last executing test programs:

22.793991967s ago: executing program 3 (id=795):
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000000)={{&(0x7f0000000040), 0xc88, 0x0, 0x0, &(0x7f00000000c0), 0x8, 0x200}, 0x5}, 0x3b8b, 0x800)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
socketpair$auto(0x1, 0x2, 0x1, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
mbind$auto(0x9, 0x84, 0x4, 0x0, 0x80000000, 0x7f)
mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = socketpair$auto(0x9, 0x4, 0x7, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
shutdown$auto(0x200000003, 0x2)
mlockall$auto(0x7)
modify_ldt$auto(0x1, 0x0, 0x10)
modify_ldt$auto(0x4000000, 0x0, 0x40100000000aa)
getrandom$auto(0x0, 0x6000000, 0x3)
syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000140), r0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0)
ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r1, 0xc0285700, 0x0)
ioctl$auto(0x3, 0x80000541b, 0x38)
pread64$auto(0xffffffffffffffff, 0x0, 0x20000000001, 0x7fff)
socket(0x2c, 0x80003, 0x0)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x2000, 0x0)
mmap$auto(0x0, 0x2000d, 0x4000000200df, 0xeb4, 0x404, 0x8000)
setsockopt$auto(0x3, 0x10000000084, 0x10, 0x0, 0xb)

17.308759738s ago: executing program 3 (id=804):
mmap$auto(0x0, 0x400008, 0xde, 0x9b72, 0x0, 0x100000000008000) (async)
mmap$auto(0x0, 0x400008, 0xde, 0x9b72, 0x0, 0x100000000008000)
r0 = socket(0x2, 0x1, 0x106)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) (async)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x26}}, 0x54)
shutdown$auto(r0, 0x0) (async)
shutdown$auto(r0, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0)
shutdown$auto(0x200000003, 0x2)
mmap$auto(0x200000000000000, 0x400006, 0xdf, 0x12, 0x2, 0x8001)
madvise$auto(0x0, 0xffffffffffff0002, 0x19) (async)
madvise$auto(0x0, 0xffffffffffff0002, 0x19)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
write$auto(0x3, 0x0, 0x7fffffff)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/pci0000:00/waiting_for_supplier\x00', 0x80800, 0x0)
openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/trace\x00', 0x20600, 0x0)
unshare$auto(0x40000080) (async)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
ioctl$auto(0xffffffffffffffff, 0x64ce, 0xffffffffffffd4b4) (async)
ioctl$auto(0xffffffffffffffff, 0x64ce, 0xffffffffffffd4b4)
syz_clone(0x40011, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
write$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000200), 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
prctl$auto_PR_SET_MM_ARG_END(0x8, 0x9, 0x0, 0x1, 0xd3e89ca) (async)
r1 = prctl$auto_PR_SET_MM_ARG_END(0x8, 0x9, 0x0, 0x1, 0xd3e89ca)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000140), r0)
sendmsg$auto_NL80211_CMD_ADD_TX_TS(r1, &(0x7f0000000340)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000300)={&(0x7f0000000180)={0x168, r2, 0x1, 0x70bd27, 0x25dfdbfd, {}, [@NL80211_ATTR_SUPPORTED_SELECTORS={0x27, 0x14e, "21d20f5772a33907b3095c2a4c0a6690499720dd335541e45867a5f96650d6de98d213"}, @NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x6}, @NL80211_ATTR_RADAR_BACKGROUND={0x4}, @NL80211_ATTR_FILS_NONCES={0xdc, 0xf3, "09c7e7f45d02cf7517d1e449ec44d29cc854c72fdd637b700ece73c65a4ada5987f6b19f6ab70404d5b7aed7f6652826a7de63c47a3042bb81ef07d9bf430291aa9f7a12c3cebd8c641cb2d826b847fce18829e817d5367716840db299f9b87b0c18d8268c05392c032be267ccaace5a718946b4ddb7ee4c001c2dc91b36371a45784369984529f209c7c8fc913f219a33e6b1185a40738415a7847d8e93037b98281b559bd42f6cfdf78b927ff9c2b7179f3e1068112e9dc7dd58d0bac23c202d47412e959754f0cec4d178381c5599c10a90eff8b59496"}, @NL80211_ATTR_CH_SWITCH_COUNT={0x8, 0xb7, 0x5}, @NL80211_ATTR_FILS_ERP_RRK={0x3b, 0xfc, "25dfd2718db2e97d2981d33db66de435676a28b899742799bfef8f0bd301c394c9f8e0130bfb315af99892246c7ed8ea1b9bf9ebe144ac"}]}, 0x168}, 0x1, 0x0, 0x0, 0x20000000}, 0x20000810)
mremap$auto(0x4000, 0xfee0, 0x3fd6, 0x3, 0x18000)

