last executing test programs:

1m7.768399942s ago: executing program 3 (id=315):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = io_uring_setup$auto(0x1, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x14480, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/midiC2D0\x00', 0x109302, 0x0)
r2 = openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000003640)='/proc/self/numa_maps\x00', 0x40080, 0x0)
mmap$auto(0x0, 0xdb3, 0xdf, 0xeb1, 0x401, 0x7fff)
r3 = prctl$auto(0x1000000003b, 0x5, 0x4, 0x5, 0x3)
mmap$auto(0x0, 0x4, 0x14000000000df, 0x40eb2, r3, 0x300000000000)
lseek$auto(r2, 0x7ff, 0x1)
r4 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r5 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000000), 0x88600, 0x0)
ioctl$auto_UBI_IOCATT(r5, 0x40186f40, 0x0)
r6 = socket(0x2b, 0x1, 0x1)
setsockopt$auto(r6, 0x0, 0x1, 0x0, 0x1e)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
setsockopt$auto(0xffffffffffffffff, 0x29, 0x21, &(0x7f0000000880)='\x15!\xa8^J/\xddCx4!\x00\xd3\x8f\xff\x1b\x01\x1e\xe2\xa8\xd6\xd9\xc0\xa2\x0f\x88\xb1e\x8a\xd8?\xfe\xda\xc4\xef\xff(i\xc6@\xf2Vw\xbe\x1c$\xddm\x8a\x9d\x91_\vBj\x0eQ\xce\x16\'C\x8c\x01\x80\x92u\xd5\xb8\\\x82,\xe2=y\x9bR\xbcn\xa0c\x16~\x86\"t\x00\x00\x00\x00\xe4\xa5\xfe\xb5h\xae\xec%\xf9\x94>\xd6,\xf3\x98\'\xb0\t~~\xb4\x98\xbb3=A\x9c\x17\xaa\xce\fh-M\xdb-\x15VX\xfe\xca+\xb5\x95\xb3JL\x0fl\xe84\xbd\xa3nO\x9f\xfa\xb1\x06$\b$i3\x83\xd7\x06\xd6\x1e\xdbB\x9bb\x1cXC\x8c\x8b\xd9\xff\xf2Bf\x99!Z\x13\xff\xca\xf3e\x015\x9b\x86\xd6$\x1a\r3\x91\xb7\x942\xeb\xadVA\xfc\x1f\xbf1\xb7T\xc1\xbf\xc0\xc2\xfc\xe8w\xd33\xb2,\xb0\x9fA3\xc2\xa2\x1cM\x825\x94U\xbbNeb\xd2\xa9\x0f\xed\x8b\xea\xfa\x8a\x04.\xffMIw\x0f\xd6\xae^\xd2\xf1j\xcb\r\xa4\x1d0d\xca\x81\x9c\x80GL\x0e\xe6\x19\x8au\x1a7\xc5|\xf6\x1e\xe00\xc6\"\x83\x1c\xa2\x9e\a\x1c\xea\xa3\x9c\xe1BF\x05b\xf6\xdcf\x04\xd9B\xb9\x98\x9cq\xbd\xfb\xb5~\xf2\x8d\x9f`\xec\xd0\xafY\xcf\x84', 0x18000113)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa}, 0x58)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000140)={[0x1ff, 0x7, 0xc45d, 0x80, 0x6, 0x3, 0x2, 0x3, 0x3, 0x62, 0x80000022, 0x7, 0x6d3e, 0x2000000004000009, 0x2, 0x6]}, 0x0)
mmap$auto(0xfffffffffffffffc, 0x5, 0x5, 0xebd, r4, 0x9)
r7 = openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/set_event_notrace_pid\x00', 0x582, 0x0)
write$auto_console_fops_tty_io(r7, &(0x7f0000001240)='4', 0x1)
ioctl$auto_UBI_IOCDET(r0, 0x40046f41, &(0x7f0000000080)=0x6)
io_uring_setup$auto(0x7, 0x0)
r8 = socket(0xa, 0x5, 0x84)
getsockopt$auto(r8, 0x84, 0x1f, 0x0, &(0x7f0000000080)=0x49b)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D2\x00', 0x4a8c02, 0x0)

1m5.840766118s ago: executing program 3 (id=318):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
socket(0x18, 0xa, 0x1)
r0 = socket(0xa, 0x2, 0x0)
connect$auto(0x3, &(0x7f00000000c0)=@l2tp={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x37}, 0x3}, 0x55)
ioctl$auto_XFS_IOC_ATTRMULTI_BY_HANDLE(0xffffffffffffffff, 0x4048587b, &(0x7f0000000600)={{0xffffffffffffffff, 0x0, 0x78, 0x0, 0xd, &(0x7f0000000400)="fcb84cfc4ef7c33177018b318e548a8f36e59c0d3d929276b7f7451cc86a16bbb56d4d3a2c5bab36cef82e613b8ab142782eb3d21c368fa80e37556e65833e11639c46b67298ac076fc21004c3f6688e18", 0x0}, 0x89c5, 0x0})
r1 = socket(0x1d, 0x2, 0x7)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r2=>0x0})
bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, <r3=>r2}, 0x6a)
sendto$auto(r1, 0x0, 0x6, 0xfffffff8, &(0x7f0000000440)=@can={0x1d, r3}, 0x36)
connect$auto(0x3, &(0x7f00000001c0)=@in={0x2, 0x4e24, @multicast1}, 0x55)
write$auto(r0, 0x0, 0xfdef)

1m5.666048903s ago: executing program 3 (id=320):
r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000240)='/dev/video37\x00', 0x8a240, 0x0)
ioctl$auto(r0, 0x564a, r0)
read$auto_v4l2_fops_v4l2_dev(r0, &(0x7f0000000280)=""/40, 0x28)

1m5.185525616s ago: executing program 3 (id=323):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket(0x11, 0x80003, 0x300)
io_uring_setup$auto(0x6, 0x0)
setsockopt$auto(r0, 0x107, 0x14, 0x0, 0x4)
r1 = socket(0x11, 0x80003, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', <r2=>0x0})
sendto$auto(0x3, 0x0, 0x34, 0xfffffff9, &(0x7f0000000440)=@xdp={0x2c, 0xdd86, r2, 0x10}, 0x22)
r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop11\x00', 0x8081, 0x0)
r4 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f00000004c0), 0x2202, 0x0)
ioctl$auto_USB_RAW_IOCTL_EP0_WRITE(r4, 0x40085503, &(0x7f0000000600)={0xd, 0x0, 0x3})
ioctl$auto_SG_GET_RESERVED_SIZE(r3, 0x4c07, 0x0)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyve\x00', 0x2480, 0x0)

1m4.707307489s ago: executing program 3 (id=325):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r0 = socket(0x2, 0x80802, 0x0)
r1 = socket(0x2b, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000840), 0x12, 0x0, 0x5, 0x0, 0x1f, 0x9}, 0x40840009}, 0x0, 0x20000000)
r3 = io_uring_setup$auto(0x6, 0x0)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2)
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
futex$auto(0x0, 0x6, 0x47, 0x0, 0x0, 0x0)
setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88)
bind$auto(0x3, 0x0, 0x6a)
sendmsg$auto_NL80211_CMD_SET_WOWLAN(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000500)={0x58, 0x0, 0x1, 0x70bd27, 0x25dfdbfb, {}, [@NL80211_ATTR_BEACON_HEAD={0x41, 0xe, "1bc6e7e10bc66696ea9b05d53fcb46cdea5e227f20ea27bbee943b059ee673eb196cbf758915ad0d31d27b34b0e98cd68af9d349f9047fced322702974"}]}, 0x58}, 0x1, 0x0, 0x0, 0x40}, 0x4004010)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x28, 0x0, 0x100, 0x70bd29, 0x25dfdbfe, {}, [@NL80211_ATTR_KEY_CIPHER={0x8, 0x9, 0x5f7e}, @NL80211_ATTR_TIMED_OUT={0x4}, @NL80211_ATTR_WIPHY_NAME={0x5, 0x2, '\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x10}, 0x40000)
setsockopt$auto(0x3, 0x1, 0x23, 0x0, 0x9)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/pcrypt/pencrypt/serial_cpumask\x00', 0xa001, 0x0)
write$auto(r4, &(0x7f0000000040)=',\x00^\xa2\x02\x00\x05\x00\x00\x00\xd8l\x00\x00\x00\x00\x00\x00\xb2s\x83\xbd\xc5_%\xc1\xa3\xd0\x95Hq\xf4zG\x01[{\x17\x05I\xe0\xb1d)\x06z8L\xe6&[\xa9X6\x7f\xec\x94\xdal\xa1\xbb\x86\x9c\xc2\xef\x02\r9%\x06\xc5\'b%m_\x96A\"\xdd\xe40\xa7\xc3\x9ah\xf3B\xc2\xec\xf8\r\f[\xe5\x9dK\xe1\x99\x86\xfc\xac\x9f\x8a', 0x1000)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000005c0)='/sys/devices/platform/vhci_hcd.6/usb21/21-0:1.0/usb21-port6/power/pm_qos_no_power_off\x00', 0x3b58c1, 0x0)
sendmsg$auto_NL80211_CMD_DEL_TX_TS(r2, &(0x7f0000000800)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000007c0)={&(0x7f0000000840)=ANY=[@ANYBLOB="f01c75c0d685d48836d7390ebea584c2a1e7724344dfa635d859acf9fa3104ea23fb947e3e23722729841fb4928e073a73c0139045941f1dea2515167fa3425cf7efecb6f1873b2e72d9c07283186f52a0b3536dc3618de8f52f9e14dcbc2ab7e991e22d885f71402887eae7c8f2d9ee7072c8d8b41fd71d918323261bd4a98049310b441a80a14a0603d7ef5e5c748773c73eedbfe2d199e6506b8d7760e18aa12740c8c50b2dea6b67cdeefa2aab6d1be7ebe61039c0591e0d1cbd1925b493a194c2573e5a72026feac43a7dfaa6", @ANYRES16=0x0, @ANYBLOB="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"], 0x55c}, 0x1, 0x0, 0x0, 0x81}, 0x24000000)
write$auto(r5, &(0x7f0000000100)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3C', 0xc)
close_range$auto(r3, 0xfffffffffffff000, 0x2)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'ip_vti0\x00'})
r6 = socket(0x2, 0x2, 0x1)
r7 = bpf$auto(0x4, &(0x7f00000000c0)=@bpf_attr_4={0x1f, r6, 0x4002}, 0x10)
mmap$auto(0x0, 0x9, 0xffffffff, 0x8000200008011, r7, 0x8000)
read$auto(0x3, 0x0, 0x80)
write$auto(0x3, 0x0, 0xfffffdef)
close_range$auto(r0, r0, 0x3)
openat$auto_fops_u16_(0xffffffffffffff9c, &(0x7f00000003c0)='/sys/kernel/debug/netdevsim/netdevsim6/psample/out_tc\x00', 0x40, 0x0)

1m4.072451367s ago: executing program 3 (id=329):
statmount$auto(0x0, &(0x7f00000006c0)={0x9, 0xfffffffe, 0x44f, 0xa, 0x5, 0x1007181, 0x8a0d, 0x1, 0x7, 0x7ff, 0x0, 0x26, 0x4, 0x200004000001, 0xfffffffffffffff5, 0xfffffffffffffffa, 0x0, 0x0, 0x7, 0x800, 0x8, 0xe, 0x22002, 0x200, 0x0, 0x84, 0x0, 0x400000, 0x0, 0x0, 0xb622, [0xfffffffffffffffe, 0xf, 0x1, 0x7, 0x1, 0x5, 0x0, 0x0, 0x0, 0x2b1, 0x0, 0x2, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x40000, 0xfffffffffffffffe, 0x1000000000, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x95]}, 0xc, 0x9)
r0 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r0, 0xfffffff7effffd0c, &(0x7f00000005c0)="34d5b55734ea376d280146b57b928b3dcca314a8ed4662555040c307675569a2af2548e3f6f26bb0071b52bc483664328eed98a02dc2b3e2615b943bd8ea9ab7bde8296e7c4a2f733de8939a582eb97dd14fb20826d79bd21fab9a3c6eadb57308f91c9c1c4430c46166d094a35732ab8e9754f45b8bd236f2a38827e721ad4515be0df05b136c6f1b9026b01b52e9ae8d332a8ce7e4d1315e9e535f0fe427879baaa1cda615cc2a3c8ce7ca9aec1391187931b957d03ebfe714e9ec8c489cf216ccb750bf0ec435ff2e2c5999767add17e9124882be4b438d32ac211ca55e3885f5c06a88dfe79c46ce7ed1613963101c8c603c01")
r1 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x20282, 0x0)
ioctl$auto_UI_DEV_SETUP(r1, 0x405c5503, &(0x7f00000000c0)={{0x9, 0xf2cf, 0x9, 0x80}, "6a034a07c7b8edb8fc3b39e32576f893fba86c9dd051a0094a3836d61c9100fefbbabea6ef9368c7996e841f3f1561d4992f726b0a6c36b0b2fd1678e816201cf562367fe6596824588a2e3d84ba165f", 0x4})
ioctl$auto_UI_DEV_CREATE(r1, 0x5501, 0x0)
r2 = accept$auto(0xffffffffffffffff, &(0x7f0000000080)=@qipcrtr={0x2a, 0xffffffffffffffff, 0x7fff}, &(0x7f0000000140)=0x8)
writev$auto(r2, &(0x7f0000000480)={&(0x7f00000004c0)="397892ed7d99d028e69766a3a350e1249f6a3e84e091125248eb4ad0d2d6e5ebe3dd119244426906a850f2a325b551e15a9df8a4158c5855b24a1ca06446aff7524aaff799876a8336c7d1d1755c3b28a0a5900f1cbac978701316a2b60abaa447623364ae2bb38c3ac08fcc9d5c62f697a191c8683c97f38e13ca87f77f709363f3855f3be03d0f2441565a4a81173c5b6a826b2213a8b665427c4cc9358993ee2478606c33a6f05c7015887e0d3d2ad1a281f623a016219ed4142c0ac01019f09de653eb47a3d2df7a8e98027ea14ddd1746", 0x35}, 0x9fe)
openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, 0x0, 0x2000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
socket(0x11, 0x3, 0x4)
r3 = socket(0x1d, 0x2, 0x7)
r4 = socket(0x2, 0xa, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000080)={'vcan0\x00'})
bind$auto(0x3, &(0x7f0000000040)=@vsock, 0x55ea)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000180)={'vcan0\x00', <r5=>0x0})
connect$auto(0x3, &(0x7f00000018c0)=@can={0x1d, r5}, 0x18)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
r6 = io_uring_setup$auto(0xa, 0x0)
mmap$auto(0xfffffffffffffffc, 0x4000000004, 0x4000000000df, 0x40eb1, r6, 0x300000000000)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x3ec0)
sendmmsg$auto(r0, 0x0, 0x29a2, 0x40000000)
socket$nl_generic(0x10, 0x3, 0x10)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x5, 0x0, 0x1, 0x697b}, 0xed7138c}, 0x2, 0x9)
recvmmsg$auto(0x4, 0x0, 0x7, 0xe, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000380)='/dev/radio23\x00', 0x60a240, 0x0)

48.702772828s ago: executing program 32 (id=329):
statmount$auto(0x0, &(0x7f00000006c0)={0x9, 0xfffffffe, 0x44f, 0xa, 0x5, 0x1007181, 0x8a0d, 0x1, 0x7, 0x7ff, 0x0, 0x26, 0x4, 0x200004000001, 0xfffffffffffffff5, 0xfffffffffffffffa, 0x0, 0x0, 0x7, 0x800, 0x8, 0xe, 0x22002, 0x200, 0x0, 0x84, 0x0, 0x400000, 0x0, 0x0, 0xb622, [0xfffffffffffffffe, 0xf, 0x1, 0x7, 0x1, 0x5, 0x0, 0x0, 0x0, 0x2b1, 0x0, 0x2, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x40000, 0xfffffffffffffffe, 0x1000000000, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x95]}, 0xc, 0x9)
r0 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r0, 0xfffffff7effffd0c, &(0x7f00000005c0)="34d5b55734ea376d280146b57b928b3dcca314a8ed4662555040c307675569a2af2548e3f6f26bb0071b52bc483664328eed98a02dc2b3e2615b943bd8ea9ab7bde8296e7c4a2f733de8939a582eb97dd14fb20826d79bd21fab9a3c6eadb57308f91c9c1c4430c46166d094a35732ab8e9754f45b8bd236f2a38827e721ad4515be0df05b136c6f1b9026b01b52e9ae8d332a8ce7e4d1315e9e535f0fe427879baaa1cda615cc2a3c8ce7ca9aec1391187931b957d03ebfe714e9ec8c489cf216ccb750bf0ec435ff2e2c5999767add17e9124882be4b438d32ac211ca55e3885f5c06a88dfe79c46ce7ed1613963101c8c603c01")
r1 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x20282, 0x0)
ioctl$auto_UI_DEV_SETUP(r1, 0x405c5503, &(0x7f00000000c0)={{0x9, 0xf2cf, 0x9, 0x80}, "6a034a07c7b8edb8fc3b39e32576f893fba86c9dd051a0094a3836d61c9100fefbbabea6ef9368c7996e841f3f1561d4992f726b0a6c36b0b2fd1678e816201cf562367fe6596824588a2e3d84ba165f", 0x4})
ioctl$auto_UI_DEV_CREATE(r1, 0x5501, 0x0)
r2 = accept$auto(0xffffffffffffffff, &(0x7f0000000080)=@qipcrtr={0x2a, 0xffffffffffffffff, 0x7fff}, &(0x7f0000000140)=0x8)
writev$auto(r2, &(0x7f0000000480)={&(0x7f00000004c0)="397892ed7d99d028e69766a3a350e1249f6a3e84e091125248eb4ad0d2d6e5ebe3dd119244426906a850f2a325b551e15a9df8a4158c5855b24a1ca06446aff7524aaff799876a8336c7d1d1755c3b28a0a5900f1cbac978701316a2b60abaa447623364ae2bb38c3ac08fcc9d5c62f697a191c8683c97f38e13ca87f77f709363f3855f3be03d0f2441565a4a81173c5b6a826b2213a8b665427c4cc9358993ee2478606c33a6f05c7015887e0d3d2ad1a281f623a016219ed4142c0ac01019f09de653eb47a3d2df7a8e98027ea14ddd1746", 0x35}, 0x9fe)
openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, 0x0, 0x2000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
socket(0x11, 0x3, 0x4)
r3 = socket(0x1d, 0x2, 0x7)
r4 = socket(0x2, 0xa, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000080)={'vcan0\x00'})
bind$auto(0x3, &(0x7f0000000040)=@vsock, 0x55ea)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000180)={'vcan0\x00', <r5=>0x0})
connect$auto(0x3, &(0x7f00000018c0)=@can={0x1d, r5}, 0x18)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
r6 = io_uring_setup$auto(0xa, 0x0)
mmap$auto(0xfffffffffffffffc, 0x4000000004, 0x4000000000df, 0x40eb1, r6, 0x300000000000)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x3ec0)
sendmmsg$auto(r0, 0x0, 0x29a2, 0x40000000)
socket$nl_generic(0x10, 0x3, 0x10)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x5, 0x0, 0x1, 0x697b}, 0xed7138c}, 0x2, 0x9)
recvmmsg$auto(0x4, 0x0, 0x7, 0xe, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000380)='/dev/radio23\x00', 0x60a240, 0x0)

7.908620224s ago: executing program 1 (id=529):
openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/dynamic_events\x00', 0x103, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000001040)='/proc/asound/card1/pcm1c/sub7/info\x00', 0x28102, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0x40000, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x1, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS3\x00', 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
r1 = socket(0x10, 0x2, 0x4)
close_range$auto(0x2, 0x8, 0x0)
r2 = socket(0x10, 0x2, 0xc)
sendmsg$auto_TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000003780)={0x0, 0x0, &(0x7f0000003740)={&(0x7f0000000000)=ANY=[@ANYBLOB="b1000000", @ANYRES16, @ANYBLOB="0100"], 0x20}, 0x1, 0x0, 0x0, 0x41}, 0x40080)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYRES8=r2, @ANYRES8=r0], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x4000050)
write$auto(r1, &(0x7f0000000000)='-\x00', 0xfdef) (fail_nth: 6)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)

7.893695563s ago: executing program 4 (id=530):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000880), r0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000940)={'batadv0\x00', <r3=>0x0})
sendmsg$auto_BATADV_CMD_GET_ORIGINATORS(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000900)={&(0x7f0000000280)={0x1c, r1, 0x3abba0b2ae0bab93, 0x70bd2c, 0x25dfdbfb, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r3}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc811}, 0x10)

7.704160297s ago: executing program 0 (id=531):
mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0xfffffffffffffffc, 0xfffffffffffffffd, 0xd4, 0x1, 0x6, 0x0, 0xffffffffffffff7f, 0x368e, 0x2, {0xffffffff, 0x20000000010000}, 0x5, 0x6, 0xfffffffffffffffd, 0x7, 0x0, 0x9, 0x81, 0xffffffffffff628e, 0xa747, 0xdead, 0x804})
ppoll$auto(&(0x7f0000000340)={<r0=>0xffffffffffffffff, 0x6, 0x6}, 0xffffff3a, &(0x7f0000000380)={0xffff, 0x3}, &(0x7f00000003c0)={0x7}, 0x8)
r1 = signalfd4$auto(0xffffffffffffffff, &(0x7f0000000440), 0xd, 0x5)
kcmp$auto(0x0, 0x0, 0x8000, r0, r1)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)=ANY=[], 0x78}, 0x1, 0x0, 0x0, 0x40000}, 0x400c004)
syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000180), 0xffffffffffffffff)
mmap$auto(0x0, 0x20007, 0xe2, 0xeb0, 0x405, 0x8000)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/card0/oss_mixer\x00', 0x121002, 0x0)
r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/bus/input/handlers\x00', 0x40380, 0x0)
pread64$auto(r4, 0x0, 0x10001, 0x830)
mmap$auto(0x0, 0x2020009, 0xaa, 0xeb1, 0xffffffffffffffff, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = waitid$auto_P_ALL(0x0, 0x2, &(0x7f0000000280)={@_si_pad}, 0x2, &(0x7f00000005c0)={{0x0, 0x100000001}, {0xfffffffffffffff8, 0x8}, 0x328, 0x47, 0xc, 0x8001, 0xfffffffffffffffe, 0x9, 0x101, 0x7fffffff, 0x4, 0x9, 0x5, 0x7fffffff, 0x18b, 0x3d0})
bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={r5, 0x21e9, 0x1ff, 0x6, 0x2, 0xb, 0x2e, 0x0, 0x3}, 0x6f4)
bpf$auto(0x3, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xc)
write$auto(r3, 0x0, 0x100)
openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, 0x0, 0x48402, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
close_range$auto(0x2, 0x8, 0x0)
syz_genetlink_get_family_id$auto_nl802154(0x0, 0xffffffffffffffff)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff)

7.510781908s ago: executing program 1 (id=533):
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
ioctl$auto_TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptya5\x00', 0x62c00, 0x0)
close_range$auto(0x2, 0xa, 0x0)
openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x101001, 0x0)
msgget$auto(0x0, 0x2)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x109001, 0x0)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000500)='/dev/tty34\x00', 0x2200, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x4, 0x948b, 0x3, 0x15f4da07, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x8]}, 0x0)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
mincore$auto(0x1000, 0x8001, 0x0)
unshare$auto(0x20000080)
connect$auto(0x3, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2710}, 0x10)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
munmap$auto(0x20001000, 0x7fb3)
ptrace$auto(0x10, 0x10000000000001, 0xffffffffffffff56, 0x868f)
accept4$auto(0xffffffffffffffff, &(0x7f0000000180)=@l2tp={0x2, 0x0, @remote, 0x3}, &(0x7f00000001c0)=0x5, 0x8001)
sendmsg$auto(0xffffffffffffffff, 0x0, 0xfff)
capset$auto(0x0, 0x0)
open(0x0, 0x22240, 0x154)
select$auto(0x9, &(0x7f00000000c0)={[0xeeda, 0x5, 0x100000003, 0x9, 0x6, 0x1ff, 0x100000000, 0x3, 0x4, 0x401, 0x0, 0x8, 0x6, 0x9a8c, 0x9, 0x10001]}, &(0x7f0000000200)={[0x8, 0x8000000000000000, 0x2, 0xb, 0x1, 0x9, 0x0, 0x7fff, 0xa, 0x18f, 0xfffffffffffffff9, 0x3, 0x5a4, 0x1000, 0x80000001, 0x1]}, 0x0, &(0x7f0000000280)={0x10006, 0xcc})

7.408764484s ago: executing program 4 (id=534):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000000)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
fstat$auto(0xffffffffffffffff, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
write$auto(0x3, 0x0, 0x5c8)
mmap$auto(0x0, 0x5810, 0xffb, 0x8000000008011, 0x3, 0x0)
mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x2, 0x8000)
unshare$auto(0x40000080)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_IPVS_CMD_GET_DAEMON(r0, 0x0, 0x40000)
recvmmsg$auto(r0, &(0x7f0000000240)={{&(0x7f0000000080)="2a733f0417e244e6d6b0e6a45edce6ea2085a58659a24a3e94076aa83c98265a877f4be3000c7e44b67d2adbdb9bf99df85180bf703306188aa45325be8b47e2b6db8fec07fe7dd518c7aab2613832f143e85e3476094c579bfd7507cfe6b3a538e1bf81c19c86cf014fe6cc9921c14d73525d80a872000ba144d5d5bb1a2ce78a697652680e2a68b56e90a1a3b3d5840f923e2b49fac74947c47325ab68b2f32e1fa8d9c2b530", 0x1, &(0x7f0000000180)={&(0x7f0000000140)="8b04128c048a3a318c4cf91bfe6eddaeadbca8a9060e", 0x9}, 0x80, &(0x7f00000001c0)="d9c3e5c25e6d8ab2cf5c7a153bbba853b78d8bcbb7a0c04af24f3c4ed8506f66fa1e268b3e30b34a62ea7e2eb104b56f0be61e63d4be7377c520eee5aa97c97edea6858930af0a20c1c35bd494ab40b3d1", 0x8000, 0x8}, 0x2e}, 0x200, 0x6, 0x0)
r1 = openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, 0x0, 0x80001, 0x0)
write$auto(r1, 0x0, 0x9)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000600), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_MODULE_FW_FLASH_ACT(r2, &(0x7f00000006c0)={0x0, 0x300, &(0x7f0000000680)={&(0x7f0000000e80)={0x2c, r3, 0x1, 0x70bd27, 0x25dfdbfd, {}, [@ETHTOOL_A_MODULE_FW_FLASH_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}]}, 0x2c}}, 0x400c080)

