last executing test programs:

12m58.183389946s ago: executing program 0 (id=381):
semget$auto(0x80000000, 0x13c, 0x3ff)
unshare$auto(0x2)
semctl$auto_SETVAL(0x0, 0xfff, 0x10, 0x7)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0x7fffffff)
mmap$auto(0x0, 0x6b, 0x101, 0xeb1, 0x401, 0x8000)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snd/midiC2D0\x00', 0x80102, 0x0)
sendmsg$auto_GTP_CMD_GETPDP(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000006c0)=ANY=[@ANYBLOB='\x00\x00', @ANYRES16=0x0, @ANYBLOB="01002dbd7000fbdbdf250200000008000700", @ANYRES32, @ANYBLOB="0800080004000000f9b2b4d705e1cad48b72ed21c7c51cf54a99cf8a90201074b90410d15530db2bfbea78a6f3c8f373236a07be828ab3710b8d996119f7e8cd8e1e07136abf37ad9b3b01b68dc8790e0afe4ef2f65ba14ab00cf76eeb0ac207bd92fca3de65b6b3c56e1f5365ed6cd5fa3b984fddbe5b42d326c14cffa371cead663dc8f94aa9dcf8d88b5ddd0389471d75d83cac8b3973d382ec45"], 0x24}, 0x1, 0x0, 0x0, 0x20000801}, 0x0)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df45"], 0x1ac}}, 0x0)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f00000005c0)="64e89d70f1cac34c51628f267af0f54c825d770a08df3ce7faecb3a3e19f14745dc7ff63dc20fb23df3456db3f6d44ece9cca7929a561e00671b1bbdc23d638e3be08997776faacc361ca2e4742c000a740f9b9d81c60f59d8eb5ca975673b152d3e0d0dbdacb99677cdacac59626686ebd0ec83227e4cbf6ffb626582fd7e5e5950e7ea2fe2a171cb3d9980180e91187d075cf8ddc3368a82ffffd1987d4128328714b994d8ca81af1079604edb04cd82606700dbb75250a743a3286895944dca84f33fffdaef46bffeee7c8100", 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x8)
socket(0x28, 0x1, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptya3\x00', 0x5c240, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/block/ram12/discard_alignment\x00', 0x8000, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000080)=""/150, 0x96)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/asound/card0/pcm0c/sub4/xrun_injection\x00', 0x400, 0x0)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=ANY=[@ANYBLOB="2f212abd"], 0x14}}, 0x4000040)
ioperm$auto(0x7, 0x6, 0x2)
lsm_get_self_attr$auto(0x64, 0x0, &(0x7f0000002440)=0x1ff, 0x0)
mmap$auto(0x2, 0x4020010, 0x5, 0x200000eb1, 0x401, 0x70040000000000)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f0000000480)='/d\x04p/iud\x02\xe5\xeb\x1bV\xff\xe9$v\x13\xd9<\xad9\xa5\xbe\xafp\x8dg\xff\xfc$\x06\x00gN\x8e\xe9\xedVN{T\xea\xd9\xaf\xfd5\xbe\xe5\xd3x\xd3\xfb\x16d\x11\xa9K', 0x2000000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000340)={[0x202, 0x7, 0xd, 0x1, 0x948b, 0x4460, 0x15f4da1a, 0x1, 0x3, 0x300000000000000, 0x80000001, 0x7, 0x0, 0x5, 0x2]}, 0x0)
read$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffffff, &(0x7f00000004c0)=""/244, 0xf4)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
r3 = openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/tracing/per_cpu/cpu0/buffer_size_kb\x00', 0x361100, 0x0)
write$auto_tracing_entries_fops_trace(r3, &(0x7f0000000300)="7e589c874daf1cc6e05e7fd5a64b1538d54560f7bd4dc2d7a8a03b", 0x1b)

12m57.774374237s ago: executing program 0 (id=382):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
write$auto(0xffffffffffffffff, 0x0, 0xfffffdef) (async, rerun: 32)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async, rerun: 32)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) (async, rerun: 32)
open(0x0, 0x261c2, 0x84) (async, rerun: 32)
close_range$auto(0x2, 0x8000, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8000, 0x0) (async)
r1 = socket(0xa, 0x2, 0x88)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'vcan0\x00', <r3=>0x0})
bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r3, r2, 0x4, 0x9, r1, @relative_id=0x8, 0xe600}, 0xf)
bpf$auto(0x2, &(0x7f0000000500)=@bpf_attr_11={0x5, 0x200ffffffff, 0x9, 0x5, 0xf870e9f, 0x7, 0x8}, 0x9)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0) (async)
io_uring_setup$auto(0x6, 0x0) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
r4 = socket(0x2b, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0xd}}, 0x6a) (async)
sendmmsg$auto(r4, &(0x7f0000001300)={{&(0x7f0000000180)="f9be786d4b07000000bd2934ece6f8cc02afedd94622846b4a6bf5915b2c3ae45415fe82b5a9ac94e13482f894f6c3418e6e2229be1a48e21f03a56e01e6807942e9ff10eb684cea43429630c5418745c176010c6592c491e21a3c1b9e7a2eb21d40f6a6fcb02dc3158d501209586572b8a2d0f1dbb657774997a96c15b798efb913d3a8b2f33fe8b0c287c2324aa2dc86277b9151c2a9a450c17b370bf087417da7f457d4427c30d0c1b21e8a48d582f19a0e6cd5dcb769f034", 0x12, 0x0, 0xb, 0x0, 0x1f, 0xb}, 0xfffd}, 0x3, 0x20000000) (async, rerun: 32)
socket(0x2, 0x2, 0x0) (rerun: 32)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) (async, rerun: 64)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) (async, rerun: 64)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) (async)
syz_clone(0x44181100, 0x0, 0x0, 0x0, 0x0, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) (async)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)

12m56.355672238s ago: executing program 0 (id=384):
ioctl$auto_VHOST_SET_LOG_FD2(0xffffffffffffffff, 0x4004af07, &(0x7f0000000080)=<r0=>0xffffffffffffffff)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, r0, 0x8000)
r1 = socket(0x11, 0x3, 0x9)
close_range$auto(0x2, r1, 0x0)
r2 = clone$auto(0x6db, 0x1, 0x0, 0x0, 0x7)
migrate_pages$auto(r2, 0x4, 0x0, &(0x7f0000000180)=0x2)
sendmmsg$auto(0xffffffffffffffff, &(0x7f00000000c0)={{&(0x7f0000000140)="396a0612424fba77ec88c00959bac4c9543eab2cd58e5868d8e4f15ccca4803168f27e0ada504ebbfed2b9f565fdd8e98ad4592be126f0f5ed9a0357bc757fe758d2fd2ae5880c1048d25798d7166b7e795b33b8ab9b184e34fc1ffd3780e79009d7a0523697bf156d9d851195c334df93374c8aecbc0ea6cee16c30360b27039681dd07615acd625022536503e1e41ae659772f9bd3afd6f112008e2cff9eccc6caf2c42001607de1d3acc0000a0312d69f0eb3e077ca2c177dd6d4cf10aace8cf53f1b87b0ce9668c5615458f99ed9681a3b9b891708a1dd40724720fbd661816a77a16f76677d69ff55", 0x5, &(0x7f0000000040)={&(0x7f0000000240)="c5d00a114907759cc87586a10997e44f91434bce05961a1292feac998e6c6d43fdd637ca2d5109e56258c233690de881ea42b218e707a7654e8a10127ad1e89ffea6f5f700aef4605316e1532018b706019ee00639e16892ff760d810f605623f3abd49c14c684237435d4d5266c63500682172b27c2a9081d41388689d90e34d4017142380b68e00204785a957b26249676cf22f2634e69fd910fc4c3ab4167c01ee43b318eb0ac164fa8bee5343e856226cb139582788ab392d6153b2c20288843efd7", 0x5f60000}, 0x4, &(0x7f0000000080), 0xfffffffffffffff9, 0xf82}, 0x3a}, 0x6, 0x6)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'wlan1\x00'})
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x80842, 0xb3)
r3 = socket(0xa, 0x5, 0x0)
setsockopt$auto(r3, 0x10000000084, 0x12, 0x0, 0x4)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
bpf$auto(0x0, 0x0, 0xf)
bpf$auto(0x1a, &(0x7f0000000380)=@link_create={@map_fd, @target_ifindex, 0x3, 0x81, @uprobe_multi={0x81, 0x1ff, 0x3d7e, 0x0, 0x1, 0x4}}, 0x92)
setsockopt$auto(0xffffffffffffffff, 0x107, 0x14, 0x0, 0x4)
sendmmsg$auto(r1, &(0x7f0000000400)={{&(0x7f0000000000), 0x205aa, &(0x7f0000000100)={0x0, 0x6}, 0x1, 0x0, 0x5, 0x1000}, 0x5}, 0x2, 0x100)

12m51.534783952s ago: executing program 0 (id=390):
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000640)='/dev/snd/controlC0\x00', 0x80, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_WRITE(r0, 0xc4c85513, &(0x7f0000000700)={{@raw=0xb, 0x1, 0x2, 0x406, "26cb83211ffd0c7c67850e138dd717bfeb7ab5c55e35d9811b26db6e6f8c5d7d56a2a31e5dfe2700", @raw=0x1}, 0x0, @integer64=@value=[0x1, 0x3ff, 0x4, 0x3, 0x14, 0x848, 0x80000000, 0x2, 0xad0, 0x9, 0x8, 0x200, 0xffff, 0x0, 0x1, 0x6, 0x48c, 0x6, 0x80000000000002, 0x40, 0x0, 0xfffffffffffffff3, 0xd, 0xb2, 0x19, 0x6, 0x7, 0x5, 0x7, 0x3d5, 0x5, 0x7, 0x8000, 0x11, 0x2, 0x3, 0xf75, 0x7, 0xe, 0x55, 0x9, 0x1, 0x81, 0x19b, 0x8, 0xfffffffffffffffa, 0x0, 0x5, 0x2, 0x5, 0x8, 0x5, 0x15, 0x7, 0x1, 0xfffffffffffffffc, 0x9, 0x2, 0x7, 0x5, 0x0, 0xffffffffffff0000, 0xe, 0x6], "02d4f43065c34bdcb5fa6160f2475b3eb5328361438ff4cd82ad2e9771421debdad4d39a52fc70b9012aff448a8b16dd8f5751e93614151d7a4f55a63e9ba1ad1e65796d2a00d644b0d7569d0666abab0c0fd3b4287befd247e5410bef4c186120b5bed4ab64ffeb4b7c5a691660219c000100f8fffffffffffeec00"})
r1 = open(&(0x7f0000000800)='./file1\x00', 0x2d1a6fdbbd55d8e0, 0x0)
setsockopt$auto(0xffffffffffffffff, 0x10000000084, 0x80, 0x0, 0x8000008)
mmap$auto(0x0, 0x88b, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0)
read$auto(r2, 0x0, 0x20)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000)
r4 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
r5 = socket(0x25, 0x1, 0x1)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r6 = clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
connect$auto(r5, &(0x7f0000000040)=@generic={0x25, "835aabaf5dc454e38226799f73aa"}, 0x18)
r7 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r7, @ANYRESOCT=r4, @ANYRES16=r1, @ANYBLOB="0800610002", @ANYRESHEX=r5, @ANYRES64=r6], 0x24}, 0x1, 0x0, 0x0, 0x4004080}, 0x20040894)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000280)={'veth0_vlan\x00', <r8=>0x0})
sendmsg$auto_NCSI_CMD_SET_CHANNEL_MASK(r1, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000c00)={0x1204, 0x0, 0x0, 0x70bd29, 0x25dfdbfe, {}, [@NCSI_ATTR_PACKAGE_LIST={0x10, 0x2, 0x0, 0x1, [@nested={0xc, 0x7c, 0x0, 0x1, [@typed={0x8, 0x14a, 0x0, 0x0, @u32=0x5}]}]}, @NCSI_ATTR_PACKAGE_ID={0x8, 0x3, 0xa}, @NCSI_ATTR_IFINDEX={0x8}, @NCSI_ATTR_PACKAGE_LIST={0x11be, 0x2, 0x0, 0x1, [@nested={0x1065, 0xf1, 0x0, 0x1, [@typed={0x14, 0x11c, 0x0, 0x0, @ipv6=@rand_addr=' \x01\x00'}, @nested={0x4, 0x11f}, @generic="04d0c56e9c3c8889f4089b362b0eec03d894385e27c31cae9abf81b64c8c34476fe0730120ee104b0c65df83231a0dcc6e11c3f0a8a6dfbb3a5851836c", @generic="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", @nested={0x4, 0x50}, @typed={0x8, 0x9a, 0x0, 0x0, @pid=r6}]}, @generic="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", @nested={0x15, 0x54, 0x0, 0x1, [@nested={0x4, 0x20}, @generic="16b1e87bb54d666eafed14d6b0"]}, @typed={0x8, 0x8c, 0x0, 0x0, @fd=r1}, @nested={0x34, 0x7f, 0x0, 0x1, [@typed={0x8, 0x100, 0x0, 0x0, @pid=r6}, @nested={0x4, 0x33}, @nested={0x4, 0x42}, @typed={0x14, 0xd, 0x0, 0x0, @ipv6=@private0}, @typed={0x8, 0x118, 0x0, 0x0, @pid=r6}, @nested={0x4, 0x40}]}]}, @NCSI_ATTR_IFINDEX={0x8, 0x1, r8}, @NCSI_ATTR_PACKAGE_ID={0x8, 0x3, 0xf}]}, 0x1204}, 0x1, 0x0, 0x0, 0x4000}, 0x41004)
writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0xa, 0x7, 0x84)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8)
r9 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
ioctl$auto_SNDCTL_DSP_SPEED(r9, 0xc0045002, 0x0)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_gtp(&(0x7f0000000080), r10)
sendmsg$auto_GTP_CMD_GETPDP(r10, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[], 0x1c}, 0x1, 0x0, 0x0, 0x28008000}, 0x240018d0)

12m45.800165738s ago: executing program 0 (id=396):
timerfd_settime$auto(0xffffffffffffffff, 0xd, &(0x7f00000002c0)={{0x5, 0x1}, {0x7, 0x6}}, &(0x7f0000000300)={{0x400, 0x5}, {0x1200000, 0xffffffffffffffff}})
sendmsg$auto_BATADV_CMD_SET_MESH(0xffffffffffffffff, 0x0, 0x0)
get_mempolicy$auto(0x0, &(0x7f0000000080)=0x4, 0x0, 0x1, 0xf86)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = open(&(0x7f0000000000)='&&\x00', 0x10000, 0x0)
flock$auto(r1, 0x6)
openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec18\x00', 0x900, 0x0)
setfsuid$auto(0x0)
mkdir$auto(0x0, 0x6)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
mkdir$auto(&(0x7f00000001c0)='./file0\x00', 0x0)
memfd_create$auto(0x0, 0xe)
r2 = socket(0x2, 0x1, 0x106)
setsockopt$auto(r2, 0x1, 0x21, 0x0, 0x9)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @loopback}, 0x6a)
sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x7}, 0x6}, 0x5, 0x20000000)
socket(0xa, 0x2, 0x3a)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000180), 0xffffffffffffffff)
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
write$auto(0x3, 0x0, 0xfffffdef)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
getsockopt$auto(r0, 0x9, 0x8f3, &(0x7f0000000200)='[&#\xfa\\{\x00', &(0x7f0000000240))
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x0)
setresuid$auto(0x2, 0xffffffffffffffff, 0x200)
keyctl$auto(0x5, 0xfffffffd, 0x101, 0x1, 0x4000000000b8c)
keyctl$auto(0xb, 0xfffffffd, 0x7, 0xfffffffffff00003, 0x6)
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/swaps\x00', 0x180, 0x0)
select$auto(0x4, &(0x7f0000000000)={[0x60ad, 0x3, 0x2, 0x7, 0x8, 0x3, 0x7, 0xce, 0x2, 0xc87, 0x2, 0x4, 0x9, 0x2, 0xffff, 0x5]}, &(0x7f0000000100)={[0x5, 0x1, 0x8, 0x8, 0x6, 0x9, 0x0, 0x5, 0xf8, 0xffffffffffff402e, 0x800, 0x60000000, 0x40, 0x4, 0x87, 0x4]}, 0x0, 0x0)
mmap$auto(0x0, 0x2020006, 0x3, 0x12, 0x8000000000000000, 0x8000)

12m39.993806385s ago: executing program 0 (id=403):
mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x401f, 0x1, 0x8e051, 0xffffffffffffffff, 0x0)
bpf$auto(0xd, 0x0, 0x6f5)
mmap$auto(0x0, 0x4, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8100)
init_module$auto(0x0, 0xffff9, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
r0 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
fcntl$auto(r0, 0x400, 0x1)
execve$auto(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
socket(0xa, 0x2, 0x0)
unshare$auto(0x40000080)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/pressure/cpu\x00', 0x0, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f00000000c0)=""/4087, 0xff7)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x0, 0x8000)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='/sys/kernel/mm/transparent_hugepage/shrink_underused\x00', 0x200, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000140)=""/12, 0xc)
setsockopt$auto(0x400000000000003, 0x29, 0x17, 0x0, 0x56b)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd3/queue/iosched/write_expire\x00', 0x20681, 0x0)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
writev$auto(0xffffffffffffffff, &(0x7f00000035c0)={0x0, 0x3}, 0x9)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(0xffffffffffffffff, 0xc1105517, &(0x7f00000001c0)={{@raw=0x6, 0x100110d, 0xffff, 0xa, "e927783f468fa2e92fe8ec7a46cbb766439daa1ee1aa00000000e1800000000000000000040000660e070100"}, 0x6, 0x0, 0xffff, @raw=0x404, @enumerated={0x5, 0x7, "e6c4c0bfb4fd81ef19df360e87dea3833ecda0b285340f5ae6cebb646649c9efec5e06d2097df5f920b89658f9950ac4b226884b75908390d69dc076696a1409", 0x40, 0x9}, "a4699d30a05edbe0d28473c399a7dc920b153e9b1675451d7de94b4123f970bedd3460c667373fcc59b584d81592f6ab606c276852295e00af49e6de6e768034"})
execve$auto(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/locks\x00', 0x0, 0x0)
prctl$auto(0x21, 0x1, 0x2, 0x0, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r3, 0x0, 0x0)
close_range$auto(r1, 0x8, 0x76fa)
openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f00000010c0), 0x795dc2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)

12m24.329292106s ago: executing program 32 (id=403):
mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x401f, 0x1, 0x8e051, 0xffffffffffffffff, 0x0)
bpf$auto(0xd, 0x0, 0x6f5)
mmap$auto(0x0, 0x4, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8100)
init_module$auto(0x0, 0xffff9, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
r0 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
fcntl$auto(r0, 0x400, 0x1)
execve$auto(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
socket(0xa, 0x2, 0x0)
unshare$auto(0x40000080)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/pressure/cpu\x00', 0x0, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f00000000c0)=""/4087, 0xff7)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x0, 0x8000)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='/sys/kernel/mm/transparent_hugepage/shrink_underused\x00', 0x200, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000140)=""/12, 0xc)
setsockopt$auto(0x400000000000003, 0x29, 0x17, 0x0, 0x56b)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd3/queue/iosched/write_expire\x00', 0x20681, 0x0)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
writev$auto(0xffffffffffffffff, &(0x7f00000035c0)={0x0, 0x3}, 0x9)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(0xffffffffffffffff, 0xc1105517, &(0x7f00000001c0)={{@raw=0x6, 0x100110d, 0xffff, 0xa, "e927783f468fa2e92fe8ec7a46cbb766439daa1ee1aa00000000e1800000000000000000040000660e070100"}, 0x6, 0x0, 0xffff, @raw=0x404, @enumerated={0x5, 0x7, "e6c4c0bfb4fd81ef19df360e87dea3833ecda0b285340f5ae6cebb646649c9efec5e06d2097df5f920b89658f9950ac4b226884b75908390d69dc076696a1409", 0x40, 0x9}, "a4699d30a05edbe0d28473c399a7dc920b153e9b1675451d7de94b4123f970bedd3460c667373fcc59b584d81592f6ab606c276852295e00af49e6de6e768034"})
execve$auto(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/locks\x00', 0x0, 0x0)
prctl$auto(0x21, 0x1, 0x2, 0x0, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r3, 0x0, 0x0)
close_range$auto(r1, 0x8, 0x76fa)
openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f00000010c0), 0x795dc2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)

1m28.967654228s ago: executing program 4 (id=2007):
mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r0 = socket(0xa, 0x1, 0x100)
setsockopt$auto(r0, 0x29, 0x1b, 0x0, 0x56b)
socket(0xa, 0x3, 0x2c)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
r1 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0)
ioctl$auto_PPPIOCSMRU(r1, 0xc004743e, 0x0)
ioctl$auto_PPPIOCSPASS(r1, 0x40107447, &(0x7f0000000040)={0x6, 0x0})
ioctl$auto_PPPIOCSPASS(r1, 0x40107447, &(0x7f00000000c0)={0x9, &(0x7f0000000000)={0x4, 0xf1, 0xb0, @raw=0x68e8}})
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x20b42, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x6, 0x0)
nanosleep$auto(0x0, 0x0)
ioctl$auto_SNDCTL_DSP_SPEED(r2, 0xc0045002, 0x0)
setsockopt$auto(0x400000000000003, 0x29, 0x1c, 0x0, 0x56b)
r3 = syz_clone(0x800000, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x6, 0x5, 0x4, 0x50, 0x401, 0x401)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
getpid()
r4 = pidfd_open$auto(r3, 0x0)
setns(r4, 0x20000000)

1m27.882437542s ago: executing program 4 (id=2011):
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/route\x00', 0x240, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0x4)
open(&(0x7f0000000000)='./file0\x00', 0x204000, 0xe1d2b27bdc14ab7c)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x6, 0x0)
r0 = openat$auto_o2hb_debug_fops_heartbeat(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/o2hb/quorum_regions\x00', 0x40000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0x10, 0x2, 0x8)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000005c0)=ANY=[], 0x18}}, 0x4044084)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/admmidi2\x00', 0x600000, 0x0)
mmap$auto(0x0, 0x2020005, 0x3, 0xeb4, 0xfffffffffffffffa, 0x8004)
write$auto(0x3, 0x0, 0x100082)
fcntl$auto_F_ADD_SEALS(0xffffffffffffffff, 0x409, 0x0)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, 0x0, 0xa2741, 0x0)
adjtimex$auto(&(0x7f00000004c0)={0x25, 0x0, 0x0, 0xfffffffffffffffd, 0x6, 0x3, 0x6, 0x0, 0x3, 0x0, 0x5, {0x2100000000, 0x10000}, 0x7f, 0x6, 0xffffffffffffffdd, 0x7, 0x0, 0x80000004, 0x217, 0xffffffff, 0xa747, 0x7, 0x3})
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/dmmidi2\x00', 0x60ae01, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
r3 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon33\x00', 0x18b902, 0x0)
readv$auto(r3, &(0x7f0000000240)={0x0, 0x15}, 0x1)
mmap$auto(0x0, 0x1, 0x4000000000df, 0x40eb1, 0xffffffffffffffff, 0x300000000000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000280)='/dev/ptyx7\x00', 0x505c81, 0x0)
r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop1\x00', 0x34f602, 0x0)
write$auto(r4, 0x0, 0xfffffdef)
listen$auto(0x3, 0x81)
close_range$auto(r0, r0, 0x9)
socket(0xa, 0x2, 0x8)

1m27.506780038s ago: executing program 4 (id=2012):
socket(0xa, 0x5, 0x0)
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000)
clone$auto(0x10051c, 0x6, 0x0, 0xffffffffffffffff, 0x80000001)
setsockopt$auto(0x3, 0x10000000084, 0xd, 0x0, 0x4)
sendmsg$auto_NL80211_CMD_DEL_INTERFACE(0xffffffffffffffff, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000880)={&(0x7f00000001c0)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000227bd7000fedbdf25080000000400870005003e00040000000800f800040000000c001d8008000080040004"], 0x34}, 0x1, 0x0, 0x0, 0xd5}, 0x20000010)
r0 = syz_genetlink_get_family_id$auto_nl802154(0x0, 0xffffffffffffffff)
sendmsg$auto_NL802154_CMD_DEL_SEC_DEVKEY(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000200)={0x1c8, r0, 0x20, 0x70bd2a, 0x25dfdbfd, {}, [@NL802154_ATTR_COORDINATOR={0x1ac, 0x1e, 0x0, 0x1, [@nested={0x1a5, 0x142, 0x0, 0x1, [@nested={0x4, 0x37}, @generic="bce95fa301d257b20950570097cf8b9e282de95ce5a83872761c96d893847b23ad54bf01cbcbe6f2d41f32beca596aaf86c81a3beba57103699099bd51066fd4619e31618884054f4324a3028902f3649a737c0635ad7971557c30d9ec099b0c16a4e56137166b489c46924a129fe9a5a3cd76443270e690843b7ad61984c37253311bd1e7f6cabb57fc53fa13f3c8a287cf413a317366f364a3d7b6de0f92276aa2899632027c99337bd4eff040bcbab9997e6246d63030802bf6d9e056f8ca7e3fa3a8c0ce4d7985738a7f35574cee2b8498e047b05c20ea0ec9", @nested={0x4, 0xa}, @nested={0x4, 0x64}, @generic="983fbb31659b4aafaf57c0010cddeac2be24d9851b6054251ceeff382a4b2db3855c115924921cf85b8573849cf6cb9b33f82fa69cd14e7ef581192a5c7065d16bd7a52ce366466fe6b56e2f294c8461c67508f8f3745ad10bd4639a6a52d778a717ffd9fed9745e95d7c59359c407f7479fa963a29c1a46464406d1a808cebcf49a883aeef8231dd67b71e911653edbf31690", @generic="5e635aa2114aca3d70ff446666850e56db8348211cbfcb69ae47a0e127882e758b24743879ab40"]}]}, @NL802154_ATTR_CCA_ED_LEVEL={0x8, 0xe, 0x1}]}, 0x1c8}, 0x1, 0x0, 0x0, 0x4}, 0x4)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket(0x2b, 0x1, 0x0)
sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r2)
sendmsg$auto_NL80211_CMD_DISASSOCIATE(r2, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB='\x00\b\x00\x00', @ANYRES16=r3, @ANYBLOB="00012bbd7000fddbdf252800000005003e000800000031004801a289c1c1f3026f75a4d3a66a76f9f65578159c8a96f55e156e69b5114d651d9ec494a3d7791ee432bb9c"], 0x60}, 0x1, 0x0, 0x0, 0x54}, 0x1)
r4 = syz_genetlink_get_family_id$auto_nfc(&(0x7f0000000780), r2)
sendmsg$auto_NFC_CMD_FW_DOWNLOAD(r2, &(0x7f0000000840)={&(0x7f0000000740), 0xc, &(0x7f0000000800)={&(0x7f00000007c0)={0x28, r4, 0x96cfad7c2a329a3, 0x70bd29, 0x25dfdbfc, {}, [@NFC_ATTR_DEVICE_POWERED={0x5, 0xc, 0xb4}, @NFC_ATTR_DEVICE_NAME={0xc, 0x2, 'nl80211\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x800}, 0x4000000)
msgctl$auto_MSG_STAT(0x0, 0xb, &(0x7f0000000480)={{0x2e9c65db, <r5=>0xee01, 0xee00, 0x4, 0x5, 0x3, 0x6f5c}, &(0x7f0000000400)=0x1, &(0x7f0000000440)=0x8, 0x8, 0x7, 0x9, 0x1, 0x9, 0x1, 0x40, 0x3a, @inferred, @inferred=0xffffffffffffffff})
sendmsg$auto_NL80211_CMD_SET_PMK(r1, &(0x7f0000000700)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000006c0)={&(0x7f0000000500)={0x19c, r3, 0x213, 0x70bd2d, 0x25dfdbfb, {}, [@NL80211_ATTR_FILS_ERP_REALM={0xf8, 0xfa, "dbdde1f8953a90af489c7ea156104b13adadeee040fdf8aed9988c03c6eee9a9d3577a972f185fec4e44a0c0144c263f731d3b2949f79f1b9ec11df039146ef0ab333f40c35c715d18a3e2274d8d907b20f92f29e523317d7f8a8f1f517841ea75f8a602aab73d85962d6aaa7891da2e58f12b664d1dba022c73c5fe24a3c8a467c0512294a11117ce7995a012daec758150ccb2701544c0545c6c3ed4fbdf0491af310615d8a7973ef038bdea48560af40f9dfe4bcb3dcd141e1cd1cdd1ee8aa3df8b8f9ff4b8d12a381caaf2d63f7bf83cbbf32fe3e77c30f819e01f0fe033cf68a08516e2db0ab5a70c72a20e30b32f60f048"}, @NL80211_ATTR_HW_TIMESTAMP_ENABLED={0x4}, @NL80211_ATTR_TIMED_OUT={0x4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x7fff}, @NL80211_ATTR_VHT_CAPABILITY_MASK={0x10, 0xb0, "60c18ebfaa3b9fe78adbc90b"}, @NL80211_ATTR_BG_SCAN_PERIOD={0x6, 0x98, 0xf}, @NL80211_ATTR_TDLS_PEER_CAPABILITY={0x8, 0xcb, 0x80000001}, @NL80211_ATTR_CONTROL_PORT_OVER_NL80211={0x4}, @NL80211_ATTR_BSS_SELECT={0x5c, 0xe3, 0x0, 0x1, [@typed={0x8, 0x50, 0x0, 0x0, @uid=r5}, @typed={0x4f, 0x2c, 0x0, 0x0, @binary="cf9f5563b8ab9795d5b07fcd98e18cbb23329d982c748d3c0ac8bc977d4062f4916cf1af706fb448581c5c7a0c6dfacd395cfd2facdd62d36e9f9f1563131a8ed91f0142a5bf224d08e1a7"}]}]}, 0x19c}, 0x1, 0x0, 0x0, 0x48080}, 0x8d2)
r6 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event2\x00', 0x20081, 0x0)
write$auto(r6, &(0x7f0000000000)='/dev/\xe9nput/event0\x00', 0x7fe)
r7 = getpid()
process_vm_readv$auto(r7, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0)

