEC_ATTR_IFINDEX={0x8}]}, 0x28}}, 0x48010)
connect$auto(0x3, 0x0, 0xab)

5m20.756003276s ago: executing program 4 (id=838):
r0 = open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14abfd)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
read$auto(r1, 0x0, 0x1f40)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3)
r3 = syz_genetlink_get_family_id$auto_handshake(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$auto_HANDSHAKE_CMD_ACCEPT(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x34, r3, 0x8, 0x70bd2a, 0x25dfdbfc, {}, [@HANDSHAKE_A_ACCEPT_HANDLER_CLASS={0x8, 0x2, 0x1ff}, @HANDSHAKE_A_ACCEPT_HANDLER_CLASS={0x8, 0x2, 0x5}, @HANDSHAKE_A_ACCEPT_HANDLER_CLASS={0x8}, @HANDSHAKE_A_ACCEPT_HANDLER_CLASS={0x8, 0x2, 0x1000}]}, 0x34}, 0x1, 0x0, 0x0, 0x44}, 0x20000800)
fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d)

5m20.014155727s ago: executing program 4 (id=840):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
poll$auto(&(0x7f0000003640)={<r1=>r0, 0x4, 0xffff}, 0x4, 0x100000)
r2 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000180), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'team_slave_1\x00', <r3=>0x0})
sendmsg$auto_NETDEV_CMD_QUEUE_GET(r1, &(0x7f00000039c0)={0x0, 0xa6ff, &(0x7f0000003980)={&(0x7f0000000300)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="01032cbd7000fddbdf250a00000008000200", @ANYRES32=r3, @ANYBLOB="a9988b84b32729e219948d79a85662133a7749bf7fc0eb3db3794a74611c6d8ff277a6d6ceed967949556424fc9c2e8f97078f60269d04475cf7e7c56a00"/77], 0x1c}, 0x1, 0xffffffa6, 0x0, 0x20000000}, 0x40000)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
socket$nl_generic(0x11, 0x3, 0x10)
mmap$auto(0x0, 0x9, 0xc00000072, 0x8b72, 0x1000000002, 0x8000)
r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/net/ip_vs_conn\x00', 0xf00, 0x0)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000200)='/dev/dri/card1\x00', 0x6082, 0x0)
r5 = socket(0xa, 0x2, 0x0)
r6 = openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000180), 0x80080, 0x0)
ioctl$auto_LOOP_CTL_ADD(r6, 0x4c80, 0x0)
setsockopt$auto(r5, 0x29, 0xb, 0x0, 0xca6)
r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu1/online\x00', 0x62, 0x0)
write$auto(r7, &(0x7f0000000440)='Y\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
select$auto(0x6, &(0x7f0000000380)={[0x1, 0xb, 0x400, 0x4, 0x2, 0x1, 0x3, 0x7fffffff, 0xfffffffffffffff7, 0x7, 0xfffffffffffffff7, 0x401, 0x7, 0x8, 0xe, 0x2]}, &(0x7f00000005c0)={[0x8, 0x8bb, 0x1, 0xd, 0x40, 0x2, 0x81, 0x3, 0x0, 0x1, 0x800, 0x5, 0x4, 0x8000, 0x6, 0x31a0000000000000]}, &(0x7f0000000640)={[0x0, 0x2a85, 0x8, 0x4, 0x9, 0x400000000000, 0x6, 0xffffffffffffff81, 0x3, 0x7fffffffffffffff, 0x9, 0xdf70, 0x70, 0x1, 0xfb5f, 0xfffffffffffffffa]}, &(0x7f0000000000)={0x4, 0x4})
setsockopt$auto(0xffffffffffffffff, 0x6, 0x1f, 0x0, 0x3d)
r9 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r8, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r9, @ANYBLOB="01002bbd7000fcdbdf2504"], 0x1c}}, 0x4044820)
readv$auto(0x3, 0x0, 0x23a8c70effffffe)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_fault_around_bytes_fops_(0xffffffffffffff9c, &(0x7f0000000100), 0x2282, 0x0)
close_range$auto(0x2, 0x8, 0x0)
bpf$auto(0x22, &(0x7f0000000140)=@bpf_attr_11={0xffff, 0x6, 0x6, 0x800, 0x4000ffff, 0x3c09, 0xffffffff}, 0x81)
madvise$auto(0x0, 0x20000a, 0x4)
pread64$auto(r4, 0x0, 0x594c, 0x7)

5m19.273961665s ago: executing program 4 (id=844):
unshare$auto(0x40000080)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x6, 0x7) (async)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x6, 0x7)
mmap$auto(0xfffffffffffffffd, 0x400006, 0xdf, 0x11, 0x2, 0x8000) (async)
mmap$auto(0xfffffffffffffffd, 0x400006, 0xdf, 0x11, 0x2, 0x8000)
mmap$auto(0x1, 0x7fffffff, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
setpgid$auto(0x0, 0x0)
mmap$auto(0x6aa, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300008000000) (async)
mmap$auto(0x6aa, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300008000000)
socket(0x21, 0x3, 0x100) (async)
socket(0x21, 0x3, 0x100)
ioctl$auto_SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045002, 0x0) (async)
ioctl$auto_SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045002, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/audio1\x00', 0x4a4b42, 0x0)
r0 = socket(0x11, 0x80003, 0x300)
r1 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/maps\x00', 0x1a1000, 0x0)
ioctl$auto_PROCMAP_QUERY(r1, 0xc0686611, &(0x7f0000000080)={0x67, 0x0, 0x7fff, 0x5, 0x80000000003, 0xfffbffffffffff80, 0x7ffffffe, 0xff, 0x6, 0x7, 0x8, 0x5, 0x0, 0x7, 0x80200005})
setsockopt$auto(r0, 0x107, 0x5, 0x0, 0x8004)
openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/usb/usbmon/9t\x00', 0x8000, 0x0) (async)
openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/usb/usbmon/9t\x00', 0x8000, 0x0)
openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/usb/usbmon/9t\x00', 0x0, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0xa101, 0x0) (async)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0xa101, 0x0)
move_pages$auto(0x0, 0x7fffffffffffffff, 0x0, 0x0, 0x0, 0x6)
mmap$auto(0x0, 0x6, 0xdf, 0x100000eb1, 0x401, 0x3)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/pts/ptmx\x00', 0x0, 0x0)
write$auto(0x3, 0x0, 0x7ffffffa)
syz_clone3(&(0x7f0000000240)={0x4000, &(0x7f0000000200), &(0x7f0000000040), 0x0, {0x3b}, 0x0, 0x0, 0x0, &(0x7f0000000400)=[0x0, 0x0, 0x0, 0x0], 0x4}, 0x58) (async)
syz_clone3(&(0x7f0000000240)={0x4000, &(0x7f0000000200), &(0x7f0000000040), 0x0, {0x3b}, 0x0, 0x0, 0x0, &(0x7f0000000400)=[0x0, 0x0, 0x0, 0x0], 0x4}, 0x58)
setregid$auto(0x0, 0x3)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000380)='/dev/ptyr1\x00', 0x8140, 0x0)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
unshare$auto(0x100000001)
sendmsg$auto(r2, &(0x7f0000000180)={&(0x7f0000000100)="aefbf89feca5c759aa2744e6affa547dc730caef7ed848147981ecf037d648a808c07cfa2ecad71fc4c1697d365fa16afa6b61ea1e4e0f67642067137b2c26c058dce43381836d3539e889ddf7a32207dde4792018a1660d20ef26a961ad7451b1e85666ce3db690", 0x3, &(0x7f00000002c0)={&(0x7f0000000440)="3870003876844029ba2c13eb00d36dc9977454a476a7b9f3d3ab544d21c31bbeb22d68d6e2a29d2945978398573bfba85afbad08f883908dc1bae0834a940ee49d31ca30d485d7b04adba50a86eed0745f1a1b113a7cbe71635b8793e83adc5614", 0x3}, 0x1000, &(0x7f0000000300)="27da5f504aafbbd9dcd9024829b94b4f5bb268f304ca1f264f603fd9d35fd82ebba263e5500248a264f4ddd5de", 0x80000002, 0xfff}, 0x6620)
socket$nl_generic(0x10, 0x3, 0x10)
open(&(0x7f0000000040)='./file1\x00', 0x535301, 0x133) (async)
open(&(0x7f0000000040)='./file1\x00', 0x535301, 0x133)
mount$auto(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2002, 0x0) (async)
mount$auto(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2002, 0x0)

5m4.113144561s ago: executing program 33 (id=844):
unshare$auto(0x40000080)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x6, 0x7) (async)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x6, 0x7)
mmap$auto(0xfffffffffffffffd, 0x400006, 0xdf, 0x11, 0x2, 0x8000) (async)
mmap$auto(0xfffffffffffffffd, 0x400006, 0xdf, 0x11, 0x2, 0x8000)
mmap$auto(0x1, 0x7fffffff, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
setpgid$auto(0x0, 0x0)
mmap$auto(0x6aa, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300008000000) (async)
mmap$auto(0x6aa, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300008000000)
socket(0x21, 0x3, 0x100) (async)
socket(0x21, 0x3, 0x100)
ioctl$auto_SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045002, 0x0) (async)
ioctl$auto_SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045002, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/audio1\x00', 0x4a4b42, 0x0)
r0 = socket(0x11, 0x80003, 0x300)
r1 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/maps\x00', 0x1a1000, 0x0)
ioctl$auto_PROCMAP_QUERY(r1, 0xc0686611, &(0x7f0000000080)={0x67, 0x0, 0x7fff, 0x5, 0x80000000003, 0xfffbffffffffff80, 0x7ffffffe, 0xff, 0x6, 0x7, 0x8, 0x5, 0x0, 0x7, 0x80200005})
setsockopt$auto(r0, 0x107, 0x5, 0x0, 0x8004)
openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/usb/usbmon/9t\x00', 0x8000, 0x0) (async)
openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/usb/usbmon/9t\x00', 0x8000, 0x0)
openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/usb/usbmon/9t\x00', 0x0, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0xa101, 0x0) (async)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0xa101, 0x0)
move_pages$auto(0x0, 0x7fffffffffffffff, 0x0, 0x0, 0x0, 0x6)
mmap$auto(0x0, 0x6, 0xdf, 0x100000eb1, 0x401, 0x3)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/pts/ptmx\x00', 0x0, 0x0)
write$auto(0x3, 0x0, 0x7ffffffa)
syz_clone3(&(0x7f0000000240)={0x4000, &(0x7f0000000200), &(0x7f0000000040), 0x0, {0x3b}, 0x0, 0x0, 0x0, &(0x7f0000000400)=[0x0, 0x0, 0x0, 0x0], 0x4}, 0x58) (async)
syz_clone3(&(0x7f0000000240)={0x4000, &(0x7f0000000200), &(0x7f0000000040), 0x0, {0x3b}, 0x0, 0x0, 0x0, &(0x7f0000000400)=[0x0, 0x0, 0x0, 0x0], 0x4}, 0x58)
setregid$auto(0x0, 0x3)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000380)='/dev/ptyr1\x00', 0x8140, 0x0)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
unshare$auto(0x100000001)
sendmsg$auto(r2, &(0x7f0000000180)={&(0x7f0000000100)="aefbf89feca5c759aa2744e6affa547dc730caef7ed848147981ecf037d648a808c07cfa2ecad71fc4c1697d365fa16afa6b61ea1e4e0f67642067137b2c26c058dce43381836d3539e889ddf7a32207dde4792018a1660d20ef26a961ad7451b1e85666ce3db690", 0x3, &(0x7f00000002c0)={&(0x7f0000000440)="3870003876844029ba2c13eb00d36dc9977454a476a7b9f3d3ab544d21c31bbeb22d68d6e2a29d2945978398573bfba85afbad08f883908dc1bae0834a940ee49d31ca30d485d7b04adba50a86eed0745f1a1b113a7cbe71635b8793e83adc5614", 0x3}, 0x1000, &(0x7f0000000300)="27da5f504aafbbd9dcd9024829b94b4f5bb268f304ca1f264f603fd9d35fd82ebba263e5500248a264f4ddd5de", 0x80000002, 0xfff}, 0x6620)
socket$nl_generic(0x10, 0x3, 0x10)
open(&(0x7f0000000040)='./file1\x00', 0x535301, 0x133) (async)
open(&(0x7f0000000040)='./file1\x00', 0x535301, 0x133)
mount$auto(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2002, 0x0) (async)
mount$auto(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2002, 0x0)

6.944085115s ago: executing program 5 (id=1739):
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x6e17ac1e9049ce52)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x88e00, 0x0)
read$auto_uprobe_events_ops_trace_uprobe(r0, 0x0, 0x0)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003140), 0xffffffffffffffff)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
r1 = open(&(0x7f0000000080)='./file0\x00', 0x22240, 0x154)
r2 = fcntl$auto(r1, 0x7fffffff, 0x0)
socket(0xa, 0x2, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000015c0)='/sys/devices/virtual/block/ram7/trace/act_mask\x00', 0x0, 0x0)
ioctl$auto_XFS_IOC_BULKSTAT(r1, 0x8040587f, &(0x7f0000001600)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0xee01, @ANYBLOB="0400000005000000050000009b30000010000000000100000700000097b15042080000000000000080000000ffffff073000030009040000f4ffffffffffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003000000000000008100000000000000000000000100000004000000000000000300000000000000090000000000000001fcffffffffffff0800000000000000474f0000", @ANYRES32, @ANYRES32=0x0, @ANYRES64=r2])
read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000140)=""/12, 0xc) (fail_nth: 3)

6.813094407s ago: executing program 3 (id=1742):
mmap$auto(0x6, 0x3, 0x5, 0x9b72, 0xffffffffffffffff, 0x28000)
ioctl$auto_TUNGETSNDBUF(0xffffffffffffffff, 0x800454d3, &(0x7f00000003c0)=0x1)
statmount$auto(0x0, &(0x7f0000000180)={0x9, 0xfffffffe, 0x44b, 0xa, 0x5, 0x1007181, 0x8a0d, 0x1650, 0x7, 0x7ff, 0x0, 0x26, 0x4, 0x200004000001, 0xfffffffffffffff5, 0xfffffffffffffffa, 0x0, 0x0, 0x0, 0x0, 0xd, 0xe, 0x1, 0x200, 0x0, 0x84, 0x0, 0x2, 0x0, 0x2, 0xb622, [0xfffffffffffffffe, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2b1, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x1000000, 0x40000, 0x2, 0x1000000000, 0x0, 0x1, 0x80000000000, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x1000000, 0x4000000000000]}, 0xb, 0x9)
r0 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r0, 0xfffffff7effffd0c, &(0x7f00000001c0))
r1 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x20282, 0x0)
ioctl$auto_UI_DEV_SETUP(r1, 0x405c5503, &(0x7f00000000c0)={{0x9, 0xf2cf, 0x9, 0x80}, "6a034a07c7b8edb8fc3b39e32576f893fba86c9dd051a0094a3836d61c9100fefbbabea6ef9368c7996e841f3f1561d4992f726b0a6c36b0b2fd1678e816201cf562367fe6596824588a2e3d84ba165f", 0x4})
ioctl$auto_UI_DEV_CREATE(r1, 0x5501, 0x0)
r2 = accept$auto(0xffffffffffffffff, &(0x7f0000000080)=@ax25={0x3, @null, 0x1}, &(0x7f0000000140)=0x8)
writev$auto(r2, &(0x7f0000000380)={&(0x7f00000005c0)="397892ed7d99d028e69766a3a350e1249f6a3e84d6e5ebe3dd119244426906a850f2a325b551e15a9df8a4158c5855b24a1ca06446aff7524aaff799876a8336c7d1d1755c3b28a0a5900f1cbac978701316a2b60abaa447623364ae2bb38c3ac08fcc9d5c62f697a191c8683c97f38e13ca87f77f709363f3855f3be03d0f2441565a4a81173c5b6a826b2213a8b665427c4cc9358993ee2478606c33a6f05c7015887e0d3d2ad1a281f623a016219ed4142c0ac01019f09de653eb47a3d2df7a8e98027ea14ddd17460000000000000000003d7e0061b16163bf897be45301aa9d6cc587f17a0d37e7435ef12b6548c6f367b8ae6300b7911155ccf32ae86fbd669c2cd21736841f34dba45aba0fdf46d89f54de8d52ee00000000000000", 0x35}, 0x9fe)
openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, 0x0, 0x2000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x100)
r3 = socket(0x1d, 0x2, 0x7)
r4 = socket(0x2, 0xa, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r5=>0x0})
bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r5}, 0x6a)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000180)={'vcan0\x00'})
connect$auto(0x3, &(0x7f00000018c0)=@can={0x1d, r5}, 0x18)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
io_uring_setup$auto(0xa, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x3ec0)
sendmmsg$auto(0x3, 0x0, 0x9a5, 0x47ffff7a)
socket$nl_generic(0x10, 0x3, 0x10)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x5, 0x0, 0x1, 0x697b}, 0xed7138c}, 0x2, 0x9)
recvmmsg$auto(0x4, 0x0, 0x7, 0xe, 0x0)
close_range$auto(0x2, 0x8, 0x0)

6.753698485s ago: executing program 2 (id=1743):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x60742, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, 0x0, 0x82000, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
mmap$auto(0x0, 0x400008, 0x1000df, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
madvise$auto(0x110c230000, 0x1, 0x9)
socket(0x2, 0xa, 0xe57a)
ioctl$auto(0x3, 0x9, 0xfffffffffffff4e0)
write$auto(0x3, 0x0, 0x7fffffff)
write$auto(0x1, 0x0, 0x80000000)
openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5)
r1 = socket(0x2b, 0x1, 0x1)
ioctl$auto_PPPIOCSMRU(0xffffffffffffffff, 0xc004743e, 0x0)
r2 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC1\x00', 0xa02, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_TLV_READ(r2, 0xc008551a, &(0x7f0000000040)={0x6, 0xd})
sendmsg$auto_NFC_CMD_DEP_LINK_DOWN(r1, 0x0, 0x20000001)
unshare$auto(0x40000080)
r3 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f00000000c0), 0x210000, 0x0)
read$auto_zero_fops_mem(r3, &(0x7f0000000180)=""/4096, 0x1000)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
socket(0x2, 0x5, 0x0)

5.87854089s ago: executing program 5 (id=1744):
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x37}}, 0x6e)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x9, 0x20000000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
r1 = socket(0x2, 0x1, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
setsockopt$auto(0x3, 0x0, 0x4, 0x0, 0x28)
getsockopt$auto(r1, 0x0, 0x4, 0x0, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
unshare$auto(0x40000080)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
write$auto(0xffffffffffffffff, 0x0, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
close_range$auto(0x2, 0xa, 0x0)
bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x5, 0x1ff, 0x7fa, 0x22104, 0x9, 0x7, 0x7ff, 0x20010180, 0x4000000f}, 0x198)

5.007961065s ago: executing program 5 (id=1745):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)={0x38, r1, 0x1b, 0x70bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0x8, 0x3, 0x0, 0x1, [@nested={0x4, 0x15}]}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f17790485908286dd"}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x38}, 0x1, 0x0, 0x0, 0x50}, 0xc800)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/devices/virtual/block/loop14/queue/stable_writes\x00', 0x182b02, 0x0)
mkdir$auto(&(0x7f0000004440)='./file0\x00', 0x1)
mkdir$auto(&(0x7f00000000c0)='./file1\x00', 0x8)
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file1/file0\x00', 0x840, 0xc)
rename$auto(&(0x7f0000000480)='./file0\x00', &(0x7f00000004c0)='./file1\x00')
io_uring_register$auto_IORING_REGISTER_PROBE(0xffffffffffffffff, 0x8, 0x0, 0x52)
socket(0x11, 0x2, 0x1)
prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2)
syz_genetlink_get_family_id$auto_macsec(0x0, 0xffffffffffffffff)
socket(0x3, 0x3, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r3 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x2, 0x0)
write$auto_sg_fops_sg(r3, &(0x7f0000001380)="4a0200000000040000899edb615550fd8c44924d87f0010047eb02eff5d2adc245a4e1eded0e91b86c61b6b42ed6", 0x2e)
read$auto(r3, 0x0, 0x1)

4.624463646s ago: executing program 2 (id=1746):
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x2)
socket(0x22, 0x2, 0x1)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xa083, 0x0)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r0)
mmap$auto(0x0, 0x2, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffff7, 0x8000)
mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000bc0), 0x0, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x8000, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x0)
mount$auto(0x0, 0xfffffffffffffffd, 0xfffffffffffffffe, 0x2, 0x0)
write$auto(0xffffffffffffffff, &(0x7f00000000c0)='1\x00\xc7k\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00j(=\xd1<\xf9\x96\x10>\xb9\x05\xbe\xc8v\x81-ILplM\x98\x88J\xfd\x17\xc8K\xdd\x89;T@d\xa3_\xfcb8\x7fA\x11\xba\xefL\xe1L\x8aE}\xa7\x05\b\xd7\xe2\xae\xfek\xbbw\x8c\x88\x1emW-\xf5\x94\xdak\x81\xe4\x1e\x1dS\xf2~>\xb1\xc6\xd1\xee\xc8\x19e\xc1w\xf05%\xd76]\x0f\v\x01\xa4(\xec\xd3\xca\a\x15&nv\xc1}\xfcD', 0x81)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0)
read$auto(r1, 0x0, 0x1d)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r2, &(0x7f0000000140)={0x0, 0xffffffff}, 0x5)
openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/cec30\x00', 0x701000, 0x0)
userfaultfd$auto(0x1)
openat$auto_state_fops_(0xffffffffffffff9c, &(0x7f0000000080), 0x4000, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
unshare$auto(0x8000400)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x3, 0x0)

4.37850761s ago: executing program 3 (id=1748):
unshare$auto(0x40000080)
mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/net/bond0/bonding/primary_reselect\x00', 0x1e2142, 0x0)
sendfile$auto(r0, r0, 0x0, 0x7fff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(r1, 0xa, 0x0)
write$auto(r1, 0x0, 0x7ff)
r2 = socket(0x10, 0x2, 0x6)
r3 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_NL802154_CMD_SET_MAX_CSMA_BACKOFFS(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="14000000", @ANYRES16=r3, @ANYBLOB="010028bd7000fddbdf251100fc00990f3f83331d687ee75c3c94587e1f5cd59006f73c6d6845a036a2fb8e18a48c5faf968c0e511a645aaae8aae65663a5c338dab6fb9aba2aaf595fd8b7bea6f1a0215903fdeca93d8aa4371660a82ede09d48262f353e478571052224dee7140b0e7b6fa79dfdd36ada6faa8cdeb0da918a84f600e34fe3b5a9a326bf73e18fe4d5269bf579bf0ec5ce21d2703ea772b6f"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x8044)
sendmsg$auto_NL802154_CMD_GET_INTERFACE(r1, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000000c0)={&(0x7f0000000300)={0x2c0, r3, 0x400, 0x70bd26, 0x25dfdbff, {}, [@NL802154_ATTR_SEC_DEVICE={0x9d, 0x2e, 0x0, 0x1, [@generic="aad3a81953bc83179f0ad2aea8579d07e9c36dbaa7dcdc01ef8a756d4a079cdc07ae10d64d486cbe7194466e32ab48c57594e40bee48aab3986f4ba05de474e223293926a92f13c5343dfd537aff4c9d45ce2d62c4711329f7550877872abd7a56b0a00696147466e9cd4245288fa50e1c", @typed={0x4, 0x116}, @generic="22ed18f479b3c35161c1d49b1001cc52", @typed={0xc, 0xfc, 0x0, 0x0, @u64=0x6}, @nested={0x8, 0x124, 0x0, 0x1, [@nested={0x4, 0x11c}]}]}, @NL802154_ATTR_COORDINATOR={0x1cf, 0x1e, 0x0, 0x1, [@typed={0xc, 0x10e, 0x0, 0x0, @u64=0x10000}, @generic="949cd1df26634adc7d9901738554c434c95a11889a32a366adb9f0b791d8f71be90d3a4753ed45e1f09ccb58d06e36081e6b8255b760361f344ccc0f574d9d7a42197b22199c8d009bb3611c243619454736e32828230640454d3fa920b29958821edc5d47c451450b2b182b1796412dba3f866527fbc4e46abaa05a66813aa4db16393b6fdd105d19124989d3cc4a36534b3a239e700f69c04eefef20650be6405a9ecbe47c762a5c1275e907d9d071126f02af13f95cd7a8d4b36074d1a97863e352ed", @generic="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"]}, @NL802154_ATTR_CCA_ED_LEVEL={0x8, 0xe, 0x1}, @NL802154_ATTR_CHANNEL={0x5, 0x8, 0x3}, @NL802154_ATTR_CHANNEL={0x5, 0x8, 0xd}, @NL802154_ATTR_PAN_ID={0x6, 0x9, 0x2}, @NL802154_ATTR_EXTENDED_ADDR={0xc, 0x17, 0x400000000000000}, @NL802154_ATTR_SUPPORTED_CHANNEL={0x8, 0x16, 0x781d}, @NL802154_ATTR_SCAN_DURATION={0x5, 0x24, 0x2}]}, 0x2c0}, 0x1, 0x0, 0x0, 0x80}, 0x4044)
r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop6\x00', 0x18dd01, 0x0)
r5 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r5, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x40000)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/sctp/remaddr\x00', 0x101d00, 0x0)
socketpair$auto(0x1e, 0x0, 0x7, 0x0)
r6 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttynull\x00', 0xa042, 0x0)
ioctl$auto_TIOCSETD2(r6, 0x5423, 0x0)
r7 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
ioctl$auto_KVM_GET_MSRS(r7, 0xc008ae88, &(0x7f0000000040)={0x10, 0x0, [{0x48b, 0x400, 0x9}]})
ioctl$auto_SG_GET_RESERVED_SIZE(r4, 0x4c06, 0x0)
unshare$auto(0x40000080)
r8 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x42, 0x0)
write$auto(r8, 0x0, 0xa3d9)
munmap$auto(0x200000008000, 0xffffffff)

4.091732998s ago: executing program 1 (id=1749):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2b, 0x1, 0x0)
ioctl$auto(0xffffffffffffffff, 0x64c8, 0x1e2)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000000)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
sendmsg$auto_NL80211_CMD_DISCONNECT(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)={0x14, 0x0, 0x100, 0x70bd25, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x8040}, 0x1)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)