7.070406684s ago: executing program 2 (id=536):
mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x8000) (async)
r0 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/security/tomoyo/version\x00', 0x2c4902, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async)
write$auto(r0, &(0x7f0000000040)='{\x00', 0xfff)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) (async)
openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/snd/pcmC0D0p\x00', 0xa00, 0x0) (async)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ram4\x00', 0xdd01, 0x0) (async)
open(0x0, 0x161342, 0x100)
msync$auto(0x1ffff000, 0x1800000ff010000, 0x400000004) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
socketpair$auto(0x1e, 0x5, 0xfffffffc, 0x0)
socket(0xa, 0x1, 0x84) (async)
bind$auto(r1, &(0x7f0000000100)=@in={0x2, 0x4e23, @local}, 0x8) (async)
connect$auto(0x3, &(0x7f0000000080)=@rc={0x1f, @none}, 0x54) (async)
setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd) (async)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) (async)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) (async)
kill$auto(0x0, 0x3) (async)
io_uring_setup$auto(0x6, 0x0) (async)
io_uring_register$auto(0x2, 0x11, 0x0, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000140), 0x2e2582, 0x0) (async)
socket(0xa, 0x3, 0x3c)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/tty48\x00', 0x800, 0x0) (async)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) (async)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r4=>0x0})
sendmsg$auto_NL80211_CMD_CHANGE_NAN_CONFIG(r3, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000400)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="010025bd7000fedbdf25530e000008000300", @ANYRES32=r4], 0x1c}, 0x1, 0x0, 0x0, 0x108d0}, 0x4000090)

6.799479156s ago: executing program 0 (id=537):
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_nvmf_dev_fops_fabrics(0xffffffffffffff9c, &(0x7f0000000180), 0x90203, 0x0)
write$auto_nvmf_dev_fops_fabrics(r0, 0x0, 0x0)
openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/fb0\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x6, 0x800, 0x8)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer\x00', 0x2, 0x0)
r1 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0)
write$auto(r1, &(0x7f0000000040)='nbd\x00', 0x4) (fail_nth: 4)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/rpc/auth.rpcsec.context/channel\x00', 0x101002, 0x0)
ioctl$auto(0x3, 0x541b, 0xfffffffffffff4e0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x9, 0x3, 0x8012, 0x3, 0x8000)
io_uring_register$auto(0x2, 0xe, 0x0, 0x20)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001080)='/sys/kernel/mm/transparent_hugepage/hugepages-32kB/stats/nr_anon_partially_mapped\x00', 0x80040, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000040)=""/225, 0xe1)
write$auto(r2, &(0x7f00000002c0)='/d-:\xe7J\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xea>=\xe8hUs\xf3N\x10$#_\x01\xdc\x16<\xda>ui\x9eS;\n\xeaG@\xf9\\r\xbc\x06\xfa\x1b\x8d \x9ebd\x10\xea#\xcb(o\x9ei\x89\x84\xa7\x85\xad\xe1\xe0\xf19\xfa4\xb5\ad\x84\f\xc9\x12a3\xb9~\x87\x1c\xd1\xf4V\x06\xa7\x00\x01D\x1eo\xfd\x03\xbe\xd8\x05H|+wsSs\xf9\x11\xc9\x13x\xe0\x8e\x109J\xe7\x9f\x99\x82G(\xabH\xee\xaaPs_\xc3\x00'/157, 0x1eb0800)
mmap$auto(0x0, 0x0, 0x400000dc, 0x937e, 0x2, 0x8000)
prctl$auto_PR_PPC_SET_DEXCR(0x49, 0x8, 0x0, 0x3, 0x4)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x8000003, 0x7)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
semtimedop$auto(0x7, 0x0, 0x3, 0x0)
socket(0xb, 0x80000, 0x5)
mmap$auto(0x0, 0xdb81, 0x2, 0x40eb1, 0xffffffffffffffff, 0x300000000000)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)

6.252481823s ago: executing program 2 (id=538):
mmap$auto(0x0, 0x0, 0x41, 0x9b72, 0x2, 0x3)
r0 = openat$auto_nvmf_dev_fops_fabrics(0xffffffffffffff9c, &(0x7f0000000180), 0x90203, 0x0)
write$auto_nvmf_dev_fops_fabrics(r0, 0x0, 0x0)
openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/fb0\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x6, 0x800, 0x8)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer\x00', 0x2, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = socket(0x2, 0x80802, 0x0)
setsockopt$auto(r1, 0x11, 0x65, 0x0, 0x8)
write$auto(0xffffffffffffffff, &(0x7f0000000040)='nbd\x00', 0x4)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/rpc/auth.rpcsec.context/channel\x00', 0x101002, 0x0)
ioctl$auto(0x3, 0x541b, 0xfffffffffffff4e0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x9, 0x3, 0x8012, 0x3, 0x8000)
io_uring_register$auto(0x2, 0xe, 0x0, 0x20)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001080)='/sys/kernel/mm/transparent_hugepage/hugepages-32kB/stats/nr_anon_partially_mapped\x00', 0x80040, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000040)=""/225, 0xe1)
write$auto(r2, &(0x7f00000002c0)='/d-:\xe7J\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xea>=\xe8hUs\xf3N\x10$#_\x01\xdc\x16<\xda>ui\x9eS;\n\xeaG@\xf9\\r\xbc\x06\xfa\x1b\x8d \x9ebd\x10\xea#\xcb(o\x9ei\x89\x84\xa7\x85\xad\xe1\xe0\xf19\xfa4\xb5\ad\x84\f\xc9\x12a3\xb9~\x87\x1c\xd1\xf4V\x06\xa7\x00\x01D\x1eo\xfd\x03\xbe\xd8\x05H|+wsSs\xf9\x11\xc9\x13x\xe0\x8e\x109J\xe7\x9f\x99\x82G(\xabH\xee\xaaPs_\xc3\x00'/157, 0x1eb0800)
mmap$auto(0x0, 0x0, 0x400000dc, 0x937e, 0x2, 0x8000)
prctl$auto_PR_PPC_SET_DEXCR(0x49, 0x8, 0x0, 0x3, 0x4)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x8000003, 0x7)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
semtimedop$auto(0x7, 0x0, 0x3, 0x0)
socket(0xb, 0x80000, 0x5)
mmap$auto(0x0, 0xdb81, 0x2, 0x40eb1, 0xffffffffffffffff, 0x300000000000)

6.006308519s ago: executing program 4 (id=539):
read$auto_stat_fops_per_vm_kvm_main(0xffffffffffffffff, 0x0, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x2381, 0x0)
mmap$auto(0x0, 0x810004, 0xfff, 0x8000000008012, 0x3, 0x8000)
write$auto(0x3, 0x0, 0xfffffdef)
connect$auto(0x3, &(0x7f0000000240)=@generic={0xa, "000000000000000000c3f546d200"}, 0x55)
set_tid_address$auto(0x0)
r0 = open(0x0, 0x800, 0x8a)
bpf$auto(0x10, &(0x7f00000000c0)=@link_detach={r0}, 0x40)
mbind$auto(0x0, 0x4, 0x5, 0x0, 0x6, 0x2)
close_range$auto(0x2, 0x8, 0x0)
madvise$auto(0x1ffff000, 0x7, 0x100000000)
shmget$auto(0x6, 0x7, 0x6)
mknod$auto(&(0x7f0000000080)='u[,&*}\x00\a\x00\x00\x00?\xa4\x1fN\xa1~5Z\xc7\r\f}M4\xa8m\xe6\x19[11\xab\xff-E\xac9(\xb4O\xa0t4h\x9f-gn\x1f\x01\x00\x00\x00\x00\x00\x00\x00\xaeR\x81\r_\x0e\x19\b\x85\bvv(e\xdax)\t\x15\xf6\xc8\xee\x04\x16\xc1\x9a!\x87I7\x8cD&zg\xb0a\xab|E\xde\x14\xee[\xc8\xc0\xa8Nh\x0f\xa3\xdbT\xb3\xb8\xd2F\xa0\xc4]\xaf\xc43&\xe4\x01\x05\xd2\x15\xf8\xf1!\x9d\x92\xbbH\xd3^aD\x87\xd8\xe7\xd2\xf3[r\xc5S&}D[\x97\xf1\xd9\xf8Y\x1c\x03\x84\xb4\xd7\x16\x19\xe5\x17\x10\xd8fcG:\xfbY8\x17w\x98?\x03@\xe5\x02\x05\x93h\xb9\xf7\xef\x84\x8aGlN\a\x1e\x00\x00\x00\x00\x00\x00\x00\xf1p\xeb\xe9(%\x89\xef\x85\xdfr\xce\x00\x00\x00\x00\xff\x00\xa2M\'d\x12\x1c\x12\xca\xa5_\x8d\xdf\xc5\x8d\x19?\xfc~\xb3X\x14\xa7\xa9M\x87\xfcTW\x1bR\xbci\x8d\x8aNEO\xb3~~\xa8\xa6\x894\x80;s\xb7\xa3V\x1b\x14|\x9e\xd4\x05\x85\x0f!\xab-E\'\x97Y\xb7\xe8fMv_\xf8\xa0S\xef\xb7\b\xe7!T.g\x92\x87\t$\x06\xa4\xfb\x83\x8c\x17^\x82\xe7\xd3\xf6q\x1a\xa0\xf82[W\x90\xdd\xe3\xde\xa9\xde\x94`-\x9a\x1e}\xebO*\xb85,v.\xfc5\xba?vlt\xda%\x06a\x15I\x1f\xe3\x05+\x810T2\xf9\x9b\xc7\xd1<w\xd3:\x835\xac\r\x06\xc9\xc1HG\x1c\xd4J\x8aZ%+\xe6/~\xd6\xe1[+Z\xb1\x8d\xc5\x9b\xcfhb\'\x80\xeb7%>\t\x03\xf2\x8d\x8a\x90\xb54\bH<9\xf1\x91 D\x85g,\xaa\xca\xcd\xd5\xcb\x9a\xb1j\xf2F\xce\x14\x92\xf9\xd7\xec\xc5\x1e\x8aq2\xce\x881f\xd7\xd4\x9e\xf6\xb6P\x01\xe8T\xb5X\xb9d-I\xd6\x91\xc3\xe2\x88S\x82l=\x02t$p\t\x8cY\x06\r\x83\xb0\x86\xc6\x84\x1c\xce\xb6\xf0\xdfC\x9fj<\xfe\xa4\x1f\x82L\xe4\x13+H\x00\x00\x00\x00\x00\x00\x00\x01M\x16\xa0\xbeB6\xfb\xa2-\x17\x93Q\x9fKusl5\xa2$M\xb4\x18\x1db\xf3\xce\x8c\xe5Rna\xd5\xbbQ\xc7\xa7+\vH\xc1l\x1bIv\xe8_\x00', 0x1081, 0x8)
acct$auto(&(0x7f0000000480)='u[,&*}\x00\a\x00\x00\x00?\xa4\x1fN\xa1~5Z\xc7\r\f}M4\xa8m\xe6\x19[11\xab\xff-E\xac9(\xb4O\xa0t4h\x9f-gn\x1f\x0f\x18\xc5\x82-s\x83\xe6\xaeR\x81\r_\x0e\x19\x12\x85\bvf(e\xday)\t\x15\xf6\xc8\xee\x04\x16\xc1\x9a!\x87I7\x8cD&zg\xb0a\xab|E\xde\x14\xee[\xc8\xc0\xa8Nh\x0f\xa3\xdbT\xb3\xb8\xd2F\xa0\xc4]\xaf\xc43&\xe4\x01\x05\xd2\x15\xf8\xf1!\x9d\x92\xbbHL9aD\xb4\x80\xed\xba>\"\xb6\x7f\xa3f\x1d\a\xa1\x87\x84uA\xd8\xe7\xd2\xf3[r\xc5S&}D[\x97\xf1\xd9\xf8Y\x03\x84\xb4\xd7\x16\x19\xe5\x17\x10\xd8fcG:\xfbY8\x17w\x98?\x03@\xe5\x02\x05\x93h\xb9\xf7\xef\x84\x8aGlN\a\x1e')
r1 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, 0x0, 0x1000, 0x0)
r2 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$auto_VHOST_SET_OWNER(r2, 0xaf01, 0x5)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
ioctl$auto(r2, 0x1, r1)
open(&(0x7f0000000840)='u[,&*}\x00\a\x00\x00\x00?\xa4\x1fN\xa1~5Z\xc7\r\f}M4\xa8m\xe6\x19[11\xab\xff-E\xac9(\xb4O\xa0t4h\x9f-gn\x1f\x01\x00\x00\x00\x00\x00\x00\x00\xaeR\x81\r_\x0e\x19\b\x85\bvv(e\xdax)\t\x15\xf6\xc8\xee\x04\x16\xc1\x9a!\x87I7\x8cD&zg\xb0a\xab|E\xde\x14\xee[\xc8\xc0\xa8Nh\x0f\xa3\xdbT\xb3\xb8\xd2F\xa0\xc4]\xaf\xc43&\xe4\x01\x05\xd2\x15\xf8\xf1!\x9d\x92\xbbH\xd3^aD\x87\xd8\xe7\xd2\xf3[r\xc5S&}D[\x97\xf1\xd9\xf8Y\x1c\x03\x84\xb4\xd7\x16\x19\xe5\x17\x10\xd8fcG:\xfbY8\x17w\x98?\x03@\xe5\x02\x05\x93h\xb9\xf7\xef\x84\x8aGlN\a\x1e\x00\x00\x00\x00\x00\x00\x00\xf1p\xeb\xe9(%\x89\xef\x85\xdfr\xce\x00\x00\x00\x00\xff\x00\xa2M\'d\x12\x1c\x12\xca\xa5_\x8d\xdf\xc5\x8d\x19?\xfc~\xb3X\x14\xa7\xa9M\x87\xfcTW\x1bR\xbci\x8d\x8aNEO\xb3~~\xa8\xa6\x894\x80;s\xb7\xa3V\x1b\x14|\x9e\xd4\x05\x85\x0f!\xab-E\'\x97Y\xb7\xe8fMv_\xf8\xa0S\xef\xb7\b\xe7!T.g\x92\x87\t$\x06\xa4\xfb\x83\x8c\x17^\x82\xe7\xd3\xf6q\x1a\xa0\xf82[W\x90\xdd\xe3\xde\xa9\xde\x94`-\x9a\x1e}\xebO*\xb85,v.\xfc5\xba?vlt\xda%\x06a\x15I\x1f\xe3\x05+\x810T2\xf9\x9b\xc7\xd1<w\xd3:\x835\xac\r\x06\xc9\xc1HG\x1c\xd4J\x8aZ%+\xe6/~\xd6\xe1[+Z\xb1\x8d\xc5\x9b\xcfhb\'\x80\xeb7%>\t\x03\xf2\x8d\x8a\x90\xb54\bH<9\xf1\x91 D\x85g,\xaa\xca\xcd\xd5\xcb\x9a\xb1j\xf2F\xce\x14\x92\xf9\xd7\xec\xc5\x1e\x8aq2\xce\x881f\xd7\xd4\x9e\xf6\xb6P\x01\xe8T\xb5X\xb9d-I\xd6\x91\xc3\xe2\x88S\x82l=\x02t$p\t\x8cY\x06\r\x83\xb0\x86\xc6\x84\x1c\xce\xb6\xf0\xdfC\x9fj<\xfe\xa4\x1f\x82L\xe4\x13+H\x00\x00\x00\x00\x00\x00\x00\x01M\x16\xa0\xbeB6\xfb\xa2-\x17\x93Q\x9fKusl5\xa2$M\xb4\x18\x1db\xf3\xce\x8c\xe5Rna\xd5\xbbQ\xc7\xa7+\vH\xc1l\x1bIv\xe8_\x00', 0x22240, 0x0)
openat$auto_uprobe_profile_ops_trace_uprobe(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/tracing/uprobe_profile\x00', 0x0, 0x0)

4.748874212s ago: executing program 1 (id=540):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x2006, 0x4)
r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0)
mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x8e051, r0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_OVS_DP_CMD_NEW(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)={0x3c, r2, 0x1, 0x70bd26, 0x25dfdbfc, {}, [@OVS_DP_ATTR_MASKS_CACHE_SIZE={0x8, 0x7, 0x9b}, @OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x9}, @OVS_DP_ATTR_MASKS_CACHE_SIZE={0x8, 0x7, 0x400004}, @OVS_DP_ATTR_IFINDEX={0x8}, @OVS_DP_ATTR_USER_FEATURES={0x8, 0x5, 0x5}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20000800}, 0x2000c080)
bpf$auto(0xd, 0x0, 0x6f5)
openat$nci(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
mmap$auto(0x4, 0x2020009, 0xfffffffffffffff8, 0xeb1, r0, 0x3)
openat$auto_evm_key_ops_evm_secfs(0xffffffffffffff9c, &(0x7f0000000100), 0x8400, 0x0)
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x480, 0x0)
mprotect$auto(0x0, 0x806121, 0x6)
r3 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x418000, 0x0)
ioctl$auto_PAGEMAP_SCAN(r3, 0xc0606610, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
init_module$auto(0x0, 0xffff9, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x8000000000000000, 0x15)
madvise$auto(0x2000000, 0x2000000080000001, 0x3)
capset$auto(0x0, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
keyctl$auto(0x2000000000000017, 0x3ff, 0x2a, 0x0, 0x4)
keyctl$auto(0x2000000000000017, 0x3ff, 0x0, 0x0, 0x3)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x80, 0x0)
move_mount$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x91e4)
mmap$auto(0x0, 0x8e1, 0x4000000000df, 0x4000fe, 0x402, 0x2)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)

4.63385052s ago: executing program 4 (id=541):
mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xffffffffffffffff, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x4, 0x300000000000)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/tracing/trace_pipe\x00', 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000000)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
fstat$auto(0xffffffffffffffff, 0x0)
write$auto(0x3, 0x0, 0x5c8)
mmap$auto(0x0, 0x5810, 0xffb, 0x8000000008011, 0x3, 0x0)
mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x2, 0x8000)
unshare$auto(0x40000080)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000040), 0xffffffffffffffff)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
ioctl$auto(r3, 0x4b64, 0x8000000000038)
sendmsg$auto_IPVS_CMD_GET_DAEMON(r2, 0x0, 0x40000)
recvmmsg$auto(r2, &(0x7f0000000240)={{&(0x7f0000000080)="2a733f0417e244e6d6b0e6a45edce6ea2085a58659a24a3e94076aa83c98265a877f4be3000c7e44b67d2adbdb9bf99df85180bf703306188aa45325be8b47e2b6db8fec07fe7dd518c7aab2613832f143e85e3476094c579bfd7507cfe6b3a538e1bf81c19c86cf014fe6cc9921c14d73525d80a872000ba144d5d5bb1a2ce78a697652680e2a68b56e90a1a3b3d5840f923e2b49fac74947c47325ab68b2f32e1fa8d9c2b530", 0x1, &(0x7f0000000180)={&(0x7f0000000140)="8b04128c048a3a318c4cf91bfe6eddaeadbca8a9060e", 0x9}, 0x80, &(0x7f00000001c0)="d9c3e5c25e6d8ab2cf5c7a153bbba853b78d8bcbb7a0c04af24f3c4ed8506f66fa1e268b3e30b34a62ea7e2eb104b56f0be61e63d4be7377c520eee5aa97c97edea6858930af0a20c1c35bd494ab40b3d1", 0x8000, 0x8}, 0x2e}, 0x200, 0x6, 0x0)
r4 = openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, 0x0, 0x80001, 0x0)
write$auto(r4, 0x0, 0x9)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000600), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_MODULE_FW_FLASH_ACT(r5, &(0x7f00000006c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000280)=ANY=[@ANYRES32=r1, @ANYRES64, @ANYRESHEX=r0, @ANYRES32=r2], 0x2c}, 0x1, 0x0, 0x0, 0x24008041}, 0x86dd7520dabe266f)
sendmsg$auto_NL80211_CMD_TDLS_CHANNEL_SWITCH(0xffffffffffffffff, 0x0, 0x4000)
fcntl$auto_F_WRLCK(0xffffffffffffffff, 0x5, 0x1)
mmap$auto(0x0, 0x200000002000b, 0xdf, 0xfdd8, 0xffffffffffffffff, 0x83fc)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4)
mincore$auto(0x0, 0x10000, 0x0)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)

3.606729089s ago: executing program 1 (id=542):
r0 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$auto(r0, 0x4004556e, 0x1f)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0xfffffffffffffffe, 0x10400005, 0xfffffffffffffffe, 0x4f1, 0x2, 0x8000)
unshare$auto(0x40000080)
r2 = openat$auto_tracing_mark_fops_trace(0xffffffffffffff9c, 0x0, 0x480, 0x0)
ioperm$auto(0x90d5, 0xc, 0x2)
r3 = syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000000080), r1)
sendmsg$auto_SMC_PNETID_ADD(r2, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x2c, r3, 0x10, 0x70bd25, 0x25dfdbfd, {}, [@SMC_PNETID_NAME={0x5, 0x1, '\x00'}, @SMC_PNETID_IBNAME={0xf, 0x3, '/&):!+({}t\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8000}, 0x4c884)
close_range$auto(0x2, 0x8, 0x0)
write$auto(0x3, 0x0, 0x1)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/cifs/Stats\x00', 0x28102, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, 0x0, 0x2dc08f24db163610, 0x0)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x1, 0x6, 0x0, 0x1, 0x368a, 0x2, {0x100000000, 0x10000}, 0x5, 0x8, 0xfffffffffffffffd, 0x1008000, 0x0, 0x9, 0x81, 0xdfffffffffff628e, 0x6, 0xdeb1, 0x808})
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x1, 0x0)
write$auto(r4, &(0x7f0000000400)='/dev/audio1\x00', 0xa3db)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS3\x00', 0x0, 0x0)
getrandom$auto(0x0, 0x6000000, 0x3)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
r5 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/pagetypeinfo\x00', 0x43102, 0x0)
read$auto_proc_iter_file_ops_compat_inode(r5, &(0x7f00000007c0)=""/153, 0x99)
setsockopt$auto(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x56b)
mmap$auto(0x0, 0x40009, 0x36, 0x9b72, 0x7, 0x28000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x2003f0, 0x18)

3.092650925s ago: executing program 2 (id=543):
keyctl$auto(0xe, 0x2, 0x76f, 0x9, 0xf13)
mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0x5, 0x0)
fanotify_init$auto(0x5, 0x2000000000002)
inotify_init1$auto(0x3000000000000)
socket(0x15, 0x5, 0x0)
getsockopt$auto(0x2, 0x114, 0x2711, 0xfffffffffffffffc, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/firmware/devicetree/base/name\x00', 0x8000, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
read$auto(r0, 0x0, 0x9)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC2\x00', 0x0, 0x0)
unshare$auto(0x40000080)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/thread-self/net/rpc/nfs4.nametoid/channel\x00', 0x8f3b7a51b8162d21, 0x0)
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
socket(0x11, 0x2, 0x9)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x5, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
syz_open_procfs$namespace(0x0, 0x0)
socketpair$auto(0x3, 0x3, 0x8, &(0x7f00000001c0)=0xfffffffb)
unshare$auto(0x40000080)

2.700415361s ago: executing program 0 (id=544):
write$auto(0xca, 0x0, 0x1ff)
mmap$auto(0x9, 0x20007, 0xffffffffffff7fff, 0xeb1, 0xfffffffffffffffd, 0x40000007ffe)
ioctl$auto_USB_RAW_IOCTL_EP0_STALL(0xffffffffffffffff, 0x550c, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
mmap$auto(0x0, 0x20009, 0x4000000000db, 0xeb1, 0x400, 0x8000)
rt_sigaction$auto(0x11, &(0x7f0000000040)={0x0, 0x100000001, 0x0, {0x7}}, 0x0, 0x8)
fanotify_init$auto(0x200, 0x1)
open(0x0, 0x4140, 0x0)
socketpair$auto(0x1e, 0x5, 0x200000, 0x0)
r0 = openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/dynamic_events\x00', 0x542, 0x0)
write$auto_dynamic_events_ops_trace_dynevent(r0, &(0x7f0000000140)="65507307ff6587a72565e7720ef9769f2059", 0x12)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x55)
socket(0x2, 0x3, 0xa)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8)
connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55)
recvmmsg$auto(0xffffffffffffffff, &(0x7f0000000100)={{0x0, 0xbb, 0x0, 0x8, &(0x7f0000000040), 0x81, 0x9}, 0xfffffffb}, 0x5, 0xffff, 0x0)
sendmsg$auto_NL802154_CMD_DEL_INTERFACE(0xffffffffffffffff, &(0x7f0000000000)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x20050001}, 0x80)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000140)=@in={0x2, 0x3, @empty}, 0x6a)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/kernel/threads-max\x00', 0x40001, 0x0)
write$auto_proc_sys_file_operations_proc_sysctl(r1, 0x0, 0xfe5c)
mmap$auto(0x0, 0x2000d, 0x4000000200e3, 0xeb1, 0x404, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x21}, 0x1, 0x0, 0x0, 0x28044810}, 0x800)
sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, 0x0, 0x4000)
bpf$auto(0x3, &(0x7f00000001c0)=@enable_stats={0x2}, 0x2)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54)

2.067528545s ago: executing program 0 (id=545):
mlockall$auto(0x7)
mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000)
mmap$auto(0x0, 0x2000d, 0x4000000000df, 0xeb1, 0x404, 0x8000)
close_range$auto(0x2, 0x8000, 0x0)
socket(0x2, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r1)
ioctl$auto_KVM_CREATE_VM(r0, 0x4048aecb, 0x0)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0)
mmap$auto(0x0, 0x2000d, 0x4080000200df, 0xeb1, 0x404, 0x8000)
read$auto(r2, 0x0, 0x20)
sysfs$auto(0x2, 0x23, 0x0)
openat$auto_cachefiles_daemon_fops_internal(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r3 = io_uring_setup$auto(0x6, 0x0)
read$auto_tun_fops_tun(r3, &(0x7f0000001900)=""/4096, 0x1000)
ioctl$auto_NS_GET_PARENT(r3, 0xb702, 0x0)
madvise$auto(0x0, 0x2000040080000004, 0xe)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_DEL_RADIO(r4, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)={0x268, r5, 0x200, 0x70bd2c, 0x25dfdbfd, {}, [@HWSIM_ATTR_REG_HINT_ALPHA2={0x2c, 0xb, '/sys/devices/virtual/block/ram9/diskseq\x00'}, @HWSIM_ATTR_FREQ={0x8, 0x13, 0xffff8f7d}, @HWSIM_ATTR_ADDR_RECEIVER={0xf2, 0x1, "bfa1dea732259a487281acfd86eb955addf6b1e77dab3b6764b0db72f3fb193aeb8d773babee1fb73e9efd61d5544d051221e887fcd9c1e3dfff080371eef914ecc3a2a85e53bea13d14cf23dd1dbb231ac71ba80913819a5317ce4dffc122937983cb1ee725e951665107d64e780261c4f8dae8c3baab0b4904e615f0ecac6cd21ac9a808c18e4e9debda4ebbf7113a4a69e85ee0260537ab25390bc9ee2e30f0dec7009c177ee691651c8550ee245f6bf6a05c07f663c70d3c7559c582a91b8b137e9cef620eeccc637dd9de362a2f58e546820861b59c34e525b35f5f000746b6db01bd409dc1f1e332e1571e"}, @HWSIM_ATTR_ADDR_TRANSMITTER={0x103, 0x2, "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"}, @HWSIM_ATTR_CIPHER_SUPPORT={0x27, 0x18, "5ed5dd4fc028cbe37d70dda43d66e7cb1c39d5b20b5588769f7d5040f75a5b42f81d8f"}]}, 0x268}, 0x1, 0x0, 0x0, 0x10}, 0x44050)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
socket(0x11, 0x80003, 0x81)
socket(0x11, 0x80003, 0x300)