1m26.509208139s ago: executing program 4 (id=2013):
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x24004080}, 0x20040894)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
poll$auto(&(0x7f0000000100)={<r0=>0xffffffffffffffff, 0x9, 0xf200}, 0x2, 0x0)
mmap$auto(0x0, 0x7, 0x3, 0xeb1, r0, 0x7ffe)
r1 = socket(0x2, 0x6, 0x0)
getsockopt$auto(r1, 0x10d, 0x10, 0x0, &(0x7f0000000000)=0xb)
write$auto(0xffffffffffffffff, &(0x7f0000000040)='0\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
socket(0x15, 0x5, 0x0)
sendto$auto(0x3, 0x0, 0x2000f, 0x0, &(0x7f0000000040), 0x1c)
mmap$auto(0xa900, 0x400008, 0xdf, 0x9b72, 0xfffffffffffffffe, 0x4)
r2 = fcntl$auto(0x8000000000000001, 0x5, 0x8)
mq_timedsend$auto(r0, &(0x7f0000000200)='\x00', 0x879, 0x2, &(0x7f00000001c0)={0x10000})
set_mempolicy$auto(0x6, &(0x7f0000000000)=0x7fffffffffffffff, 0x4)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000)
syz_genetlink_get_family_id$auto_ipvs(0x0, r2)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/platform/dummy_hcd.1/usb2/bConfigurationValue\x00', 0x101142, 0x0)
mmap$auto(0x0, 0xa4b2, 0x3, 0x13, 0xfffffffffffffffa, 0x8000)
r3 = open(&(0x7f0000000000)='./cgroup.cpu/cgroup.procs\x00', 0x101800, 0x7)
read$auto(r3, 0x0, 0x1)
write$auto(0x3, 0x0, 0xfdef)
pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xc9\xb3\xbc\x8c\x1dga08\x90\x86\xdde\x1cJ\x99\x00\x11\x11\x14\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xfe\x80\x00\x00\x00\x00\x00\x00\x0fo\x84\xfc\x89\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#\x1c\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd8\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xaf\n1\x80\x1a\xbc_\xef\x8b\t\xcc\xa6\xf2\xc1\"\xact\xee\xc9\x00'/232, 0xfdef, 0x3)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
pipe2$auto(0x0, 0x80)
fcntl$auto(0x0, 0x407, 0x100000)
clock_nanosleep$auto(0x2, 0x1000, 0x0, 0x0)
open(0x0, 0x161342, 0x100)
ustat$auto(0x1, &(0x7f0000000080)={0xfffffff9, 0x6, "94a34a6962a7", "f35249a1dfb4"})
rseq$auto(0x0, 0x8000, 0x0, 0x6)

1m25.253290976s ago: executing program 4 (id=2016):
sigaltstack$auto(&(0x7f0000000040)={0x0, 0x80000000, 0x7fffffffffffffff}, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = getpid()
r1 = gettid()
rt_tgsigqueueinfo$auto(r0, r1, 0x21, 0x0)
r2 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, 0x0, 0x8040, 0x0)
r3 = getsockopt$auto_SO_ZEROCOPY(r2, 0x2, 0x3c, 0x0, 0x0)
readv$auto(0x3, 0x0, 0x1)
getsid$auto(0x0)
mmap$auto(0x0, 0x20009, 0xe, 0xeb1, 0x403, 0x8000)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x100, 0x0)
read$auto(r4, 0x0, 0x20)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r3, &(0x7f0000000200)={0x0, 0x4000000000000000}, 0x3)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/class/zram-control/hot_add\x00', 0x20800, 0x0)
openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000140), 0x82000, 0x0)
mkdir$auto(0x0, 0x2)
socket(0x2, 0x801, 0x106)
mmap$auto(0x0, 0x400005, 0xe2, 0x9b72, 0x2, 0x8000)
setsockopt$auto(0x3, 0x1, 0x20, 0x0, 0x9)
bind$auto(0x3, 0x0, 0x68)
utime$auto(&(0x7f0000000040)='\xe6/\x00', 0x0)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup.net/freezer.self_freezing\x00', 0x101080, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r6, &(0x7f0000000040)=""/156, 0x9c)
read$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f0000000ec0)=""/4096, 0x1000)

1m24.287571568s ago: executing program 4 (id=2020):
prctl$auto_PR_PAC_RESET_KEYS(0x36, 0x0, 0xffffffffffffffff, 0x6, 0x7)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
write$auto(0x3, 0x0, 0xfffffdef)
write$auto(0x3, 0x0, 0xfffffdef)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r0, 0x0, 0x40000)
getrandom$auto(0x0, 0x6000000, 0x3)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x9, 0x20000000)
sendmsg$auto_NL80211_CMD_PEER_MEASUREMENT_START(0xffffffffffffffff, 0x0, 0x4008080)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = socket(0x2, 0x1, 0x0)
getsockopt$auto(r1, 0x0, 0x41, 0x0, &(0x7f00000000c0)=0x28)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
r2 = semctl$auto_SEM_INFO(0x3, 0xfffffff9, 0x13, 0x8)
r3 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_FLOW_CMD_GET(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000012c0)={&(0x7f0000001300)=ANY=[@ANYBLOB="f4000000", @ANYRES16=r3, @ANYBLOB="010029bd700002dcdf250300000004000800db000180d52ce2ad1360a6dac108bb4ed2e59fd5a5c56804477e00be29d835dfa2ffd30bd0ae6987043e6d2895d6a5ef47821c3a982fba775c0b92782555c396f0459a459835ac01d078000051e0da4d98557a01f6f6ba4469620d1cd78cc72026e60202e8292f4d12ec957cebbce2c4fa84107900424a9a28341d8e2192a947f8041b69c676665dfdd6a68adb0b74b5b9000044cfa1c2ab5e7b1d0efe6571acdd2410bddad03823ab256326196314ea1c767b0ee90a7165fb81c62470ec688e6984870a1afc00b2490326bf235fc8e47e96801be963572b211dee00"], 0xf4}, 0x1, 0x0, 0x0, 0x20040074}, 0x800)
prctl$auto_PR_SET_MM_START_STACK(0x46, 0x5, r2, 0xcd8, 0x100)
madvise$auto(0x0, 0x20499d, 0x6)
socket(0x10, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x21, 0x2, 0x2)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
accept$auto(0x3, 0xffffffffffffffff, 0xffffffffffffffff)

1m9.105259708s ago: executing program 33 (id=2020):
prctl$auto_PR_PAC_RESET_KEYS(0x36, 0x0, 0xffffffffffffffff, 0x6, 0x7)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
write$auto(0x3, 0x0, 0xfffffdef)
write$auto(0x3, 0x0, 0xfffffdef)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r0, 0x0, 0x40000)
getrandom$auto(0x0, 0x6000000, 0x3)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x9, 0x20000000)
sendmsg$auto_NL80211_CMD_PEER_MEASUREMENT_START(0xffffffffffffffff, 0x0, 0x4008080)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = socket(0x2, 0x1, 0x0)
getsockopt$auto(r1, 0x0, 0x41, 0x0, &(0x7f00000000c0)=0x28)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
r2 = semctl$auto_SEM_INFO(0x3, 0xfffffff9, 0x13, 0x8)
r3 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_FLOW_CMD_GET(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000012c0)={&(0x7f0000001300)=ANY=[@ANYBLOB="f4000000", @ANYRES16=r3, @ANYBLOB="010029bd700002dcdf250300000004000800db000180d52ce2ad1360a6dac108bb4ed2e59fd5a5c56804477e00be29d835dfa2ffd30bd0ae6987043e6d2895d6a5ef47821c3a982fba775c0b92782555c396f0459a459835ac01d078000051e0da4d98557a01f6f6ba4469620d1cd78cc72026e60202e8292f4d12ec957cebbce2c4fa84107900424a9a28341d8e2192a947f8041b69c676665dfdd6a68adb0b74b5b9000044cfa1c2ab5e7b1d0efe6571acdd2410bddad03823ab256326196314ea1c767b0ee90a7165fb81c62470ec688e6984870a1afc00b2490326bf235fc8e47e96801be963572b211dee00"], 0xf4}, 0x1, 0x0, 0x0, 0x20040074}, 0x800)
prctl$auto_PR_SET_MM_START_STACK(0x46, 0x5, r2, 0xcd8, 0x100)
madvise$auto(0x0, 0x20499d, 0x6)
socket(0x10, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x21, 0x2, 0x2)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
accept$auto(0x3, 0xffffffffffffffff, 0xffffffffffffffff)

10.490223741s ago: executing program 3 (id=2215):
unshare$auto(0x40000080)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x4, 0x8000)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00082dbd7000fedbdf250300000008000400b70a0000060007000080000008000200", @ANYRES32, @ANYBLOB="0a0005000180c200000e00000a0001000180c200000e00000a000100aaaaaaaaaa35000008000200", @ANYRES32, @ANYBLOB="060006000500000008002e"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x8040)
r0 = socket(0x5, 0x2, 0x5)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="f2000000", @ANYBLOB='.'], 0x1ac}, 0x1, 0x0, 0x0, 0x24040840}, 0x94)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003140), 0xffffffffffffffff)

9.092240544s ago: executing program 3 (id=2219):
mmap$auto(0x0, 0xd2, 0xde, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
sysfs$auto(0x2, 0x10000000000002a, 0x0)
fsopen$auto(0x0, 0x1)
close_range$auto(0x2, 0x8, 0x0)
close_range$auto(0x2, 0x8, 0xffffffff)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54)
sendmsg$auto_NL802154_CMD_SET_PAN_ID(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000000)=ANY=[], 0x24}, 0x1, 0x0, 0x0, 0x4088}, 0x20000010)
sendmsg$auto_TIPC_NL_NET_SET(0xffffffffffffffff, &(0x7f00000079c0)={0x0, 0x0, &(0x7f0000007980)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="01007050a7f82fc634b10f00003460fac93497d76d"], 0x1c}, 0x1, 0x0, 0x0, 0x40010}, 0x2)
lsm_list_modules$auto(&(0x7f00000000c0)=0x40, &(0x7f0000000100)=0xfff, 0x1)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1c003b"], 0x1ac}, 0x1, 0x0, 0x0, 0x800}, 0x40000)
write$auto(0x3, 0x0, 0xfdef)
write$auto(0x3, 0x0, 0xfdef)
close_range$auto(0x2, 0x8, 0x0)

6.884830478s ago: executing program 3 (id=2223):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_TSINFO_GET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r1, @ANYBLOB], 0x20}, 0x1, 0x0, 0x0, 0x4010}, 0x4048800)

6.425358513s ago: executing program 1 (id=2224):
mremap$auto(0x4000, 0xfee0, 0x20000003fd6, 0x3, 0xfffff000)
mremap$auto(0x100000001, 0x7, 0x9, 0x8004, 0xa)
munmap$auto(0x0, 0xffffffff)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
unshare$auto(0x40000080)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000002c0)=ANY=[@ANYRESOCT=r0, @ANYRES16=0x0, @ANYBLOB="0f0026bd7000fcdbdf9907"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)=ANY=[], 0x1ac}}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000001c0)=ANY=[@ANYBLOB="72010000", @ANYRESDEC=r0], 0x1ac}, 0x1, 0x0, 0x0, 0x20048000}, 0x40000)
r1 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000002c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/config/nvmet/discovery_nqn\x00', 0x454400, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/platform/vkms/graphics/fb0/state\x00', 0xc2481, 0x0)
ioctl$auto_UI_DEV_SETUP(0xffffffffffffffff, 0x405c5503, &(0x7f0000000400)={{0xc, 0x23, 0xa6, 0x83}, "66ac010005000000000068d590eb0d4a4cada7272464294b9183349eef4c1f028fdcc8ecc66fdd02316f064ebd893007abb4c0bbc3b822f66eb624ad63110d61771552c03de65800", 0x2})
ioctl$auto_UI_DEV_CREATE(0xffffffffffffffff, 0x5501, 0x0)
read$auto(0xffffffffffffffff, 0x0, 0x0)
write$auto(r2, 0x0, 0x81)
acct$auto(&(0x7f0000000300)='/\x017\xa1\x06\xb6\x00\x00\x00\x85\xd4\xed\xd7|\bL\xab}\xeee\xf20nW\x92\xf7\x13\xb0\xed\f\x97\xd9\x06V^\xb9c\xa2\xc0Ip,[\x9f\xc9\x16E.\x05]P\xb7\x8f\b\x18\f\xcd\xa9\xa7\x80\"\x9d`x5\x90\x14h\x15\xee)\x87\x14\xa5g\xf2\x01!\f\x1b\xc3n\x04\xf0\xc9WD\x10\xa98l\xc9\xf6w\x84\xa0SB&r\t>\xca\xec\f\xe5\xefM\xef\xc13$\xdb4\xda\xc7l\xf7\x99\xc2Sc\x16\n\'\xe9wf\x91n\xe6)\xc0X\x12\n\xfc\xf3\xf0~\x90M\r\xf2\xa9i\xac/\x1d7\xe0\xe6\xbeAr\n\xf6/6\x02I8$\x9b\xa7]R\xa7\at\x00l\xe8\xfd\xc3\xde*\xf3\xfff\x16+\xf1\xee\x94\x93\xd7\x7f\xdd\xc8\xb3p\xc6\xa2\x86\x8b\x9b\x94u,\xb2\xa7>\xb5\vf\x02\\\xa4\xea\x061\xee]\xe5\\Jt\x82\xe5=\f\x94\xc3V\xb3\xfc\x00\x00\x00\x00\x00\x00\x00\x00')
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000bc0), 0xffffffffffffffff)
r3 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, 0x0, 0x102, 0x0)
write$auto_console_fops_tty_io(r3, 0x0, 0x0)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000000c0), 0x105000, 0x0)
bpf$auto(0x5, &(0x7f0000000000)=@bpf_attr_3={0xb, 0x9, 0x18c, 0x6d, 0x0, 0x8, 0x4, 0x57b8, 0xfbfffff8, "63acf0e05b2d33ebc15774e816ef77cf", 0x0, 0x543, 0x4, 0x207, 0x3, 0x2001007, 0x1, 0x2, 0xe, 0x5, @attach_prog_fd, 0x166, 0x7fb, 0x6, 0xa, 0x8, 0xa7c2}, 0x2c8)

6.240846247s ago: executing program 3 (id=2226):
mmap$auto(0x4, 0x20009, 0x81, 0xeb1, 0x401, 0x1ffffffffffffffd)
socket(0x2, 0x1, 0x106)
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x2001, 0x0) (async)
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x2001, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sg0\x00', 0x101000, 0x0) (async)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sg0\x00', 0x101000, 0x0)
mseal$auto(0x0, 0x7dda, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
socket(0x2, 0x3, 0x88) (async)
r0 = socket(0x2, 0x3, 0x88)
close_range$auto(0x2, 0x8, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x1, 0x84)
socket(0x10, 0x2, 0x0) (async)
r1 = socket(0x10, 0x2, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x7, 0x3e, 0xfffffffffffffffa, 0x1ffde, 0x0, 0xa, 0x2, 0x9, 0x3, 0x6, 0x4, 0xb4, 0x9, 0x2, 0x10000, 0x80, 0x7, 0x0, 0x7, 0x2000, 0x200, 0x8000000, 0x84, [0x8000000000000000, 0x81, 0x0, 0x50100000000000, 0x0, 0x0, 0xffffffff7fffffff, 0xa, 0x70624ce7, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x7ff, 0x0, 0xfffffffffffffffd, 0xfffffffffffffffd, 0x1, 0x4, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x0, 0x0, 0x400000000005b8, 0xc, 0x3, 0x0, 0x0, 0x7, 0xffffffffffffffff, 0x890, 0x8000000000008, 0xfffffffffffffffa, 0x3, 0x10000a38, 0x0, 0x0, 0xfffffffffffffffc, 0x2, 0x4000000000]}, 0x7fff0000, 0x200d) (async)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x7, 0x3e, 0xfffffffffffffffa, 0x1ffde, 0x0, 0xa, 0x2, 0x9, 0x3, 0x6, 0x4, 0xb4, 0x9, 0x2, 0x10000, 0x80, 0x7, 0x0, 0x7, 0x2000, 0x200, 0x8000000, 0x84, [0x8000000000000000, 0x81, 0x0, 0x50100000000000, 0x0, 0x0, 0xffffffff7fffffff, 0xa, 0x70624ce7, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x7ff, 0x0, 0xfffffffffffffffd, 0xfffffffffffffffd, 0x1, 0x4, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x0, 0x0, 0x400000000005b8, 0xc, 0x3, 0x0, 0x0, 0x7, 0xffffffffffffffff, 0x890, 0x8000000000008, 0xfffffffffffffffa, 0x3, 0x10000a38, 0x0, 0x0, 0xfffffffffffffffc, 0x2, 0x4000000000]}, 0x7fff0000, 0x200d)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df45"], 0x1ac}}, 0x0)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000080))
lseek$auto(0x3, 0x7fffffffffffffff, 0x3)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x8800}, 0x40000)
recvmmsg$auto(r1, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={&(0x7f0000000040), 0xcb}, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0)
r2 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYRES16=r2], 0x1ac}}, 0x40000) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYRES16=r2], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x0, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x6}, 0x3, 0x0)
unshare$auto(0x40000080) (async)
unshare$auto(0x40000080)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000002480), 0xffffffffffffffff)
sendmsg$auto_TIPC_NL_MON_GET(r3, &(0x7f00000083c0)={0x0, 0xf000, &(0x7f0000008380)={&(0x7f0000000380)=ANY=[@ANYBLOB="14000000b96231e59ccefdaa34020a602f220232e4498e3d7b2e5ec6b68a88a0920fde26d1db80b92ce2810363b9c1bb89d5667591d7826788de5d2dcf12343f58e00b273c7ebb32161ba57e7cf0a134bcc33db388defa99f60b88e9651098c6444762de2343da26d0311081ac959602eff62d1711d722d2909337d4a47e712fc1400352c2010cda03ad5fb5938ee3673c071a0ced903aaf76577fc2d1947f49b0757555b4015df37c", @ANYRES16=r4, @ANYBLOB="2f032abd7000ffdbdf2512000000"], 0x14}, 0x1, 0x0, 0x0, 0x800}, 0x8080)
copy_file_range$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x21c1, 0x0) (async)
copy_file_range$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x21c1, 0x0)
getpid()
waitid$auto_P_ALL(0x0, 0xffffffffffffffff, &(0x7f0000000440)={@siginfo_0_0={0x6, 0xfffffffc, 0x8, @_sigpoll={0x1000}}}, 0xfffffff8, &(0x7f00000004c0)={{0x2, 0x8}, {0xf0, 0x5}, 0x81, 0xc, 0x400001, 0x2, 0x52f, 0x9, 0x6, 0x7fff, 0xffffffff, 0x7, 0x3d6, 0x2, 0x7, 0x96d})
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000)
socket(0x1d, 0x2, 0x6) (async)
socket(0x1d, 0x2, 0x6)

5.366714116s ago: executing program 1 (id=2227):
r0 = getsockopt$auto_SO_REUSEPORT(0xffffffffffffffff, 0x4, 0xf, &(0x7f0000000000)='/proc/thread-self/net/sockstat\x00', &(0x7f0000000040)=0x9)
r1 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f00000000c0), 0xffffffffffffffff)
stat$auto(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)={0x8000, 0x3, 0x9, 0x0, 0xee01, 0xee00, 0x0, 0x80000001, 0x6, 0xffffffffffff0001, 0x2, 0x59, 0x0, 0x69ad, 0x0, 0x74e, 0xfffffffffffffffd})
sendmsg$auto_IPVS_CMD_GET_INFO(r0, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000240)={&(0x7f0000001900)={0x36c, r1, 0x200, 0x70bd2c, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DEST={0x4}, @IPVS_CMD_ATTR_SERVICE={0x351, 0x1, 0x0, 0x1, [@nested={0x1c, 0xa6, 0x0, 0x1, [@typed={0x8, 0x36, 0x0, 0x0, @u32=0x1}, @nested={0x4, 0x2a}, @nested={0x4, 0x2d}, @typed={0x8, 0x6, 0x0, 0x0, @pid}]}, @typed={0xc6, 0x87, 0x0, 0x0, @binary="eefc4e455135b766e90d9fd4872ae5bdfe1eccc5dddfd52fc5e6b473b0f8d651a169b00fb5928cbc71ef07ee0ebe6745d3777aefca1a0b8bb97629286b79800d3f52de119454302875337d1bafea0723daedb174fc6d5b78027d769cb3f09705f71ae2a63e1540d6e5634764c7ce8f87ab8b0cdd579bc2e1dfbd16d8e507332606a437753f67833ccb4b58a4e84572f4f7089151713b50edeae6211cd9304c0d2736c286c198cee9ea925320ecc06b6958488bce9fc3971fa6ab8a4d79596719c434"}, @typed={0x8, 0x8, 0x0, 0x0, @ipv4=@private=0xa010100}, @generic="21b450fae01af5a6e7db4cfe2fefc6a553c17cdff303b57480a5d7a99f7365bcb8b3f1233451981aa20785684b0c86d3009f61526c891bba478545505ee419e8edbccfd3c71b57bb0142b6b6741b172e65baca910afb700a3ddf20a8042b86fc6bbed8f32db5e113e18392461f256b4e889a1e3008b9892428c2d28f989532407a7232d1712d31682c96e66965e08ea0bfaef209a9131b6a7dc27303deb18691e52dd3026a23d1fe9798760a762a85b52ad9ae0e9536c8f03d", @generic="d81231fb77f504cf297644d267a5fe75d3ac59fe7095bdff69a722b1892a6ee01e0a6b7f", @nested={0x184, 0xd0, 0x0, 0x1, [@nested={0x140, 0x7a, 0x0, 0x1, [@generic, @nested={0x4, 0x84}, @typed={0x8, 0xd3, 0x0, 0x0, @pid}, @typed={0x8, 0xa, 0x0, 0x0, @pid}, @typed={0x8, 0x9f, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}, @nested={0x120, 0x9f, 0x0, 0x1, [@nested={0x70, 0x3e, 0x0, 0x1, [@generic="8a6e713730704e500e3d8cb01eca33ddf9893787b03d949b173a2a72b3c06a50ac1a6c8518d7c4c136db9c1d54e1c3ed022032bd8530d362a674a9392ede05f07546e0864403a6a61fa3d7ca63f35e110eff2f16fbf8ec66e1275ff1f9b50cfb1b80aed082cc2042", @nested={0x4, 0xd8}]}, @typed={0xc, 0x116, 0x0, 0x0, @u64=0x2}, @generic="10d720519287894cd295c6e4b796069df3cee7959a9ebcf87e5327563fa885185932e3ef0c709d217b087d48c1e6883dc87c9c4c3f2d4d92b99b8c7fe4b14c0a9b19afdad4abd4dc8ce49659c1be5a9f34539cea3eb62146a0bc53b3e674812a43a371f9e908dc3373c2ce913ead70aa74f58367bc53b6606d8c7f1a8a3b442cf79a7c702af5595d7a07249cb52999dccd5fcb75ae487d60010efbee914dcfb1"]}]}, @nested={0x2d, 0xf2, 0x0, 0x1, [@generic="8ecce413a3", @nested={0x4, 0x96}, @typed={0x8, 0x51, 0x0, 0x0, @pid}, @nested={0x4, 0xf3}, @typed={0x14, 0xd0, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @broadcast}}]}, @generic, @nested={0xc, 0x44, 0x0, 0x1, [@typed={0x8, 0x3d, 0x0, 0x0, @u32=0x8}]}, @nested={0x4, 0x12f}]}]}]}, 0x36c}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000340), 0x108800, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/core/rps_default_mask\x00', 0x82, 0x0)
write$auto(0x3, 0x0, 0xfdef)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000200), 0xffffffffffffffff)
socket(0x2b, 0x1, 0x1)
io_uring_register$auto(0x2, 0x3, 0x0, 0x0)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000008580)='/proc/thread-self/net/sockstat\x00', 0x100, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f00000085c0)=""/89, 0x59)
ioctl$auto_SNDRV_PCM_IOCTL_DRAIN2(0xffffffffffffffff, 0x4144, 0x0)
socket(0xa, 0x801, 0x84)
io_uring_setup$auto(0x4, 0x0)

5.141870275s ago: executing program 1 (id=2230):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
syz_clone(0x40100100, 0x0, 0x0, 0x0, 0x0, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/mm/transparent_hugepage/hugepages-512kB/enabled\x00', 0x129302, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
eventfd$auto(0x3)
r1 = socket(0xa, 0x2, 0x88)
bpf$auto(0x0, &(0x7f0000001500)=@link_update={r1, @new_prog_fd=0x4, 0x8, @old_map_fd}, 0xa3)
write$auto(r0, &(0x7f0000000180)='\\\x00\xd7\x86\xa5*\xe5\x16\x17\x1f\b\x81\xb8Pk2\x97/f\xc1\xe3\x80\x1dc\b&\xdcW{\x18(\xae\xfd\xe4 (\xa1\x1e#\xee$\xcf\xe0*\x0fZ\xb3h5\xdc)y<\xe4\xe6\xf1\x1c\x82|\xe0\xd8Q\xa1_\x8e\xb4\xad)\xc7\xce\xafpz\xef`w\xee\x87\xfeZ\xd0\xb2\x16g9\xf6\xb4\xd9\xc0\x85\xb24V\x98\xafj9\xb9\xea*\x9b\x9c\xac\xa6*\xc9\x83\x8d\x13\xb4\xb1\x93$\xa3\xbf\xd7*7)\xba\xf4R4Xj+`\x1a\xbf\x91\xb7\xb5\xe0\xf1\x88\x0e\xcdp\x8b\x8d\xd3\xcdE\xab\xd8,\xf4dU\xc2\x940\x8a\xd0\xff;\x9cL\xb5\xef\xda\xdc9\x98V\xb2\xae:\xcf\x856\xf2\x15\x10%7:\xbd\xf7\xb2Jw`\b!\xf47\x01XX\xc5\xaca\x16\x17\xfdH@\xd6w\x04\xaa/\x1b\a\xf0\xdb\x7f\xd2\xdd\xbb\x19\xea,~\x9bB\x85\xea\xd0;\x15gj\x1d[k \x7fw^4\x81\xf6\x00', 0x800f)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000bc0), 0xffffffffffffffff)
signalfd$auto(0xffffffff, 0x0, 0x8)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
gettid()
socket(0xa, 0x2, 0x0)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x0, 0x8000)
setsockopt$auto(0x400000000000003, 0x29, 0x1b, 0x0, 0x56b)
openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/buffer_size_kb\x00', 0x0, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd3/queue/iosched/write_expire\x00', 0x20681, 0x0)
r2 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
fcntl$auto(r2, 0x400, 0x1)
execve$auto(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)

4.967591924s ago: executing program 3 (id=2231):
socket(0x2b, 0x4, 0x1000)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b7e, 0x2, 0x2000000000008000)
close_range$auto(0x2, 0x8, 0xfffffffd)
openat$auto_fops_blob_file(0xffffffffffffff9c, 0x0, 0x40002, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x8000000000000010, 0x401, 0x4)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x0, 0x2000000000009, 0x3, 0x7, 0x3, 0x5, 0x7fff, 0x3, 0x0, 0x7, 0x8, 0x0, 0x7, 0xaf, 0x9, 0x2, 0x3, 0x8001, 0x6, 0x10, 0x0, 0x2, 0x0, 0x0, 0x2, [0x1b16, 0xfffffffffffffffd, 0x3, 0x40, 0x0, 0x0, 0x2, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x77, 0x0, 0x8, 0x4, 0x4, 0x0, 0xc06f, 0x4000000000000000, 0x0, 0x0, 0x9, 0x0, 0xfea, 0x0, 0x0, 0x0, 0x7, 0x7, 0x0, 0x0, 0x4, 0x0, 0x1, 0x0, 0x0, 0x107, 0x6, 0x0, 0xfffffffffffffffe, 0x4, 0x0, 0x80000000000]}, 0x200, 0xfffffffb)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="f2000000", @ANYBLOB="0100", @ANYRES16], 0x1ac}, 0x1, 0x0, 0x0, 0x24040840}, 0x94)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x20040001)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0xb, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='*'], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0xffffa474, &(0x7f00000002c0)={0x0, 0xc4}, 0x9, 0x0, 0x0, 0xa}, 0x9}, 0x2, 0x800)
r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000003340)='/dev/sg0\x00', 0x202, 0x0)
write$auto_sg_fops_sg(r2, &(0x7f0000000140)="b25b1a8c398ef400dbcbc7a996eea7f3804ca6c7591adef6578d2f5f520f687f316ba7329774c854d58309037c0ae2ae6fb53b1dbb3405bcc7650ef08cedbac4", 0x40)
sendmsg$auto_NL80211_CMD_SET_WIPHY(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="2400c0cd", @ANYRES16=r0, @ANYBLOB="130026bd7000dddbdf250200000008000300", @ANYRES32=0x0, @ANYBLOB='\b\x00a\x00\x00\x00\x00\x00'], 0x24}, 0x1, 0x0, 0x0, 0x4004080}, 0x20040894)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
clock_gettime$auto(0x9, &(0x7f0000000000)={0x7, 0xb})
read$auto(0x3, 0x0, 0x80)
close_range$auto(0x2, 0xa, 0x0)
socket(0x18, 0xa, 0x1)
socket(0xa, 0x2, 0x0)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)

4.530267992s ago: executing program 5 (id=2232):
mmap$auto(0x0, 0xd2, 0xde, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
sysfs$auto(0x2, 0x10000000000002a, 0x0)
fsopen$auto(0x0, 0x1)
close_range$auto(0x2, 0x8, 0x0)
close_range$auto(0x2, 0x8, 0xffffffff)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54)
sendmsg$auto_NL802154_CMD_SET_PAN_ID(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16], 0x24}, 0x1, 0x0, 0x0, 0x4088}, 0x20000010)
sendmsg$auto_TIPC_NL_NET_SET(0xffffffffffffffff, &(0x7f00000079c0)={0x0, 0x0, &(0x7f0000007980)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="01007050a7f82fc634b10f00003460fac93497d76d"], 0x1c}, 0x1, 0x0, 0x0, 0x40010}, 0x2)
lsm_list_modules$auto(&(0x7f00000000c0)=0x40, &(0x7f0000000100)=0xfff, 0x1)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1c003b"], 0x1ac}, 0x1, 0x0, 0x0, 0x800}, 0x40000)
write$auto(0x3, 0x0, 0xfdef)
write$auto(0x3, 0x0, 0xfdef)
close_range$auto(0x2, 0x8, 0x0)

3.840967053s ago: executing program 1 (id=2234):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_TSINFO_GET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r1, @ANYBLOB], 0x20}, 0x1, 0x0, 0x0, 0x4010}, 0x4048800)