3.627797892s ago: executing program 5 (id=1750):
mmap$auto(0x200000000000f400, 0x9, 0xdf, 0x9b72, 0x7, 0x28000)
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x4001, 0x0)
recvmmsg$auto(r0, &(0x7f0000000280)={{0x0, 0x1d, &(0x7f0000000180)={&(0x7f0000000100), 0x80000000}, 0x10000, &(0x7f00000001c0)="d7cd776347984e13077263bfd5f9f5abd994085367e723ee8dd0f7dfe8708ad83c9fecd395", 0x962, 0x9}, 0x2e6}, 0x9a, 0x69ac, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/audio\x00', 0xb8b42, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/asound/card1/pcm0p/sub0/hw_params\x00', 0x1c1282, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = open(&(0x7f0000000100)='.\x00', 0x40000, 0x0)
open(&(0x7f0000000800)='./file0\x00', 0x0, 0x154)
execveat$auto(r1, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0, 0x11000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
openat$auto_short_retry_limit_ops_(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x4020009, 0x8, 0xeb0, 0x401, 0x9)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0xff0f, &(0x7f0000000000), 0x3)
mbind$auto(0x2000, 0x100000004, 0x106000000, 0x0, 0x6, 0x2)
syz_clone3(&(0x7f0000000400)={0x9840100, 0x0, 0x0, 0x0, {0x31}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r2 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000980)='/proc/self/pagemap\x00', 0x2, 0x0)
read$auto(r2, 0x0, 0x39b8)
mmap$auto(0x0, 0x2020009, 0x2000000000000003, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x22240, 0x0)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty0\x00', 0x102, 0x0)
write$auto(0x3, 0x0, 0x4fffffdf2)
ioctl$auto(0x3, 0x402c542b, 0x38)
r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio1\x00', 0x8000, 0x0)
read$auto(r3, 0x0, 0x9)

3.626801233s ago: executing program 1 (id=1751):
mmap$auto(0x200000000000f400, 0x9, 0x81, 0x9b72, 0xffffffffffffffff, 0x28000)
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x4001, 0x0)
recvmmsg$auto(r0, &(0x7f0000000280)={{0x0, 0x1d, &(0x7f0000000180)={&(0x7f0000000100), 0x80000000}, 0x10000, &(0x7f00000001c0)="d7cd776347984e13077263bfd5f9f5abd994085367e723ee8dd0f7dfe8708ad83c9fecd395", 0x962, 0x9}, 0x2e6}, 0x9a, 0x69ac, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/audio\x00', 0xb8b42, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/asound/card1/pcm0p/sub0/hw_params\x00', 0x1c1282, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = open(&(0x7f0000000100)='.\x00', 0x40000, 0x0)
open(&(0x7f0000000800)='./file0\x00', 0x0, 0x154)
execveat$auto(r1, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0, 0x11000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
openat$auto_short_retry_limit_ops_(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x4020009, 0x8, 0xeb0, 0x401, 0x9)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x200088c1}, 0x0)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3)
mbind$auto(0x2000, 0x100000004, 0x106000000, 0x0, 0x6, 0x2)
syz_clone3(&(0x7f0000000400)={0x9840100, 0x0, 0x0, 0x0, {0x31}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r2 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000980)='/proc/self/pagemap\x00', 0x2, 0x0)
read$auto(r2, 0x0, 0x39b8)
mmap$auto(0x0, 0x2020009, 0x2000000000000003, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x22240, 0x0)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty0\x00', 0x102, 0x0)
write$auto(0x3, 0x0, 0x4fffffdf2)
ioctl$auto(0x3, 0x402c542b, 0x38)
r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio1\x00', 0x8000, 0x0)
read$auto(r3, 0x0, 0x9)

3.472423987s ago: executing program 2 (id=1752):
socket(0x10, 0x2, 0x14)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = socket(0xa, 0x5, 0x0)
pread64$auto(0xffffffffffffffff, 0x0, 0xb69c, 0x6)
mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000)
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmmsg$auto(r0, &(0x7f0000000300)={{&(0x7f0000000080)="f82a9211c6f1e60464d5ded766b023c2dc1243a568d41327897172b6346b6a8d8ac7274cf1bbfdc999306bd46c3441ce52946dba8e1a01959f9097d354192e675197d0c7af0a9140c844d0159be0d2698ed6f6ddcab95fb3bd3da2ee71cc6dbbb97161151f62bf323842cd5048f3caff279dcbcea92ae38b0be07e363e7c5683a82073951b369e4df8f98572785674d24d2543e9763762e86d502f5dff92d1ca8d4be2e682ac5e3ac8e0c3de64c3013c0ea636044b43340cccfe56651b94f0e5d5a11ff72327e74a8b4db3be9da58022aaa4bb032004642c52eb0da49ee8557230c2468417a3d6e69df5098c43c8651cefcb0d0f", 0x6, &(0x7f0000000200)={&(0x7f0000000180)="12facef3307c0551786b1ece265fb20dd3e38e329a9946c32d43f030db8dcfb71f2598d2352d7d426326fddbcc473db67d225cc37f022ace1c86f24706c406940e63755d2c9de9b472", 0x817}, 0x8001, &(0x7f0000000240)="d9d794ad0f0017a8dabfcb160eff0b38ca7b3bafd1c5d0ce908275cb7584e35e9d21b9e46bc202d12042443d366f1e15701a486e5fe15c8cba03434661155b5e1395fbe7a53b78125778d595914705d8847e5507ad4d5d305f5681230e4908695cef01df5822ab3594ccd590133ec3e2f5498d6d84f0f20bda7e9f5697f2db0fad3b5cac5900f5ba45c4c76d9dc64ac46873441501a752bea0dea6385d", 0x1f, 0x3}, 0x1}, 0x6, 0xfffffffb)
ioctl$auto_SOUND_MIXER_WRITE_RECSRC2(r1, 0xc0044dff, 0x0)
mbind$auto(0x1c0000, 0x800097, 0x1, 0x0, 0x3, 0x1)
setsockopt$auto(0x3, 0x10000000084, 0x72, 0x0, 0xc)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), r0)
syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000010c0), 0xffffffffffffffff)

3.204638894s ago: executing program 2 (id=1753):
openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe\x00', 0x2000, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="0700000000000000df250a"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x20000800)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
recvmmsg$auto(r0, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={&(0x7f0000000040), 0xcb}, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x20008841)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="19"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f0000000000)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x1}, 0x2, 0x0)
mknod$auto(&(0x7f00000003c0)=':,\x00\xbd\x80\xd6\x002\xb37\xff\x1a\x9e99\xda\xd1v\'\xc6\xd2Fw;\x00v\xdce\xad\xf4\xdb\xc7\x946\xe4\f\x9el]L+\x06\x130V\x1b,d\x8f\xa0\xabDUdk\xac\x82\\tyQ\xd8j\a\x1a[\xdb\x96\x1f{2\x04\xc5Y\xc1@\x0e\xeeWZ\x94N\xd4\xc8q=\x9b\xd1\x7fR3\xb6`\x00\xb3\xe5|1\xba\r\x85\x89\xfe\xed\xe1\xad`\x92\xc7\x9c\xd7\xd8\x15\t&\xb7\xfc\x82\xc4\xd3J\xae\x810\x19\x14\t\xc2\xa5V\xaa\x8d\x04\xf5\xf3\xd6\xd1\xe9k\xaf\x1a\xc6u\x96\xf7\xaa\x84\x92\x995m\xf9O\xc0\x1e\xa05\xdb\xa5\xae\r\x06\xe6\xc3\xd0\xf8:\xf7\xc5u\x91\xf8\x91\xee\xd8y\xb8\xc1)\xad\x05\xeb\xe9\xab\r\x9a@\aa(\x1a\xa4\xc1\xcf\\\xf0\xc3~\xbbd\x94\x9c\x02\xd4\xfc\xd2`\xd9\x83{-\x81zY\\\xac!#\xea\xba\x86)\xe9\xbc\x82\xf6\xd2\x7f\xdb\xa1\xd5\x89|\xa0O\xfcqZ\x85@A\x90\"\x11L\xdd\xa5\x9f\xf5', 0x20e9, 0x103)
open(&(0x7f0000000280)=':,\x00\xbd\x80\xd6\x002\xb37\xff\x1a\x9e99\xda\xd1v\'\xc6\xd2Fw;\x00v\xdce\xad\xf4\xdb\xc7\x946\xe4\f\x9el]L+\x06\x130V\x1b,d\x8f\xa0\xabDUdk\xac\x82\\tyQ\xd8j\a\x1a[\xdb\x96\x1f{2\x04\xc5Y\xc1@\x0e\xeeWZ\x94N\xd4\xc8q=\x9b\xd1\x7fR3\xb6`\x00\xb3\xe5|1\xba\r\x85\x89\xfe\xed\xe1\xad`\x92\xc7\x9c\xd7\xd8\x15\t&\xb7\xfc\x82\xc4\xd3J\xae\x810\x19\x14\t\xc2\xa5V\xaa\x8d\x04\xf5\xf3\xd6\xd1\xe9k\xaf\x1a\xc6u\x96\xf7\xaa\x84\x92\x995m\xf9O\xc0\x1e\xa05\xdb\xa5\xae\r\x06\xe6\xc3\xd0\xf8:\xf7\xc5u\x91\xf8\x91\xee\xd8y\xb8\xc1)\xad\x05\xeb\xe9\xab\r\x9a@\aa(\x1a\xa4\xc1\xcf\\\xf0\xc3~\xbbd\x94\x9c\x02\xd4\xfc\xd2`\xd9\x83{-\x81zY\\\xac!#\xea\xba\x86)\xe9\xbc\x82\xf6\xd2\x7f\xdb\xa1\xd5\x89|\xa0O\xfcqZ\x85@A\x90\"\x11L\xdd\xa5\x9f\xf5\x00', 0x20102, 0x100)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x20881, 0x0)
io_submit$auto(0x2, 0x7f, &(0x7f0000000040)=&(0x7f0000000000)={0x2, 0xb, 0x8, 0x3, 0x2, 0x3b, 0xfffffffffffffc00, 0x2, 0x1001, 0x0, 0x6})
writev$auto(0xc8, &(0x7f00000028c0)={&(0x7f0000000000), 0x200}, 0x9)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/vm/dirty_writeback_centisecs\x00', 0x400, 0x0)
r1 = socket(0x11, 0x3, 0x9)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
close_range$auto(r1, r1, 0x6)
select$auto(0xe, 0x0, 0x0, &(0x7f00000004c0)={[0x1ff, 0xd5b, 0xc, 0x400037, 0x948a, 0x2, 0x15f4da0a, 0x1, 0x1, 0x300000000000600, 0x40080000001, 0x7, 0x6d3c, 0x5, 0x9]}, 0x0)

2.739881442s ago: executing program 3 (id=1754):
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/ptype\x00', 0x100, 0x0)
socket(0x11, 0x3, 0x300)
socket(0x11, 0x80003, 0x300)
preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x5ff4, 0x1)
mmap$auto(0x20000040, 0x202000b, 0x7fffffff, 0x8000000000000eb1, 0xffffffffffffffff, 0x8000)
r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/input/event1\x00', 0xe0043, 0x0)
ioctl$auto_EVIOCSMASK(r0, 0x40104593, 0x0)
r1 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000340)='/proc/self/net/dev_snmp6/xfrm0\x00', 0x149802, 0x0)
pread64$auto(r1, &(0x7f0000000200)='/proc/scsi/sg/zt\x05\xfeY\x1e\x04\x16\xff\xf6devices\x00', 0xfffffffd, 0x0)
bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x0, 0xffffffffffffffff, 0x7fa, 0x22104, 0x9, 0x4, <r2=>0x7ff, 0x20010180, 0x4000000f}, 0x5)
mmap$auto(0x0, 0x7f, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x1d, 0x2, 0x2, 0x0)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), r2)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'vlan0\x00'})
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/clocksource/clocksource0/current_clocksource\x00', 0x0, 0x0)
write$auto(r3, &(0x7f0000000100)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3C', 0x4)
ioperm$auto(0xe, 0x5, 0xfffffffd)
writev$auto(0x3, &(0x7f0000000100)={&(0x7f0000000000)="4b8f52a44b0afe02717b47af32"}, 0x8)
mmap$auto(0x7, 0x400400008, 0x80000df, 0x9b78, 0x2, 0x8000)
mmap$auto(0x0, 0x400008, 0x2000000000df, 0x13, r2, 0x8000)
r4 = userfaultfd$auto(0x77)
close_range$auto(0x2, 0xa, 0x0)
openat$auto_cgwb_debug_stats_fops_(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/bdi/43:192/wb_stats\x00', 0x40, 0x0)
openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/debug/tracing/set_event_notrace_pid\x00', 0x44582, 0x0)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xffcc}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
writev$auto(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000440)="f78ea776c0f9b2b9158b38a8fc16a968510a28a6e77f22f19194d1576a0fe24658b745628e827abd95c9a619ebc782e2d7db298bed7e37d68d38a0664d58183a49fd07bfd59cd01f97eca0771f173f0b2a13", 0x9}, 0x1003)
prctl$auto(0x43, 0x80000000000000, 0x0, 0x2, 0x0)
socket(0x18, 0x2, 0x0)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_INTERFACE(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000004c0)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x408c3}, 0x80)

2.601307334s ago: executing program 3 (id=1755):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000013c0)='/sys/module/kvm/parameters/pi_inject_timer\x00', 0x10b142, 0x0)
sendfile$auto(r1, r1, 0x0, 0x200)
r2 = socket(0x28, 0x801, 0x0)
connect$auto(0x3, 0x0, 0x51)
open(&(0x7f0000000100)='./bus\x00', 0x14d27e, 0x72)
socket(0x2, 0x1, 0x0)
socket(0x2b, 0x2, 0x0)
mmap$auto(0xfffffffffffffffe, 0x2020009, 0x3, 0x800000000eb1, 0xfffffffffffffffa, 0x8000)
clock_gettime$auto(0x0, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev3\x00', 0x169000, 0x0)
getsockopt$auto_SO_PASSCRED(r0, 0xff, 0x10, &(0x7f0000000040)='/dev/v4l-subdev3\x00', &(0x7f0000000080)=0xfffffffe)
poll$auto(&(0x7f00000000c0)={<r3=>r2, 0x0, 0x3}, 0x4, 0x7)
ioctl$auto(r0, 0xc040564a, r3)

2.545260032s ago: executing program 5 (id=1756):
close_range$auto(0x2, 0xa, 0x0)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000009c0), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_ACT(r0, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000a00)={0x34, r1, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@ETHTOOL_A_CABLE_TEST_HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_PHY_INDEX={0x8, 0x4, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv0\x00'}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x40000}, 0x80)
unshare$auto(0x40000080)
openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, 0x0, 0x105240, 0x0)
r2 = socket(0x11, 0x80003, 0x300)
sendfile$auto(0x1, r2, 0x0, 0x8fb5)
sysfs$auto(0x1000006, 0x1, 0x0)
ioctl$auto(0x3, 0x541b, 0x10000000000402)
r3 = open(0x0, 0x22143, 0x0)
socket(0xa, 0x6, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xebe, 0xfffffffffffffffa, 0x8)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(r3, 0x8, 0x8010)
r4 = open(0x0, 0x22240, 0x155)
socket(0x2, 0x3, 0x6)
setsockopt$auto(0x3, 0x0, 0x31, 0x0, 0x28)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
unshare$auto(0x40000080)
fcntl$auto(0x0, 0x407, 0x0)
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRES16=0x0], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000002c0)={0x0}, 0x1, 0x0, 0x0, 0x48000}, 0x24000000)
openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fb0\x00', 0x20401, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x4611, 0x0)
fadvise64$auto(r3, 0x3, 0xe00000000000, 0x5)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004000}, 0x40000)

2.466149123s ago: executing program 1 (id=1757):
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x2200, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
syz_genetlink_get_family_id$auto_nlbl_unlbl(0x0, r1)
sendmsg$auto_NLBL_UNLABEL_C_STATICADD(r1, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10010}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x80}, 0x40040)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
r2 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0)
ioctl$auto_posix_clock_file_operations_posix_clock(r2, 0xc0603d06, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000023, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0)
ioctl$auto(r1, 0x57, r0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r3 = getpid()
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/psaux\x00', 0x2, 0x0)
process_vm_readv$auto(r3, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0)
close_range$auto(0x2, 0xa, 0x0)
socket(0x80000000000000a, 0x2, 0x0)
socket(0xa, 0x801, 0x84)
setsockopt$auto(0x3, 0x10000000084, 0x85, 0x0, 0x90)
fsopen$auto(0x0, 0x1)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r4 = open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x6e17ac1e9049ce52)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x88e00, 0x0)
read$auto_uprobe_events_ops_trace_uprobe(r4, 0x0, 0x0)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003140), r4)

2.44774469s ago: executing program 3 (id=1758):
r0 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/netdevsim/netdevsim2/hwstats/l3/enable_ifindex\x00', 0x81242, 0x0)
write$auto(r0, 0x0, 0x7fffffff)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
r2 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/radio6\x00', 0x8a240, 0x0)
ioctl$auto(r2, 0x5646, r2)
read$auto_v4l2_fops_v4l2_dev(r2, &(0x7f0000000140)=""/32, 0x20)
write$auto(r1, &(0x7f0000000040)='7\xf5[\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0xf)
ioctl$auto_TUNSETGROUP(0xffffffffffffffff, 0x400454ce, 0x0)
sendmsg$auto_SMC_NETLINK_REMOVE_UEID(0xffffffffffffffff, 0x0, 0x20000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r3 = socket(0x11, 0x3, 0x9)
r4 = getpid()
ioprio_set$auto_IOPRIO_WHO_PGRP(0x2, r4, 0x80)
prctl$auto(0xd10d, 0x80000001, r4, 0x80000001, 0xb)
capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48})
sendmmsg$auto(r3, &(0x7f0000000640)={{&(0x7f0000000000), 0x5ae, &(0x7f0000000100)={0x0, 0x13}, 0x5, 0x0, 0x5, 0x1}, 0x1}, 0x1a000, 0x100)
mmap$auto(0x2000000000000, 0x4020009, 0xdf, 0xeb1, 0x401, 0x0)
r5 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x400008, 0x7, 0x9b76, r5, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/nbd9\x00', 0x4200, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
pipe$auto(0x0)
openat$auto_bridges_fops_(0xffffffffffffff9c, 0x0, 0x4a2000, 0x0)
r6 = gettid()
gettid()
process_vm_writev$auto(r6, &(0x7f0000002980)={0x0, 0x7ff}, 0x3, &(0x7f0000002a40)={0x0, 0x100000004007}, 0x4, 0x0)
kill$auto(r6, 0x81)
setfsuid$auto(0xee00)

2.086347274s ago: executing program 2 (id=1759):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2b, 0x1, 0x0)
ioctl$auto(0xffffffffffffffff, 0x64c8, 0x1e2)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000000)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
sendmsg$auto_NL80211_CMD_DISCONNECT(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)={0x14, 0x0, 0x100, 0x70bd25, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x8040}, 0x1)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)

1.489958645s ago: executing program 1 (id=1760):
unshare$auto(0x8000400)

1.488710194s ago: executing program 2 (id=1761):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
read$auto_fake_panic_fops_(0xffffffffffffffff, 0x0, 0x0)
mmap$auto(0x0, 0x202000a, 0x10000000003, 0xf8, 0xffffffffffffffff, 0x8000)
r0 = socket(0x23, 0x80805, 0x0)
getsockopt$auto(r0, 0x40000000113, 0x5, 0xfffffffffffffffc, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x8ad00, 0x0)
r1 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
setitimer$auto(0x2, 0x0, 0x0)
unshare$auto(0x40000080)
socket(0x10, 0x80000, 0x20c)
getitimer$auto_ITIMER_VIRTUAL(0x1, &(0x7f00000000c0)={{0x2, 0x4be0}, {0x9, 0x6}})
syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000200), r0)
socket(0x10, 0x2, 0x0)
socket(0xa, 0x801, 0x84)
mmap$auto(0x0, 0xfff, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0xa, 0x1, 0x84)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(r1, 0x8, &(0x7f0000000300)="1cf81d66dc0c45a7f66b3cd860f6887834522819e764f790b5cf5b69ce6b3bfd59f60adf9c40e37372d53531416b6d6bc9e3b97ca78e0a6ba95e87b9ca54a194e03ac918b8c3eca91bfeea665c6716c1aaa415f017657fc9d9e65be0dd6a7e09cf959bf958a45f1f8da6900fe9b526dcc072bee1c3b1394ea370da4c30f8e6053c3d82585b41230647ccd2ab261a84da11f0c15849368def0bc3ae22a6a4a92301231d6efb3feff1a988dcc382f2950fc1c0002632d80029d3f551a1ea513e9c7465e47b68dcf29d160f62c27abbd547e9bab3fd715015a1894b3eb5c39f16e77f44bc7dfba458bc8a8acbcb80", 0xf6c4)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='/sys/devices/platform/vhci_hcd.2/usb14/14-0:1.0/usb14-port2/over_current_count\x00', 0x10202, 0x0)
read$auto(r2, 0x0, 0x20)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x0, 0x0)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/stat/rt_cache\x00', 0x20000, 0x0)
r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/audio\x00', 0x408000, 0x0)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB='T\x00\b\x00', @ANYRES16=0x0, @ANYBLOB="000428bd7000fddbdf25020000000800010006000000280004002f70726f632f7468726561642d73656c662f6e65742f737461742f72745f63616368650008000100050000000800030000004800"], 0x54}, 0x1, 0x0, 0x0, 0x4008040}, 0x6900001f5e70df61)
iopl$auto(0x3)
clone$auto(0x0, 0x4, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x9)
ioctl$auto_SNDCTL_DSP_SPEED(r3, 0xc0045002, 0x0)
read$auto(r3, 0x0, 0x6)
ioperm$auto(0x7, 0x8000000000000001, 0x2)

1.409908977s ago: executing program 1 (id=1762):
bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x5, 0x1ff, 0x7fa, 0x22104, 0x9, 0x7, 0x7ff, 0x20010180, 0x4000000f}, 0x198) (fail_nth: 10)

794.491005ms ago: executing program 1 (id=1763):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0x8000000000000000, 0x15)
r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, 0x0, 0x272d42, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0xa, 0x0)
r1 = socket(0x29, 0x2, 0x0)
setsockopt$auto(r1, 0x2119, 0x1, 0x0, 0x8)
read$auto(r0, 0x0, 0x1f40)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x2, 0x8000)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/platform/dummy_hcd.1/usb2/2-0:1.0/ep_81/bLength\x00', 0x100800, 0x0)
read$auto(r3, 0x0, 0x20)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0xfffffff7fffffffe, 0x20009, 0x100000000, 0x10, 0x401, 0x8000)
r4 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x20b42, 0x0)
write$auto(r4, 0x0, 0x40000001)
ioctl$auto_SNDCTL_DSP_GETOSPACE(r4, 0x8010500c, &(0x7f0000000040))
openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000180), 0xa80, 0x0)
openat$auto_proc_mountstats_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000000), 0x84201, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd6/queue/scheduler\x00', 0x189002, 0x0)
sendfile$auto(r5, r5, 0x0, 0x3)
socket(0x10, 0x2, 0x0)
r6 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
ioctl$auto(r6, 0x4b47, 0xffffffffffffffff)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x34, 0x0, 0x800, 0x70bd26, 0x25dfdbfb, {}, [@NFSD_A_SERVER_LEASETIME={0x8}, @NFSD_A_SERVER_GRACETIME={0x8, 0x2, 0x3}, @NFSD_A_SERVER_LEASETIME={0x8, 0x3, 0x3}, @NFSD_A_SERVER_SCOPE={0x5, 0x4, '\x00'}]}, 0x34}, 0x1, 0x0, 0x0, 0x24008011}, 0xc0)

631.809926ms ago: executing program 3 (id=1764):
close_range$auto(0x2, 0xffffffffffffffff, 0x6)
io_uring_setup$auto(0x6, 0x0)
sysfs$auto(0x2, 0x10000000000002d, 0x0)
mmap$auto(0x0, 0x2020006, 0x1000000000000007, 0xeb1, 0x0, 0x1008000)
open(&(0x7f00000001c0)='./file0\x00', 0x521341, 0xe)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_media_devnode_fops_mc_devnode(0xffffffffffffff9c, &(0x7f0000000100)='/dev/media11\x00', 0x0, 0x0)
socket(0x15, 0x5, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x2004c0c4)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/midiC2D3\x00', 0x1, 0x0)
mmap$auto(0x0, 0x400008, 0x2, 0x9b72, 0xffffffffffffffff, 0x8000)
ioctl$auto_IOCTL_VMCI_CTX_GET_CPT_STATE(0xffffffffffffffff, 0x7b1, 0x0)
socket(0x2, 0x1, 0x106)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sda\x00', 0x202, 0x0)
setuid$auto(0xe)
ioctl$auto_IOC_PR_RELEASE(r1, 0x401070ca, 0x0)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x68e00, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f00000001c0)=""/112, 0x70)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x800, 0xc, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x29202, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0)
umount2$auto(0x0, 0x4)
openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/usb/usbmon/28t\x00', 0x2100, 0x0)
r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000001000)='/dev/loop5\x00', 0x40, 0x0)
ioctl$auto_BLKTRACESETUP(r3, 0xc0481273, &(0x7f0000001040)={"23eb1cc7ffaa3115a2dec531678b36b23cf9d72dbd7f1bc81cf095baa2c7d9f6", 0x4, 0x3, 0x80000, 0x6, 0x1})

0s ago: executing program 5 (id=1765):
mmap$auto(0x200000000000f400, 0x9, 0xdf, 0x9b72, 0x7, 0x28000)
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x4001, 0x0)
recvmmsg$auto(r0, &(0x7f0000000280)={{0x0, 0x1d, &(0x7f0000000180)={&(0x7f0000000100), 0x80000000}, 0x10000, &(0x7f00000001c0)="d7cd776347984e13077263bfd5f9f5abd994085367e723ee8dd0f7dfe8708ad83c9fecd395", 0x962, 0x9}, 0x2e6}, 0x9a, 0x69ac, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/audio\x00', 0xb8b42, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/asound/card1/pcm0p/sub0/hw_params\x00', 0x1c1282, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = open(&(0x7f0000000100)='.\x00', 0x40000, 0x0)
open(&(0x7f0000000800)='./file0\x00', 0x0, 0x154)
execveat$auto(r1, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0, 0x11000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
openat$auto_short_retry_limit_ops_(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x4020009, 0x8, 0xeb0, 0x401, 0x9)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x100000, &(0x7f0000000000), 0x3)
mbind$auto(0x2000, 0x100000004, 0x106000000, 0x0, 0x6, 0x2)
syz_clone3(&(0x7f0000000400)={0x9840100, 0x0, 0x0, 0x0, {0x31}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r2 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000980)='/proc/self/pagemap\x00', 0x2, 0x0)
read$auto(r2, 0x0, 0x39b8)
mmap$auto(0x0, 0x2020009, 0x2000000000000003, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x22240, 0x0)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty0\x00', 0x102, 0x0)
write$auto(0x3, 0x0, 0x4fffffdf2)
ioctl$auto(0x3, 0x402c542b, 0x38)
r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio1\x00', 0x8000, 0x0)
read$auto(r3, 0x0, 0x9)

kernel console output (not intermixed with test programs):