1.614249162s ago: executing program 0 (id=546):
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x26}}, 0x71)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x4, 0xb}, 0x800009}, 0x9, 0x20000100)
r1 = io_uring_setup$auto(0x1, 0x0)
socket(0x1f, 0x2, 0x200000)
r2 = socket(0x2, 0x1, 0x106)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000280)={'geneve1\x00'})
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_PEER_MEASUREMENT_START(r1, 0x0, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x1, 0x0, 0xfffffffc, 0x0)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0xc7f16bff2a10ba01, 0x0)
socketpair$auto(0x4, 0x1, 0x20000, 0x0)
ioctl$auto_TIOCVHANGUP2(r3, 0x5437, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
write$auto(0x3, 0x0, 0xfffffdef)
sendmsg$auto_IPVS_CMD_GET_DAEMON(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000440)={0x14, 0x0, 0x4, 0x70bd2a, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x20048080}, 0x40014)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
r4 = io_uring_setup$auto(0x6, 0x0)
fcntl$auto_F_GETOWN(r4, 0x9, 0xf2c7)
getpgrp(0xffffffffffffffff)
r5 = setfsuid$auto(0x0)
setuid$auto(r5)

1.597608169s ago: executing program 4 (id=547):
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/smaps_rollup\x00', 0x40000, 0x0)
bpf$auto(0x6, 0xffffffffffffffff, 0x0)
mmap$auto(0x0, 0x400008, 0xdb, 0x9b75, 0x2, 0x7ffd)
r0 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
mmap$auto(0x4, 0x4020009, 0xdb, 0xeb1, r0, 0x8000)
socket(0x2b, 0x2, 0x1)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f00000000c0)=""/17, 0x11)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-touch0\x00', 0xe0800, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0x10001, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x1000, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0)
socketpair$auto(0xfff, 0x5, 0x10, 0x0)
ioprio_set$auto(0x3, 0x0, 0x4b34)
socket(0x15, 0x5, 0x0)
madvise$auto(0x4, 0x7, 0x100000000)
madvise$auto(0x4, 0x7ffffffffffffffc, 0xa)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x8000000000008000)
mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000)
sysfs$auto(0x7fff, 0x1, 0xfffffffffffffffc)
fsopen$auto(0x0, 0x1)
syz_genetlink_get_family_id$auto_macsec(0x0, 0xffffffffffffffff)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2)
clone$auto(0x3, 0x2, 0xffffffffffffffff, 0xfffffffffffffffc, 0x9)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
flock$auto(0x6, 0x1)

1.307847483s ago: executing program 2 (id=548):
prctl$auto(0x59616d61, 0xdaffffff, 0x8, 0x3, 0x0)

1.104387787s ago: executing program 2 (id=549):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_drm_edid_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/debug/dri/vkms/Writeback-1/edid_override\x00', 0x200000, 0x0)
write$auto_drm_edid_fops_drm_debugfs(r0, &(0x7f0000000280)="25b5afdf0c3c9f5d3a177e3aceec103a1e1ce3646ce2400933c4285b5389ed4cbc0095a4913a63c55304226eab570943c507e883e30b7d19e8f496ad632dcbf58184f197289a6813ca7403432d97d754fe63a29ac218a04481c5fcb14e1a841fdfc973630ed2c0595ceae1cd7224c86bbcceb5d4e35bee2f0605f0426d995aa2", 0x80)
r1 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000080), 0x48180, 0x0)
r2 = bpf$auto(0x18, &(0x7f0000000040)=@link_create={@prog_fd, @target_fd, 0x7fff, 0x40000, @kprobe_multi={0x6, 0x80000001, 0xb70, 0x733, 0x4}}, 0x92)
sendmsg$auto_NL80211_CMD_SET_PMKSA(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x440d1}, 0x4084)
syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket(0x11, 0x3, 0x9)
r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x103e81, 0x0)
ioctl$auto_TIOCVHANGUP2(r4, 0x5437, 0x0)
close_range$auto(0x2, 0x8, 0x0)
capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x4d})
sendmmsg$auto(r3, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5aa, &(0x7f0000000100)={&(0x7f0000000200), 0x49}, 0x4, &(0x7f0000000180), 0x5, 0x1000}, 0x5}, 0x2, 0x100)
flock$auto(r2, 0x1)
unshare$auto(0x20000080)
r5 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000300), 0x10002, 0x0)
poll$auto(&(0x7f0000000180)={<r6=>r5, 0xfff7, 0x9816}, 0x7f, 0x9)
setsockopt$auto_SO_PROTOCOL(r2, 0x1, 0x26, &(0x7f0000000440)='(\x00l\xd9\x13hYq\xa0\xb3\x12\x1f\x05u<\xccN80\x17\x91Y`~$u\xc9+r\xc5E\xd9\x04\xf4\xdeR\xf3\t\xb3\x1e\xfa\x93S\x0e\xee\xc7\x04{;.\xda\x8fg>zB\x1f\xb7\x10\xf5T\xd4\xe7\xa6\xa3\xbeo\xbfuj\x80k\x10\xd1\xae#\x03\x03\xf0\xc79\x91\xba\x86\xda\xe0\xd6]+\x8b\xf7\xcc\xfb\x0e\xa3\xe2\x91\xaa<rBbR\x06;G\x95\x1b1\xd17\xfe\xfb\xfd\x1b\fO}b\x1dV\t\xfc\x86b\'\b\b\x1e\x85\xe7\x04\xba\xfa\x87\xe4\xb2\\\x11\xe3\x90\xf4\x1c\x1a\xfc\x0e\xfaZ\xd3s&T\xd1\x95\x8f\xbe\x85y4m\xea@p\x99\xdfNi\xc3Q\x8d\f\xaa\x01\xc009\x97[\xd4\x05\xeb\x90\x05\xf1\xfc\xf3\x8b\xc1\x03&\xb4*\xea\xaa\xdb\x18\x9a\xafM\r\xd2\xdd\x1d\xd1\xee\xa9\b!\x90S\xcc\x92|\x9ff\x99\x10\x8a\n\x8c\xe8 \xe3\xd6\x14\xf6\xe6\xf9\xd9\a\xa9Si\r\xbb2.\x9b\x0f\xbd.\x80\xd2I2\x1eN\xcb\tS6\x94X\xf9\xcf\xbd7\xbe\x971\xb4\xfc\xb9P\x0f\fA\xe4\x9cH\xb1r\xf5\xe7f\x05\xfd\xebp\xd48\xe5?*\xa2\x99\x88\xeb|\xadDc\xdeJZ\x04\x0e\xa6\x15J4\xca\x97N\x14^6\x97\xfd\xc5zP9\x85\x85\xe4\xc1-\xd7\x83=\xe8c\x04\xc9\x1f:\" \xa3\a\xdcI\x1a\x03L\x95\x8e\x8b\xb5X\x8d7{7\x7f\x1f\xa0\x17\x85m\x9d\r\x0f\vx\xc0\xb10-5\x80\"\x8f|_\x9d\xb7\x81\x10L$\xe2_>Jz\x8c\x0e\xa6\xc1\xd8\x8a~\xc7]\xadC\xb7\xd9\x01\x95\xac;v\xfd\xf5\xc8tc\x95i/ `\xe9\xab\x90\xb2\x96\xbd*&v\xe0', 0x4)
r7 = openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, &(0x7f0000000040), 0x2482, 0x0)
pread64$auto(r7, 0x0, 0x6, 0x8000)
ioctl$auto_VHOST_SET_OWNER(r6, 0xaf01, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f00000000c0)={{0x1, 0x81, 0x1, 0x0, 0x1}, "654c6dbc7a4d30983899a7e1325b6a29ba1e184410ba9f74e82a3fa6c3ccf1bf"})
ioctl$auto_SNDRV_TIMER_IOCTL_TREAD_OLD(r1, 0x40045402, 0x0)

743.643873ms ago: executing program 2 (id=550):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
pipe2$auto(&(0x7f0000000000)=r0, 0xf)
r1 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002f00), 0xffffffffffffffff)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
write$auto(0x1, 0x0, 0x80000000)
mmap$auto(0x0, 0x2000b, 0xdd, 0x40eb1, 0x401, 0x8000)
sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={0x1c, r1, 0x1, 0x70bd2b, 0x25dfdbff, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0x7}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4002000}, 0x40010)

587.907748ms ago: executing program 0 (id=551):
bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x5, 0x1ff, 0x7fa, 0x22104, 0x9, 0x7, 0x7ff, 0x20010180, 0x4000000f}, 0x198)
mmap$auto(0x0, 0x2020009, 0x3, 0x4000000eb1, 0xfffffffffffffffa, 0x100000000)
close_range$auto(0x2, 0x8000, 0x0)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000040)={{0x0, 0x2, &(0x7f0000000080)={0x0, 0x1}, 0xa, 0x0, 0x4, 0x401}, 0xed7138c}, 0x0, 0x0)
r0 = openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/tracing/dynamic_events\x00', 0x201, 0x0)
write$auto_dynamic_events_ops_trace_dynevent(r0, &(0x7f0000000000)="e08791ded46ac64eb24fbc5f87a64ae372ac2faee75ca1ae976ca9fca0f9", 0x1e)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x106, 0x0, 0x1, 0x697b}, 0xed7138c}, 0x9a6, 0xe000)

560.825869ms ago: executing program 1 (id=552):
mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x200000401, 0x8000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
move_pages$auto(0x0, 0xd0, 0x0, &(0x7f0000001140), 0x0, 0x2)
setsockopt$auto(0x400000000000003, 0x29, 0x7, 0x0, 0x401)
close_range$auto(0x2, 0x8000, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000004c0)='/sys/devices/system/cpu/vulnerabilities/spectre_v2\x00', 0x40780, 0x0)
read$auto(r0, &(0x7f0000003740)='\x98g\x8cf\x8c', 0x9)
io_uring_register$auto(0x2, 0x2, &(0x7f0000000040), 0x86)

39.221933ms ago: executing program 4 (id=553):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0)
mmap$auto(0x0, 0x10005, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
socket(0x9, 0xa, 0x108)
sendto$auto(0x3, 0x0, 0xfdef, 0xf950, &(0x7f0000000140), 0x1d)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
mmap$auto(0x0, 0x2020009, 0x0, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
socket(0xf, 0x3, 0xa)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
setsockopt$auto(0x3, 0x0, 0x60, 0x0, 0x10001)
shmget$auto(0xffffffffffffffff, 0xb0d, 0xa7db6ba)
socket(0x2, 0x801, 0x100)
connect$auto(0x3, &(0x7f00000000c0), 0x55)
ioctl$auto(0x3, 0x541b, 0x38)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/fs/ext4/sda1/inode_readahead_blks\x00', 0xe0801, 0x0)
write$auto(r0, &(0x7f00000027c0)='9#dL\xff\x15\x01\x00\x00\x00\x00\x00\x00\x00\xff\v\xb5^w/[\x00', 0x400c)
openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f00000000c0), 0x440000, 0x0)
ioctl$auto(0xffffffffffffffff, 0x4b72, 0xffffffffffffffff)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r1, 0x0, 0x20)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x2, 0x0)
writev$auto(r2, &(0x7f00000001c0)={0x0, 0x7}, 0x3)
socket(0x22, 0x3, 0xe7)
getsockopt$auto(r1, 0x29, 0x9, 0x0, 0x0)
openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, 0x0, 0x48002, 0x0)
openat$auto_clk_dump_fops_(0xffffffffffffff9c, 0x0, 0x300, 0x0)
syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000480), 0xffffffffffffffff)
openat$nci(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)

0s ago: executing program 1 (id=554):
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_nvmf_dev_fops_fabrics(0xffffffffffffff9c, &(0x7f0000000180), 0x90203, 0x0)
write$auto_nvmf_dev_fops_fabrics(r0, 0x0, 0x0)
openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/fb0\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x6, 0x800, 0x8)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer\x00', 0x2, 0x0)
r1 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0)
write$auto(r1, &(0x7f0000000040)='!bd\x00', 0x4)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/rpc/auth.rpcsec.context/channel\x00', 0x101002, 0x0)
ioctl$auto(0x3, 0x541b, 0xfffffffffffff4e0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x9, 0x3, 0x8012, 0x3, 0x8000)
io_uring_register$auto(0x2, 0xe, 0x0, 0x20)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001080)='/sys/kernel/mm/transparent_hugepage/hugepages-32kB/stats/nr_anon_partially_mapped\x00', 0x80040, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000040)=""/225, 0xe1)
write$auto(r2, &(0x7f00000002c0)='/d-:\xe7J\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xea>=\xe8hUs\xf3N\x10$#_\x01\xdc\x16<\xda>ui\x9eS;\n\xeaG@\xf9\\r\xbc\x06\xfa\x1b\x8d \x9ebd\x10\xea#\xcb(o\x9ei\x89\x84\xa7\x85\xad\xe1\xe0\xf19\xfa4\xb5\ad\x84\f\xc9\x12a3\xb9~\x87\x1c\xd1\xf4V\x06\xa7\x00\x01D\x1eo\xfd\x03\xbe\xd8\x05H|+wsSs\xf9\x11\xc9\x13x\xe0\x8e\x109J\xe7\x9f\x99\x82G(\xabH\xee\xaaPs_\xc3\x00'/157, 0x1eb0800)
mmap$auto(0x0, 0x0, 0x400000dc, 0x937e, 0x2, 0x8000)
prctl$auto_PR_PPC_SET_DEXCR(0x49, 0x8, 0x0, 0x3, 0x4)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x8000003, 0x7)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
semtimedop$auto(0x7, 0x0, 0x3, 0x0)
socket(0xb, 0x80000, 0x5)
mmap$auto(0x0, 0xdb81, 0x2, 0x40eb1, 0xffffffffffffffff, 0x300000000000)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)

kernel console output (not intermixed with test programs):

: command tx timeout
[   91.236320][ T5830] Bluetooth: hci2: command tx timeout
[   91.236405][   T55] Bluetooth: hci3: command tx timeout
[   91.394772][   T48] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   91.394805][   T48] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   91.901952][  T975] cfg80211: failed to load regulatory.db
[   92.051140][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   92.071750][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   92.287605][ T5915] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   92.490157][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   92.498144][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   93.032310][ T5917] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed
[   93.079464][ T5917] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff)
[   93.233048][   T55] Bluetooth: hci0: command tx timeout
[   93.313748][   T55] Bluetooth: hci3: command tx timeout
[   93.319405][ T5830] Bluetooth: hci1: command tx timeout
[   93.319445][ T5840] Bluetooth: hci2: command tx timeout
[   93.533040][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   93.824828][ T5933] vivid-003: =================  START STATUS  =================
[   93.837704][ T5933] vivid-003: Radio HW Seek Mode: Bounded
[   93.855251][ T5933] vivid-003: Radio Programmable HW Seek: false
[   93.884647][ T5933] vivid-003: RDS Rx I/O Mode: Block I/O
[   93.900180][ T5933] vivid-003: Generate RBDS Instead of RDS: false
[   93.933378][ T5933] vivid-003: RDS Reception: true
[   93.965776][ T5933] vivid-003: RDS Program Type: 0 inactive
[   93.971524][ T5933] vivid-003: RDS PS Name:  inactive
[   94.025884][ T5931] netlink: 326 bytes leftover after parsing attributes in process `syz.1.7'.
[   94.053422][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   94.082231][ T5933] vivid-003: RDS Radio Text:  inactive
[   94.141556][ T5931] Zero length message leads to an empty skb
[   94.182893][ T5933] vivid-003: RDS Traffic Announcement: false inactive
[   94.189744][ T5933] vivid-003: RDS Traffic Program: false inactive
[   94.222740][ T5933] vivid-003: RDS Music: false inactive
[   94.250362][ T5933] vivid-003: ==================  END STATUS  ==================
[   94.396176][ T5944] can: request_module (can-proto-3) failed.
[   94.814322][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   94.965873][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   94.981674][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   95.044066][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   95.132820][    T0] NOHZ tick-stop error: local softirq work is pending, handler #142!!!
[   95.254938][ T5949] mmap: syz.0.10 (5949) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   95.313685][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[   95.825287][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   97.168926][ T5979] bond0: no command found in slaves file - use +ifname or -ifname
[   97.187105][ T5979] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   98.046363][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!

syzkaller
syzkaller login: [   99.399482][ T6017] netlink: 36 bytes leftover after parsing attributes in process `syz.3.24'.
[   99.521369][ T6017] Invalid ELF header magic: != ELF
[  100.540835][ T6036] netlink: 36 bytes leftover after parsing attributes in process `syz.1.27'.
[  100.552778][   T30] audit: type=1400 audit(6042946329.651:4): apparmor="DENIED" operation="setprocattr" info="exec" error=-22 profile="unconfined" pid=6028 comm="syz.0.26"
[  100.800726][ T6036] Invalid ELF header magic: != ELF
[  100.928770][ T6017] could not allocate digest TFM handle 
[  100.958217][ T6025] could not allocate digest TFM handle 
[  101.742158][ T6036] could not allocate digest TFM handle 
[  101.817685][ T6042] could not allocate digest TFM handle 

syzkaller
syzkaller login: [  106.165220][ T6121] FAULT_INJECTION: forcing a failure.
[  106.165220][ T6121] name failslab, interval 1, probability 0, space 0, times 1
[  106.181478][ T6121] CPU: 0 UID: 0 PID: 6121 Comm: syz.3.41 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) 
[  106.181514][ T6121] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  106.181533][ T6121] Call Trace:
[  106.181542][ T6121]  <TASK>
[  106.181554][ T6121]  dump_stack_lvl+0x16c/0x1f0
[  106.181580][ T6121]  should_fail_ex+0x512/0x640
[  106.181601][ T6121]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  106.181620][ T6121]  should_failslab+0xc2/0x120
[  106.181639][ T6121]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  106.181654][ T6121]  ? __proc_create+0xc3/0x8c0
[  106.181672][ T6121]  ? __proc_create+0x2ce/0x8c0
[  106.181690][ T6121]  __proc_create+0x2ce/0x8c0
[  106.181706][ T6121]  ? __pfx___proc_create+0x10/0x10
[  106.181724][ T6121]  ? _raw_write_unlock+0x28/0x50
[  106.181743][ T6121]  ? proc_register+0x314/0x5f0
[  106.181761][ T6121]  proc_create_reg+0x7d/0x180
[  106.181777][ T6121]  ? __pfx_sctp_snmp_seq_show+0x10/0x10
[  106.181798][ T6121]  proc_create_net_single+0x86/0x170
[  106.181815][ T6121]  ? __pfx_proc_create_net_single+0x10/0x10
[  106.181838][ T6121]  sctp_proc_init+0xaa/0x270
[  106.181858][ T6121]  ? __pfx_sctp_defaults_init+0x10/0x10
[  106.181878][ T6121]  sctp_defaults_init+0x74a/0xd80
[  106.181899][ T6121]  ? __pfx_sctp_defaults_init+0x10/0x10
[  106.181920][ T6121]  ops_init+0x1df/0x5f0
[  106.181941][ T6121]  setup_net+0x21e/0x850
[  106.181960][ T6121]  ? __pfx_setup_net+0x10/0x10
[  106.181976][ T6121]  ? lockdep_init_map_type+0x5c/0x280
[  106.181995][ T6121]  ? __pfx_down_read_killable+0x10/0x10
[  106.182011][ T6121]  ? debug_mutex_init+0x37/0x70
[  106.182027][ T6121]  copy_net_ns+0x2a6/0x5f0
[  106.182048][ T6121]  create_new_namespaces+0x3ea/0xad0
[  106.182068][ T6121]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  106.182086][ T6121]  ksys_unshare+0x45b/0xa40
[  106.182105][ T6121]  ? __pfx_ksys_unshare+0x10/0x10
[  106.182123][ T6121]  ? xfd_validate_state+0x5d/0x180
[  106.182138][ T6121]  ? rcu_is_watching+0x12/0xc0
[  106.182156][ T6121]  __x64_sys_unshare+0x31/0x40
[  106.182174][ T6121]  do_syscall_64+0xcd/0x230
[  106.182195][ T6121]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  106.182209][ T6121] RIP: 0033:0x7fdeea98e969
[  106.182222][ T6121] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  106.182235][ T6121] RSP: 002b:00007fdee87f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  106.182249][ T6121] RAX: ffffffffffffffda RBX: 00007fdeeabb6160 RCX: 00007fdeea98e969
[  106.182258][ T6121] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  106.182265][ T6121] RBP: 00007fdeeaa10ab1 R08: 0000000000000000 R09: 0000000000000000
[  106.182273][ T6121] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  106.182281][ T6121] R13: 0000000000000000 R14: 00007fdeeabb6160 R15: 00007fff0a47ab58
[  106.182298][ T6121]  </TASK>
[  107.207085][ T5840] Bluetooth: hci1: unexpected subevent 0x01 length: 4 < 18
[  107.210470][   T30] audit: type=1800 audit(6042946344.325:5): pid=6129 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.43" name="dbroot" dev="configfs" ino=8681 res=0 errno=0
[  107.384507][ T6138] netlink: 28 bytes leftover after parsing attributes in process `syz.2.43'.
[  107.569227][ T6142] netlink: 28 bytes leftover after parsing attributes in process `syz.3.45'.
[  113.432455][ T6197] input: jJǸ���;9�%v����l��Q�	J86�� as /devices/virtual/input/input6
[  114.131672][ T6199] syz.0.57 uses obsolete (PF_INET,SOCK_PACKET)
[  114.171959][ T6210] random: crng reseeded on system resumption
[  114.687257][ T6215] Invalid ELF header magic: != ELF
	

	
		


	



	


	

		

		
		
			

			



	

	
		
	
	

	


				

		
		


	
	

	


	
		

	


	
	

		
	
		
	
	



			








	




	





	
	
		
		
		
		
	

	



	

	

		

			
		
		
		


		


	

		


















	


	
	








	




	




		