2.835878538s ago: executing program 2 (id=2235):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = io_uring_setup$auto(0xfa3, 0x0)
r1 = bpf$auto(0x4, 0x0, 0x9)
socket(0x15, 0x7, 0x9)
close_range$auto(0x2, 0x8, 0x0)
ioctl$auto_SG_SET_FORCE_LOW_DMA(r0, 0x2279, &(0x7f0000000000)="08508a88658df55f2ee7b4a64bc681fa334b3a23c2276d9ec1d7c1438b88a2ab7abe5db845d06fe5253d12ec3fbcc1fb5213d877f49967f7099a")
dup2$auto(0x5, 0xffffffffffffffff)
socket(0x2, 0x80002, 0x73)
r2 = socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @local}, 0x54)
read$auto(0x3, 0x0, 0x7)
ioctl$auto_OTPLOCK(r0, 0x800c4d10, &(0x7f00000000c0)={0xfffffffb, 0xbb, 0x8})
setsockopt$auto(0x3, 0x1, 0x20, 0x0, 0x9)
ioctl$auto_FICLONERANGE(r1, 0x4020940d, r2)

2.835022872s ago: executing program 1 (id=2243):
unshare$auto(0x40000080)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x3fd, 0x8000)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)
epoll_create$auto(0x4)
openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/xfs/xqm\x00', 0x181500, 0x0)
lseek$auto(0x3, 0x20000, 0x1)
epoll_ctl$auto(0x5, 0x1, 0x8000000000000000, 0x0)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x0) (async)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x0)
openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, 0x0, 0x600000, 0x0) (async)
openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, 0x0, 0x600000, 0x0)
mlock$auto(0x4, 0x0)
readv$auto(0x3, &(0x7f0000000600)={0x0, 0xc}, 0x1da) (async)
readv$auto(0x3, &(0x7f0000000600)={0x0, 0xc}, 0x1da)
openat$auto_media_devnode_fops_mc_devnode(0xffffffffffffff9c, &(0x7f0000000140)='/dev/media11\x00', 0x40, 0x0)
select$auto(0x7, 0x0, &(0x7f0000000cc0)={[0x9, 0x1, 0x4, 0x8, 0x6, 0x14b, 0x6, 0x745ad93d, 0x9, 0x5, 0x7, 0x9, 0x6, 0x1, 0x6, 0x9]}, 0x0, 0x0) (async)
select$auto(0x7, 0x0, &(0x7f0000000cc0)={[0x9, 0x1, 0x4, 0x8, 0x6, 0x14b, 0x6, 0x745ad93d, 0x9, 0x5, 0x7, 0x9, 0x6, 0x1, 0x6, 0x9]}, 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
read$auto(0x3, 0x0, 0x1f40)

2.619417653s ago: executing program 5 (id=2236):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/irq/8/actions\x00', 0x60000, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000080)=""/58, 0x3a)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
write$auto(0x3, 0x0, 0x100082)
chmod$auto(&(0x7f00000000c0)='./file0\x00', 0xf4ba)
r2 = openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/mixer2\x00', 0x200000, 0x0)
ioctl$auto_SOUND_MIXER_READ_RECMASK(r2, 0x80044dfd, &(0x7f0000000100)="90631428984bf991286be7ed8802be8aa74dc9d8463a171247b63ef0346be9e46493bfcf7d356b60a9bd8b663d6722f9")
getrandom$auto(0x0, 0xe, 0xae0f)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_TIPC_NL_BEARER_SET(r3, &(0x7f0000002040)={0x0, 0x0, &(0x7f0000002000)={&(0x7f0000000240)={0x18, 0x0, 0x10, 0x70bd2b, 0x25dfdbff, {}, [@TIPC_NLA_BEARER={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x44}, 0x80000)
r4 = gettid()
process_vm_writev$auto(r4, 0x0, 0x3, 0x0, 0x4, 0x0)
sendmsg$auto_TIPC_NL_BEARER_ADD(r0, &(0x7f0000000780)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000740)={&(0x7f0000000140)=ANY=[@ANYBLOB="ec070000", @ANYRES16, @ANYBLOB="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", @ANYRES32=r4, @ANYBLOB="0400b38004001180f7120c8a0c702253a501e0ca7e10446366099b25b44b968e74781b357c7ff526bb1da27594ae4a7f5ea2c007000000b400fd80a400530094c8425fe1bda703d925def298ad1716750a4de94ab285773477eee14a3818794f20211efa0f9bd125cbfd78a8d9e7a515795420eb9a7a8fdf531807ef11c33414c1b5ee727ae38d941e4288f3e9f226cd4b3f75e3eb2007349e00ad21151fe2f87385a6d472893190a946f2557096bcbafe2be71395e00bda3df97efebccc158bc5316dcfd9f3be21d209ed331daa57180953f6e6abfcf2d1da738d720581e90c006800080000000000000004002d002083fc1ade19b1760aa00fbef0209c98e11481a91d866c67581b4fecd7cabfea512945093e48503777496a850869cb9e4ad32ede6f25a3deda22c25700b14b02233f300950194b675649a433545e383b9016c805fbcab57766c60eac3cd55770ddfcdb62e261476a56501e8cf597858d71a049db9afae6d0dbd408931fe0c3c8beaea884a851e4dcdacdf11f7fb904c1fd0b273db5076ba1edf687b05c8ead3f658a7ea8b4ffa30afb84e2a68e3ceb6f44f2b8402cfea90bb78c33384ebc7171253174f7c26a955eb1a82d43ea5ddbaf9e0d8f2f5c1bb883928d2a7b18e0094bea1501529efa505a5d94f431e0e4978d5a1d47d6575f293f3c0000004300088019f538b41150d7eef5842b18f406953bd94e6de0478c8e59ab5ee1abe84375c6e948fa927b4f6e8f0999b00ee7499bb95d4d6c2d2f8cf408007900e000000100"], 0x5ec}, 0x1, 0x0, 0x0, 0x20000040}, 0x4008011)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/sys/vm/nr_overcommit_hugepages\x00', 0x80001, 0x0)
write$auto(0x3, 0x0, 0xfdef)
stat$auto(0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
landlock_create_ruleset$auto(&(0x7f0000000000)={0x4, 0x8000000000001, 0xffff}, 0x9, 0x0)
landlock_restrict_self$auto(r5, 0x0)
sendmsg$auto_TIPC_NL_LINK_GET(0xffffffffffffffff, &(0x7f0000003e80)={0x0, 0x0, &(0x7f0000003e40)={0x0}}, 0x8040)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_SMC_PNETID_GET(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x1c, r7, 0x1, 0x70bd2d, 0x25dfdbfd, {}, [@SMC_PNETID_NAME={0x6, 0x1, 'd\x00'}]}, 0x1c}}, 0x40000)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000800), r5)

1.716090064s ago: executing program 5 (id=2237):
r0 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) (async)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/hugetlb_optimize_vmemmap\x00', 0xa0202, 0x0)
write$auto_proc_sys_file_operations_proc_sysctl(r1, &(0x7f0000000200)="241b59", 0x3) (async)
execveat$auto(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

1.705641039s ago: executing program 2 (id=2246):
r0 = getsockopt$auto_SO_REUSEPORT(0xffffffffffffffff, 0x4, 0xf, &(0x7f0000000000)='/proc/thread-self/net/sockstat\x00', &(0x7f0000000040)=0x9)
r1 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f00000000c0), 0xffffffffffffffff)
stat$auto(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)={0x8000, 0x3, 0x9, 0x0, 0xee01, 0xee00, 0x0, 0x80000001, 0x6, 0xffffffffffff0001, 0x2, 0x59, 0x0, 0x69ad, 0x0, 0x74e, 0xfffffffffffffffd})
sendmsg$auto_IPVS_CMD_GET_INFO(r0, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000240)={&(0x7f0000001900)={0x36c, r1, 0x200, 0x70bd2c, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DEST={0x4}, @IPVS_CMD_ATTR_SERVICE={0x351, 0x1, 0x0, 0x1, [@nested={0x1c, 0xa6, 0x0, 0x1, [@typed={0x8, 0x36, 0x0, 0x0, @u32=0x1}, @nested={0x4, 0x2a}, @nested={0x4, 0x2d}, @typed={0x8, 0x6, 0x0, 0x0, @pid}]}, @typed={0xc6, 0x87, 0x0, 0x0, @binary="eefc4e455135b766e90d9fd4872ae5bdfe1eccc5dddfd52fc5e6b473b0f8d651a169b00fb5928cbc71ef07ee0ebe6745d3777aefca1a0b8bb97629286b79800d3f52de119454302875337d1bafea0723daedb174fc6d5b78027d769cb3f09705f71ae2a63e1540d6e5634764c7ce8f87ab8b0cdd579bc2e1dfbd16d8e507332606a437753f67833ccb4b58a4e84572f4f7089151713b50edeae6211cd9304c0d2736c286c198cee9ea925320ecc06b6958488bce9fc3971fa6ab8a4d79596719c434"}, @typed={0x8, 0x8, 0x0, 0x0, @ipv4=@private=0xa010100}, @generic="21b450fae01af5a6e7db4cfe2fefc6a553c17cdff303b57480a5d7a99f7365bcb8b3f1233451981aa20785684b0c86d3009f61526c891bba478545505ee419e8edbccfd3c71b57bb0142b6b6741b172e65baca910afb700a3ddf20a8042b86fc6bbed8f32db5e113e18392461f256b4e889a1e3008b9892428c2d28f989532407a7232d1712d31682c96e66965e08ea0bfaef209a9131b6a7dc27303deb18691e52dd3026a23d1fe9798760a762a85b52ad9ae0e9536c8f03d", @generic="d81231fb77f504cf297644d267a5fe75d3ac59fe7095bdff69a722b1892a6ee01e0a6b7f", @nested={0x184, 0xd0, 0x0, 0x1, [@nested={0x140, 0x7a, 0x0, 0x1, [@generic, @nested={0x4, 0x84}, @typed={0x8, 0xd3, 0x0, 0x0, @pid}, @typed={0x8, 0xa, 0x0, 0x0, @pid}, @typed={0x8, 0x9f, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}, @nested={0x120, 0x9f, 0x0, 0x1, [@nested={0x70, 0x3e, 0x0, 0x1, [@generic="8a6e713730704e500e3d8cb01eca33ddf9893787b03d949b173a2a72b3c06a50ac1a6c8518d7c4c136db9c1d54e1c3ed022032bd8530d362a674a9392ede05f07546e0864403a6a61fa3d7ca63f35e110eff2f16fbf8ec66e1275ff1f9b50cfb1b80aed082cc2042", @nested={0x4, 0xd8}]}, @typed={0xc, 0x116, 0x0, 0x0, @u64=0x2}, @generic="10d720519287894cd295c6e4b796069df3cee7959a9ebcf87e5327563fa885185932e3ef0c709d217b087d48c1e6883dc87c9c4c3f2d4d92b99b8c7fe4b14c0a9b19afdad4abd4dc8ce49659c1be5a9f34539cea3eb62146a0bc53b3e674812a43a371f9e908dc3373c2ce913ead70aa74f58367bc53b6606d8c7f1a8a3b442cf79a7c702af5595d7a07249cb52999dccd5fcb75ae487d60010efbee914dcfb1"]}]}, @nested={0x2d, 0xf2, 0x0, 0x1, [@generic="8ecce413a3", @nested={0x4, 0x96}, @typed={0x8, 0x51, 0x0, 0x0, @pid}, @nested={0x4, 0xf3}, @typed={0x14, 0xd0, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @broadcast}}]}, @generic, @nested={0xc, 0x44, 0x0, 0x1, [@typed={0x8, 0x3d, 0x0, 0x0, @u32=0x8}]}, @nested={0x4, 0x12f}]}]}]}, 0x36c}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000340), 0x108800, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/core/rps_default_mask\x00', 0x82, 0x0)
write$auto(0x3, 0x0, 0xfdef)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000200), 0xffffffffffffffff)
socket(0x2b, 0x1, 0x1)
io_uring_register$auto(0x2, 0x3, 0x0, 0x0)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000008580)='/proc/thread-self/net/sockstat\x00', 0x100, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f00000085c0)=""/89, 0x59)
ioctl$auto_SNDRV_PCM_IOCTL_DRAIN2(0xffffffffffffffff, 0x4144, 0x0)
socket(0xa, 0x801, 0x84)
io_uring_setup$auto(0x4, 0x0)

1.379603291s ago: executing program 1 (id=2238):
mremap$auto(0x4000, 0xfee0, 0x3fd6, 0x3, 0xfffff000)
mremap$auto(0x10000, 0x7, 0x9, 0x8000, 0x6)
munmap$auto(0x0, 0xffffffff)
mremap$auto(0x5a, 0x9, 0xf, 0xff, 0x2)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
r0 = socket(0x2, 0x5, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0x2, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f00000001c0)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1a000}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311)
write$auto(0x3, 0x0, 0xffd8)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe97f, 0x9, 0xeb1, 0x401, 0xd1e)
openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/ieee80211/phy7/netdev:wlan0/stations/08:02:11:00:00:01/last_seq_ctrl\x00', 0x101000, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/platform/vkms/graphics/fb0/state\x00', 0xc2481, 0x0)
ioctl$auto_UI_DEV_SETUP(0xffffffffffffffff, 0x405c5503, &(0x7f0000000400)={{0xc, 0x23, 0xa6, 0x83}, "66ac010005000000000068d590eb0d4a4cada7272464294b9183349eef4c1f028fdcc8ecc66fdd02316f064ebd893007abb4c0bbc3b822f66eb624ad63110d61771552c03de65800", 0x2})
ioctl$auto_UI_DEV_CREATE(0xffffffffffffffff, 0x5501, 0x0)
read$auto(0xffffffffffffffff, 0x0, 0x0)
write$auto(r1, 0x0, 0x81)
acct$auto(&(0x7f0000000000)='/dev/fb0\x00')
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000bc0), 0xffffffffffffffff)

1.379337201s ago: executing program 2 (id=2239):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram13\x00', 0x4040, 0x0)
fadvise64$auto(r0, 0x7fffffffffffffff, 0x400000040000005, 0x4)
r1 = io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, r1, 0x8000)
r2 = openat$auto_nodes_fops_netdebug(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
set_mempolicy$auto(0x0, &(0x7f0000000080)=0x5, 0x8)
read$auto_nodes_fops_netdebug(r2, 0x0, 0x0)
r3 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x529080, 0x0)
r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000001100)='/proc/bus/pci/00/03.0\x00', 0xa0581, 0x0)
write$auto_proc_reg_file_ops_compat_inode(r4, &(0x7f0000001140)="8cbdca57ed487003c5", 0x9)
writev$auto(r4, &(0x7f0000001d40)={0x0, 0x2}, 0x6)
ioctl$auto(r3, 0xc0404d1a, r3)
set_mempolicy$auto(0x1, 0x0, 0x8)
unshare$auto(0x40000080)
socket(0x2b, 0x1, 0x1)
pipe2$auto(0x0, 0x7)
keyctl$auto(0x200000000000020, 0xffffffffffffffff, 0x5, 0x5, 0x8)
keyctl$auto(0x15, 0xffffffffffffffff, 0x5, 0xffffffffffffffff, 0x8)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram13\x00', 0x4040, 0x0) (async)
fadvise64$auto(r0, 0x7fffffffffffffff, 0x400000040000005, 0x4) (async)
io_uring_setup$auto(0x6, 0x0) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, r1, 0x8000) (async)
openat$auto_nodes_fops_netdebug(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) (async)
set_mempolicy$auto(0x0, &(0x7f0000000080)=0x5, 0x8) (async)
read$auto_nodes_fops_netdebug(r2, 0x0, 0x0) (async)
openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x529080, 0x0) (async)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000001100)='/proc/bus/pci/00/03.0\x00', 0xa0581, 0x0) (async)
write$auto_proc_reg_file_ops_compat_inode(r4, &(0x7f0000001140)="8cbdca57ed487003c5", 0x9) (async)
writev$auto(r4, &(0x7f0000001d40)={0x0, 0x2}, 0x6) (async)
ioctl$auto(r3, 0xc0404d1a, r3) (async)
set_mempolicy$auto(0x1, 0x0, 0x8) (async)
unshare$auto(0x40000080) (async)
socket(0x2b, 0x1, 0x1) (async)
pipe2$auto(0x0, 0x7) (async)
keyctl$auto(0x200000000000020, 0xffffffffffffffff, 0x5, 0x5, 0x8) (async)
keyctl$auto(0x15, 0xffffffffffffffff, 0x5, 0xffffffffffffffff, 0x8) (async)

1.378692927s ago: executing program 5 (id=2248):
r0 = getsockopt$auto_SO_REUSEPORT(0xffffffffffffffff, 0x4, 0xf, &(0x7f0000000000)='/proc/thread-self/net/sockstat\x00', &(0x7f0000000040)=0x9)
r1 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f00000000c0), 0xffffffffffffffff)
stat$auto(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)={0x8000, 0x3, 0x9, 0x0, 0xee01, 0xee00, 0x0, 0x80000001, 0x6, 0xffffffffffff0001, 0x2, 0x59, 0x0, 0x69ad, 0x0, 0x74e, 0xfffffffffffffffd})
sendmsg$auto_IPVS_CMD_GET_INFO(r0, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000240)={&(0x7f0000001900)={0x36c, r1, 0x200, 0x70bd2c, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DEST={0x4}, @IPVS_CMD_ATTR_SERVICE={0x351, 0x1, 0x0, 0x1, [@nested={0x1c, 0xa6, 0x0, 0x1, [@typed={0x8, 0x36, 0x0, 0x0, @u32=0x1}, @nested={0x4, 0x2a}, @nested={0x4, 0x2d}, @typed={0x8, 0x6, 0x0, 0x0, @pid}]}, @typed={0xc6, 0x87, 0x0, 0x0, @binary="eefc4e455135b766e90d9fd4872ae5bdfe1eccc5dddfd52fc5e6b473b0f8d651a169b00fb5928cbc71ef07ee0ebe6745d3777aefca1a0b8bb97629286b79800d3f52de119454302875337d1bafea0723daedb174fc6d5b78027d769cb3f09705f71ae2a63e1540d6e5634764c7ce8f87ab8b0cdd579bc2e1dfbd16d8e507332606a437753f67833ccb4b58a4e84572f4f7089151713b50edeae6211cd9304c0d2736c286c198cee9ea925320ecc06b6958488bce9fc3971fa6ab8a4d79596719c434"}, @typed={0x8, 0x131, 0x0, 0x0, @fd}, @generic="21b450fae01af5a6e7db4cfe2fefc6a553c17cdff303b57480a5d7a99f7365bcb8b3f1233451981aa20785684b0c86d3009f61526c891bba478545505ee419e8edbccfd3c71b57bb0142b6b6741b172e65baca910afb700a3ddf20a8042b86fc6bbed8f32db5e113e18392461f256b4e889a1e3008b9892428c2d28f989532407a7232d1712d31682c96e66965e08ea0bfaef209a9131b6a7dc27303deb18691e52dd3026a23d1fe9798760a762a85b52ad9ae0e9536c8f03d", @generic="d81231fb77f504cf297644d267a5fe75d3ac59fe7095bdff69a722b1892a6ee01e0a6b7f", @nested={0x184, 0xd0, 0x0, 0x1, [@nested={0x140, 0x7a, 0x0, 0x1, [@generic, @nested={0x4, 0x84}, @typed={0x8, 0xd3, 0x0, 0x0, @pid}, @typed={0x8, 0xa, 0x0, 0x0, @pid}, @typed={0x8, 0x9f, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}, @nested={0x120, 0x9f, 0x0, 0x1, [@nested={0x70, 0x3e, 0x0, 0x1, [@generic="8a6e713730704e500e3d8cb01eca33ddf9893787b03d949b173a2a72b3c06a50ac1a6c8518d7c4c136db9c1d54e1c3ed022032bd8530d362a674a9392ede05f07546e0864403a6a61fa3d7ca63f35e110eff2f16fbf8ec66e1275ff1f9b50cfb1b80aed082cc2042", @nested={0x4, 0xd8}]}, @typed={0xc, 0x116, 0x0, 0x0, @u64=0x2}, @generic="10d720519287894cd295c6e4b796069df3cee7959a9ebcf87e5327563fa885185932e3ef0c709d217b087d48c1e6883dc87c9c4c3f2d4d92b99b8c7fe4b14c0a9b19afdad4abd4dc8ce49659c1be5a9f34539cea3eb62146a0bc53b3e674812a43a371f9e908dc3373c2ce913ead70aa74f58367bc53b6606d8c7f1a8a3b442cf79a7c702af5595d7a07249cb52999dccd5fcb75ae487d60010efbee914dcfb1"]}]}, @nested={0x2d, 0xf2, 0x0, 0x1, [@generic="8ecce413a3", @nested={0x4, 0x96}, @typed={0x8, 0x51, 0x0, 0x0, @pid}, @nested={0x4, 0xf3}, @typed={0x14, 0xd0, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @broadcast}}]}, @generic, @nested={0xc, 0x44, 0x0, 0x1, [@typed={0x8, 0x3d, 0x0, 0x0, @u32=0x8}]}, @nested={0x4, 0x12f}]}]}]}, 0x36c}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000340), 0x108800, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/core/rps_default_mask\x00', 0x82, 0x0)
write$auto(0x3, 0x0, 0xfdef)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000200), 0xffffffffffffffff)
socket(0x2b, 0x1, 0x1)
io_uring_register$auto(0x2, 0x3, 0x0, 0x0)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000008580)='/proc/thread-self/net/sockstat\x00', 0x100, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f00000085c0)=""/89, 0x59)
ioctl$auto_SNDRV_PCM_IOCTL_DRAIN2(0xffffffffffffffff, 0x4144, 0x0)
socket(0xa, 0x801, 0x84)
io_uring_setup$auto(0x4, 0x0)

1.00013424s ago: executing program 5 (id=2240):
mkdir$auto(&(0x7f0000000080)='./file0\x00', 0x1) (async)
r0 = open$dir(&(0x7f0000000000)='./file0\x00', 0x18000, 0x6) (async)
rmdir$auto(&(0x7f0000000280)='./file0\x00')
r1 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
socket(0x10, 0x2, 0x0) (async)
select$auto(0x0, &(0x7f0000000040)={[0x9, 0xbbf, 0x34, 0x9, 0x1, 0x1, 0xa, 0x4, 0x5, 0x1, 0xde19, 0xcf, 0x6, 0x211, 0xbe, 0xb98]}, 0x0, 0x0, 0x0)
sendmsg$auto_TIPC_NL_BEARER_DISABLE(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000040)=ANY=[], 0x40}, 0x1, 0x0, 0x0, 0x20000000}, 0x44) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) (async)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="04000000", @ANYRES16=r0, @ANYRES32=r1], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010) (async)
set_tid_address$auto(0xfffffffffffffffd) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[], 0x1ac}}, 0x40000) (async, rerun: 64)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) (rerun: 64)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0) (async)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x3, 0x6, 0x0, 0x8, 0x1, 0x2, {0x2100000000, 0x10000}, 0x3, 0x6, 0xffffffffffffffdd, 0x1008000, 0x0, 0x80000004, 0x83, 0xffffffffffff628e, 0xa747, 0xdeb0, 0x1800}) (async)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) (async)
r2 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64)
r3 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000900), 0xffffffffffffffff) (rerun: 64)
sendmsg$auto_OVS_FLOW_CMD_NEW(r2, &(0x7f0000002f80)={0x0, 0x0, &(0x7f0000002f40)={&(0x7f0000000080)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010027bd7000ffdbdf2501000000040001800400018c44bd9680"], 0x20}, 0x1, 0x0, 0x0, 0x50040}, 0x810) (async)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r4, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) (async)
openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/midiC2D1\x00', 0x8080, 0x0)
getsockopt$auto(0xffffffffffffffff, 0x84, 0x0, 0x0, 0x0) (async)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x4, 0x7, 0xd, 0x51b, 0x948e, 0x10001, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d41, 0x9, 0x2, 0x6]}, 0x0)
close_range$auto(0x2, 0xa, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r5 = openat$auto(r0, &(0x7f0000000140)='./file0\x00', 0xffffffff, 0x8)
faccessat$auto(r5, &(0x7f0000000040)='./file0\x00', 0x6)

912.907429ms ago: executing program 2 (id=2241):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sysfs$auto(0x2, 0x3d, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f00000000c0)='ns/mnt\x00')
writev$auto(0x1, 0x0, 0x1)
epoll_create$auto(0x4)
r0 = syz_genetlink_get_family_id$auto_netdev(&(0x7f00000002c0), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NETDEV_CMD_QUEUE_GET(r1, &(0x7f0000005dc0)={0x0, 0x0, &(0x7f0000005d80)={&(0x7f0000005d40)={0x1c, r0, 0x1, 0x70bd2c, 0x25dfdbfe, {}, [@NETDEV_A_QUEUE_ID={0x8, 0x1, 0x9}]}, 0x1c}, 0x1, 0x0, 0x0, 0x200000c9}, 0x4000000)
dup2$auto(0x5, 0x4)
splice$auto(0x4, 0x0, 0x2, 0x0, 0x80000001, 0x9)
fsopen$auto(0x0, 0x1)

558.282942ms ago: executing program 3 (id=2242):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) (async, rerun: 32)
select$auto(0x3, 0x0, 0x0, 0x0, 0x0) (async, rerun: 32)
mmap$auto(0x0, 0xc, 0x4000000000df, 0x44eb2, 0x10006, 0x300000000000) (async)
newfstatat$auto(0xffffffffffffffff, 0x0, 0x0, 0xc472) (async)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) (async, rerun: 32)
madvise$auto(0x0, 0x20000a, 0x4) (async, rerun: 32)
clone$auto(0x81, 0x1, &(0x7f0000000000)=0x7, &(0x7f0000000080)=0x4, 0x7) (async)
r0 = socket(0x2, 0x1, 0x0)
bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x4e23}, 0x67) (async)
openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/block/nbd4/sched/batching\x00', 0x2f13c0, 0x0)
socket(0x26, 0x6, 0x3) (async)
unshare$auto(0x5)
shmget$auto(0x0, 0xffffffffff000, 0x80) (async)
lseek$auto(0x3, 0x7fffffffffffffff, 0x1) (async)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x2, 0xb}, 0x800009}, 0x5, 0x20000000) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
mmap$auto(0x0, 0x2020009, 0x1003, 0xeb1, 0xfffffffffffffffa, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) (async, rerun: 32)
close_range$auto(0x2, 0x8, 0x0) (async, rerun: 32)
open(0x0, 0x163340, 0x6a) (async, rerun: 32)
socket(0x2, 0x80802, 0x0) (async, rerun: 32)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
connect$auto(0x3, 0x0, 0x55) (async, rerun: 64)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe) (async, rerun: 64)
open(&(0x7f0000000800)='./file0\x00', 0x62240, 0x154) (async, rerun: 32)
mmap$auto(0x0, 0x5, 0xfffffffffffffe01, 0x8011, 0x3, 0x8000) (rerun: 32)
mremap$auto(0x0, 0x7, 0x3fd6, 0x0, 0x1ffffffe) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6)

390.410449ms ago: executing program 2 (id=2244):
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/sctp/eps\x00', 0x100, 0x0)
pread64$auto(r0, 0x0, 0x8, 0x5)

576.322µs ago: executing program 5 (id=2245):
r0 = socket(0x2, 0x5, 0x0)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
ioctl$auto(0x3, 0x80044940, 0x10000000000402)
getcwd$auto(0x0, 0xffffffffffffffff)
setsockopt$auto(0x3, 0x10000000084, 0x2, 0x0, 0x8)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1fff8}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/pagemap\x00', 0x121000, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
mbind$auto(0x9, 0x84, 0x4, &(0x7f0000000000), 0x80000000, 0x7f)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, r0, 0x8000)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
clock_getres$auto(0x2, 0x0)
eventfd$auto(0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sysfs$auto(0x2, 0x47, 0x0)
fsopen$auto(0x0, 0x1)
close_range$auto(0x2, 0x8, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
r1 = socket(0xa, 0x2, 0x3a)
setsockopt$auto(r1, 0x29, 0x1d, 0x0, 0x1ff)
r2 = openat$auto_cachefiles_daemon_fops_internal(0xffffffffffffff9c, &(0x7f0000002140), 0xa002, 0x0)
write$auto(r2, &(0x7f0000000100)='/d\x98\xa8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00m\xa3\x1d\xde\xee\x92\xc5\x02h\x03\xff\xfa\n$hk\xcc\xf9,W\xbb4\xe7@\x01\xd6G\xb9\xf6ne)m\x9aJ\xe2\xd3e\b\x1b\n\xcfE[zr\'|B\xab\xd0\x1dZ\xba5ZSF\xd5\xf066\xbc(\x0f\xac\xbb\x8d>l\xe3\xfcMD00\x97Z\x04\xaa\x1fD\x1b\xa1\x93\x0e(\x9el\x88\x85\xfc\xc4}fR\xf97X4_\x7f\vPfM\x86\xf0\xa7\x84/+\xedWp\r\xc9\x80\x05\x9f\xda=U?\x0f\xdc6\xdb\x80\xbe\xa1\x16\xcb\xca\x84<r\xa9\x8f\xfefeY\xc5-\x8a\xcf>\xbfx\\\x9f^\xdfg\x8a\xbe\x9dSg\xc9\xbf\x0f\xb7\xb2$\xb4\xd1\xa0\xaa\fg\x88\v\\\xb8\xf3(\x11*^\x1e`a\r\xb3\xb4\x7f\xa4H\xda\xd2\xd2>\x03\xb9\tR+\x01\xad\xee\xa5\x94\xdb\x04\xaf\xee\x0fu\xbd\xf6`s>\xf9\xc6\x94\xe1!\xfc\xe8\x1b~\x8b\xf0\x15und\xeb\xe9\x1a\xe4\r5\x9c\xa9\xb6&\xb2\xc9\b1$\xa8\xa6\x89z\xb1\xee\xc2\xf5\x14M\x982lf\x9dxx{N\xe2\xce:\x81\xe3)Zg\xd5\x97\x89\a\xf6\xc1\xca\x1d\xbb\x7f0\xcd\xad\xec\x19\xe8\xce\xa9\xee\x8e\xb0\xa8Co\xf7\xbe0\xaf\xe9\xf5\bLJGE\x91\xea\xc0\xfc4}F\x86%\xb0M4\xe2(L6\xdc\xf0\x99\xa5\x83\xdd\x1b\xfb\x9br\x01wd8\x01N\x9c\'\xe8P\xb4\x8d\xec\xa6L%l\xaa\x1ab', 0xc)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
sysfs$auto(0x2, 0x100000000000030, 0x0)
socket(0xa, 0x1, 0x84)