12.264781341s ago: executing program 3 (id=817):
mmap$auto(0x0, 0x400, 0xdf, 0xeb1, 0x1272, 0x8000)
r0 = socket(0x15, 0x5, 0x0)
fsconfig$auto(0xffffffffffffffff, 0x1, &(0x7f0000000200)='I\xee\"\xe3\xb7\xcfD\xe5\xb1\x05\x1e#\xff1<\xd9h[e\xdf\xc0M\xa2\x00\v\x97\xb5\xd4\x94\x99u\x9e\xf4O\x1a\xb1\x05\xb8\xcb\x96\fd\xa3\xf9&\xc9~\x10\x06X\a\xc8\xb7\x97\xc7M\x83\'^\xc9\x9e\xccAsv\xce8sw\v\xac\xcd\xa2B\xf8.\xce\xe6n\xfe\xd6\xc8^W>Rz`C+\x0e\x8c<\xc5\x8f\xe6\x0f\x14\xfa\x9ea4>\xd8O[{\xede\xfd\xbc\xc7\xbd4_\xbc\xc6\x06\xe5h\x9e\xf5/4\xe8\xcfc\x95\xbb~\xd9.\xb3\x84\xb8K\xa7\xca\xda\xc8\x11u\xa1\x1d\x9d\xe1%\xc0m\xf6%1\xba\xe7^\xed0\xdc\x86\xeaG)?p,Up \xe9\b\x14\xaf\xbf\xd9\xc3,\xb8\x17\x10\x9f\x92\x95@),A\xb4\x92Q\x86\xbe\xed=p\x1b\x9d\xd4\x99_]K\xce.\x00\x00\x00\x8eDv\x0fl\xed\x93ey\xf9\x19\xf0\x9d\xf5\xfe\xed\xc7Q\xc0ZJ\xc9*7\xf2\x1a\xa7\xb3\xc6v\v\xe1u\x16:\x15\xefel\xf0\x8c/\xa2\x95\xc1\xacd\xc9\a\xe5\x888F\xaa\xce\x94\xa2zsx\xea\x96\x7f~]\xdbj\xd1#\x94K\xcf\x11l\xe5Z\xec\xa6B\x90\xb6\xa3`\x88\xd4\x87\x17\x8a\xedFx\x95#\x83\x99\x00\xc6Z\x1au\x8e\xa7}\xa7\xe9\x83X\xa3\xad\xe2T\xea\xa0\xba\xd7R8T\x00\x8e0h\x8ck4\x15\xf3sh0\xd3\x1e\xedU@\xab\xc0g\xeeT\xc5\x8d\x9b\x188x)\xf0i]\xdcf\xdd\xf9\xffA\"ZQ\x8d\x15\xff\xf3WYX\x8a/\xb36\x1d\x8e7\xb2d3\xe8\xf4\x1e3\xec\xfe\xbf\xbbo\xbb\xd2Z\x89:\xa2\xc8n8k\xa8\xba\xa5E\x9f\xbe>3,\xcb\xa2\xa7q \xe2', 0x0, 0x0)
read$auto(0x3, 0x0, 0xfffffffffffffdef)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x7, 0x800008000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9)
ustat$auto(0x801, 0x0)
sendmsg$auto(r0, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0xb, 0x0, 0x1, 0x8}, 0x0)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/pci/00/01.3\x00', 0x100, 0x0)
pread64$auto(r1, 0x0, 0x3, 0x5)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7fffe000)
write$auto(0xffffffffffffffff, 0x0, 0x3)
r2 = socket(0x5c, 0x800, 0x5)
openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/pcmC0D0p\x00', 0x0, 0x0)
ioctl$auto(0x3, 0x541b, 0xfffffffffffff4e0)
getsockopt$auto(r2, 0x6b, 0xdc5a, 0xfffffffffffffffe, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x163340, 0x6a)
r3 = socket(0x2, 0x80802, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
connect$auto(0x3, &(0x7f0000000140)=@llc={0x1a, 0x201, 0xbb, 0x8, 0x7, 0x6, @link_local}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe)
sendmsg$auto_OVS_VPORT_CMD_DEL(r3, 0x0, 0x20008004)
socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
socket(0xa, 0x1, 0x100)
mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
setsockopt$auto(0x400000000000003, 0x29, 0x1b, 0x0, 0x568)

9.871078855s ago: executing program 1 (id=820):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8400)
ioperm$auto(0x5, 0x7, 0x1)
modify_ldt$auto(0x1, 0x0, 0x10)
r0 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$auto(r0, 0x40045569, r0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40, 0x0)
r1 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
pread64$auto(r1, &(0x7f0000000040)='\x00\x00\x00\x88\xde\x90\a\'\x9bM\xa0\x848\xbbz(\xe9\x05<\x82\xfe\xe2\xf6 \x0f8\xfb\xa7\xb4\xa0\x9e\xcb\xec\x9e{W\xed>\xe7l\xcb\x90\\/\x84\x99!*\xe3\x99}x\xd4\xa5D\xfa\xe5\xf9od^\xa6', 0x7ff, 0x400)
socket(0x1e, 0x1, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0)
process_mrelease$auto(0xffffffffffffffff, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004810}, 0x8800)
openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, 0x0, 0x50b41, 0x0)
close_range$auto(0x2, 0x8, 0x0)

9.321651025s ago: executing program 3 (id=822):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
socket(0x2, 0x2, 0x0)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
select$auto(0x10000e, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x9, 0x8, 0x1, 0x2, 0x4000000000000004, 0x15f4da0e, 0x1, 0xd08, 0xc, 0x8, 0x4, 0x6d3f, 0x9, 0x2, 0x4000000000000d]}, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
socket(0x2c, 0x1, 0x3)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000080)=""/19, 0x13)
close_range$auto(0x2, 0x8, 0x0)
socket(0x21, 0x2, 0x2)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, 0x0, 0x6a200, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
madvise$auto(0x110c230000, 0x1, 0x9)
preadv$auto(0x40000000000003, 0x0, 0x6, 0x8, 0x5)
flock$auto(0xffffffffffffffff, 0x2)
flock$auto(0xffffffffffffffff, 0x2)
bind$auto(0x3, 0x0, 0x406a)
bind$auto(0x3, 0x0, 0x6a)
madvise$auto(0x0, 0x200007, 0x19)
ioctl$auto_XFS_IOC_SWAPEXT(r0, 0xc0c0586d, 0x0)
pidfd_send_signal$auto_PIDFD_SELF_THREAD(0xffffffffffffd8f0, 0x74e, &(0x7f0000000200)={@siginfo_0_0={0x80000000, 0xd, 0x7d67, @_rt={0x0, 0x0, @sival_int=0x3}}}, 0x401)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)

9.315661229s ago: executing program 0 (id=830):
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/psaux\x00', 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, 0x0, 0x0, 0x0)
getdents$auto(r0, &(0x7f0000000100)={0x87ca, 0x800000000b, 0x2, "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"}, 0x4)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da07, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0xeb1, 0x0, 0x8000)
socket(0x23, 0x80000, 0x92)
mmap$auto(0x0, 0x400108, 0xdf, 0x9b72, 0x2, 0x8000)
io_uring_setup$auto(0x6, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/afs/sysname\x00', 0xaa102, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
fsopen$auto(&(0x7f0000000040)='nfsd\x00', 0x1)
readv$auto(0x3, &(0x7f00000000c0)={0x0, 0x8}, 0x400)
close_range$auto(0x2, 0x8, 0x0)
eventfd$auto(0x3)
socketpair$auto(0x9, 0x2, 0xb, 0x0)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptyd1\x00', 0x0, 0x0)
ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000340), 0x6000, 0x0)
select$auto(0x3, &(0x7f0000000440)={[0x5, 0x3, 0x1000, 0xdf, 0x8, 0x7, 0x10001, 0x8, 0x438c82bf, 0x4, 0x0, 0x4, 0x788, 0x6, 0x5, 0x8]}, &(0x7f00000004c0)={[0x6, 0x1, 0x9, 0x8, 0x8, 0x9, 0xd, 0x7, 0x1, 0xffffffffffffffff, 0x2, 0x6, 0xb, 0x7, 0xfffffffffffffffd, 0x8000]}, &(0x7f0000000540)={[0x497, 0x7, 0xfffffffffffffffb, 0x9, 0x3, 0x7, 0x4, 0x2, 0xfffffffffffffffa, 0x3, 0x4, 0xe, 0x5, 0xf9, 0x2, 0x31]}, &(0x7f00000003c0)={0x6, 0x400})
ioctl$auto(0x3, 0x5401, 0x1)