syzkaller
syzkaller login: [  128.638705][ T6408] netlink: 206 bytes leftover after parsing attributes in process `syz.3.93'.
[  129.753261][ T6439] netlink: 338 bytes leftover after parsing attributes in process `syz.2.103'.
[  129.871587][ T6443] netlink: 338 bytes leftover after parsing attributes in process `syz.2.103'.
[  129.960394][ T6443] netlink: 186 bytes leftover after parsing attributes in process `syz.2.103'.
[  129.979632][ T6439] netlink: 338 bytes leftover after parsing attributes in process `syz.2.103'.
[  130.079585][ T6443] netlink: 290 bytes leftover after parsing attributes in process `syz.2.103'.
[  130.100410][ T6443] veth0_macvtap: left promiscuous mode
[  130.585757][   T30] audit: type=1800 audit(6042946367.695:6): pid=6459 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.108" name="discovery_nqn" dev="configfs" ino=8051 res=0 errno=0
[  130.632262][ T6459] sp0: Synchronizing with TNC
[  131.384887][ T6486] FAULT_INJECTION: forcing a failure.
[  131.384887][ T6486] name failslab, interval 1, probability 0, space 0, times 0
[  131.419457][ T6486] CPU: 1 UID: 0 PID: 6486 Comm: syz.3.118 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) 
[  131.419493][ T6486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  131.419504][ T6486] Call Trace:
[  131.419521][ T6486]  <TASK>
[  131.419530][ T6486]  dump_stack_lvl+0x16c/0x1f0
[  131.419570][ T6486]  should_fail_ex+0x512/0x640
[  131.419612][ T6486]  ? __kmalloc_noprof+0xbf/0x510
[  131.419643][ T6486]  ? ethnl_default_notify+0x164/0x940
[  131.419671][ T6486]  should_failslab+0xc2/0x120
[  131.419701][ T6486]  __kmalloc_noprof+0xd2/0x510
[  131.419728][ T6486]  ? __pfx___ethnl_set_coalesce.isra.0+0x10/0x10
[  131.419765][ T6486]  ? rpm_resume+0x80c/0x1310
[  131.419796][ T6486]  ? __pfx_ethnl_default_notify+0x10/0x10
[  131.419824][ T6486]  ethnl_default_notify+0x164/0x940
[  131.419855][ T6486]  ? __pfx_ethnl_default_notify+0x10/0x10
[  131.419899][ T6486]  ? ethnl_set_coalesce+0xb8/0x170
[  131.419936][ T6486]  ? __pfx_ethnl_set_coalesce+0x10/0x10
[  131.419979][ T6486]  ? __pfx_ethnl_default_notify+0x10/0x10
[  131.420009][ T6486]  ethtool_notify+0xbf/0x200
[  131.420037][ T6486]  ethnl_default_set_doit+0x4e5/0xb10
[  131.420069][ T6486]  ? __pfx_ethnl_default_set_doit+0x10/0x10
[  131.420103][ T6486]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  131.420142][ T6486]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  131.420188][ T6486]  genl_family_rcv_msg_doit+0x209/0x2f0
[  131.420228][ T6486]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  131.420265][ T6486]  ? trace_cap_capable+0x18d/0x200
[  131.420303][ T6486]  ? bpf_lsm_capable+0x9/0x10
[  131.420329][ T6486]  ? security_capable+0x7e/0x260
[  131.420358][ T6486]  ? ns_capable+0xd7/0x110
[  131.420389][ T6486]  genl_rcv_msg+0x55c/0x800
[  131.420429][ T6486]  ? __pfx_genl_rcv_msg+0x10/0x10
[  131.420464][ T6486]  ? __pfx___dev_queue_xmit+0x10/0x10
[  131.420489][ T6486]  ? __pfx_ethnl_default_set_doit+0x10/0x10
[  131.420530][ T6486]  ? __lock_acquire+0xaa4/0x1ba0
[  131.420570][ T6486]  netlink_rcv_skb+0x16d/0x440
[  131.420604][ T6486]  ? __pfx_genl_rcv_msg+0x10/0x10
[  131.420643][ T6486]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  131.420695][ T6486]  ? __pfx_down_read+0x10/0x10
[  131.420721][ T6486]  ? netlink_deliver_tap+0x1ae/0xd30
[  131.420756][ T6486]  genl_rcv+0x28/0x40
[  131.420787][ T6486]  netlink_unicast+0x53a/0x7f0
[  131.420825][ T6486]  ? __pfx_netlink_unicast+0x10/0x10
[  131.420854][ T6486]  ? __lock_acquire+0xaa4/0x1ba0
[  131.420904][ T6486]  netlink_sendmsg+0x8d1/0xdd0
[  131.420943][ T6486]  ? __pfx_netlink_sendmsg+0x10/0x10
[  131.420990][ T6486]  ____sys_sendmsg+0xa98/0xc70
[  131.421028][ T6486]  ? copy_msghdr_from_user+0x10a/0x160
[  131.421058][ T6486]  ? __pfx_____sys_sendmsg+0x10/0x10
[  131.421114][ T6486]  ___sys_sendmsg+0x134/0x1d0
[  131.421147][ T6486]  ? __pfx____sys_sendmsg+0x10/0x10
[  131.421225][ T6486]  __sys_sendmsg+0x16d/0x220
[  131.421257][ T6486]  ? __pfx___sys_sendmsg+0x10/0x10
[  131.421300][ T6486]  ? rcu_is_watching+0x12/0xc0
[  131.421336][ T6486]  do_syscall_64+0xcd/0x230
[  131.421378][ T6486]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  131.421404][ T6486] RIP: 0033:0x7fdeea98e969
[  131.421425][ T6486] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  131.421447][ T6486] RSP: 002b:00007fdeeb73f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  131.421471][ T6486] RAX: ffffffffffffffda RBX: 00007fdeeabb5fa0 RCX: 00007fdeea98e969
[  131.421487][ T6486] RDX: 0000000000000000 RSI: 0000200000000cc0 RDI: 0000000000000003
[  131.421503][ T6486] RBP: 00007fdeeb73f090 R08: 0000000000000000 R09: 0000000000000000
[  131.421527][ T6486] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  131.421541][ T6486] R13: 0000000000000000 R14: 00007fdeeabb5fa0 R15: 00007fff0a47ab58
[  131.421577][ T6486]  </TASK>
[  131.790073][    C1] vkms_vblank_simulate: vblank timer overrun
[  131.915998][ T6493] netlink: 16 bytes leftover after parsing attributes in process `syz.1.117'.
[  132.105029][ T6480] netlink: 4 bytes leftover after parsing attributes in process `syz.2.114'.
[  132.843668][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  132.850654][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  132.896070][ T6532] FAULT_INJECTION: forcing a failure.
[  132.896070][ T6532] name failslab, interval 1, probability 0, space 0, times 0
[  132.928855][ T6532] CPU: 1 UID: 0 PID: 6532 Comm: syz.3.127 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) 
[  132.928895][ T6532] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  132.928909][ T6532] Call Trace:
[  132.928918][ T6532]  <TASK>
[  132.928927][ T6532]  dump_stack_lvl+0x16c/0x1f0
[  132.928973][ T6532]  should_fail_ex+0x512/0x640
[  132.929011][ T6532]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  132.929040][ T6532]  should_failslab+0xc2/0x120
[  132.929073][ T6532]  __kmalloc_cache_noprof+0x6a/0x3e0
[  132.929100][ T6532]  ? __mutex_lock+0x1ca/0xb90
[  132.929136][ T6532]  ? alloc_tty_struct+0x96/0x8c0
[  132.929178][ T6532]  alloc_tty_struct+0x96/0x8c0
[  132.929211][ T6532]  ? __pfx___mutex_lock+0x10/0x10
[  132.929250][ T6532]  ? __pfx_alloc_tty_struct+0x10/0x10
[  132.929285][ T6532]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  132.929336][ T6532]  tty_init_dev.part.0+0x1e/0x500
[  132.929384][ T6532]  tty_init_dev+0x60/0x80
[  132.929421][ T6532]  ? __pfx_ptmx_open+0x10/0x10
[  132.929447][ T6532]  ptmx_open+0x10d/0x360
[  132.929475][ T6532]  ? __pfx_ptmx_open+0x10/0x10
[  132.929501][ T6532]  chrdev_open+0x234/0x6a0
[  132.929530][ T6532]  ? __pfx_apparmor_file_open+0x10/0x10
[  132.929566][ T6532]  ? __pfx_chrdev_open+0x10/0x10
[  132.929599][ T6532]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  132.929645][ T6532]  do_dentry_open+0x741/0x1c10
[  132.929675][ T6532]  ? __pfx_chrdev_open+0x10/0x10
[  132.929712][ T6532]  vfs_open+0x82/0x3f0
[  132.929752][ T6532]  path_openat+0x1e5e/0x2d40
[  132.929794][ T6532]  ? __pfx_path_openat+0x10/0x10
[  132.929831][ T6532]  do_filp_open+0x20b/0x470
[  132.929858][ T6532]  ? __pfx_do_filp_open+0x10/0x10
[  132.929914][ T6532]  ? alloc_fd+0x471/0x7d0
[  132.929966][ T6532]  do_sys_openat2+0x11b/0x1d0
[  132.930002][ T6532]  ? __pfx_do_sys_openat2+0x10/0x10
[  132.930054][ T6532]  __x64_sys_openat+0x174/0x210
[  132.930090][ T6532]  ? __pfx___x64_sys_openat+0x10/0x10
[  132.930128][ T6532]  ? rcu_is_watching+0x12/0xc0
[  132.930166][ T6532]  do_syscall_64+0xcd/0x230
[  132.930208][ T6532]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.930235][ T6532] RIP: 0033:0x7fdeea98e969
[  132.930256][ T6532] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  132.930281][ T6532] RSP: 002b:00007fdeeb71e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  132.930305][ T6532] RAX: ffffffffffffffda RBX: 00007fdeeabb6080 RCX: 00007fdeea98e969
[  132.930323][ T6532] RDX: 0000000000020540 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  132.930340][ T6532] RBP: 00007fdeeaa10ab1 R08: 0000000000000000 R09: 0000000000000000
[  132.930356][ T6532] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  132.930378][ T6532] R13: 0000000000000000 R14: 00007fdeeabb6080 R15: 00007fff0a47ab58
[  132.930414][ T6532]  </TASK>
[  133.207842][    C1] vkms_vblank_simulate: vblank timer overrun
[  134.349148][ T6571] Invalid ELF header magic: != ELF
[  134.363693][ T6562] random: crng reseeded on system resumption
[  136.129201][ T6614] netlink: 4 bytes leftover after parsing attributes in process `syz.2.155'.
[  136.426221][ T6624] FAULT_INJECTION: forcing a failure.
[  136.426221][ T6624] name failslab, interval 1, probability 0, space 0, times 0
[  136.440225][ T6624] CPU: 0 UID: 0 PID: 6624 Comm: syz.3.157 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) 
[  136.440261][ T6624] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  136.440274][ T6624] Call Trace:
[  136.440282][ T6624]  <TASK>
[  136.440291][ T6624]  dump_stack_lvl+0x16c/0x1f0
[  136.440332][ T6624]  should_fail_ex+0x512/0x640
[  136.440369][ T6624]  ? __kmalloc_node_noprof+0xc5/0x500
[  136.440410][ T6624]  should_failslab+0xc2/0x120
[  136.440442][ T6624]  __kmalloc_node_noprof+0xd8/0x500
[  136.440473][ T6624]  ? obj_cgroup_charge+0x365/0x640
[  136.440504][ T6624]  ? alloc_slab_obj_exts+0x41/0xa0
[  136.440535][ T6624]  alloc_slab_obj_exts+0x41/0xa0
[  136.440559][ T6624]  __memcg_slab_post_alloc_hook+0x27b/0x940
[  136.440596][ T6624]  ? kasan_save_track+0x14/0x30
[  136.440627][ T6624]  kmem_cache_alloc_noprof+0x307/0x3b0
[  136.440656][ T6624]  ? __pfx___might_resched+0x10/0x10
[  136.440680][ T6624]  ? __anon_vma_prepare+0xae/0x5e0
[  136.440713][ T6624]  __anon_vma_prepare+0xae/0x5e0
[  136.440743][ T6624]  __vmf_anon_prepare+0x11c/0x240
[  136.440781][ T6624]  do_pte_missing+0x8a6/0x3fb0
[  136.440809][ T6624]  ? do_raw_spin_unlock+0x172/0x230
[  136.440848][ T6624]  ? __pmd_alloc+0x3c2/0x870
[  136.440884][ T6624]  __handle_mm_fault+0x103d/0x2a40
[  136.440922][ T6624]  ? __pfx___handle_mm_fault+0x10/0x10
[  136.440977][ T6624]  handle_mm_fault+0x3fe/0xad0
[  136.441008][ T6624]  __get_user_pages+0x771/0x36f0
[  136.441053][ T6624]  ? __pfx_mt_find+0x10/0x10
[  136.441078][ T6624]  ? __pfx___get_user_pages+0x10/0x10
[  136.441129][ T6624]  populate_vma_page_range+0x278/0x3a0
[  136.441156][ T6624]  ? __pfx_populate_vma_page_range+0x10/0x10
[  136.441180][ T6624]  ? __pfx_find_vma_intersection+0x10/0x10
[  136.441222][ T6624]  ? do_mmap+0x69c/0x11b0
[  136.441264][ T6624]  __mm_populate+0x1d8/0x380
[  136.441292][ T6624]  ? __pfx___mm_populate+0x10/0x10
[  136.441320][ T6624]  ? up_write+0x1b2/0x520
[  136.441360][ T6624]  vm_mmap_pgoff+0x362/0x450
[  136.441409][ T6624]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  136.441454][ T6624]  ? __fget_files+0x20e/0x3c0
[  136.441486][ T6624]  ksys_mmap_pgoff+0x32c/0x5c0
[  136.441523][ T6624]  ? __pfx_ksys_write+0x10/0x10
[  136.441547][ T6624]  ? rcu_is_watching+0x12/0xc0
[  136.441577][ T6624]  __x64_sys_mmap+0x125/0x190
[  136.441607][ T6624]  do_syscall_64+0xcd/0x230
[  136.441646][ T6624]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.441672][ T6624] RIP: 0033:0x7fdeea98e969
[  136.441693][ T6624] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  136.441715][ T6624] RSP: 002b:00007fdeeb73f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  136.441739][ T6624] RAX: ffffffffffffffda RBX: 00007fdeeabb5fa0 RCX: 00007fdeea98e969
[  136.441756][ T6624] RDX: 0000000000000003 RSI: 0000000000000009 RDI: 0000000000000000
[  136.441771][ T6624] RBP: 00007fdeeb73f090 R08: 0000000000000003 R09: 0000000000008000
[  136.441787][ T6624] R10: 0000000000008012 R11: 0000000000000246 R12: 0000000000000001
[  136.441802][ T6624] R13: 0000000000000000 R14: 00007fdeeabb5fa0 R15: 00007fff0a47ab58
[  136.441838][ T6624]  </TASK>
[  137.623876][ T6646] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  138.442382][ T6665] FAULT_INJECTION: forcing a failure.
[  138.442382][ T6665] name failslab, interval 1, probability 0, space 0, times 0
[  138.472321][ T6665] CPU: 1 UID: 0 PID: 6665 Comm: syz.1.168 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) 
[  138.472357][ T6665] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  138.472371][ T6665] Call Trace:
[  138.472379][ T6665]  <TASK>
[  138.472389][ T6665]  dump_stack_lvl+0x16c/0x1f0
[  138.472431][ T6665]  should_fail_ex+0x512/0x640
[  138.472468][ T6665]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  138.472502][ T6665]  should_failslab+0xc2/0x120
[  138.472534][ T6665]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  138.472563][ T6665]  ? register_lock_class+0x41/0x4c0
[  138.472595][ T6665]  ? __alloc_skb+0x2b2/0x380
[  138.472630][ T6665]  __alloc_skb+0x2b2/0x380
[  138.472657][ T6665]  ? __pfx___alloc_skb+0x10/0x10
[  138.472698][ T6665]  alloc_skb_with_frags+0xe0/0x860
[  138.472740][ T6665]  sock_alloc_send_pskb+0x7fb/0x990
[  138.472768][ T6665]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  138.472814][ T6665]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  138.472842][ T6665]  ? find_held_lock+0x2b/0x80
[  138.472869][ T6665]  ? dev_get_by_index+0x17c/0x380
[  138.472895][ T6665]  ? sock_cmsg_send+0x1a0/0x280
[  138.472930][ T6665]  packet_sendmsg+0x1ff7/0x56f0
[  138.472970][ T6665]  ? __lock_acquire+0x5b0/0x1ba0
[  138.473026][ T6665]  ? __pfx___might_resched+0x10/0x10
[  138.473054][ T6665]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  138.473096][ T6665]  ? __pfx_packet_sendmsg+0x10/0x10
[  138.473136][ T6665]  ? match_mnt+0x1d0/0x3d0
[  138.473179][ T6665]  ____sys_sendmsg+0xa98/0xc70
[  138.473221][ T6665]  ? __pfx_____sys_sendmsg+0x10/0x10
[  138.473264][ T6665]  ? __pfx__kstrtoull+0x10/0x10
[  138.473302][ T6665]  ___sys_sendmsg+0x134/0x1d0
[  138.473336][ T6665]  ? __pfx____sys_sendmsg+0x10/0x10
[  138.473385][ T6665]  ? find_held_lock+0x2b/0x80
[  138.473431][ T6665]  __sys_sendmmsg+0x200/0x420
[  138.473467][ T6665]  ? __pfx___sys_sendmmsg+0x10/0x10
[  138.473511][ T6665]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  138.473564][ T6665]  ? fput+0x70/0xf0
[  138.473594][ T6665]  ? ksys_write+0x1b9/0x240
[  138.473619][ T6665]  ? __pfx_ksys_write+0x10/0x10
[  138.473643][ T6665]  ? rcu_is_watching+0x12/0xc0
[  138.473674][ T6665]  __x64_sys_sendmmsg+0x9c/0x100
[  138.473705][ T6665]  ? lockdep_hardirqs_on+0x7c/0x110
[  138.473740][ T6665]  do_syscall_64+0xcd/0x230
[  138.473780][ T6665]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.473806][ T6665] RIP: 0033:0x7fdb3958e969
[  138.473827][ T6665] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  138.473850][ T6665] RSP: 002b:00007fdb3a324038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  138.473875][ T6665] RAX: ffffffffffffffda RBX: 00007fdb397b5fa0 RCX: 00007fdb3958e969
[  138.473892][ T6665] RDX: 0000000000000002 RSI: 00002000000006c0 RDI: 0000000000000003
[  138.473907][ T6665] RBP: 00007fdb3a324090 R08: 0000000000000000 R09: 0000000000000000
[  138.473922][ T6665] R10: 0000000000000100 R11: 0000000000000246 R12: 0000000000000001
[  138.473937][ T6665] R13: 0000000000000000 R14: 00007fdb397b5fa0 R15: 00007fff02646ae8
[  138.473972][ T6665]  </TASK>
[  139.308285][ T6672] netlink: 28 bytes leftover after parsing attributes in process `syz.0.169'.
[  139.393323][ T6684] QAT: failed to copy from user cfg_data.
[  139.401790][ T6683] FAULT_INJECTION: forcing a failure.
[  139.401790][ T6683] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  139.422829][ T6683] CPU: 1 UID: 0 PID: 6683 Comm: syz.1.172 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) 
[  139.422860][ T6683] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  139.422873][ T6683] Call Trace:
[  139.422881][ T6683]  <TASK>
[  139.422889][ T6683]  dump_stack_lvl+0x16c/0x1f0
[  139.422927][ T6683]  should_fail_ex+0x512/0x640
[  139.422970][ T6683]  should_fail_alloc_page+0xe7/0x130
[  139.423001][ T6683]  prepare_alloc_pages+0x3c2/0x610
[  139.423036][ T6683]  ? rcu_is_watching+0x12/0xc0
[  139.423064][ T6683]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[  139.423112][ T6683]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  139.423140][ T6683]  ? do_raw_spin_lock+0x12c/0x2b0
[  139.423177][ T6683]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  139.423213][ T6683]  ? find_held_lock+0x2b/0x80
[  139.423248][ T6683]  ? __lock_acquire+0xaa4/0x1ba0
[  139.423280][ T6683]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  139.423317][ T6683]  ? policy_nodemask+0xea/0x4e0
[  139.423351][ T6683]  alloc_pages_mpol+0x1fb/0x550
[  139.423382][ T6683]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  139.423423][ T6683]  folio_alloc_mpol_noprof+0x36/0x2f0
[  139.423458][ T6683]  shmem_alloc_folio+0x135/0x160
[  139.423487][ T6683]  shmem_alloc_and_add_folio+0x499/0xc20
[  139.423526][ T6683]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  139.423561][ T6683]  ? shmem_allowable_huge_orders+0xcb/0x2f0
[  139.423599][ T6683]  shmem_get_folio_gfp+0x687/0x1530
[  139.423638][ T6683]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  139.423673][ T6683]  ? filemap_map_pages+0xf6c/0x1680
[  139.423709][ T6683]  shmem_fault+0x1fe/0xa30
[  139.423741][ T6683]  ? __pfx_shmem_fault+0x10/0x10
[  139.423776][ T6683]  ? __pfx_filemap_map_pages+0x10/0x10
[  139.423820][ T6683]  __do_fault+0x10a/0x490
[  139.423855][ T6683]  do_pte_missing+0x1031/0x3fb0
[  139.423886][ T6683]  ? __handle_mm_fault+0x1010/0x2a40
[  139.423918][ T6683]  __handle_mm_fault+0x103d/0x2a40
[  139.423966][ T6683]  ? __pfx___handle_mm_fault+0x10/0x10
[  139.424017][ T6683]  ? find_vma+0xbf/0x140
[  139.424050][ T6683]  ? __pfx_find_vma+0x10/0x10
[  139.424089][ T6683]  handle_mm_fault+0x3fe/0xad0
[  139.424123][ T6683]  do_user_addr_fault+0x7a6/0x1370
[  139.424154][ T6683]  ? rcu_is_watching+0x12/0xc0
[  139.424181][ T6683]  exc_page_fault+0x5c/0xc0
[  139.424214][ T6683]  asm_exc_page_fault+0x26/0x30
[  139.424237][ T6683] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  139.424265][ T6683] Code: cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 e9 7f 09 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  139.424285][ T6683] RSP: 0018:ffffc90003d3fb28 EFLAGS: 00050206
[  139.424303][ T6683] RAX: 0000000000000001 RBX: 000000000000fdef RCX: 0000000000008def
[  139.424317][ T6683] RDX: ffffed100a38ffbe RSI: 0000000000007000 RDI: ffff888051c77000
[  139.424334][ T6683] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed100a38ffbd
[  139.424347][ T6683] R10: ffff888051c7fdee R11: 0000000000000000 R12: 0000000000000000
[  139.424362][ T6683] R13: ffffc90003d3fda0 R14: 000000000000fdef R15: ffff888051c70000
[  139.424398][ T6683]  _copy_from_iter+0x391/0x15b0
[  139.424441][ T6683]  ? rcu_is_watching+0x12/0xc0
[  139.424465][ T6683]  ? __pfx__copy_from_iter+0x10/0x10
[  139.424503][ T6683]  ? rcu_is_watching+0x12/0xc0
[  139.424527][ T6683]  ? trace_kmalloc+0x2b/0xd0
[  139.424559][ T6683]  ? __kvmalloc_node_noprof.cold+0x60/0x65
[  139.424592][ T6683]  ? __pfx_net_ctl_permissions+0x10/0x10
[  139.424617][ T6683]  ? proc_sys_call_handler+0x2a6/0x5c0
[  139.424654][ T6683]  proc_sys_call_handler+0x317/0x5c0
[  139.424686][ T6683]  ? __pfx_proc_sys_call_handler+0x10/0x10
[  139.424731][ T6683]  vfs_write+0x5bd/0x1180
[  139.424759][ T6683]  ? __pfx_proc_sys_write+0x10/0x10
[  139.424789][ T6683]  ? __pfx___mutex_lock+0x10/0x10
[  139.424826][ T6683]  ? __pfx_vfs_write+0x10/0x10
[  139.424877][ T6683]  ksys_write+0x12a/0x240
[  139.424904][ T6683]  ? __pfx_ksys_write+0x10/0x10
[  139.424927][ T6683]  ? rcu_is_watching+0x12/0xc0
[  139.424970][ T6683]  do_syscall_64+0xcd/0x230
[  139.425011][ T6683]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  139.425037][ T6683] RIP: 0033:0x7fdb3958e969
[  139.425057][ T6683] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  139.425079][ T6683] RSP: 002b:00007fdb3a324038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  139.425101][ T6683] RAX: ffffffffffffffda RBX: 00007fdb397b5fa0 RCX: 00007fdb3958e969
[  139.425118][ T6683] RDX: 000000000000fdef RSI: 0000000000000000 RDI: 0000000000000003
[  139.425132][ T6683] RBP: 00007fdb3a324090 R08: 0000000000000000 R09: 0000000000000000
[  139.425147][ T6683] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  139.425161][ T6683] R13: 0000000000000000 R14: 00007fdb397b5fa0 R15: 00007fff02646ae8
[  139.425197][ T6683]  </TASK>
[  140.679948][ T6712] QAT: failed to copy from user cfg_data.
[  141.240417][ T6725] netlink: 4 bytes leftover after parsing attributes in process `syz.0.188'.
[  141.438671][ T6736] QAT: failed to copy from user cfg_data.
[  141.674422][ T6733] : Can't lookup blockdev
[  141.683832][ T6733] FAULT_INJECTION: forcing a failure.
[  141.683832][ T6733] name failslab, interval 1, probability 0, space 0, times 0
[  141.702943][ T6733] CPU: 1 UID: 0 PID: 6733 Comm: syz.3.191 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) 
[  141.702975][ T6733] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  141.702988][ T6733] Call Trace:
[  141.702996][ T6733]  <TASK>
[  141.703006][ T6733]  dump_stack_lvl+0x16c/0x1f0
[  141.703045][ T6733]  should_fail_ex+0x512/0x640
[  141.703078][ T6733]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  141.703108][ T6733]  should_failslab+0xc2/0x120
[  141.703139][ T6733]  __kmalloc_cache_noprof+0x6a/0x3e0
[  141.703167][ T6733]  ? snd_pcm_hw_param_near.constprop.0+0xbc/0x8e0
[  141.703212][ T6733]  snd_pcm_hw_param_near.constprop.0+0xbc/0x8e0
[  141.703258][ T6733]  ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10
[  141.703309][ T6733]  snd_pcm_oss_change_params_locked+0x92b/0x3a30
[  141.703371][ T6733]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  141.703414][ T6733]  ? __pfx___mutex_lock+0x10/0x10
[  141.703476][ T6733]  snd_pcm_oss_get_active_substream+0x168/0x1d0
[  141.703522][ T6733]  snd_pcm_oss_ioctl+0x21e9/0x37a0
[  141.703565][ T6733]  ? hook_file_ioctl_common+0x145/0x410
[  141.703597][ T6733]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  141.703641][ T6733]  ? __fget_files+0x20e/0x3c0
[  141.703670][ T6733]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  141.703718][ T6733]  __x64_sys_ioctl+0x190/0x200
[  141.703757][ T6733]  do_syscall_64+0xcd/0x230
[  141.703798][ T6733]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  141.703824][ T6733] RIP: 0033:0x7fdeea98e969
[  141.703844][ T6733] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  141.703866][ T6733] RSP: 002b:00007fdeeb73f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  141.703889][ T6733] RAX: ffffffffffffffda RBX: 00007fdeeabb5fa0 RCX: 00007fdeea98e969
[  141.703905][ T6733] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 0000000000000007
[  141.703920][ T6733] RBP: 00007fdeeb73f090 R08: 0000000000000000 R09: 0000000000000000
[  141.703935][ T6733] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  141.703949][ T6733] R13: 0000000000000000 R14: 00007fdeeabb5fa0 R15: 00007fff0a47ab58
[  141.703983][ T6733]  </TASK>
[  141.707488][ T5840] Bluetooth: hci1: unexpected subevent 0x01 length: 4 < 18
[  141.873284][   T30] audit: type=1800 audit(6042946386.926:7): pid=6727 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.189" name="dbroot" dev="configfs" ino=10693 res=0 errno=0
[  142.311209][ T6759] FAULT_INJECTION: forcing a failure.
[  142.311209][ T6759] name failslab, interval 1, probability 0, space 0, times 0
[  142.375896][ T6759] CPU: 1 UID: 0 PID: 6759 Comm: syz.3.196 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) 
[  142.375933][ T6759] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  142.375948][ T6759] Call Trace:
[  142.375956][ T6759]  <TASK>