0s ago: executing program 2 (id=2247):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/irq/8/actions\x00', 0x60000, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000080)=""/58, 0x3a)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
write$auto(0x3, 0x0, 0x100082)
chmod$auto(&(0x7f00000000c0)='./file0\x00', 0xf4ba)

kernel console output (not intermixed with test programs):

����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������\
[  406.175661][ T9060] [U] ��������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������
[  415.098824][ T9141] netlink: 334 bytes leftover after parsing attributes in process `syz.4.594'.
[  417.694200][ T9150] FAULT_INJECTION: forcing a failure.
[  417.694200][ T9150] name failslab, interval 1, probability 0, space 0, times 0
[  417.754299][ T9150] CPU: 1 UID: 0 PID: 9150 Comm: syz.3.593 Not tainted 6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  417.754329][ T9150] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  417.754341][ T9150] Call Trace:
[  417.754348][ T9150]  <TASK>
[  417.754356][ T9150]  dump_stack_lvl+0x16c/0x1f0
[  417.754392][ T9150]  should_fail_ex+0x50a/0x650
[  417.754412][ T9150]  ? fs_reclaim_acquire+0xae/0x150
[  417.754440][ T9150]  should_failslab+0xc2/0x120
[  417.754461][ T9150]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  417.754490][ T9150]  ? __pfx_acct_collect+0x10/0x10
[  417.754519][ T9150]  ? taskstats_exit+0x656/0xbe0
[  417.754548][ T9150]  ? acct_update_integrals+0x3e7/0x4b0
[  417.754582][ T9150]  taskstats_exit+0x656/0xbe0
[  417.754612][ T9150]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  417.754632][ T9150]  ? __pfx_taskstats_exit+0x10/0x10
[  417.754662][ T9150]  ? _raw_spin_unlock_irq+0x23/0x50
[  417.754688][ T9150]  ? __seccomp_filter_orphan+0x18/0x110
[  417.754712][ T9150]  ? __put_seccomp_filter+0x16/0xf0
[  417.754739][ T9150]  do_exit+0x845/0x2db0
[  417.754764][ T9150]  ? get_signal+0x8f7/0x26c0
[  417.754794][ T9150]  ? __pfx_do_exit+0x10/0x10
[  417.754816][ T9150]  ? do_raw_spin_lock+0x12d/0x2c0
[  417.754837][ T9150]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  417.754862][ T9150]  do_group_exit+0xd3/0x2a0
[  417.754894][ T9150]  get_signal+0x24ed/0x26c0
[  417.754934][ T9150]  ? __pfx_get_signal+0x10/0x10
[  417.754966][ T9150]  ? __pfx_do_futex+0x10/0x10
[  417.754995][ T9150]  arch_do_signal_or_restart+0x90/0x7e0
[  417.755020][ T9150]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  417.755053][ T9150]  ? rcu_is_watching+0x12/0xc0
[  417.755081][ T9150]  syscall_exit_to_user_mode+0x150/0x2a0
[  417.755112][ T9150]  do_syscall_64+0xda/0x250
[  417.755145][ T9150]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  417.755173][ T9150] RIP: 0033:0x7f6835d8d169
[  417.755190][ T9150] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  417.755210][ T9150] RSP: 002b:00007f6836b850e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  417.755230][ T9150] RAX: fffffffffffffe00 RBX: 00007f6835fa6248 RCX: 00007f6835d8d169
[  417.755244][ T9150] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f6835fa6248
[  417.755256][ T9150] RBP: 00007f6835fa6240 R08: 0000000000000000 R09: 0000000000000000
[  417.755269][ T9150] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6835fa624c
[  417.755281][ T9150] R13: 0000000000000000 R14: 00007fff5f9fbbc0 R15: 00007fff5f9fbca8
[  417.755309][ T9150]  </TASK>
[  422.013272][ T9174] Bluetooth: hci4: command 0x0406 tx timeout
[  431.567933][ T9235] netlink: 8 bytes leftover after parsing attributes in process `syz.2.615'.
[  440.337511][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  440.344055][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  472.225262][ T9503] netlink: 334 bytes leftover after parsing attributes in process `syz.2.671'.
[  496.000218][ T9695] netlink: 334 bytes leftover after parsing attributes in process `syz.4.710'.
[  496.875434][ T9706] netlink: 334 bytes leftover after parsing attributes in process `syz.4.713'.
[  501.778180][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  501.784728][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  504.092837][ T9751] netlink: 334 bytes leftover after parsing attributes in process `syz.4.722'.
[  505.068951][ T9757] FAULT_INJECTION: forcing a failure.
[  505.068951][ T9757] name failslab, interval 1, probability 0, space 0, times 0
[  505.203220][ T9757] CPU: 1 UID: 0 PID: 9757 Comm: syz.2.720 Not tainted 6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  505.203256][ T9757] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  505.203269][ T9757] Call Trace:
[  505.203275][ T9757]  <TASK>
[  505.203284][ T9757]  dump_stack_lvl+0x16c/0x1f0
[  505.203324][ T9757]  should_fail_ex+0x50a/0x650
[  505.203347][ T9757]  ? fs_reclaim_acquire+0xae/0x150
[  505.203380][ T9757]  should_failslab+0xc2/0x120
[  505.203401][ T9757]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  505.203436][ T9757]  ? getname_flags.part.0+0x4c/0x550
[  505.203468][ T9757]  getname_flags.part.0+0x4c/0x550
[  505.203499][ T9757]  getname+0x8d/0xe0
[  505.203529][ T9757]  do_sys_openat2+0x104/0x1e0
[  505.203554][ T9757]  ? __pfx_do_sys_openat2+0x10/0x10
[  505.203592][ T9757]  __x64_sys_openat+0x175/0x210
[  505.203618][ T9757]  ? __pfx___x64_sys_openat+0x10/0x10
[  505.203643][ T9757]  ? ksys_write+0x1ba/0x250
[  505.203690][ T9757]  do_syscall_64+0xcd/0x250
[  505.203727][ T9757]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  505.203759][ T9757] RIP: 0033:0x7ff12618d169
[  505.203781][ T9757] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  505.203803][ T9757] RSP: 002b:00007ff126f56038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  505.203826][ T9757] RAX: ffffffffffffffda RBX: 00007ff1263a6160 RCX: 00007ff12618d169
[  505.203842][ T9757] RDX: 0000000000a00040 RSI: 0000000000000000 RDI: ffffffffffffff9c
[  505.203858][ T9757] RBP: 00007ff12620e2a0 R08: 0000000000000000 R09: 0000000000000000
[  505.203873][ T9757] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  505.203888][ T9757] R13: 0000000000000000 R14: 00007ff1263a6160 R15: 00007ffde1a7dcb8
[  505.203919][ T9757]  </TASK>
[  506.913556][ T9779] netlink: 334 bytes leftover after parsing attributes in process `syz.4.727'.
[  508.359557][ T9789] netlink: 28 bytes leftover after parsing attributes in process `syz.2.730'.
[  515.789729][ T9859] FAULT_INJECTION: forcing a failure.
[  515.789729][ T9859] name failslab, interval 1, probability 0, space 0, times 0
[  515.789765][ T9859] CPU: 1 UID: 0 PID: 9859 Comm: syz.4.744 Not tainted 6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  515.789791][ T9859] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  515.789804][ T9859] Call Trace:
[  515.789810][ T9859]  <TASK>
[  515.789819][ T9859]  dump_stack_lvl+0x16c/0x1f0
[  515.789856][ T9859]  should_fail_ex+0x50a/0x650
[  515.789879][ T9859]  ? fs_reclaim_acquire+0xae/0x150
[  515.789910][ T9859]  should_failslab+0xc2/0x120
[  515.789933][ T9859]  kmem_cache_alloc_lru_noprof+0x73/0x3d0
[  515.789986][ T9859]  ? hugetlbfs_alloc_inode+0x8c/0x1d0
[  515.790025][ T9859]  hugetlbfs_alloc_inode+0x8c/0x1d0
[  515.790058][ T9859]  ? __pfx_hugetlbfs_alloc_inode+0x10/0x10
[  515.790093][ T9859]  alloc_inode+0x5d/0x230
[  515.790116][ T9859]  new_inode+0x22/0x210
[  515.790141][ T9859]  hugetlbfs_get_inode+0x358/0x740
[  515.790163][ T9859]  ? __fget_files+0x206/0x3a0
[  515.790197][ T9859]  hugetlb_file_setup+0x15b/0x620
[  515.790223][ T9859]  ksys_mmap_pgoff+0x189/0x5c0
[  515.790257][ T9859]  __x64_sys_mmap+0x125/0x190
[  515.790293][ T9859]  do_syscall_64+0xcd/0x250
[  515.790327][ T9859]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  515.790358][ T9859] RIP: 0033:0x7ff2a078d169
[  515.790375][ T9859] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  515.790397][ T9859] RSP: 002b:00007ff2a1530038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  515.790418][ T9859] RAX: ffffffffffffffda RBX: 00007ff2a09a6160 RCX: 00007ff2a078d169
[  515.790433][ T9859] RDX: 00004000000000e2 RSI: 0000000000000004 RDI: 0000000000000000
[  515.790447][ T9859] RBP: 00007ff2a1530090 R08: ffffffffffffffff R09: 0000000000010000
[  515.790461][ T9859] R10: 0000000000040eb1 R11: 0000000000000246 R12: 0000000000000001
[  515.790475][ T9859] R13: 0000000000000000 R14: 00007ff2a09a6160 R15: 00007ffdcecaa068
[  515.790505][ T9859]  </TASK>
[  521.292895][    C1] vcan0: j1939_tp_rxtimer: 0xffff88807e1c5400: rx timeout, send abort
[  521.801270][    C1] vcan0: j1939_tp_rxtimer: 0xffff88807e1c5400: abort rx timeout. Force session deactivation
[  526.617938][ T9947] Setting dangerous option i915.mitigations - tainting kernel
[  527.739808][ T9969] zram: Added device: zram1
[  531.149254][T10001] FAULT_INJECTION: forcing a failure.
[  531.149254][T10001] name failslab, interval 1, probability 0, space 0, times 0
[  531.383015][T10001] CPU: 0 UID: 0 PID: 10001 Comm: syz.3.774 Tainted: G     U             6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  531.383053][T10001] Tainted: [U]=USER
[  531.383060][T10001] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  531.383073][T10001] Call Trace:
[  531.383079][T10001]  <TASK>
[  531.383088][T10001]  dump_stack_lvl+0x16c/0x1f0
[  531.383128][T10001]  should_fail_ex+0x50a/0x650
[  531.383149][T10001]  ? fs_reclaim_acquire+0xae/0x150
[  531.383180][T10001]  should_failslab+0xc2/0x120
[  531.383203][T10001]  kmem_cache_alloc_lru_noprof+0x73/0x3d0
[  531.383237][T10001]  ? inode_set_ctime_current+0x2a7/0x900
[  531.383261][T10001]  ? __d_alloc+0x31/0xaa0
[  531.383287][T10001]  __d_alloc+0x31/0xaa0
[  531.383312][T10001]  d_alloc_pseudo+0x1c/0xc0
[  531.383339][T10001]  alloc_file_pseudo+0xd0/0x230
[  531.383366][T10001]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  531.383393][T10001]  ? hugetlbfs_get_inode+0x323/0x740
[  531.383433][T10001]  hugetlb_file_setup+0x4cd/0x620
[  531.383460][T10001]  ksys_mmap_pgoff+0x189/0x5c0
[  531.383494][T10001]  __x64_sys_mmap+0x125/0x190
[  531.383530][T10001]  do_syscall_64+0xcd/0x250
[  531.383566][T10001]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  531.383598][T10001] RIP: 0033:0x7f6835d8d169
[  531.383616][T10001] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  531.383638][T10001] RSP: 002b:00007f6836ba6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  531.383659][T10001] RAX: ffffffffffffffda RBX: 00007f6835fa6160 RCX: 00007f6835d8d169
[  531.383674][T10001] RDX: 00004000000000e2 RSI: 0000000000000004 RDI: 0000000000000000
[  531.383687][T10001] RBP: 00007f6836ba6090 R08: ffffffffffffffff R09: 0000000000010000
[  531.383702][T10001] R10: 0000000000040eb1 R11: 0000000000000246 R12: 0000000000000001
[  531.383715][T10001] R13: 0000000000000000 R14: 00007f6835fa6160 R15: 00007fff5f9fbca8
[  531.383745][T10001]  </TASK>
[  531.575559][    C0] vkms_vblank_simulate: vblank timer overrun
[  535.864188][T10058] FAULT_INJECTION: forcing a failure.
[  535.864188][T10058] name failslab, interval 1, probability 0, space 0, times 0
[  536.030573][T10058] CPU: 1 UID: 0 PID: 10058 Comm: syz.3.785 Tainted: G     U             6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  536.030612][T10058] Tainted: [U]=USER
[  536.030620][T10058] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  536.030633][T10058] Call Trace:
[  536.030641][T10058]  <TASK>
[  536.030651][T10058]  dump_stack_lvl+0x16c/0x1f0
[  536.030690][T10058]  should_fail_ex+0x50a/0x650
[  536.030713][T10058]  ? fs_reclaim_acquire+0xae/0x150
[  536.030745][T10058]  should_failslab+0xc2/0x120
[  536.030769][T10058]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  536.030803][T10058]  ? alloc_empty_file+0x73/0x1e0
[  536.030833][T10058]  alloc_empty_file+0x73/0x1e0
[  536.030859][T10058]  alloc_file_pseudo+0x13b/0x230
[  536.030887][T10058]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  536.030914][T10058]  ? hugetlbfs_get_inode+0x323/0x740
[  536.030943][T10058]  hugetlb_file_setup+0x4cd/0x620
[  536.030971][T10058]  ksys_mmap_pgoff+0x189/0x5c0
[  536.031005][T10058]  __x64_sys_mmap+0x125/0x190
[  536.031041][T10058]  do_syscall_64+0xcd/0x250
[  536.031076][T10058]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  536.031107][T10058] RIP: 0033:0x7f6835d8d169
[  536.031127][T10058] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  536.031147][T10058] RSP: 002b:00007f6836ba6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  536.031182][T10058] RAX: ffffffffffffffda RBX: 00007f6835fa6160 RCX: 00007f6835d8d169
[  536.031197][T10058] RDX: 00004000000000e2 RSI: 0000000000000004 RDI: 0000000000000000
[  536.031211][T10058] RBP: 00007f6836ba6090 R08: ffffffffffffffff R09: 0000000000010000
[  536.031226][T10058] R10: 0000000000040eb1 R11: 0000000000000246 R12: 0000000000000001
[  536.031240][T10058] R13: 0000000000000000 R14: 00007f6835fa6160 R15: 00007fff5f9fbca8
[  536.031270][T10058]  </TASK>
[  538.767025][T10101] nbd: socks must be embedded in a SOCK_ITEM attr
[  538.793022][T10105] netlink: 28 bytes leftover after parsing attributes in process `syz.4.797'.
[  538.849558][T10101] block nbd0: shutting down sockets
[  539.239167][T10111] FAULT_INJECTION: forcing a failure.
[  539.239167][T10111] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  539.353257][T10111] CPU: 1 UID: 0 PID: 10111 Comm: syz.1.799 Tainted: G     U             6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  539.353292][T10111] Tainted: [U]=USER
[  539.353299][T10111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  539.353312][T10111] Call Trace:
[  539.353318][T10111]  <TASK>
[  539.353327][T10111]  dump_stack_lvl+0x16c/0x1f0
[  539.353363][T10111]  should_fail_ex+0x50a/0x650
[  539.353390][T10111]  _copy_from_user+0x2e/0xd0
[  539.353416][T10111]  generic_map_update_batch+0x391/0x5f0
[  539.353457][T10111]  ? __pfx_generic_map_update_batch+0x10/0x10
[  539.353488][T10111]  ? __fget_files+0x206/0x3a0
[  539.353523][T10111]  ? __pfx_generic_map_update_batch+0x10/0x10
[  539.353556][T10111]  bpf_map_do_batch+0x5a8/0x670
[  539.353588][T10111]  __sys_bpf+0x1ce4/0x49c0
[  539.353618][T10111]  ? __pfx_lock_release+0x10/0x10
[  539.353648][T10111]  ? __pfx___sys_bpf+0x10/0x10
[  539.353677][T10111]  ? vfs_write+0x306/0x1150
[  539.353712][T10111]  ? __mutex_unlock_slowpath+0x164/0x6a0
[  539.353762][T10111]  ? fput+0x67/0x440
[  539.353785][T10111]  ? ksys_write+0x1ba/0x250
[  539.353822][T10111]  ? __pfx_ksys_write+0x10/0x10
[  539.353853][T10111]  __x64_sys_bpf+0x78/0xc0
[  539.353873][T10111]  ? lockdep_hardirqs_on+0x7c/0x110
[  539.353902][T10111]  do_syscall_64+0xcd/0x250
[  539.353937][T10111]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  539.353967][T10111] RIP: 0033:0x7ff9aeb8d169
[  539.353985][T10111] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  539.354005][T10111] RSP: 002b:00007ff9af9da038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  539.354026][T10111] RAX: ffffffffffffffda RBX: 00007ff9aeda5fa0 RCX: 00007ff9aeb8d169
[  539.354040][T10111] RDX: 0000000000000092 RSI: 0000200000000380 RDI: 000000000000001a
[  539.354054][T10111] RBP: 00007ff9af9da090 R08: 0000000000000000 R09: 0000000000000000
[  539.354068][T10111] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  539.354081][T10111] R13: 0000000000000000 R14: 00007ff9aeda5fa0 R15: 00007ffc37047fd8
[  539.354109][T10111]  </TASK>
[  542.130126][T10123] FAULT_INJECTION: forcing a failure.
[  542.130126][T10123] name failslab, interval 1, probability 0, space 0, times 0
[  542.241607][T10123] CPU: 1 UID: 0 PID: 10123 Comm: syz.1.801 Tainted: G     U             6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  542.241643][T10123] Tainted: [U]=USER
[  542.241650][T10123] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  542.241661][T10123] Call Trace:
[  542.241668][T10123]  <TASK>
[  542.241676][T10123]  dump_stack_lvl+0x16c/0x1f0
[  542.241711][T10123]  should_fail_ex+0x50a/0x650
[  542.241731][T10123]  ? fs_reclaim_acquire+0xae/0x150
[  542.241759][T10123]  should_failslab+0xc2/0x120
[  542.241781][T10123]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  542.241813][T10123]  ? rcu_is_watching+0x12/0xc0
[  542.241835][T10123]  ? security_file_alloc+0x34/0x2b0
[  542.241866][T10123]  security_file_alloc+0x34/0x2b0
[  542.241893][T10123]  init_file+0x93/0x4c0
[  542.241917][T10123]  alloc_empty_file+0x91/0x1e0
[  542.241942][T10123]  alloc_file_pseudo+0x13b/0x230
[  542.241969][T10123]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  542.241995][T10123]  ? hugetlbfs_get_inode+0x323/0x740
[  542.242025][T10123]  hugetlb_file_setup+0x4cd/0x620
[  542.242051][T10123]  ksys_mmap_pgoff+0x189/0x5c0
[  542.242084][T10123]  __x64_sys_mmap+0x125/0x190
[  542.242120][T10123]  do_syscall_64+0xcd/0x250
[  542.242155][T10123]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  542.242185][T10123] RIP: 0033:0x7ff9aeb8d169
[  542.242203][T10123] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  542.242224][T10123] RSP: 002b:00007ff9af9b9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  542.242246][T10123] RAX: ffffffffffffffda RBX: 00007ff9aeda6080 RCX: 00007ff9aeb8d169
[  542.242261][T10123] RDX: 00004000000000e2 RSI: 0000000000000004 RDI: 0000000000000000
[  542.242274][T10123] RBP: 00007ff9af9b9090 R08: ffffffffffffffff R09: 0000000000010000
[  542.242288][T10123] R10: 0000000000040eb1 R11: 0000000000000246 R12: 0000000000000001
[  542.242301][T10123] R13: 0000000000000000 R14: 00007ff9aeda6080 R15: 00007ffc37047fd8
[  542.242330][T10123]  </TASK>
[  543.174655][T10136] sctp: [Deprecated]: syz.2.803 (pid 10136) Use of int in maxseg socket option.
[  543.174655][T10136] Use struct sctp_assoc_value instead
[  544.104133][T10145] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  544.111024][T10145] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  548.871458][T10190] usbip-vudc usbip-vudc.0: gadget not bound
[  555.435711][T10266] netlink: 8 bytes leftover after parsing attributes in process `syz.2.829'.
[  557.606906][T10291] random: crng reseeded on system resumption
[  559.627838][T10313] nbd: socks must be embedded in a SOCK_ITEM attr
[  559.712426][T10313] block nbd0: shutting down sockets
[  559.836383][T10313] netlink: 28 bytes leftover after parsing attributes in process `syz.3.840'.
[  561.440559][T10335] netlink: 338 bytes leftover after parsing attributes in process `syz.3.847'.
[  561.451278][T10335] netlink: 338 bytes leftover after parsing attributes in process `syz.3.847'.
[  561.463583][T10335] netlink: 290 bytes leftover after parsing attributes in process `syz.3.847'.
[  561.474529][T10335] veth0_macvtap: left promiscuous mode
[  561.976822][T10341] can: request_module (can-proto-0) failed.
[  563.232854][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  563.239710][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  567.744317][T10396] netlink: 8 bytes leftover after parsing attributes in process `syz.4.868'.
[  572.383458][T10466] input: f�
 as /devices/virtual/input/input11
[  574.774068][T10480] netlink: 342 bytes leftover after parsing attributes in process `syz.1.878'.
[  575.821519][T10497] FAULT_INJECTION: forcing a failure.
[  575.821519][T10497] name failslab, interval 1, probability 0, space 0, times 0
[  575.877223][T10497] CPU: 1 UID: 0 PID: 10497 Comm: syz.3.883 Tainted: G     U             6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  575.877273][T10497] Tainted: [U]=USER
[  575.877281][T10497] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  575.877294][T10497] Call Trace:
[  575.877302][T10497]  <TASK>
[  575.877312][T10497]  dump_stack_lvl+0x16c/0x1f0
[  575.877354][T10497]  should_fail_ex+0x50a/0x650
[  575.877378][T10497]  ? fs_reclaim_acquire+0xae/0x150
[  575.877411][T10497]  ? sk_prot_alloc+0x1a8/0x2a0
[  575.877439][T10497]  should_failslab+0xc2/0x120
[  575.877464][T10497]  __kmalloc_noprof+0xcb/0x510
[  575.877497][T10497]  ? find_held_lock+0x2d/0x110
[  575.877529][T10497]  sk_prot_alloc+0x1a8/0x2a0
[  575.877559][T10497]  sk_alloc+0x36/0xc20
[  575.877594][T10497]  mISDN_sock_create+0x275/0x410
[  575.877629][T10497]  __sock_create+0x335/0x8d0
[  575.877664][T10497]  __sys_socket+0x14f/0x260
[  575.877694][T10497]  ? __pfx___sys_socket+0x10/0x10
[  575.877725][T10497]  ? rcu_is_watching+0x12/0xc0
[  575.877757][T10497]  __x64_sys_socket+0x72/0xb0
[  575.877784][T10497]  ? lockdep_hardirqs_on+0x7c/0x110
[  575.877816][T10497]  do_syscall_64+0xcd/0x250
[  575.877852][T10497]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  575.877885][T10497] RIP: 0033:0x7f6835d8d169
[  575.877905][T10497] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  575.877928][T10497] RSP: 002b:00007f6836bc7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  575.877951][T10497] RAX: ffffffffffffffda RBX: 00007f6835fa6080 RCX: 00007f6835d8d169
[  575.877968][T10497] RDX: 0000000000000024 RSI: 0000000000000002 RDI: 0000000000000022
[  575.877982][T10497] RBP: 00007f6835e0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  575.877996][T10497] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  575.878009][T10497] R13: 0000000000000000 R14: 00007f6835fa6080 R15: 00007fff5f9fbca8
[  575.878039][T10497]  </TASK>
[  576.877395][T10504] cgroup: fork rejected by pids controller in /syz2
[  577.293349][T10558] usbip-vudc usbip-vudc.0: gadget not bound
[  582.851018][T10698] netlink: 8 bytes leftover after parsing attributes in process `syz.4.902'.
[  585.138895][   T30] audit: type=1800 audit(6039411719.345:3): pid=10711 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.904" name="SYSV00000400" dev="tmpfs" ino=0 res=0 errno=0
[  586.326610][T10687] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !PjE�r��҄y�*�"�l-���y–��
[  587.354972][T10727] input: f�
 as /devices/virtual/input/input12
[  587.436059][T10728] netlink: 342 bytes leftover after parsing attributes in process `syz.3.907'.
[  588.513625][T10749] sctp: [Deprecated]: syz.4.913 (pid 10749) Use of int in maxseg socket option.
[  588.513625][T10749] Use struct sctp_assoc_value instead
[  588.849081][T10761] vivid-003: =================  START STATUS  =================
[  588.883303][T10761] vivid-003: Radio HW Seek Mode: Bounded
[  588.889422][T10761] vivid-003: Radio Programmable HW Seek: false
[  589.103185][T10761] vivid-003: RDS Rx I/O Mode: Block I/O
[  589.128698][T10761] vivid-003: Generate RBDS Instead of RDS: false
[  589.169979][T10761] vivid-003: RDS Reception: true
[  589.224290][T10761] vivid-003: RDS Program Type: 0 inactive
[  589.297774][T10761] vivid-003: RDS PS Name:  inactive
[  589.303068][T10761] vivid-003: RDS Radio Text:  inactive