8.641605268s ago: executing program 2 (id=823):
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
fcntl$auto(0x3, 0x400, 0x1)
open(&(0x7f0000000080)='./file0\x00', 0x40, 0x0)
r0 = open(&(0x7f0000000800)='./file0\x00', 0x2040, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_taskstats(&(0x7f0000000d80), r1)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
adjtimex$auto(&(0x7f00000005c0)={0xf332b6e, 0x0, 0x0, 0x8, 0xd4, 0x7, 0x9, 0x0, 0x10001, 0x1, 0x2, {0x8, 0x10000}, 0x1, 0x6, 0xfffffffffffffffd, 0x1007ffe, 0x0, 0x80000004, 0x83, 0xffffffffffff628e, 0xa747, 0x1, 0x1800})
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x2, 0x0)
r3 = openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/ieee80211/phy7/queues\x00', 0x20000, 0x0)
setsockopt$auto(r3, 0x8001, 0xd, &(0x7f00000001c0)='.&-\x00', 0x101)
read$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(r3, 0x0, 0x0)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(0xca, &(0x7f0000000140)='\x04>\x01\x01\b\x1a\x1e`<I}\xe8N\x94\xf2\xa2\x00\x00\f\x15\xd8a\xed\x84\xb7\f\x00\x00\x80\x00\x00\x00\x001.\xb0`W\xd3M\x00\xbf\xe9\x83\xea8\xd1\xda\xcf9\x02u@\xeb\xcd\xb2\tBAh\xf8', 0x8)
write$auto(r4, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
r5 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x101001, 0x0)
r6 = openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/config/nvmet/discovery_nqn\x00', 0x12bc58ea534b0fa6, 0x0)
sendmsg$auto_TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, &(0x7f0000000580)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000002c0)={&(0x7f00000019c0)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB="200025bd7000fcdbdf25100000004b000980d921fbaecbc3fcc049c08d1b3e9bdcce3be5de70bb321ff05a1ca53817e8dfb71379da0c8dfebb4096f9085237bb36021cb1be6eca10e5b8dcb9c62a71561044e5c6478c2f6e5146b0e8e2a2711902a9c99571cceb629b763bbfb78a850a47d18091473d0897cb376a38f00ce737f510ca44d47b5c6311e95eb3985ae49b6661ae092ac494a21600feac9c8c65370dafe8703ec424ad8baeccbf863f7b9a3fba15d2342426d4febe911055038c08829cc4d9123e19000000100001800c00688008001500", @ANYRES32=0x0, @ANYRESOCT=r5, @ANYRES32=0x0, @ANYBLOB="0c00080003000000000000001400770000000000000000000000ffffe00000020c002b000c00000000000000b41303807e01848008003b00090000001ac7c4f74d32346be756584ab7f33459c63ed890b6d191a6395c3dd35fa2b3a50b4bfa92dd3e2777ed381910611e9a847a6071746c7dbaa53ad1c426eac8f621ac0e6e8e690b934e2e0213fd4896865b12733280346386ce7b17aa8baef939b96af19b1160dd6f19a1c01aeebdc893d3129fa9afe6e95a02fcd6eadfbcf4bee0e9af51f008485c19b8a4b48e0e030400", @ANYRES32=0x0, @ANYBLOB="08009a005507d71b3de48103242b40f7d0fd3faad9db89b6d3c14316edba801fc68b019a60d74639143fb5d4a9092b2bde6d265f98aece98424dda926b26d7358af55d38d52c1d5aff9df9b1519ceb10283edd416e0067edeb383b12ac285f83fafdda3ee27ccf1caace38ef37b81b70b81a98c23295dcafdfb4e7586f6685893b3e3b0df3b1993183d164aaaeceb0cafa33bb99ebd0a2533eec988e61ecdf03b6a6949670dae24d0322159b96f7efc9ae51eefb215ab40ddb8ba826446a", @ANYRES32, @ANYBLOB="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", @ANYRES32, @ANYBLOB, @ANYRESDEC=r6, @ANYRES8, @ANYRES32=0x0, @ANYBLOB="04002e809581e63d613e29b02933f8f2d7a3bd0133d7b9c801fc070989bf8c55b492b8453398afd9298537182ec7725d319fc61d06bc088ed8f10648976098060d0f0cf87314703bf52147f46f5d8f5f250c878cd32ca3d38ef4cfc573bd16240c65c6f3c4e33561884663612bfc8aa0e394c6a6d03eb6e9b073a57737b737d48535f45efa529c74ddf87c7d0d66894f333463a657b3d11b11651b7c47710629f65f13c6a506e359280800e100fffbffff0800", @ANYRESHEX=r2, @ANYBLOB, @ANYBLOB], 0x2204}, 0x1, 0x0, 0x0, 0x8014000}, 0x20)
openat$auto_dvb_dvr_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
futex$auto(&(0x7f00000000c0)=0x3, 0xa, 0x0, &(0x7f0000000140)={0x3, 0x8}, &(0x7f0000000180)=0x8, 0xffffff00)
bind$auto(0x3, 0x0, 0x6a)
syz_genetlink_get_family_id$auto_tipcv2(0x0, 0xffffffffffffffff)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
madvise$auto(0x0, 0xfffffffffffefffd, 0x17)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x3, 0x0)
ioctl$auto_SNDCTL_DSP_GETODELAY(0xffffffffffffffff, 0x80045017, &(0x7f0000000c00))
io_uring_setup$auto(0x6, 0x0)
sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc000}, 0x2404c800)
kexec_load$auto(0x4, 0x2, &(0x7f0000000040)={@kbuf=0x0, 0x800c000, 0x4800c000, 0x800c000}, 0x4)
close_range$auto(r0, 0x8, 0x0)

8.529945565s ago: executing program 1 (id=824):
mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r0 = open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0)
r1 = openat$auto_msr_fops_msr(0xffffffffffffff9c, &(0x7f0000000540)='/dev/cpu/0/msr\x00', 0x0, 0x0)
ioctl$auto_X86_IOC_RDMSR_REGS(r1, 0xc02063a0, &(0x7f0000000bc0)=[0x7, 0x83, 0x9, 0x4, 0x1000, 0x7, 0x777, 0x9])
r2 = socket(0x22, 0x2, 0x1)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
socket(0x11, 0x80003, 0x300)
mmap$auto(0xc, 0x6, 0x1, 0x9b7f, r0, 0x0)
name_to_handle_at$auto(0xffffffffffffffff, &(0x7f00000001c0)='/\x00', &(0x7f0000000200)={0x0, 0x200}, 0x0, 0x1001)
socket(0x11, 0x2, 0x0)
setsockopt$auto(0x3, 0x3d, 0x20, 0x0, 0x9)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/security/tomoyo/manager\x00', 0x400, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xa083, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r3)
fstat$auto(r2, 0x0)
close_range$auto(0x2, 0xfffffffffffff000, 0x2)
r4 = open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14aab4)
flock$auto(r4, 0x1)
r5 = open(&(0x7f00000000c0)='./file0\x00', 0x4081, 0x40)
flock$auto(r5, 0x2)
r6 = openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/psaux\x00', 0x2, 0x0)
write$auto_mousedev_fops_mousedev(r6, 0x0, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
write$auto(0x3, 0x0, 0xfdef)
read$auto(0x3, 0x0, 0xf3c)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x4004)