0x622/0x1c90
[  622.723517][T13433]  do_futex+0x1e3/0x350
[  622.723549][T13433]  ? __pfx_do_futex+0x10/0x10
[  622.723584][T13433]  ? find_held_lock+0x2b/0x80
[  622.723637][T13433]  __x64_sys_futex+0x1e0/0x4c0
[  622.723677][T13433]  ? __pfx___x64_sys_futex+0x10/0x10
[  622.723712][T13433]  ? safesetid_task_fix_setuid+0x64/0x1e0
[  622.723779][T13433]  do_syscall_64+0xcd/0x490
[  622.723815][T13433]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  622.723848][T13433] RIP: 0033:0x7fc97738e969
[  622.723873][T13433] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  622.723915][T13433] RSP: 002b:00007fc97818f0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  622.723947][T13433] RAX: ffffffffffffffda RBX: 00007fc9775b5fa8 RCX: 00007fc97738e969
[  622.723968][T13433] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fc9775b5fac
[  622.723988][T13433] RBP: 00007fc9775b5fa0 R08: 00007fc978190000 R09: 0000000000000000
[  622.724008][T13433] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc9775b5fac
[  622.724028][T13433] R13: 0000000000000000 R14: 00007ffc406d09e0 R15: 00007ffc406d0ac8
[  622.724068][T13433]  </TASK>
[  622.733088][T13435] FAULT_INJECTION: forcing a failure.
[  622.733088][T13435] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  622.829868][T13416] lowmem_reserve[]:
[  622.849832][T13435] CPU: 0 UID: 0 PID: 13435 Comm: syz.2.1451 Tainted: G     U              6.15.0-syzkaller-03589-gfeacb1774bd5 #0 PREEMPT(full) 
[  622.849889][T13435] Tainted: [U]=USER
[  622.849900][T13435] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  622.849921][T13435] Call Trace:
[  622.849931][T13435]  <TASK>
[  622.849945][T13435]  dump_stack_lvl+0x16c/0x1f0
[  622.849986][T13435]  should_fail_ex+0x512/0x640
[  622.850030][T13435]  should_fail_alloc_page+0xe7/0x130
[  622.850079][T13435]  prepare_alloc_pages+0x3c2/0x610
[  622.850133][T13435]  ? rcu_is_watching+0x12/0xc0
[  622.850191][T13435]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  622.850234][T13435]  ? __lock_acquire+0xb8a/0x1c90
[  622.850291][T13435]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  622.850333][T13435]  ? do_raw_spin_lock+0x12c/0x2b0
[  622.850380][T13435]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  622.850426][T13435]  ? find_held_lock+0x2b/0x80
[  622.850492][T13435]  ? __lock_acquire+0xb8a/0x1c90
[  622.850529][T13435]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  622.850579][T13435]  ? policy_nodemask+0xea/0x4e0
[  622.850634][T13435]  alloc_pages_mpol+0x1fb/0x550
[  622.850679][T13435]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  622.850735][T13435]  folio_alloc_mpol_noprof+0x36/0x2f0
[  622.850789][T13435]  shmem_alloc_folio+0x135/0x160
[  622.850850][T13435]  shmem_alloc_and_add_folio+0x499/0xc20
[  622.850901][T13435]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  622.850945][T13435]  ? shmem_allowable_huge_orders+0xcb/0x2f0
[  622.850995][T13435]  shmem_get_folio_gfp+0x67f/0x1600
[  622.851046][T13435]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  622.851091][T13435]  ? __pfx___might_resched+0x10/0x10
[  622.851156][T13435]  shmem_fallocate+0x795/0xf50
[  622.851216][T13435]  ? __pfx_shmem_fallocate+0x10/0x10
[  622.851255][T13435]  ? aa_file_perm+0x4d6/0xfb0
[  622.851323][T13435]  ? __lock_acquire+0xb8a/0x1c90
[  622.851365][T13435]  ? __lock_acquire+0x622/0x1c90
[  622.851429][T13435]  ? __pfx_shmem_fallocate+0x10/0x10
[  622.851472][T13435]  vfs_fallocate+0x60b/0x10c0
[  622.851514][T13435]  ? __pfx_vfs_fallocate+0x10/0x10
[  622.851565][T13435]  __x64_sys_fallocate+0xd5/0x150
[  622.851617][T13435]  do_syscall_64+0xcd/0x490
[  622.851657][T13435]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  622.851692][T13435] RIP: 0033:0x7f731a98e969
[  622.851718][T13435] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  622.851753][T13435] RSP: 002b:00007f731b7a4038 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[  622.851785][T13435] RAX: ffffffffffffffda RBX: 00007f731abb5fa0 RCX: 00007f731a98e969
[  622.851808][T13435] RDX: 0000000000000009 RSI: 0000000000000000 RDI: 8000000000000003
[  622.851830][T13435] RBP: 00007f731b7a4090 R08: 0000000000000000 R09: 0000000000000000
[  622.851850][T13435] R10: 00000000004cbd5d R11: 0000000000000246 R12: 0000000000000002
[  622.851870][T13435] R13: 0000000000000000 R14: 00007f731abb5fa0 R15: 00007ffd608ff688
[  622.851915][T13435]  </TASK>
[  623.250735][T13416]  0 0 1 1 1
[  623.250802][T13416] Node 0 Normal free:12kB boost:0kB min:20kB low:24kB high:28kB reserved_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1568kB unevictable:0kB writepending:0kB present:1048580kB managed:1644kB mlocked:0kB bounce:0kB free_pcp:16kB local_pcp:8kB free_cma:0kB
[  623.250903][T13416] lowmem_reserve[]: 0 0 0 0 0
[  623.250963][T13416] Node 1 Normal free:3919440kB boost:0kB min:55788kB low:69732kB high:83676kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:136kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:2528kB local_pcp:2528kB free_cma:0kB
[  623.251052][T13416] lowmem_reserve[]: 0 0 0 0 0
[  623.251108][T13416] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  623.251308][T13416] Node 0 DMA32: 971*4kB (UME) 850*8kB (UME) 419*16kB (UE) 81*32kB (UE) 216*64kB (UME) 148*128kB (UME) 75*256kB (UME) 33*512kB (UME) 18*1024kB (UME) 13*2048kB (UME) 257*4096kB (UM) = 1186572kB
[  623.251589][T13416] Node 0 Normal: 1*4kB (M) 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12kB
[  623.251760][T13416] Node 1 Normal: 207*4kB (UME) 53*8kB (UME) 30*16kB (UME) 168*32kB (UME) 91*64kB (UME) 24*128kB (UME) 12*256kB (UM) 4*512kB (UM) 3*1024kB (UME) 4*2048kB (UME) 949*4096kB (M) = 3919492kB
[  623.252034][T13416] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  623.252060][T13416] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  623.252083][T13416] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  623.252109][T13416] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  623.252133][T13416] 89870 total pagecache pages
[  623.252145][T13416] 0 pages in swap cache
[  623.252155][T13416] Free swap  = 124996kB
[  623.252166][T13416] Total swap = 124996kB
[  623.252178][T13416] 2097051 pages RAM
[  623.252188][T13416] 0 pages HighMem/MovableOnly
[  623.252199][T13416] 429610 pages reserved
[  623.252209][T13416] 0 pages cma reserved
[  624.344359][T13415] tty tty53: ldisc open failed (-12), clearing slot 52
[  626.426345][T13482] FAULT_INJECTION: forcing a failure.
[  626.426345][T13482] name failslab, interval 1, probability 0, space 0, times 0
[  626.502311][T13482] CPU: 1 UID: 0 PID: 13482 Comm: syz.3.1461 Tainted: G     U              6.15.0-syzkaller-03589-gfeacb1774bd5 #0 PREEMPT(full) 
[  626.502365][T13482] Tainted: [U]=USER
[  626.502377][T13482] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  626.502397][T13482] Call Trace:
[  626.502407][T13482]  <TASK>
[  626.502419][T13482]  dump_stack_lvl+0x16c/0x1f0
[  626.502458][T13482]  should_fail_ex+0x512/0x640
[  626.502493][T13482]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  626.502536][T13482]  should_failslab+0xc2/0x120
[  626.502578][T13482]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  626.502615][T13482]  ? __pfx_map_id_range_down+0x10/0x10
[  626.502657][T13482]  ? prepare_creds+0x2c/0x7d0
[  626.502704][T13482]  prepare_creds+0x2c/0x7d0
[  626.502748][T13482]  __sys_setfsuid+0xda/0x350
[  626.502778][T13482]  ? rcu_is_watching+0x12/0xc0
[  626.502829][T13482]  do_syscall_64+0xcd/0x490
[  626.502866][T13482]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  626.502899][T13482] RIP: 0033:0x7f727778e969
[  626.502924][T13482] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  626.502957][T13482] RSP: 002b:00007f72786db038 EFLAGS: 00000246 ORIG_RAX: 000000000000007a
[  626.502989][T13482] RAX: ffffffffffffffda RBX: 00007f72779b5fa0 RCX: 00007f727778e969
[  626.503010][T13482] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000ee00
[  626.503029][T13482] RBP: 00007f7277810ab1 R08: 0000000000000000 R09: 0000000000000000
[  626.503049][T13482] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  626.503068][T13482] R13: 0000000000000000 R14: 00007f72779b5fa0 R15: 00007ffcf5a5a4e8
[  626.503110][T13482]  </TASK>
[  629.666484][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  629.673153][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  630.352047][T13531] FAULT_INJECTION: forcing a failure.
[  630.352047][T13531] name failslab, interval 1, probability 0, space 0, times 0
[  630.435292][T13531] CPU: 0 UID: 0 PID: 13531 Comm: syz.3.1473 Tainted: G     U              6.15.0-syzkaller-03589-gfeacb1774bd5 #0 PREEMPT(full) 
[  630.435349][T13531] Tainted: [U]=USER
[  630.435360][T13531] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  630.435381][T13531] Call Trace:
[  630.435392][T13531]  <TASK>
[  630.435405][T13531]  dump_stack_lvl+0x16c/0x1f0
[  630.435446][T13531]  should_fail_ex+0x512/0x640
[  630.435481][T13531]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  630.435524][T13531]  should_failslab+0xc2/0x120
[  630.435565][T13531]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  630.435600][T13531]  ? __pfx_map_id_range_down+0x10/0x10
[  630.435641][T13531]  ? prepare_creds+0x2c/0x7d0
[  630.435688][T13531]  prepare_creds+0x2c/0x7d0
[  630.435731][T13531]  __sys_setfsuid+0xda/0x350
[  630.435760][T13531]  ? rcu_is_watching+0x12/0xc0
[  630.435814][T13531]  do_syscall_64+0xcd/0x490
[  630.435851][T13531]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  630.435885][T13531] RIP: 0033:0x7f727778e969
[  630.435921][T13531] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  630.435957][T13531] RSP: 002b:00007f72786db038 EFLAGS: 00000246 ORIG_RAX: 000000000000007a
[  630.435988][T13531] RAX: ffffffffffffffda RBX: 00007f72779b5fa0 RCX: 00007f727778e969
[  630.436011][T13531] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000ee00
[  630.436030][T13531] RBP: 00007f7277810ab1 R08: 0000000000000000 R09: 0000000000000000
[  630.436051][T13531] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  630.436070][T13531] R13: 0000000000000000 R14: 00007f72779b5fa0 R15: 00007ffcf5a5a4e8
[  630.436113][T13531]  </TASK>
[  630.992546][T13524] FAULT_INJECTION: forcing a failure.
[  630.992546][T13524] name failslab, interval 1, probability 0, space 0, times 0
[  631.145308][T13524] CPU: 0 UID: 0 PID: 13524 Comm: syz.1.1471 Tainted: G     U              6.15.0-syzkaller-03589-gfeacb1774bd5 #0 PREEMPT(full) 
[  631.145366][T13524] Tainted: [U]=USER
[  631.145378][T13524] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  631.145399][T13524] Call Trace:
[  631.145411][T13524]  <TASK>
[  631.145424][T13524]  dump_stack_lvl+0x16c/0x1f0
[  631.145465][T13524]  should_fail_ex+0x512/0x640
[  631.145500][T13524]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[  631.145548][T13524]  should_failslab+0xc2/0x120
[  631.145590][T13524]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  631.145635][T13524]  ? kstrdup_const+0x63/0x80
[  631.145681][T13524]  kstrdup+0x53/0x100
[  631.145723][T13524]  kstrdup_const+0x63/0x80
[  631.145774][T13524]  __kernfs_new_node+0x9b/0x8a0
[  631.145815][T13524]  ? __pfx___kernfs_new_node+0x10/0x10
[  631.145862][T13524]  ? find_held_lock+0x2b/0x80
[  631.145913][T13524]  ? kernfs_root+0xee/0x2a0
[  631.145955][T13524]  kernfs_new_node+0x13c/0x1e0
[  631.146003][T13524]  kernfs_create_link+0xcc/0x240
[  631.146056][T13524]  sysfs_do_create_link_sd+0x90/0x140
[  631.146093][T13524]  sysfs_create_link+0x61/0xc0
[  631.146125][T13524]  device_add+0x62c/0x1a70
[  631.146175][T13524]  ? __pfx_device_add+0x10/0x10
[  631.146220][T13524]  ? lockdep_init_map_type+0x5c/0x280
[  631.146259][T13524]  ? __init_waitqueue_head+0xca/0x150
[  631.146316][T13524]  netdev_register_kobject+0x182/0x3a0
[  631.146377][T13524]  register_netdevice+0x13dc/0x2270
[  631.146437][T13524]  ? __pfx_register_netdevice+0x10/0x10
[  631.146500][T13524]  br_add_bridge+0x9a/0xf0
[  631.146539][T13524]  br_ioctl_stub+0x482/0x4c0
[  631.146583][T13524]  ? __pfx_br_ioctl_stub+0x10/0x10
[  631.146620][T13524]  ? __pfx___mutex_lock+0x10/0x10
[  631.146681][T13524]  ? __pfx_br_ioctl_stub+0x10/0x10
[  631.146723][T13524]  br_ioctl_call+0x53/0xa0
[  631.146793][T13524]  sock_ioctl+0x365/0x6b0
[  631.146828][T13524]  ? __pfx_sock_ioctl+0x10/0x10
[  631.146861][T13524]  ? hook_file_ioctl_common+0x145/0x410
[  631.146912][T13524]  ? __fget_files+0x20e/0x3c0
[  631.146950][T13524]  ? __pfx_sock_ioctl+0x10/0x10
[  631.146988][T13524]  __x64_sys_ioctl+0x18b/0x210
[  631.147038][T13524]  do_syscall_64+0xcd/0x490
[  631.147074][T13524]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  631.147107][T13524] RIP: 0033:0x7fc97738e969
[  631.147134][T13524] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  631.147168][T13524] RSP: 002b:00007fc97816e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  631.147199][T13524] RAX: ffffffffffffffda RBX: 00007fc9775b6080 RCX: 00007fc97738e969
[  631.147221][T13524] RDX: 0000000000000004 RSI: 00000000000089a0 RDI: 000000000000000c
[  631.147241][T13524] RBP: 00007fc977410ab1 R08: 0000000000000000 R09: 0000000000000000
[  631.147260][T13524] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  631.147280][T13524] R13: 0000000000000000 R14: 00007fc9775b6080 R15: 00007ffc406d0ac8
[  631.147323][T13524]  </TASK>
[  633.115281][T13554] bcachefs: bch2_ioctl_fsck_offline() ret EFAULT
[  635.043694][T13571] FAULT_INJECTION: forcing a failure.
[  635.043694][T13571] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  635.071521][T13571] CPU: 0 UID: 0 PID: 13571 Comm: syz.5.1488 Tainted: G     U              6.15.0-syzkaller-03589-gfeacb1774bd5 #0 PREEMPT(full) 
[  635.071574][T13571] Tainted: [U]=USER
[  635.071585][T13571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  635.071604][T13571] Call Trace:
[  635.071614][T13571]  <TASK>
[  635.071626][T13571]  dump_stack_lvl+0x16c/0x1f0
[  635.071664][T13571]  should_fail_ex+0x512/0x640
[  635.071705][T13571]  should_fail_alloc_page+0xe7/0x130
[  635.071749][T13571]  prepare_alloc_pages+0x3c2/0x610
[  635.071800][T13571]  ? rcu_is_watching+0x12/0xc0
[  635.071851][T13571]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  635.071894][T13571]  ? __lock_acquire+0xb8a/0x1c90
[  635.071948][T13571]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  635.071988][T13571]  ? do_raw_spin_lock+0x12c/0x2b0
[  635.072031][T13571]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  635.072074][T13571]  ? find_held_lock+0x2b/0x80
[  635.072135][T13571]  ? __lock_acquire+0xb8a/0x1c90
[  635.072170][T13571]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  635.072216][T13571]  ? policy_nodemask+0xea/0x4e0
[  635.072260][T13571]  alloc_pages_mpol+0x1fb/0x550
[  635.072303][T13571]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  635.072357][T13571]  folio_alloc_mpol_noprof+0x36/0x2f0
[  635.072415][T13571]  shmem_alloc_folio+0x135/0x160
[  635.072469][T13571]  shmem_alloc_and_add_folio+0x499/0xc20
[  635.072516][T13571]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  635.072559][T13571]  ? shmem_allowable_huge_orders+0xcb/0x2f0
[  635.072606][T13571]  shmem_get_folio_gfp+0x67f/0x1600
[  635.072653][T13571]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  635.072694][T13571]  ? __pfx___might_resched+0x10/0x10
[  635.072752][T13571]  shmem_fallocate+0x795/0xf50
[  635.072806][T13571]  ? __pfx_shmem_fallocate+0x10/0x10
[  635.072841][T13571]  ? aa_file_perm+0x4d6/0xfb0
[  635.072901][T13571]  ? __lock_acquire+0xb8a/0x1c90
[  635.072942][T13571]  ? __lock_acquire+0x622/0x1c90
[  635.073003][T13571]  ? __pfx_shmem_fallocate+0x10/0x10
[  635.073042][T13571]  vfs_fallocate+0x60b/0x10c0
[  635.073082][T13571]  ? __pfx_vfs_fallocate+0x10/0x10
[  635.073130][T13571]  __x64_sys_fallocate+0xd5/0x150
[  635.073171][T13571]  do_syscall_64+0xcd/0x490
[  635.073209][T13571]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  635.073242][T13571] RIP: 0033:0x7f735c58e969
[  635.073267][T13571] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  635.073299][T13571] RSP: 002b:00007f735d37b038 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[  635.073330][T13571] RAX: ffffffffffffffda RBX: 00007f735c7b5fa0 RCX: 00007f735c58e969
[  635.073351][T13571] RDX: 0000000000000009 RSI: 0000000000000000 RDI: 8000000000000003
[  635.073371][T13571] RBP: 00007f735d37b090 R08: 0000000000000000 R09: 0000000000000000
[  635.073390][T13571] R10: 00000000004cbd5d R11: 0000000000000246 R12: 0000000000000002
[  635.073421][T13571] R13: 0000000000000000 R14: 00007f735c7b5fa0 R15: 00007ffe96dd3ea8
[  635.073465][T13571]  </TASK>
[  635.503649][T13577] FAULT_INJECTION: forcing a failure.
[  635.503649][T13577] name failslab, interval 1, probability 0, space 0, times 0
[  635.582434][T13577] CPU: 1 UID: 0 PID: 13577 Comm: syz.5.1482 Tainted: G     U              6.15.0-syzkaller-03589-gfeacb1774bd5 #0 PREEMPT(full) 
[  635.582493][T13577] Tainted: [U]=USER
[  635.582506][T13577] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  635.582526][T13577] Call Trace:
[  635.582536][T13577]  <TASK>
[  635.582549][T13577]  dump_stack_lvl+0x16c/0x1f0
[  635.582589][T13577]  should_fail_ex+0x512/0x640
[  635.582623][T13577]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  635.582665][T13577]  should_failslab+0xc2/0x120
[  635.582706][T13577]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  635.582744][T13577]  ? __pfx_map_id_range_down+0x10/0x10
[  635.582785][T13577]  ? prepare_creds+0x2c/0x7d0
[  635.582833][T13577]  prepare_creds+0x2c/0x7d0
[  635.582878][T13577]  __sys_setfsuid+0xda/0x350
[  635.582907][T13577]  ? rcu_is_watching+0x12/0xc0
[  635.582961][T13577]  do_syscall_64+0xcd/0x490
[  635.583000][T13577]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  635.583034][T13577] RIP: 0033:0x7f735c58e969
[  635.583059][T13577] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  635.583093][T13577] RSP: 002b:00007f735d37b038 EFLAGS: 00000246 ORIG_RAX: 000000000000007a
[  635.583124][T13577] RAX: ffffffffffffffda RBX: 00007f735c7b5fa0 RCX: 00007f735c58e969
[  635.583146][T13577] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000ee00
[  635.583165][T13577] RBP: 00007f735c610ab1 R08: 0000000000000000 R09: 0000000000000000
[  635.583184][T13577] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  635.583203][T13577] R13: 0000000000000000 R14: 00007f735c7b5fa0 R15: 00007ffe96dd3ea8
[  635.583246][T13577]  </TASK>
[  637.346687][T13597] FAULT_INJECTION: forcing a failure.
[  637.346687][T13597] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  637.360279][T13597] CPU: 1 UID: 0 PID: 13597 Comm: syz.2.1486 Tainted: G     U              6.15.0-syzkaller-03589-gfeacb1774bd5 #0 PREEMPT(full) 
[  637.360332][T13597] Tainted: [U]=USER
[  637.360343][T13597] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  637.360363][T13597] Call Trace:
[  637.360376][T13597]  <TASK>
[  637.360389][T13597]  dump_stack_lvl+0x16c/0x1f0
[  637.360438][T13597]  should_fail_ex+0x512/0x640
[  637.360480][T13597]  should_fail_alloc_page+0xe7/0x130
[  637.360525][T13597]  prepare_alloc_pages+0x3c2/0x610
[  637.360577][T13597]  ? rcu_is_watching+0x12/0xc0
[  637.360632][T13597]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  637.360671][T13597]  ? should_fail_alloc_page+0xee/0x130
[  637.360717][T13597]  ? rcu_is_watching+0x12/0xc0
[  637.360765][T13597]  ? trace_mm_page_alloc+0x11f/0x1a0
[  637.360811][T13597]  ? __alloc_frozen_pages_noprof+0x294/0x23f0
[  637.360849][T13597]  ? __pfx_stack_trace_save+0x10/0x10
[  637.360902][T13597]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  637.360956][T13597]  ? alloc_vmap_area+0x64e/0x28f0
[  637.360999][T13597]  ? __vmalloc_node_range_noprof+0x277/0x1520
[  637.361053][T13597]  ? __do_sys_listmount+0x1c2/0xec0
[  637.361100][T13597]  ? do_syscall_64+0xcd/0x490
[  637.361132][T13597]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  637.361186][T13597]  alloc_pages_bulk_noprof+0x71c/0x1410
[  637.361225][T13597]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  637.361271][T13597]  ? policy_nodemask+0xea/0x4e0
[  637.361316][T13597]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[  637.361357][T13597]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  637.361417][T13597]  kasan_populate_vmalloc+0xf1/0x1f0
[  637.361469][T13597]  alloc_vmap_area+0x963/0x28f0
[  637.361536][T13597]  ? __pfx_alloc_vmap_area+0x10/0x10
[  637.361596][T13597]  __get_vm_area_node+0x1ca/0x330
[  637.361655][T13597]  __vmalloc_node_range_noprof+0x277/0x1520
[  637.361709][T13597]  ? __do_sys_listmount+0x1c2/0xec0
[  637.361768][T13597]  ? __lock_acquire+0xb8a/0x1c90
[  637.361804][T13597]  ? __do_sys_listmount+0x1c2/0xec0
[  637.361863][T13597]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  637.361918][T13597]  ? __alloc_pages_noprof+0xb/0x1b0
[  637.361953][T13597]  ? ___kmalloc_large_node+0x84/0x1e0
[  637.362001][T13597]  ? find_held_lock+0x2b/0x80
[  637.362057][T13597]  __kvmalloc_node_noprof+0x308/0x620
[  637.362093][T13597]  ? __do_sys_listmount+0x1c2/0xec0
[  637.362143][T13597]  ? __do_sys_listmount+0x1c2/0xec0
[  637.362203][T13597]  ? __do_sys_listmount+0x1c2/0xec0
[  637.362249][T13597]  __do_sys_listmount+0x1c2/0xec0
[  637.362306][T13597]  ? __x64_sys_futex+0x1e0/0x4c0
[  637.362339][T13597]  ? __x64_sys_futex+0x1e9/0x4c0
[  637.362372][T13597]  ? __pfx___do_sys_listmount+0x10/0x10
[  637.362458][T13597]  do_syscall_64+0xcd/0x490
[  637.362497][T13597]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  637.362532][T13597] RIP: 0033:0x7f731a98e969
[  637.362559][T13597] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  637.362593][T13597] RSP: 002b:00007f731b783038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[  637.362625][T13597] RAX: ffffffffffffffda RBX: 00007f731abb6080 RCX: 00007f731a98e969
[  637.362647][T13597] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100
[  637.362666][T13597] RBP: 00007f731aa10ab1 R08: 0000000000000000 R09: 0000000000000000
[  637.362685][T13597] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[  637.362703][T13597] R13: 0000000000000000 R14: 00007f731abb6080 R15: 00007ffd608ff688
[  637.362745][T13597]  </TASK>