[  589.352537][T10761] vivid-003: RDS Traffic Announcement: false inactive
[  589.403202][T10761] vivid-003: RDS Traffic Program: false inactive
[  589.409643][T10761] vivid-003: RDS Music: false inactive
[  589.483142][T10761] vivid-003: ==================  END STATUS  ==================
[  590.768593][T10795] sctp: [Deprecated]: syz.4.922 (pid 10795) Use of int in maxseg socket option.
[  590.768593][T10795] Use struct sctp_assoc_value instead
[  591.476596][T10804] Invalid ELF header magic: != ELF
[  592.007442][T10806] netlink: 28 bytes leftover after parsing attributes in process `syz.4.924'.
[  592.124313][T10806] geneve1: entered allmulticast mode
[  594.514425][T10819] Page cache invalidation failure on direct I/O.  Possible data corruption due to collision with buffered I/O!
[  594.643246][T10819] File: /dev/mtdblock0 PID: 10819 Comm: syz.2.928
[  595.367282][T10850] sctp: [Deprecated]: syz.3.933 (pid 10850) Use of int in maxseg socket option.
[  595.367282][T10850] Use struct sctp_assoc_value instead
[  600.057899][T10929] tipc: Started in network mode
[  600.093634][T10929] tipc: Node identity 8e4e6f15, cluster identity 4711
[  600.103062][T10929] tipc: Node number set to 2387504917
[  602.238806][T10956] sctp: [Deprecated]: syz.4.955 (pid 10956) Use of int in maxseg socket option.
[  602.238806][T10956] Use struct sctp_assoc_value instead
[  604.809057][   T30] audit: type=1806 audit(6039411739.015:4): xattr="." res=0
[  607.785090][T10994] netlink: 330 bytes leftover after parsing attributes in process `syz.4.965'.
[  616.472184][T11054] sctp: [Deprecated]: syz.3.981 (pid 11054) Use of int in maxseg socket option.
[  616.472184][T11054] Use struct sctp_assoc_value instead
[  616.705954][T11056] can: request_module (can-proto-0) failed.
[  619.315212][T11077] netlink: 28 bytes leftover after parsing attributes in process `syz.3.987'.
[  621.565618][T11085] syz.1.989 (11085): attempted to duplicate a private mapping with mremap.  This is not supported.
[  623.994944][T11126] input: f�
 as /devices/virtual/input/input13
[  624.655518][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  624.662009][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  627.085643][T11143] Invalid ELF header magic: != ELF
[  629.043926][T11167] sctp: [Deprecated]: syz.1.1006 (pid 11167) Use of int in maxseg socket option.
[  629.043926][T11167] Use struct sctp_assoc_value instead
[  631.080323][T11183] capability: warning: `syz.2.1010' uses 32-bit capabilities (legacy support in use)
[  634.502886][T11226] kexec: Could not allocate control_code_buffer
[  639.484514][T11292] sctp: [Deprecated]: syz.1.1034 (pid 11292) Use of int in maxseg socket option.
[  639.484514][T11292] Use struct sctp_assoc_value instead
[  643.219647][   T55] Bluetooth: hci2: unexpected subevent 0x01 length: 4 < 18
[  644.165812][T11337] sctp: [Deprecated]: syz.3.1045 (pid 11337) Use of int in maxseg socket option.
[  644.165812][T11337] Use struct sctp_assoc_value instead
[  644.180137][T11334] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1044'.
[  644.180338][T11334] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1044'.
[  644.180487][T11334] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1044'.
[  645.198000][   T55] Bluetooth: hci1: unexpected subevent 0x01 length: 4 < 18
[  645.260023][   T30] audit: type=1800 audit(6039542871.467:5): pid=11356 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1050" name="dbroot" dev="configfs" ino=26700 res=0 errno=0
[  646.750690][T11358] kexec: Could not allocate control_code_buffer
[  646.948668][T10969] Process accounting resumed
[  647.736220][T11385] sctp: [Deprecated]: syz.3.1055 (pid 11385) Use of int in maxseg socket option.
[  647.736220][T11385] Use struct sctp_assoc_value instead
[  653.669384][T11445] Process accounting resumed
[  655.585382][T11475] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1076'.
[  655.739778][T11473] svc: failed to register nfsdv3 RPC service (errno 111).
[  655.847510][T11473] svc: failed to register nfsaclv3 RPC service (errno 111).
[  659.505743][T11500] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1081'.
[  659.563222][T11504] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1082'.
[  661.210577][T11537] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1088'.
[  662.597542][T11542] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1089'.
[  662.745562][T11563] openvswitch: netlink: Message has 215 unknown bytes.
[  664.453986][T11575] FAULT_INJECTION: forcing a failure.
[  664.453986][T11575] name failslab, interval 1, probability 0, space 0, times 0
[  664.563224][T11575] CPU: 1 UID: 0 PID: 11575 Comm: syz.1.1097 Tainted: G     U             6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  664.563265][T11575] Tainted: [U]=USER
[  664.563273][T11575] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  664.563287][T11575] Call Trace:
[  664.563293][T11575]  <TASK>
[  664.563303][T11575]  dump_stack_lvl+0x16c/0x1f0
[  664.563348][T11575]  should_fail_ex+0x50a/0x650
[  664.563373][T11575]  ? fs_reclaim_acquire+0xae/0x150
[  664.563416][T11575]  should_failslab+0xc2/0x120
[  664.563443][T11575]  __kmalloc_node_track_caller_noprof+0xcf/0x510
[  664.563482][T11575]  ? apply_subsystem_event_filter+0x3ec/0x1410
[  664.563520][T11575]  kstrdup+0x53/0x100
[  664.563552][T11575]  apply_subsystem_event_filter+0x3ec/0x1410
[  664.563595][T11575]  ? __pfx_apply_subsystem_event_filter+0x10/0x10
[  664.563625][T11575]  ? __might_fault+0xe3/0x190
[  664.563651][T11575]  ? __might_fault+0xe3/0x190
[  664.563681][T11575]  ? _copy_from_user+0x59/0xd0
[  664.563712][T11575]  subsystem_filter_write+0x95/0x120
[  664.563745][T11575]  ? __pfx_subsystem_filter_write+0x10/0x10
[  664.563775][T11575]  vfs_write+0x24c/0x1150
[  664.563810][T11575]  ? __fget_files+0x1fc/0x3a0
[  664.563844][T11575]  ? __pfx___mutex_lock+0x10/0x10
[  664.563880][T11575]  ? __pfx_vfs_write+0x10/0x10
[  664.563922][T11575]  ? __fget_files+0x206/0x3a0
[  664.563966][T11575]  ksys_write+0x12b/0x250
[  664.563998][T11575]  ? __pfx_ksys_write+0x10/0x10
[  664.564041][T11575]  do_syscall_64+0xcd/0x250
[  664.564079][T11575]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  664.564112][T11575] RIP: 0033:0x7ff9aeb8d169
[  664.564132][T11575] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  664.564157][T11575] RSP: 002b:00007ff9af9da038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  664.564181][T11575] RAX: ffffffffffffffda RBX: 00007ff9aeda5fa0 RCX: 00007ff9aeb8d169
[  664.564198][T11575] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000005
[  664.564214][T11575] RBP: 00007ff9aec0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  664.564229][T11575] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  664.564244][T11575] R13: 0000000000000000 R14: 00007ff9aeda5fa0 R15: 00007ffc37047fd8
[  664.564272][T11575]  </TASK>
[  669.326408][T11633] can: request_module (can-proto-3) failed.
[  673.070549][T11695] sctp: [Deprecated]: syz.3.1124 (pid 11695) Use of int in maxseg socket option.
[  673.070549][T11695] Use struct sctp_assoc_value instead
[  675.705216][T11721] Malformed UNC in devname
[  675.705216][T11721] 
[  675.733475][T11721] CIFS: VFS: Malformed UNC in devname
[  676.716869][T11731] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1131'.
[  678.068335][T11735] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1132'.
[  678.947653][T11749] sctp: [Deprecated]: syz.3.1134 (pid 11749) Use of int in maxseg socket option.
[  678.947653][T11749] Use struct sctp_assoc_value instead
[  679.753409][T11748] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  679.760005][T11748] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  679.823364][T11748] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  679.832330][T11748] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  679.853250][T11748] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  680.778695][T11615] Process accounting resumed
[  681.533280][   T55] Bluetooth: hci1: command 0x0c1a tx timeout
[  681.773331][   T55] Bluetooth: hci2: command 0x0c1a tx timeout
[  681.859427][   T55] Bluetooth: hci4: command 0x0406 tx timeout
[  681.864338][ T9174] Bluetooth: hci3: command 0x0c1a tx timeout
[  682.949049][T11796] sctp: [Deprecated]: syz.4.1146 (pid 11796) Use of int in maxseg socket option.
[  682.949049][T11796] Use struct sctp_assoc_value instead
[  683.939537][ T9174] Bluetooth: hci4: command 0x0406 tx timeout
[  686.103611][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  686.110290][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  686.555355][T11847] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1157'.
[  690.278645][T11904] input: f�
 as /devices/virtual/input/input15
[  691.204344][T11917] input: f�
 as /devices/virtual/input/input16
[  693.635778][ T9174] Bluetooth: hci2: unexpected subevent 0x01 length: 4 < 18
[  695.412900][T11980] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1176'.
[  696.155204][T11968] Process accounting resumed
[  696.896783][T11957] kexec: Could not allocate control_code_buffer
[  697.282587][T11990] netlink: 334 bytes leftover after parsing attributes in process `syz.4.1177'.
[  698.192343][T12017] sctp: [Deprecated]: syz.4.1185 (pid 12017) Use of int in maxseg socket option.
[  698.192343][T12017] Use struct sctp_assoc_value instead
[  699.701338][T12023] Process accounting resumed
[  702.639847][T12065] sctp: [Deprecated]: syz.2.1195 (pid 12065) Use of int in maxseg socket option.
[  702.639847][T12065] Use struct sctp_assoc_value instead
[  703.272232][T12074] input: f�
 as /devices/virtual/input/input17
[  704.685364][T12086] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1198'.
[  705.422908][T12084] Process accounting resumed
[  706.760838][T12112] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1205'.
[  708.296450][T12120] Process accounting resumed
[  708.458735][T12131] input: f�
 as /devices/virtual/input/input18
[  708.710982][T12138] ecryptfs_miscdev_write: Invalid packet size [192]
[  709.334078][T12149] netlink: 334 bytes leftover after parsing attributes in process `syz.4.1215'.
[  709.364991][T12148] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1215'.
[  710.763354][T12164] openvswitch: netlink: Key type 261 is out of range max 32
[  713.653431][T12204] openvswitch: netlink: Port -2134900732 exceeds max allowable 65535
[  715.794119][T12225] netlink: 334 bytes leftover after parsing attributes in process `syz.2.1228'.
[  717.875396][T12265] mkiss: ax0: crc mode is auto.
[  717.906682][T12271] sctp: [Deprecated]: syz.1.1240 (pid 12271) Use of int in maxseg socket option.
[  717.906682][T12271] Use struct sctp_assoc_value instead
[  724.265717][T12328] FAULT_INJECTION: forcing a failure.
[  724.265717][T12328] name failslab, interval 1, probability 0, space 0, times 0
[  724.335369][T12328] CPU: 0 UID: 0 PID: 12328 Comm: syz.1.1252 Tainted: G     U             6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  724.335409][T12328] Tainted: [U]=USER
[  724.335417][T12328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  724.335431][T12328] Call Trace:
[  724.335438][T12328]  <TASK>
[  724.335448][T12328]  dump_stack_lvl+0x16c/0x1f0
[  724.335488][T12328]  should_fail_ex+0x50a/0x650
[  724.335512][T12328]  ? fs_reclaim_acquire+0xae/0x150
[  724.335546][T12328]  should_failslab+0xc2/0x120
[  724.335570][T12328]  __kmalloc_node_track_caller_noprof+0xcf/0x510
[  724.335608][T12328]  ? __request_module+0x2e4/0x6c0
[  724.335647][T12328]  kstrdup+0x53/0x100
[  724.335676][T12328]  __request_module+0x2e4/0x6c0
[  724.335709][T12328]  ? ctrl_getfamily+0x1ea/0x540
[  724.335735][T12328]  ? __pfx___request_module+0x10/0x10
[  724.335772][T12328]  ? find_held_lock+0x2d/0x110
[  724.335807][T12328]  ? __up_read+0x1fb/0x760
[  724.335846][T12328]  ? __pfx___up_read+0x10/0x10
[  724.335892][T12328]  ctrl_getfamily+0x1ea/0x540
[  724.335919][T12328]  ? __pfx_ctrl_getfamily+0x10/0x10
[  724.335948][T12328]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  724.335976][T12328]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  724.336011][T12328]  genl_family_rcv_msg_doit+0x202/0x2f0
[  724.336039][T12328]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  724.336064][T12328]  ? __pfx___mutex_lock+0x10/0x10
[  724.336096][T12328]  ? genl_get_cmd+0x195/0x580
[  724.336129][T12328]  ? __radix_tree_lookup+0x21f/0x2c0
[  724.336166][T12328]  genl_rcv_msg+0x565/0x800
[  724.336194][T12328]  ? __pfx_genl_rcv_msg+0x10/0x10
[  724.336220][T12328]  ? __pfx_ctrl_getfamily+0x10/0x10
[  724.336264][T12328]  netlink_rcv_skb+0x16b/0x440
[  724.336302][T12328]  ? __pfx_genl_rcv_msg+0x10/0x10
[  724.336329][T12328]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  724.336378][T12328]  ? down_read+0xc9/0x330
[  724.336417][T12328]  ? __pfx_down_read+0x10/0x10
[  724.336453][T12328]  ? netlink_deliver_tap+0x1ae/0xd30
[  724.336492][T12328]  genl_rcv+0x28/0x40
[  724.336512][T12328]  netlink_unicast+0x53c/0x7f0
[  724.336551][T12328]  ? __pfx_netlink_unicast+0x10/0x10
[  724.336587][T12328]  ? __phys_addr_symbol+0x30/0x80
[  724.336612][T12328]  ? __check_object_size+0x488/0x710
[  724.336641][T12328]  netlink_sendmsg+0x8b8/0xd70
[  724.336681][T12328]  ? __pfx_netlink_sendmsg+0x10/0x10
[  724.336728][T12328]  __sys_sendto+0x488/0x4f0
[  724.336762][T12328]  ? __pfx___sys_sendto+0x10/0x10
[  724.336793][T12328]  ? reacquire_held_locks+0x20b/0x4c0
[  724.336825][T12328]  ? do_user_addr_fault+0xdc7/0x13f0
[  724.336888][T12328]  __x64_sys_sendto+0xe0/0x1c0
[  724.336921][T12328]  ? do_syscall_64+0x91/0x250
[  724.336953][T12328]  ? lockdep_hardirqs_on+0x7c/0x110
[  724.336982][T12328]  do_syscall_64+0xcd/0x250
[  724.337019][T12328]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  724.337052][T12328] RIP: 0033:0x7ff9aeb8effc
[  724.337073][T12328] Code: 2a 5f 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 70 5f 02 00 48 8b
[  724.337096][T12328] RSP: 002b:00007ff9af9b7ec0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  724.337120][T12328] RAX: ffffffffffffffda RBX: 00007ff9af9b7fc0 RCX: 00007ff9aeb8effc
[  724.337136][T12328] RDX: 000000000000001c RSI: 00007ff9af9b8010 RDI: 0000000000000007
[  724.337152][T12328] RBP: 0000000000000000 R08: 00007ff9af9b7f14 R09: 000000000000000c
[  724.337168][T12328] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000007
[  724.337183][T12328] R13: 00007ff9af9b7f68 R14: 00007ff9af9b8010 R15: 0000000000000000
[  724.337214][T12328]  </TASK>
[  725.286528][T12333] openvswitch: netlink: Port -2134900732 exceeds max allowable 65535
[  726.688766][T12360] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1260'.
[  727.183417][ T9174] Bluetooth: hci4: unexpected event 0x1d length: 6 > 5
[  728.280124][T12382] sctp: [Deprecated]: syz.4.1265 (pid 12382) Use of int in maxseg socket option.
[  728.280124][T12382] Use struct sctp_assoc_value instead
[  728.559269][T12369] can: request_module (can-proto-3) failed.
[  730.530284][T12409] could not allocate digest TFM handle 
[  735.006869][T12481] FAULT_INJECTION: forcing a failure.
[  735.006869][T12481] name failslab, interval 1, probability 0, space 0, times 0
[  735.210160][T12481] CPU: 1 UID: 0 PID: 12481 Comm: syz.2.1280 Tainted: G     U             6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  735.210202][T12481] Tainted: [U]=USER
[  735.210209][T12481] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  735.210227][T12481] Call Trace:
[  735.210234][T12481]  <TASK>
[  735.210243][T12481]  dump_stack_lvl+0x16c/0x1f0
[  735.210294][T12481]  should_fail_ex+0x50a/0x650
[  735.210316][T12481]  ? fs_reclaim_acquire+0xae/0x150
[  735.210348][T12481]  ? __seq_open_private+0x22/0xd0
[  735.210374][T12481]  should_failslab+0xc2/0x120
[  735.210399][T12481]  __kmalloc_noprof+0xcb/0x510
[  735.210449][T12481]  ? __pfx_stats_fop_open+0x10/0x10
[  735.210478][T12481]  __seq_open_private+0x22/0xd0
[  735.210506][T12481]  sc_common_open+0x6b/0x200
[  735.210534][T12481]  full_proxy_open_regular+0x1b6/0x360
[  735.210570][T12481]  do_dentry_open+0x735/0x1c40
[  735.210602][T12481]  ? __pfx_full_proxy_open_regular+0x10/0x10
[  735.210638][T12481]  ? inode_permission+0xdd/0x5f0
[  735.210666][T12481]  vfs_open+0x82/0x3f0
[  735.210689][T12481]  ? may_open+0x1f2/0x400
[  735.210719][T12481]  path_openat+0x1e88/0x2d80
[  735.210764][T12481]  ? __pfx_path_openat+0x10/0x10
[  735.210794][T12481]  ? __pfx___lock_acquire+0x10/0x10
[  735.210825][T12481]  ? lock_acquire.part.0+0x11b/0x380
[  735.210858][T12481]  ? find_held_lock+0x2d/0x110
[  735.210887][T12481]  do_filp_open+0x20c/0x470
[  735.210920][T12481]  ? __pfx_do_filp_open+0x10/0x10
[  735.210952][T12481]  ? find_held_lock+0x2d/0x110
[  735.210999][T12481]  ? alloc_fd+0x41f/0x760
[  735.211040][T12481]  do_sys_openat2+0x17a/0x1e0
[  735.211066][T12481]  ? __pfx_do_sys_openat2+0x10/0x10
[  735.211093][T12481]  ? __pfx___might_resched+0x10/0x10
[  735.211138][T12481]  __x64_sys_openat+0x175/0x210
[  735.211164][T12481]  ? __pfx___x64_sys_openat+0x10/0x10
[  735.211201][T12481]  do_syscall_64+0xcd/0x250
[  735.211239][T12481]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  735.211272][T12481] RIP: 0033:0x7ff12618d169
[  735.211300][T12481] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  735.211330][T12481] RSP: 002b:00007ff126f77038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  735.211355][T12481] RAX: ffffffffffffffda RBX: 00007ff1263a6080 RCX: 00007ff12618d169
[  735.211371][T12481] RDX: 0000000000000000 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  735.211387][T12481] RBP: 00007ff12620e2a0 R08: 0000000000000000 R09: 0000000000000000
[  735.211402][T12481] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  735.211415][T12481] R13: 0000000000000000 R14: 00007ff1263a6080 R15: 00007ffde1a7dcb8
[  735.211455][T12481]  </TASK>
[  736.957692][T12468] netlink: 334 bytes leftover after parsing attributes in process `syz.4.1275'.
[  737.734550][T12496] netlink: 2191 bytes leftover after parsing attributes in process `syz.2.1283'.
[  740.523236][T12245] Process accounting resumed
[  741.448590][   T30] audit: type=1800 audit(6039772358.661:6): pid=12562 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1292" name="trace_pipe" dev="tracefs" ino=1077 res=0 errno=0
[  742.487913][T12578] openvswitch: netlink: Multiple metadata blocks provided
[  742.543279][T12579] openvswitch: netlink: Multiple metadata blocks provided
[  743.037730][T12591] [U] erofs
[  743.040980][T12591] [U] 
[  743.043722][T12591] [U] 
[  743.046461][T12591] [U] 
[  743.111418][T12591] [U] 
[  743.114195][T12591] [U] 
[  743.116947][T12591] [U] 
[  743.119684][T12591] [U] 
[  743.338866][T12591] [U] 
[  743.892263][T12599] input: f�
 as /devices/virtual/input/input19
[  745.962588][T12631] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1310'.
[  746.783780][T12636] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1312'.
[  747.537132][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  747.543662][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  748.443459][ T9174] Bluetooth: hci3: unexpected event 0x03 length: 17 > 11
[  748.716468][T12678] sctp: [Deprecated]: syz.2.1323 (pid 12678) Use of int in maxseg socket option.
[  748.716468][T12678] Use struct sctp_assoc_value instead
[  748.808784][T12680] delete_channel: no stack
[  749.623465][T12688] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1326'.
[  751.292240][T12729] Invalid ELF header magic: != ELF
[  752.815876][T12752] netlink: 334 bytes leftover after parsing attributes in process `syz.4.1338'.
[  753.318645][T12761] netlink: 334 bytes leftover after parsing attributes in process `syz.1.1347'.
[  753.410085][T12760] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1339'.
[  755.089699][T12802] input: f�
 as /devices/virtual/input/input20
[  756.128346][T12778] Process accounting resumed
[  756.336541][T12820] netlink: 334 bytes leftover after parsing attributes in process `syz.1.1351'.
[  756.847827][T12832] input: f�
 as /devices/virtual/input/input21
[  756.980062][T12827] netlink: 334 bytes leftover after parsing attributes in process `syz.2.1353'.
[  757.922932][T12845] sctp: [Deprecated]: syz.1.1358 (pid 12845) Use of int in maxseg socket option.
[  757.922932][T12845] Use struct sctp_assoc_value instead
[  758.281857][T12740] Process accounting resumed
[  758.786757][T12853] nfs: Unknown parameter 'w��`_�����I+;��	��HY� ������Lu�>>��uh�*��C<+����'
[  759.208033][T12866] netlink: zone id is out of range
[  759.213409][T12866] netlink: zone id is out of range
[  759.218542][T12866] netlink: zone id is out of range
[  759.243451][T12866] netlink: zone id is out of range
[  759.255586][T12866] netlink: zone id is out of range
[  759.260750][T12866] netlink: zone id is out of range
[  759.343395][T12866] netlink: zone id is out of range
[  759.348560][T12866] netlink: zone id is out of range
[  759.459634][T12866] netlink: zone id is out of range
[  759.493194][T12866] netlink: zone id is out of range
[  760.284100][T12898] sctp: [Deprecated]: syz.3.1368 (pid 12898) Use of int in maxseg socket option.
[  760.284100][T12898] Use struct sctp_assoc_value instead
[  760.326926][T12840] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  760.350042][T12840] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  760.413544][T12840] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  760.419627][T12840] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  760.519436][T12903] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1370'.
[  760.582432][T12904] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1370'.
[  760.661291][   T55] Bluetooth: hci1: command 0x0c1a tx timeout
[  760.749514][T12903] =======================================================
[  760.749514][T12903] WARNING: The mand mount option has been deprecated and
[  760.749514][T12903]          and is ignored by this kernel. Remove the mand
[  760.749514][T12903]          option from the mount to silence this warning.
[  760.749514][T12903] =======================================================
[  761.136418][T12922] FAULT_INJECTION: forcing a failure.
[  761.136418][T12922] name failslab, interval 1, probability 0, space 0, times 0
[  761.183226][T12922] CPU: 1 UID: 0 PID: 12922 Comm: syz.2.1376 Tainted: G     U             6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  761.183263][T12922] Tainted: [U]=USER
[  761.183270][T12922] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  761.183284][T12922] Call Trace:
[  761.183290][T12922]  <TASK>
[  761.183299][T12922]  dump_stack_lvl+0x16c/0x1f0