[  142.375965][ T6759]  dump_stack_lvl+0x16c/0x1f0
[  142.376008][ T6759]  should_fail_ex+0x512/0x640
[  142.376051][ T6759]  should_failslab+0xc2/0x120
[  142.376084][ T6759]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  142.376116][ T6759]  ? skb_clone+0x190/0x3f0
[  142.376153][ T6759]  skb_clone+0x190/0x3f0
[  142.376186][ T6759]  netlink_deliver_tap+0xabd/0xd30
[  142.376228][ T6759]  netlink_unicast+0x5df/0x7f0
[  142.376267][ T6759]  ? __pfx_netlink_unicast+0x10/0x10
[  142.376299][ T6759]  ? __lock_acquire+0xaa4/0x1ba0
[  142.376343][ T6759]  netlink_sendmsg+0x8d1/0xdd0
[  142.376383][ T6759]  ? __pfx_netlink_sendmsg+0x10/0x10
[  142.376431][ T6759]  ____sys_sendmsg+0xa98/0xc70
[  142.376475][ T6759]  ? copy_msghdr_from_user+0x10a/0x160
[  142.376507][ T6759]  ? __pfx_____sys_sendmsg+0x10/0x10
[  142.376563][ T6759]  ___sys_sendmsg+0x134/0x1d0
[  142.376597][ T6759]  ? __pfx____sys_sendmsg+0x10/0x10
[  142.376676][ T6759]  __sys_sendmsg+0x16d/0x220
[  142.376708][ T6759]  ? __pfx___sys_sendmsg+0x10/0x10
[  142.376752][ T6759]  ? rcu_is_watching+0x12/0xc0
[  142.376784][ T6759]  do_syscall_64+0xcd/0x230
[  142.376821][ T6759]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  142.376845][ T6759] RIP: 0033:0x7fdeea98e969
[  142.376864][ T6759] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  142.376891][ T6759] RSP: 002b:00007fdeeb73f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  142.376912][ T6759] RAX: ffffffffffffffda RBX: 00007fdeeabb5fa0 RCX: 00007fdeea98e969
[  142.376926][ T6759] RDX: 0000000004000050 RSI: 0000200000000180 RDI: 000000000000000b
[  142.376941][ T6759] RBP: 00007fdeeb73f090 R08: 0000000000000000 R09: 0000000000000000
[  142.376956][ T6759] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  142.376970][ T6759] R13: 0000000000000000 R14: 00007fdeeabb5fa0 R15: 00007fff0a47ab58
[  142.377004][ T6759]  </TASK>
[  142.378315][ T6759] netlink: 4 bytes leftover after parsing attributes in process `syz.3.196'.
[  143.155078][ T6765] FAULT_INJECTION: forcing a failure.
[  143.155078][ T6765] name fail_futex, interval 1, probability 0, space 0, times 1
[  143.176813][ T6765] CPU: 1 UID: 0 PID: 6765 Comm: syz.3.198 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) 
[  143.176856][ T6765] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  143.176872][ T6765] Call Trace:
[  143.176881][ T6765]  <TASK>
[  143.176891][ T6765]  dump_stack_lvl+0x16c/0x1f0
[  143.176940][ T6765]  should_fail_ex+0x512/0x640
[  143.176982][ T6765]  ? __pfx___futex_wait+0x10/0x10
[  143.177022][ T6765]  get_futex_key+0x49e/0x1000
[  143.177055][ T6765]  ? __pfx_futex_wake_mark+0x10/0x10
[  143.177090][ T6765]  ? __pfx_get_futex_key+0x10/0x10
[  143.177136][ T6765]  futex_wake+0xe7/0x4e0
[  143.177174][ T6765]  ? __pfx_futex_wake+0x10/0x10
[  143.177219][ T6765]  ? do_writev+0x218/0x330
[  143.177252][ T6765]  do_futex+0x1e3/0x350
[  143.177282][ T6765]  ? __pfx_do_futex+0x10/0x10
[  143.177313][ T6765]  ? __might_fault+0xe3/0x190
[  143.177354][ T6765]  __x64_sys_futex+0x1e0/0x4c0
[  143.177390][ T6765]  ? __x64_sys_settimeofday+0x1df/0x2b0
[  143.177426][ T6765]  ? __pfx___x64_sys_futex+0x10/0x10
[  143.177458][ T6765]  ? rcu_is_watching+0x12/0xc0
[  143.177499][ T6765]  do_syscall_64+0xcd/0x230
[  143.177545][ T6765]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  143.177573][ T6765] RIP: 0033:0x7fdeea98e969
[  143.177594][ T6765] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  143.177619][ T6765] RSP: 002b:00007fdeeb73f0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  143.177644][ T6765] RAX: ffffffffffffffda RBX: 00007fdeeabb5fa8 RCX: 00007fdeea98e969
[  143.177667][ T6765] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fdeeabb5fac
[  143.177684][ T6765] RBP: 00007fdeeabb5fa0 R08: 00007fdeeb740000 R09: 0000000000000000
[  143.177700][ T6765] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007fdeeabb5fac
[  143.177717][ T6765] R13: 0000000000000000 R14: 00007fff0a47aa70 R15: 00007fff0a47ab58
[  143.177756][ T6765]  </TASK>
[  143.373207][    C1] vkms_vblank_simulate: vblank timer overrun
[  143.854830][ T6770] hub 8-0:1.0: USB hub found
[  143.878218][ T6770] hub 8-0:1.0: 1 port detected
[  144.565377][ T6782] FAULT_INJECTION: forcing a failure.
[  144.565377][ T6782] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  144.624531][ T6782] CPU: 1 UID: 0 PID: 6782 Comm: syz.2.203 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) 
[  144.624567][ T6782] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  144.624581][ T6782] Call Trace:
[  144.624589][ T6782]  <TASK>
[  144.624598][ T6782]  dump_stack_lvl+0x16c/0x1f0
[  144.624641][ T6782]  should_fail_ex+0x512/0x640
[  144.624683][ T6782]  _copy_from_user+0x2e/0xd0
[  144.624724][ T6782]  copy_msghdr_from_user+0x98/0x160
[  144.624756][ T6782]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  144.624801][ T6782]  ? kfree+0x252/0x4d0
[  144.624823][ T6782]  ? __pfx__kstrtoull+0x10/0x10
[  144.624861][ T6782]  ___sys_sendmsg+0xfe/0x1d0
[  144.624895][ T6782]  ? __pfx____sys_sendmsg+0x10/0x10
[  144.624957][ T6782]  ? __pfx___might_resched+0x10/0x10
[  144.624994][ T6782]  __sys_sendmmsg+0x200/0x420
[  144.625036][ T6782]  ? __pfx___sys_sendmmsg+0x10/0x10
[  144.625083][ T6782]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  144.625142][ T6782]  ? fput+0x70/0xf0
[  144.625172][ T6782]  ? ksys_write+0x1b9/0x240
[  144.625196][ T6782]  ? __pfx_ksys_write+0x10/0x10
[  144.625219][ T6782]  ? rcu_is_watching+0x12/0xc0
[  144.625250][ T6782]  __x64_sys_sendmmsg+0x9c/0x100
[  144.625281][ T6782]  ? lockdep_hardirqs_on+0x7c/0x110
[  144.625316][ T6782]  do_syscall_64+0xcd/0x230
[  144.625358][ T6782]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.625383][ T6782] RIP: 0033:0x7f8d8b58e969
[  144.625404][ T6782] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  144.625426][ T6782] RSP: 002b:00007f8d8c3ae038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  144.625451][ T6782] RAX: ffffffffffffffda RBX: 00007f8d8b7b6080 RCX: 00007f8d8b58e969
[  144.625465][ T6782] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000004
[  144.625480][ T6782] RBP: 00007f8d8c3ae090 R08: 0000000000000000 R09: 0000000000000000
[  144.625495][ T6782] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000001
[  144.625509][ T6782] R13: 0000000000000000 R14: 00007f8d8b7b6080 R15: 00007ffe8681b128
[  144.625543][ T6782]  </TASK>
[  144.838578][    C1] vkms_vblank_simulate: vblank timer overrun
[  145.362846][ T6791] ptp ptp0: new virtual clock ptp1
[  145.472242][ T6791] ptp ptp0: new virtual clock ptp2
[  145.519686][ T6791] ptp ptp0: new virtual clock ptp3
[  145.529613][ T6791] ptp ptp0: guarantee physical clock free running
[  145.539834][ T6786] : Can't lookup blockdev
[  146.249881][ T6815] hub 8-0:1.0: USB hub found
[  146.255647][ T6815] hub 8-0:1.0: 1 port detected
[  146.676733][ T6825] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  146.757270][ T6825] CIFS mount error: No usable UNC path provided in device string!
[  146.757270][ T6825] 
[  146.775026][ T6830] netlink: 8 bytes leftover after parsing attributes in process `syz.3.214'.
[  146.805745][ T6825] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  147.129108][ T6838] netlink: 4 bytes leftover after parsing attributes in process `syz.0.215'.
[  147.559101][ T6845] ima: policy update failed
[  147.567368][   T30] audit: type=1802 audit(6042946392.676:8): pid=6845 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.218" res=0 errno=0
[  147.970220][ T6852] FAULT_INJECTION: forcing a failure.
[  147.970220][ T6852] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  148.017527][ T6852] CPU: 0 UID: 0 PID: 6852 Comm: syz.2.221 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) 
[  148.017564][ T6852] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  148.017578][ T6852] Call Trace:
[  148.017586][ T6852]  <TASK>
[  148.017595][ T6852]  dump_stack_lvl+0x16c/0x1f0
[  148.017637][ T6852]  should_fail_ex+0x512/0x640
[  148.017680][ T6852]  _copy_from_user+0x2e/0xd0
[  148.017721][ T6852]  __sys_bpf+0x21d/0x4d80
[  148.017763][ T6852]  ? __pfx___sys_bpf+0x10/0x10
[  148.017800][ T6852]  ? ksys_write+0x190/0x240
[  148.017830][ T6852]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  148.017881][ T6852]  ? fput+0x70/0xf0
[  148.017906][ T6852]  ? ksys_write+0x1b9/0x240
[  148.017926][ T6852]  ? __pfx_ksys_write+0x10/0x10
[  148.017946][ T6852]  ? rcu_is_watching+0x12/0xc0
[  148.017971][ T6852]  __x64_sys_bpf+0x78/0xc0
[  148.018002][ T6852]  ? lockdep_hardirqs_on+0x7c/0x110
[  148.018033][ T6852]  do_syscall_64+0xcd/0x230
[  148.018067][ T6852]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  148.018089][ T6852] RIP: 0033:0x7f8d8b58e969
[  148.018106][ T6852] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  148.018125][ T6852] RSP: 002b:00007f8d8c3cf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  148.018145][ T6852] RAX: ffffffffffffffda RBX: 00007f8d8b7b5fa0 RCX: 00007f8d8b58e969
[  148.018159][ T6852] RDX: 0000000000000096 RSI: 0000200000000100 RDI: 0000000000000000
[  148.018172][ T6852] RBP: 00007f8d8c3cf090 R08: 0000000000000000 R09: 0000000000000000
[  148.018185][ T6852] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  148.018197][ T6852] R13: 0000000000000000 R14: 00007f8d8b7b5fa0 R15: 00007ffe8681b128
[  148.018226][ T6852]  </TASK>
[  148.431344][ T6857] hub 8-0:1.0: USB hub found
[  148.463555][ T6857] hub 8-0:1.0: 1 port detected
[  149.737476][ T6896] netlink: 8 bytes leftover after parsing attributes in process `syz.1.230'.
[  149.839809][ T6894] GUP no longer grows the stack in syz.2.231 (6894): 14000-401000 (4000)
[  149.839873][ T6894] CPU: 1 UID: 0 PID: 6894 Comm: syz.2.231 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) 
[  149.839890][ T6894] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  149.839898][ T6894] Call Trace:
[  149.839903][ T6894]  <TASK>
[  149.839909][ T6894]  dump_stack_lvl+0x16c/0x1f0
[  149.839933][ T6894]  gup_vma_lookup+0x1d2/0x220
[  149.839955][ T6894]  __get_user_pages+0x234/0x36f0
[  149.839982][ T6894]  ? process_vm_rw_core.constprop.0+0x1d8/0x9a0
[  149.840000][ T6894]  ? look_up_lock_class+0x59/0x150
[  149.840019][ T6894]  ? __pfx___get_user_pages+0x10/0x10
[  149.840040][ T6894]  ? process_vm_rw+0x216/0x2c0
[  149.840055][ T6894]  ? __x64_sys_process_vm_readv+0xe2/0x1c0
[  149.840072][ T6894]  ? do_syscall_64+0xcd/0x230
[  149.840097][ T6894]  __gup_longterm_locked+0x20d/0x1850
[  149.840124][ T6894]  ? __pfx___gup_longterm_locked+0x10/0x10
[  149.840157][ T6894]  pin_user_pages_remote+0xed/0x140
[  149.840175][ T6894]  ? __pfx_pin_user_pages_remote+0x10/0x10
[  149.840187][ T6894]  ? mm_access+0x22d/0x2e0
[  149.840211][ T6894]  process_vm_rw_core.constprop.0+0x41b/0x9a0
[  149.840232][ T6894]  ? futex_wait_queue+0x14c/0x220
[  149.840249][ T6894]  ? futex_unqueue+0xba/0x140
[  149.840267][ T6894]  ? __pfx_process_vm_rw_core.constprop.0+0x10/0x10
[  149.840286][ T6894]  ? iovec_from_user+0xbb/0x140
[  149.840310][ T6894]  ? iovec_from_user+0xbb/0x140
[  149.840325][ T6894]  process_vm_rw+0x216/0x2c0
[  149.840343][ T6894]  ? __pfx_process_vm_rw+0x10/0x10
[  149.840365][ T6894]  ? task_mm_cid_work+0x6b9/0x910
[  149.840386][ T6894]  ? __pfx_task_mm_cid_work+0x10/0x10
[  149.840421][ T6894]  ? xfd_validate_state+0x5d/0x180
[  149.840454][ T6894]  __x64_sys_process_vm_readv+0xe2/0x1c0
[  149.840486][ T6894]  ? do_syscall_64+0x91/0x230
[  149.840506][ T6894]  ? lockdep_hardirqs_on+0x7c/0x110
[  149.840524][ T6894]  do_syscall_64+0xcd/0x230
[  149.840545][ T6894]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  149.840560][ T6894] RIP: 0033:0x7f8d8b58e969
[  149.840571][ T6894] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  149.840583][ T6894] RSP: 002b:00007f8d8c3cf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[  149.840597][ T6894] RAX: ffffffffffffffda RBX: 00007f8d8b7b5fa0 RCX: 00007f8d8b58e969
[  149.840606][ T6894] RDX: 0000000000000004 RSI: 0000200000000040 RDI: 00000000000000d4
[  149.840614][ T6894] RBP: 00007f8d8b610ab1 R08: 0000000000000003 R09: 0000000000000000
[  149.840622][ T6894] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000000
[  149.840629][ T6894] R13: 0000000000000000 R14: 00007f8d8b7b5fa0 R15: 00007ffe8681b128
[  149.840647][ T6894]  </TASK>
[  149.878371][ T6898] netlink: set zone limit has 8 unknown bytes
[  151.307876][ T6913] hub 8-0:1.0: USB hub found
[  151.329488][ T6913] hub 8-0:1.0: 1 port detected
[  151.480188][   T55] Bluetooth: hci2: unexpected subevent 0x01 length: 4 < 18
[  151.508401][   T30] audit: type=1800 audit(6042946404.614:9): pid=6921 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.237" name="dbroot" dev="configfs" ino=11097 res=0 errno=0
[  151.596293][ T6925] netlink: 28 bytes leftover after parsing attributes in process `syz.0.237'.
[  151.791288][ T6931] netlink: 28 bytes leftover after parsing attributes in process `syz.2.240'.
[  152.099103][ T6938] netlink: 'syz.3.243': attribute type 2 has an invalid length.
[  152.269005][ T6936] netlink: 342 bytes leftover after parsing attributes in process `syz.0.242'.
[  152.303876][ T6952] hub 8-0:1.0: USB hub found
[  152.317718][ T6952] hub 8-0:1.0: 1 port detected
[  152.338578][ T6956] netlink: 'syz.1.246': attribute type 2 has an invalid length.
[  152.547269][ T6945] cgroup: fork rejected by pids controller in /syz2
[  154.160680][ T7026] FAULT_INJECTION: forcing a failure.
[  154.160680][ T7026] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  154.226666][ T7026] CPU: 0 UID: 0 PID: 7026 Comm: syz.0.256 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) 
[  154.226701][ T7026] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  154.226714][ T7026] Call Trace:
[  154.226721][ T7026]  <TASK>
[  154.226730][ T7026]  dump_stack_lvl+0x16c/0x1f0
[  154.226780][ T7026]  should_fail_ex+0x512/0x640
[  154.226822][ T7026]  _copy_from_iter+0x2a4/0x15b0
[  154.226867][ T7026]  ? __alloc_skb+0x200/0x380
[  154.226897][ T7026]  ? __pfx__copy_from_iter+0x10/0x10
[  154.226937][ T7026]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  154.226968][ T7026]  ? __lock_acquire+0xaa4/0x1ba0
[  154.227010][ T7026]  netlink_sendmsg+0x829/0xdd0
[  154.227050][ T7026]  ? __pfx_netlink_sendmsg+0x10/0x10
[  154.227098][ T7026]  ____sys_sendmsg+0xa98/0xc70
[  154.227137][ T7026]  ? copy_msghdr_from_user+0x10a/0x160
[  154.227168][ T7026]  ? __pfx_____sys_sendmsg+0x10/0x10
[  154.227223][ T7026]  ___sys_sendmsg+0x134/0x1d0
[  154.227254][ T7026]  ? __pfx____sys_sendmsg+0x10/0x10
[  154.227330][ T7026]  __sys_sendmsg+0x16d/0x220
[  154.227361][ T7026]  ? __pfx___sys_sendmsg+0x10/0x10
[  154.227404][ T7026]  ? rcu_is_watching+0x12/0xc0
[  154.227439][ T7026]  do_syscall_64+0xcd/0x230
[  154.227479][ T7026]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  154.227505][ T7026] RIP: 0033:0x7f300398e969
[  154.227525][ T7026] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  154.227548][ T7026] RSP: 002b:00007f300481d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  154.227571][ T7026] RAX: ffffffffffffffda RBX: 00007f3003bb5fa0 RCX: 00007f300398e969
[  154.227588][ T7026] RDX: 0000000004000040 RSI: 0000200000004100 RDI: 0000000000000003
[  154.227603][ T7026] RBP: 00007f300481d090 R08: 0000000000000000 R09: 0000000000000000
[  154.227618][ T7026] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  154.227633][ T7026] R13: 0000000000000000 R14: 00007f3003bb5fa0 R15: 00007ffdf09caa88
[  154.227667][ T7026]  </TASK>
[  154.600751][ T7029] hub 8-0:1.0: USB hub found
[  154.623505][ T7029] hub 8-0:1.0: 1 port detected
[  154.915240][ T7037] netlink: 4 bytes leftover after parsing attributes in process `syz.3.260'.
[  156.425745][ T7056] netlink: 4 bytes leftover after parsing attributes in process `syz.0.264'.
[  156.723432][ T7059] random: crng reseeded on system resumption
[  157.434965][ T7074] hub 8-0:1.0: USB hub found
[  157.444441][ T7074] hub 8-0:1.0: 1 port detected
[  158.057509][ T7085] FAULT_INJECTION: forcing a failure.
[  158.057509][ T7085] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  158.102000][ T7085] CPU: 0 UID: 0 PID: 7085 Comm: syz.0.273 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) 
[  158.102037][ T7085] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  158.102050][ T7085] Call Trace:
[  158.102058][ T7085]  <TASK>
[  158.102068][ T7085]  dump_stack_lvl+0x16c/0x1f0
[  158.102110][ T7085]  should_fail_ex+0x512/0x640
[  158.102154][ T7085]  _copy_to_user+0x32/0xd0
[  158.102181][ T7085]  simple_read_from_buffer+0xcb/0x170
[  158.102223][ T7085]  proc_fail_nth_read+0x197/0x270
[  158.102261][ T7085]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  158.102301][ T7085]  ? rw_verify_area+0xcf/0x680
[  158.102336][ T7085]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  158.102373][ T7085]  vfs_read+0x1de/0xc70
[  158.102403][ T7085]  ? __pfx___mutex_lock+0x10/0x10
[  158.102440][ T7085]  ? __pfx_vfs_read+0x10/0x10
[  158.102476][ T7085]  ? __fget_files+0x20e/0x3c0
[  158.102518][ T7085]  ksys_read+0x12a/0x240
[  158.102543][ T7085]  ? __pfx_ksys_read+0x10/0x10
[  158.102580][ T7085]  do_syscall_64+0xcd/0x230
[  158.102620][ T7085]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  158.102646][ T7085] RIP: 0033:0x7f300398d37c
[  158.102666][ T7085] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  158.102688][ T7085] RSP: 002b:00007f300481d030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  158.102712][ T7085] RAX: ffffffffffffffda RBX: 00007f3003bb5fa0 RCX: 00007f300398d37c
[  158.102728][ T7085] RDX: 000000000000000f RSI: 00007f300481d0a0 RDI: 0000000000000004
[  158.102743][ T7085] RBP: 00007f300481d090 R08: 0000000000000000 R09: 0000000000000000
[  158.102758][ T7085] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  158.102772][ T7085] R13: 0000000000000000 R14: 00007f3003bb5fa0 R15: 00007ffdf09caa88
[  158.102806][ T7085]  </TASK>
[  158.398900][ T7088] netlink: 4 bytes leftover after parsing attributes in process `syz.3.274'.
[  158.487390][ T7088] netlink: 25 bytes leftover after parsing attributes in process `syz.3.274'.
[  158.681211][ T7094] netlink: 4 bytes leftover after parsing attributes in process `syz.3.276'.
[  158.691523][ T7094] netlink: 25 bytes leftover after parsing attributes in process `syz.3.276'.
[  158.710798][ T7094] FAULT_INJECTION: forcing a failure.
[  158.710798][ T7094] name failslab, interval 1, probability 0, space 0, times 0
[  158.729384][ T7094] CPU: 0 UID: 0 PID: 7094 Comm: syz.3.276 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) 
[  158.729419][ T7094] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  158.729433][ T7094] Call Trace:
[  158.729441][ T7094]  <TASK>
[  158.729451][ T7094]  dump_stack_lvl+0x16c/0x1f0
[  158.729492][ T7094]  should_fail_ex+0x512/0x640
[  158.729529][ T7094]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  158.729564][ T7094]  should_failslab+0xc2/0x120
[  158.729596][ T7094]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  158.729626][ T7094]  ? __alloc_skb+0x2b2/0x380
[  158.729667][ T7094]  __alloc_skb+0x2b2/0x380
[  158.729696][ T7094]  ? __pfx___alloc_skb+0x10/0x10
[  158.729739][ T7094]  netlink_ack+0x15d/0xb80
[  158.729784][ T7094]  netlink_rcv_skb+0x347/0x440
[  158.729819][ T7094]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  158.729860][ T7094]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  158.729893][ T7094]  ? __pfx_aa_get_newest_label+0x10/0x10
[  158.729939][ T7094]  ? bpf_lsm_capable+0x9/0x10
[  158.729966][ T7094]  ? security_capable+0x7e/0x260
[  158.729996][ T7094]  ? ns_capable+0xd7/0x110
[  158.730028][ T7094]  nfnetlink_rcv+0x1b3/0x430
[  158.730065][ T7094]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  158.730102][ T7094]  ? netlink_deliver_tap+0x1ae/0xd30
[  158.730141][ T7094]  netlink_unicast+0x53a/0x7f0
[  158.730180][ T7094]  ? __pfx_netlink_unicast+0x10/0x10
[  158.730212][ T7094]  ? __build_skb_around+0x278/0x3b0
[  158.730239][ T7094]  ? __build_skb+0x6e/0x90
[  158.730267][ T7094]  ? is_vmalloc_addr+0x30/0x40
[  158.730301][ T7094]  netlink_sendmsg+0x8d1/0xdd0
[  158.730342][ T7094]  ? __pfx_netlink_sendmsg+0x10/0x10
[  158.730389][ T7094]  sock_write_iter+0x4fc/0x5b0
[  158.730429][ T7094]  ? __pfx_sock_write_iter+0x10/0x10
[  158.730480][ T7094]  ? bpf_lsm_file_permission+0x9/0x10
[  158.730503][ T7094]  ? security_file_permission+0x71/0x210
[  158.730539][ T7094]  ? rw_verify_area+0xcf/0x680
[  158.730580][ T7094]  vfs_write+0x5bd/0x1180
[  158.730608][ T7094]  ? __pfx_sock_write_iter+0x10/0x10
[  158.730655][ T7094]  ? __pfx_vfs_write+0x10/0x10
[  158.730678][ T7094]  ? find_held_lock+0x2b/0x80
[  158.730728][ T7094]  ksys_write+0x205/0x240
[  158.730754][ T7094]  ? __pfx_ksys_write+0x10/0x10
[  158.730778][ T7094]  ? rcu_is_watching+0x12/0xc0
[  158.730814][ T7094]  do_syscall_64+0xcd/0x230
[  158.730855][ T7094]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  158.730882][ T7094] RIP: 0033:0x7fdeea98e969
[  158.730902][ T7094] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  158.730925][ T7094] RSP: 002b:00007fdeeb73f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  158.730949][ T7094] RAX: ffffffffffffffda RBX: 00007fdeeabb5fa0 RCX: 00007fdeea98e969
[  158.730966][ T7094] RDX: 000000000000fdef RSI: 0000200000000000 RDI: 0000000000000002
[  158.730982][ T7094] RBP: 00007fdeeb73f090 R08: 0000000000000000 R09: 0000000000000000
[  158.730998][ T7094] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  158.731012][ T7094] R13: 0000000000000000 R14: 00007fdeeabb5fa0 R15: 00007fff0a47ab58
[  158.731047][ T7094]  </TASK>
[  159.604270][ T7101] FAULT_INJECTION: forcing a failure.
[  159.604270][ T7101] name failslab, interval 1, probability 0, space 0, times 0
[  159.625900][ T7101] CPU: 1 UID: 0 PID: 7101 Comm: syz.0.278 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) 
[  159.625935][ T7101] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  159.625948][ T7101] Call Trace:
[  159.625956][ T7101]  <TASK>
[  159.625965][ T7101]  dump_stack_lvl+0x16c/0x1f0
[  159.626007][ T7101]  should_fail_ex+0x512/0x640
[  159.626044][ T7101]  ? __kmalloc_noprof+0xbf/0x510
[  159.626075][ T7101]  ? tracepoint_add_func+0x2a6/0xea0
[  159.626108][ T7101]  should_failslab+0xc2/0x120
[  159.626140][ T7101]  __kmalloc_noprof+0xd2/0x510
[  159.626175][ T7101]  ? __pfx_probe_sched_wakeup+0x10/0x10
[  159.626210][ T7101]  tracepoint_add_func+0x2a6/0xea0
[  159.626244][ T7101]  ? __pfx_probe_sched_wakeup+0x10/0x10
[  159.626285][ T7101]  ? __pfx_probe_sched_wakeup+0x10/0x10
[  159.626316][ T7101]  tracepoint_probe_register+0xbf/0x100
[  159.626352][ T7101]  ? __pfx_tracepoint_probe_register+0x10/0x10
[  159.626388][ T7101]  ? __pfx_probe_sched_wakeup+0x10/0x10
[  159.626432][ T7101]  tracing_start_sched_switch+0xdc/0x1e0
[  159.626463][ T7101]  __ftrace_event_enable_disable+0x670/0x8b0
[  159.626507][ T7101]  __ftrace_set_clr_event_nolock+0x390/0xb70
[  159.626558][ T7101]  ftrace_set_clr_event+0x16e/0x330
[  159.626598][ T7101]  ? __pfx_ftrace_set_clr_event+0x10/0x10
[  159.626656][ T7101]  ftrace_event_write+0x243/0x290
[  159.626696][ T7101]  ? __pfx_ftrace_event_write+0x10/0x10
[  159.626752][ T7101]  vfs_write+0x25c/0x1180
[  159.626775][ T7101]  ? __pfx_ftrace_event_write+0x10/0x10
[  159.626820][ T7101]  ? __pfx___mutex_lock+0x10/0x10
[  159.626858][ T7101]  ? __pfx_vfs_write+0x10/0x10
[  159.626896][ T7101]  ? __fget_files+0x20e/0x3c0
[  159.626934][ T7101]  ksys_write+0x12a/0x240
[  159.626960][ T7101]  ? __pfx_ksys_write+0x10/0x10
[  159.626984][ T7101]  ? rcu_is_watching+0x12/0xc0
[  159.627022][ T7101]  do_syscall_64+0xcd/0x230