[  637.364242][T13597] syz.2.1486: vmalloc error: size 8000000, vm_struct allocation failed, mode:0x400cc0(GFP_KERNEL_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1
[  637.799804][T13597] CPU: 1 UID: 0 PID: 13597 Comm: syz.2.1486 Tainted: G     U              6.15.0-syzkaller-03589-gfeacb1774bd5 #0 PREEMPT(full) 
[  637.799857][T13597] Tainted: [U]=USER
[  637.799867][T13597] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  637.799886][T13597] Call Trace:
[  637.799898][T13597]  <TASK>
[  637.799911][T13597]  dump_stack_lvl+0x16c/0x1f0
[  637.799951][T13597]  warn_alloc+0x248/0x3a0
[  637.799991][T13597]  ? __pfx_warn_alloc+0x10/0x10
[  637.800032][T13597]  ? kfree+0x2b4/0x4d0
[  637.800070][T13597]  ? __get_vm_area_node+0x208/0x330
[  637.800128][T13597]  __vmalloc_node_range_noprof+0xd32/0x1520
[  637.800195][T13597]  ? __lock_acquire+0xb8a/0x1c90
[  637.800231][T13597]  ? __do_sys_listmount+0x1c2/0xec0
[  637.800293][T13597]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  637.800349][T13597]  ? __alloc_pages_noprof+0xb/0x1b0
[  637.800384][T13597]  ? ___kmalloc_large_node+0x84/0x1e0
[  637.800436][T13597]  ? find_held_lock+0x2b/0x80
[  637.800491][T13597]  __kvmalloc_node_noprof+0x308/0x620
[  637.800527][T13597]  ? __do_sys_listmount+0x1c2/0xec0
[  637.800577][T13597]  ? __do_sys_listmount+0x1c2/0xec0
[  637.800634][T13597]  ? __do_sys_listmount+0x1c2/0xec0
[  637.800680][T13597]  __do_sys_listmount+0x1c2/0xec0
[  637.800735][T13597]  ? __x64_sys_futex+0x1e0/0x4c0
[  637.800766][T13597]  ? __x64_sys_futex+0x1e9/0x4c0
[  637.800799][T13597]  ? __pfx___do_sys_listmount+0x10/0x10
[  637.800871][T13597]  do_syscall_64+0xcd/0x490
[  637.800908][T13597]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  637.800941][T13597] RIP: 0033:0x7f731a98e969
[  637.800966][T13597] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  637.800999][T13597] RSP: 002b:00007f731b783038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[  637.801031][T13597] RAX: ffffffffffffffda RBX: 00007f731abb6080 RCX: 00007f731a98e969
[  637.801052][T13597] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100
[  637.801072][T13597] RBP: 00007f731aa10ab1 R08: 0000000000000000 R09: 0000000000000000
[  637.801091][T13597] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[  637.801110][T13597] R13: 0000000000000000 R14: 00007f731abb6080 R15: 00007ffd608ff688
[  637.801151][T13597]  </TASK>
[  637.801164][T13597] Mem-Info:
[  638.109389][T13597] active_anon:47768 inactive_anon:0 isolated_anon:0
[  638.109389][T13597]  active_file:17138 inactive_file:44079 isolated_file:0
[  638.109389][T13597]  unevictable:768 dirty:1573 writeback:64
[  638.109389][T13597]  slab_reclaimable:11880 slab_unreclaimable:98367
[  638.109389][T13597]  mapped:30232 shmem:33729 pagetables:1087
[  638.109389][T13597]  sec_pagetables:0 bounce:0
[  638.109389][T13597]  kernel_misc_reclaimable:0
[  638.109389][T13597]  free:1278694 free_pcp:1899 free_cma:0
[  638.163567][T13597] Node 0 active_anon:191072kB inactive_anon:0kB active_file:68552kB inactive_file:176180kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:120928kB dirty:6164kB writeback:256kB shmem:133380kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11120kB pagetables:4348kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  638.414734][T13597] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:136kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  638.530981][T13597] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  638.779235][T13597] lowmem_reserve[]: 0 2482 2483 2483 2483
[  638.788734][T13597] Node 0 DMA32 free:1203548kB boost:0kB min:34092kB low:42612kB high:51132kB reserved_highatomic:0KB active_anon:157300kB inactive_anon:0kB active_file:60104kB inactive_file:174628kB unevictable:1536kB writepending:3860kB present:3129332kB managed:2541596kB mlocked:0kB bounce:0kB free_pcp:22912kB local_pcp:22636kB free_cma:0kB
[  638.954196][T13597] lowmem_reserve[]: 0 0 1 1 1
[  639.070549][T13597] Node 0 Normal free:12kB boost:0kB min:20kB low:24kB high:28kB reserved_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1568kB unevictable:0kB writepending:0kB present:1048580kB managed:1644kB mlocked:0kB bounce:0kB free_pcp:16kB local_pcp:8kB free_cma:0kB
[  639.105852][T13597] lowmem_reserve[]: 0 0 0 0 0
[  639.111146][T13597] Node 1 Normal free:3920752kB boost:0kB min:55788kB low:69732kB high:83676kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:136kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:1268kB local_pcp:1268kB free_cma:0kB
[  639.189760][T13597] lowmem_reserve[]: 0 0 0 0 0
[  639.262378][T13597] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  639.343823][T13597] Node 0 DMA32: 5304*4kB (UME) 1473*8kB (UME) 569*16kB (UME) 789*32kB (UME) 467*64kB (UM) 192*128kB (UM) 74*256kB (UM) 32*512kB (UME) 17*1024kB (UME) 4*2048kB (UME) 255*4096kB (UM) = 1227224kB
[  639.522773][T13618] FAULT_INJECTION: forcing a failure.
[  639.522773][T13618] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  639.538719][T13618] CPU: 0 UID: 0 PID: 13618 Comm: syz.3.1491 Tainted: G     U              6.15.0-syzkaller-03589-gfeacb1774bd5 #0 PREEMPT(full) 
[  639.538771][T13618] Tainted: [U]=USER
[  639.538782][T13618] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  639.538801][T13618] Call Trace:
[  639.538812][T13618]  <TASK>
[  639.538824][T13618]  dump_stack_lvl+0x16c/0x1f0
[  639.538863][T13618]  should_fail_ex+0x512/0x640
[  639.538904][T13618]  should_fail_alloc_page+0xe7/0x130
[  639.538949][T13618]  prepare_alloc_pages+0x3c2/0x610
[  639.539000][T13618]  ? rcu_is_watching+0x12/0xc0
[  639.539055][T13618]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  639.539097][T13618]  ? __lock_acquire+0xb8a/0x1c90
[  639.539150][T13618]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  639.539188][T13618]  ? do_raw_spin_lock+0x12c/0x2b0
[  639.539239][T13618]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  639.539282][T13618]  ? find_held_lock+0x2b/0x80
[  639.539343][T13618]  ? __lock_acquire+0xb8a/0x1c90
[  639.539378][T13618]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  639.539422][T13618]  ? policy_nodemask+0xea/0x4e0
[  639.539466][T13618]  alloc_pages_mpol+0x1fb/0x550
[  639.539509][T13618]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  639.539562][T13618]  folio_alloc_mpol_noprof+0x36/0x2f0
[  639.539615][T13618]  shmem_alloc_folio+0x135/0x160
[  639.539668][T13618]  shmem_alloc_and_add_folio+0x499/0xc20
[  639.539714][T13618]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  639.539755][T13618]  ? shmem_allowable_huge_orders+0xcb/0x2f0
[  639.539800][T13618]  shmem_get_folio_gfp+0x67f/0x1600
[  639.539843][T13618]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  639.539880][T13618]  ? __pfx___might_resched+0x10/0x10
[  639.539936][T13618]  shmem_fallocate+0x795/0xf50
[  639.539989][T13618]  ? __pfx_shmem_fallocate+0x10/0x10
[  639.540023][T13618]  ? aa_file_perm+0x4d6/0xfb0
[  639.540083][T13618]  ? __lock_acquire+0xb8a/0x1c90
[  639.540119][T13618]  ? __lock_acquire+0x622/0x1c90
[  639.540174][T13618]  ? __pfx_shmem_fallocate+0x10/0x10
[  639.540210][T13618]  vfs_fallocate+0x60b/0x10c0
[  639.540255][T13618]  ? __pfx_vfs_fallocate+0x10/0x10
[  639.540299][T13618]  __x64_sys_fallocate+0xd5/0x150
[  639.540336][T13618]  do_syscall_64+0xcd/0x490
[  639.540371][T13618]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  639.540400][T13618] RIP: 0033:0x7f727778e969
[  639.540423][T13618] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  639.540452][T13618] RSP: 002b:00007f72786db038 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[  639.540479][T13618] RAX: ffffffffffffffda RBX: 00007f72779b5fa0 RCX: 00007f727778e969
[  639.540498][T13618] RDX: 0000000000000009 RSI: 0000000000000000 RDI: 8000000000000003
[  639.540515][T13618] RBP: 00007f72786db090 R08: 0000000000000000 R09: 0000000000000000
[  639.540532][T13618] R10: 00000000004cbd5d R11: 0000000000000246 R12: 0000000000000002
[  639.540550][T13618] R13: 0000000000000000 R14: 00007f72779b5fa0 R15: 00007ffcf5a5a4e8
[  639.540586][T13618]  </TASK>
[  639.542619][T13597] Node 0 Normal: 1*4kB (M) 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12kB
[  639.928842][T13597] Node 1 Normal: 208*4kB (UME) 54*8kB (UME) 30*16kB (UME) 169*32kB (UME) 90*64kB (UME) 24*128kB (UME) 13*256kB (UM) 6*512kB (UM) 3*1024kB (UME) 4*2048kB (UME) 949*4096kB (M) = 3920752kB
[  639.989730][T13597] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  639.999374][T13597] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  640.043599][T13597] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  640.060018][T13597] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  640.082826][T13597] 76903 total pagecache pages
[  640.087574][T13597] 0 pages in swap cache
[  640.144590][T13597] Free swap  = 120852kB
[  640.156209][T13597] Total swap = 124996kB
[  640.173558][T13597] 2097051 pages RAM
[  640.189088][T13597] 0 pages HighMem/MovableOnly
[  640.213109][T13597] 429610 pages reserved
[  640.217382][T13597] 0 pages cma reserved
[  640.584540][T13631] netlink: 'syz.2.1497': attribute type 1 has an invalid length.
[  640.607880][T13631] netlink: 306 bytes leftover after parsing attributes in process `syz.2.1497'.
[  641.365718][T13647] FAULT_INJECTION: forcing a failure.
[  641.365718][T13647] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  641.397938][T13647] CPU: 1 UID: 0 PID: 13647 Comm: syz.2.1502 Tainted: G     U              6.15.0-syzkaller-03589-gfeacb1774bd5 #0 PREEMPT(full) 
[  641.397992][T13647] Tainted: [U]=USER
[  641.398003][T13647] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  641.398021][T13647] Call Trace:
[  641.398039][T13647]  <TASK>
[  641.398051][T13647]  dump_stack_lvl+0x16c/0x1f0
[  641.398090][T13647]  should_fail_ex+0x512/0x640
[  641.398131][T13647]  should_fail_alloc_page+0xe7/0x130
[  641.398175][T13647]  prepare_alloc_pages+0x3c2/0x610
[  641.398223][T13647]  ? rcu_is_watching+0x12/0xc0
[  641.398275][T13647]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  641.398317][T13647]  ? __lock_acquire+0xb8a/0x1c90
[  641.398371][T13647]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  641.398410][T13647]  ? do_raw_spin_lock+0x12c/0x2b0
[  641.398453][T13647]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  641.398493][T13647]  ? find_held_lock+0x2b/0x80
[  641.398549][T13647]  ? __lock_acquire+0xb8a/0x1c90
[  641.398582][T13647]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  641.398627][T13647]  ? policy_nodemask+0xea/0x4e0
[  641.398668][T13647]  alloc_pages_mpol+0x1fb/0x550
[  641.398709][T13647]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  641.398761][T13647]  folio_alloc_mpol_noprof+0x36/0x2f0
[  641.398810][T13647]  shmem_alloc_folio+0x135/0x160
[  641.398864][T13647]  shmem_alloc_and_add_folio+0x499/0xc20
[  641.398909][T13647]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  641.398949][T13647]  ? shmem_allowable_huge_orders+0xcb/0x2f0
[  641.398993][T13647]  shmem_get_folio_gfp+0x67f/0x1600
[  641.399046][T13647]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  641.399086][T13647]  ? __pfx___might_resched+0x10/0x10
[  641.399144][T13647]  shmem_fallocate+0x795/0xf50
[  641.399199][T13647]  ? __pfx_shmem_fallocate+0x10/0x10
[  641.399236][T13647]  ? aa_file_perm+0x4d6/0xfb0
[  641.399298][T13647]  ? __lock_acquire+0xb8a/0x1c90
[  641.399337][T13647]  ? __lock_acquire+0x622/0x1c90
[  641.399396][T13647]  ? __pfx_shmem_fallocate+0x10/0x10
[  641.399435][T13647]  vfs_fallocate+0x60b/0x10c0
[  641.399474][T13647]  ? __pfx_vfs_fallocate+0x10/0x10
[  641.399523][T13647]  __x64_sys_fallocate+0xd5/0x150
[  641.399564][T13647]  do_syscall_64+0xcd/0x490
[  641.399603][T13647]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  641.399636][T13647] RIP: 0033:0x7f731a98e969
[  641.399661][T13647] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  641.399698][T13647] RSP: 002b:00007f731b7a4038 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[  641.399728][T13647] RAX: ffffffffffffffda RBX: 00007f731abb5fa0 RCX: 00007f731a98e969
[  641.399749][T13647] RDX: 0000000000000009 RSI: 0000000000000000 RDI: 8000000000000003
[  641.399769][T13647] RBP: 00007f731b7a4090 R08: 0000000000000000 R09: 0000000000000000
[  641.399788][T13647] R10: 00000000004cbd5d R11: 0000000000000246 R12: 0000000000000002
[  641.399806][T13647] R13: 0000000000000000 R14: 00007f731abb5fa0 R15: 00007ffd608ff688
[  641.399841][T13647]  </TASK>
[  641.953419][T13654] Invalid ELF header magic: != ELF
[  644.105158][T13684] vivid-003: =================  START STATUS  =================
[  644.138724][T13684] vivid-003: Radio HW Seek Mode: Bounded
[  644.147072][T13684] vivid-003: Radio Programmable HW Seek: false
[  644.241251][T13684] vivid-003: RDS Rx I/O Mode: Block I/O
[  644.315083][T13684] vivid-003: Generate RBDS Instead of RDS: false
[  644.336029][T13684] vivid-003: RDS Reception: true
[  644.372711][T13684] vivid-003: RDS Program Type: 0 inactive
[  644.402426][T13684] vivid-003: RDS PS Name:  inactive
[  644.446776][T13684] vivid-003: RDS Radio Text:  inactive
[  644.484748][T13684] vivid-003: RDS Traffic Announcement: false inactive
[  644.546357][T13684] vivid-003: RDS Traffic Program: false inactive
[  644.554251][T13684] vivid-003: RDS Music: false inactive
[  644.562861][T13684] vivid-003: ==================  END STATUS  ==================
[  645.981190][T13722] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(5)
[  654.759980][T13856] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  654.775314][T13856] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  654.799389][T13856] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  654.852239][T13856] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  656.769704][T10919] Bluetooth: hci1: command 0x0c1a tx timeout
[  656.851479][T10919] Bluetooth: hci3: command 0x0c1a tx timeout
[  656.857593][T10919] Bluetooth: hci2: command 0x0c1a tx timeout
[  656.930033][T10919] Bluetooth: hci4: command 0x0c1a tx timeout
[  657.600545][T13891] netlink: 'syz.3.1544': attribute type 11 has an invalid length.
[  657.624581][T13891] netlink: 'syz.3.1544': attribute type 11 has an invalid length.
[  657.634951][T13891] netlink: 'syz.3.1544': attribute type 11 has an invalid length.
[  658.022700][T13875] netlink: 72 bytes leftover after parsing attributes in process `syz.1.1540'.
[  658.311225][T13895] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1545'.
[  658.332016][T13903] FAULT_INJECTION: forcing a failure.
[  658.332016][T13903] name failslab, interval 1, probability 0, space 0, times 0
[  658.349923][T13895] veth0_macvtap: entered allmulticast mode
[  658.399801][T13903] CPU: 0 UID: 0 PID: 13903 Comm: syz.2.1547 Tainted: G     U              6.15.0-syzkaller-03589-gfeacb1774bd5 #0 PREEMPT(full) 
[  658.399842][T13903] Tainted: [U]=USER
[  658.399849][T13903] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  658.399863][T13903] Call Trace:
[  658.399871][T13903]  <TASK>
[  658.399880][T13903]  dump_stack_lvl+0x16c/0x1f0
[  658.399908][T13903]  should_fail_ex+0x512/0x640
[  658.399932][T13903]  ? __kmalloc_noprof+0xbf/0x510
[  658.399961][T13903]  ? io_cache_alloc_new+0x45/0xf0
[  658.399984][T13903]  should_failslab+0xc2/0x120
[  658.400013][T13903]  __kmalloc_noprof+0xd2/0x510
[  658.400045][T13903]  io_cache_alloc_new+0x45/0xf0
[  658.400070][T13903]  io_rsrc_node_alloc+0x221/0x2b0
[  658.400097][T13903]  io_sqe_buffer_register+0xf1/0x1de0
[  658.400149][T13903]  ? __pfx_io_sqe_buffer_register+0x10/0x10
[  658.400176][T13903]  ? trace_kmalloc+0x2b/0xd0
[  658.400205][T13903]  ? __kvmalloc_node_noprof+0x296/0x620
[  658.400234][T13903]  ? iovec_from_user+0xbb/0x140
[  658.400264][T13903]  io_sqe_buffers_register+0x1ed/0x860
[  658.400299][T13903]  ? __pfx_io_sqe_buffers_register+0x10/0x10
[  658.400336][T13903]  ? __pfx___mutex_trylock_common+0x10/0x10
[  658.400369][T13903]  __io_uring_register+0x2248/0x2310
[  658.400393][T13903]  ? trace_contention_end+0xdd/0x130
[  658.400420][T13903]  ? __pfx___io_uring_register+0x10/0x10
[  658.400441][T13903]  ? __mutex_lock+0x1ca/0xb90
[  658.400467][T13903]  ? __x64_sys_io_uring_register+0x159/0x280
[  658.400494][T13903]  ? __pfx___mutex_lock+0x10/0x10
[  658.400525][T13903]  ? __fget_files+0x20e/0x3c0
[  658.400544][T13903]  ? __fput_deferred+0x360/0x370
[  658.400582][T13903]  __x64_sys_io_uring_register+0x169/0x280
[  658.400610][T13903]  do_syscall_64+0xcd/0x490
[  658.400636][T13903]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  658.400660][T13903] RIP: 0033:0x7f731a98e969
[  658.400679][T13903] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  658.400701][T13903] RSP: 002b:00007f731b783038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab
[  658.400722][T13903] RAX: ffffffffffffffda RBX: 00007f731abb6080 RCX: 00007f731a98e969
[  658.400737][T13903] RDX: 0000200000000000 RSI: 0000000000000000 RDI: 0000000000000002
[  658.400751][T13903] RBP: 00007f731b783090 R08: 0000000000000000 R09: 0000000000000000
[  658.400764][T13903] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001
[  658.400778][T13903] R13: 0000000000000000 R14: 00007f731abb6080 R15: 00007ffd608ff688
[  658.400806][T13903]  </TASK>
[  659.322509][T13913] ubi: mtd0 is already attached to ubi0
[  659.722969][T13920] FAULT_INJECTION: forcing a failure.
[  659.722969][T13920] name failslab, interval 1, probability 0, space 0, times 0
[  659.817318][T13920] CPU: 0 UID: 0 PID: 13920 Comm: syz.5.1550 Tainted: G     U              6.15.0-syzkaller-03589-gfeacb1774bd5 #0 PREEMPT(full) 
[  659.817370][T13920] Tainted: [U]=USER
[  659.817381][T13920] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  659.817398][T13920] Call Trace:
[  659.817409][T13920]  <TASK>
[  659.817421][T13920]  dump_stack_lvl+0x16c/0x1f0
[  659.817458][T13920]  should_fail_ex+0x512/0x640
[  659.817490][T13920]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  659.817532][T13920]  should_failslab+0xc2/0x120
[  659.817573][T13920]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  659.817608][T13920]  ? __pfx_map_id_range_down+0x10/0x10
[  659.817654][T13920]  ? prepare_creds+0x2c/0x7d0
[  659.817700][T13920]  prepare_creds+0x2c/0x7d0
[  659.817743][T13920]  __sys_setfsuid+0xda/0x350
[  659.817770][T13920]  ? rcu_is_watching+0x12/0xc0
[  659.817822][T13920]  do_syscall_64+0xcd/0x490
[  659.817858][T13920]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  659.817890][T13920] RIP: 0033:0x7f735c58e969
[  659.817914][T13920] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  659.817945][T13920] RSP: 002b:00007f735d37b038 EFLAGS: 00000246 ORIG_RAX: 000000000000007a
[  659.817975][T13920] RAX: ffffffffffffffda RBX: 00007f735c7b5fa0 RCX: 00007f735c58e969
[  659.818004][T13920] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000ee00
[  659.818023][T13920] RBP: 00007f735c610ab1 R08: 0000000000000000 R09: 0000000000000000
[  659.818042][T13920] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  659.818060][T13920] R13: 0000000000000000 R14: 00007f735c7b5fa0 R15: 00007ffe96dd3ea8
[  659.818101][T13920]  </TASK>
[  660.639767][T13922] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  660.646350][T13922] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  660.652826][T13922] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  660.660376][T13922] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  661.691621][T13951] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(5)
[  662.610088][T10919] Bluetooth: hci1: command 0x0c1a tx timeout
[  662.690273][T11321] Bluetooth: hci3: command 0x0c1a tx timeout
[  662.697254][T11321] Bluetooth: hci2: command 0x0c1a tx timeout
[  662.703753][T10919] Bluetooth: hci4: command 0x0c1a tx timeout
[  662.941491][T13969] FAULT_INJECTION: forcing a failure.
[  662.941491][T13969] name failslab, interval 1, probability 0, space 0, times 0
[  662.989275][T13969] CPU: 0 UID: 0 PID: 13969 Comm: syz.1.1560 Tainted: G     U              6.15.0-syzkaller-03589-gfeacb1774bd5 #0 PREEMPT(full) 
[  662.989335][T13969] Tainted: [U]=USER
[  662.989347][T13969] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  662.989368][T13969] Call Trace:
[  662.989378][T13969]  <TASK>
[  662.989391][T13969]  dump_stack_lvl+0x16c/0x1f0
[  662.989432][T13969]  should_fail_ex+0x512/0x640
[  662.989467][T13969]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  662.989510][T13969]  should_failslab+0xc2/0x120
[  662.989552][T13969]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  662.989593][T13969]  ? __pfx_map_id_range_down+0x10/0x10
[  662.989635][T13969]  ? prepare_creds+0x2c/0x7d0
[  662.989693][T13969]  prepare_creds+0x2c/0x7d0
[  662.989737][T13969]  __sys_setfsuid+0xda/0x350
[  662.989767][T13969]  ? rcu_is_watching+0x12/0xc0
[  662.989821][T13969]  do_syscall_64+0xcd/0x490
[  662.989860][T13969]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  662.989893][T13969] RIP: 0033:0x7fc97738e969
[  662.989919][T13969] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  662.989953][T13969] RSP: 002b:00007fc97818f038 EFLAGS: 00000246 ORIG_RAX: 000000000000007a
[  662.989986][T13969] RAX: ffffffffffffffda RBX: 00007fc9775b5fa0 RCX: 00007fc97738e969
[  662.990008][T13969] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000ee00
[  662.990027][T13969] RBP: 00007fc977410ab1 R08: 0000000000000000 R09: 0000000000000000
[  662.990048][T13969] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  662.990067][T13969] R13: 0000000000000000 R14: 00007fc9775b5fa0 R15: 00007ffc406d0ac8
[  662.990109][T13969]  </TASK>
[  664.072767][T13988] Debayer B: =================  START STATUS  =================
[  664.072795][T13988] Debayer B: Debayer Mean Window Size: 3
[  664.072880][T13988] Debayer B: ==================  END STATUS  ==================
[  665.098533][T14003] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  665.105410][T14003] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  665.112195][T14003] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  665.118537][T14003] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  666.048697][T14021] FAULT_INJECTION: forcing a failure.
[  666.048697][T14021] name failslab, interval 1, probability 0, space 0, times 0
[  666.116025][T14021] CPU: 0 UID: 0 PID: 14021 Comm: syz.2.1572 Tainted: G     U              6.15.0-syzkaller-03589-gfeacb1774bd5 #0 PREEMPT(full) 