[  761.183336][T12922]  should_fail_ex+0x50a/0x650
[  761.183357][T12922]  ? fs_reclaim_acquire+0xae/0x150
[  761.183385][T12922]  should_failslab+0xc2/0x120
[  761.183405][T12922]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  761.183435][T12922]  ? alloc_empty_file+0x73/0x1e0
[  761.183463][T12922]  alloc_empty_file+0x73/0x1e0
[  761.183486][T12922]  path_openat+0xe1/0x2d80
[  761.183514][T12922]  ? hlock_class+0x4e/0x130
[  761.183536][T12922]  ? __lock_acquire+0x15a9/0x3c40
[  761.183583][T12922]  ? __pfx_path_openat+0x10/0x10
[  761.183613][T12922]  ? __pfx___lock_acquire+0x10/0x10
[  761.183640][T12922]  ? lock_acquire.part.0+0x11b/0x380
[  761.183667][T12922]  ? find_held_lock+0x2d/0x110
[  761.183693][T12922]  do_filp_open+0x20c/0x470
[  761.183723][T12922]  ? __pfx_do_filp_open+0x10/0x10
[  761.183754][T12922]  ? find_held_lock+0x2d/0x110
[  761.183796][T12922]  ? _raw_spin_unlock+0x28/0x50
[  761.183823][T12922]  ? alloc_fd+0x41f/0x760
[  761.183863][T12922]  do_sys_openat2+0x17a/0x1e0
[  761.183888][T12922]  ? __pfx_do_sys_openat2+0x10/0x10
[  761.183915][T12922]  ? __fget_files+0x206/0x3a0
[  761.183952][T12922]  __x64_sys_open+0x154/0x1e0
[  761.183977][T12922]  ? __pfx___x64_sys_open+0x10/0x10
[  761.184013][T12922]  do_syscall_64+0xcd/0x250
[  761.184048][T12922]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  761.184079][T12922] RIP: 0033:0x7ff12618d169
[  761.184098][T12922] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  761.184119][T12922] RSP: 002b:00007ff126f98038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[  761.184141][T12922] RAX: ffffffffffffffda RBX: 00007ff1263a5fa0 RCX: 00007ff12618d169
[  761.184155][T12922] RDX: e1d2b27bdc14aabc RSI: 0000000000004242 RDI: 0000200000000000
[  761.184169][T12922] RBP: 00007ff126f98090 R08: 0000000000000000 R09: 0000000000000000
[  761.184184][T12922] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  761.184196][T12922] R13: 0000000000000000 R14: 00007ff1263a5fa0 R15: 00007ffde1a7dcb8
[  761.184225][T12922]  </TASK>
[  761.272438][T12915] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1373'.
[  761.685978][T12933] sctp: [Deprecated]: syz.2.1378 (pid 12933) Use of int in maxseg socket option.
[  761.685978][T12933] Use struct sctp_assoc_value instead
[  762.355730][T12948] input: f�
 as /devices/virtual/input/input22
[  762.413252][   T55] Bluetooth: hci2: command 0x0c1a tx timeout
[  762.493222][   T55] Bluetooth: hci4: command 0x0406 tx timeout
[  762.493672][ T9174] Bluetooth: hci3: command 0x0c1a tx timeout
[  765.883255][T13021] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1400'.
[  765.913159][T13021] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[  766.793342][T13039] Process accounting resumed
[  766.798648][T13034] input: f�
 as /devices/virtual/input/input23
[  768.025141][T13051] Process accounting resumed
[  770.354283][T13074] FAULT_INJECTION: forcing a failure.
[  770.354283][T13074] name failslab, interval 1, probability 0, space 0, times 0
[  770.368060][T13074] CPU: 1 UID: 0 PID: 13074 Comm: syz.1.1411 Tainted: G     U             6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  770.368099][T13074] Tainted: [U]=USER
[  770.368107][T13074] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  770.368122][T13074] Call Trace:
[  770.368130][T13074]  <TASK>
[  770.368140][T13074]  dump_stack_lvl+0x16c/0x1f0
[  770.368182][T13074]  should_fail_ex+0x50a/0x650
[  770.368206][T13074]  ? fs_reclaim_acquire+0xae/0x150
[  770.368241][T13074]  should_failslab+0xc2/0x120
[  770.368266][T13074]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  770.368300][T13074]  ? down_write+0x14e/0x200
[  770.368324][T13074]  ? vm_area_dup+0x21/0x2f0
[  770.368364][T13074]  vm_area_dup+0x21/0x2f0
[  770.368399][T13074]  copy_process+0x776f/0x8c50
[  770.368451][T13074]  ? __pfx_copy_process+0x10/0x10
[  770.368477][T13074]  ? try_to_wake_up+0x953/0x1490
[  770.368517][T13074]  ? plist_check_head+0xa3/0x150
[  770.368553][T13074]  ? wake_up_q+0xb0/0x160
[  770.368583][T13074]  ? do_raw_spin_unlock+0x172/0x230
[  770.368614][T13074]  kernel_clone+0xfd/0x960
[  770.368645][T13074]  ? __pfx_futex_wake+0x10/0x10
[  770.368680][T13074]  ? __pfx_kernel_clone+0x10/0x10
[  770.368728][T13074]  __do_sys_clone+0xcf/0x120
[  770.368752][T13074]  ? __pfx___do_sys_clone+0x10/0x10
[  770.368777][T13074]  ? __pfx___might_resched+0x10/0x10
[  770.368833][T13074]  ? rcu_is_watching+0x12/0xc0
[  770.368871][T13074]  do_syscall_64+0xcd/0x250
[  770.368908][T13074]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  770.368941][T13074] RIP: 0033:0x7ff9aeb8d169
[  770.368961][T13074] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  770.368984][T13074] RSP: 002b:00007ff9af9d9fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  770.369007][T13074] RAX: ffffffffffffffda RBX: 00007ff9aeda5fa0 RCX: 00007ff9aeb8d169
[  770.369023][T13074] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000011
[  770.369042][T13074] RBP: 00007ff9aec0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  770.369057][T13074] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  770.369071][T13074] R13: 0000000000000000 R14: 00007ff9aeda5fa0 R15: 00007ffc37047fd8
[  770.369107][T13074]  </TASK>
[  772.967519][T13118] can0: slcan on ttyS2.
[  775.539461][T13121] can0 (unregistered): slcan off ttyS2.
[  782.035355][T13220] sctp: [Deprecated]: syz.4.1433 (pid 13220) Use of int in maxseg socket option.
[  782.035355][T13220] Use struct sctp_assoc_value instead
[  789.462680][ T9174] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260
[  789.462721][ T9174] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260
[  789.483361][ T9174] Bluetooth: hci2: adv larger than maximum supported
[  789.638779][T13311] netlink: 'syz.2.1451': attribute type 11 has an invalid length.
[  791.203128][T13319] GUP no longer grows the stack in syz.2.1453 (13319): 14000-401000 (4000)
[  791.211829][T13319] CPU: 0 UID: 0 PID: 13319 Comm: syz.2.1453 Tainted: G     U             6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  791.211865][T13319] Tainted: [U]=USER
[  791.211873][T13319] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  791.211889][T13319] Call Trace:
[  791.211897][T13319]  <TASK>
[  791.211907][T13319]  dump_stack_lvl+0x16c/0x1f0
[  791.211950][T13319]  gup_vma_lookup+0x1d2/0x220
[  791.211984][T13319]  __get_user_pages+0x236/0x36f0
[  791.212026][T13319]  ? hlock_class+0x4e/0x130
[  791.212051][T13319]  ? __lock_acquire+0x15a9/0x3c40
[  791.212085][T13319]  ? __pfx___get_user_pages+0x10/0x10
[  791.212131][T13319]  __gup_longterm_locked+0x212/0x1870
[  791.212167][T13319]  ? __pfx___lock_acquire+0x10/0x10
[  791.212207][T13319]  ? __pfx___gup_longterm_locked+0x10/0x10
[  791.212242][T13319]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  791.212278][T13319]  ? rwsem_read_trylock+0x12d/0x250
[  791.212315][T13319]  ? __pfx_rwsem_read_trylock+0x10/0x10
[  791.212352][T13319]  ? process_vm_rw_core.constprop.0+0x3ff/0x9c0
[  791.212384][T13319]  pin_user_pages_remote+0xee/0x150
[  791.212420][T13319]  ? __pfx_pin_user_pages_remote+0x10/0x10
[  791.212453][T13319]  ? down_read+0xc9/0x330
[  791.212502][T13319]  process_vm_rw_core.constprop.0+0x42b/0x9c0
[  791.212535][T13319]  ? futex_wait_queue+0x103/0x1f0
[  791.212575][T13319]  ? __pfx_process_vm_rw_core.constprop.0+0x10/0x10
[  791.212638][T13319]  process_vm_rw+0x301/0x360
[  791.212667][T13319]  ? __pfx_process_vm_rw+0x10/0x10
[  791.212718][T13319]  ? __pfx_task_mm_cid_work+0x10/0x10
[  791.212767][T13319]  ? xfd_validate_state+0x5d/0x180
[  791.212801][T13319]  ? rcu_is_watching+0x12/0xc0
[  791.212831][T13319]  __x64_sys_process_vm_readv+0xe2/0x1c0
[  791.212857][T13319]  ? do_syscall_64+0x91/0x250
[  791.212891][T13319]  ? lockdep_hardirqs_on+0x7c/0x110
[  791.212923][T13319]  do_syscall_64+0xcd/0x250
[  791.212959][T13319]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  791.212994][T13319] RIP: 0033:0x7ff12618d169
[  791.213013][T13319] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  791.213035][T13319] RSP: 002b:00007ff126f98038 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[  791.213055][T13319] RAX: ffffffffffffffda RBX: 00007ff1263a5fa0 RCX: 00007ff12618d169
[  791.213069][T13319] RDX: 0000000000000004 RSI: 0000200000000040 RDI: 00000000000006bd
[  791.213084][T13319] RBP: 00007ff12620e2a0 R08: 0000000000000003 R09: 0000000000000000
[  791.213097][T13319] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000000
[  791.213111][T13319] R13: 0000000000000000 R14: 00007ff1263a5fa0 R15: 00007ffde1a7dcb8
[  791.213142][T13319]  </TASK>
[  795.310130][T13369] Process accounting resumed
[  797.001537][ T9174] Bluetooth: hci1: unexpected subevent 0x01 length: 4 < 18
[  797.074334][   T30] audit: type=1800 audit(6039903498.286:7): pid=13397 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1468" name="dbroot" dev="configfs" ino=33391 res=0 errno=0
[  799.354113][T13414] FAULT_INJECTION: forcing a failure.
[  799.354113][T13414] name fail_futex, interval 1, probability 0, space 0, times 0
[  799.383151][T13414] CPU: 1 UID: 0 PID: 13414 Comm: syz.2.1472 Tainted: G     U             6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  799.383187][T13414] Tainted: [U]=USER
[  799.383195][T13414] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  799.383208][T13414] Call Trace:
[  799.383215][T13414]  <TASK>
[  799.383224][T13414]  dump_stack_lvl+0x16c/0x1f0
[  799.383262][T13414]  should_fail_ex+0x50a/0x650
[  799.383289][T13414]  get_futex_key+0x4a3/0x1000
[  799.383320][T13414]  ? __pfx_get_futex_key+0x10/0x10
[  799.383345][T13414]  ? do_raw_spin_unlock+0x172/0x230
[  799.383369][T13414]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  799.383400][T13414]  ? find_held_lock+0x2d/0x110
[  799.383429][T13414]  futex_wait_setup+0x78/0x290
[  799.383469][T13414]  __futex_wait+0x267/0x3c0
[  799.383502][T13414]  ? __pfx___futex_wait+0x10/0x10
[  799.383535][T13414]  ? try_to_wake_up+0x158/0x1490
[  799.383569][T13414]  ? __pfx_futex_wake_mark+0x10/0x10
[  799.383614][T13414]  futex_wait+0xe9/0x380
[  799.383645][T13414]  ? __pfx_futex_wait+0x10/0x10
[  799.383682][T13414]  ? kmem_cache_free+0x2e2/0x4d0
[  799.383714][T13414]  ? putname+0x13c/0x180
[  799.383739][T13414]  do_futex+0x22b/0x350
[  799.383765][T13414]  ? __pfx_do_futex+0x10/0x10
[  799.383792][T13414]  ? trace_lock_acquire+0x14e/0x1f0
[  799.383824][T13414]  __x64_sys_futex+0x1e1/0x4c0
[  799.383854][T13414]  ? __x64_sys_openat+0x175/0x210
[  799.383879][T13414]  ? __pfx___x64_sys_futex+0x10/0x10
[  799.383919][T13414]  do_syscall_64+0xcd/0x250
[  799.383954][T13414]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  799.383993][T13414] RIP: 0033:0x7ff12618d169
[  799.384011][T13414] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  799.384033][T13414] RSP: 002b:00007ff126f980e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  799.384055][T13414] RAX: ffffffffffffffda RBX: 00007ff1263a5fa8 RCX: 00007ff12618d169
[  799.384070][T13414] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007ff1263a5fa8
[  799.384084][T13414] RBP: 00007ff1263a5fa0 R08: 0000000000000000 R09: 0000000000000000
[  799.384098][T13414] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff1263a5fac
[  799.384113][T13414] R13: 0000000000000000 R14: 00007ffde1a7dbd0 R15: 00007ffde1a7dcb8
[  799.384143][T13414]  </TASK>
[  799.619354][    C1] hrtimer: interrupt took 226387899 ns
[  799.642835][T13113] syz.1.1415 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  799.652713][T13113] CPU: 1 UID: 0 PID: 13113 Comm: syz.1.1415 Tainted: G     U             6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  799.652748][T13113] Tainted: [U]=USER
[  799.652754][T13113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  799.652767][T13113] Call Trace:
[  799.652773][T13113]  <TASK>
[  799.652782][T13113]  dump_stack_lvl+0x16c/0x1f0
[  799.652818][T13113]  dump_header+0x101/0x930
[  799.652850][T13113]  oom_kill_process+0x270/0xa60
[  799.652875][T13113]  ? mem_cgroup_out_of_memory+0x8d/0x270
[  799.652906][T13113]  out_of_memory+0x351/0x1700
[  799.652941][T13113]  ? __pfx_out_of_memory+0x10/0x10
[  799.652972][T13113]  ? rcu_read_unlock+0x17/0x60
[  799.652993][T13113]  ? find_held_lock+0x2d/0x110
[  799.653024][T13113]  mem_cgroup_out_of_memory+0x207/0x270
[  799.653049][T13113]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  799.653080][T13113]  ? do_raw_spin_unlock+0x172/0x230
[  799.653106][T13113]  try_charge_memcg+0x54c/0xaf0
[  799.653139][T13113]  ? __pfx_try_charge_memcg+0x10/0x10
[  799.653172][T13113]  ? trace_lock_acquire+0x14e/0x1f0
[  799.653199][T13113]  ? get_mem_cgroup_from_mm+0x7f/0x5f0
[  799.653229][T13113]  ? lock_acquire+0x2f/0xb0
[  799.653256][T13113]  ? get_mem_cgroup_from_mm+0x7f/0x5f0
[  799.653293][T13113]  charge_memcg+0x8a/0x310
[  799.653328][T13113]  __mem_cgroup_charge+0x2b/0x1e0
[  799.653355][T13113]  shmem_alloc_and_add_folio+0x50a/0xc10
[  799.653389][T13113]  ? shmem_huge_global_enabled+0x72/0x6b0
[  799.653414][T13113]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  799.653445][T13113]  ? shmem_allowable_huge_orders+0xd0/0x410
[  799.653482][T13113]  shmem_get_folio_gfp+0x689/0x1530
[  799.653517][T13113]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  799.653543][T13113]  ? find_held_lock+0x2d/0x110
[  799.653575][T13113]  shmem_write_begin+0x161/0x300
[  799.653606][T13113]  ? __pfx_shmem_write_begin+0x10/0x10
[  799.653630][T13113]  ? mark_held_locks+0x9f/0xe0
[  799.653660][T13113]  ? balance_dirty_pages_ratelimited_flags+0x92/0x1270
[  799.653694][T13113]  ? __pfx_timestamp_truncate+0x10/0x10
[  799.653734][T13113]  generic_perform_write+0x3e9/0x940
[  799.653772][T13113]  ? __pfx_generic_perform_write+0x10/0x10
[  799.653801][T13113]  ? inode_needs_update_time.part.0+0x191/0x270
[  799.653846][T13113]  shmem_file_write_iter+0x10e/0x140
[  799.653880][T13113]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  799.653910][T13113]  __kernel_write_iter+0x318/0xa90
[  799.653945][T13113]  ? __pfx___kernel_write_iter+0x10/0x10
[  799.653982][T13113]  ? get_dump_page+0x15b/0x230
[  799.654022][T13113]  ? __pfx___might_resched+0x10/0x10
[  799.654065][T13113]  dump_user_range+0x388/0x910
[  799.654102][T13113]  ? __pfx_dump_user_range+0x10/0x10
[  799.654133][T13113]  ? elf_coredump_extra_notes_write+0xbe/0x430
[  799.654173][T13113]  ? __pfx_writenote+0x10/0x10
[  799.654211][T13113]  elf_core_dump+0x287c/0x3a50
[  799.654260][T13113]  ? __pfx_elf_core_dump+0x10/0x10
[  799.654293][T13113]  ? try_to_wake_up+0x949/0x1490
[  799.654331][T13113]  ? 0xffffffffff600000
[  799.654363][T13113]  ? rwsem_wake.isra.0+0xbe/0x120
[  799.654424][T13113]  ? rcu_is_watching+0x12/0xc0
[  799.654449][T13113]  ? trace_lock_acquire+0x14e/0x1f0
[  799.654476][T13113]  ? get_signal+0x230b/0x26c0
[  799.654518][T13113]  ? do_coredump+0x3166/0x4410
[  799.654542][T13113]  do_coredump+0x3166/0x4410
[  799.654583][T13113]  ? __pfx_do_coredump+0x10/0x10
[  799.654612][T13113]  ? stack_trace_save+0x95/0xd0
[  799.654639][T13113]  ? __pfx_stack_trace_save+0x10/0x10
[  799.654664][T13113]  ? hlock_class+0x4e/0x130
[  799.654687][T13113]  ? stack_depot_save_flags+0x28/0x9c0
[  799.654724][T13113]  ? kmem_cache_free+0x2e2/0x4d0
[  799.654754][T13113]  ? __sigqueue_free+0xba/0x2a0
[  799.654778][T13113]  ? get_signal+0xcbc/0x26c0
[  799.654808][T13113]  ? arch_do_signal_or_restart+0x90/0x7e0
[  799.654833][T13113]  ? irqentry_exit_to_user_mode+0x13f/0x280
[  799.654912][T13113]  ? irqentry_exit+0x3b/0x90
[  799.654942][T13113]  ? proc_coredump_connector+0x2d2/0x4f0
[  799.654971][T13113]  ? __pfx_proc_coredump_connector+0x10/0x10
[  799.655026][T13113]  get_signal+0x230b/0x26c0
[  799.655072][T13113]  ? __pfx_get_signal+0x10/0x10
[  799.655106][T13113]  ? rcu_is_watching+0x12/0xc0
[  799.655130][T13113]  ? trace_irq_disable.constprop.0+0xea/0x140
[  799.655170][T13113]  arch_do_signal_or_restart+0x90/0x7e0
[  799.655199][T13113]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  799.655237][T13113]  ? do_user_addr_fault+0xa4b/0x13f0
[  799.655278][T13113]  irqentry_exit_to_user_mode+0x13f/0x280
[  799.655313][T13113]  asm_exc_page_fault+0x26/0x30
[  799.655343][T13113] RIP: 0033:0x0
[  799.655358][T13113] Code: Unable to access opcode bytes at 0xffffffffffffffd6.
[  799.655368][T13113] RSP: 002b:000000000000000a EFLAGS: 00010217
[  799.655386][T13113] RAX: 0000000000000000 RBX: 00007ff9aeda6080 RCX: 00007ff9aeb8d169
[  799.655401][T13113] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000020003b46
[  799.655414][T13113] RBP: 00007ff9aec0e2a0 R08: 0000000000000002 R09: 0000000000000000
[  799.655428][T13113] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  799.655440][T13113] R13: 0000000000000000 R14: 00007ff9aeda6080 R15: 00007ffc37047fd8
[  799.655474][T13113]  </TASK>
[  799.655483][T13113] memory: usage 307200kB, limit 307200kB, failcnt 73081
[  799.970622][T13416] RDS: rds_bind could not find a transport for 2459:b582:b1a6:3a7f:672f:6f32:6e65:742f, load rds_tcp or rds_rdma?
[  800.123232][T13113] memory+swap: usage 424572kB, limit 9007199254740988kB, failcnt 0
[  800.187899][T13113] kmem: usage 3788kB, limit 9007199254740988kB, failcnt 0
[  800.195265][T13113] Memory cgroup stats for /syz1:
[  800.195411][T13113] cache 310226944
[  800.204340][T13113] rss 352256
[  800.207612][T13113] rss_huge 0
[  800.210881][T13113] shmem 310226944
[  800.214666][T13113] mapped_file 18968576
[  800.218815][T13113] dirty 0
[  800.221805][T13113] writeback 0
[  800.225200][T13113] workingset_refault_anon 15271
[  800.230133][T13113] workingset_refault_file 3540
[  800.252532][T13113] swap 120188928
[  800.293048][T13113] swapcached 114688
[  800.296984][T13113] pgpgin 2241388
[  800.300582][T13113] pgpgout 2167068
[  800.663267][T13113] pgfault 795641
[  800.666868][T13113] pgmajfault 2929
[  800.670522][T13113] inactive_anon 141144064
[  800.733611][T13113] active_anon 169549824
[  800.763184][T13113] inactive_file 0
[  800.909882][T13113] active_file 0
[  800.928606][T13113] unevictable 0
[  800.932199][T13113] hierarchical_memory_limit 314572800
[  800.953101][T13113] hierarchical_memsw_limit 9223372036854771712
[  800.973037][T13113] total_cache 310226944
[  800.983156][T13113] total_rss 352256
[  800.994094][T13113] total_rss_huge 0
[  801.009510][T13113] total_shmem 310226944
[  801.034632][T13113] total_mapped_file 18968576
[  801.039344][T13113] total_dirty 0
[  801.042911][T13113] total_writeback 0
[  801.057040][T13113] total_workingset_refault_anon 15271
[  801.062555][T13113] total_workingset_refault_file 3540
[  801.083031][T13113] total_swap 120188928
[  801.087761][T13113] total_swapcached 114688
[  801.113355][T13113] total_pgpgin 2241388
[  801.117548][T13113] total_pgpgout 2167068
[  801.121792][T13113] total_pgfault 795641
[  801.143828][T13113] total_pgmajfault 2929
[  801.153043][T13113] total_inactive_anon 141144064
[  801.158013][T13113] total_active_anon 169549824
[  801.183095][T13113] total_inactive_file 0
[  801.187395][T13113] total_active_file 0
[  801.192017][T13113] total_unevictable 0
[  801.210155][T13113] anon_cost 0
[  801.216597][T13113] file_cost 0
[  801.219992][T13113] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.1415,pid=13116,uid=0
[  801.265303][T13113] Memory cgroup out of memory: Killed process 13116 (syz.1.1415) total-vm:131496kB, anon-rss:1304kB, file-rss:21672kB, shmem-rss:18432kB, UID:0 pgtables:168kB oom_score_adj:1000
[  801.976083][T13430] Invalid ELF header magic: != ELF
[  803.147776][T13444] Process accounting resumed
[  803.233166][T13451] sctp: [Deprecated]: syz.2.1479 (pid 13451) Use of int in maxseg socket option.
[  803.233166][T13451] Use struct sctp_assoc_value instead
[  803.458429][   T32] oom_reaper: reaped process 13116 (syz.1.1415), now anon-rss:108kB, file-rss:20508kB, shmem-rss:18432kB
[  804.539972][T13464] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1481'.
[  807.181697][T13475] nl80211: entered promiscuous mode
[  807.201399][T13473] Process accounting resumed
[  808.303772][T13485] Process accounting resumed
[  808.975539][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  808.992714][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  809.966824][T13514] sctp: [Deprecated]: syz.2.1490 (pid 13514) Use of int in maxseg socket option.
[  809.966824][T13514] Use struct sctp_assoc_value instead
[  812.772043][T13543] Process accounting resumed
[  814.015204][T13574] Invalid ELF header magic: != ELF
[  816.963830][T13610] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1515'.
[  817.681718][T13621] Process accounting resumed
[  818.416431][T13625] Process accounting resumed
[  819.598405][ T9174] Bluetooth: hci2: unexpected subevent 0x01 length: 4 < 18
[  820.456548][T13673] Process accounting resumed
[  821.629786][T13698] Invalid ELF header magic: != ELF
[  821.958621][T13703] nl80211: entered promiscuous mode
[  822.243888][T13710] netlink: 'syz.3.1538': attribute type 30 has an invalid length.
[  822.278933][T13710] netlink: 252 bytes leftover after parsing attributes in process `syz.3.1538'.
[  824.159563][T13745] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1544'.
[  824.252108][T13729] Process accounting resumed
[  826.278851][T13773] nl80211: entered promiscuous mode
[  828.624769][T13793] sctp: [Deprecated]: syz.4.1557 (pid 13793) Use of int in maxseg socket option.
[  828.624769][T13793] Use struct sctp_assoc_value instead
[  828.953884][T13798] Invalid ELF header magic: != ELF
[  829.561050][T13800] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1559'.
[  832.245136][T13838] sctp: [Deprecated]: syz.2.1566 (pid 13838) Use of int in maxseg socket option.
[  832.245136][T13838] Use struct sctp_assoc_value instead
[  835.766645][T13879] can0: slcan on pty244.
[  835.984540][T13879] can0 (unregistered): slcan off pty244.
[  836.004248][T13877] Process accounting resumed
[  836.604387][ T9174] Bluetooth: hci4: unexpected subevent 0x01 length: 4 < 18
[  837.354055][T13909] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1578'.
[  837.723026][T13924] Invalid ELF header magic: != ELF
[  837.763156][T13930] ptrace attach of "./syz-executor exec"[5834] was attempted by "./syz-executor exec"[13930]
[  839.149692][T13950] nvme_fcloop: unknown parameter or missing value ''
[  840.725999][T13996] net_ratelimit: 70 callbacks suppressed
[  840.726018][T13996] openvswitch: netlink: Multiple metadata blocks provided
[  840.904737][T14005] netlink: 'syz.3.1600': attribute type 2 has an invalid length.