[  159.627063][ T7101]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  159.627089][ T7101] RIP: 0033:0x7f300398e969
[  159.627110][ T7101] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  159.627133][ T7101] RSP: 002b:00007f300481d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  159.627157][ T7101] RAX: ffffffffffffffda RBX: 00007f3003bb5fa0 RCX: 00007f300398e969
[  159.627174][ T7101] RDX: 0000000000000004 RSI: 0000200000000040 RDI: 0000000000000006
[  159.627189][ T7101] RBP: 00007f300481d090 R08: 0000000000000000 R09: 0000000000000000
[  159.627204][ T7101] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  159.627219][ T7101] R13: 0000000000000000 R14: 00007f3003bb5fa0 R15: 00007ffdf09caa88
[  159.627256][ T7101]  </TASK>
[  159.627267][ T7101] wakeup trace: Couldn't activate tracepoint probe to kernel_sched_wakeup_new
[  159.912846][ T7097] bridge0: port 3(gretap0) entered blocking state
[  159.931027][ T7097] bridge0: port 3(gretap0) entered disabled state
[  159.960407][ T7097] gretap0: entered allmulticast mode
[  160.042778][ T7097] gretap0: entered promiscuous mode
[  160.048819][ T7097] bridge0: port 3(gretap0) entered blocking state
[  160.056300][ T7097] bridge0: port 3(gretap0) entered forwarding state
[  161.416196][ T7114] hub 8-0:1.0: USB hub found
[  161.437035][ T7114] hub 8-0:1.0: 1 port detected
[  162.025069][ T7123] netlink: 36 bytes leftover after parsing attributes in process `syz.0.285'.
[  162.150776][ T7123] Invalid ELF header magic: != ELF
[  162.816806][ T7123] could not allocate digest TFM handle 
[  162.825006][ T7122] syz.0.285 (7122) used greatest stack depth: 20216 bytes left
[  162.865336][ T7126] could not allocate digest TFM handle 
[  163.594545][ T7156] hub 8-0:1.0: USB hub found
[  163.610932][ T7156] hub 8-0:1.0: 1 port detected
[  165.297689][ T7187] HfR: entered promiscuous mode
[  165.343701][ T7196] openvswitch: HfR: Dropping previously announced user features
[  165.389597][ T7188] openvswitch: HfR: Dropping previously announced user features
[  165.448899][ T7188] openvswitch: HfR: Dropping previously announced user features
[  165.508878][ T7188] openvswitch: HfR: Dropping previously announced user features
[  165.529583][ T7188] openvswitch: HfR: Dropping previously announced user features
[  165.969755][ T7188] openvswitch: HfR: Dropping previously announced user features
[  165.995897][ T7188] openvswitch: HfR: Dropping previously announced user features
[  166.033773][ T7188] openvswitch: HfR: Dropping previously announced user features
[  166.042577][ T7188] openvswitch: HfR: Dropping previously announced user features
[  166.073115][ T7202] hub 8-0:1.0: USB hub found
[  166.109817][ T7202] hub 8-0:1.0: 1 port detected
[  166.928082][ T7194] netlink: 350 bytes leftover after parsing attributes in process `syz.2.283'.
[  167.361684][ T6959] syz.2.245 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  167.381590][   T55] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18
[  167.390156][   T55] Bluetooth: hci2: Invalid handle: 0xe200 > 0x0eff
[  167.405295][ T6959] CPU: 0 UID: 0 PID: 6959 Comm: syz.2.245 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) 
[  167.405326][ T6959] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  167.405338][ T6959] Call Trace:
[  167.405347][ T6959]  <TASK>
[  167.405356][ T6959]  dump_stack_lvl+0x16c/0x1f0
[  167.405394][ T6959]  dump_header+0x101/0x930
[  167.405431][ T6959]  oom_kill_process+0x270/0xa60
[  167.405465][ T6959]  out_of_memory+0x350/0x1700
[  167.405503][ T6959]  ? __pfx_out_of_memory+0x10/0x10
[  167.405545][ T6959]  mem_cgroup_out_of_memory+0x205/0x270
[  167.405584][ T6959]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  167.405634][ T6959]  ? do_raw_spin_unlock+0x172/0x230
[  167.405680][ T6959]  try_charge_memcg+0xa07/0x10c0
[  167.405722][ T6959]  ? __pfx_try_charge_memcg+0x10/0x10
[  167.405753][ T6959]  ? __print_lock_name+0xd1/0xe0
[  167.405781][ T6959]  ? rcu_read_unlock+0x17/0x60
[  167.405825][ T6959]  charge_memcg+0x8a/0x230
[  167.405859][ T6959]  __mem_cgroup_charge+0x2b/0x1e0
[  167.405897][ T6959]  shmem_alloc_and_add_folio+0x514/0xc20
[  167.405939][ T6959]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  167.405976][ T6959]  ? shmem_allowable_huge_orders+0xcb/0x2f0
[  167.406022][ T6959]  shmem_get_folio_gfp+0x687/0x1530
[  167.406060][ T6959]  ? __lock_acquire+0xaa4/0x1ba0
[  167.406094][ T6959]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  167.406128][ T6959]  ? __pte_offset_map_lock+0x155/0x2f0
[  167.406172][ T6959]  shmem_write_begin+0x160/0x300
[  167.406209][ T6959]  ? __pfx_shmem_write_begin+0x10/0x10
[  167.406244][ T6959]  ? balance_dirty_pages_ratelimited_flags+0x92/0x1260
[  167.406285][ T6959]  ? __pfx_timestamp_truncate+0x10/0x10
[  167.406320][ T6959]  generic_perform_write+0x3cd/0x930
[  167.406362][ T6959]  ? __pfx_generic_perform_write+0x10/0x10
[  167.406397][ T6959]  ? inode_needs_update_time.part.0+0x191/0x270
[  167.406437][ T6959]  shmem_file_write_iter+0x10e/0x140
[  167.406475][ T6959]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  167.406506][ T6959]  __kernel_write_iter+0x317/0xa90
[  167.406536][ T6959]  ? __pfx___kernel_write_iter+0x10/0x10
[  167.406561][ T6959]  ? __up_read+0x1f8/0x750
[  167.406602][ T6959]  ? dump_user_range+0x73d/0xb30
[  167.406646][ T6959]  dump_user_range+0x418/0xb30
[  167.406693][ T6959]  ? __pfx_dump_user_range+0x10/0x10
[  167.406730][ T6959]  ? elf_coredump_extra_notes_write+0xbd/0x430
[  167.406766][ T6959]  ? __pfx_writenote+0x10/0x10
[  167.406815][ T6959]  elf_core_dump+0x288a/0x3a90
[  167.406875][ T6959]  ? __pfx_elf_core_dump+0x10/0x10
[  167.406917][ T6959]  ? check_preempt_wakeup_fair+0x509/0x880
[  167.406950][ T6959]  ? find_held_lock+0x2b/0x80
[  167.406975][ T6959]  ? 0xffffffffff600000
[  167.407003][ T6959]  ? rcu_is_watching+0x12/0xc0
[  167.407028][ T6959]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  167.407062][ T6959]  ? lockdep_hardirqs_on+0x7c/0x110
[  167.407158][ T6959]  ? do_coredump+0x3183/0x4480
[  167.407190][ T6959]  do_coredump+0x3183/0x4480
[  167.407241][ T6959]  ? __pfx_do_coredump+0x10/0x10
[  167.407280][ T6959]  ? stack_trace_save+0x8e/0xc0
[  167.407307][ T6959]  ? __pfx_stack_trace_save+0x10/0x10
[  167.407333][ T6959]  ? stack_depot_save_flags+0x28/0xa50
[  167.407374][ T6959]  ? __lock_acquire+0xaa4/0x1ba0
[  167.407417][ T6959]  ? __kasan_slab_free+0x51/0x70
[  167.407445][ T6959]  ? kmem_cache_free+0x2d4/0x4d0
[  167.407471][ T6959]  ? __sigqueue_free+0xba/0x2a0
[  167.407504][ T6959]  ? get_signal+0xcba/0x26d0
[  167.407531][ T6959]  ? arch_do_signal_or_restart+0x8f/0x7a0
[  167.407622][ T6959]  ? proc_coredump_connector+0x2d1/0x4f0
[  167.407663][ T6959]  ? __pfx_proc_coredump_connector+0x10/0x10
[  167.407713][ T6959]  ? rcu_is_watching+0x12/0xc0
[  167.407743][ T6959]  get_signal+0x22e3/0x26d0
[  167.407787][ T6959]  ? __pfx_get_signal+0x10/0x10
[  167.407819][ T6959]  ? rcu_is_watching+0x12/0xc0
[  167.407844][ T6959]  ? trace_irq_disable.constprop.0+0xd4/0x120
[  167.407885][ T6959]  arch_do_signal_or_restart+0x8f/0x7a0
[  167.407922][ T6959]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  167.407983][ T6959]  irqentry_exit_to_user_mode+0x13f/0x280
[  167.408028][ T6959]  asm_exc_page_fault+0x26/0x30
[  167.408054][ T6959] RIP: 0033:0xc7
[  167.408077][ T6959] Code: Unable to access opcode bytes at 0x9d.
[  167.408088][ T6959] RSP: 002b:000000000000000a EFLAGS: 00010206
[  167.408108][ T6959] RAX: 0000000000000000 RBX: 00007f8d8b7b6160 RCX: 00007f8d8b58e969
[  167.408124][ T6959] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000020003b46
[  167.408140][ T6959] RBP: 00007f8d8b610ab1 R08: 0000000000000002 R09: 0000000000000000
[  167.408155][ T6959] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  167.408170][ T6959] R13: 0000000000000001 R14: 00007f8d8b7b6160 R15: 00007ffe8681b128
[  167.408207][ T6959]  </TASK>
[  167.408557][ T6959] memory: usage 307200kB, limit 307200kB, failcnt 18627
[  167.897179][ T6959] memory+swap: usage 432032kB, limit 9007199254740988kB, failcnt 0
[  167.942636][ T6959] kmem: usage 3512kB, limit 9007199254740988kB, failcnt 0
[  168.058908][ T7243] hub 8-0:1.0: USB hub found
[  168.069444][ T7243] hub 8-0:1.0: 1 port detected
[  168.350359][ T6959] Memory cgroup stats for /syz2:
[  168.350611][ T6959] cache 310595584
[  168.531117][ T6959] rss 266240
[  168.634226][ T6959] rss_huge 0
[  168.637479][ T6959] shmem 310595584
[  168.641133][ T6959] mapped_file 14557184
[  168.773856][ T6959] dirty 0
[  168.776917][ T6959] writeback 0
[  168.780312][ T6959] workingset_refault_anon 2711
[  168.785271][ T6959] workingset_refault_file 45
[  168.790205][ T6959] swap 127844352
[  168.793956][ T6959] swapcached 151552
[  168.797906][ T6959] pgpgin 157041
[  168.801470][ T6959] pgpgout 83665
[  168.805098][ T6959] pgfault 58525
[  168.808672][ T6959] pgmajfault 283
[  168.812302][ T6959] inactive_anon 170094592
[  168.816811][ T6959] active_anon 139751424
[  168.821091][ T6959] inactive_file 0
[  168.825582][ T6959] active_file 0
[  168.829150][ T6959] unevictable 0
[  168.841478][ T6959] hierarchical_memory_limit 314572800
[  169.033702][ T7258] ubi0: attaching mtd0
[  169.044949][ T6959] hierarchical_memsw_limit 9223372036854771712
[  169.051168][ T6959] total_cache 310595584
[  169.056434][ T6959] total_rss 266240
[  169.060181][ T6959] total_rss_huge 0
[  169.064240][ T6959] total_shmem 310595584
[  169.069612][ T6959] total_mapped_file 14557184
[  169.079449][ T6959] total_dirty 0
[  169.085758][ T7258] ubi0: scanning is finished
[  169.095015][ T7258] ubi0: empty MTD device detected
[  169.096465][ T6959] total_writeback 0
[  169.103981][ T6959] total_workingset_refault_anon 2711
[  169.109360][ T6959] total_workingset_refault_file 45
[  169.114557][ T6959] total_swap 127844352
[  169.118641][ T6959] total_swapcached 151552
[  169.123120][ T6959] total_pgpgin 157041
[  169.127117][ T6959] total_pgpgout 83665
[  169.131105][ T6959] total_pgfault 58525
[  169.135230][ T6959] total_pgmajfault 283
[  169.139528][ T7259] can: request_module (can-proto-3) failed.
[  169.165356][ T6959] total_inactive_anon 170094592
[  169.232638][ T6959] total_active_anon 139751424
[  169.237374][ T6959] total_inactive_file 0
[  169.262861][ T6959] total_active_file 0
[  169.266889][ T6959] total_unevictable 0
[  169.272276][ T6959] anon_cost 0
[  169.306780][ T6959] file_cost 0
[  169.433853][ T6959] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.245,pid=6978,uid=0
[  169.450292][ T6959] Memory cgroup out of memory: Killed process 6978 (syz.2.245) total-vm:131400kB, anon-rss:944kB, file-rss:38856kB, shmem-rss:14204kB, UID:0 pgtables:216kB oom_score_adj:1000
[  169.517500][ T7258] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB)
[  169.562698][ T7258] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[  169.595029][ T7258] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1
[  169.603329][ T7258] ubi0: VID header offset: 64 (aligned 64), data offset: 128
[  169.622771][ T7258] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[  169.642888][ T7258] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23
[  169.653200][ T7258] ubi0: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 2567220890
[  169.663362][ T7258] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[  169.751925][ T7265] ubi0: background thread "ubi_bgt0d" started, PID 7265
[  170.828714][ T7274] FAULT_INJECTION: forcing a failure.
[  170.828714][ T7274] name failslab, interval 1, probability 0, space 0, times 0
[  170.864452][ T7274] CPU: 0 UID: 0 PID: 7274 Comm: syz.0.319 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) 
[  170.864486][ T7274] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  170.864501][ T7274] Call Trace:
[  170.864510][ T7274]  <TASK>
[  170.864519][ T7274]  dump_stack_lvl+0x16c/0x1f0
[  170.864561][ T7274]  should_fail_ex+0x512/0x640
[  170.864599][ T7274]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  170.864632][ T7274]  should_failslab+0xc2/0x120
[  170.864665][ T7274]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  170.864695][ T7274]  ? mm_alloc+0x1c/0xc0
[  170.864736][ T7274]  mm_alloc+0x1c/0xc0
[  170.864766][ T7274]  alloc_bprm+0x2ab/0xdd0
[  170.864804][ T7274]  ? strncpy_from_user+0x203/0x2e0
[  170.864840][ T7274]  do_execveat_common.isra.0+0x1ce/0x610
[  170.864885][ T7274]  __x64_sys_execve+0x8e/0xb0
[  170.864911][ T7274]  do_syscall_64+0xcd/0x230
[  170.864949][ T7274]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  170.864974][ T7274] RIP: 0033:0x7f300398e969
[  170.864995][ T7274] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  170.865024][ T7274] RSP: 002b:00007f300481d038 EFLAGS: 00000246 ORIG_RAX: 000000000000003b
[  170.865048][ T7274] RAX: ffffffffffffffda RBX: 00007f3003bb5fa0 RCX: 00007f300398e969
[  170.865063][ T7274] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000200000000180
[  170.865078][ T7274] RBP: 00007f300481d090 R08: 0000000000000000 R09: 0000000000000000
[  170.865093][ T7274] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  170.865107][ T7274] R13: 0000000000000000 R14: 00007f3003bb5fa0 R15: 00007ffdf09caa88
[  170.865141][ T7274]  </TASK>
[  171.557338][   T32] oom_reaper: reaped process 6978 (syz.2.245), now anon-rss:0kB, file-rss:37632kB, shmem-rss:13820kB
[  172.061850][ T6964] syz.2.245 (6964) used greatest stack depth: 19640 bytes left
[  172.080217][ T6972] syz.2.245 (6972) used greatest stack depth: 19560 bytes left
[  172.253589][ T6974] syz.2.245 (6974) used greatest stack depth: 19272 bytes left
[  172.481034][   T30] audit: type=1326 audit(6042976729.579:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7307 comm="syz.1.328" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fdb3958e969 code=0x0
[  172.504581][ T7310] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(1471534388.1832380980.3041263912), cmd(12)
[  172.575243][ T7310] input: jJǸ���;9�%v����l��Q�	J86�� as /devices/virtual/input/input9
[  173.833339][ T6948] syz.2.245 (6948) used greatest stack depth: 19000 bytes left
[  174.032214][ T7326] hub 8-0:1.0: USB hub found
[  174.079375][ T7326] hub 8-0:1.0: 1 port detected
[  174.498165][ T7331] HfR: entered promiscuous mode
[  174.876324][ T7335] could not allocate digest TFM handle 
[  175.116194][ T7342] process 'syz.1.337' launched '/dev/fd/3' with NULL argv: empty string added
[  175.526002][ T7353] FAULT_INJECTION: forcing a failure.
[  175.526002][ T7353] name failslab, interval 1, probability 0, space 0, times 0
[  175.565491][ T7353] CPU: 0 UID: 0 PID: 7353 Comm: syz.0.340 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) 
[  175.565525][ T7353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  175.565537][ T7353] Call Trace:
[  175.565545][ T7353]  <TASK>
[  175.565554][ T7353]  dump_stack_lvl+0x16c/0x1f0
[  175.565595][ T7353]  should_fail_ex+0x512/0x640
[  175.565629][ T7353]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  175.565661][ T7353]  should_failslab+0xc2/0x120
[  175.565692][ T7353]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  175.565719][ T7353]  ? alloc_vfsmnt+0x23/0x6f0
[  175.565754][ T7353]  alloc_vfsmnt+0x23/0x6f0
[  175.565783][ T7353]  clone_mnt+0x6d/0xff0
[  175.565815][ T7353]  ? is_subdir+0x1a8/0x3e0
[  175.565845][ T7353]  __do_loopback+0x430/0x5a0
[  175.565873][ T7353]  vfs_open_tree+0x4a6/0x910
[  175.565902][ T7353]  ? __pfx_vfs_open_tree+0x10/0x10
[  175.565926][ T7353]  ? arch_syscall_is_vdso_sigreturn+0xb6/0x230
[  175.565963][ T7353]  ? syscall_user_dispatch+0x78/0x140
[  175.566006][ T7353]  __x64_sys_open_tree+0x84/0x130
[  175.566036][ T7353]  do_syscall_64+0xcd/0x230
[  175.566075][ T7353]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  175.566101][ T7353] RIP: 0033:0x7f300398e969
[  175.566121][ T7353] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  175.566147][ T7353] RSP: 002b:00007f300481d038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ac
[  175.566171][ T7353] RAX: ffffffffffffffda RBX: 00007f3003bb5fa0 RCX: 00007f300398e969
[  175.566186][ T7353] RDX: 0000000000001001 RSI: 0000000000000000 RDI: 0000000000000003
[  175.566200][ T7353] RBP: 00007f300481d090 R08: 0000000000000000 R09: 0000000000000000
[  175.566215][ T7353] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  175.566230][ T7353] R13: 0000000000000000 R14: 00007f3003bb5fa0 R15: 00007ffdf09caa88
[  175.566265][ T7353]  </TASK>
[  176.034064][ T7357] FAULT_INJECTION: forcing a failure.
[  176.034064][ T7357] name failslab, interval 1, probability 0, space 0, times 0
[  176.052766][ T7357] CPU: 0 UID: 0 PID: 7357 Comm: syz.0.342 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) 
[  176.052802][ T7357] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  176.052817][ T7357] Call Trace:
[  176.052826][ T7357]  <TASK>
[  176.052836][ T7357]  dump_stack_lvl+0x16c/0x1f0
[  176.052884][ T7357]  should_fail_ex+0x512/0x640
[  176.052931][ T7357]  should_failslab+0xc2/0x120
[  176.052967][ T7357]  __kmalloc_cache_noprof+0x6a/0x3e0
[  176.052996][ T7357]  ? sctp_add_bind_addr+0xae/0x3f0
[  176.053040][ T7357]  sctp_add_bind_addr+0xae/0x3f0
[  176.053083][ T7357]  sctp_copy_local_addr_list+0x39d/0x5a0
[  176.053132][ T7357]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  176.053181][ T7357]  ? sctp_auth_asoc_copy_shkeys+0x2a5/0x360
[  176.053217][ T7357]  ? sctp_bind_addr_copy+0xe0/0x530
[  176.053261][ T7357]  sctp_bind_addr_copy+0xe0/0x530
[  176.053309][ T7357]  sctp_connect_new_asoc+0x1d7/0x790
[  176.053352][ T7357]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  176.053404][ T7357]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  176.053436][ T7357]  sctp_sendmsg+0x15f9/0x1ee0
[  176.053468][ T7357]  ? __pfx___up_read+0x10/0x10
[  176.053519][ T7357]  ? __pfx_sctp_sendmsg+0x10/0x10
[  176.053554][ T7357]  ? __pfx___might_resched+0x10/0x10
[  176.053603][ T7357]  ? __pfx_aa_sk_perm+0x10/0x10
[  176.053643][ T7357]  ? __pfx_sctp_sendmsg+0x10/0x10
[  176.053677][ T7357]  inet_sendmsg+0x119/0x140
[  176.053719][ T7357]  ____sys_sendmsg+0x973/0xc70
[  176.053765][ T7357]  ? __pfx_____sys_sendmsg+0x10/0x10
[  176.053803][ T7357]  ? __pfx___schedule+0x10/0x10
[  176.053858][ T7357]  ___sys_sendmsg+0x134/0x1d0
[  176.053895][ T7357]  ? __pfx____sys_sendmsg+0x10/0x10
[  176.053948][ T7357]  ? find_held_lock+0x2b/0x80
[  176.054000][ T7357]  __sys_sendmmsg+0x200/0x420
[  176.054039][ T7357]  ? __pfx___sys_sendmmsg+0x10/0x10
[  176.054090][ T7357]  ? __pfx_do_futex+0x10/0x10
[  176.054139][ T7357]  ? xfd_validate_state+0x5d/0x180
[  176.054186][ T7357]  ? rcu_is_watching+0x12/0xc0
[  176.054219][ T7357]  __x64_sys_sendmmsg+0x9c/0x100
[  176.054253][ T7357]  ? lockdep_hardirqs_on+0x7c/0x110
[  176.054291][ T7357]  do_syscall_64+0xcd/0x230
[  176.054336][ T7357]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  176.054368][ T7357] RIP: 0033:0x7f300398e969
[  176.054395][ T7357] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  176.054421][ T7357] RSP: 002b:00007f300481d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  176.054447][ T7357] RAX: ffffffffffffffda RBX: 00007f3003bb5fa0 RCX: 00007f300398e969
[  176.054465][ T7357] RDX: 0000000000000005 RSI: 0000200000000140 RDI: 0000000000000007
[  176.054482][ T7357] RBP: 00007f3003a10ab1 R08: 0000000000000000 R09: 0000000000000000
[  176.054498][ T7357] R10: 0000000000000311 R11: 0000000000000246 R12: 0000000000000000
[  176.054520][ T7357] R13: 0000000000000000 R14: 00007f3003bb5fa0 R15: 00007ffdf09caa88
[  176.054558][ T7357]  </TASK>
[  176.392529][ T6967] syz.2.245 (6967) used greatest stack depth: 18952 bytes left
[  177.278640][ T7371] hub 8-0:1.0: USB hub found
[  177.314105][ T7371] hub 8-0:1.0: 1 port detected
[  177.865799][ T7374] random: crng reseeded on system resumption
[  179.046891][ T7387] netlink: 266 bytes leftover after parsing attributes in process `syz.1.349'.
[  179.081467][ T7387] IPv6: NLM_F_CREATE should be specified when creating new route
[  179.717817][ T7399] hub 8-0:1.0: USB hub found
[  179.722743][ T7399] hub 8-0:1.0: 1 port detected
[  179.901036][ T7397] : Can't lookup blockdev
[  182.144272][ T7425] netlink: 28 bytes leftover after parsing attributes in process `syz.0.357'.
[  182.521126][ T7435] FAULT_INJECTION: forcing a failure.
[  182.521126][ T7435] name failslab, interval 1, probability 0, space 0, times 0
[  182.722765][ T7435] CPU: 1 UID: 0 PID: 7435 Comm: syz.2.359 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) 
[  182.722787][ T7435] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  182.722795][ T7435] Call Trace:
[  182.722800][ T7435]  <TASK>
[  182.722806][ T7435]  dump_stack_lvl+0x16c/0x1f0
[  182.722831][ T7435]  should_fail_ex+0x512/0x640
[  182.722852][ T7435]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  182.722877][ T7435]  should_failslab+0xc2/0x120
[  182.722895][ T7435]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  182.722912][ T7435]  ? __alloc_skb+0x2b2/0x380
[  182.722931][ T7435]  __alloc_skb+0x2b2/0x380
[  182.722946][ T7435]  ? __pfx___alloc_skb+0x10/0x10
[  182.722964][ T7435]  ? __lock_acquire+0xaa4/0x1ba0
[  182.722985][ T7435]  netlink_alloc_large_skb+0x69/0x130
[  182.723006][ T7435]  netlink_sendmsg+0x6a1/0xdd0
[  182.723027][ T7435]  ? __pfx_netlink_sendmsg+0x10/0x10
[  182.723052][ T7435]  ____sys_sendmsg+0xa98/0xc70
[  182.723072][ T7435]  ? copy_msghdr_from_user+0x10a/0x160
[  182.723089][ T7435]  ? __pfx_____sys_sendmsg+0x10/0x10
[  182.723117][ T7435]  ___sys_sendmsg+0x134/0x1d0
[  182.723135][ T7435]  ? __pfx____sys_sendmsg+0x10/0x10
[  182.723174][ T7435]  __sys_sendmsg+0x16d/0x220
[  182.723190][ T7435]  ? __pfx___sys_sendmsg+0x10/0x10
[  182.723212][ T7435]  ? rcu_is_watching+0x12/0xc0
[  182.723232][ T7435]  do_syscall_64+0xcd/0x230
[  182.723253][ T7435]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  182.723268][ T7435] RIP: 0033:0x7f8d8b58e969
[  182.723280][ T7435] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  182.723292][ T7435] RSP: 002b:00007f8d8c3ae038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  182.723306][ T7435] RAX: ffffffffffffffda RBX: 00007f8d8b7b6080 RCX: 00007f8d8b58e969
[  182.723314][ T7435] RDX: 0000000000000010 RSI: 00002000000003c0 RDI: 0000000000000003
[  182.723322][ T7435] RBP: 00007f8d8c3ae090 R08: 0000000000000000 R09: 0000000000000000
[  182.723330][ T7435] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  182.723338][ T7435] R13: 0000000000000000 R14: 00007f8d8b7b6080 R15: 00007ffe8681b128
[  182.723355][ T7435]  </TASK>
[  183.090079][ T6954] syz.2.245 (6954) used greatest stack depth: 17896 bytes left
[  183.893745][ T7444] overlayfs: missing 'lowerdir'
[  184.196406][ T7448] bond0: option all_slaves_active: invalid value ()
[  184.460818][ T7454] openvswitch: netlink: IP tunnel dst address not specified
[  185.180011][ T7467] nvme_fabrics: missing parameter 'transport=%s'
[  185.186584][ T7467] nvme_fabrics: missing parameter 'nqn=%s'
[  185.765201][ T7481] netlink: 4 bytes leftover after parsing attributes in process `syz.1.373'.
[  186.016911][ T7484] netlink: 326 bytes leftover after parsing attributes in process `syz.1.374'.
[  186.458330][ T7488] hub 8-0:1.0: USB hub found
[  186.480779][ T7488] hub 8-0:1.0: 1 port detected
[  188.857115][   T55] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  188.869863][   T55] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  188.879879][   T55] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  188.891912][   T55] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  188.902908][   T55] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  189.421233][ T7518] netlink: 334 bytes leftover after parsing attributes in process `syz.0.383'.