7.327061504s ago: executing program 0 (id=825):
getrlimit$auto(0x2, &(0x7f0000000040)={0x4, 0x3})
mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0000, 0x0)
r0 = openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000140)='/proc/version\x00', 0x800, 0x0)
r1 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/input/event2\x00', 0x105100, 0x0)
ioctl$auto_EVIOCSKEYCODE(r1, 0x40084504, &(0x7f0000000540)=[0x2, 0x40])
r2 = getsid$auto(0x0)
r3 = waitid$auto_P_PID(0x1, 0x0, &(0x7f0000000080)={@_si_pad}, 0x8a, &(0x7f0000000180)={{0xfff, 0xb5e}, {0x81, 0x8}, 0x4, 0x2, 0xffffffffffff0000, 0xa, 0x3, 0x5, 0xa2ad, 0x1, 0x4, 0x0, 0x6, 0x5, 0x1})
rt_tgsigqueueinfo$auto(r2, r3, 0x5, &(0x7f00000004c0)={@siginfo_0_0={0xd9bc, 0x7f, 0x1, @_sigfault={&(0x7f0000000240)="ffd6e5893dfc859aba9654eaae134bb3f1990292514fe3a27ee1273587fd2a7b2f55be1bdfd026789ceaa8e503469f122baddaaca9481e81b1b3661d38f0bd5c1853455b428b389fcc02799c020185fbc85f520e67b472b1aee68ba35af488d0100e99f9fb4ebd8fb9a312557a172eb309f1e671d30a12b3edcf01464ab0f8a2df79ff250e0f43e2ba7cb98377761f152cb53022d47c10f37b5a6a8106e7a83a09245ab0aaa6ff1b022da8e2a0aba8ec11faf57326f966d3187f1c1d528e59", @_addr_bnd={"e06a264efc00b551", &(0x7f0000000300)="592b544b12d0746b24ef676d2e15e25c41aa51a71ec082e3e856d362e82c974d800fb325a485415ba9b91cda20112dac971e272c4e13d6ed35dcd5267938714ee28235ce316c15e2be85659a64c0", &(0x7f0000000380)="f2be921decbc565223ead15fa2118584f438ddf9dd344885a808b710ca2ccf9b9f65a4bbca000bfc"}}}})
read$auto_proc_mountinfo_operations_mnt_namespace(r0, &(0x7f0000001100)=""/4096, 0x1000)
mmap$auto(0x0, 0xf2, 0xdf, 0xeb1, 0xf6f6, 0x8000)
ioctl$auto(0x3, 0x400c4d05, 0x5)

6.433854826s ago: executing program 0 (id=826):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8400)
ioperm$auto(0x7, 0x5ad2, 0x8)
modify_ldt$auto(0x1, 0x0, 0x10)
r0 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$auto(r0, 0x40045569, r0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40, 0x0)
r1 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/module/apparmor/parameters/path_max\x00', 0x0, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f00000000c0)=""/17, 0x11)
pread64$auto(r1, &(0x7f0000000040)='\x00\x00\x00\x88\xde\x90\a\'\x9bM\xa0\x848\xbbz(\xe9\x05<\x82\xfe\xe2\xf6 \x0f8\xfb\xa7\xb4\xa0\x9e\xcb\xec\x9e{W\xed>\xe7l\xcb\x90\\/\x84\x99!*\xe3\x99}x\xd4\xa5D\xfa\xe5\xf9od^\xa6', 0x7ff, 0x400)
socket(0x1e, 0x1, 0x0)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x40, 0x0)
r4 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
select$auto(0x2000000e, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x9, 0xd, 0xe, 0x948b, 0x3, 0x2015f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0)
process_mrelease$auto(0xffffffffffffffff, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004810}, 0x8800)
openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, 0x0, 0x50b41, 0x0)
r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/admmidi2\x00', 0x20002, 0x0)
ioctl$auto_SNDRV_RAWMIDI_IOCTL_DROP(r5, 0x40045730, &(0x7f0000000080)=0x4)
ioctl$auto_TUNGETVNETHDRSZ2(r4, 0x800454d7, &(0x7f0000000180)=0x3)
r6 = socket(0x10, 0x2, 0x0)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB="0600", @ANYRES16=0x0, @ANYBLOB="010025"], 0x14}, 0x1, 0x0, 0x0, 0x30000881}, 0xc040804)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='B'], 0x1ac}}, 0x40000)
sendmmsg$auto(r6, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0x96bc}, 0x2, &(0x7f0000000380), 0x7, 0x4}, 0x9}, 0x7, 0x4008)
syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000240), r4)

5.303024715s ago: executing program 1 (id=827):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x1d, 0x1, 0x0)
r0 = openat$dir(0xffffffffffffff9c, 0x0, 0x40000, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000080)={{&(0x7f0000000240)="dc5662704c29ead37c2b374c01f47203da561f0572045fe9be3de200aa66fd0dcad4ae8b94d5605d4e7a3e7851c8389ef656667201af0f4a9eace58076384c2d1f9fddaff47b6dbaeadb4618648b94f06ef460d0178feecf40b0fa92ebd0654f3a305982559606a22a1c01470a114d88136800669da6696f53722c79accda97368c0239b0eac15665fde029f861738c39db1769dfeb0f6974a2bc67ff79cc7490d14a77bb42dbbe6af9e883b85d7aa6e819c8359cdadbfcb7a", 0x12, 0x0, 0x20000040b, 0x0, 0x1f, 0x400101}, 0x1}, 0x1, 0x20020000)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
socket(0x1d, 0x2, 0x6)
mmap$auto(0x2973b046, 0xffffffe, 0x6, 0x10000000009b7f, r0, 0x1)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x8000, 0x0)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, 0x0, 0x41)
setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
sysfs$auto(0x2, 0x11, 0x0)
r2 = fsopen$auto(0x0, 0x1)
fsconfig$auto(r2, 0x8, 0x0, 0x0, 0x0)
close_range$auto(0x2, r0, 0x0)
mmap$auto(0x0, 0x100000000020009, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x8101)
getpid()
r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
r4 = openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, &(0x7f0000000500)='/dev/cpu/0/cpuid\x00', 0xad00, 0x0)
readv$auto(r4, &(0x7f0000000140)={0x0, 0x40200}, 0x3)
ioctl$auto_SNDCTL_DSP_SPEED(r3, 0xc0045002, 0x0)
ppoll$auto(&(0x7f0000000000)={r3, 0x40}, 0x8000002, 0x0, 0x0, 0x8)
modify_ldt$auto(0x1, 0x0, 0x10)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40, 0x0)