[  666.116087][T14021] Tainted: [U]=USER
[  666.116099][T14021] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  666.116119][T14021] Call Trace:
[  666.116129][T14021]  <TASK>
[  666.116142][T14021]  dump_stack_lvl+0x16c/0x1f0
[  666.116184][T14021]  should_fail_ex+0x512/0x640
[  666.116250][T14021]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  666.116297][T14021]  should_failslab+0xc2/0x120
[  666.116343][T14021]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  666.116383][T14021]  ? __pfx_map_id_range_down+0x10/0x10
[  666.116438][T14021]  ? prepare_creds+0x2c/0x7d0
[  666.116491][T14021]  prepare_creds+0x2c/0x7d0
[  666.116539][T14021]  __sys_setfsuid+0xda/0x350
[  666.116571][T14021]  ? rcu_is_watching+0x12/0xc0
[  666.116627][T14021]  do_syscall_64+0xcd/0x490
[  666.116668][T14021]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  666.116704][T14021] RIP: 0033:0x7f731a98e969
[  666.116733][T14021] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  666.116767][T14021] RSP: 002b:00007f731b7a4038 EFLAGS: 00000246 ORIG_RAX: 000000000000007a
[  666.116800][T14021] RAX: ffffffffffffffda RBX: 00007f731abb5fa0 RCX: 00007f731a98e969
[  666.116824][T14021] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000ee00
[  666.116843][T14021] RBP: 00007f731aa10ab1 R08: 0000000000000000 R09: 0000000000000000
[  666.116865][T14021] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  666.116885][T14021] R13: 0000000000000000 R14: 00007f731abb5fa0 R15: 00007ffd608ff688
[  666.116930][T14021]  </TASK>
[  666.562798][T14027] FAULT_INJECTION: forcing a failure.
[  666.562798][T14027] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  666.610357][T14027] CPU: 0 UID: 0 PID: 14027 Comm: syz.2.1574 Tainted: G     U              6.15.0-syzkaller-03589-gfeacb1774bd5 #0 PREEMPT(full) 
[  666.610411][T14027] Tainted: [U]=USER
[  666.610421][T14027] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  666.610440][T14027] Call Trace:
[  666.610449][T14027]  <TASK>
[  666.610461][T14027]  dump_stack_lvl+0x16c/0x1f0
[  666.610499][T14027]  should_fail_ex+0x512/0x640
[  666.610539][T14027]  strncpy_from_user+0x3b/0x2e0
[  666.610596][T14027]  getname_flags.part.0+0x8f/0x550
[  666.610649][T14027]  getname_flags+0x93/0xf0
[  666.610681][T14027]  do_sys_openat2+0xb8/0x1d0
[  666.610725][T14027]  ? __pfx_do_sys_openat2+0x10/0x10
[  666.610771][T14027]  ? find_held_lock+0x2b/0x80
[  666.610831][T14027]  __x64_sys_openat+0x174/0x210
[  666.610877][T14027]  ? __pfx___x64_sys_openat+0x10/0x10
[  666.610941][T14027]  do_syscall_64+0xcd/0x490
[  666.610978][T14027]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  666.611010][T14027] RIP: 0033:0x7f731a98d2d0
[  666.611035][T14027] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[  666.611067][T14027] RSP: 002b:00007f731b7a3fe0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  666.611098][T14027] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f731a98d2d0
[  666.611118][T14027] RDX: 0000000000000002 RSI: 00007f731aa10d96 RDI: 00000000ffffff9c
[  666.611138][T14027] RBP: 00007f731aa10d96 R08: 0000000000000000 R09: 00007f731b7a5000
[  666.611157][T14027] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  666.611176][T14027] R13: 0000000000000000 R14: 00007f731abb5fa0 R15: 00007ffd608ff688
[  666.611217][T14027]  </TASK>
[  666.961309][T13965] Bluetooth: hci1: command 0x0c1a tx timeout
[  667.169777][T13965] Bluetooth: hci4: command 0x0c1a tx timeout
[  667.176124][T10931] Bluetooth: hci3: command 0x0c1a tx timeout
[  667.189686][T10919] Bluetooth: hci2: command 0x0c1a tx timeout
[  667.371895][T14034] FAULT_INJECTION: forcing a failure.
[  667.371895][T14034] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  667.474360][T14034] CPU: 0 UID: 0 PID: 14034 Comm: syz.2.1575 Tainted: G     U              6.15.0-syzkaller-03589-gfeacb1774bd5 #0 PREEMPT(full) 
[  667.474416][T14034] Tainted: [U]=USER
[  667.474428][T14034] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  667.474449][T14034] Call Trace:
[  667.474460][T14034]  <TASK>
[  667.474472][T14034]  dump_stack_lvl+0x16c/0x1f0
[  667.474522][T14034]  should_fail_ex+0x512/0x640
[  667.474565][T14034]  should_fail_alloc_page+0xe7/0x130
[  667.474611][T14034]  prepare_alloc_pages+0x3c2/0x610
[  667.474662][T14034]  ? rcu_is_watching+0x12/0xc0
[  667.474715][T14034]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  667.474758][T14034]  ? __lock_acquire+0xb8a/0x1c90
[  667.474812][T14034]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  667.474852][T14034]  ? do_raw_spin_lock+0x12c/0x2b0
[  667.474896][T14034]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  667.474940][T14034]  ? find_held_lock+0x2b/0x80
[  667.475002][T14034]  ? __lock_acquire+0xb8a/0x1c90
[  667.475038][T14034]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  667.475085][T14034]  ? policy_nodemask+0xea/0x4e0
[  667.475130][T14034]  alloc_pages_mpol+0x1fb/0x550
[  667.475175][T14034]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  667.475230][T14034]  folio_alloc_mpol_noprof+0x36/0x2f0
[  667.475301][T14034]  shmem_alloc_folio+0x135/0x160
[  667.475357][T14034]  shmem_alloc_and_add_folio+0x499/0xc20
[  667.475403][T14034]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  667.475447][T14034]  ? shmem_allowable_huge_orders+0xcb/0x2f0
[  667.475492][T14034]  shmem_get_folio_gfp+0x67f/0x1600
[  667.475548][T14034]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  667.475589][T14034]  ? __lock_acquire+0x622/0x1c90
[  667.475631][T14034]  shmem_fault+0x1fe/0xa30
[  667.475670][T14034]  ? __pfx_shmem_fault+0x10/0x10
[  667.475716][T14034]  ? __lock_acquire+0xb8a/0x1c90
[  667.475764][T14034]  __do_fault+0x10d/0x490
[  667.475804][T14034]  ? __pfx_filemap_map_pages+0x10/0x10
[  667.475845][T14034]  __handle_mm_fault+0x33b8/0x5450
[  667.475890][T14034]  ? __pfx___handle_mm_fault+0x10/0x10
[  667.475922][T14034]  ? __pte_offset_map_lock+0x174/0x310
[  667.475969][T14034]  ? find_held_lock+0x2b/0x80
[  667.476015][T14034]  ? find_held_lock+0x2b/0x80
[  667.476091][T14034]  handle_mm_fault+0x3fe/0xad0
[  667.476133][T14034]  __get_user_pages+0x570/0x3bb0
[  667.476201][T14034]  ? __pfx___get_user_pages+0x10/0x10
[  667.476252][T14034]  ? __pfx_down_read_killable+0x10/0x10
[  667.476307][T14034]  faultin_page_range+0x249/0x980
[  667.476370][T14034]  madvise_do_behavior+0x233/0x3b0
[  667.476421][T14034]  ? __pfx_madvise_do_behavior+0x10/0x10
[  667.476479][T14034]  ? fput+0x70/0xf0
[  667.476535][T14034]  do_madvise+0x10b/0x170
[  667.476584][T14034]  __x64_sys_madvise+0xa9/0x110
[  667.476630][T14034]  ? lockdep_hardirqs_on+0x7c/0x110
[  667.476661][T14034]  do_syscall_64+0xcd/0x490
[  667.476698][T14034]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  667.476732][T14034] RIP: 0033:0x7f731a98e969
[  667.476759][T14034] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  667.476792][T14034] RSP: 002b:00007f731b783038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[  667.476823][T14034] RAX: ffffffffffffffda RBX: 00007f731abb6080 RCX: 00007f731a98e969
[  667.476844][T14034] RDX: 0000000000000017 RSI: 0000000000100000 RDI: 0000000000000000
[  667.476862][T14034] RBP: 00007f731aa10ab1 R08: 0000000000000000 R09: 0000000000000000
[  667.476881][T14034] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  667.476899][T14034] R13: 0000000000000000 R14: 00007f731abb6080 R15: 00007ffd608ff688
[  667.476940][T14034]  </TASK>
[  668.296178][T14049] FAULT_INJECTION: forcing a failure.
[  668.296178][T14049] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  668.318441][T14049] CPU: 0 UID: 0 PID: 14049 Comm: syz.2.1580 Tainted: G     U              6.15.0-syzkaller-03589-gfeacb1774bd5 #0 PREEMPT(full) 
[  668.318492][T14049] Tainted: [U]=USER
[  668.318503][T14049] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  668.318521][T14049] Call Trace:
[  668.318531][T14049]  <TASK>
[  668.318544][T14049]  dump_stack_lvl+0x16c/0x1f0
[  668.318581][T14049]  should_fail_ex+0x512/0x640
[  668.318620][T14049]  should_fail_alloc_page+0xe7/0x130
[  668.318663][T14049]  prepare_alloc_pages+0x3c2/0x610
[  668.318712][T14049]  ? rcu_is_watching+0x12/0xc0
[  668.318763][T14049]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  668.318804][T14049]  ? __lock_acquire+0xb8a/0x1c90
[  668.318856][T14049]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  668.318896][T14049]  ? do_raw_spin_lock+0x12c/0x2b0
[  668.318938][T14049]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  668.318981][T14049]  ? find_held_lock+0x2b/0x80
[  668.319040][T14049]  ? __lock_acquire+0xb8a/0x1c90
[  668.319075][T14049]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  668.319117][T14049]  ? policy_nodemask+0xea/0x4e0
[  668.319160][T14049]  alloc_pages_mpol+0x1fb/0x550
[  668.319203][T14049]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  668.319255][T14049]  folio_alloc_mpol_noprof+0x36/0x2f0
[  668.319313][T14049]  shmem_alloc_folio+0x135/0x160
[  668.319366][T14049]  shmem_alloc_and_add_folio+0x499/0xc20
[  668.319411][T14049]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  668.319452][T14049]  ? shmem_allowable_huge_orders+0xcb/0x2f0
[  668.319498][T14049]  shmem_get_folio_gfp+0x67f/0x1600
[  668.319546][T14049]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  668.319590][T14049]  ? __pfx___might_resched+0x10/0x10
[  668.319649][T14049]  shmem_fallocate+0x795/0xf50
[  668.319714][T14049]  ? __pfx_shmem_fallocate+0x10/0x10
[  668.319749][T14049]  ? aa_file_perm+0x4d6/0xfb0
[  668.319813][T14049]  ? __lock_acquire+0xb8a/0x1c90
[  668.319854][T14049]  ? __lock_acquire+0x622/0x1c90
[  668.319915][T14049]  ? __pfx_shmem_fallocate+0x10/0x10
[  668.319955][T14049]  vfs_fallocate+0x60b/0x10c0
[  668.319995][T14049]  ? __pfx_vfs_fallocate+0x10/0x10
[  668.320044][T14049]  __x64_sys_fallocate+0xd5/0x150
[  668.320085][T14049]  do_syscall_64+0xcd/0x490
[  668.320123][T14049]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  668.320156][T14049] RIP: 0033:0x7f731a98e969
[  668.320183][T14049] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  668.320216][T14049] RSP: 002b:00007f731b7a4038 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[  668.320246][T14049] RAX: ffffffffffffffda RBX: 00007f731abb5fa0 RCX: 00007f731a98e969
[  668.320275][T14049] RDX: 0000000000000009 RSI: 0000000000000000 RDI: 8000000000000003
[  668.320295][T14049] RBP: 00007f731b7a4090 R08: 0000000000000000 R09: 0000000000000000
[  668.320314][T14049] R10: 00000000004cbd5d R11: 0000000000000246 R12: 0000000000000002
[  668.320334][T14049] R13: 0000000000000000 R14: 00007f731abb5fa0 R15: 00007ffd608ff688
[  668.320376][T14049]  </TASK>
[  671.455329][T14096] .SR: entered promiscuous mode
[  671.558516][T14096] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input27
[  671.676005][T14099] netlink: 'syz.5.1588': attribute type 1 has an invalid length.
[  671.685515][T14099] netlink: 33 bytes leftover after parsing attributes in process `syz.5.1588'.
[  673.208305][T14120] FAULT_INJECTION: forcing a failure.
[  673.208305][T14120] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  673.294191][T14125] FAULT_INJECTION: forcing a failure.
[  673.294191][T14125] name failslab, interval 1, probability 0, space 0, times 0
[  673.335488][T14120] CPU: 0 UID: 0 PID: 14120 Comm: syz.1.1595 Tainted: G     U              6.15.0-syzkaller-03589-gfeacb1774bd5 #0 PREEMPT(full) 
[  673.335543][T14120] Tainted: [U]=USER
[  673.335554][T14120] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  673.335573][T14120] Call Trace:
[  673.335583][T14120]  <TASK>
[  673.335595][T14120]  dump_stack_lvl+0x16c/0x1f0
[  673.335635][T14120]  should_fail_ex+0x512/0x640
[  673.335676][T14120]  should_fail_alloc_page+0xe7/0x130
[  673.335720][T14120]  prepare_alloc_pages+0x3c2/0x610
[  673.335778][T14120]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  673.335834][T14120]  ? __lock_acquire+0x622/0x1c90
[  673.335875][T14120]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  673.335917][T14120]  ? xa_load+0x153/0x2c0
[  673.335974][T14120]  ? filemap_get_entry+0x1a7/0x3b0
[  673.336023][T14120]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  673.336069][T14120]  ? policy_nodemask+0xea/0x4e0
[  673.336113][T14120]  alloc_pages_mpol+0x1fb/0x550
[  673.336157][T14120]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  673.336198][T14120]  ? _raw_spin_unlock+0x28/0x50
[  673.336246][T14120]  ? swap_entry_swapped+0x122/0x190
[  673.336286][T14120]  ? __pfx_swap_entry_swapped+0x10/0x10
[  673.336334][T14120]  folio_alloc_mpol_noprof+0x36/0x2f0
[  673.336386][T14120]  __read_swap_cache_async+0x3b6/0x5a0
[  673.336428][T14120]  ? __pfx___read_swap_cache_async+0x10/0x10
[  673.336462][T14120]  ? xas_move_index+0xb0/0x110
[  673.336492][T14120]  ? swp_swap_info+0x60/0x130
[  673.336535][T14120]  ? __pfx_swp_swap_info+0x10/0x10
[  673.336589][T14120]  swap_cluster_readahead+0x3eb/0x710
[  673.336634][T14120]  ? __pfx_swap_cluster_readahead+0x10/0x10
[  673.336698][T14120]  ? get_vma_policy+0x242/0x3c0
[  673.336746][T14120]  swapin_readahead+0x13a/0xd60
[  673.336794][T14120]  ? __pfx_swapin_readahead+0x10/0x10
[  673.336827][T14120]  ? __filemap_get_folio+0x333/0xc10
[  673.336881][T14120]  ? swap_cache_get_folio+0x1df/0x450
[  673.336917][T14120]  ? __pfx_swap_cache_get_folio+0x10/0x10
[  673.336947][T14120]  ? __pfx_get_swap_device+0x10/0x10
[  673.336999][T14120]  ? do_swap_page+0x125/0x61c0
[  673.337053][T14120]  do_swap_page+0x5b7/0x61c0
[  673.337105][T14120]  ? __lock_acquire+0x622/0x1c90
[  673.337157][T14120]  ? __pfx_do_swap_page+0x10/0x10
[  673.337210][T14120]  ? __pfx_default_wake_function+0x10/0x10
[  673.337262][T14120]  ? __lock_acquire+0xb8a/0x1c90
[  673.337303][T14120]  ? rcu_is_watching+0x12/0xc0
[  673.337353][T14120]  ? ___pte_offset_map+0x1d5/0x570
[  673.337409][T14120]  __handle_mm_fault+0x162f/0x5450
[  673.337455][T14120]  ? __pfx___handle_mm_fault+0x10/0x10
[  673.337489][T14120]  ? __pte_offset_map_lock+0x174/0x310
[  673.337534][T14120]  ? find_held_lock+0x2b/0x80
[  673.337582][T14120]  ? find_held_lock+0x2b/0x80
[  673.337658][T14120]  handle_mm_fault+0x3fe/0xad0
[  673.337701][T14120]  __get_user_pages+0x570/0x3bb0
[  673.337770][T14120]  ? __pfx___get_user_pages+0x10/0x10
[  673.337819][T14120]  ? __pfx_down_read_killable+0x10/0x10
[  673.337874][T14120]  __gup_longterm_locked+0x5e7/0x1850
[  673.337930][T14120]  ? find_held_lock+0x2b/0x80
[  673.337988][T14120]  ? __pfx___gup_longterm_locked+0x10/0x10
[  673.338041][T14120]  ? try_get_folio+0x255/0x730
[  673.338085][T14120]  ? find_held_lock+0x2b/0x80
[  673.338135][T14120]  ? sanity_check_pinned_pages+0x3bf/0x1200
[  673.338193][T14120]  gup_fast_fallback+0x1ab3/0x29e0
[  673.338276][T14120]  ? __pfx_gup_fast_fallback+0x10/0x10
[  673.338332][T14120]  ? ___kmalloc_large_node+0x183/0x1e0
[  673.338380][T14120]  ? lockdep_hardirqs_on+0x7c/0x110
[  673.338419][T14120]  ? rcu_is_watching+0x12/0xc0
[  673.338475][T14120]  pin_user_pages_fast+0xa7/0xf0
[  673.338527][T14120]  ? __pfx_pin_user_pages_fast+0x10/0x10
[  673.338593][T14120]  io_pin_pages+0xe1/0x1e0
[  673.338629][T14120]  io_sqe_buffer_register+0x15c/0x1de0
[  673.338696][T14120]  ? __pfx_io_sqe_buffer_register+0x10/0x10
[  673.338736][T14120]  ? trace_kmalloc+0x2b/0xd0
[  673.338778][T14120]  ? __kvmalloc_node_noprof+0x296/0x620
[  673.338819][T14120]  ? iovec_from_user+0xbb/0x140
[  673.338863][T14120]  io_sqe_buffers_register+0x1ed/0x860
[  673.338915][T14120]  ? __pfx_io_sqe_buffers_register+0x10/0x10
[  673.338977][T14120]  ? __pfx___mutex_trylock_common+0x10/0x10
[  673.339024][T14120]  __io_uring_register+0x2248/0x2310
[  673.339061][T14120]  ? trace_contention_end+0xdd/0x130
[  673.339100][T14120]  ? __pfx___io_uring_register+0x10/0x10
[  673.339132][T14120]  ? __mutex_lock+0x1ca/0xb90
[  673.339170][T14120]  ? __x64_sys_io_uring_register+0x159/0x280
[  673.339209][T14120]  ? __pfx___mutex_lock+0x10/0x10
[  673.339256][T14120]  ? __fget_files+0x20e/0x3c0
[  673.339286][T14120]  ? __fput_deferred+0x360/0x370
[  673.339341][T14120]  __x64_sys_io_uring_register+0x169/0x280
[  673.339384][T14120]  do_syscall_64+0xcd/0x490
[  673.339422][T14120]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  673.339456][T14120] RIP: 0033:0x7fc97738e969
[  673.339484][T14120] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  673.339517][T14120] RSP: 002b:00007fc97816e038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab
[  673.339549][T14120] RAX: ffffffffffffffda RBX: 00007fc9775b6080 RCX: 00007fc97738e969
[  673.339575][T14120] RDX: 0000200000000000 RSI: 0000000000000000 RDI: 0000000000000002
[  673.339594][T14120] RBP: 00007fc97816e090 R08: 0000000000000000 R09: 0000000000000000
[  673.339614][T14120] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001
[  673.339631][T14120] R13: 0000000000000000 R14: 00007fc9775b6080 R15: 00007ffc406d0ac8
[  673.339673][T14120]  </TASK>
[  673.599571][T14125] CPU: 1 UID: 0 PID: 14125 Comm: syz.5.1597 Tainted: G     U              6.15.0-syzkaller-03589-gfeacb1774bd5 #0 PREEMPT(full) 
[  673.599637][T14125] Tainted: [U]=USER
[  673.599650][T14125] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  673.599674][T14125] Call Trace:
[  673.599686][T14125]  <TASK>
[  673.599701][T14125]  dump_stack_lvl+0x16c/0x1f0
[  673.599748][T14125]  should_fail_ex+0x512/0x640
[  673.599791][T14125]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  673.599845][T14125]  should_failslab+0xc2/0x120
[  673.599895][T14125]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  673.599939][T14125]  ? __pfx_map_id_range_down+0x10/0x10
[  673.599994][T14125]  ? prepare_creds+0x2c/0x7d0
[  673.600053][T14125]  prepare_creds+0x2c/0x7d0
[  673.600106][T14125]  __sys_setfsuid+0xda/0x350
[  673.600140][T14125]  ? rcu_is_watching+0x12/0xc0
[  673.600203][T14125]  do_syscall_64+0xcd/0x490
[  673.600248][T14125]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  673.600288][T14125] RIP: 0033:0x7f735c58e969
[  673.600319][T14125] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  673.600355][T14125] RSP: 002b:00007f735d37b038 EFLAGS: 00000246 ORIG_RAX: 000000000000007a
[  673.600392][T14125] RAX: ffffffffffffffda RBX: 00007f735c7b5fa0 RCX: 00007f735c58e969
[  673.600420][T14125] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000ee00
[  673.600445][T14125] RBP: 00007f735c610ab1 R08: 0000000000000000 R09: 0000000000000000
[  673.600469][T14125] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  673.600493][T14125] R13: 0000000000000000 R14: 00007f735c7b5fa0 R15: 00007ffe96dd3ea8
[  673.600541][T14125]  </TASK>
[  677.057432][T14170] Invalid ELF header magic: != ELF
[  678.455110][T14193] netlink: 13 bytes leftover after parsing attributes in process `syz.2.1611'.
[  681.803171][   T30] audit: type=1800 audit(4295005368.446:22): pid=14255 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.1626" name="dbroot" dev="configfs" ino=47983 res=0 errno=0
[  681.828955][T14255] db_root: not a directory: /dev/audio1
[  681.873076][T14255] FAULT_INJECTION: forcing a failure.
[  681.873076][T14255] name failslab, interval 1, probability 0, space 0, times 0
[  681.886445][T14255] CPU: 1 UID: 0 PID: 14255 Comm: syz.5.1626 Tainted: G     U              6.15.0-syzkaller-03589-gfeacb1774bd5 #0 PREEMPT(full) 
[  681.886505][T14255] Tainted: [U]=USER
[  681.886518][T14255] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  681.886540][T14255] Call Trace:
[  681.886552][T14255]  <TASK>
[  681.886565][T14255]  dump_stack_lvl+0x16c/0x1f0
[  681.886608][T14255]  should_fail_ex+0x512/0x640
[  681.886643][T14255]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  681.886687][T14255]  should_failslab+0xc2/0x120
[  681.886730][T14255]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  681.886769][T14255]  ? __pfx_map_id_range_down+0x10/0x10
[  681.886811][T14255]  ? prepare_creds+0x2c/0x7d0
[  681.886859][T14255]  prepare_creds+0x2c/0x7d0
[  681.886912][T14255]  __sys_setfsuid+0xda/0x350
[  681.886943][T14255]  ? rcu_is_watching+0x12/0xc0
[  681.886998][T14255]  do_syscall_64+0xcd/0x490
[  681.887037][T14255]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  681.887072][T14255] RIP: 0033:0x7f735c58e969
[  681.887101][T14255] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  681.887136][T14255] RSP: 002b:00007f735d37b038 EFLAGS: 00000246 ORIG_RAX: 000000000000007a
[  681.887170][T14255] RAX: ffffffffffffffda RBX: 00007f735c7b5fa0 RCX: 00007f735c58e969
[  681.887192][T14255] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000ee00
[  681.887216][T14255] RBP: 00007f735c610ab1 R08: 0000000000000000 R09: 0000000000000000
[  681.887237][T14255] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  681.887257][T14255] R13: 0000000000000000 R14: 00007f735c7b5fa0 R15: 00007ffe96dd3ea8
[  681.887300][T14255]  </TASK>
[  684.191522][T14292] FAULT_INJECTION: forcing a failure.
[  684.191522][T14292] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  684.264582][T14292] CPU: 1 UID: 0 PID: 14292 Comm: syz.5.1633 Tainted: G     U              6.15.0-syzkaller-03589-gfeacb1774bd5 #0 PREEMPT(full) 
[  684.264629][T14292] Tainted: [U]=USER
[  684.264637][T14292] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  684.264651][T14292] Call Trace:
[  684.264659][T14292]  <TASK>
[  684.264669][T14292]  dump_stack_lvl+0x16c/0x1f0
[  684.264697][T14292]  should_fail_ex+0x512/0x640
[  684.264727][T14292]  should_fail_alloc_page+0xe7/0x130
[  684.264759][T14292]  prepare_alloc_pages+0x3c2/0x610
[  684.264800][T14292]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  684.264839][T14292]  ? __lock_acquire+0x622/0x1c90
[  684.264868][T14292]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  684.264904][T14292]  ? xa_load+0x153/0x2c0
[  684.264940][T14292]  ? filemap_get_entry+0x1a7/0x3b0
[  684.264976][T14292]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  684.265010][T14292]  ? policy_nodemask+0xea/0x4e0
[  684.265042][T14292]  alloc_pages_mpol+0x1fb/0x550
[  684.265075][T14292]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  684.265104][T14292]  ? _raw_spin_unlock+0x28/0x50
[  684.265139][T14292]  ? swap_entry_swapped+0x122/0x190
[  684.265169][T14292]  ? __pfx_swap_entry_swapped+0x10/0x10