[  190.056308][ T7510] chnl_net:caif_netlink_parms(): no params data found
[  190.454529][ T7510] bridge0: port 1(bridge_slave_0) entered blocking state
[  190.472922][ T7510] bridge0: port 1(bridge_slave_0) entered disabled state
[  190.480181][ T7510] bridge_slave_0: entered allmulticast mode
[  190.508471][ T7510] bridge_slave_0: entered promiscuous mode
[  190.579116][ T7510] bridge0: port 2(bridge_slave_1) entered blocking state
[  190.597776][ T7510] bridge0: port 2(bridge_slave_1) entered disabled state
[  190.605326][ T7510] bridge_slave_1: entered allmulticast mode
[  190.621327][ T7510] bridge_slave_1: entered promiscuous mode
[  190.993552][ T5840] Bluetooth: hci4: command tx timeout
[  191.031371][ T7510] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  191.061062][ T7510] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  191.065293][ T7536] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78800
[  191.190902][ T7536] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  191.202891][ T7536] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  191.232030][ T7536] page_type: f5(slab)
[  191.232074][ T7534] could not allocate digest TFM handle 
[  191.249197][ T7536] raw: 00fff00000000040 ffff888140e8f140 dead000000000122 0000000000000000
[  191.265966][ T7536] raw: 0000000000000000 0000000000130013 00000000f5000000 0000000000000000
[  191.372750][ T7536] head: 00fff00000000040 ffff888140e8f140 dead000000000122 0000000000000000
[  191.381478][ T7536] head: 0000000000000000 0000000000130013 00000000f5000000 0000000000000000
[  191.453078][ T7510] team0: Port device team_slave_0 added
[  191.495058][ T7536] head: 00fff00000000003 ffffea0001e20001 00000000ffffffff 00000000ffffffff
[  191.504016][ T7536] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  191.512994][ T7536] page dumped because: unmovable page
[  191.520448][ T7510] team0: Port device team_slave_1 added
[  191.543152][ T7536] page_owner tracks the page as allocated
[  191.560003][ T7536] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5211, tgid 5211 (udevd), ts 51304825514, free_ts 27619776700
[  191.611759][ T7536]  post_alloc_hook+0x181/0x1b0
[  191.622968][ T7536]  get_page_from_freelist+0x135c/0x3920
[  191.628911][ T7536]  __alloc_frozen_pages_noprof+0x263/0x23a0
[  191.638850][ T7536]  alloc_pages_mpol+0x1fb/0x550
[  191.646291][ T7536]  new_slab+0x244/0x340
[  191.650733][ T7536]  ___slab_alloc+0xd9c/0x1940
[  191.655888][ T7536]  __slab_alloc.constprop.0+0x56/0xb0
[  191.671502][ T7536]  kmem_cache_alloc_lru_noprof+0xf4/0x3b0
[  191.708941][ T7536]  shmem_alloc_inode+0x25/0x50
[  191.725776][ T7536]  alloc_inode+0x61/0x240
[  191.739453][ T7536]  new_inode+0x22/0x1c0
[  191.758970][ T7536]  shmem_get_inode+0x19a/0xfb0
[  191.774559][ T7536]  shmem_mknod+0x1a8/0x450
[  191.782019][ T7536]  lookup_open.isra.0+0x11d0/0x1580
[  191.789285][ T7536]  path_openat+0x905/0x2d40
[  191.797443][ T7536]  do_filp_open+0x20b/0x470
[  191.804333][ T7536] page last free pid 1 tgid 1 stack trace:
[  191.812039][ T7536]  __free_frozen_pages+0x69d/0xff0
[  191.819641][ T7536]  free_contig_range+0x135/0x3f0
[  191.828442][ T7536]  destroy_args+0x66f/0x830
[  191.835036][ T7536]  debug_vm_pgtable+0x130e/0x2d50
[  191.843935][ T7536]  do_one_initcall+0x120/0x6e0
[  191.850348][ T7536]  kernel_init_freeable+0x5c2/0x900
[  191.858465][ T7536]  kernel_init+0x1c/0x2b0
[  191.863426][ T7536]  ret_from_fork+0x48/0x80
[  191.869475][ T7536]  ret_from_fork_asm+0x1a/0x30
[  191.881848][ T7545] netlink: 206 bytes leftover after parsing attributes in process `syz.2.389'.
[  191.944110][ T7510] batman_adv: batadv0: Adding interface: batadv_slave_0
[  191.975663][ T7510] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  192.077763][ T7510] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  192.104749][ T7510] batman_adv: batadv0: Adding interface: batadv_slave_1
[  192.126440][ T7510] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  192.166429][ T7510] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  192.183927][ T7556] netlink: 338 bytes leftover after parsing attributes in process `syz.2.391'.
[  192.261577][ T7556] openvswitch: netlink: nsh attribute has 2 unknown bytes.
[  192.354691][ T7557] netlink: 338 bytes leftover after parsing attributes in process `syz.2.391'.
[  192.470769][ T7510] hsr_slave_0: entered promiscuous mode
[  192.494249][ T7510] hsr_slave_1: entered promiscuous mode
[  192.545322][ T7510] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  192.571756][ T7510] Cannot create hsr debugfs directory
[  192.930299][ T7578] Unable to find swap-space signature
[  193.075208][ T5840] Bluetooth: hci4: command tx timeout
[  193.758906][ T7592] FAULT_INJECTION: forcing a failure.
[  193.758906][ T7592] name failslab, interval 1, probability 0, space 0, times 0
[  193.777329][ T7592] CPU: 1 UID: 0 PID: 7592 Comm: syz.0.400 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) 
[  193.777365][ T7592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  193.777379][ T7592] Call Trace:
[  193.777388][ T7592]  <TASK>
[  193.777398][ T7592]  dump_stack_lvl+0x16c/0x1f0
[  193.777438][ T7592]  should_fail_ex+0x512/0x640
[  193.777473][ T7592]  ? __kmalloc_noprof+0xbf/0x510
[  193.777503][ T7592]  ? ethnl_default_notify+0x1a7/0x940
[  193.777531][ T7592]  should_failslab+0xc2/0x120
[  193.777562][ T7592]  __kmalloc_noprof+0xd2/0x510
[  193.777588][ T7592]  ? __pfx___ethnl_set_coalesce.isra.0+0x10/0x10
[  193.777627][ T7592]  ? rpm_resume+0x731/0x1310
[  193.777658][ T7592]  ? __pfx_ethnl_default_notify+0x10/0x10
[  193.777688][ T7592]  ethnl_default_notify+0x1a7/0x940
[  193.777736][ T7592]  ? __pfx_ethnl_default_notify+0x10/0x10
[  193.777780][ T7592]  ? ethnl_set_coalesce+0xb8/0x170
[  193.777817][ T7592]  ? __pfx_ethnl_set_coalesce+0x10/0x10
[  193.777860][ T7592]  ? __pfx_ethnl_default_notify+0x10/0x10
[  193.777888][ T7592]  ethtool_notify+0xbf/0x200
[  193.777918][ T7592]  ethnl_default_set_doit+0x4e5/0xb10
[  193.777950][ T7592]  ? __pfx_ethnl_default_set_doit+0x10/0x10
[  193.777984][ T7592]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  193.778031][ T7592]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  193.778076][ T7592]  genl_family_rcv_msg_doit+0x209/0x2f0
[  193.778115][ T7592]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  193.778152][ T7592]  ? trace_cap_capable+0x18d/0x200
[  193.778188][ T7592]  ? bpf_lsm_capable+0x9/0x10
[  193.778213][ T7592]  ? security_capable+0x7e/0x260
[  193.778240][ T7592]  ? ns_capable+0xd7/0x110
[  193.778271][ T7592]  genl_rcv_msg+0x55c/0x800
[  193.778312][ T7592]  ? __pfx_genl_rcv_msg+0x10/0x10
[  193.778350][ T7592]  ? __pfx___dev_queue_xmit+0x10/0x10
[  193.778375][ T7592]  ? __pfx_ethnl_default_set_doit+0x10/0x10
[  193.778407][ T7592]  ? __lock_acquire+0xaa4/0x1ba0
[  193.778446][ T7592]  netlink_rcv_skb+0x16d/0x440
[  193.778478][ T7592]  ? __pfx_genl_rcv_msg+0x10/0x10
[  193.778516][ T7592]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  193.778567][ T7592]  ? __pfx_down_read+0x10/0x10
[  193.778592][ T7592]  ? netlink_deliver_tap+0x1ae/0xd30
[  193.778629][ T7592]  genl_rcv+0x28/0x40
[  193.778660][ T7592]  netlink_unicast+0x53a/0x7f0
[  193.778697][ T7592]  ? __pfx_netlink_unicast+0x10/0x10
[  193.778727][ T7592]  ? __lock_acquire+0xaa4/0x1ba0
[  193.778769][ T7592]  netlink_sendmsg+0x8d1/0xdd0
[  193.778807][ T7592]  ? __pfx_netlink_sendmsg+0x10/0x10
[  193.778855][ T7592]  ____sys_sendmsg+0xa98/0xc70
[  193.778892][ T7592]  ? copy_msghdr_from_user+0x10a/0x160
[  193.778922][ T7592]  ? __pfx_____sys_sendmsg+0x10/0x10
[  193.778976][ T7592]  ___sys_sendmsg+0x134/0x1d0
[  193.779014][ T7592]  ? __pfx____sys_sendmsg+0x10/0x10
[  193.779093][ T7592]  __sys_sendmsg+0x16d/0x220
[  193.779124][ T7592]  ? __pfx___sys_sendmsg+0x10/0x10
[  193.779167][ T7592]  ? rcu_is_watching+0x12/0xc0
[  193.779202][ T7592]  do_syscall_64+0xcd/0x230
[  193.779240][ T7592]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  193.779265][ T7592] RIP: 0033:0x7f300398e969
[  193.779285][ T7592] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  193.779306][ T7592] RSP: 002b:00007f300481d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  193.779329][ T7592] RAX: ffffffffffffffda RBX: 00007f3003bb5fa0 RCX: 00007f300398e969
[  193.779345][ T7592] RDX: 0000000000000000 RSI: 0000200000000cc0 RDI: 0000000000000003
[  193.779360][ T7592] RBP: 00007f300481d090 R08: 0000000000000000 R09: 0000000000000000
[  193.779374][ T7592] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  193.779388][ T7592] R13: 0000000000000000 R14: 00007f3003bb5fa0 R15: 00007ffdf09caa88
[  193.779422][ T7592]  </TASK>
[  194.333078][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  194.339359][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  195.078166][ T7510] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  195.154728][ T5840] Bluetooth: hci4: command tx timeout
[  195.238243][ T7510] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  195.328109][ T7510] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  195.397475][ T7510] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  195.936800][ T7510] 8021q: adding VLAN 0 to HW filter on device bond0
[  196.160186][ T7510] 8021q: adding VLAN 0 to HW filter on device team0
[  196.273495][ T7143] bridge0: port 1(bridge_slave_0) entered blocking state
[  196.280626][ T7143] bridge0: port 1(bridge_slave_0) entered forwarding state
[  196.421143][ T7143] bridge0: port 2(bridge_slave_1) entered blocking state
[  196.428336][ T7143] bridge0: port 2(bridge_slave_1) entered forwarding state
[  197.050035][ T7634] capability: warning: `syz.0.412' uses 32-bit capabilities (legacy support in use)
[  197.233922][ T5840] Bluetooth: hci4: command tx timeout
[  197.606945][ T7510] 8021q: adding VLAN 0 to HW filter on device batadv0
[  198.325809][ T7662] netlink: 32 bytes leftover after parsing attributes in process `syz.2.419'.
[  198.519907][ T7510] veth0_vlan: entered promiscuous mode
[  198.549460][ T7510] veth1_vlan: entered promiscuous mode
[  198.609486][ T7510] veth0_macvtap: entered promiscuous mode
[  198.679725][ T7510] veth1_macvtap: entered promiscuous mode
[  198.888246][ T7510] batman_adv: batadv0: Interface activated: batadv_slave_0
[  199.034916][ T7510] batman_adv: batadv0: Interface activated: batadv_slave_1
[  199.345439][ T7510] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  199.396495][ T7510] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  199.415011][ T7510] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  199.425137][ T7510] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  199.941589][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  200.057349][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  200.327330][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  200.380577][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  201.016199][ T7706] udc dummy_udc.0: soft-connect without a gadget driver
[  201.984286][ T7726] netlink: 28 bytes leftover after parsing attributes in process `syz.1.435'.
[  201.995532][ T7728] FAULT_INJECTION: forcing a failure.
[  201.995532][ T7728] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  202.037759][ T7728] CPU: 0 UID: 0 PID: 7728 Comm: syz.0.434 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) 
[  202.037804][ T7728] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  202.037818][ T7728] Call Trace:
[  202.037827][ T7728]  <TASK>
[  202.037836][ T7728]  dump_stack_lvl+0x16c/0x1f0
[  202.037878][ T7728]  should_fail_ex+0x512/0x640
[  202.037919][ T7728]  should_fail_alloc_page+0xe7/0x130
[  202.037954][ T7728]  prepare_alloc_pages+0x3c2/0x610
[  202.037993][ T7728]  ? rcu_is_watching+0x12/0xc0
[  202.038022][ T7728]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[  202.038074][ T7728]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  202.038105][ T7728]  ? do_raw_spin_lock+0x12c/0x2b0
[  202.038144][ T7728]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  202.038182][ T7728]  ? find_held_lock+0x2b/0x80
[  202.038219][ T7728]  ? __lock_acquire+0xaa4/0x1ba0
[  202.038249][ T7728]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  202.038285][ T7728]  ? policy_nodemask+0xea/0x4e0
[  202.038320][ T7728]  alloc_pages_mpol+0x1fb/0x550
[  202.038352][ T7728]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  202.038396][ T7728]  folio_alloc_mpol_noprof+0x36/0x2f0
[  202.038434][ T7728]  shmem_alloc_folio+0x135/0x160
[  202.038463][ T7728]  shmem_alloc_and_add_folio+0x499/0xc20
[  202.038504][ T7728]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  202.038539][ T7728]  ? shmem_allowable_huge_orders+0xcb/0x2f0
[  202.038578][ T7728]  shmem_get_folio_gfp+0x687/0x1530
[  202.038619][ T7728]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  202.038654][ T7728]  ? filemap_map_pages+0xf6c/0x1680
[  202.038693][ T7728]  shmem_fault+0x1fe/0xa30
[  202.038726][ T7728]  ? __pfx_shmem_fault+0x10/0x10
[  202.038764][ T7728]  ? __pfx_filemap_map_pages+0x10/0x10
[  202.038809][ T7728]  __do_fault+0x10a/0x490
[  202.038845][ T7728]  do_pte_missing+0x1031/0x3fb0
[  202.038876][ T7728]  ? __handle_mm_fault+0x1010/0x2a40
[  202.038908][ T7728]  __handle_mm_fault+0x103d/0x2a40
[  202.038945][ T7728]  ? __pfx___handle_mm_fault+0x10/0x10
[  202.038996][ T7728]  ? find_vma+0xbf/0x140
[  202.039030][ T7728]  ? __pfx_find_vma+0x10/0x10
[  202.039071][ T7728]  handle_mm_fault+0x3fe/0xad0
[  202.039104][ T7728]  do_user_addr_fault+0x7a6/0x1370
[  202.039132][ T7728]  ? rcu_is_watching+0x12/0xc0
[  202.039158][ T7728]  exc_page_fault+0x5c/0xc0
[  202.039191][ T7728]  asm_exc_page_fault+0x26/0x30
[  202.039216][ T7728] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  202.039247][ T7728] Code: cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 e9 7f 09 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  202.039270][ T7728] RSP: 0018:ffffc90005407b28 EFLAGS: 00050206
[  202.039289][ T7728] RAX: 0000000000000001 RBX: 000000000000fdef RCX: 0000000000006def
[  202.039305][ T7728] RDX: ffffed100a6b3fbe RSI: 0000000000009000 RDI: ffff888053599000
[  202.039322][ T7728] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed100a6b3fbd
[  202.039338][ T7728] R10: ffff88805359fdee R11: 0000000000000000 R12: 0000000000000000
[  202.039354][ T7728] R13: ffffc90005407da0 R14: 000000000000fdef R15: ffff888053590000
[  202.039396][ T7728]  _copy_from_iter+0x391/0x15b0
[  202.039442][ T7728]  ? rcu_is_watching+0x12/0xc0
[  202.039467][ T7728]  ? __pfx__copy_from_iter+0x10/0x10
[  202.039505][ T7728]  ? rcu_is_watching+0x12/0xc0
[  202.039529][ T7728]  ? trace_kmalloc+0x2b/0xd0
[  202.039562][ T7728]  ? __kvmalloc_node_noprof.cold+0x60/0x65
[  202.039596][ T7728]  ? __pfx_net_ctl_permissions+0x10/0x10
[  202.039626][ T7728]  ? proc_sys_call_handler+0x2a6/0x5c0
[  202.039663][ T7728]  proc_sys_call_handler+0x317/0x5c0
[  202.039696][ T7728]  ? __pfx_proc_sys_call_handler+0x10/0x10
[  202.039741][ T7728]  vfs_write+0x5bd/0x1180
[  202.039769][ T7728]  ? __pfx_proc_sys_write+0x10/0x10
[  202.039800][ T7728]  ? __pfx___mutex_lock+0x10/0x10
[  202.039837][ T7728]  ? __pfx_vfs_write+0x10/0x10
[  202.039889][ T7728]  ksys_write+0x12a/0x240
[  202.039916][ T7728]  ? __pfx_ksys_write+0x10/0x10
[  202.039940][ T7728]  ? rcu_is_watching+0x12/0xc0
[  202.039976][ T7728]  do_syscall_64+0xcd/0x230
[  202.040017][ T7728]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  202.040042][ T7728] RIP: 0033:0x7f300398e969
[  202.040062][ T7728] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  202.040082][ T7728] RSP: 002b:00007f300481d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  202.040103][ T7728] RAX: ffffffffffffffda RBX: 00007f3003bb5fa0 RCX: 00007f300398e969
[  202.040117][ T7728] RDX: 000000000000fdef RSI: 0000000000000000 RDI: 0000000000000003
[  202.040130][ T7728] RBP: 00007f300481d090 R08: 0000000000000000 R09: 0000000000000000
[  202.040144][ T7728] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  202.040158][ T7728] R13: 0000000000000000 R14: 00007f3003bb5fa0 R15: 00007ffdf09caa88
[  202.040193][ T7728]  </TASK>
[  202.506573][    C0] vkms_vblank_simulate: vblank timer overrun
[  204.060304][ T7757] FAULT_INJECTION: forcing a failure.
[  204.060304][ T7757] name failslab, interval 1, probability 0, space 0, times 0
[  204.137942][ T7757] CPU: 1 UID: 0 PID: 7757 Comm: syz.1.442 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) 
[  204.137964][ T7757] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  204.137979][ T7757] Call Trace:
[  204.137984][ T7757]  <TASK>
[  204.137990][ T7757]  dump_stack_lvl+0x16c/0x1f0
[  204.138016][ T7757]  should_fail_ex+0x512/0x640
[  204.138036][ T7757]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[  204.138057][ T7757]  should_failslab+0xc2/0x120
[  204.138074][ T7757]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  204.138091][ T7757]  ? nlmsg_notify+0x11e/0x220
[  204.138110][ T7757]  ? __devinet_sysctl_register+0xbc/0x360
[  204.138132][ T7757]  kmemdup_noprof+0x29/0x60
[  204.138150][ T7757]  __devinet_sysctl_register+0xbc/0x360
[  204.138173][ T7757]  ? __pfx___devinet_sysctl_register+0x10/0x10
[  204.138190][ T7757]  ? trace_kmalloc+0x2b/0xd0
[  204.138209][ T7757]  ? devinet_init_net+0xeb/0x910
[  204.138228][ T7757]  ? __asan_memcpy+0x3c/0x60
[  204.138243][ T7757]  devinet_init_net+0x347/0x910
[  204.138263][ T7757]  ? __pfx_devinet_init_net+0x10/0x10
[  204.138281][ T7757]  ops_init+0x1df/0x5f0
[  204.138301][ T7757]  setup_net+0x21e/0x850
[  204.138320][ T7757]  ? __pfx_setup_net+0x10/0x10
[  204.138336][ T7757]  ? lockdep_init_map_type+0x5c/0x280
[  204.138355][ T7757]  ? __pfx_down_read_killable+0x10/0x10
[  204.138372][ T7757]  ? debug_mutex_init+0x37/0x70
[  204.138387][ T7757]  copy_net_ns+0x2a6/0x5f0
[  204.138408][ T7757]  create_new_namespaces+0x3ea/0xad0
[  204.138429][ T7757]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  204.138447][ T7757]  ksys_unshare+0x45b/0xa40
[  204.138466][ T7757]  ? __pfx_ksys_unshare+0x10/0x10
[  204.138483][ T7757]  ? xfd_validate_state+0x5d/0x180
[  204.138498][ T7757]  ? rcu_is_watching+0x12/0xc0
[  204.138516][ T7757]  __x64_sys_unshare+0x31/0x40
[  204.138534][ T7757]  do_syscall_64+0xcd/0x230
[  204.138555][ T7757]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  204.138570][ T7757] RIP: 0033:0x7fdb3958e969
[  204.138581][ T7757] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  204.138594][ T7757] RSP: 002b:00007fdb3a324038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  204.138607][ T7757] RAX: ffffffffffffffda RBX: 00007fdb397b5fa0 RCX: 00007fdb3958e969
[  204.138616][ T7757] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  204.138624][ T7757] RBP: 00007fdb39610ab1 R08: 0000000000000000 R09: 0000000000000000
[  204.138632][ T7757] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  204.138640][ T7757] R13: 0000000000000000 R14: 00007fdb397b5fa0 R15: 00007fff02646ae8
[  204.138658][ T7757]  </TASK>
[  206.138735][ T7795] : Can't lookup blockdev
[  206.167616][ T7795] FAULT_INJECTION: forcing a failure.
[  206.167616][ T7795] name failslab, interval 1, probability 0, space 0, times 0
[  206.213266][ T7795] CPU: 0 UID: 0 PID: 7795 Comm: syz.2.451 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) 
[  206.213302][ T7795] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  206.213316][ T7795] Call Trace:
[  206.213324][ T7795]  <TASK>
[  206.213333][ T7795]  dump_stack_lvl+0x16c/0x1f0
[  206.213377][ T7795]  should_fail_ex+0x512/0x640
[  206.213413][ T7795]  ? __kmalloc_noprof+0xbf/0x510
[  206.213445][ T7795]  ? constrain_params_by_rules+0x175/0xca0
[  206.213483][ T7795]  should_failslab+0xc2/0x120
[  206.213515][ T7795]  __kmalloc_noprof+0xd2/0x510
[  206.213543][ T7795]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  206.213580][ T7795]  constrain_params_by_rules+0x175/0xca0
[  206.213618][ T7795]  ? arch_stack_walk+0xa6/0x100
[  206.213662][ T7795]  ? __pfx_constrain_params_by_rules+0x10/0x10
[  206.213701][ T7795]  ? stack_trace_save+0x8e/0xc0
[  206.213727][ T7795]  ? __pfx_stack_trace_save+0x10/0x10
[  206.213770][ T7795]  ? snd_pcm_oss_change_params_locked+0x92b/0x3a30
[  206.213816][ T7795]  ? snd_pcm_oss_get_active_substream+0x168/0x1d0
[  206.213855][ T7795]  ? snd_pcm_oss_ioctl+0x21e9/0x37a0
[  206.213891][ T7795]  ? __x64_sys_ioctl+0x190/0x200
[  206.213925][ T7795]  ? do_syscall_64+0xcd/0x230
[  206.213960][ T7795]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  206.213986][ T7795]  ? snd_interval_refine+0x2fa/0x580
[  206.214021][ T7795]  snd_pcm_hw_refine+0x7de/0xad0
[  206.214067][ T7795]  ? __pfx_snd_pcm_hw_refine+0x10/0x10
[  206.214131][ T7795]  snd_pcm_hw_param_last+0x32d/0x710
[  206.214177][ T7795]  snd_pcm_hw_param_near.constprop.0+0x570/0x8e0
[  206.214223][ T7795]  ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10
[  206.214275][ T7795]  snd_pcm_oss_change_params_locked+0x92b/0x3a30
[  206.214336][ T7795]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  206.214378][ T7795]  ? __pfx___mutex_lock+0x10/0x10
[  206.214441][ T7795]  snd_pcm_oss_get_active_substream+0x168/0x1d0
[  206.214487][ T7795]  snd_pcm_oss_ioctl+0x21e9/0x37a0
[  206.214531][ T7795]  ? hook_file_ioctl_common+0x145/0x410
[  206.214563][ T7795]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  206.214606][ T7795]  ? __fget_files+0x20e/0x3c0
[  206.214637][ T7795]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  206.214679][ T7795]  __x64_sys_ioctl+0x190/0x200
[  206.214718][ T7795]  do_syscall_64+0xcd/0x230
[  206.214758][ T7795]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  206.214788][ T7795] RIP: 0033:0x7f8d8b58e969
[  206.214808][ T7795] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  206.214833][ T7795] RSP: 002b:00007f8d8c3cf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  206.214856][ T7795] RAX: ffffffffffffffda RBX: 00007f8d8b7b5fa0 RCX: 00007f8d8b58e969
[  206.214874][ T7795] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 0000000000000007
[  206.214890][ T7795] RBP: 00007f8d8c3cf090 R08: 0000000000000000 R09: 0000000000000000
[  206.214905][ T7795] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  206.214920][ T7795] R13: 0000000000000000 R14: 00007f8d8b7b5fa0 R15: 00007ffe8681b128
[  206.214956][ T7795]  </TASK>
[  206.844344][ T7806] netlink: 4 bytes leftover after parsing attributes in process `syz.2.454'.
[  206.961170][ T7804] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  206.968650][ T7804] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  207.054191][ T7804] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  207.081298][ T7804] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  207.094376][ T7804] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  207.136141][ T7804] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  207.235127][ T7804] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  207.276929][ T7804] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  207.407981][ T7804] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  207.507373][ T7804] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  207.578542][ T7804] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  207.650397][ T7804] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  207.708213][ T7804] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  207.764038][ T7804] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  207.792380][ T7804] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  207.803471][ T7810] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_cmd_wq": -EINTR
[  208.114507][ T7829] FAULT_INJECTION: forcing a failure.