5.109221315s ago: executing program 2 (id=828):
write$auto(0xffffffffffffffff, 0x0, 0x8)
mmap$auto(0x0, 0xdf33, 0xe2, 0xeb1, 0x405, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
madvise$auto(0x3, 0x4, 0x5)
madvise$auto(0x0, 0x2003f0, 0x15)
madvise$auto(0x3, 0x5, 0x3)
r0 = mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x9, 0x0)
mq_timedsend$auto(r0, 0x0, 0x2000, 0x2, 0x0)

4.798138647s ago: executing program 3 (id=829):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x10, 0x2, 0x14)
socket(0x11, 0x80003, 0x300)
socket(0x1d, 0x2, 0x7)
socket(0x2, 0x1, 0x0)
socket(0x10, 0x2, 0x0)
socket(0x1d, 0x2, 0x7)
socket(0xa, 0x2, 0x73)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x1, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, 0x0, 0x1, 0x0)
ioctl$auto(r0, 0x40046207, 0x9)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x22840, 0x0)
exit$auto(0x7)
read$auto(0x3, 0x0, 0x80)
sendmsg$auto_OVS_METER_CMD_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000000}, 0x880)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0x200007, 0x19)
shmat$auto(0x0, &(0x7f0000000580)='(\x00', 0xfffffffa)
shmdt$auto(&(0x7f0000000000)=':-h!/-^@(\']@%]/\x00')
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_TIPC_NL_LINK_GET(r1, &(0x7f0000003e80)={0x0, 0x0, &(0x7f0000003e40)={&(0x7f0000003300)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16, @ANYBLOB="010028bd7000ffdbdf2508000000200004801c00018015009c002f6465762f6370752f312f637075696400000000"], 0x34}}, 0x8040)
socket(0xa, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket(0x10, 0x2, 0x14)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r2, &(0x7f0000003000)={0x0, 0x0, &(0x7f0000002fc0)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000000a14af"], 0x14}, 0x1, 0x0, 0x0, 0x80c3}, 0x4004804)

4.795313016s ago: executing program 0 (id=831):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x55)
socket(0x2, 0x3, 0xa)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x2, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x5840, 0xdf, 0x9b72, 0x2, 0x8000)
prctl$auto(0x1, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
ioctl$auto_FS_IOC_GETFSUUID(0xffffffffffffffff, 0x80111500, 0xffffffffffffffff)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
futex$auto(0x0, 0x8d, 0x0, 0x0, 0x0, 0x100)
mmap$auto(0x100000000, 0x4, 0x4000000000df, 0x40eb2, 0xffffffffffffffff, 0x300000000000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x182, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_cpu_latency_qos_fops_qos(0xffffffffffffff9c, 0x0, 0x2, 0x0)
readv$auto(r0, &(0x7f0000000040)={0x0, 0x36a}, 0x6)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
preadv$auto(0x40000000000003, 0x0, 0x6, 0x8, 0x5)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8000, 0x0)
io_uring_setup$auto(0x59, 0x0)
r1 = setfsuid$auto(0xee00)
setresuid$auto(0xffffffffffffffff, r1, 0x8000)
setuid$auto(r1)
r2 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, 0x0, 0x4080, 0x0)
ioctl$auto_UBI_IOCDET(r2, 0x40046f41, &(0x7f0000000100)=0xb7)

4.575408546s ago: executing program 2 (id=832):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/platform/serial8250/serial8250:0/serial8250:0.2/tty/ttyS2/console\x00', 0x81, 0x0)
setsockopt$auto(0xffffffffffffffff, 0x9, 0x69ce, 0x0, 0x3)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x525581, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x400108, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/virtual/tty/ptyqe/power/control\x00', 0xa0b02, 0x0)
r0 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/kernel/security/tomoyo/profile\x00', 0x4c802, 0x0)
read$auto(r0, 0x0, 0xb4d3)
write$auto(0x3, 0x0, 0x70)
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x9)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x400004, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
get_mempolicy$auto(0x0, 0x0, 0x7f, 0x8, 0x3)
mremap$auto(0x4000, 0xb8, 0x13fd4, 0x3, 0xfffff000)
adjtimex$auto(0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x2, 0x0)
r1 = openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000040), 0x88301, 0x0)
write$auto_snd_seq_f_ops_seq_clientmgr(r1, &(0x7f00000000c0)="632d1bfe595046ab5c40bd6163307acb6d16baef6176e669a216aae1834ccafdd80500ffffffffdfff1a0e00"/56, 0x38)
bind$auto(0x3, 0x0, 0x6a)
mmap$auto(0x8000000000000, 0x10000e983, 0xe1, 0xeb1, 0xffffffffffffffff, 0x8000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x101281, 0x0)
r2 = openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/ieee80211/phy4/rc/name\x00', 0x20000, 0x0)
read$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(r2, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0xa, 0x9, 0x938d, 0x9b72, 0xffffffffffffffff, 0x0)
open_tree_attr$auto(0xffffffffffffffff, &(0x7f00000001c0)='}[,&*}\x00', 0x1000, &(0x7f0000000200)={0x10000, 0x97, 0x9a36}, 0xff)

3.81222803s ago: executing program 0 (id=833):
r0 = socket(0xa, 0x3, 0x5)
sendmmsg$auto(r0, &(0x7f0000000000)={{0x0, 0xc88, 0x0, 0x0, &(0x7f00000000c0), 0x8, 0x200}, 0x5}, 0x3b8b, 0x800)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
socketpair$auto(0x1, 0x2, 0x1, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
mbind$auto(0x9, 0x84, 0x4, 0x0, 0x80000000, 0x7f)
mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000)
r1 = socketpair$auto(0x9, 0x4, 0x7, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
shutdown$auto(0x200000003, 0x2)
mlockall$auto(0x7)
modify_ldt$auto(0x1, 0x0, 0x10)
modify_ldt$auto(0x4000000, 0x0, 0x40100000000aa)
getrandom$auto(0x0, 0x6000000, 0x3)
syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000140), r1)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0)
ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r2, 0xc0285700, 0x0)
ioctl$auto(0x3, 0x80000541b, 0x38)
pread64$auto(0xffffffffffffffff, 0x0, 0x20000000001, 0x7fff)
socket(0x2c, 0x80003, 0x0)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x2000, 0x0)
mmap$auto(0x0, 0x2000d, 0x4000000200df, 0xeb4, 0x404, 0x8000)
setsockopt$auto(0x3, 0x10000000084, 0x10, 0x0, 0xb)