[  684.265206][T14292]  folio_alloc_mpol_noprof+0x36/0x2f0
[  684.265242][T14292]  __read_swap_cache_async+0x3b6/0x5a0
[  684.265272][T14292]  ? __pfx___read_swap_cache_async+0x10/0x10
[  684.265296][T14292]  ? xas_move_index+0xb0/0x110
[  684.265317][T14292]  ? swp_swap_info+0x60/0x130
[  684.265347][T14292]  ? __pfx_swp_swap_info+0x10/0x10
[  684.265385][T14292]  swap_cluster_readahead+0x3eb/0x710
[  684.265416][T14292]  ? __pfx_swap_cluster_readahead+0x10/0x10
[  684.265460][T14292]  ? get_vma_policy+0x242/0x3c0
[  684.265493][T14292]  swapin_readahead+0x13a/0xd60
[  684.265526][T14292]  ? __pfx_swapin_readahead+0x10/0x10
[  684.265549][T14292]  ? __filemap_get_folio+0x333/0xc10
[  684.265588][T14292]  ? swap_cache_get_folio+0x1df/0x450
[  684.265612][T14292]  ? __pfx_swap_cache_get_folio+0x10/0x10
[  684.265634][T14292]  ? __pfx_get_swap_device+0x10/0x10
[  684.265663][T14292]  ? do_swap_page+0x125/0x61c0
[  684.265701][T14292]  do_swap_page+0x5b7/0x61c0
[  684.265737][T14292]  ? __lock_acquire+0x622/0x1c90
[  684.265772][T14292]  ? __pfx_do_swap_page+0x10/0x10
[  684.265809][T14292]  ? __pfx_default_wake_function+0x10/0x10
[  684.265846][T14292]  ? __lock_acquire+0xb8a/0x1c90
[  684.265876][T14292]  ? rcu_is_watching+0x12/0xc0
[  684.265915][T14292]  ? ___pte_offset_map+0x1d5/0x570
[  684.265954][T14292]  __handle_mm_fault+0x162f/0x5450
[  684.265986][T14292]  ? __pfx___handle_mm_fault+0x10/0x10
[  684.266009][T14292]  ? __pte_offset_map_lock+0x174/0x310
[  684.266042][T14292]  ? find_held_lock+0x2b/0x80
[  684.266075][T14292]  ? find_held_lock+0x2b/0x80
[  684.266128][T14292]  handle_mm_fault+0x3fe/0xad0
[  684.266157][T14292]  __get_user_pages+0x570/0x3bb0
[  684.266205][T14292]  ? __pfx___get_user_pages+0x10/0x10
[  684.266242][T14292]  ? __pfx_down_read_killable+0x10/0x10
[  684.266280][T14292]  __gup_longterm_locked+0x5e7/0x1850
[  684.266320][T14292]  ? find_held_lock+0x2b/0x80
[  684.266357][T14292]  ? __pfx___gup_longterm_locked+0x10/0x10
[  684.266396][T14292]  ? try_get_folio+0x255/0x730
[  684.266428][T14292]  ? find_held_lock+0x2b/0x80
[  684.266462][T14292]  ? sanity_check_pinned_pages+0x3bf/0x1200
[  684.266503][T14292]  gup_fast_fallback+0x1ab3/0x29e0
[  684.266561][T14292]  ? __pfx_gup_fast_fallback+0x10/0x10
[  684.266601][T14292]  ? ___kmalloc_large_node+0x183/0x1e0
[  684.266635][T14292]  ? lockdep_hardirqs_on+0x7c/0x110
[  684.266662][T14292]  ? rcu_is_watching+0x12/0xc0
[  684.266701][T14292]  pin_user_pages_fast+0xa7/0xf0
[  684.266738][T14292]  ? __pfx_pin_user_pages_fast+0x10/0x10
[  684.266784][T14292]  io_pin_pages+0xe1/0x1e0
[  684.266809][T14292]  io_sqe_buffer_register+0x15c/0x1de0
[  684.266856][T14292]  ? __pfx_io_sqe_buffer_register+0x10/0x10
[  684.266890][T14292]  ? trace_kmalloc+0x2b/0xd0
[  684.266921][T14292]  ? __kvmalloc_node_noprof+0x296/0x620
[  684.266949][T14292]  ? iovec_from_user+0xbb/0x140
[  684.266980][T14292]  io_sqe_buffers_register+0x1ed/0x860
[  684.267015][T14292]  ? __pfx_io_sqe_buffers_register+0x10/0x10
[  684.267052][T14292]  ? __pfx___mutex_trylock_common+0x10/0x10
[  684.267083][T14292]  __io_uring_register+0x2248/0x2310
[  684.267108][T14292]  ? trace_contention_end+0xdd/0x130
[  684.267135][T14292]  ? __pfx___io_uring_register+0x10/0x10
[  684.267156][T14292]  ? __mutex_lock+0x1ca/0xb90
[  684.267181][T14292]  ? __x64_sys_io_uring_register+0x159/0x280
[  684.267207][T14292]  ? __pfx___mutex_lock+0x10/0x10
[  684.267239][T14292]  ? __fget_files+0x20e/0x3c0
[  684.267259][T14292]  ? __fput_deferred+0x360/0x370
[  684.267296][T14292]  __x64_sys_io_uring_register+0x169/0x280
[  684.267324][T14292]  do_syscall_64+0xcd/0x490
[  684.267351][T14292]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  684.267374][T14292] RIP: 0033:0x7f735c58e969
[  684.267392][T14292] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  684.267416][T14292] RSP: 002b:00007f735d35a038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab
[  684.267438][T14292] RAX: ffffffffffffffda RBX: 00007f735c7b6080 RCX: 00007f735c58e969
[  684.267453][T14292] RDX: 0000200000000000 RSI: 0000000000000000 RDI: 0000000000000002
[  684.267467][T14292] RBP: 00007f735d35a090 R08: 0000000000000000 R09: 0000000000000000
[  684.267482][T14292] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001
[  684.267497][T14292] R13: 0000000000000000 R14: 00007f735c7b6080 R15: 00007ffe96dd3ea8
[  684.267529][T14292]  </TASK>
[  685.258421][T14297] program syz.3.1635 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  685.344356][T14297] Format for linking two devices is "netnsfd_a:ifidx_a netnsfd_b:ifidx_b" (int uint int uint).
[  685.751286][T14294] Invalid ELF header magic: != ELF
[  686.987930][T14323] FAULT_INJECTION: forcing a failure.
[  686.987930][T14323] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  687.050031][T14323] CPU: 1 UID: 0 PID: 14323 Comm: syz.1.1640 Tainted: G     U              6.15.0-syzkaller-03589-gfeacb1774bd5 #0 PREEMPT(full) 
[  687.050083][T14323] Tainted: [U]=USER
[  687.050095][T14323] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  687.050115][T14323] Call Trace:
[  687.050126][T14323]  <TASK>
[  687.050140][T14323]  dump_stack_lvl+0x16c/0x1f0
[  687.050177][T14323]  should_fail_ex+0x512/0x640
[  687.050217][T14323]  _copy_from_user+0x2e/0xd0
[  687.050257][T14323]  __sys_bpf+0x21d/0x4d80
[  687.050307][T14323]  ? __pfx___sys_bpf+0x10/0x10
[  687.050351][T14323]  ? ksys_write+0x190/0x250
[  687.050392][T14323]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  687.050452][T14323]  ? fput+0x70/0xf0
[  687.050501][T14323]  ? ksys_write+0x1ac/0x250
[  687.050532][T14323]  ? __pfx_ksys_write+0x10/0x10
[  687.050573][T14323]  __x64_sys_bpf+0x78/0xc0
[  687.050616][T14323]  ? lockdep_hardirqs_on+0x7c/0x110
[  687.050647][T14323]  do_syscall_64+0xcd/0x490
[  687.050684][T14323]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  687.050717][T14323] RIP: 0033:0x7fc97738e969
[  687.050742][T14323] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  687.050774][T14323] RSP: 002b:00007fc97818f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  687.050806][T14323] RAX: ffffffffffffffda RBX: 00007fc9775b5fa0 RCX: 00007fc97738e969
[  687.050828][T14323] RDX: 0000000000000198 RSI: 0000200000000100 RDI: 0000000000000000
[  687.050849][T14323] RBP: 00007fc97818f090 R08: 0000000000000000 R09: 0000000000000000
[  687.050869][T14323] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  687.050888][T14323] R13: 0000000000000001 R14: 00007fc9775b5fa0 R15: 00007ffc406d0ac8
[  687.050931][T14323]  </TASK>
[  687.359884][T14327] device-mapper: ioctl: Invalid data size in the ioctl structure: 0
[  687.439771][T14327] input: jJǸ���;9�%v����l��Q�	J86�� as /devices/virtual/input/input28
[  688.363248][T14333] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  688.387645][T14333] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  688.394148][T14333] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  688.400545][T14333] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  689.468984][T14359] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1647'.
[  689.527098][T14359] netlink: 302 bytes leftover after parsing attributes in process `syz.2.1647'.
[  689.684351][T14359] netlink: 'syz.2.1647': attribute type 4 has an invalid length.
[  689.702129][T14359] netlink: 314 bytes leftover after parsing attributes in process `syz.2.1647'.
[  689.784850][T14363] FAULT_INJECTION: forcing a failure.
[  689.784850][T14363] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  689.829744][T14363] CPU: 0 UID: 0 PID: 14363 Comm: syz.5.1646 Tainted: G     U              6.15.0-syzkaller-03589-gfeacb1774bd5 #0 PREEMPT(full) 
[  689.829797][T14363] Tainted: [U]=USER
[  689.829809][T14363] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  689.829828][T14363] Call Trace:
[  689.829839][T14363]  <TASK>
[  689.829852][T14363]  dump_stack_lvl+0x16c/0x1f0
[  689.829891][T14363]  should_fail_ex+0x512/0x640
[  689.829932][T14363]  should_fail_alloc_page+0xe7/0x130
[  689.829978][T14363]  prepare_alloc_pages+0x3c2/0x610
[  689.830034][T14363]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  689.830092][T14363]  ? __lock_acquire+0x622/0x1c90
[  689.830132][T14363]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  689.830189][T14363]  ? filemap_get_entry+0x1a7/0x3b0
[  689.830237][T14363]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  689.830283][T14363]  ? policy_nodemask+0xea/0x4e0
[  689.830328][T14363]  alloc_pages_mpol+0x1fb/0x550
[  689.830391][T14363]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  689.830433][T14363]  ? _raw_spin_unlock+0x28/0x50
[  689.830484][T14363]  ? swap_entry_swapped+0x122/0x190
[  689.830526][T14363]  ? __pfx_swap_entry_swapped+0x10/0x10
[  689.830573][T14363]  folio_alloc_mpol_noprof+0x36/0x2f0
[  689.830623][T14363]  __read_swap_cache_async+0x3b6/0x5a0
[  689.830664][T14363]  ? __pfx___read_swap_cache_async+0x10/0x10
[  689.830698][T14363]  ? xas_move_index+0xb0/0x110
[  689.830727][T14363]  ? swp_swap_info+0xce/0x130
[  689.830768][T14363]  ? __pfx_swp_swap_info+0x10/0x10
[  689.830824][T14363]  swap_cluster_readahead+0x3eb/0x710
[  689.830868][T14363]  ? __pfx_swap_cluster_readahead+0x10/0x10
[  689.830930][T14363]  ? get_vma_policy+0x242/0x3c0
[  689.830978][T14363]  swapin_readahead+0x13a/0xd60
[  689.831026][T14363]  ? __pfx_swapin_readahead+0x10/0x10
[  689.831058][T14363]  ? __filemap_get_folio+0x333/0xc10
[  689.831113][T14363]  ? swap_cache_get_folio+0x1df/0x450
[  689.831149][T14363]  ? __pfx_swap_cache_get_folio+0x10/0x10
[  689.831180][T14363]  ? __pfx_get_swap_device+0x10/0x10
[  689.831222][T14363]  ? do_swap_page+0x125/0x61c0
[  689.831276][T14363]  do_swap_page+0x5b7/0x61c0
[  689.831328][T14363]  ? __lock_acquire+0x622/0x1c90
[  689.831385][T14363]  ? __pfx_do_swap_page+0x10/0x10
[  689.831439][T14363]  ? __pfx_default_wake_function+0x10/0x10
[  689.831491][T14363]  ? __lock_acquire+0xb8a/0x1c90
[  689.831533][T14363]  ? rcu_is_watching+0x12/0xc0
[  689.831585][T14363]  ? ___pte_offset_map+0x1d5/0x570
[  689.831639][T14363]  __handle_mm_fault+0x162f/0x5450
[  689.831686][T14363]  ? __pfx___handle_mm_fault+0x10/0x10
[  689.831720][T14363]  ? __pte_offset_map_lock+0x174/0x310
[  689.831767][T14363]  ? find_held_lock+0x2b/0x80
[  689.831811][T14363]  ? find_held_lock+0x2b/0x80
[  689.831885][T14363]  handle_mm_fault+0x3fe/0xad0
[  689.831926][T14363]  __get_user_pages+0x570/0x3bb0
[  689.831994][T14363]  ? __pfx___get_user_pages+0x10/0x10
[  689.832045][T14363]  ? __pfx_down_read_killable+0x10/0x10
[  689.832098][T14363]  __gup_longterm_locked+0x5e7/0x1850
[  689.832158][T14363]  ? find_held_lock+0x2b/0x80
[  689.832212][T14363]  ? __pfx___gup_longterm_locked+0x10/0x10
[  689.832270][T14363]  ? try_get_folio+0x255/0x730
[  689.832315][T14363]  ? find_held_lock+0x2b/0x80
[  689.832363][T14363]  ? sanity_check_pinned_pages+0x3bf/0x1200
[  689.832429][T14363]  gup_fast_fallback+0x1ab3/0x29e0
[  689.832509][T14363]  ? __pfx_gup_fast_fallback+0x10/0x10
[  689.832563][T14363]  ? ___kmalloc_large_node+0x183/0x1e0
[  689.832613][T14363]  ? lockdep_hardirqs_on+0x7c/0x110
[  689.832651][T14363]  ? rcu_is_watching+0x12/0xc0
[  689.832707][T14363]  pin_user_pages_fast+0xa7/0xf0
[  689.832757][T14363]  ? __pfx_pin_user_pages_fast+0x10/0x10
[  689.832822][T14363]  io_pin_pages+0xe1/0x1e0
[  689.832859][T14363]  io_sqe_buffer_register+0x15c/0x1de0
[  689.832926][T14363]  ? __pfx_io_sqe_buffer_register+0x10/0x10
[  689.832964][T14363]  ? trace_kmalloc+0x2b/0xd0
[  689.833006][T14363]  ? __kvmalloc_node_noprof+0x296/0x620
[  689.833049][T14363]  ? iovec_from_user+0xbb/0x140
[  689.833111][T14363]  io_sqe_buffers_register+0x1ed/0x860
[  689.833164][T14363]  ? __pfx_io_sqe_buffers_register+0x10/0x10
[  689.833216][T14363]  ? __pfx___mutex_trylock_common+0x10/0x10
[  689.833262][T14363]  __io_uring_register+0x2248/0x2310
[  689.833298][T14363]  ? trace_contention_end+0xdd/0x130
[  689.833336][T14363]  ? __pfx___io_uring_register+0x10/0x10
[  689.833372][T14363]  ? __mutex_lock+0x1ca/0xb90
[  689.833412][T14363]  ? __x64_sys_io_uring_register+0x159/0x280
[  689.833449][T14363]  ? __pfx___mutex_lock+0x10/0x10
[  689.833495][T14363]  ? __fget_files+0x20e/0x3c0
[  689.833523][T14363]  ? __fput_deferred+0x360/0x370
[  689.833577][T14363]  __x64_sys_io_uring_register+0x169/0x280
[  689.833618][T14363]  do_syscall_64+0xcd/0x490
[  689.833657][T14363]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  689.833691][T14363] RIP: 0033:0x7f735c58e969
[  689.833718][T14363] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  689.833752][T14363] RSP: 002b:00007f735d35a038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab
[  689.833784][T14363] RAX: ffffffffffffffda RBX: 00007f735c7b6080 RCX: 00007f735c58e969
[  689.833806][T14363] RDX: 0000200000000000 RSI: 0000000000000000 RDI: 0000000000000002
[  689.833827][T14363] RBP: 00007f735d35a090 R08: 0000000000000000 R09: 0000000000000000
[  689.833847][T14363] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001
[  689.833865][T14363] R13: 0000000000000000 R14: 00007f735c7b6080 R15: 00007ffe96dd3ea8
[  689.833908][T14363]  </TASK>
[  690.412019][T10931] Bluetooth: hci1: command 0x0c1a tx timeout
[  690.451211][T10931] Bluetooth: hci4: command 0x0c1a tx timeout
[  690.459412][T13965] Bluetooth: hci3: command 0x0c1a tx timeout
[  690.465956][T13965] Bluetooth: hci2: command 0x0c1a tx timeout
[  691.102032][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  691.108418][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  695.586765][T14445] FAULT_INJECTION: forcing a failure.
[  695.586765][T14445] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  695.697109][T14445] CPU: 1 UID: 0 PID: 14445 Comm: syz.2.1664 Tainted: G     U              6.15.0-syzkaller-03589-gfeacb1774bd5 #0 PREEMPT(full) 
[  695.697163][T14445] Tainted: [U]=USER
[  695.697174][T14445] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  695.697194][T14445] Call Trace:
[  695.697205][T14445]  <TASK>
[  695.697217][T14445]  dump_stack_lvl+0x16c/0x1f0
[  695.697257][T14445]  should_fail_ex+0x512/0x640
[  695.697297][T14445]  should_fail_alloc_page+0xe7/0x130
[  695.697342][T14445]  prepare_alloc_pages+0x3c2/0x610
[  695.697402][T14445]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  695.697459][T14445]  ? __lock_acquire+0x622/0x1c90
[  695.697501][T14445]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  695.697553][T14445]  ? xa_load+0x153/0x2c0
[  695.697606][T14445]  ? filemap_get_entry+0x1a7/0x3b0
[  695.697653][T14445]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  695.697699][T14445]  ? policy_nodemask+0xea/0x4e0
[  695.697745][T14445]  alloc_pages_mpol+0x1fb/0x550
[  695.697789][T14445]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  695.697829][T14445]  ? _raw_spin_unlock+0x28/0x50
[  695.697876][T14445]  ? swap_entry_swapped+0x122/0x190
[  695.697911][T14445]  ? __pfx_swap_entry_swapped+0x10/0x10
[  695.697957][T14445]  folio_alloc_mpol_noprof+0x36/0x2f0
[  695.698009][T14445]  __read_swap_cache_async+0x3b6/0x5a0
[  695.698050][T14445]  ? __pfx___read_swap_cache_async+0x10/0x10
[  695.698083][T14445]  ? xas_move_index+0xb0/0x110
[  695.698113][T14445]  ? swp_swap_info+0x60/0x130
[  695.698154][T14445]  ? __pfx_swp_swap_info+0x10/0x10
[  695.698208][T14445]  swap_cluster_readahead+0x3eb/0x710
[  695.698254][T14445]  ? __pfx_swap_cluster_readahead+0x10/0x10
[  695.698317][T14445]  ? get_vma_policy+0x242/0x3c0
[  695.698364][T14445]  swapin_readahead+0x13a/0xd60
[  695.698412][T14445]  ? __pfx_swapin_readahead+0x10/0x10
[  695.698444][T14445]  ? __filemap_get_folio+0x333/0xc10
[  695.698499][T14445]  ? swap_cache_get_folio+0x1df/0x450
[  695.698541][T14445]  ? __pfx_swap_cache_get_folio+0x10/0x10
[  695.698570][T14445]  ? __pfx_get_swap_device+0x10/0x10
[  695.698610][T14445]  ? do_swap_page+0x125/0x61c0
[  695.698664][T14445]  do_swap_page+0x5b7/0x61c0
[  695.698714][T14445]  ? __lock_acquire+0x622/0x1c90
[  695.698764][T14445]  ? __pfx_do_swap_page+0x10/0x10
[  695.698818][T14445]  ? __pfx_default_wake_function+0x10/0x10
[  695.698870][T14445]  ? __lock_acquire+0xb8a/0x1c90
[  695.698911][T14445]  ? rcu_is_watching+0x12/0xc0
[  695.698960][T14445]  ? ___pte_offset_map+0x1d5/0x570
[  695.699014][T14445]  __handle_mm_fault+0x162f/0x5450
[  695.699059][T14445]  ? __pfx___handle_mm_fault+0x10/0x10
[  695.699092][T14445]  ? __pte_offset_map_lock+0x174/0x310
[  695.699138][T14445]  ? find_held_lock+0x2b/0x80
[  695.699185][T14445]  ? find_held_lock+0x2b/0x80
[  695.699256][T14445]  handle_mm_fault+0x3fe/0xad0
[  695.699297][T14445]  __get_user_pages+0x570/0x3bb0
[  695.699365][T14445]  ? __pfx___get_user_pages+0x10/0x10
[  695.699415][T14445]  ? __pfx_down_read_killable+0x10/0x10
[  695.699470][T14445]  __gup_longterm_locked+0x5e7/0x1850
[  695.699542][T14445]  ? find_held_lock+0x2b/0x80
[  695.699596][T14445]  ? __pfx___gup_longterm_locked+0x10/0x10
[  695.699651][T14445]  ? try_get_folio+0x255/0x730
[  695.699694][T14445]  ? find_held_lock+0x2b/0x80
[  695.699740][T14445]  ? sanity_check_pinned_pages+0x3bf/0x1200
[  695.699798][T14445]  gup_fast_fallback+0x1ab3/0x29e0
[  695.699877][T14445]  ? __pfx_gup_fast_fallback+0x10/0x10
[  695.699930][T14445]  ? ___kmalloc_large_node+0x183/0x1e0
[  695.699974][T14445]  ? lockdep_hardirqs_on+0x7c/0x110
[  695.700010][T14445]  ? rcu_is_watching+0x12/0xc0
[  695.700072][T14445]  pin_user_pages_fast+0xa7/0xf0
[  695.700122][T14445]  ? __pfx_pin_user_pages_fast+0x10/0x10
[  695.700188][T14445]  io_pin_pages+0xe1/0x1e0
[  695.700223][T14445]  io_sqe_buffer_register+0x15c/0x1de0
[  695.700287][T14445]  ? __pfx_io_sqe_buffer_register+0x10/0x10
[  695.700325][T14445]  ? trace_kmalloc+0x2b/0xd0
[  695.700366][T14445]  ? __kvmalloc_node_noprof+0x296/0x620
[  695.700409][T14445]  ? iovec_from_user+0xbb/0x140
[  695.700453][T14445]  io_sqe_buffers_register+0x1ed/0x860
[  695.700504][T14445]  ? __pfx_io_sqe_buffers_register+0x10/0x10
[  695.700565][T14445]  ? __pfx___mutex_trylock_common+0x10/0x10
[  695.700611][T14445]  __io_uring_register+0x2248/0x2310
[  695.700646][T14445]  ? trace_contention_end+0xdd/0x130
[  695.700685][T14445]  ? __pfx___io_uring_register+0x10/0x10
[  695.700714][T14445]  ? __mutex_lock+0x1ca/0xb90
[  695.700749][T14445]  ? __x64_sys_io_uring_register+0x159/0x280
[  695.700785][T14445]  ? __pfx___mutex_lock+0x10/0x10
[  695.700829][T14445]  ? __fget_files+0x20e/0x3c0
[  695.700857][T14445]  ? __fput_deferred+0x360/0x370
[  695.700910][T14445]  __x64_sys_io_uring_register+0x169/0x280
[  695.700950][T14445]  do_syscall_64+0xcd/0x490
[  695.700986][T14445]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  695.701021][T14445] RIP: 0033:0x7f731a98e969
[  695.701046][T14445] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  695.701078][T14445] RSP: 002b:00007f731b783038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab
[  695.701108][T14445] RAX: ffffffffffffffda RBX: 00007f731abb6080 RCX: 00007f731a98e969
[  695.701128][T14445] RDX: 0000200000000000 RSI: 0000000000000000 RDI: 0000000000000002
[  695.701147][T14445] RBP: 00007f731b783090 R08: 0000000000000000 R09: 0000000000000000
[  695.701167][T14445] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001
[  695.701185][T14445] R13: 0000000000000000 R14: 00007f731abb6080 R15: 00007ffd608ff688
[  695.701228][T14445]  </TASK>
[  699.188884][T14473] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  699.226167][T14473] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  699.239907][T14473] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  699.259938][T14473] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  700.949668][T10931] Bluetooth: hci1: command 0x0c1a tx timeout
[  701.249739][T10931] Bluetooth: hci3: command 0x0c1a tx timeout
[  701.255914][T10931] Bluetooth: hci2: command 0x0c1a tx timeout
[  701.329836][T10931] Bluetooth: hci4: command 0x0c1a tx timeout
[  703.037347][T14525] kexec: Could not allocate control_code_buffer
[  703.310502][T14548] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1680'.
[  703.353635][T14549] netlink: 350 bytes leftover after parsing attributes in process `syz.2.1680'.
[  705.494668][T14583] FAULT_INJECTION: forcing a failure.
[  705.494668][T14583] name failslab, interval 1, probability 0, space 0, times 0
[  705.531814][T14583] CPU: 0 UID: 0 PID: 14583 Comm: syz.3.1688 Tainted: G     U              6.15.0-syzkaller-03589-gfeacb1774bd5 #0 PREEMPT(full) 
[  705.531871][T14583] Tainted: [U]=USER
[  705.531884][T14583] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  705.531904][T14583] Call Trace:
[  705.531916][T14583]  <TASK>
[  705.531930][T14583]  dump_stack_lvl+0x16c/0x1f0
[  705.531972][T14583]  should_fail_ex+0x512/0x640
[  705.532006][T14583]  ? __kmalloc_noprof+0xbf/0x510
[  705.532047][T14583]  ? __register_sysctl_table+0xea2/0x1900
[  705.532088][T14583]  should_failslab+0xc2/0x120
[  705.532129][T14583]  __kmalloc_noprof+0xd2/0x510
[  705.532162][T14583]  ? __register_sysctl_table+0xe8e/0x1900
[  705.532222][T14583]  __register_sysctl_table+0xea2/0x1900
[  705.532275][T14583]  ? __pfx___register_sysctl_table+0x10/0x10
[  705.532318][T14583]  ? setup_ipc_sysctls+0x5e/0x300
[  705.532356][T14583]  ? __asan_memcpy+0x3c/0x60
[  705.532392][T14583]  setup_ipc_sysctls+0x1aa/0x300
[  705.532435][T14583]  copy_ipcs+0x49b/0x610
[  705.532476][T14583]  ? copy_utsname+0xab/0x470
[  705.532518][T14583]  create_new_namespaces+0x20a/0xa90
[  705.532573][T14583]  ? security_capable+0x7e/0x260
[  705.532627][T14583]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  705.532689][T14583]  ksys_unshare+0x45b/0xa40
[  705.532730][T14583]  ? __pfx_ksys_unshare+0x10/0x10
[  705.532771][T14583]  ? xfd_validate_state+0x61/0x180
[  705.532823][T14583]  __x64_sys_unshare+0x31/0x40
[  705.532862][T14583]  do_syscall_64+0xcd/0x490
[  705.532901][T14583]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  705.532936][T14583] RIP: 0033:0x7f727778e969
[  705.532964][T14583] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  705.532998][T14583] RSP: 002b:00007f72786db038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  705.533031][T14583] RAX: ffffffffffffffda RBX: 00007f72779b5fa0 RCX: 00007f727778e969
[  705.533054][T14583] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000008000400