syzkaller
syzkaller login: [  842.565460][T14034] __vm_enough_memory: pid: 14034, comm: syz.4.1606, bytes: 4503599627366400 not enough memory for the allocation
[  842.628756][T14025] Process accounting resumed
[  846.674651][T14075] Process accounting resumed
[  846.806602][T14096] sctp: [Deprecated]: syz.3.1621 (pid 14096) Use of int in maxseg socket option.
[  846.806602][T14096] Use struct sctp_assoc_value instead
[  847.020288][T14094] netlink: 334 bytes leftover after parsing attributes in process `syz.1.1620'.
[  847.952723][T14087] Process accounting resumed
[  848.975431][T14133] netlink: 186 bytes leftover after parsing attributes in process `syz.3.1629'.
[  849.004253][T14137] netlink: 186 bytes leftover after parsing attributes in process `syz.3.1629'.
[  849.026317][T14133] netlink: 186 bytes leftover after parsing attributes in process `syz.3.1629'.
[  849.275243][T14135] random: crng reseeded on system resumption
[  849.494272][T14148] sctp: [Deprecated]: syz.4.1631 (pid 14148) Use of int in maxseg socket option.
[  849.494272][T14148] Use struct sctp_assoc_value instead
[  851.210153][T14172] tipc: Can't bind to reserved service type 2
[  853.740748][T14196] sctp: [Deprecated]: syz.4.1642 (pid 14196) Use of int in maxseg socket option.
[  853.740748][T14196] Use struct sctp_assoc_value instead
[  853.798328][T14184] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  853.928028][T14184] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  854.035055][T14184] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  854.076980][T14184] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  854.727331][T14212] Invalid ELF header magic: != ELF
[  855.373087][ T9174] Bluetooth: hci1: command 0x0c1a tx timeout
[  855.942039][ T9174] Bluetooth: hci2: command 0x0c1a tx timeout
[  856.093944][ T9174] Bluetooth: hci4: command 0x0406 tx timeout
[  856.101193][ T9174] Bluetooth: hci3: command 0x0c1a tx timeout
[  857.397092][T14265] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1655'.
[  859.120594][T14278] Process accounting resumed
[  859.594005][T14284] vivid-007: =================  START STATUS  =================
[  859.601817][T14284] vivid-007: Generate PTS: true
[  859.613079][T14284] vivid-007: Generate SCR: true
[  859.618073][T14284] tpg source WxH: 640x360 (Y'CbCr)
[  859.630316][T14284] tpg field: 1
[  859.634457][T14284] tpg crop: 640x360@0x0
[  859.638643][T14284] tpg compose: 640x360@0x0
[  859.643171][T14284] tpg colorspace: 8
[  859.647004][T14284] tpg transfer function: 0/0
[  859.651620][T14284] tpg Y'CbCr encoding: 0/0
[  859.656144][T14284] tpg quantization: 0/0
[  859.660772][T14284] tpg RGB range: 0/2
[  859.667928][T14284] vivid-007: ==================  END STATUS  ==================
[  859.930732][T14303] sctp: [Deprecated]: syz.1.1669 (pid 14303) Use of int in maxseg socket option.
[  859.930732][T14303] Use struct sctp_assoc_value instead
[  859.992748][T14301] Invalid ELF header magic: != ELF
[  860.423447][T14318] sctp: [Deprecated]: syz.1.1678 (pid 14318) Use of int in maxseg socket option.
[  860.423447][T14318] Use struct sctp_assoc_value instead
[  863.749982][T14352] netlink: 22 bytes leftover after parsing attributes in process `syz.4.1688'.
[  864.483681][T14358] could not allocate digest TFM handle binfmt_misc
[  864.805130][T14367] netlink: 226 bytes leftover after parsing attributes in process `syz.4.1683'.
[  866.075958][T14391] ubi0: attaching mtd0
[  866.135600][T14391] ubi0: scanning is finished
[  866.199225][T14391] ubi0 error: ubi_read_volume_table: the layout volume was not found
[  866.318841][T14377] Process accounting resumed
[  866.768498][T14391] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  867.530566][T14408] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input24
[  867.663213][T12952] Bluetooth: hci1: unexpected event 0x1d length: 6 > 5
[  869.252328][T14431] svc: failed to register nfsdv3 RPC service (errno 111).
[  869.328354][T14431] svc: failed to register nfsaclv3 RPC service (errno 111).
[  869.755943][T14443] sctp: [Deprecated]: syz.1.1702 (pid 14443) Use of int in maxseg socket option.
[  869.755943][T14443] Use struct sctp_assoc_value instead
[  870.159581][T14450] [U] ntfs3
[  870.162764][T14450] [U] 
[  870.165500][T14450] [U] 
[  870.168199][T14450] [U] 
[  870.216807][T14450] [U] 
[  870.219573][T14450] [U] 
[  870.222293][T14450] [U] 
[  870.225023][T14450] [U] 
[  870.415297][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  870.421804][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  870.457107][T14450] [U] 
[  870.459872][T14450] [U] 
[  870.462589][T14450] [U] 
[  870.465307][T14450] [U] 
[  870.494377][T14450] [U] 
[  870.497134][T14450] [U] 
[  870.499866][T14450] [U] 
[  870.502585][T14450] [U] 
[  870.528805][T14450] [U] 
[  870.531566][T14450] [U] 
[  870.534289][T14450] [U] 
[  870.536998][T14450] [U] 
[  870.600279][T14450] [U] 
[  870.603044][T14450] [U] 
[  870.605769][T14450] [U] 
[  870.608485][T14450] [U] 
[  870.648014][T14450] [U] 
[  870.650775][T14450] [U] 
[  870.653496][T14450] [U] 
[  870.656217][T14450] [U] 
[  870.660857][T14450] [U] 
[  870.663596][T14450] [U] 
[  870.666323][T14450] [U] 
[  870.669037][T14450] [U] 
[  870.693331][T14450] [U] 
[  870.696088][T14450] [U] 
[  870.698809][T14450] [U] 
[  870.701535][T14450] [U] 
[  870.716858][T14450] [U] 
[  870.719607][T14450] [U] 
[  870.722339][T14450] [U] 
[  870.725063][T14450] [U] 
[  870.745100][T14450] [U] 
[  870.747852][T14450] [U] 
[  870.750576][T14450] [U] 
[  870.753298][T14450] [U] 
[  870.933205][T14450] [U] 
[  871.436271][T14482] netlink: 334 bytes leftover after parsing attributes in process `syz.2.1715'.
[  871.707160][T14493] tipc: Started in network mode
[  871.768908][T14493] tipc: Node identity ffffffff, cluster identity 4711
[  871.853128][T14493] tipc: Node number set to 4294967295
[  872.067748][T14494] netlink: 334 bytes leftover after parsing attributes in process `syz.4.1717'.
[  872.426713][T14507] cougar: G6 mapped to space
[  872.498246][T14507] syz.1.1719 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  878.188503][T14580] Process accounting resumed
[  879.256904][T14611] netlink: 334 bytes leftover after parsing attributes in process `syz.1.1735'.
[  882.406105][T14644] FAULT_INJECTION: forcing a failure.
[  882.406105][T14644] name failslab, interval 1, probability 0, space 0, times 0
[  882.472317][T14644] CPU: 0 UID: 0 PID: 14644 Comm: syz.1.1745 Tainted: G     U             6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  882.472358][T14644] Tainted: [U]=USER
[  882.472366][T14644] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  882.472379][T14644] Call Trace:
[  882.472388][T14644]  <TASK>
[  882.472398][T14644]  dump_stack_lvl+0x16c/0x1f0
[  882.472440][T14644]  should_fail_ex+0x50a/0x650
[  882.472463][T14644]  ? fs_reclaim_acquire+0xae/0x150
[  882.472494][T14644]  should_failslab+0xc2/0x120
[  882.472529][T14644]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  882.472566][T14644]  ? __kernfs_new_node+0xd3/0x890
[  882.472602][T14644]  __kernfs_new_node+0xd3/0x890
[  882.472635][T14644]  ? __pfx___kernfs_new_node+0x10/0x10
[  882.472662][T14644]  ? __pfx_lock_release+0x10/0x10
[  882.472692][T14644]  ? kernfs_add_one+0x39d/0x520
[  882.472734][T14644]  ? up_write+0x1b2/0x520
[  882.472771][T14644]  kernfs_new_node+0x186/0x240
[  882.472807][T14644]  __kernfs_create_file+0x53/0x350
[  882.472836][T14644]  sysfs_add_file_mode_ns+0x1ff/0x3b0
[  882.472872][T14644]  internal_create_group+0x56c/0xf10
[  882.472914][T14644]  ? __pfx_internal_create_group+0x10/0x10
[  882.472955][T14644]  ? kernfs_create_link+0x1bd/0x240
[  882.472986][T14644]  internal_create_groups+0x9d/0x150
[  882.473020][T14644]  device_add+0x6d3/0x1a70
[  882.473059][T14644]  ? __pfx_device_add+0x10/0x10
[  882.473098][T14644]  ? __init_waitqueue_head+0xca/0x150
[  882.473135][T14644]  rfkill_register+0x1ad/0xb40
[  882.473176][T14644]  nfc_register_device+0x11f/0x3c0
[  882.473212][T14644]  nci_register_device+0x7f4/0xb80
[  882.473241][T14644]  ? __pfx_nci_register_device+0x10/0x10
[  882.473281][T14644]  virtual_ncidev_open+0x141/0x220
[  882.473315][T14644]  ? __pfx_virtual_ncidev_open+0x10/0x10
[  882.473349][T14644]  misc_open+0x35a/0x420
[  882.473375][T14644]  ? __pfx_misc_open+0x10/0x10
[  882.473400][T14644]  chrdev_open+0x237/0x6a0
[  882.473434][T14644]  ? __pfx_apparmor_file_open+0x10/0x10
[  882.473466][T14644]  ? __pfx_chrdev_open+0x10/0x10
[  882.473514][T14644]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  882.473555][T14644]  do_dentry_open+0x735/0x1c40
[  882.473590][T14644]  ? __pfx_chrdev_open+0x10/0x10
[  882.473628][T14644]  ? inode_permission+0xdd/0x5f0
[  882.473658][T14644]  vfs_open+0x82/0x3f0
[  882.473681][T14644]  ? may_open+0x1f2/0x400
[  882.473711][T14644]  path_openat+0x1e88/0x2d80
[  882.473758][T14644]  ? __pfx_path_openat+0x10/0x10
[  882.473793][T14644]  ? __pfx___lock_acquire+0x10/0x10
[  882.473823][T14644]  ? lock_acquire.part.0+0x11b/0x380
[  882.473861][T14644]  ? find_held_lock+0x2d/0x110
[  882.473893][T14644]  do_filp_open+0x20c/0x470
[  882.473929][T14644]  ? __pfx_do_filp_open+0x10/0x10
[  882.473960][T14644]  ? find_held_lock+0x2d/0x110
[  882.474012][T14644]  ? alloc_fd+0x41f/0x760
[  882.474055][T14644]  do_sys_openat2+0x17a/0x1e0
[  882.474082][T14644]  ? __pfx_do_sys_openat2+0x10/0x10
[  882.474122][T14644]  __x64_sys_openat+0x175/0x210
[  882.474149][T14644]  ? __pfx___x64_sys_openat+0x10/0x10
[  882.474191][T14644]  do_syscall_64+0xcd/0x250
[  882.474229][T14644]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  882.474261][T14644] RIP: 0033:0x7ff9aeb8d169
[  882.474284][T14644] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  882.474307][T14644] RSP: 002b:00007ff9af9da038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  882.474329][T14644] RAX: ffffffffffffffda RBX: 00007ff9aeda5fa0 RCX: 00007ff9aeb8d169
[  882.474364][T14644] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c
[  882.474379][T14644] RBP: 00007ff9aec0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  882.474393][T14644] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  882.474406][T14644] R13: 0000000000000000 R14: 00007ff9aeda5fa0 R15: 00007ffc37047fd8
[  882.474439][T14644]  </TASK>
[  883.710701][T14656] sctp: [Deprecated]: syz.1.1749 (pid 14656) Use of int in maxseg socket option.
[  883.710701][T14656] Use struct sctp_assoc_value instead
[  884.273405][T14661] netlink: 334 bytes leftover after parsing attributes in process `syz.4.1746'.
[  886.484421][T14704] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1760'.
[  888.748294][T14767] sctp: [Deprecated]: syz.2.1775 (pid 14767) Use of int in maxseg socket option.
[  888.748294][T14767] Use struct sctp_assoc_value instead
[  889.399483][T14775] netlink: 334 bytes leftover after parsing attributes in process `syz.4.1777'.
[  889.803312][T14782] netlink: zone id is out of range
[  889.877182][T14782] netlink: zone id is out of range
[  889.882355][T14782] netlink: zone id is out of range
[  889.955588][T14784] netlink: 172 bytes leftover after parsing attributes in process `syz.2.1778'.
[  889.999233][T14782] netlink: zone id is out of range
[  890.059478][T14782] netlink: zone id is out of range
[  890.070540][T14782] netlink: zone id is out of range
[  890.092813][T14782] netlink: zone id is out of range
[  890.119990][T14782] netlink: zone id is out of range
[  890.150434][T14782] netlink: zone id is out of range
[  890.160438][T14790] netlink: 314 bytes leftover after parsing attributes in process `syz.4.1780'.
[  890.180878][T14782] netlink: zone id is out of range
[  890.748861][T14802] FAULT_INJECTION: forcing a failure.
[  890.748861][T14802] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  890.795023][T14801] sctp: [Deprecated]: syz.1.1785 (pid 14801) Use of int in maxseg socket option.
[  890.795023][T14801] Use struct sctp_assoc_value instead
[  890.812072][T14802] CPU: 0 UID: 0 PID: 14802 Comm: syz.2.1784 Tainted: G     U             6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  890.812108][T14802] Tainted: [U]=USER
[  890.812115][T14802] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  890.812129][T14802] Call Trace:
[  890.812136][T14802]  <TASK>
[  890.812145][T14802]  dump_stack_lvl+0x16c/0x1f0
[  890.812184][T14802]  should_fail_ex+0x50a/0x650
[  890.812213][T14802]  _copy_from_user+0x2e/0xd0
[  890.812240][T14802]  __sys_bpf+0x21c/0x49c0
[  890.812275][T14802]  ? __pfx_lock_release+0x10/0x10
[  890.812308][T14802]  ? __pfx___sys_bpf+0x10/0x10
[  890.812339][T14802]  ? vfs_write+0x306/0x1150
[  890.812376][T14802]  ? __mutex_unlock_slowpath+0x164/0x6a0
[  890.812428][T14802]  ? fput+0x67/0x440
[  890.812450][T14802]  ? ksys_write+0x1ba/0x250
[  890.812479][T14802]  ? __pfx_ksys_write+0x10/0x10
[  890.812515][T14802]  __x64_sys_bpf+0x78/0xc0
[  890.812536][T14802]  ? lockdep_hardirqs_on+0x7c/0x110
[  890.812562][T14802]  do_syscall_64+0xcd/0x250
[  890.812592][T14802]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  890.812623][T14802] RIP: 0033:0x7ff12618d169
[  890.812640][T14802] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  890.812661][T14802] RSP: 002b:00007ff126f98038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  890.812682][T14802] RAX: ffffffffffffffda RBX: 00007ff1263a5fa0 RCX: 00007ff12618d169
[  890.812698][T14802] RDX: 00000000000000a3 RSI: 0000200000000000 RDI: 0000000000000000
[  890.812712][T14802] RBP: 00007ff126f98090 R08: 0000000000000000 R09: 0000000000000000
[  890.812726][T14802] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  890.812739][T14802] R13: 0000000000000000 R14: 00007ff1263a5fa0 R15: 00007ffde1a7dcb8
[  890.812770][T14802]  </TASK>
[  892.281154][T14818] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1791'.
[  893.385545][T14836] sctp: [Deprecated]: syz.3.1797 (pid 14836) Use of int in maxseg socket option.
[  893.385545][T14836] Use struct sctp_assoc_value instead
[  897.444061][T14882] sctp: [Deprecated]: syz.4.1807 (pid 14882) Use of int in maxseg socket option.
[  897.444061][T14882] Use struct sctp_assoc_value instead
[  898.387831][T14894] ubi0: attaching mtd0
[  898.398519][T14894] ubi0: scanning is finished
[  898.424813][T14894] ubi0 error: ubi_read_volume_table: the layout volume was not found
[  898.671813][T14894] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  900.759582][T14910] netlink: 334 bytes leftover after parsing attributes in process `syz.2.1813'.
[  901.556486][T14929] sctp: [Deprecated]: syz.2.1818 (pid 14929) Use of int in maxseg socket option.
[  901.556486][T14929] Use struct sctp_assoc_value instead
[  903.177912][T14957] Invalid ELF header magic: != ELF
[  904.989340][T14981] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1830'.
[  905.028804][T14981] netlink: 354 bytes leftover after parsing attributes in process `syz.3.1830'.
[  905.158277][T14985] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1831'.
[  905.190414][T14985] netlink: 354 bytes leftover after parsing attributes in process `syz.4.1831'.
[  906.340903][T14992] Process accounting resumed
[  906.963614][T15026] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1840'.
[  908.110833][T15036] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1841'.
[  908.158626][T15036] netlink: 354 bytes leftover after parsing attributes in process `syz.2.1841'.
[  909.508778][T15072] netlink: 334 bytes leftover after parsing attributes in process `syz.2.1847'.
[  912.612548][T15131] netlink: 334 bytes leftover after parsing attributes in process `syz.2.1861'.
[  913.636089][T15141] FAULT_INJECTION: forcing a failure.
[  913.636089][T15141] name failslab, interval 1, probability 0, space 0, times 0
[  913.663177][T15141] CPU: 0 UID: 0 PID: 15141 Comm: syz.1.1866 Tainted: G     U             6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  913.663219][T15141] Tainted: [U]=USER
[  913.663227][T15141] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  913.663242][T15141] Call Trace:
[  913.663249][T15141]  <TASK>
[  913.663259][T15141]  dump_stack_lvl+0x16c/0x1f0
[  913.663301][T15141]  should_fail_ex+0x50a/0x650
[  913.663326][T15141]  ? fs_reclaim_acquire+0xae/0x150
[  913.663360][T15141]  should_failslab+0xc2/0x120
[  913.663385][T15141]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  913.663421][T15141]  ? vm_area_dup+0x21/0x2f0
[  913.663461][T15141]  vm_area_dup+0x21/0x2f0
[  913.663496][T15141]  __split_vma+0x181/0x1160
[  913.663535][T15141]  ? __pfx___split_vma+0x10/0x10
[  913.663587][T15141]  vms_gather_munmap_vmas+0x38b/0x1730
[  913.663634][T15141]  ? __pfx_vms_gather_munmap_vmas+0x10/0x10
[  913.663682][T15141]  ? mas_walk+0x6a6/0x910
[  913.663729][T15141]  __mmap_region+0x328/0x27b0
[  913.663756][T15141]  ? __pfx___mmap_region+0x10/0x10
[  913.663805][T15141]  ? hlock_class+0x4e/0x130
[  913.663831][T15141]  ? mark_lock+0xb5/0xc60
[  913.663866][T15141]  ? __pfx_mark_lock+0x10/0x10
[  913.663901][T15141]  ? __pfx___schedule+0x10/0x10
[  913.663977][T15141]  ? cap_capable+0xb3/0x250
[  913.664008][T15141]  mmap_region+0x1ab/0x3f0
[  913.664038][T15141]  do_mmap+0xd8d/0x11b0
[  913.664075][T15141]  ? __pfx_do_mmap+0x10/0x10
[  913.664115][T15141]  ? __pfx_down_write_killable+0x10/0x10
[  913.664151][T15141]  vm_mmap_pgoff+0x279/0x440
[  913.664195][T15141]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  913.664240][T15141]  ? __x64_sys_futex+0x1e1/0x4c0
[  913.664267][T15141]  ? __x64_sys_futex+0x1ea/0x4c0
[  913.664299][T15141]  ksys_mmap_pgoff+0x7d/0x5c0
[  913.664329][T15141]  ? rcu_is_watching+0x12/0xc0
[  913.664358][T15141]  __x64_sys_mmap+0x125/0x190
[  913.664396][T15141]  do_syscall_64+0xcd/0x250
[  913.664433][T15141]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  913.664466][T15141] RIP: 0033:0x7ff9aeb8d169
[  913.664486][T15141] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  913.664509][T15141] RSP: 002b:00007ff9af9da038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  913.664540][T15141] RAX: ffffffffffffffda RBX: 00007ff9aeda5fa0 RCX: 00007ff9aeb8d169
[  913.664557][T15141] RDX: 00000000000000df RSI: 0000000000000009 RDI: 0000000000000000
[  913.664572][T15141] RBP: 00007ff9aec0e2a0 R08: 0000000000000401 R09: 0000000000008000
[  913.664587][T15141] R10: 0000001000000eb1 R11: 0000000000000246 R12: 0000000000000000
[  913.664603][T15141] R13: 0000000000000000 R14: 00007ff9aeda5fa0 R15: 00007ffc37047fd8
[  913.664636][T15141]  </TASK>
[  915.008294][T15155] sctp: [Deprecated]: syz.1.1870 (pid 15155) Use of int in maxseg socket option.
[  915.008294][T15155] Use struct sctp_assoc_value instead
[  916.348278][T15172] netlink: 334 bytes leftover after parsing attributes in process `syz.4.1872'.
[  917.269564][T15195] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1878'.
[  917.720101][T15192] kexec: Could not allocate control_code_buffer
[  918.718801][T15214] netlink: 334 bytes leftover after parsing attributes in process `syz.2.1884'.
[  920.598349][T15229] Process accounting resumed
[  921.054390][T15259] sctp: [Deprecated]: syz.3.1893 (pid 15259) Use of int in maxseg socket option.
[  921.054390][T15259] Use struct sctp_assoc_value instead
[  922.187737][T15276] netlink: 334 bytes leftover after parsing attributes in process `syz.4.1896'.
[  922.450654][T15279] Invalid ELF header magic: != ELF
[  924.800949][T15301] FAULT_INJECTION: forcing a failure.
[  924.800949][T15301] name failslab, interval 1, probability 0, space 0, times 0
[  924.837641][T15301] CPU: 1 UID: 0 PID: 15301 Comm: syz.2.1904 Tainted: G     U             6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  924.837683][T15301] Tainted: [U]=USER
[  924.837691][T15301] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  924.837705][T15301] Call Trace:
[  924.837712][T15301]  <TASK>
[  924.837723][T15301]  dump_stack_lvl+0x16c/0x1f0
[  924.837765][T15301]  should_fail_ex+0x50a/0x650
[  924.837790][T15301]  ? fs_reclaim_acquire+0xae/0x150
[  924.837826][T15301]  should_failslab+0xc2/0x120
[  924.837852][T15301]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  924.837888][T15301]  ? __kernfs_new_node+0xd3/0x890
[  924.837927][T15301]  __kernfs_new_node+0xd3/0x890
[  924.837969][T15301]  ? __pfx___kernfs_new_node+0x10/0x10
[  924.838023][T15301]  ? __pfx___lock_acquire+0x10/0x10
[  924.838064][T15301]  kernfs_new_node+0x186/0x240
[  924.838106][T15301]  __kernfs_create_file+0x53/0x350
[  924.838138][T15301]  sysfs_add_file_mode_ns+0x1ff/0x3b0
[  924.838178][T15301]  sysfs_create_file_ns+0x13e/0x1d0
[  924.838209][T15301]  ? __pfx_sysfs_create_file_ns+0x10/0x10
[  924.838238][T15301]  ? down_read+0xc9/0x330
[  924.838272][T15301]  ? __pfx___up_read+0x10/0x10
[  924.838309][T15301]  ? kobject_put+0xab/0x5a0
[  924.838350][T15301]  device_create_file+0xf2/0x1e0
[  924.838389][T15301]  device_add+0x2c0/0x1a70
[  924.838427][T15301]  ? __pfx_device_add+0x10/0x10
[  924.838460][T15301]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  924.838498][T15301]  ? ieee80211_set_bitrate_flags+0x249/0x6a0
[  924.838551][T15301]  wiphy_register+0x1cab/0x2860
[  924.838576][T15301]  ? __pfx__dev_printk+0x10/0x10
[  924.838613][T15301]  ? __pfx_wiphy_register+0x10/0x10
[  924.838648][T15301]  ? ieee80211_init_rate_ctrl_alg+0x125/0x6b0
[  924.838689][T15301]  ieee80211_register_hw+0x2455/0x4060
[  924.838739][T15301]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  924.838773][T15301]  ? net_generic+0xea/0x2a0
[  924.838806][T15301]  ? lockdep_init_map_type+0x16d/0x7d0
[  924.838845][T15301]  ? __asan_memset+0x23/0x50
[  924.838876][T15301]  ? __hrtimer_init+0x106/0x2c0
[  924.838915][T15301]  mac80211_hwsim_new_radio+0x304e/0x54e0
[  924.838974][T15301]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  924.839022][T15301]  hwsim_new_radio_nl+0xb42/0x12b0
[  924.839061][T15301]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  924.839108][T15301]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  924.839135][T15301]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  924.839170][T15301]  genl_family_rcv_msg_doit+0x202/0x2f0
[  924.839199][T15301]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  924.839225][T15301]  ? trace_cap_capable+0x1a2/0x210
[  924.839262][T15301]  ? bpf_lsm_capable+0x9/0x10
[  924.839286][T15301]  ? security_capable+0x7e/0x260
[  924.839314][T15301]  ? ns_capable+0xd7/0x110
[  924.839351][T15301]  genl_rcv_msg+0x565/0x800
[  924.839381][T15301]  ? __pfx_genl_rcv_msg+0x10/0x10
[  924.839408][T15301]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  924.839456][T15301]  netlink_rcv_skb+0x16b/0x440
[  924.839492][T15301]  ? __pfx_genl_rcv_msg+0x10/0x10
[  924.839527][T15301]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  924.839581][T15301]  ? down_read+0xc9/0x330
[  924.839618][T15301]  ? __pfx_down_read+0x10/0x10
[  924.839656][T15301]  ? netlink_deliver_tap+0x1ae/0xd30
[  924.839695][T15301]  genl_rcv+0x28/0x40
[  924.839717][T15301]  netlink_unicast+0x53c/0x7f0
[  924.839757][T15301]  ? __pfx_netlink_unicast+0x10/0x10
[  924.839793][T15301]  ? __phys_addr_symbol+0x30/0x80
[  924.839819][T15301]  ? __check_object_size+0x488/0x710
[  924.839849][T15301]  netlink_sendmsg+0x8b8/0xd70
[  924.839891][T15301]  ? __pfx_netlink_sendmsg+0x10/0x10
[  924.839942][T15301]  ____sys_sendmsg+0xaaf/0xc90
[  924.839972][T15301]  ? copy_msghdr_from_user+0x10b/0x160
[  924.840020][T15301]  ? __pfx_____sys_sendmsg+0x10/0x10
[  924.840069][T15301]  ___sys_sendmsg+0x135/0x1e0
[  924.840111][T15301]  ? __pfx____sys_sendmsg+0x10/0x10
[  924.840164][T15301]  ? __pfx_lock_release+0x10/0x10
[  924.840196][T15301]  ? trace_lock_acquire+0x14e/0x1f0
[  924.840238][T15301]  ? __fget_files+0x206/0x3a0
[  924.840280][T15301]  __sys_sendmsg+0x16e/0x220
[  924.840306][T15301]  ? __pfx___sys_sendmsg+0x10/0x10
[  924.840328][T15301]  ? __x64_sys_futex+0x1e1/0x4c0
[  924.840381][T15301]  do_syscall_64+0xcd/0x250
[  924.840434][T15301]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  924.840497][T15301] RIP: 0033:0x7ff12618d169
[  924.840525][T15301] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  924.840549][T15301] RSP: 002b:00007ff126f98038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  924.840574][T15301] RAX: ffffffffffffffda RBX: 00007ff1263a5fa0 RCX: 00007ff12618d169
[  924.840591][T15301] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000005
[  924.840606][T15301] RBP: 00007ff12620e2a0 R08: 0000000000000000 R09: 0000000000000000
[  924.840621][T15301] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  924.840635][T15301] R13: 0000000000000000 R14: 00007ff1263a5fa0 R15: 00007ffde1a7dcb8
[  924.840670][T15301]  </TASK>
[  925.417272][T15310] netlink: 186 bytes leftover after parsing attributes in process `syz.3.1903'.
[  925.515721][T15314] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1905'.
[  926.020303][T15323] sctp: [Deprecated]: syz.3.1907 (pid 15323) Use of int in maxseg socket option.
[  926.020303][T15323] Use struct sctp_assoc_value instead
[  926.216978][T15325] netlink: 334 bytes leftover after parsing attributes in process `syz.2.1906'.
[  926.445020][T15262] Process accounting resumed
[  926.622738][T15339] ima: policy update failed
[  926.638558][   T30] audit: type=1802 audit(4295032895.561:8): pid=15339 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm=20 res=0 errno=0
[  927.554590][T15347] Invalid ELF header magic: != ELF
[  927.913573][T15342] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  927.931462][T15342] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  927.944021][T15342] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  927.970801][T15342] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  929.631820][T12952] Bluetooth: hci1: command 0x0c1a tx timeout
[  929.943048][T12952] Bluetooth: hci2: command 0x0c1a tx timeout
[  930.013134][T12952] Bluetooth: hci4: command 0x0406 tx timeout
[  930.019259][T12952] Bluetooth: hci3: command 0x0c1a tx timeout
[  930.295547][T15395] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1924'.
[  930.601561][T15402] netlink: 334 bytes leftover after parsing attributes in process `syz.2.1926'.
[  931.855166][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  931.861523][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  931.902249][T15429] futex_wake_op: syz.4.1932 tries to shift op by 64; fix this program
[  932.631865][T15429] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1932'.
[  934.038380][T15454] netlink: 334 bytes leftover after parsing attributes in process `syz.2.1937'.
[  935.535700][T15474] sctp: [Deprecated]: syz.4.1940 (pid 15474) Use of int in maxseg socket option.
[  935.535700][T15474] Use struct sctp_assoc_value instead
[  937.144600][T15510] futex_wake_op: syz.3.1950 tries to shift op by 64; fix this program
[  937.545778][T15506] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1950'.
[  939.605257][T15542] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1959'.
[  939.624859][T15542] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1959'.
[  942.031130][T15569] futex_wake_op: syz.2.1966 tries to shift op by 64; fix this program
[  942.431686][T15567] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1966'.
[  944.306198][T15592] Process accounting resumed
[  944.900488][T15607] netlink: 186 bytes leftover after parsing attributes in process `syz.2.1974'.
[  944.922061][T15605] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1974'.
[  945.846677][T15621] sctp: [Deprecated]: syz.2.1979 (pid 15621) Use of int in maxseg socket option.
[  945.846677][T15621] Use struct sctp_assoc_value instead
[  947.776652][T15635] Process accounting resumed
[  947.858077][T15665] netlink: 334 bytes leftover after parsing attributes in process `syz.4.1986'.
[  948.073433][T15678] sctp: [Deprecated]: syz.3.1990 (pid 15678) Use of int in maxseg socket option.
[  948.073433][T15678] Use struct sctp_assoc_value instead
[  949.056456][T15698] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1996'.
[  949.071541][T15698] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1996'.
[  951.964668][T15730] sctp: [Deprecated]: syz.4.2002 (pid 15730) Use of int in maxseg socket option.
[  951.964668][T15730] Use struct sctp_assoc_value instead
[  952.695231][T15741] netlink: 334 bytes leftover after parsing attributes in process `syz.1.2004'.
[  954.954759][T15778] sctp: [Deprecated]: syz.4.2012 (pid 15778) Use of int in maxseg socket option.
[  954.954759][T15778] Use struct sctp_assoc_value instead
[  958.559747][T15818] sctp: [Deprecated]: syz.1.2021 (pid 15818) Use of int in maxseg socket option.
[  958.559747][T15818] Use struct sctp_assoc_value instead
[  959.838035][T15679] Process accounting resumed
[  961.005287][T15823] net_ratelimit: 69 callbacks suppressed
[  961.005309][T15823] openvswitch: netlink: Message has 215 unknown bytes.
[  961.581323][   T30] audit: type=1800 audit(4295032938.497:9): pid=15853 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2023" name="dbroot" dev="configfs" ino=43748 res=0 errno=0
[  961.696664][   T30] audit: type=1804 audit(4295032938.607:10): pid=15849 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.2023" name="/newroot/sys/kernel/config/target/dbroot" dev="configfs" ino=43748 res=1 errno=0
[  961.916158][T15843] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  961.922359][T15843] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  961.950035][T15843] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  962.008373][T15843] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  963.733230][T15874] sctp: [Deprecated]: syz.2.2031 (pid 15874) Use of int in maxseg socket option.
[  963.733230][T15874] Use struct sctp_assoc_value instead
[  963.933262][T12952] Bluetooth: hci2: command 0x0c1a tx timeout
[  963.937015][ T9174] Bluetooth: hci1: command 0x0c1a tx timeout
[  964.013128][ T9174] Bluetooth: hci4: command 0x0406 tx timeout
[  964.014787][T12952] Bluetooth: hci3: command 0x0c1a tx timeout
[  967.196720][T15899] Invalid ELF header magic: != ELF
[  968.057664][T15907] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2038'.
[  970.325802][T15927] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2041'.
[  971.258671][T15933] sctp: [Deprecated]: syz.3.2043 (pid 15933) Use of int in maxseg socket option.
[  971.258671][T15933] Use struct sctp_assoc_value instead
[  972.884531][T15940] Process accounting resumed
[  973.799069][ T9174] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  973.820365][ T9174] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  973.829554][ T9174] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  973.840464][ T9174] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  973.851791][ T9174] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  973.862054][ T9174] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  974.715420][T15961] chnl_net:caif_netlink_parms(): no params data found
[  974.737717][T15971] sctp: [Deprecated]: syz.3.2052 (pid 15971) Use of int in maxseg socket option.
[  974.737717][T15971] Use struct sctp_assoc_value instead
[  974.842551][T15966] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2051'.
[  974.890653][T15966] netlink: 354 bytes leftover after parsing attributes in process `syz.2.2051'.
[  975.195791][T15979] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2053'.
[  975.933153][T12952] Bluetooth: hci0: command tx timeout
[  976.048534][T15979] mac80211_hwsim hwsim9 wlan1: entered allmulticast mode
[  976.404398][T15961] bridge0: port 1(bridge_slave_0) entered blocking state
[  976.411636][T15961] bridge0: port 1(bridge_slave_0) entered disabled state
[  976.448984][T15961] bridge_slave_0: entered allmulticast mode
[  976.474120][T15961] bridge_slave_0: entered promiscuous mode
[  976.503983][T15961] bridge0: port 2(bridge_slave_1) entered blocking state
[  976.511598][T15961] bridge0: port 2(bridge_slave_1) entered disabled state
[  976.550432][T15961] bridge_slave_1: entered allmulticast mode
[  976.564241][T15961] bridge_slave_1: entered promiscuous mode
[  976.969178][T15994] netlink: 334 bytes leftover after parsing attributes in process `syz.2.2056'.
[  977.686795][T15961] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  977.802204][T15961] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  978.015009][T12952] Bluetooth: hci0: command tx timeout
[  978.326447][T15961] team0: Port device team_slave_0 added
[  978.345908][T15961] team0: Port device team_slave_1 added
[  978.666441][T15961] batman_adv: batadv0: Adding interface: batadv_slave_0
[  978.693146][T15961] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  978.769560][T15961] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  978.962287][T15961] batman_adv: batadv0: Adding interface: batadv_slave_1
[  978.999768][T15961] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  979.033718][T16030] netlink: 'syz.3.2064': attribute type 11 has an invalid length.
[  979.073007][T15961] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  979.437395][T15961] hsr_slave_0: entered promiscuous mode
[  979.473900][T15961] hsr_slave_1: entered promiscuous mode
[  979.480052][T15961] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  979.508376][T15961] Cannot create hsr debugfs directory
[  980.093062][T12952] Bluetooth: hci0: command tx timeout
[  980.356150][T15961] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  980.389217][T15961] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  980.447173][T15961] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  980.546158][T15961] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  980.855572][T15961] 8021q: adding VLAN 0 to HW filter on device bond0
[  980.936010][T15961] 8021q: adding VLAN 0 to HW filter on device team0
[  980.990725][T12446] bridge0: port 1(bridge_slave_0) entered blocking state
[  980.998318][T12446] bridge0: port 1(bridge_slave_0) entered forwarding state
[  981.165112][T12446] bridge0: port 2(bridge_slave_1) entered blocking state
[  981.173637][T12446] bridge0: port 2(bridge_slave_1) entered forwarding state
[  981.264580][T15961] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  981.286817][T15961] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  981.859857][T15961] 8021q: adding VLAN 0 to HW filter on device batadv0
[  982.173602][T12952] Bluetooth: hci0: command tx timeout
[  982.703908][T15961] veth0_vlan: entered promiscuous mode
[  982.739715][T15961] veth1_vlan: entered promiscuous mode
[  982.832161][T15961] veth0_macvtap: entered promiscuous mode
[  982.869078][T15961] veth1_macvtap: entered promiscuous mode
[  982.957924][T16076] sctp: [Deprecated]: syz.1.2073 (pid 16076) Use of int in maxseg socket option.
[  982.957924][T16076] Use struct sctp_assoc_value instead
[  983.063647][T15961] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  983.113050][T15961] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  983.140126][T15961] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  983.175240][T15961] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  983.203715][T15961] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  983.242960][T15961] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  983.252825][T15961] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  983.293112][T15961] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  983.344303][T15961] batman_adv: batadv0: Interface activated: batadv_slave_0
[  983.452312][T15961] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  983.533482][T15961] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  983.563049][T15961] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  983.583387][T15961] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  983.613419][T15961] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  983.641210][T15961] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  983.675198][T15961] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  983.710561][T15961] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  983.754323][T15961] batman_adv: batadv0: Interface activated: batadv_slave_1