3.212148519s ago: executing program 2 (id=834):
r0 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
ioctl$auto_FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000140)="58fcb282bcbc38bfaef257e019406ea6c445cd4f7f7662ac0f8834baa918d5b3cea133243c4f2b9a39e536b67f5a1a2bfdf589da2b1c980e1ce53883444996d1721d7f3ae627c6c604000000000000007910fbc02d899ab93d002d849884a5377ff11be2ed012110f2f520")
r1 = socket(0x10, 0x2, 0x4)
write$auto(r1, &(0x7f0000000000)='-\x00', 0xfdef)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/mnt\x00')
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/ip6gre0/power/control\x00', 0x10b142, 0x0)
prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x9, 0x3, 0x0, 0x3, 0x865d)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
fstatfs$auto(0x3, 0x0)
ioctl$auto(r3, 0x4b67, 0x1)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x0, 0x1, 0x3, 0x0, 0x5e, 0x80000001, 0x7, 0x1, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffe]}, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0)
write$auto(r0, &(0x7f00000001c0)='\x00P\\\xa0\x04|\x03\xcb\x12q\xf1\x1c\xc7\x92', 0x81)
write$auto(r4, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x6)
r5 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0)
read$auto_def_blk_fops_fs(r5, &(0x7f0000000140)=""/194, 0xc2)
mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000)
r6 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0)
mmap$auto(0xb2, 0x14, 0xffb, 0x8000000008018, r6, 0x8000)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x161640, 0x0)
open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x80842, 0x20)
ppoll$auto(&(0x7f0000000140)={0xffffffffffffffff, 0x3ff, 0x4}, 0x7f, 0x0, &(0x7f00000001c0)={0x3}, 0x8)
write$auto(r6, 0x0, 0xfffffdef)
write$auto(0x3, 0x0, 0xfffffdef)
madvise$auto(0xffffffffffff08b1, 0x20499c, 0x9)

2.015701735s ago: executing program 2 (id=835):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8400)
ioperm$auto(0x5, 0x7, 0x1)
modify_ldt$auto(0x1, 0x0, 0x10)
r0 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$auto(r0, 0x40045569, r0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40, 0x0)
r1 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
pread64$auto(r1, &(0x7f0000000040)='\x00\x00\x00\x88\xde\x90\a\'\x9bM\xa0\x848\xbbz(\xe9\x05<\x82\xfe\xe2\xf6 \x0f8\xfb\xa7\xb4\xa0\x9e\xcb\xec\x9e{W\xed>\xe7l\xcb\x90\\/\x84\x99!*\xe3\x99}x\xd4\xa5D\xfa\xe5\xf9od^\xa6', 0x7ff, 0x400)
socket(0x1e, 0x1, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0)
process_mrelease$auto(0xffffffffffffffff, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004810}, 0x8800)
openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, 0x0, 0x50b41, 0x0)
close_range$auto(0x2, 0x8, 0x0)

2.009237352s ago: executing program 1 (id=843):
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/fs/cifs/LinuxExtensionsEnabled\x00', 0x842, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6c, 0x0, 0xd9ce, 0xfffffffffffffffd, 0x4ea, 0x1, 0x6, 0x0, 0x1, 0x0, 0x8, {0x100000000, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x6, 0x0, 0x80000004, 0x81, 0xffffffffffff628e, 0x2, 0xdeb1, 0x804})
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0xc0282, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000500)='/dev/video0\x00', 0x0, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
r1 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x6483, 0x0)
read$auto_mon_fops_text_t_mon_text(r1, 0x0, 0x0)
clock_adjtime$auto(0x6bc9, &(0x7f00000005c0)={0x9, 0x0, 0x8, 0x7fffffffffffffff, 0x5, 0xfffffffffffffff7, 0x6, 0x0, 0x2, 0x2, 0x1, {0xf, 0x5}, 0xfa, 0xc47, 0x8, 0x5, 0x0, 0x8000000000000000, 0x98, 0x6, 0x9, 0xf, 0x5})
select$auto(0x6, 0x0, 0x0, 0x0, 0x0)
r2 = socket(0xf, 0x3, 0x2)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
msgctl$auto_IPC_SET(0xffff, 0x1, &(0x7f0000000100)={{0x8001, <r3=>0x0, 0xee01, 0x7, 0xfffffff7, 0x8, 0x85}, &(0x7f0000000040)=0x6, &(0x7f00000000c0)=0xff, 0x8, 0xffff, 0x81, 0x0, 0xb57f, 0x9, 0x4, 0x1, @inferred=0xffffffffffffffff, @inferred=0xffffffffffffffff})
setuid$auto(r3)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
pidfd_getfd$auto(0x3, 0x1, 0x100000000)
open(0x0, 0x22240, 0x155)
socket(0xa, 0x3, 0x3b)
io_uring_setup$auto(0x4, &(0x7f0000000200)={0x6, 0x6, 0x1, 0x0, 0x100, 0x10, <r4=>0xffffffffffffffff, [0x3, 0x6, 0x6], {0x1, 0x3, 0xffffe5fd, 0x2, 0x7, 0x3, 0x6, 0x2, 0xfffffffffffffffc}, {0x7fffffff, 0x39, 0x9, 0x8, 0xc6, 0x4, 0x5, 0x2, 0xffffffffffffffff}})
acct$auto(&(0x7f0000000180)='/dev/video0\x00')
connect$auto(0x3, 0x0, 0x55)
r5 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000140), 0x80100, 0x0)
ioctl$auto_dvb_demux_fops_dmxdev(r5, 0x40026f33, 0x0)
bpf$auto_BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000280)=@link_update={r5, @new_map_fd=r2, 0x1, @old_prog_fd=r4}, 0x0)
setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x700fe80)