[  705.533074][T14583] RBP: 00007f7277810ab1 R08: 0000000000000000 R09: 0000000000000000
[  705.533095][T14583] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  705.533116][T14583] R13: 0000000000000000 R14: 00007f72779b5fa0 R15: 00007ffcf5a5a4e8
[  705.533159][T14583]  </TASK>
[  705.533173][T14583] sysctl could not get directory: /kernel -12
[  706.773588][T14614] FAULT_INJECTION: forcing a failure.
[  706.773588][T14614] name fail_futex, interval 1, probability 0, space 0, times 0
[  706.786742][T14614] CPU: 1 UID: 0 PID: 14614 Comm: syz.1.1695 Tainted: G     U              6.15.0-syzkaller-03589-gfeacb1774bd5 #0 PREEMPT(full) 
[  706.786794][T14614] Tainted: [U]=USER
[  706.786805][T14614] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  706.786825][T14614] Call Trace:
[  706.786836][T14614]  <TASK>
[  706.786849][T14614]  dump_stack_lvl+0x16c/0x1f0
[  706.786887][T14614]  should_fail_ex+0x512/0x640
[  706.786930][T14614]  get_futex_key+0x1d0/0x1540
[  706.786990][T14614]  ? __pfx_get_futex_key+0x10/0x10
[  706.787059][T14614]  futex_wake+0xea/0x530
[  706.787102][T14614]  ? __pfx_futex_wake+0x10/0x10
[  706.787162][T14614]  do_futex+0x1e3/0x350
[  706.787197][T14614]  ? __pfx_do_futex+0x10/0x10
[  706.787230][T14614]  ? __pfx_task_mm_cid_work+0x10/0x10
[  706.787281][T14614]  ? __pfx___might_resched+0x10/0x10
[  706.787339][T14614]  __x64_sys_futex+0x1e0/0x4c0
[  706.787375][T14614]  ? __pfx_blkcg_maybe_throttle_current+0x10/0x10
[  706.787429][T14614]  ? __pfx___x64_sys_futex+0x10/0x10
[  706.787465][T14614]  ? xfd_validate_state+0x61/0x180
[  706.787516][T14614]  do_syscall_64+0xcd/0x490
[  706.787554][T14614]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  706.787588][T14614] RIP: 0033:0x7fc97738e969
[  706.787613][T14614] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  706.787647][T14614] RSP: 002b:00007fc97814d0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  706.787682][T14614] RAX: ffffffffffffffda RBX: 00007fc9775b6168 RCX: 00007fc97738e969
[  706.787715][T14614] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fc9775b616c
[  706.787736][T14614] RBP: 00007fc9775b6160 R08: 00007fc978190000 R09: 0000000000000000
[  706.787756][T14614] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc9775b616c
[  706.787776][T14614] R13: 0000000000000000 R14: 00007ffc406d09e0 R15: 00007ffc406d0ac8
[  706.787819][T14614]  </TASK>
[  706.978206][    C1] vkms_vblank_simulate: vblank timer overrun
[  708.660271][T14644] db_root: cannot open: �
[  709.721631][T14673] FAULT_INJECTION: forcing a failure.
[  709.721631][T14673] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  709.769823][T14673] CPU: 0 UID: 0 PID: 14673 Comm: syz.1.1706 Tainted: G     U              6.15.0-syzkaller-03589-gfeacb1774bd5 #0 PREEMPT(full) 
[  709.769875][T14673] Tainted: [U]=USER
[  709.769886][T14673] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  709.769905][T14673] Call Trace:
[  709.769917][T14673]  <TASK>
[  709.769929][T14673]  dump_stack_lvl+0x16c/0x1f0
[  709.769968][T14673]  should_fail_ex+0x512/0x640
[  709.770010][T14673]  should_fail_alloc_page+0xe7/0x130
[  709.770056][T14673]  prepare_alloc_pages+0x3c2/0x610
[  709.770114][T14673]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  709.770161][T14673]  ? __lock_acquire+0x622/0x1c90
[  709.770203][T14673]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  709.770253][T14673]  ? filemap_get_entry+0x1a7/0x3b0
[  709.770293][T14673]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  709.770331][T14673]  ? policy_nodemask+0xea/0x4e0
[  709.770368][T14673]  alloc_pages_mpol+0x1fb/0x550
[  709.770405][T14673]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  709.770439][T14673]  ? _raw_spin_unlock+0x28/0x50
[  709.770482][T14673]  ? swap_entry_swapped+0x122/0x190
[  709.770516][T14673]  ? __pfx_swap_entry_swapped+0x10/0x10
[  709.770555][T14673]  folio_alloc_mpol_noprof+0x36/0x2f0
[  709.770597][T14673]  __read_swap_cache_async+0x3b6/0x5a0
[  709.770630][T14673]  ? __pfx___read_swap_cache_async+0x10/0x10
[  709.770658][T14673]  ? xas_move_index+0xb0/0x110
[  709.770683][T14673]  ? swp_swap_info+0xce/0x130
[  709.770718][T14673]  ? __pfx_swp_swap_info+0x10/0x10
[  709.770762][T14673]  swap_cluster_readahead+0x3eb/0x710
[  709.770798][T14673]  ? __pfx_swap_cluster_readahead+0x10/0x10
[  709.770847][T14673]  ? get_vma_policy+0x242/0x3c0
[  709.770887][T14673]  swapin_readahead+0x13a/0xd60
[  709.770925][T14673]  ? __pfx_swapin_readahead+0x10/0x10
[  709.770951][T14673]  ? __filemap_get_folio+0x333/0xc10
[  709.770995][T14673]  ? swap_cache_get_folio+0x1df/0x450
[  709.771023][T14673]  ? __pfx_swap_cache_get_folio+0x10/0x10
[  709.771048][T14673]  ? __pfx_get_swap_device+0x10/0x10
[  709.771083][T14673]  ? do_swap_page+0x125/0x61c0
[  709.771128][T14673]  do_swap_page+0x5b7/0x61c0
[  709.771185][T14673]  ? __lock_acquire+0x622/0x1c90
[  709.771232][T14673]  ? __pfx_do_swap_page+0x10/0x10
[  709.771275][T14673]  ? __pfx_default_wake_function+0x10/0x10
[  709.771319][T14673]  ? __lock_acquire+0xb8a/0x1c90
[  709.771353][T14673]  ? rcu_is_watching+0x12/0xc0
[  709.771395][T14673]  ? ___pte_offset_map+0x1d5/0x570
[  709.771447][T14673]  __handle_mm_fault+0x162f/0x5450
[  709.771492][T14673]  ? __pfx___handle_mm_fault+0x10/0x10
[  709.771523][T14673]  ? __pte_offset_map_lock+0x174/0x310
[  709.771568][T14673]  ? find_held_lock+0x2b/0x80
[  709.771614][T14673]  ? find_held_lock+0x2b/0x80
[  709.771688][T14673]  handle_mm_fault+0x3fe/0xad0
[  709.771729][T14673]  __get_user_pages+0x570/0x3bb0
[  709.771799][T14673]  ? __pfx___get_user_pages+0x10/0x10
[  709.771850][T14673]  ? __pfx_down_read_killable+0x10/0x10
[  709.771900][T14673]  __gup_longterm_locked+0x5e7/0x1850
[  709.771948][T14673]  ? find_held_lock+0x2b/0x80
[  709.771992][T14673]  ? __pfx___gup_longterm_locked+0x10/0x10
[  709.772039][T14673]  ? try_get_folio+0x255/0x730
[  709.772076][T14673]  ? find_held_lock+0x2b/0x80
[  709.772116][T14673]  ? sanity_check_pinned_pages+0x3bf/0x1200
[  709.772165][T14673]  gup_fast_fallback+0x1ab3/0x29e0
[  709.772240][T14673]  ? __pfx_gup_fast_fallback+0x10/0x10
[  709.772287][T14673]  ? ___kmalloc_large_node+0x183/0x1e0
[  709.772328][T14673]  ? lockdep_hardirqs_on+0x7c/0x110
[  709.772359][T14673]  ? rcu_is_watching+0x12/0xc0
[  709.772405][T14673]  pin_user_pages_fast+0xa7/0xf0
[  709.772450][T14673]  ? __pfx_pin_user_pages_fast+0x10/0x10
[  709.772504][T14673]  io_pin_pages+0xe1/0x1e0
[  709.772534][T14673]  io_sqe_buffer_register+0x15c/0x1de0
[  709.772588][T14673]  ? __pfx_io_sqe_buffer_register+0x10/0x10
[  709.772620][T14673]  ? trace_kmalloc+0x2b/0xd0
[  709.772655][T14673]  ? __kvmalloc_node_noprof+0x296/0x620
[  709.772689][T14673]  ? iovec_from_user+0xbb/0x140
[  709.772726][T14673]  io_sqe_buffers_register+0x1ed/0x860
[  709.772768][T14673]  ? __pfx_io_sqe_buffers_register+0x10/0x10
[  709.772811][T14673]  ? __pfx___mutex_trylock_common+0x10/0x10
[  709.772849][T14673]  __io_uring_register+0x2248/0x2310
[  709.772878][T14673]  ? trace_contention_end+0xdd/0x130
[  709.772911][T14673]  ? __pfx___io_uring_register+0x10/0x10
[  709.772937][T14673]  ? __mutex_lock+0x1ca/0xb90
[  709.772967][T14673]  ? __x64_sys_io_uring_register+0x159/0x280
[  709.772999][T14673]  ? __pfx___mutex_lock+0x10/0x10
[  709.773036][T14673]  ? __fget_files+0x20e/0x3c0
[  709.773060][T14673]  ? __fput_deferred+0x360/0x370
[  709.773104][T14673]  __x64_sys_io_uring_register+0x169/0x280
[  709.773137][T14673]  do_syscall_64+0xcd/0x490
[  709.773169][T14673]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  709.773203][T14673] RIP: 0033:0x7fc97738e969
[  709.773224][T14673] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  709.773251][T14673] RSP: 002b:00007fc97816e038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab
[  709.773277][T14673] RAX: ffffffffffffffda RBX: 00007fc9775b6080 RCX: 00007fc97738e969
[  709.773296][T14673] RDX: 0000200000000000 RSI: 0000000000000000 RDI: 0000000000000002
[  709.773313][T14673] RBP: 00007fc97816e090 R08: 0000000000000000 R09: 0000000000000000
[  709.773330][T14673] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000002
[  709.773347][T14673] R13: 0000000000000000 R14: 00007fc9775b6080 R15: 00007ffc406d0ac8
[  709.773381][T14673]  </TASK>
[  710.816249][T14678] tipc: Started in network mode
[  710.865788][T14678] tipc: Node identity ee00, cluster identity 4711
[  710.934810][T14678] tipc: Node number set to 60928
[  711.762272][T14692] FAULT_INJECTION: forcing a failure.
[  711.762272][T14692] name failslab, interval 1, probability 0, space 0, times 0
[  711.762360][T14692] CPU: 0 UID: 0 PID: 14692 Comm: syz.1.1711 Tainted: G     U              6.15.0-syzkaller-03589-gfeacb1774bd5 #0 PREEMPT(full) 
[  711.762408][T14692] Tainted: [U]=USER
[  711.762420][T14692] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  711.762438][T14692] Call Trace:
[  711.762450][T14692]  <TASK>
[  711.762463][T14692]  dump_stack_lvl+0x16c/0x1f0
[  711.762502][T14692]  should_fail_ex+0x512/0x640
[  711.762537][T14692]  ? __kvmalloc_node_noprof+0x122/0x620
[  711.762578][T14692]  should_failslab+0xc2/0x120
[  711.762619][T14692]  __kvmalloc_node_noprof+0x135/0x620
[  711.762657][T14692]  ? seq_read_iter+0x826/0x12c0
[  711.762703][T14692]  ? __lock_acquire+0xb8a/0x1c90
[  711.762748][T14692]  ? seq_read_iter+0x826/0x12c0
[  711.762793][T14692]  seq_read_iter+0x826/0x12c0
[  711.762847][T14692]  ? __mutex_trylock_common+0xe9/0x250
[  711.762899][T14692]  kernfs_fop_read_iter+0x40f/0x5a0
[  711.762943][T14692]  ? rw_verify_area+0xcf/0x680
[  711.763005][T14692]  vfs_read+0x8bf/0xc60
[  711.763045][T14692]  ? __pfx___mutex_lock+0x10/0x10
[  711.763079][T14692]  ? __pfx_vfs_read+0x10/0x10
[  711.763141][T14692]  ksys_read+0x12a/0x250
[  711.763174][T14692]  ? __pfx_ksys_read+0x10/0x10
[  711.763220][T14692]  do_syscall_64+0xcd/0x490
[  711.763260][T14692]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  711.763292][T14692] RIP: 0033:0x7fc97738e969
[  711.763318][T14692] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  711.763351][T14692] RSP: 002b:00007fc97816e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  711.763382][T14692] RAX: ffffffffffffffda RBX: 00007fc9775b6080 RCX: 00007fc97738e969
[  711.763403][T14692] RDX: 000000000000000c RSI: 0000200000000140 RDI: 0000000000000005
[  711.763422][T14692] RBP: 00007fc97816e090 R08: 0000000000000000 R09: 0000000000000000
[  711.763442][T14692] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  711.763461][T14692] R13: 0000000000000000 R14: 00007fc9775b6080 R15: 00007ffc406d0ac8
[  711.763505][T14692]  </TASK>
[  712.497111][T14688] tty tty45: ldisc open failed (-12), clearing slot 44
[  712.592432][T14687] tty tty12: ldisc open failed (-12), clearing slot 11
[  713.105396][T14704] sd 0:0:1:0: PR command failed: 1026
[  713.140160][T14704] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  713.146969][T14704] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  714.242684][T14725] FAULT_INJECTION: forcing a failure.
[  714.242684][T14725] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  714.346403][T14725] CPU: 0 UID: 0 PID: 14725 Comm: syz.2.1719 Tainted: G     U              6.15.0-syzkaller-03589-gfeacb1774bd5 #0 PREEMPT(full) 
[  714.346456][T14725] Tainted: [U]=USER
[  714.346468][T14725] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  714.346487][T14725] Call Trace:
[  714.346498][T14725]  <TASK>
[  714.346512][T14725]  dump_stack_lvl+0x16c/0x1f0
[  714.346552][T14725]  should_fail_ex+0x512/0x640
[  714.346592][T14725]  should_fail_alloc_page+0xe7/0x130
[  714.346637][T14725]  prepare_alloc_pages+0x3c2/0x610
[  714.346696][T14725]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  714.346751][T14725]  ? __lock_acquire+0x622/0x1c90
[  714.346791][T14725]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  714.346828][T14725]  ? xa_load+0x153/0x2c0
[  714.346871][T14725]  ? filemap_get_entry+0x1a7/0x3b0
[  714.346912][T14725]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  714.346950][T14725]  ? policy_nodemask+0xea/0x4e0
[  714.346988][T14725]  alloc_pages_mpol+0x1fb/0x550
[  714.347031][T14725]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  714.347065][T14725]  ? _raw_spin_unlock+0x28/0x50
[  714.347106][T14725]  ? swap_entry_swapped+0x122/0x190
[  714.347140][T14725]  ? __pfx_swap_entry_swapped+0x10/0x10
[  714.347179][T14725]  folio_alloc_mpol_noprof+0x36/0x2f0
[  714.347221][T14725]  __read_swap_cache_async+0x3b6/0x5a0
[  714.347255][T14725]  ? __pfx___read_swap_cache_async+0x10/0x10
[  714.347282][T14725]  ? xas_move_index+0xb0/0x110
[  714.347307][T14725]  ? swp_swap_info+0x60/0x130
[  714.347343][T14725]  ? __pfx_swp_swap_info+0x10/0x10
[  714.347388][T14725]  swap_cluster_readahead+0x3eb/0x710
[  714.347424][T14725]  ? __pfx_swap_cluster_readahead+0x10/0x10
[  714.347474][T14725]  ? get_vma_policy+0x242/0x3c0
[  714.347514][T14725]  swapin_readahead+0x13a/0xd60
[  714.347552][T14725]  ? __pfx_swapin_readahead+0x10/0x10
[  714.347579][T14725]  ? __filemap_get_folio+0x333/0xc10
[  714.347624][T14725]  ? swap_cache_get_folio+0x1df/0x450
[  714.347651][T14725]  ? __pfx_swap_cache_get_folio+0x10/0x10
[  714.347677][T14725]  ? __pfx_get_swap_device+0x10/0x10
[  714.347712][T14725]  ? do_swap_page+0x125/0x61c0
[  714.347756][T14725]  do_swap_page+0x5b7/0x61c0
[  714.347802][T14725]  ? __lock_acquire+0x622/0x1c90
[  714.347843][T14725]  ? __pfx_do_swap_page+0x10/0x10
[  714.347887][T14725]  ? __pfx_default_wake_function+0x10/0x10
[  714.347931][T14725]  ? __lock_acquire+0xb8a/0x1c90
[  714.347965][T14725]  ? rcu_is_watching+0x12/0xc0
[  714.348007][T14725]  ? ___pte_offset_map+0x1d5/0x570
[  714.348058][T14725]  __handle_mm_fault+0x162f/0x5450
[  714.348095][T14725]  ? __pfx___handle_mm_fault+0x10/0x10
[  714.348122][T14725]  ? __pte_offset_map_lock+0x174/0x310
[  714.348161][T14725]  ? find_held_lock+0x2b/0x80
[  714.348200][T14725]  ? find_held_lock+0x2b/0x80
[  714.348263][T14725]  handle_mm_fault+0x3fe/0xad0
[  714.348296][T14725]  __get_user_pages+0x570/0x3bb0
[  714.348352][T14725]  ? __pfx___get_user_pages+0x10/0x10
[  714.348393][T14725]  ? __pfx_down_read_killable+0x10/0x10
[  714.348437][T14725]  __gup_longterm_locked+0x5e7/0x1850
[  714.348484][T14725]  ? find_held_lock+0x2b/0x80
[  714.348528][T14725]  ? __pfx___gup_longterm_locked+0x10/0x10
[  714.348574][T14725]  ? try_get_folio+0x255/0x730
[  714.348611][T14725]  ? find_held_lock+0x2b/0x80
[  714.348651][T14725]  ? sanity_check_pinned_pages+0x3bf/0x1200
[  714.348699][T14725]  gup_fast_fallback+0x1ab3/0x29e0
[  714.348767][T14725]  ? __pfx_gup_fast_fallback+0x10/0x10
[  714.348814][T14725]  ? ___kmalloc_large_node+0x183/0x1e0
[  714.348855][T14725]  ? lockdep_hardirqs_on+0x7c/0x110
[  714.348886][T14725]  ? rcu_is_watching+0x12/0xc0
[  714.348933][T14725]  pin_user_pages_fast+0xa7/0xf0
[  714.348976][T14725]  ? __pfx_pin_user_pages_fast+0x10/0x10
[  714.349035][T14725]  io_pin_pages+0xe1/0x1e0
[  714.349065][T14725]  io_sqe_buffer_register+0x15c/0x1de0
[  714.349118][T14725]  ? __pfx_io_sqe_buffer_register+0x10/0x10
[  714.349150][T14725]  ? trace_kmalloc+0x2b/0xd0
[  714.349185][T14725]  ? __kvmalloc_node_noprof+0x296/0x620
[  714.349219][T14725]  ? iovec_from_user+0xbb/0x140
[  714.349255][T14725]  io_sqe_buffers_register+0x1ed/0x860
[  714.349297][T14725]  ? __pfx_io_sqe_buffers_register+0x10/0x10
[  714.349341][T14725]  ? __pfx___mutex_trylock_common+0x10/0x10
[  714.349378][T14725]  __io_uring_register+0x2248/0x2310
[  714.349408][T14725]  ? trace_contention_end+0xdd/0x130
[  714.349440][T14725]  ? __pfx___io_uring_register+0x10/0x10
[  714.349466][T14725]  ? __mutex_lock+0x1ca/0xb90
[  714.349497][T14725]  ? __x64_sys_io_uring_register+0x159/0x280
[  714.349528][T14725]  ? __pfx___mutex_lock+0x10/0x10
[  714.349576][T14725]  ? io_uring_register_get_file+0xfd/0x1f0
[  714.349615][T14725]  __x64_sys_io_uring_register+0x169/0x280
[  714.349648][T14725]  do_syscall_64+0xcd/0x490
[  714.349679][T14725]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  714.349713][T14725] RIP: 0033:0x7f731a98e969
[  714.349735][T14725] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  714.349763][T14725] RSP: 002b:00007f731b783038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab
[  714.349790][T14725] RAX: ffffffffffffffda RBX: 00007f731abb6080 RCX: 00007f731a98e969
[  714.349810][T14725] RDX: 0000200000000000 RSI: 0000000000000000 RDI: 0000000000000002
[  714.349827][T14725] RBP: 00007f731b783090 R08: 0000000000000000 R09: 0000000000000000
[  714.349844][T14725] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000002
[  714.349860][T14725] R13: 0000000000000000 R14: 00007f731abb6080 R15: 00007ffd608ff688
[  714.349896][T14725]  </TASK>
[  715.844516][T14735] FAULT_INJECTION: forcing a failure.
[  715.844516][T14735] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  715.994315][T14735] CPU: 1 UID: 0 PID: 14735 Comm: syz.5.1722 Tainted: G     U              6.15.0-syzkaller-03589-gfeacb1774bd5 #0 PREEMPT(full) 
[  715.994361][T14735] Tainted: [U]=USER
[  715.994369][T14735] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  715.994384][T14735] Call Trace:
[  715.994391][T14735]  <TASK>
[  715.994401][T14735]  dump_stack_lvl+0x16c/0x1f0
[  715.994430][T14735]  should_fail_ex+0x512/0x640
[  715.994459][T14735]  _copy_to_iter+0x29f/0x16f0
[  715.994489][T14735]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  715.994515][T14735]  ? sysfs_blk_trace_attr_show+0x156/0x4b0
[  715.994551][T14735]  ? __pfx__copy_to_iter+0x10/0x10
[  715.994579][T14735]  ? kernfs_seq_stop+0xcd/0x120
[  715.994616][T14735]  ? kernfs_put_active+0x86/0xe0
[  715.994653][T14735]  seq_read_iter+0xcf8/0x12c0
[  715.994703][T14735]  kernfs_fop_read_iter+0x40f/0x5a0
[  715.994735][T14735]  ? rw_verify_area+0xcf/0x680
[  715.994774][T14735]  vfs_read+0x8bf/0xc60
[  715.994800][T14735]  ? __pfx___mutex_lock+0x10/0x10
[  715.994825][T14735]  ? __pfx_vfs_read+0x10/0x10
[  715.994867][T14735]  ksys_read+0x12a/0x250
[  715.994889][T14735]  ? __pfx_ksys_read+0x10/0x10
[  715.994923][T14735]  do_syscall_64+0xcd/0x490
[  715.994950][T14735]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  715.994974][T14735] RIP: 0033:0x7f735c58e969
[  715.994993][T14735] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  715.995017][T14735] RSP: 002b:00007f735d35a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  715.995039][T14735] RAX: ffffffffffffffda RBX: 00007f735c7b6080 RCX: 00007f735c58e969
[  715.995054][T14735] RDX: 000000000000000c RSI: 0000200000000140 RDI: 0000000000000005
[  715.995069][T14735] RBP: 00007f735d35a090 R08: 0000000000000000 R09: 0000000000000000
[  715.995083][T14735] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  715.995096][T14735] R13: 0000000000000000 R14: 00007f735c7b6080 R15: 00007ffe96dd3ea8
[  715.995126][T14735]  </TASK>
[  716.283294][T14740] netlink: 314 bytes leftover after parsing attributes in process `syz.3.1723'.
[  719.748722][T14794] FAULT_INJECTION: forcing a failure.
[  719.748722][T14794] name failslab, interval 1, probability 0, space 0, times 0
[  719.807065][T14794] CPU: 0 UID: 0 PID: 14794 Comm: syz.2.1737 Tainted: G     U              6.15.0-syzkaller-03589-gfeacb1774bd5 #0 PREEMPT(full) 
[  719.807122][T14794] Tainted: [U]=USER
[  719.807134][T14794] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  719.807155][T14794] Call Trace:
[  719.807167][T14794]  <TASK>
[  719.807181][T14794]  dump_stack_lvl+0x16c/0x1f0
[  719.807224][T14794]  should_fail_ex+0x512/0x640
[  719.807262][T14794]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  719.807319][T14794]  should_failslab+0xc2/0x120
[  719.807361][T14794]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  719.807400][T14794]  ? lockdep_init_map_type+0x5c/0x280
[  719.807441][T14794]  ? __d_alloc+0x31/0xaa0
[  719.807483][T14794]  __d_alloc+0x31/0xaa0
[  719.807526][T14794]  d_alloc_pseudo+0x1c/0xc0
[  719.807573][T14794]  alloc_file_pseudo+0xcf/0x230
[  719.807622][T14794]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  719.807668][T14794]  ? alloc_fd+0x471/0x7d0
[  719.807706][T14794]  sock_alloc_file+0x50/0x210
[  719.807761][T14794]  __sys_socket+0x1c0/0x260
[  719.807796][T14794]  ? fput+0x70/0xf0
[  719.807836][T14794]  ? __pfx___sys_socket+0x10/0x10
[  719.807872][T14794]  ? ksys_write+0x1ac/0x250
[  719.807905][T14794]  ? __pfx_ksys_write+0x10/0x10
[  719.807948][T14794]  __x64_sys_socket+0x72/0xb0
[  719.807983][T14794]  ? lockdep_hardirqs_on+0x7c/0x110
[  719.808016][T14794]  do_syscall_64+0xcd/0x490
[  719.808054][T14794]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  719.808089][T14794] RIP: 0033:0x7f731a98e969
[  719.808117][T14794] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  719.808150][T14794] RSP: 002b:00007f731b7a4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  719.808183][T14794] RAX: ffffffffffffffda RBX: 00007f731abb5fa0 RCX: 00007f731a98e969
[  719.808207][T14794] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010
[  719.808227][T14794] RBP: 00007f731aa10ab1 R08: 0000000000000000 R09: 0000000000000000
[  719.808247][T14794] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  719.808268][T14794] R13: 0000000000000000 R14: 00007f731abb5fa0 R15: 00007ffd608ff688
[  719.808321][T14794]  </TASK>
[  720.026717][    C0] vkms_vblank_simulate: vblank timer overrun
[  720.294370][T14806] FAULT_INJECTION: forcing a failure.
[  720.294370][T14806] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  720.329760][T14806] CPU: 1 UID: 0 PID: 14806 Comm: syz.5.1739 Tainted: G     U              6.15.0-syzkaller-03589-gfeacb1774bd5 #0 PREEMPT(full) 
[  720.329823][T14806] Tainted: [U]=USER
[  720.329834][T14806] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  720.329855][T14806] Call Trace:
[  720.329866][T14806]  <TASK>
[  720.329883][T14806]  dump_stack_lvl+0x16c/0x1f0
[  720.329922][T14806]  should_fail_ex+0x512/0x640
[  720.329963][T14806]  _copy_to_user+0x32/0xd0
[  720.330005][T14806]  simple_read_from_buffer+0xcb/0x170
[  720.330059][T14806]  proc_fail_nth_read+0x197/0x270
[  720.330108][T14806]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  720.330177][T14806]  ? rw_verify_area+0xcf/0x680
[  720.330229][T14806]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  720.330280][T14806]  vfs_read+0x1e1/0xc60