[  208.114507][ T7829] name failslab, interval 1, probability 0, space 0, times 0
[  208.242808][ T7829] CPU: 1 UID: 0 PID: 7829 Comm: syz.0.461 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) 
[  208.242846][ T7829] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  208.242867][ T7829] Call Trace:
[  208.242876][ T7829]  <TASK>
[  208.242886][ T7829]  dump_stack_lvl+0x16c/0x1f0
[  208.242929][ T7829]  should_fail_ex+0x512/0x640
[  208.242966][ T7829]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  208.243001][ T7829]  should_failslab+0xc2/0x120
[  208.243034][ T7829]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  208.243064][ T7829]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  208.243098][ T7829]  ? __alloc_skb+0x2b2/0x380
[  208.243134][ T7829]  __alloc_skb+0x2b2/0x380
[  208.243164][ T7829]  ? __pfx___alloc_skb+0x10/0x10
[  208.243191][ T7829]  ? __pfx_event_filter_pid_sched_wakeup_probe_post+0x10/0x10
[  208.243227][ T7829]  ? __print_lock_name+0xd0/0xe0
[  208.243255][ T7829]  ? try_to_wake_up+0xa25/0x1680
[  208.243287][ T7829]  alloc_skb_with_frags+0xe0/0x860
[  208.243321][ T7829]  ? try_to_wake_up+0x157/0x1680
[  208.243355][ T7829]  sock_alloc_send_pskb+0x7fb/0x990
[  208.243397][ T7829]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  208.243425][ T7829]  ? find_held_lock+0x2b/0x80
[  208.243450][ T7829]  ? find_held_lock+0x2b/0x80
[  208.243477][ T7829]  ? sock_def_readable+0x1d9/0x600
[  208.243516][ T7829]  unix_dgram_sendmsg+0x463/0x1910
[  208.243561][ T7829]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  208.243601][ T7829]  ? __pfx_unix_dgram_sendmsg+0x10/0x10
[  208.243639][ T7829]  ? aa_sk_perm+0x2f4/0xb10
[  208.243672][ T7829]  ? iovec_from_user+0xbb/0x140
[  208.243699][ T7829]  ? __pfx_aa_sk_perm+0x10/0x10
[  208.243729][ T7829]  ? __import_iovec+0x1c8/0x660
[  208.243752][ T7829]  ? __might_fault+0xe3/0x190
[  208.243781][ T7829]  ? __might_fault+0x13b/0x190
[  208.243818][ T7829]  unix_seqpacket_sendmsg+0x12a/0x1c0
[  208.243868][ T7829]  ____sys_sendmsg+0xa98/0xc70
[  208.243908][ T7829]  ? copy_msghdr_from_user+0x10a/0x160
[  208.243939][ T7829]  ? __pfx_____sys_sendmsg+0x10/0x10
[  208.243983][ T7829]  ? kfree+0x252/0x4d0
[  208.244004][ T7829]  ? __pfx__kstrtoull+0x10/0x10
[  208.244043][ T7829]  ___sys_sendmsg+0x134/0x1d0
[  208.244078][ T7829]  ? __pfx____sys_sendmsg+0x10/0x10
[  208.244141][ T7829]  ? __pfx___might_resched+0x10/0x10
[  208.244188][ T7829]  __sys_sendmmsg+0x200/0x420
[  208.244225][ T7829]  ? __pfx___sys_sendmmsg+0x10/0x10
[  208.244269][ T7829]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  208.244322][ T7829]  ? fput+0x70/0xf0
[  208.244353][ T7829]  ? ksys_write+0x1b9/0x240
[  208.244377][ T7829]  ? __pfx_ksys_write+0x10/0x10
[  208.244401][ T7829]  ? rcu_is_watching+0x12/0xc0
[  208.244432][ T7829]  __x64_sys_sendmmsg+0x9c/0x100
[  208.244462][ T7829]  ? lockdep_hardirqs_on+0x7c/0x110
[  208.244498][ T7829]  do_syscall_64+0xcd/0x230
[  208.244538][ T7829]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  208.244564][ T7829] RIP: 0033:0x7f300398e969
[  208.244583][ T7829] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  208.244607][ T7829] RSP: 002b:00007f30047fc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  208.244630][ T7829] RAX: ffffffffffffffda RBX: 00007f3003bb6080 RCX: 00007f300398e969
[  208.244647][ T7829] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000004
[  208.244662][ T7829] RBP: 00007f30047fc090 R08: 0000000000000000 R09: 0000000000000000
[  208.244678][ T7829] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000001
[  208.244693][ T7829] R13: 0000000000000000 R14: 00007f3003bb6080 R15: 00007ffdf09caa88
[  208.244727][ T7829]  </TASK>
[  209.006114][ T5840] Bluetooth: hci0: command 0x0c1a tx timeout
[  209.162826][ T5840] Bluetooth: hci1: command 0x0c1a tx timeout
[  209.235584][ T5840] Bluetooth: hci2: command 0x0c1a tx timeout
[  209.288847][ T7841] : Can't lookup blockdev
[  209.342952][ T7841] FAULT_INJECTION: forcing a failure.
[  209.342952][ T7841] name failslab, interval 1, probability 0, space 0, times 0
[  209.392812][ T7841] CPU: 0 UID: 0 PID: 7841 Comm: syz.0.463 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) 
[  209.392852][ T7841] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  209.392868][ T7841] Call Trace:
[  209.392876][ T7841]  <TASK>
[  209.392887][ T7841]  dump_stack_lvl+0x16c/0x1f0
[  209.392930][ T7841]  should_fail_ex+0x512/0x640
[  209.392955][ T7841]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  209.392974][ T7841]  should_failslab+0xc2/0x120
[  209.392993][ T7841]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  209.393010][ T7841]  ? dup_fd+0x4e/0xb90
[  209.393026][ T7841]  dup_fd+0x4e/0xb90
[  209.393038][ T7841]  ? __pfx_audit_alloc+0x10/0x10
[  209.393060][ T7841]  ? apparmor_task_alloc+0x2c2/0x3b0
[  209.393078][ T7841]  copy_process+0x25c1/0x91b0
[  209.393096][ T7841]  ? find_held_lock+0x2b/0x80
[  209.393110][ T7841]  ? schedule+0x2d7/0x3a0
[  209.393138][ T7841]  ? __pfx_copy_process+0x10/0x10
[  209.393154][ T7841]  ? __pfx___futex_wait+0x10/0x10
[  209.393172][ T7841]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  209.393194][ T7841]  ? __pfx_futex_wake_mark+0x10/0x10
[  209.393221][ T7841]  kernel_clone+0xfc/0x960
[  209.393240][ T7841]  ? __pfx_kernel_clone+0x10/0x10
[  209.393267][ T7841]  __do_sys_clone+0xce/0x120
[  209.393285][ T7841]  ? __pfx___do_sys_clone+0x10/0x10
[  209.393311][ T7841]  ? rcu_is_watching+0x12/0xc0
[  209.393331][ T7841]  do_syscall_64+0xcd/0x230
[  209.393352][ T7841]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  209.393367][ T7841] RIP: 0033:0x7f300398e969
[  209.393379][ T7841] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  209.393392][ T7841] RSP: 002b:00007f300481cfe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  209.393405][ T7841] RAX: ffffffffffffffda RBX: 00007f3003bb5fa0 RCX: 00007f300398e969
[  209.393415][ T7841] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000011
[  209.393422][ T7841] RBP: 00007f3003a10ab1 R08: 0000000000000000 R09: 0000000000000000
[  209.393430][ T7841] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  209.393438][ T7841] R13: 0000000000000000 R14: 00007f3003bb5fa0 R15: 00007ffdf09caa88
[  209.393456][ T7841]  </TASK>
[  209.651874][ T5840] Bluetooth: hci3: command 0x0c1a tx timeout
[  209.722984][ T5840] Bluetooth: hci4: command 0x0c1a tx timeout
[  211.075490][ T5840] Bluetooth: hci0: command 0x0c1a tx timeout
[  211.234863][ T5840] Bluetooth: hci1: command 0x0c1a tx timeout
[  211.322699][ T5840] Bluetooth: hci2: command 0x0c1a tx timeout
[  211.712782][ T5840] Bluetooth: hci3: command 0x0c1a tx timeout
[  211.792836][   T55] Bluetooth: hci4: command 0x0c1a tx timeout
[  213.163268][   T55] Bluetooth: hci0: command 0x0c1a tx timeout
[  213.312788][   T55] Bluetooth: hci1: command 0x0c1a tx timeout
[  213.392717][   T55] Bluetooth: hci2: command 0x0c1a tx timeout
[  213.793470][   T55] Bluetooth: hci3: command 0x0c1a tx timeout
[  213.873515][   T55] Bluetooth: hci4: command 0x0c1a tx timeout
[  214.564688][   T30] audit: type=1804 audit(6042976771.679:11): pid=7910 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.478" name="/newroot/132/file0" dev="tmpfs" ino=696 res=1 errno=0
[  214.640929][   T30] audit: type=1800 audit(6042976771.679:12): pid=7910 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.478" name="file0" dev="tmpfs" ino=696 res=0 errno=0
[  218.205459][ T7951] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[  218.382869][ T7941] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  218.407584][ T7941] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  218.432120][ T7941] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  218.522958][ T7941] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  218.582932][ T7941] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  218.975032][ T7969] netlink: 28 bytes leftover after parsing attributes in process `syz.0.490'.
[  219.552739][   T55] Bluetooth: hci0: command 0x0c1a tx timeout
[  219.613082][ T7975] netlink: 'syz.1.493': attribute type 2 has an invalid length.
[  219.945834][ T7983] netlink: 8 bytes leftover after parsing attributes in process `syz.2.495'.
[  220.216965][ T7981] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[  220.436571][   T55] Bluetooth: hci2: command 0x0c1a tx timeout
[  220.442702][   T55] Bluetooth: hci1: command 0x0c1a tx timeout
[  220.592746][   T55] Bluetooth: hci4: command 0x0c1a tx timeout
[  220.598962][ T5840] Bluetooth: hci3: command 0x0c1a tx timeout
[  221.328728][ T7995] hub 8-0:1.0: USB hub found
[  221.403114][ T7995] hub 8-0:1.0: 1 port detected
[  222.247849][ T8005] can: request_module (can-proto-0) failed.
[  222.734635][ T8023] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input14
[  223.594255][ T8026] mkiss: ax0: crc mode is auto.
[  223.908668][ T8029] FAULT_INJECTION: forcing a failure.
[  223.908668][ T8029] name failslab, interval 1, probability 0, space 0, times 0
[  223.966052][ T8029] CPU: 0 UID: 0 PID: 8029 Comm: syz.4.507 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) 
[  223.966090][ T8029] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  223.966105][ T8029] Call Trace:
[  223.966113][ T8029]  <TASK>
[  223.966123][ T8029]  dump_stack_lvl+0x16c/0x1f0
[  223.966165][ T8029]  should_fail_ex+0x512/0x640
[  223.966201][ T8029]  ? __kmalloc_noprof+0xbf/0x510
[  223.966233][ T8029]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  223.966273][ T8029]  should_failslab+0xc2/0x120
[  223.966306][ T8029]  __kmalloc_noprof+0xd2/0x510
[  223.966332][ T8029]  ? __pfx___mutex_trylock_common+0x10/0x10
[  223.966374][ T8029]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  223.966423][ T8029]  genl_family_rcv_msg_doit+0xbf/0x2f0
[  223.966470][ T8029]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  223.966505][ T8029]  ? rcu_is_watching+0x12/0xc0
[  223.966543][ T8029]  ? bpf_lsm_capable+0x9/0x10
[  223.966570][ T8029]  ? security_capable+0x7e/0x260
[  223.966606][ T8029]  genl_rcv_msg+0x55c/0x800
[  223.966650][ T8029]  ? __pfx_genl_rcv_msg+0x10/0x10
[  223.966686][ T8029]  ? __pfx___dev_queue_xmit+0x10/0x10
[  223.966712][ T8029]  ? __pfx_macsec_upd_rxsc+0x10/0x10
[  223.966753][ T8029]  ? __lock_acquire+0xaa4/0x1ba0
[  223.966793][ T8029]  netlink_rcv_skb+0x16d/0x440
[  223.966827][ T8029]  ? __pfx_genl_rcv_msg+0x10/0x10
[  223.966867][ T8029]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  223.966919][ T8029]  ? __pfx_down_read+0x10/0x10
[  223.966946][ T8029]  ? netlink_deliver_tap+0x1ae/0xd30
[  223.966985][ T8029]  genl_rcv+0x28/0x40
[  223.967018][ T8029]  netlink_unicast+0x53a/0x7f0
[  223.967054][ T8029]  ? __pfx_netlink_unicast+0x10/0x10
[  223.967085][ T8029]  ? __lock_acquire+0xaa4/0x1ba0
[  223.967129][ T8029]  netlink_sendmsg+0x8d1/0xdd0
[  223.967169][ T8029]  ? __pfx_netlink_sendmsg+0x10/0x10
[  223.967219][ T8029]  ____sys_sendmsg+0xa98/0xc70
[  223.967258][ T8029]  ? copy_msghdr_from_user+0x10a/0x160
[  223.967287][ T8029]  ? __pfx_____sys_sendmsg+0x10/0x10
[  223.967344][ T8029]  ___sys_sendmsg+0x134/0x1d0
[  223.967378][ T8029]  ? __pfx____sys_sendmsg+0x10/0x10
[  223.967464][ T8029]  __sys_sendmsg+0x16d/0x220
[  223.967496][ T8029]  ? __pfx___sys_sendmsg+0x10/0x10
[  223.967537][ T8029]  ? rcu_is_watching+0x12/0xc0
[  223.967573][ T8029]  do_syscall_64+0xcd/0x230
[  223.967615][ T8029]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  223.967641][ T8029] RIP: 0033:0x7f4bb2b8e969
[  223.967661][ T8029] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  223.967685][ T8029] RSP: 002b:00007f4bb39d0038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  223.967709][ T8029] RAX: ffffffffffffffda RBX: 00007f4bb2db5fa0 RCX: 00007f4bb2b8e969
[  223.967726][ T8029] RDX: 0000000004000040 RSI: 0000200000004100 RDI: 0000000000000003
[  223.967742][ T8029] RBP: 00007f4bb39d0090 R08: 0000000000000000 R09: 0000000000000000
[  223.967758][ T8029] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  223.967773][ T8029] R13: 0000000000000000 R14: 00007f4bb2db5fa0 R15: 00007ffde6bcb1f8
[  223.967805][ T8029]  </TASK>
[  225.017646][ T8041] hub 8-0:1.0: USB hub found
[  225.027675][ T8041] hub 8-0:1.0: 1 port detected
[  225.390484][ T8047] netlink: 4 bytes leftover after parsing attributes in process `syz.4.515'.
[  226.167648][ T8069] random: crng reseeded on system resumption
[  226.631206][ T8074] hub 8-0:1.0: USB hub found
[  226.719058][ T8074] hub 8-0:1.0: 1 port detected
[  226.878236][ T8078] netlink: 36 bytes leftover after parsing attributes in process `syz.4.524'.
[  227.591830][ T8083] Invalid ELF header magic: != ELF
[  228.225941][ T8078] could not allocate digest TFM handle 
[  228.239822][ T8083] could not allocate digest TFM handle 
[  228.667315][ T8108] netlink: 4 bytes leftover after parsing attributes in process `syz.1.529'.
[  228.744553][ T8111] netlink: 25 bytes leftover after parsing attributes in process `syz.1.529'.
[  228.974294][ T8118] ALSA: mixer_oss: invalid OSS volume ''
[  229.825215][ T8138] FAULT_INJECTION: forcing a failure.
[  229.825215][ T8138] name failslab, interval 1, probability 0, space 0, times 0
[  229.944205][ T8138] CPU: 1 UID: 0 PID: 8138 Comm: syz.0.537 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) 
[  229.944241][ T8138] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  229.944256][ T8138] Call Trace:
[  229.944272][ T8138]  <TASK>
[  229.944281][ T8138]  dump_stack_lvl+0x16c/0x1f0
[  229.944324][ T8138]  should_fail_ex+0x512/0x640
[  229.944359][ T8138]  ? __kmalloc_noprof+0xbf/0x510
[  229.944390][ T8138]  ? tracepoint_add_func+0x2a6/0xea0
[  229.944422][ T8138]  should_failslab+0xc2/0x120
[  229.944451][ T8138]  __kmalloc_noprof+0xd2/0x510
[  229.944480][ T8138]  ? __pfx_probe_sched_switch+0x10/0x10
[  229.944510][ T8138]  tracepoint_add_func+0x2a6/0xea0
[  229.944542][ T8138]  ? __pfx_probe_sched_switch+0x10/0x10
[  229.944585][ T8138]  ? __pfx_probe_sched_switch+0x10/0x10
[  229.944619][ T8138]  tracepoint_probe_register+0xbf/0x100
[  229.944657][ T8138]  ? __pfx_tracepoint_probe_register+0x10/0x10
[  229.944693][ T8138]  ? __pfx_probe_sched_switch+0x10/0x10
[  229.944739][ T8138]  tracing_start_sched_switch+0x109/0x1e0
[  229.944773][ T8138]  __ftrace_event_enable_disable+0x670/0x8b0
[  229.944822][ T8138]  __ftrace_set_clr_event_nolock+0x390/0xb70
[  229.944874][ T8138]  ftrace_set_clr_event+0x16e/0x330
[  229.944919][ T8138]  ? __pfx_ftrace_set_clr_event+0x10/0x10
[  229.944972][ T8138]  ftrace_event_write+0x243/0x290
[  229.945012][ T8138]  ? __pfx_ftrace_event_write+0x10/0x10
[  229.945066][ T8138]  vfs_write+0x25c/0x1180
[  229.945091][ T8138]  ? __pfx_ftrace_event_write+0x10/0x10
[  229.945136][ T8138]  ? __pfx___mutex_lock+0x10/0x10
[  229.945175][ T8138]  ? __pfx_vfs_write+0x10/0x10
[  229.945214][ T8138]  ? __fget_files+0x20e/0x3c0
[  229.945251][ T8138]  ksys_write+0x12a/0x240
[  229.945283][ T8138]  ? __pfx_ksys_write+0x10/0x10
[  229.945307][ T8138]  ? rcu_is_watching+0x12/0xc0
[  229.945345][ T8138]  do_syscall_64+0xcd/0x230
[  229.945387][ T8138]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  229.945415][ T8138] RIP: 0033:0x7f300398e969
[  229.945436][ T8138] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  229.945460][ T8138] RSP: 002b:00007f300481d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  229.945485][ T8138] RAX: ffffffffffffffda RBX: 00007f3003bb5fa0 RCX: 00007f300398e969
[  229.945502][ T8138] RDX: 0000000000000004 RSI: 0000200000000040 RDI: 0000000000000006
[  229.945518][ T8138] RBP: 00007f300481d090 R08: 0000000000000000 R09: 0000000000000000
[  229.945534][ T8138] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  229.945549][ T8138] R13: 0000000000000000 R14: 00007f3003bb5fa0 R15: 00007ffdf09caa88
[  229.945587][ T8138]  </TASK>
[  229.945751][ T8138] sched trace: Couldn't activate tracepoint probe to kernel_sched_switch
[  231.243433][ T8157] ptrace attach of "./syz-executor exec"[5835] was attempted by "./syz-executor exec"[8157]
[  231.854315][ T8162] netlink: 36 bytes leftover after parsing attributes in process `syz.1.540'.
[  232.012326][ T8162] Invalid ELF header magic: != ELF
[  232.575562][ T8162] could not allocate digest TFM handle 
[  232.628374][ T8171] could not allocate digest TFM handle 
[  236.494534][ T8227] ------------[ cut here ]------------
[  236.500191][ T8227] WARNING: CPU: 0 PID: 8227 at kernel/tracepoint.c:358 tracepoint_probe_unregister+0x894/0xd70
[  236.510667][ T8227] Modules linked in:
[  236.514843][ T8227] CPU: 0 UID: 0 PID: 8227 Comm: syz.1.554 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) 
[  236.526781][ T8227] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  236.536866][ T8227] RIP: 0010:tracepoint_probe_unregister+0x894/0xd70
[  236.543520][ T8227] Code: 41 5e 41 5f e9 4d e7 af 09 e8 38 1e fe ff 48 c7 c6 70 80 bc 81 48 89 df e8 d9 2b e5 ff eb 9f bb fe ff ff ff e8 1d 1e fe ff 90 <0f> 0b 90 eb 91 e8 12 1e fe ff 48 89 da 48 b8 00 00 00 00 00 fc ff
[  236.563823][ T8227] RSP: 0018:ffffc90004cdf890 EFLAGS: 00010287
[  236.569945][ T8227] RAX: 00000000000098f0 RBX: 00000000fffffffe RCX: ffffc9000c50a000
[  236.578398][ T8227] RDX: 0000000000080000 RSI: ffffffff81bc91b3 RDI: 0000000000000005
[  236.586693][ T8227] RBP: ffffffff8f308fe0 R08: 0000000000000005 R09: 0000000000000000
[  236.594878][ T8227] R10: 0000000000000001 R11: 0000000000000000 R12: ffffffff81c26380
[  236.602910][ T8227] R13: ffff88801be80dc8 R14: 0000000000000002 R15: ffff88801be80d80
[  236.610877][ T8227] FS:  00007fdb3a3246c0(0000) GS:ffff8881249e7000(0000) knlGS:0000000000000000
[  236.619840][ T8227] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  236.626597][ T8227] CR2: 0000001b2fe15ff8 CR3: 000000007d390000 CR4: 00000000003526f0
[  236.634696][ T8227] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  236.642712][ T8227] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  236.650909][ T8227] Call Trace:
[  236.654390][ T8227]  <TASK>
[  236.657337][ T8227]  ? __pfx_tracepoint_probe_unregister+0x10/0x10
[  236.663703][ T8227]  tracing_stop_cmdline_record+0x66/0xa0
[  236.669335][ T8227]  __ftrace_event_enable_disable+0x762/0x8b0
[  236.675361][ T8227]  ftrace_event_set_open+0x232/0x380
[  236.680648][ T8227]  do_dentry_open+0x741/0x1c10
[  236.685435][ T8227]  ? __pfx_ftrace_event_set_open+0x10/0x10
[  236.691382][ T8227]  vfs_open+0x82/0x3f0
[  236.695586][ T8227]  path_openat+0x1e5e/0x2d40
[  236.700174][ T8227]  ? __pfx_path_openat+0x10/0x10
[  236.705125][ T8227]  do_filp_open+0x20b/0x470
[  236.709621][ T8227]  ? __pfx_do_filp_open+0x10/0x10
[  236.714681][ T8227]  ? alloc_fd+0x471/0x7d0
[  236.719018][ T8227]  do_sys_openat2+0x11b/0x1d0
[  236.723711][ T8227]  ? __pfx_do_sys_openat2+0x10/0x10
[  236.728902][ T8227]  ? __sock_release+0x20b/0x270
[  236.733783][ T8227]  __x64_sys_openat+0x174/0x210
[  236.738629][ T8227]  ? __pfx___x64_sys_openat+0x10/0x10
[  236.744021][ T8227]  ? rcu_is_watching+0x12/0xc0
[  236.748781][ T8227]  do_syscall_64+0xcd/0x230
[  236.753602][ T8227]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  236.759490][ T8227] RIP: 0033:0x7fdb3958e969
[  236.764119][ T8227] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  236.783758][ T8227] RSP: 002b:00007fdb3a324038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  236.792293][ T8227] RAX: ffffffffffffffda RBX: 00007fdb397b5fa0 RCX: 00007fdb3958e969
[  236.800420][ T8227] RDX: 0000000000020201 RSI: 0000200000000100 RDI: ffffffffffffff9c
[  236.808500][ T8227] RBP: 00007fdb39610ab1 R08: 0000000000000000 R09: 0000000000000000
[  236.816489][ T8227] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  236.824468][ T8227] R13: 0000000000000000 R14: 00007fdb397b5fa0 R15: 00007fff02646ae8
[  236.832439][ T8227]  </TASK>
[  236.835478][ T8227] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  236.842748][ T8227] CPU: 0 UID: 0 PID: 8227 Comm: syz.1.554 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) 
[  236.854628][ T8227] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  236.864670][ T8227] Call Trace:
[  236.867936][ T8227]  <TASK>
[  236.870854][ T8227]  dump_stack_lvl+0x3d/0x1f0
[  236.875447][ T8227]  panic+0x71c/0x800
[  236.879336][ T8227]  ? __pfx_panic+0x10/0x10
[  236.883747][ T8227]  ? show_trace_log_lvl+0x29b/0x3e0
[  236.888940][ T8227]  ? tracepoint_probe_unregister+0x894/0xd70
[  236.894915][ T8227]  check_panic_on_warn+0xab/0xb0
[  236.899850][ T8227]  __warn+0xf6/0x3c0
[  236.903740][ T8227]  ? tracepoint_probe_unregister+0x894/0xd70
[  236.909716][ T8227]  report_bug+0x3c3/0x580
[  236.914044][ T8227]  ? tracepoint_probe_unregister+0x894/0xd70
[  236.920022][ T8227]  handle_bug+0x184/0x210
[  236.924366][ T8227]  exc_invalid_op+0x17/0x50
[  236.928872][ T8227]  asm_exc_invalid_op+0x1a/0x20
[  236.933734][ T8227] RIP: 0010:tracepoint_probe_unregister+0x894/0xd70
[  236.940318][ T8227] Code: 41 5e 41 5f e9 4d e7 af 09 e8 38 1e fe ff 48 c7 c6 70 80 bc 81 48 89 df e8 d9 2b e5 ff eb 9f bb fe ff ff ff e8 1d 1e fe ff 90 <0f> 0b 90 eb 91 e8 12 1e fe ff 48 89 da 48 b8 00 00 00 00 00 fc ff
[  236.959939][ T8227] RSP: 0018:ffffc90004cdf890 EFLAGS: 00010287
[  236.966000][ T8227] RAX: 00000000000098f0 RBX: 00000000fffffffe RCX: ffffc9000c50a000
[  236.973962][ T8227] RDX: 0000000000080000 RSI: ffffffff81bc91b3 RDI: 0000000000000005
[  236.981924][ T8227] RBP: ffffffff8f308fe0 R08: 0000000000000005 R09: 0000000000000000
[  236.989886][ T8227] R10: 0000000000000001 R11: 0000000000000000 R12: ffffffff81c26380
[  236.997850][ T8227] R13: ffff88801be80dc8 R14: 0000000000000002 R15: ffff88801be80d80
[  237.005854][ T8227]  ? __pfx_probe_sched_switch+0x10/0x10
[  237.011405][ T8227]  ? tracepoint_probe_unregister+0x893/0xd70
[  237.017387][ T8227]  ? __pfx_tracepoint_probe_unregister+0x10/0x10
[  237.023720][ T8227]  tracing_stop_cmdline_record+0x66/0xa0
[  237.029345][ T8227]  __ftrace_event_enable_disable+0x762/0x8b0
[  237.035326][ T8227]  ftrace_event_set_open+0x232/0x380
[  237.040607][ T8227]  do_dentry_open+0x741/0x1c10
[  237.045366][ T8227]  ? __pfx_ftrace_event_set_open+0x10/0x10
[  237.051173][ T8227]  vfs_open+0x82/0x3f0
[  237.055238][ T8227]  path_openat+0x1e5e/0x2d40
[  237.059829][ T8227]  ? __pfx_path_openat+0x10/0x10
[  237.064762][ T8227]  do_filp_open+0x20b/0x470
[  237.069254][ T8227]  ? __pfx_do_filp_open+0x10/0x10
[  237.074284][ T8227]  ? alloc_fd+0x471/0x7d0
[  237.078619][ T8227]  do_sys_openat2+0x11b/0x1d0
[  237.083291][ T8227]  ? __pfx_do_sys_openat2+0x10/0x10
[  237.088479][ T8227]  ? __sock_release+0x20b/0x270
[  237.093331][ T8227]  __x64_sys_openat+0x174/0x210
[  237.098178][ T8227]  ? __pfx___x64_sys_openat+0x10/0x10
[  237.103566][ T8227]  ? rcu_is_watching+0x12/0xc0
[  237.108338][ T8227]  do_syscall_64+0xcd/0x230
[  237.112840][ T8227]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  237.118724][ T8227] RIP: 0033:0x7fdb3958e969
[  237.123127][ T8227] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  237.142736][ T8227] RSP: 002b:00007fdb3a324038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  237.151181][ T8227] RAX: ffffffffffffffda RBX: 00007fdb397b5fa0 RCX: 00007fdb3958e969
[  237.159166][ T8227] RDX: 0000000000020201 RSI: 0000200000000100 RDI: ffffffffffffff9c
[  237.167145][ T8227] RBP: 00007fdb39610ab1 R08: 0000000000000000 R09: 0000000000000000
[  237.175104][ T8227] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  237.183093][ T8227] R13: 0000000000000000 R14: 00007fdb397b5fa0 R15: 00007fff02646ae8
[  237.191065][ T8227]  </TASK>
[  237.194312][ T8227] Kernel Offset: disabled
[  237.198635][ T8227] Rebooting in 86400 seconds..