1.242379103s ago: executing program 0 (id=836):
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) (async, rerun: 64)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) (rerun: 64)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async)
write$auto(0x3, 0x0, 0x7fffffff) (async)
write$auto(0x1, 0x0, 0x80000000) (async)
mmap$auto(0x6dea, 0x5, 0x9, 0x17, r0, 0x10001) (async, rerun: 32)
openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0) (rerun: 32)
preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5)
openat$auto_nsim_dev_max_vfs_fops_dev(0xffffffffffffff9c, &(0x7f00000089c0)='/sys/kernel/debug/netdevsim/netdevsim1/max_vfs\x00', 0xc798ee72cfbd85fc, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x6, 0x1, 0xfffffffc) (async)
openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000180)='/dev/cec18\x00', 0x1c0, 0x0) (async, rerun: 64)
openat$auto_proc_timens_offsets_operations_base(0xffffffffffffff9c, &(0x7f0000002440), 0x80c02, 0x0) (rerun: 64)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async, rerun: 64)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async, rerun: 64)
socketpair$auto(0x1, 0x2164, 0x8000000000000000, 0x0) (async, rerun: 32)
rt_sigprocmask$auto(0x0, &(0x7f0000000000)={0xfffffffffffffe01}, 0x0, 0x8) (async, rerun: 32)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
close_range$auto(0x2, 0x8, 0x0) (async)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
fanotify_init$auto(0x65, 0x2) (async)
pipe$auto(0x0)
write$auto(0x6, 0x0, 0x100000001) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
pipe$auto(0x0) (async, rerun: 64)
write$auto(0x3, 0x0, 0x200ffd8) (rerun: 64)
close_range$auto(0x2, 0x8, 0x0) (async)
write$auto(r1, &(0x7f0000000400)='\x05deo1\x00', 0x100000a3d9) (async)
close_range$auto(0x2, 0xa, 0x0) (async, rerun: 32)
socket(0xa, 0x2, 0x88) (rerun: 32)

1.017252606s ago: executing program 1 (id=837):
socket(0x15, 0x5, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_lsm_ops_inode(0xffffffffffffff9c, &(0x7f0000000000), 0x183800, 0x0)
read$auto_lsm_ops_inode(r0, 0x0, 0x0)
write$auto(0xffffffffffffffff, 0x0, 0xfffffdef)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x4, 0x300000000000)
timer_create$auto(0x3, 0x0, 0x0)
syz_clone(0x1000000, 0x0, 0x0, 0x0, 0x0, 0x0)
getsockopt$auto(0xffffffffffffffff, 0x84, 0x7f, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_FLOW_CMD_GET(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)=ANY=[@ANYBLOB, @ANYRES16, @ANYBLOB="010029bd700002dcdf25030000000400080004000800"], 0x1c}, 0x1, 0x0, 0x0, 0x200400f0}, 0x800)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), 0xffffffffffffffff)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x5, 0x100000000000009, 0x63, 0x0, 0x0, 0x0, 0x1000, 0x8, 0x80000000000000a, 0x40000402, 0x9, 0x9, 0xffffffff80000004, 0xd, 0x6, 0x9})
r1 = socket(0x10, 0x2, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x3ff, 0x2, 0x7, 0x48, 0x4909b6f8, 0x1ffdf, 0x7, 0x200003, 0x2, 0xa121, 0x3, 0x5, 0x4, 0xb4, 0xa, 0x6, 0x10001, 0x80, 0x100000000, 0x800000, 0x7, 0x8, 0x200, 0xfffffffd, 0x84, 0x0, 0x6, 0x2, 0xffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x4000000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000000, 0x0, 0x0, 0x0, 0x10001, 0x0, 0x0, 0x0, 0x100, 0x0, 0x0, 0xec4e, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0xffffffff]}, 0x1fe, 0xd)
getpid()
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
bpf$auto(0x0, &(0x7f0000000000)=@query={@target_fd, 0x9, 0xfff, 0x7, 0x1, @count=0x10, 0x0, 0x8, 0x0, 0x3, 0x4}, 0x9f)
r2 = socket(0x10, 0x2, 0x4)
sendmsg$auto_ETHTOOL_MSG_RINGS_GET(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x2000000, 0x8000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x20000000}, 0x20008000)
sendmsg$auto_NFSD_CMD_THREADS_SET(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400c7"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
write$auto(r2, &(0x7f0000000000)='-\x00', 0x2fb)
sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000000)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_gtp(&(0x7f0000000040), 0xffffffffffffffff)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/platform/vidtv.0/i2c-0/new_device\x00', 0x4a001, 0x0)
write$auto(r3, &(0x7f00000003c0)=',\x00^\xa2\x02\x00\x00\x00\x00\x00\xd8l\x00\x00\x00\x00\x00\x00\xb2s\x83\xbd\xc5_%\xc1\xa3\xd0\x95Hq\xf4zG\x01[{\x17\x05I\xe0\xb1d)\x06z8L\xe6&[\xa9X6\x7f\xec\x94\xdal\xa1\xbb\x86\x9c\xc2\xef\x02\r9%\x06\xc5\'b%m_\x96A\"\xdd\xe40\xa7\xc3\x9ah\xf3B\xc2\xec\xf8\r\f[\xe5\x9dK\xe1\x99\x86\xfc\xac\x9f\x8a\xdf^\x7fb\x89\xef\xf8\xd3r}\xa3\xd0%!M\x03\x89 \x8b\x01k\x1c\xcb\xa0S\x117\x03\xba]', 0x800000001000)

431.513316ms ago: executing program 2 (id=838):
mmap$auto(0x4, 0x2020009, 0x8000000003, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/tty/driver/usbserial\x00', 0x302, 0x0)
pread64$auto(r0, 0x0, 0x100000001, 0x100)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video35\x00', 0x22c480, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000240)='/proc/fs/lockd/nlm_end_grace\x00', 0x8282, 0x0)
socketpair$auto(0x1a, 0x4, 0x8000000000000000, 0x0)
r1 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f00000004c0), 0x22000, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_STATUS32(r1, 0x80585414, 0x0)
setsockopt$auto(0x3, 0x1, 0x10, 0x0, 0x9)
io_uring_setup$auto(0x1, 0x0)
connect$auto(0x3, 0x0, 0x55)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/dsp\x00', 0x0, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0x2}, 0x400)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000300)='/proc/asound/card0/pcm0c/sub0/status\x00', 0x100, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_tracing_err_log_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/error_log\x00', 0xb01, 0x0)
r2 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/ieee80211/phy11/airtime_flags\x00', 0x84000, 0x0)
fchmod$auto(r2, 0x400)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2)
prctl$auto(0x9, 0x17, 0x0, 0x0, 0x0)
prctl$auto(0x43, 0x0, 0x0, 0x0, 0x0)
fanotify_init$auto(0x602, 0x1)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/afs/addr_prefs\x00', 0x102, 0x0)
writev$auto(r3, &(0x7f0000000080)={&(0x7f0000000040), 0x6}, 0x3)
close_range$auto(0x2, 0x8, 0x0)