[  720.330319][T14806]  ? __pfx___mutex_lock+0x10/0x10
[  720.330355][T14806]  ? __pfx_vfs_read+0x10/0x10
[  720.330398][T14806]  ? __fget_files+0x20e/0x3c0
[  720.330449][T14806]  ksys_read+0x12a/0x250
[  720.330481][T14806]  ? __pfx_ksys_read+0x10/0x10
[  720.330526][T14806]  do_syscall_64+0xcd/0x490
[  720.330564][T14806]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  720.330598][T14806] RIP: 0033:0x7f735c58d37c
[  720.330624][T14806] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  720.330657][T14806] RSP: 002b:00007f735d35a030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  720.330688][T14806] RAX: ffffffffffffffda RBX: 00007f735c7b6080 RCX: 00007f735c58d37c
[  720.330710][T14806] RDX: 000000000000000f RSI: 00007f735d35a0a0 RDI: 0000000000000006
[  720.330730][T14806] RBP: 00007f735d35a090 R08: 0000000000000000 R09: 0000000000000000
[  720.330749][T14806] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  720.330768][T14806] R13: 0000000000000000 R14: 00007f735c7b6080 R15: 00007ffe96dd3ea8
[  720.330811][T14806]  </TASK>
[  720.352751][T14808] input: jJǸ���;9�%v����l��Q�	J86�� as /devices/virtual/input/input29
[  720.477678][    C0] vkms_vblank_simulate: vblank timer overrun
[  721.611589][T14825] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  721.653769][T14825] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  721.675532][T14825] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  721.751865][T14825] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  723.033016][T14845] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1748'.
[  723.070594][T14838] FAULT_INJECTION: forcing a failure.
[  723.070594][T14838] name failslab, interval 1, probability 0, space 0, times 0
[  723.117655][T14838] CPU: 1 UID: 0 PID: 14838 Comm: syz.2.1746 Tainted: G     U              6.15.0-syzkaller-03589-gfeacb1774bd5 #0 PREEMPT(full) 
[  723.117713][T14838] Tainted: [U]=USER
[  723.117725][T14838] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  723.117745][T14838] Call Trace:
[  723.117758][T14838]  <TASK>
[  723.117771][T14838]  dump_stack_lvl+0x16c/0x1f0
[  723.117811][T14838]  should_fail_ex+0x512/0x640
[  723.117847][T14838]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[  723.117898][T14838]  should_failslab+0xc2/0x120
[  723.117941][T14838]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  723.117983][T14838]  ? __pfx___register_sysctl_table+0x10/0x10
[  723.118054][T14838]  ? setup_ipc_sysctls+0x5e/0x300
[  723.118098][T14838]  kmemdup_noprof+0x29/0x60
[  723.118140][T14838]  setup_ipc_sysctls+0x5e/0x300
[  723.118187][T14838]  copy_ipcs+0x49b/0x610
[  723.118230][T14838]  ? copy_utsname+0xab/0x470
[  723.118274][T14838]  create_new_namespaces+0x20a/0xa90
[  723.118327][T14838]  ? security_capable+0x7e/0x260
[  723.118374][T14838]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  723.118434][T14838]  ksys_unshare+0x45b/0xa40
[  723.118475][T14838]  ? __pfx_ksys_unshare+0x10/0x10
[  723.118517][T14838]  ? xfd_validate_state+0x61/0x180
[  723.118568][T14838]  __x64_sys_unshare+0x31/0x40
[  723.118606][T14838]  do_syscall_64+0xcd/0x490
[  723.118646][T14838]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  723.118681][T14838] RIP: 0033:0x7f731a98e969
[  723.118709][T14838] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  723.118742][T14838] RSP: 002b:00007f731b7a4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  723.118775][T14838] RAX: ffffffffffffffda RBX: 00007f731abb5fa0 RCX: 00007f731a98e969
[  723.118797][T14838] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000008000400
[  723.118818][T14838] RBP: 00007f731aa10ab1 R08: 0000000000000000 R09: 0000000000000000
[  723.118838][T14838] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  723.118858][T14838] R13: 0000000000000000 R14: 00007f731abb5fa0 R15: 00007ffd608ff688
[  723.118902][T14838]  </TASK>
[  723.659685][T10931] Bluetooth: hci1: command 0x0c1a tx timeout
[  723.730472][T10931] Bluetooth: hci3: command 0x0c1a tx timeout
[  723.737157][T10931] Bluetooth: hci2: command 0x0c1a tx timeout
[  723.809863][T10931] Bluetooth: hci4: command 0x0c1a tx timeout
[  724.699456][T14875] vivid-003: =================  START STATUS  =================
[  724.714065][T14875] vivid-003: Radio HW Seek Mode: Bounded
[  724.720952][T14875] vivid-003: Radio Programmable HW Seek: false
[  724.727309][T14875] vivid-003: RDS Rx I/O Mode: Block I/O
[  724.737309][T14875] vivid-003: Generate RBDS Instead of RDS: false
[  724.757492][T14875] vivid-003: RDS Reception: true
[  724.765471][T14875] vivid-003: RDS Program Type: 0 inactive
[  724.777203][T14875] vivid-003: RDS PS Name:  inactive
[  724.909767][T14875] vivid-003: RDS Radio Text:  inactive
[  724.946477][T14875] vivid-003: RDS Traffic Announcement: false inactive
[  725.049791][T14875] vivid-003: RDS Traffic Program: false inactive
[  725.056341][T14875] vivid-003: RDS Music: false inactive
[  725.062000][T14875] vivid-003: ==================  END STATUS  ==================
[  725.699381][T14898] FAULT_INJECTION: forcing a failure.
[  725.699381][T14898] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  725.760323][T14898] CPU: 1 UID: 0 PID: 14898 Comm: syz.1.1762 Tainted: G     U              6.15.0-syzkaller-03589-gfeacb1774bd5 #0 PREEMPT(full) 
[  725.760378][T14898] Tainted: [U]=USER
[  725.760390][T14898] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  725.760410][T14898] Call Trace:
[  725.760421][T14898]  <TASK>
[  725.760434][T14898]  dump_stack_lvl+0x16c/0x1f0
[  725.760471][T14898]  should_fail_ex+0x512/0x640
[  725.760512][T14898]  should_fail_alloc_page+0xe7/0x130
[  725.760556][T14898]  prepare_alloc_pages+0x3c2/0x610
[  725.760606][T14898]  ? rcu_is_watching+0x12/0xc0
[  725.760660][T14898]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  725.760699][T14898]  ? should_fail_alloc_page+0xee/0x130
[  725.760746][T14898]  ? rcu_is_watching+0x12/0xc0
[  725.760797][T14898]  ? trace_mm_page_alloc+0x11f/0x1a0
[  725.760845][T14898]  ? __alloc_frozen_pages_noprof+0x294/0x23f0
[  725.760883][T14898]  ? stack_trace_save+0x8e/0xc0
[  725.760936][T14898]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  725.760999][T14898]  ? kmem_cache_alloc_node_noprof+0x1d5/0x3b0
[  725.761036][T14898]  ? __get_vm_area_node+0x1ca/0x330
[  725.761086][T14898]  ? __bpf_map_area_alloc+0x12e/0x200
[  725.761131][T14898]  ? htab_map_alloc+0x456/0x1540
[  725.761171][T14898]  ? map_create+0x592/0x1db0
[  725.761208][T14898]  ? __sys_bpf+0x47cc/0x4d80
[  725.761249][T14898]  ? __x64_sys_bpf+0x78/0xc0
[  725.761291][T14898]  ? do_syscall_64+0xcd/0x490
[  725.761321][T14898]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  725.761369][T14898]  alloc_pages_bulk_noprof+0x71c/0x1410
[  725.761407][T14898]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  725.761453][T14898]  ? policy_nodemask+0xea/0x4e0
[  725.761499][T14898]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[  725.761540][T14898]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  725.761599][T14898]  kasan_populate_vmalloc+0xf1/0x1f0
[  725.761642][T14898]  alloc_vmap_area+0x963/0x28f0
[  725.761707][T14898]  ? __pfx_alloc_vmap_area+0x10/0x10
[  725.761768][T14898]  __get_vm_area_node+0x1ca/0x330
[  725.761825][T14898]  __vmalloc_node_range_noprof+0x277/0x1520
[  725.761881][T14898]  ? htab_map_alloc+0x456/0x1540
[  725.761919][T14898]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  725.761968][T14898]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  725.762009][T14898]  ? htab_map_alloc+0x456/0x1540
[  725.762055][T14898]  ? pcpu_memcg_post_alloc_hook+0x1e/0x740
[  725.762094][T14898]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  725.762148][T14898]  ? pcpu_alloc_noprof+0x1f5/0x1470
[  725.762196][T14898]  ? htab_map_alloc+0x456/0x1540
[  725.762234][T14898]  __bpf_map_area_alloc+0x12e/0x200
[  725.762282][T14898]  ? htab_map_alloc+0x456/0x1540
[  725.762330][T14898]  htab_map_alloc+0x456/0x1540
[  725.762382][T14898]  ? htab_map_alloc_check+0x2f2/0x430
[  725.762430][T14898]  map_create+0x592/0x1db0
[  725.762484][T14898]  ? __pfx_map_create+0x10/0x10
[  725.762520][T14898]  ? __might_fault+0xe3/0x190
[  725.762555][T14898]  ? __might_fault+0xe3/0x190
[  725.762586][T14898]  ? __might_fault+0x13b/0x190
[  725.762637][T14898]  __sys_bpf+0x47cc/0x4d80
[  725.762686][T14898]  ? __pfx___sys_bpf+0x10/0x10
[  725.762732][T14898]  ? ksys_write+0x190/0x250
[  725.762769][T14898]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  725.762830][T14898]  ? fput+0x70/0xf0
[  725.762869][T14898]  ? ksys_write+0x1ac/0x250
[  725.762901][T14898]  ? __pfx_ksys_write+0x10/0x10
[  725.762939][T14898]  __x64_sys_bpf+0x78/0xc0
[  725.762990][T14898]  ? lockdep_hardirqs_on+0x7c/0x110
[  725.763019][T14898]  do_syscall_64+0xcd/0x490
[  725.763055][T14898]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  725.763087][T14898] RIP: 0033:0x7fc97738e969
[  725.763114][T14898] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  725.763146][T14898] RSP: 002b:00007fc97818f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  725.763177][T14898] RAX: ffffffffffffffda RBX: 00007fc9775b5fa0 RCX: 00007fc97738e969
[  725.763198][T14898] RDX: 0000000000000198 RSI: 0000200000000100 RDI: 0000000000000000
[  725.763218][T14898] RBP: 00007fc97818f090 R08: 0000000000000000 R09: 0000000000000000
[  725.763237][T14898] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  725.763255][T14898] R13: 0000000000000001 R14: 00007fc9775b5fa0 R15: 00007ffc406d0ac8
[  725.763297][T14898]  </TASK>
[  726.491271][T14902] FAULT_INJECTION: forcing a failure.
[  726.491271][T14902] name fail_futex, interval 1, probability 0, space 0, times 0
[  726.508389][T14902] CPU: 1 UID: 0 PID: 14902 Comm: syz.1.1763 Tainted: G     U              6.15.0-syzkaller-03589-gfeacb1774bd5 #0 PREEMPT(full) 
[  726.508443][T14902] Tainted: [U]=USER
[  726.508454][T14902] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  726.508475][T14902] Call Trace:
[  726.508486][T14902]  <TASK>
[  726.508500][T14902]  dump_stack_lvl+0x16c/0x1f0
[  726.508538][T14902]  should_fail_ex+0x512/0x640
[  726.508576][T14902]  get_futex_key+0x1d0/0x1540
[  726.508639][T14902]  ? __pfx_get_futex_key+0x10/0x10
[  726.508695][T14902]  ? css_rstat_updated+0x9d/0xd30
[  726.508758][T14902]  futex_wake+0xea/0x530
[  726.508802][T14902]  ? __pfx_futex_wake+0x10/0x10
[  726.508851][T14902]  ? do_user_addr_fault+0x829/0x1370
[  726.508902][T14902]  ? do_user_addr_fault+0x843/0x1370
[  726.508947][T14902]  do_futex+0x1e3/0x350
[  726.508982][T14902]  ? __pfx_do_futex+0x10/0x10
[  726.509012][T14902]  ? irqentry_exit+0x3b/0x90
[  726.509041][T14902]  ? lockdep_hardirqs_on+0x7c/0x110
[  726.509084][T14902]  __x64_sys_futex+0x1e0/0x4c0
[  726.509122][T14902]  ? arch_syscall_is_vdso_sigreturn+0xb6/0x230
[  726.509162][T14902]  ? __pfx___x64_sys_futex+0x10/0x10
[  726.509199][T14902]  ? syscall_user_dispatch+0x78/0x140
[  726.509257][T14902]  do_syscall_64+0xcd/0x490
[  726.509297][T14902]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  726.509330][T14902] RIP: 0033:0x7fc97738e969
[  726.509358][T14902] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  726.509391][T14902] RSP: 002b:00007fc97818f0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  726.509423][T14902] RAX: ffffffffffffffda RBX: 00007fc9775b5fa8 RCX: 00007fc97738e969
[  726.509444][T14902] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fc9775b5fac
[  726.509464][T14902] RBP: 00007fc9775b5fa0 R08: 00007fc978190000 R09: 0000000000000000
[  726.509484][T14902] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc9775b5fac
[  726.509504][T14902] R13: 0000000000000000 R14: 00007ffc406d09e0 R15: 00007ffc406d0ac8
[  726.509567][T14902]  </TASK>
[  726.850646][T14904] sd 0:0:1:0: PR command failed: 1026
[  726.856156][T14904] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  726.863036][T14904] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  727.181199][T14902] 
[  727.183592][T14902] ======================================================
[  727.190638][T14902] WARNING: possible circular locking dependency detected
[  727.197677][T14902] 6.15.0-syzkaller-03589-gfeacb1774bd5 #0 Tainted: G     U             
[  727.206029][T14902] ------------------------------------------------------
[  727.213061][T14902] syz.1.1763/14902 is trying to acquire lock:
[  727.219229][T14902] ffff88802667f178 (&q->elevator_lock){+.+.}-{4:4}, at: elevator_change+0x103/0x400
[  727.228694][T14902] 
[  727.228694][T14902] but task is already holding lock:
[  727.236176][T14902] ffff88802667ec40 (&q->q_usage_counter(io)#55){++++}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20
[  727.247660][T14902] 
[  727.247660][T14902] which lock already depends on the new lock.
[  727.247660][T14902] 
[  727.258080][T14902] 
[  727.258080][T14902] the existing dependency chain (in reverse order) is:
[  727.267199][T14902] 
[  727.267199][T14902] -> #3 (&q->q_usage_counter(io)#55){++++}-{0:0}:
[  727.275866][T14902]        blk_alloc_queue+0x619/0x760
[  727.281200][T14902]        blk_mq_alloc_queue+0x175/0x290
[  727.286817][T14902]        __blk_mq_alloc_disk+0x29/0x120
[  727.292398][T14902]        nbd_dev_add+0x4a0/0xbc0
[  727.297364][T14902]        nbd_init+0x181/0x320
[  727.302078][T14902]        do_one_initcall+0x120/0x6e0
[  727.307387][T14902]        kernel_init_freeable+0x5c2/0x900
[  727.313149][T14902]        kernel_init+0x1c/0x2b0
[  727.318033][T14902]        ret_from_fork+0x5d7/0x6f0
[  727.323184][T14902]        ret_from_fork_asm+0x1a/0x30
[  727.328493][T14902] 
[  727.328493][T14902] -> #2 (fs_reclaim){+.+.}-{0:0}:
[  727.335756][T14902]        fs_reclaim_acquire+0x102/0x150
[  727.341360][T14902]        prepare_alloc_pages+0x162/0x610
[  727.347040][T14902]        __alloc_frozen_pages_noprof+0x18b/0x23f0
[  727.353490][T14902]        __alloc_pages_noprof+0xb/0x1b0
[  727.359340][T14902]        pcpu_populate_chunk+0x110/0xb00
[  727.365108][T14902]        pcpu_alloc_noprof+0x86a/0x1470
[  727.370691][T14902]        bpf_map_alloc_percpu+0x9a/0x4b0
[  727.376358][T14902]        htab_map_alloc+0x10be/0x1540
[  727.381768][T14902]        map_create+0x592/0x1db0
[  727.386737][T14902]        __sys_bpf+0x47cc/0x4d80
[  727.391722][T14902]        __x64_sys_bpf+0x78/0xc0
[  727.396913][T14902]        do_syscall_64+0xcd/0x490
[  727.402154][T14902]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  727.408609][T14902] 
[  727.408609][T14902] -> #1 (pcpu_alloc_mutex){+.+.}-{4:4}:
[  727.416389][T14902]        __mutex_lock+0x199/0xb90
[  727.421448][T14902]        pcpu_alloc_noprof+0xb4a/0x1470
[  727.427034][T14902]        sbitmap_init_node+0x2fd/0x770
[  727.432562][T14902]        sbitmap_queue_init_node+0x41/0x560
[  727.438493][T14902]        blk_mq_init_tags+0x12d/0x2b0
[  727.443908][T14902]        blk_mq_alloc_map_and_rqs+0x237/0xf60
[  727.450006][T14902]        blk_mq_init_sched+0x30c/0x610
[  727.455528][T14902]        elevator_switch+0x1e1/0x7f0
[  727.460861][T14902]        elevator_change+0x2ac/0x400
[  727.466181][T14902]        elevator_set_default+0x292/0x320
[  727.472285][T14902]        blk_register_queue+0x393/0x4f0
[  727.477949][T14902]        __add_disk+0x74a/0xf00
[  727.482832][T14902]        add_disk_fwnode+0x13f/0x5d0
[  727.488148][T14902]        nbd_dev_add+0x791/0xbc0
[  727.493110][T14902]        nbd_init+0x181/0x320
[  727.497822][T14902]        do_one_initcall+0x120/0x6e0
[  727.503146][T14902]        kernel_init_freeable+0x5c2/0x900
[  727.508912][T14902]        kernel_init+0x1c/0x2b0
[  727.513794][T14902]        ret_from_fork+0x5d7/0x6f0
[  727.518935][T14902]        ret_from_fork_asm+0x1a/0x30
[  727.524261][T14902] 
[  727.524261][T14902] -> #0 (&q->elevator_lock){+.+.}-{4:4}:
[  727.532132][T14902]        __lock_acquire+0x126f/0x1c90
[  727.537542][T14902]        lock_acquire+0x179/0x350
[  727.542770][T14902]        __mutex_lock+0x199/0xb90
[  727.547824][T14902]        elevator_change+0x103/0x400
[  727.553153][T14902]        elv_iosched_store+0x2eb/0x3a0
[  727.558665][T14902]        queue_attr_store+0x279/0x320
[  727.564157][T14902]        sysfs_kf_write+0xf2/0x150
[  727.569306][T14902]        kernfs_fop_write_iter+0x351/0x510
[  727.575148][T14902]        iter_file_splice_write+0x91c/0x1150
[  727.581175][T14902]        direct_splice_actor+0x18f/0x6c0
[  727.587040][T14902]        splice_direct_to_actor+0x345/0xa30
[  727.592988][T14902]        do_splice_direct+0x174/0x240
[  727.598695][T14902]        do_sendfile+0xb06/0xe50
[  727.603958][T14902]        __x64_sys_sendfile64+0x1d8/0x220
[  727.610595][T14902]        do_syscall_64+0xcd/0x490
[  727.615653][T14902]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  727.622101][T14902] 
[  727.622101][T14902] other info that might help us debug this:
[  727.622101][T14902] 
[  727.632352][T14902] Chain exists of:
[  727.632352][T14902]   &q->elevator_lock --> fs_reclaim --> &q->q_usage_counter(io)#55
[  727.632352][T14902] 
[  727.646231][T14902]  Possible unsafe locking scenario:
[  727.646231][T14902] 
[  727.653694][T14902]        CPU0                    CPU1
[  727.659072][T14902]        ----                    ----
[  727.664451][T14902]   lock(&q->q_usage_counter(io)#55);
[  727.669862][T14902]                                lock(fs_reclaim);
[  727.676389][T14902]                                lock(&q->q_usage_counter(io)#55);
[  727.684403][T14902]   lock(&q->elevator_lock);
[  727.689017][T14902] 
[  727.689017][T14902]  *** DEADLOCK ***
[  727.689017][T14902] 
[  727.697173][T14902] 6 locks held by syz.1.1763/14902:
[  727.702385][T14902]  #0: ffff888031c34428 (sb_writers#7){.+.+}-{0:0}, at: splice_direct_to_actor+0x345/0xa30
[  727.712479][T14902]  #1: ffff8880703fc888 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x510
[  727.722284][T14902]  #2: ffff888026cd5f08 (kn->active#246){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2b2/0x510
[  727.732456][T14902]  #3: ffff888026c72988 (&set->update_nr_hwq_lock){++++}-{4:4}, at: elv_iosched_store+0x337/0x3a0
[  727.743142][T14902]  #4: ffff88802667ec40 (&q->q_usage_counter(io)#55){++++}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20
[  727.754887][T14902]  #5: ffff88802667ec78 (&q->q_usage_counter(queue)#7){+.+.}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20
[  727.766792][T14902] 
[  727.766792][T14902] stack backtrace:
[  727.772703][T14902] CPU: 1 UID: 0 PID: 14902 Comm: syz.1.1763 Tainted: G     U              6.15.0-syzkaller-03589-gfeacb1774bd5 #0 PREEMPT(full) 
[  727.772750][T14902] Tainted: [U]=USER
[  727.772759][T14902] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  727.772776][T14902] Call Trace:
[  727.772786][T14902]  <TASK>
[  727.772798][T14902]  dump_stack_lvl+0x116/0x1f0
[  727.772828][T14902]  print_circular_bug+0x275/0x350
[  727.772860][T14902]  check_noncircular+0x14c/0x170
[  727.772894][T14902]  __lock_acquire+0x126f/0x1c90
[  727.772930][T14902]  lock_acquire+0x179/0x350
[  727.772960][T14902]  ? elevator_change+0x103/0x400
[  727.773000][T14902]  ? __pfx___might_resched+0x10/0x10
[  727.773048][T14902]  __mutex_lock+0x199/0xb90
[  727.773076][T14902]  ? elevator_change+0x103/0x400
[  727.773116][T14902]  ? elevator_change+0x103/0x400
[  727.773155][T14902]  ? __pfx___mutex_lock+0x10/0x10
[  727.773187][T14902]  ? blk_mq_cancel_work_sync+0xd8/0x110
[  727.773216][T14902]  ? __pfx_blk_mq_cancel_work_sync+0x10/0x10
[  727.773248][T14902]  ? elevator_change+0x103/0x400
[  727.773285][T14902]  elevator_change+0x103/0x400
[  727.773325][T14902]  elv_iosched_store+0x2eb/0x3a0
[  727.773366][T14902]  ? __pfx_elv_iosched_store+0x10/0x10
[  727.773409][T14902]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  727.773440][T14902]  ? __mutex_trylock_common+0xe9/0x250
[  727.773475][T14902]  ? __pfx_elv_iosched_store+0x10/0x10
[  727.773516][T14902]  queue_attr_store+0x279/0x320
[  727.773547][T14902]  ? __pfx_queue_attr_store+0x10/0x10
[  727.773576][T14902]  ? __lock_acquire+0x622/0x1c90
[  727.773613][T14902]  ? find_held_lock+0x2b/0x80
[  727.773654][T14902]  ? sysfs_file_kobj+0xe4/0x290
[  727.773697][T14902]  ? __pfx_queue_attr_store+0x10/0x10
[  727.773733][T14902]  sysfs_kf_write+0xf2/0x150
[  727.773775][T14902]  kernfs_fop_write_iter+0x351/0x510
[  727.773813][T14902]  ? __pfx_sysfs_kf_write+0x10/0x10
[  727.773856][T14902]  iter_file_splice_write+0x91c/0x1150
[  727.773911][T14902]  ? __pfx_iter_file_splice_write+0x10/0x10
[  727.773959][T14902]  ? __pfx_copy_splice_read+0x10/0x10
[  727.774009][T14902]  ? __pfx_iter_file_splice_write+0x10/0x10
[  727.774055][T14902]  direct_splice_actor+0x18f/0x6c0
[  727.774102][T14902]  splice_direct_to_actor+0x345/0xa30
[  727.774146][T14902]  ? __pfx_direct_splice_actor+0x10/0x10
[  727.774193][T14902]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  727.774241][T14902]  do_splice_direct+0x174/0x240
[  727.774283][T14902]  ? __pfx_do_splice_direct+0x10/0x10
[  727.774325][T14902]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  727.774370][T14902]  ? rw_verify_area+0xcf/0x680
[  727.774413][T14902]  do_sendfile+0xb06/0xe50
[  727.774440][T14902]  ? __pfx_do_sendfile+0x10/0x10
[  727.774469][T14902]  ? __x64_sys_futex+0x1e0/0x4c0
[  727.774496][T14902]  ? __x64_sys_futex+0x1e9/0x4c0
[  727.774525][T14902]  __x64_sys_sendfile64+0x1d8/0x220
[  727.774560][T14902]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  727.774593][T14902]  ? syscall_user_dispatch+0x78/0x140
[  727.774636][T14902]  do_syscall_64+0xcd/0x490
[  727.774665][T14902]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  727.774693][T14902] RIP: 0033:0x7fc97738e969
[  727.774719][T14902] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  727.774748][T14902] RSP: 002b:00007fc97818f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  727.774774][T14902] RAX: ffffffffffffffda RBX: 00007fc9775b5fa0 RCX: 00007fc97738e969
[  727.774793][T14902] RDX: 0000000000000000 RSI: 000000000000000a RDI: 000000000000000a
[  727.774810][T14902] RBP: 00007fc977410ab1 R08: 0000000000000000 R09: 0000000000000000
[  727.774827][T14902] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000
[  727.774844][T14902] R13: 0000000000000000 R14: 00007fc9775b5fa0 R15: 00007ffc406d0ac8
[  727.774870][T14902]  </TASK>