[  983.785810][T15961] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  983.843048][T15961] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  983.851809][T15961] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  983.896681][T15961] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  984.460548][T12462] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  984.503067][T12462] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  984.570343][T12462] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  984.593987][T12462] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  984.623759][T16086] netlink: 326 bytes leftover after parsing attributes in process `syz.1.2076'.
[  985.504701][T16100] overlayfs: missing 'lowerdir'
[  985.884157][T16105] FAULT_INJECTION: forcing a failure.
[  985.884157][T16105] name failslab, interval 1, probability 0, space 0, times 0
[  985.973858][T16105] CPU: 0 UID: 0 PID: 16105 Comm: syz.2.2078 Tainted: G     U             6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[  985.973899][T16105] Tainted: [U]=USER
[  985.973908][T16105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  985.973923][T16105] Call Trace:
[  985.973930][T16105]  <TASK>
[  985.973939][T16105]  dump_stack_lvl+0x16c/0x1f0
[  985.973981][T16105]  should_fail_ex+0x50a/0x650
[  985.974005][T16105]  ? fs_reclaim_acquire+0xae/0x150
[  985.974039][T16105]  should_failslab+0xc2/0x120
[  985.974064][T16105]  kmem_cache_alloc_node_noprof+0x72/0x3c0
[  985.974100][T16105]  ? __alloc_skb+0x2b1/0x380
[  985.974135][T16105]  ? find_held_lock+0x2d/0x110
[  985.974166][T16105]  __alloc_skb+0x2b1/0x380
[  985.974200][T16105]  ? __pfx___alloc_skb+0x10/0x10
[  985.974232][T16105]  ? __pfx_lock_release+0x10/0x10
[  985.974265][T16105]  ? trace_lock_acquire+0x14e/0x1f0
[  985.974303][T16105]  alloc_uevent_skb+0x7d/0x210
[  985.974333][T16105]  kobject_uevent_env+0xca3/0x1870
[  985.974375][T16105]  nfs_netns_sysfs_setup+0x16f/0x1f0
[  985.974402][T16105]  nfs_net_init+0x10a/0x300
[  985.974431][T16105]  ? __pfx_nfs_net_init+0x10/0x10
[  985.974465][T16105]  ops_init+0x1df/0x5f0
[  985.974495][T16105]  setup_net+0x21f/0x860
[  985.974524][T16105]  ? __pfx_setup_net+0x10/0x10
[  985.974548][T16105]  ? down_read_killable+0xcc/0x380
[  985.974572][T16105]  ? __pfx_down_read_killable+0x10/0x10
[  985.974596][T16105]  ? __raw_spin_lock_init+0x3a/0x110
[  985.974620][T16105]  ? debug_mutex_init+0x37/0x70
[  985.974651][T16105]  copy_net_ns+0x2a6/0x5f0
[  985.974683][T16105]  create_new_namespaces+0x3ea/0xad0
[  985.974726][T16105]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  985.974763][T16105]  ksys_unshare+0x45d/0xa40
[  985.974788][T16105]  ? __pfx_ksys_unshare+0x10/0x10
[  985.974812][T16105]  ? xfd_validate_state+0x5d/0x180
[  985.974858][T16105]  __x64_sys_unshare+0x31/0x40
[  985.974883][T16105]  do_syscall_64+0xcd/0x250
[  985.974916][T16105]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  985.974948][T16105] RIP: 0033:0x7ff12618d169
[  985.974967][T16105] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  985.974991][T16105] RSP: 002b:00007ff126f98038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  985.975013][T16105] RAX: ffffffffffffffda RBX: 00007ff1263a5fa0 RCX: 00007ff12618d169
[  985.975027][T16105] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  985.975042][T16105] RBP: 00007ff12620e2a0 R08: 0000000000000000 R09: 0000000000000000
[  985.975056][T16105] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  985.975070][T16105] R13: 0000000000000000 R14: 00007ff1263a5fa0 R15: 00007ffde1a7dcb8
[  985.975101][T16105]  </TASK>
[  988.798758][T16140] sctp: [Deprecated]: syz.3.2086 (pid 16140) Use of int in maxseg socket option.
[  988.798758][T16140] Use struct sctp_assoc_value instead
[  988.901105][T12462] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  989.381051][T12462] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  989.447850][T16118] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  989.457825][T16118] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  989.498335][T16118] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  989.578728][T16118] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  989.606116][T16118] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  989.678178][T16118] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  989.759590][T12462] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  990.116113][T12462] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  990.573076][T12952] Bluetooth: hci1: command 0x0c1a tx timeout
[  990.643349][T12462] bridge_slave_1: left allmulticast mode
[  990.663204][T12462] bridge_slave_1: left promiscuous mode
[  990.669027][T12462] bridge0: port 2(bridge_slave_1) entered disabled state
[  990.799131][T12462] bridge_slave_0: left allmulticast mode
[  990.830572][T12462] bridge_slave_0: left promiscuous mode
[  990.862147][T12462] bridge0: port 1(bridge_slave_0) entered disabled state
[  991.543143][T12952] Bluetooth: hci3: command 0x0c1a tx timeout
[  991.549212][T12952] Bluetooth: hci2: command 0x0c1a tx timeout
[  991.613140][T12952] Bluetooth: hci0: command 0x0c1a tx timeout
[  991.643883][T16189] sctp: [Deprecated]: syz.2.2096 (pid 16189) Use of int in maxseg socket option.
[  991.643883][T16189] Use struct sctp_assoc_value instead
[  992.109900][T16198] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2098'.
[  992.551389][T16206] Invalid ELF header magic: != ELF
[  993.295527][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  993.301871][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  993.699527][T12952] Bluetooth: hci0: command 0x0c1a tx timeout
[  994.552439][T12462] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  994.647919][T12462] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  994.729566][T12462] bond0 (unregistering): Released all slaves
[  995.103393][T16198] bond0: (slave bond_slave_0): Releasing backup interface
[  995.370201][T12462] tipc: Left network mode
[  995.774979][T12952] Bluetooth: hci0: command 0x0c1a tx timeout
[  999.032232][T12462] hsr_slave_0: left promiscuous mode
[  999.232724][T12462] hsr_slave_1: left promiscuous mode
[  999.243570][T12462] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  999.289637][T12462] batman_adv: batadv0: Removing interface: batadv_slave_0
[  999.334960][T12462] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  999.373297][T12462] batman_adv: batadv0: Removing interface: batadv_slave_1
[  999.434195][T12462] veth1_macvtap: left promiscuous mode
[  999.480493][T12462] veth0_macvtap: left promiscuous mode
[  999.490732][T12462] veth1_vlan: left promiscuous mode
[  999.510937][T12462] veth0_vlan: left promiscuous mode
[  999.992444][T16358] sctp: [Deprecated]: syz.1.2116 (pid 16358) Use of int in maxseg socket option.
[  999.992444][T16358] Use struct sctp_assoc_value instead
[ 1001.090510][T12462] team0 (unregistering): Port device team_slave_1 removed
[ 1001.289197][T12462] team0 (unregistering): Port device team_slave_0 removed
[ 1001.873522][T16370] could not allocate digest TFM handle 
[ 1002.277033][T16373] could not allocate digest TFM handle 
[ 1002.497339][T16384] loop6: detected capacity change from 0 to 8
[ 1005.319778][T16416] netlink: 342 bytes leftover after parsing attributes in process `syz.5.2123'.
[ 1007.367821][T16482] mkiss: ax0: crc mode is auto.
[ 1007.842686][T16504] sctp: [Deprecated]: syz.5.2136 (pid 16504) Use of int in maxseg socket option.
[ 1007.842686][T16504] Use struct sctp_assoc_value instead
[ 1009.000732][T16520] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1009.007673][T16520] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1009.065922][T16520] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1009.072059][T16520] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1009.758409][T16556] xs_local_setup_socket: unhandled error (13) connecting to /var/run/rpcbind.sock
[ 1009.843977][T16556] svc: failed to register nfsdv3 RPC service (errno 111).
[ 1009.883599][T16556] svc: failed to register nfsaclv3 RPC service (errno 111).
[ 1010.333065][ T9174] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1010.492996][T16575] sctp: [Deprecated]: syz.1.2147 (pid 16575) Use of int in maxseg socket option.
[ 1010.492996][T16575] Use struct sctp_assoc_value instead
[ 1011.053475][ T9174] Bluetooth: hci2: command 0x0c1a tx timeout
[ 1011.133107][ T9174] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1011.139170][ T9174] Bluetooth: hci3: command 0x0c1a tx timeout
[ 1015.093986][T12952] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1015.106842][T12952] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1015.115527][T12952] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1015.125286][T12952] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1015.135226][T12952] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[ 1015.142685][T12952] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1016.692002][T16648] chnl_net:caif_netlink_parms(): no params data found
[ 1017.223018][ T9174] Bluetooth: hci4: command tx timeout
[ 1017.543235][T16648] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1017.550357][T16648] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1017.583165][T16648] bridge_slave_0: entered allmulticast mode
[ 1017.590274][T16648] bridge_slave_0: entered promiscuous mode
[ 1017.621036][T16648] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1017.633042][T16648] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1017.660576][T16648] bridge_slave_1: entered allmulticast mode
[ 1017.669295][T16648] bridge_slave_1: entered promiscuous mode
[ 1018.202795][T16648] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1018.227753][T16648] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1018.292584][T16698] could not allocate digest TFM handle 
[ 1018.385143][T16701] could not allocate digest TFM handle 
[ 1018.859247][T16648] team0: Port device team_slave_0 added
[ 1019.017120][T16648] team0: Port device team_slave_1 added
[ 1019.293049][ T9174] Bluetooth: hci4: command tx timeout
[ 1019.370699][T16648] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1019.383989][T16648] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1019.430609][T16648] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1019.454244][T16648] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1019.464633][T16648] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1019.538747][T16648] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1019.887704][T16648] hsr_slave_0: entered promiscuous mode
[ 1019.904649][T16648] hsr_slave_1: entered promiscuous mode
[ 1019.910721][T16648] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1019.928990][T16648] Cannot create hsr debugfs directory
[ 1020.624457][T16648] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1020.889991][T16648] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1021.108832][T16648] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1021.281717][T16648] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1021.383265][ T9174] Bluetooth: hci4: command tx timeout
[ 1021.625957][T16648] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 1021.804357][T16648] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 1021.855500][T16648] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 1021.920615][T16648] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 1022.280767][T16648] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1022.332737][T16648] 8021q: adding VLAN 0 to HW filter on device team0
[ 1022.374782][T12463] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1022.381993][T12463] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1022.511777][T11482] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1022.518945][T11482] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1023.283541][T16648] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1023.387190][T16648] veth0_vlan: entered promiscuous mode
[ 1023.439409][T16648] veth1_vlan: entered promiscuous mode
[ 1023.453987][ T9174] Bluetooth: hci4: command tx timeout
[ 1023.549809][T16648] veth0_macvtap: entered promiscuous mode
[ 1023.604278][T16648] veth1_macvtap: entered promiscuous mode
[ 1023.714971][T16648] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1023.759349][T16648] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1023.801863][T16648] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1023.849444][T16648] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1023.913051][T16648] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1023.924978][T16648] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1023.950335][T16648] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1023.977167][T16648] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1024.003390][T16648] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1024.143930][T16648] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1024.175100][T16648] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1024.225722][T16648] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1024.253129][T16648] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1024.263624][T16648] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1024.287540][T16648] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1024.321401][T16648] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1024.338672][T16648] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1024.362292][T16648] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1024.515432][T16648] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1024.533806][T16648] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1024.563122][T16648] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1024.603243][T16648] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1024.975302][T16270] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1025.002277][T16270] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1025.091323][T16293] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1025.148834][T16293] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1025.613357][T16867] sctp: [Deprecated]: syz.3.2158 (pid 16867) Use of int in maxseg socket option.
[ 1025.613357][T16867] Use struct sctp_assoc_value instead
[ 1026.053182][T16878] mkiss: ax0: crc mode is auto.
[ 1026.153230][T16879] Invalid ELF header magic: != ELF
[ 1027.609916][T16901] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2190'.
[ 1027.754209][T16901] geneve1: entered promiscuous mode
[ 1027.759478][T16901] geneve1: entered allmulticast mode
[ 1028.991923][T16941] sctp: [Deprecated]: syz.3.2199 (pid 16941) Use of int in maxseg socket option.
[ 1028.991923][T16941] Use struct sctp_assoc_value instead
[ 1030.968924][T16975] sctp: [Deprecated]: syz.5.2209 (pid 16975) Use of int in maxseg socket option.
[ 1030.968924][T16975] Use struct sctp_assoc_value instead
[ 1031.660696][T16988] ptrace attach of "./syz-executor exec"[16648] was attempted by "./syz-executor exec"[16988]
[ 1034.111863][T17021] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2220'.
[ 1034.482742][T17030] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2219'.
[ 1035.904082][T17053] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2225'.
[ 1036.667215][T17066] netlink: 338 bytes leftover after parsing attributes in process `syz.3.2226'.
[ 1036.730374][T17066] netlink: 338 bytes leftover after parsing attributes in process `syz.3.2226'.
[ 1038.990229][T17088] sg_write: data in/out 16027157/12 bytes for SCSI command 0x97-- guessing data in;
[ 1038.990229][T17088]    program syz.3.2231 not setting count and/or reply_len properly
[ 1039.213664][T17098] netlink: 342 bytes leftover after parsing attributes in process `syz.5.2232'.
[ 1040.331380][T17107] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1040.342221][T17107] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1040.352391][T17107] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1040.362749][T17107] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1040.369228][T17107] Bluetooth: hci4: Opcode 0x0406 failed: -4
[ 1040.567082][T17107] Bluetooth: hci4: Opcode 0x0406 failed: -4
[ 1041.426327][T17143] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2240'.
[ 1041.493137][T17143] openvswitch: netlink: Flow key attr not present in new flow.
[ 1041.861517][ T9174] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1042.413197][ T9174] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1042.413817][T12952] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1042.419250][ T9174] Bluetooth: hci3: command 0x0c1a tx timeout
[ 1044.493423][ T9174] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1046.573124][ T9174] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1054.736050][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[ 1054.742406][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[ 1070.106485][T16272] bridge_slave_1: left allmulticast mode
[ 1070.112525][T16272] bridge_slave_1: left promiscuous mode
[ 1070.119402][T16272] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1070.127784][T16272] bridge_slave_0: left allmulticast mode
[ 1070.133548][T16272] bridge_slave_0: left promiscuous mode
[ 1070.139218][T16272] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1070.478352][T16272] bond0 (unregistering): Released all slaves
[ 1070.550738][T16272] nl80211: left promiscuous mode
[ 1071.009651][T16272] hsr_slave_0: left promiscuous mode
[ 1071.016477][T16272] hsr_slave_1: left promiscuous mode
[ 1071.022136][T16272] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1071.030046][T16272] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1071.038642][T16272] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1071.046261][T16272] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1071.067038][T16272] veth1_macvtap: left promiscuous mode
[ 1071.072626][T16272] veth1_vlan: left promiscuous mode
[ 1071.078172][T16272] veth0_vlan: left promiscuous mode
[ 1071.510441][T16272] team0 (unregistering): Port device team_slave_1 removed
[ 1071.567498][T16272] team0 (unregistering): Port device team_slave_0 removed
[ 1116.176546][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[ 1116.183018][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[ 1177.616122][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[ 1177.622592][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[ 1190.412980][   T31] INFO: task syz-executor:5821 blocked for more than 143 seconds.
[ 1190.420807][   T31]       Tainted: G     U             6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[ 1190.431089][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1190.439882][   T31] task:syz-executor    state:D stack:22896 pid:5821  tgid:5821  ppid:5819   task_flags:0x440100 flags:0x00000002
[ 1190.451910][   T31] Call Trace:
[ 1190.455305][   T31]  <TASK>
[ 1190.461887][   T31]  __schedule+0xf43/0x5890
[ 1190.467048][   T31]  ? __pfx___lock_acquire+0x10/0x10
[ 1190.472293][   T31]  ? mark_lock+0x11/0xc60
[ 1190.480219][   T31]  ? __pfx___schedule+0x10/0x10
[ 1190.486286][   T31]  ? schedule+0x298/0x350
[ 1190.490830][   T31]  ? __pfx_lock_release+0x10/0x10
[ 1190.496112][   T31]  ? __wait_on_bit+0xc9/0x180
[ 1190.500825][   T31]  ? lock_acquire+0x2f/0xb0
[ 1190.505573][   T31]  ? schedule+0x1fd/0x350
[ 1190.510646][   T31]  schedule+0xe7/0x350
[ 1190.516270][   T31]  io_schedule+0xbf/0x130
[ 1190.522262][   T31]  bit_wait_io+0x15/0xe0
[ 1190.526690][   T31]  __wait_on_bit+0x62/0x180
[ 1190.532161][   T31]  ? __pfx_bit_wait_io+0x10/0x10
[ 1190.540714][   T31]  out_of_line_wait_on_bit+0xda/0x110
[ 1190.546370][   T31]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[ 1190.552383][   T31]  ? __pfx_wake_bit_function+0x10/0x10
[ 1190.557927][   T31]  do_get_write_access+0x933/0x1270
[ 1190.563199][   T31]  jbd2_journal_get_write_access+0x1d6/0x280
[ 1190.569214][   T31]  __ext4_journal_get_write_access+0x6a/0x340
[ 1190.576086][   T31]  ext4_reserve_inode_write+0x13b/0x270
[ 1190.581673][   T31]  __ext4_mark_inode_dirty+0x1ab/0x860
[ 1190.587210][   T31]  ? ext4_dirty_inode+0xd9/0x130
[ 1190.592175][   T31]  ? trace_kmem_cache_alloc+0x2d/0xd0
[ 1190.597630][   T31]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[ 1190.603643][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1190.608423][   T31]  ? trace_jbd2_handle_start+0x1bd/0x240
[ 1190.614148][   T31]  ? jbd2__journal_start+0xf6/0x6a0
[ 1190.619384][   T31]  ? __ext4_journal_start_sb+0x19f/0x660
[ 1190.625290][   T31]  ? __ext4_journal_start_sb+0x1a8/0x660
[ 1190.630958][   T31]  ? ext4_dirty_inode+0xa1/0x130
[ 1190.636927][   T31]  ? __pfx_ext4_dirty_inode+0x10/0x10
[ 1190.642319][   T31]  ext4_dirty_inode+0xd9/0x130
[ 1190.647192][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1190.651971][   T31]  __mark_inode_dirty+0x1ec/0xe50
[ 1190.657072][   T31]  generic_update_time+0xcf/0xf0
[ 1190.662066][   T31]  file_update_time+0x17d/0x1c0
[ 1190.667098][   T31]  ext4_page_mkwrite+0x368/0x1760
[ 1190.672152][   T31]  ? find_held_lock+0x2d/0x110
[ 1190.677012][   T31]  ? __pfx_ext4_page_mkwrite+0x10/0x10
[ 1190.682512][   T31]  ? __pfx_lock_release+0x10/0x10
[ 1190.687662][   T31]  ? vm_normal_page+0x13c/0x2b0
[ 1190.692544][   T31]  do_page_mkwrite+0x177/0x380
[ 1190.697370][   T31]  do_wp_page+0xc4b/0x4670
[ 1190.701813][   T31]  ? __pfx_lock_acquire.part.0+0x10/0x10
[ 1190.707616][   T31]  ? __pfx_do_wp_page+0x10/0x10
[ 1190.712490][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1190.717312][   T31]  ? do_raw_spin_lock+0x12d/0x2c0
[ 1190.722354][   T31]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1190.727898][   T31]  ? lock_acquire+0x2f/0xb0
[ 1190.732421][   T31]  ? __handle_mm_fault+0xdfa/0x2a40
[ 1190.738246][   T31]  __handle_mm_fault+0x1ade/0x2a40
[ 1190.743483][   T31]  ? lock_vma_under_rcu+0x6b9/0x980
[ 1190.748711][   T31]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1190.754301][   T31]  handle_mm_fault+0x3fa/0xaa0
[ 1190.759112][   T31]  do_user_addr_fault+0x60d/0x13f0
[ 1190.764373][   T31]  exc_page_fault+0x5c/0xc0
[ 1190.768914][   T31]  asm_exc_page_fault+0x26/0x30
[ 1190.773852][   T31] RIP: 0033:0x7f54ed8765ef
[ 1190.778281][   T31] RSP: 002b:00007ffd46fce060 EFLAGS: 00010202
[ 1190.784425][   T31] RAX: 00007f54ebe4c000 RBX: 000055555d8993c0 RCX: 0000000000000003
[ 1190.792411][   T31] RDX: 1ffffffff0473603 RSI: 000055555d88ae18 RDI: 0000000000000008
[ 1190.800557][   T31] RBP: 00007ffd46fce350 R08: 000055555d88ae18 R09: 00000000000026c0
[ 1190.808604][   T31] R10: 0000000000000001 R11: 00007ffd46fce560 R12: 00007ffd46fce3b0
[ 1190.816856][   T31] R13: 0000000000000004 R14: 00007ffd46fce0d0 R15: 00007ffd46fce1a0
[ 1190.824929][   T31]  </TASK>
[ 1190.828048][   T31] INFO: task syz.2.2247:17164 blocked for more than 143 seconds.
[ 1190.835860][   T31]       Tainted: G     U             6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[ 1190.845366][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1190.854128][   T31] task:syz.2.2247      state:D stack:27664 pid:17164 tgid:17164 ppid:5831   task_flags:0x440040 flags:0x00000004
[ 1190.866133][   T31] Call Trace:
[ 1190.869405][   T31]  <TASK>
[ 1190.872328][   T31]  __schedule+0xf43/0x5890
[ 1190.876899][   T31]  ? __pfx___lock_acquire+0x10/0x10
[ 1190.882124][   T31]  ? mark_lock+0x11/0xc60
[ 1190.886620][   T31]  ? __pfx___schedule+0x10/0x10
[ 1190.891505][   T31]  ? schedule+0x298/0x350
[ 1190.895988][   T31]  ? __pfx_lock_release+0x10/0x10
[ 1190.901051][   T31]  ? __wait_on_bit+0xc9/0x180
[ 1190.905807][   T31]  ? lock_acquire+0x2f/0xb0
[ 1190.910341][   T31]  ? schedule+0x1fd/0x350
[ 1190.914753][   T31]  schedule+0xe7/0x350
[ 1190.918839][   T31]  io_schedule+0xbf/0x130
[ 1190.923588][   T31]  bit_wait_io+0x15/0xe0
[ 1190.927850][   T31]  __wait_on_bit+0x62/0x180
[ 1190.932372][   T31]  ? __pfx_bit_wait_io+0x10/0x10
[ 1190.937419][   T31]  out_of_line_wait_on_bit+0xda/0x110
[ 1190.943163][   T31]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[ 1190.949182][   T31]  ? __pfx_wake_bit_function+0x10/0x10
[ 1190.954922][   T31]  do_get_write_access+0x933/0x1270
[ 1190.960157][   T31]  jbd2_journal_get_write_access+0x1d6/0x280
[ 1190.966280][   T31]  __ext4_journal_get_write_access+0x6a/0x340
[ 1190.972375][   T31]  ext4_reserve_inode_write+0x13b/0x270
[ 1190.978069][   T31]  __ext4_mark_inode_dirty+0x1ab/0x860
[ 1190.983672][   T31]  ? ext4_dirty_inode+0xd9/0x130
[ 1190.988645][   T31]  ? trace_kmem_cache_alloc+0x2d/0xd0
[ 1190.994128][   T31]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[ 1191.000150][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1191.005154][   T31]  ? trace_jbd2_handle_start+0x1bd/0x240
[ 1191.010846][   T31]  ? jbd2__journal_start+0xf6/0x6a0
[ 1191.016134][   T31]  ? __ext4_journal_start_sb+0x19f/0x660
[ 1191.021791][   T31]  ? __ext4_journal_start_sb+0x1a8/0x660
[ 1191.027509][   T31]  ? ext4_dirty_inode+0xa1/0x130
[ 1191.032497][   T31]  ? __pfx_ext4_dirty_inode+0x10/0x10
[ 1191.037963][   T31]  ext4_dirty_inode+0xd9/0x130
[ 1191.042888][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1191.047899][   T31]  __mark_inode_dirty+0x1ec/0xe50
[ 1191.053073][   T31]  generic_update_time+0xcf/0xf0
[ 1191.058227][   T31]  file_update_time+0x17d/0x1c0
[ 1191.063358][   T31]  ext4_page_mkwrite+0x368/0x1760
[ 1191.068428][   T31]  ? __pfx_ext4_page_mkwrite+0x10/0x10
[ 1191.073979][   T31]  ? pte_alloc_one+0x2b8/0x390
[ 1191.078771][   T31]  do_page_mkwrite+0x177/0x380
[ 1191.083628][   T31]  do_pte_missing+0x29e/0x3e10
[ 1191.088429][   T31]  ? do_raw_spin_unlock+0x172/0x230
[ 1191.093709][   T31]  ? __pmd_alloc+0x3c2/0x870
[ 1191.098322][   T31]  __handle_mm_fault+0x103c/0x2a40
[ 1191.103515][   T31]  ? lock_vma_under_rcu+0x6b9/0x980
[ 1191.108737][   T31]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1191.114369][   T31]  handle_mm_fault+0x3fa/0xaa0
[ 1191.119183][   T31]  do_user_addr_fault+0x60d/0x13f0
[ 1191.124442][   T31]  exc_page_fault+0x5c/0xc0
[ 1191.128972][   T31]  asm_exc_page_fault+0x26/0x30
[ 1191.134012][   T31] RIP: 0033:0x7ff126063c9b
[ 1191.138452][   T31] RSP: 002b:00007ffde1a7de20 EFLAGS: 00010246
[ 1191.144598][   T31] RAX: 00000000003ffde8 RBX: 0000000000000000 RCX: 0000000000000000
[ 1191.152863][   T31] RDX: 0000001b30020000 RSI: 0000000000400000 RDI: 00007ff1262967b0
[ 1191.160870][   T31] RBP: 0000000000000000 R08: 0000000000000004 R09: 0000000000040000
[ 1191.168942][   T31] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1191.177152][   T31] R13: 00000000000927c0 R14: 00000000000fe6b4 R15: 00007ffde1a7e0d0
[ 1191.185439][   T31]  </TASK>
[ 1191.188523][   T31] INFO: task syz.5.2245:17165 blocked for more than 144 seconds.
[ 1191.196450][   T31]       Tainted: G     U             6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[ 1191.205641][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1191.214682][   T31] task:syz.5.2245      state:D stack:28368 pid:17165 tgid:17165 ppid:15961  task_flags:0x440040 flags:0x00000004
[ 1191.227362][   T31] Call Trace:
[ 1191.230673][   T31]  <TASK>
[ 1191.233942][   T31]  __schedule+0xf43/0x5890
[ 1191.238401][   T31]  ? __pfx___lock_acquire+0x10/0x10
[ 1191.243814][   T31]  ? mark_lock+0x10/0xc60
[ 1191.248723][   T31]  ? __pfx___schedule+0x10/0x10
[ 1191.253666][   T31]  ? schedule+0x298/0x350
[ 1191.258026][   T31]  ? __pfx_lock_release+0x10/0x10
[ 1191.263139][   T31]  ? __wait_on_bit+0xc9/0x180
[ 1191.267837][   T31]  ? lock_acquire+0x2f/0xb0
[ 1191.272334][   T31]  ? schedule+0x1fd/0x350
[ 1191.276746][   T31]  schedule+0xe7/0x350
[ 1191.280830][   T31]  io_schedule+0xbf/0x130
[ 1191.285272][   T31]  bit_wait_io+0x15/0xe0
[ 1191.289549][   T31]  __wait_on_bit+0x62/0x180
[ 1191.294185][   T31]  ? __pfx_bit_wait_io+0x10/0x10
[ 1191.299162][   T31]  out_of_line_wait_on_bit+0xda/0x110
[ 1191.304725][   T31]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[ 1191.310743][   T31]  ? __pfx_wake_bit_function+0x10/0x10
[ 1191.316271][   T31]  do_get_write_access+0x933/0x1270
[ 1191.321498][   T31]  jbd2_journal_get_write_access+0x1d6/0x280
[ 1191.327629][   T31]  __ext4_journal_get_write_access+0x6a/0x340
[ 1191.333770][   T31]  ext4_reserve_inode_write+0x13b/0x270
[ 1191.339340][   T31]  __ext4_mark_inode_dirty+0x1ab/0x860
[ 1191.344884][   T31]  ? ext4_dirty_inode+0xd9/0x130
[ 1191.349862][   T31]  ? trace_kmem_cache_alloc+0x2d/0xd0
[ 1191.355827][   T31]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[ 1191.361932][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1191.366817][   T31]  ? trace_jbd2_handle_start+0x1bd/0x240
[ 1191.372485][   T31]  ? jbd2__journal_start+0xf6/0x6a0
[ 1191.377888][   T31]  ? __ext4_journal_start_sb+0x19f/0x660
[ 1191.383626][   T31]  ? __ext4_journal_start_sb+0x1a8/0x660
[ 1191.389303][   T31]  ? ext4_dirty_inode+0xa1/0x130
[ 1191.394323][   T31]  ? __pfx_ext4_dirty_inode+0x10/0x10
[ 1191.399722][   T31]  ext4_dirty_inode+0xd9/0x130
[ 1191.404559][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1191.409336][   T31]  __mark_inode_dirty+0x1ec/0xe50
[ 1191.414662][   T31]  generic_update_time+0xcf/0xf0
[ 1191.419630][   T31]  file_update_time+0x17d/0x1c0
[ 1191.424599][   T31]  ext4_page_mkwrite+0x368/0x1760
[ 1191.429672][   T31]  ? __pfx_ext4_page_mkwrite+0x10/0x10
[ 1191.435228][   T31]  ? pte_alloc_one+0x2b8/0x390
[ 1191.440031][   T31]  do_page_mkwrite+0x177/0x380
[ 1191.444887][   T31]  do_pte_missing+0x29e/0x3e10
[ 1191.449687][   T31]  ? do_raw_spin_unlock+0x172/0x230
[ 1191.455466][   T31]  ? __pmd_alloc+0x3c2/0x870
[ 1191.460095][   T31]  __handle_mm_fault+0x103c/0x2a40
[ 1191.465338][   T31]  ? lock_vma_under_rcu+0x6b9/0x980
[ 1191.470561][   T31]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1191.476173][   T31]  handle_mm_fault+0x3fa/0xaa0
[ 1191.480973][   T31]  do_user_addr_fault+0x60d/0x13f0
[ 1191.486207][   T31]  exc_page_fault+0x5c/0xc0
[ 1191.490734][   T31]  asm_exc_page_fault+0x26/0x30
[ 1191.495653][   T31] RIP: 0033:0x7f2155a63c9b
[ 1191.500123][   T31] RSP: 002b:00007ffe0287fdf0 EFLAGS: 00010246
[ 1191.506299][   T31] RAX: 00000000003ffde8 RBX: 0000000000000000 RCX: 0000000000000000
[ 1191.514369][   T31] RDX: 0000001b30b20000 RSI: 0000000000400000 RDI: 00007f2155c967b0
[ 1191.522357][   T31] RBP: 0000000000000000 R08: 0000000000000004 R09: 0000000000040000
[ 1191.530427][   T31] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1191.538464][   T31] R13: 00000000000927c0 R14: 00000000000fe697 R15: 00007ffe028800a0
[ 1191.546544][   T31]  </TASK>
[ 1191.549579][   T31] 
[ 1191.549579][   T31] Showing all locks held in the system:
[ 1191.557920][   T31] 1 lock held by khungtaskd/31:
[ 1191.562859][   T31]  #0: ffffffff8e1bd140 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x7f/0x390
[ 1191.572889][   T31] 3 locks held by syz-executor/5821:
[ 1191.578195][   T31]  #0: ffff88802f10d808 (&vma->vm_lock->lock){++++}-{4:4}, at: lock_vma_under_rcu+0x13e/0x980
[ 1191.588599][   T31]  #1: ffff88814e7fa518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x177/0x380
[ 1191.598172][   T31]  #2: ffff88814e7fe950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0xf6c/0x1430
[ 1191.607830][   T31] 2 locks held by getty/14029:
[ 1191.612604][   T31]  #0: ffff88814d6090a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80
[ 1191.622485][   T31]  #1: ffffc900033022f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0xfba/0x1480
[ 1191.632670][   T31] 6 locks held by kworker/u8:45/16274:
[ 1191.638209][   T31]  #0: ffff8880206d4148 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x1293/0x1ba0
[ 1191.649012][   T31]  #1: ffffc9000be07d18 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x921/0x1ba0
[ 1191.661446][   T31]  #2: ffff88814e7fa0e0 (&type->s_umount_key#31){++++}-{4:4}, at: super_trylock_shared+0x1e/0xf0
[ 1191.672184][   T31]  #3: ffff88814e7fcb98 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: do_writepages+0x1b3/0x820
[ 1191.682551][   T31]  #4: ffff88814e7fe950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0xf6c/0x1430
[ 1191.692202][   T31]  #5: ffff888077c39658 (&ei->i_data_sem){++++}-{4:4}, at: ext4_map_blocks+0x352/0x1370
[ 1191.702213][   T31] 6 locks held by kworker/u8:58/16293:
[ 1191.708077][   T31] 3 locks held by syz.2.2247/17164:
[ 1191.713447][   T31]  #0: ffff88802fedf3d0 (&vma->vm_lock->lock){++++}-{4:4}, at: lock_vma_under_rcu+0x13e/0x980
[ 1191.723871][   T31]  #1: ffff88814e7fa518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x177/0x380
[ 1191.733543][   T31]  #2: ffff88814e7fe950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0xf6c/0x1430
[ 1191.743211][   T31] 3 locks held by syz.5.2245/17165:
[ 1191.748395][   T31]  #0: ffff88801ef71ec8 (&vma->vm_lock->lock){++++}-{4:4}, at: lock_vma_under_rcu+0x13e/0x980
[ 1191.758757][   T31]  #1: ffff88814e7fa518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x177/0x380
[ 1191.768789][   T31]  #2: ffff88814e7fe950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0xf6c/0x1430
[ 1191.778553][   T31] 
[ 1191.780885][   T31] =============================================
[ 1191.780885][   T31] 
[ 1191.789391][   T31] NMI backtrace for cpu 1
[ 1191.789407][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Tainted: G     U             6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[ 1191.789436][   T31] Tainted: [U]=USER
[ 1191.789441][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1191.789452][   T31] Call Trace:
[ 1191.789457][   T31]  <TASK>
[ 1191.789465][   T31]  dump_stack_lvl+0x116/0x1f0
[ 1191.789499][   T31]  nmi_cpu_backtrace+0x27b/0x390
[ 1191.789524][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 1191.789553][   T31]  nmi_trigger_cpumask_backtrace+0x29c/0x300
[ 1191.789578][   T31]  watchdog+0xf62/0x12b0
[ 1191.789611][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1191.789638][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1191.789669][   T31]  ? __kthread_parkme+0x148/0x220
[ 1191.789694][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1191.789726][   T31]  kthread+0x3af/0x750
[ 1191.789753][   T31]  ? __pfx_kthread+0x10/0x10
[ 1191.789792][   T31]  ? __pfx_kthread+0x10/0x10
[ 1191.789819][   T31]  ret_from_fork+0x45/0x80
[ 1191.789847][   T31]  ? __pfx_kthread+0x10/0x10
[ 1191.789873][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1191.789911][   T31]  </TASK>
[ 1191.789919][   T31] Sending NMI from CPU 1 to CPUs 0:
[ 1191.908293][    C0] NMI backtrace for cpu 0 skipped: idling at acpi_safe_halt+0x1a/0x20
[ 1191.909296][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[ 1191.924361][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Tainted: G     U             6.14.0-rc7-syzkaller-00196-g88d324e69ea9 #0
[ 1191.936332][   T31] Tainted: [U]=USER
[ 1191.940117][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1191.950157][   T31] Call Trace:
[ 1191.953426][   T31]  <TASK>
[ 1191.956346][   T31]  dump_stack_lvl+0x3d/0x1f0
[ 1191.960934][   T31]  panic+0x71d/0x800
[ 1191.964840][   T31]  ? __pfx_panic+0x10/0x10
[ 1191.969276][   T31]  ? preempt_schedule_thunk+0x1a/0x30
[ 1191.974651][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 1191.980641][   T31]  ? preempt_schedule_thunk+0x1a/0x30
[ 1191.986018][   T31]  ? watchdog+0xdcc/0x12b0
[ 1191.990443][   T31]  ? watchdog+0xdbf/0x12b0
[ 1191.994862][   T31]  watchdog+0xddd/0x12b0
[ 1191.999127][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1192.003811][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1192.009012][   T31]  ? __kthread_parkme+0x148/0x220
[ 1192.014043][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1192.018757][   T31]  kthread+0x3af/0x750
[ 1192.022851][   T31]  ? __pfx_kthread+0x10/0x10
[ 1192.027460][   T31]  ? __pfx_kthread+0x10/0x10
[ 1192.032855][   T31]  ret_from_fork+0x45/0x80
[ 1192.037305][   T31]  ? __pfx_kthread+0x10/0x10
[ 1192.041923][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1192.046744][   T31]  </TASK>
[ 1192.050005][   T31] Kernel Offset: disabled
[ 1192.054344][   T31] Rebooting in 86400 seconds..