244.128927ms ago: executing program 1 (id=839):
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/audio\x00', 0x0, 0x0)
ioctl$auto_SNDCTL_DSP_RESET(r0, 0x5000, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/module/zswap/parameters/compressor\x00', 0x80002, 0x0)
write$auto_ocfs2_control_fops_stack_user(r1, &(0x7f0000003900)='\t', 0x1)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/sunrpc/parameters/min_resvport\x00', 0xe3102, 0x0)
sendfile$auto(r2, r2, 0x0, 0x3)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/module/apparmor/parameters/path_max\x00', 0x0, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f00000000c0)=""/17, 0x11)
r4 = socket(0xa, 0x1, 0x84)
r5 = getsockopt$auto(r4, 0x84, 0x7, 0x0, 0x0)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/ip6_vti0/statistics/multicast\x00', 0x200, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r6, &(0x7f0000000140)=""/12, 0xc)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x2a, 0xdf, 0x9b72, 0x1000, 0x28000)
setrlimit$auto(0xb, 0x0)
r7 = gettid()
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
tkill$auto(r7, 0x7)
ioctl$auto_FS_IOC_RESVSP(r0, 0x40305828, 0x0)
socket(0xa, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
write$auto_fault_around_bytes_fops_(r5, &(0x7f0000000000)="5ad543ecd21d24e6b0a20063a09241613419856c147fd1115c0dbf892120b5145f94cffd72336dedb590151cbb8d50d8b763a5ebc65ab934c2049e27b237b8dcf4280fce9e6a48407c69cc0e2cd2981cf06699487258a1e5804658bab026b8de9267d443989dca55cbe92221c4abda06180ad5aed6801e6f1145fe32e84d1fbf7fbaece23df27ee424786e1d090ac5fde6cf6181add1635298f186d93b6f3b71e44561672d46a65c197354", 0xab)
setsockopt$auto(0x3, 0x10000000084, 0x6e, 0x0, 0x8)

0s ago: executing program 3 (id=840):
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/net/dev_snmp6/hsr0\x00', 0x38be41, 0x0)
r0 = fanotify_init$auto(0x5, 0x2000000000002)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
close_range$auto(0x2, 0xa, 0x0)
io_uring_setup$auto(0x6, 0x0)
mknod$auto(0x0, 0x1081, 0x3)
open(0x0, 0xa240, 0x15e)
close_range$auto(0x2, 0x8, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
socket(0x2, 0x80805, 0x0)
socket(0x1a, 0x6, 0xf)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000306b87000fedbdf250300000004000800040003800c0016"], 0x28}}, 0x4c810)
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="0700000000000000df250a"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="18"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000080))
openat$auto_nsim_pp_hold_fops_netdev(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/netdevsim/netdevsim3/ports/3/pp_hold\x00', 0xc0b02, 0x0)
link$auto(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='./file0\x00')
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000006c0)='/sys/module/psmouse/parameters/proto\x00', 0x20a42, 0x0)
write$auto(r1, &(0x7f00000000c0)='\x04>2\x04!\xe2\x00\x94\xf2\xa2\x00\x00', 0x7e)
fanotify_mark$auto(0x0, 0x1, 0xf, r0, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
close_range$auto(0x2, 0x8, 0x0)

kernel console output (not intermixed with test programs):


	



		

		
		
		

	




		

		
		
		

	




		

		
		



	


		

	




	
		

	


	
	

		
	
		
	

	



			








	




	



































	

	


	

	

	








	
	

	
	

	

























	




	




		









	


	
	
	
	
	
	

		

		
		
		

	



	

	
		



	



			
	

		

		
		
		

	






	



		

		
		
		

	






	





	



	
		

	


	

	

		
	

		

		
		
		

	



		
	

	



			








	

	






	
	



	
	









	

		











	










		
	
	






























	

	

	









	


	
	
	
	
	


	






	




	






		








	

	

	

	
	
	
	

		
	

	



			






















	

	









	


	
	
	
	
	


	






	




	






		







	

	
	
	
	



			
			
	
	
		



	


	








	
	




	
	
	

			
			
	

		
		
		


	







	



	
	
	

			
			
	

		
		
		


	







	



	

	

		

		
		

		

		
		
		

	



		

	






	



			
		
	
	
	
	

			
			
		







	




			
		
	
	
	
	

			
			
		







	




			
		
	
	
	
	

			
			
		






			
		
	
	
	
	

			
			
		















	
	
	


	
	
	
	
	
	
	
	
	
	
	


	
	











	
	
	
	
	
	
	
	
	
	
	





	





	





	





	






	











	







	

		

		
		
		

	






	



		

		
		
		

	






	



		

		
		
		

	






	



		

		
		
		

	




		

		
		
		

	






	



	
		

	


	
	

		
	
		
	

	



			








	

	





	



			


		

			

			
		

		


		


















	










	




	




		







		

		
		
		

	






	



		

		
		
		

	






	



		

		
		
		

	






	



		

		
		
		

	




		

		
		
		

	






	





	



syzkaller
syzkaller login: [  163.467084][ T6684] program syz.2.124 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  163.470596][ T6684] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  163.499399][ T6684] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  165.145011][ T6700] program syz.2.126 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  165.146910][ T6700] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  166.683058][ T6721] program syz.1.130 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  166.709206][ T6721] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  166.851562][ T6721] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  168.187325][ T6744] program syz.1.134 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  168.261252][ T6744] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  168.540815][ T6735] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  170.491543][ T6772] program syz.2.141 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  170.501140][ T6772] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  171.011461][ T6768] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  171.409984][ T6784] random: crng reseeded on system resumption
[  171.890721][ T6794] program syz.3.145 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  171.938212][ T6795] program syz.2.144 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  171.947775][ T6794] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  171.978726][ T6795] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  172.216968][ T6799] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  172.288208][ T6788] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  173.060308][ T6779] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[  173.081335][ T6812] program syz.3.147 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  173.091063][ T6812] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  173.204259][ T6815] program syz.1.148 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  173.227977][ T6815] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  173.637485][ T6808] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  173.725023][ T6827] program syz.0.149 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  173.758003][ T6827] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  174.144212][ T6819] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  174.704581][ T6844] program syz.1.152 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  174.723718][ T6844] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  174.850631][ T6848] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  175.527815][ T6840] netlink: 338 bytes leftover after parsing attributes in process `syz.0.153'.
[  175.621935][ T6840] netlink: 28 bytes leftover after parsing attributes in process `syz.0.153'.
[  177.091507][ T6866] netlink: 28 bytes leftover after parsing attributes in process `syz.0.156'.
[  177.193145][ T6866] bridge0: port 2(bridge_slave_1) entered disabled state
[  177.397676][ T6866] bridge_slave_1 (unregistering): left allmulticast mode
[  177.404938][ T6866] bridge0: port 2(bridge_slave_1) entered disabled state
[  177.520594][ T6877] program syz.1.157 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  177.562097][ T6879] mmap: syz.3.158 (6879) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  177.593475][ T6877] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  177.739422][ T6877] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  178.272328][ T6890] program syz.0.159 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  178.287845][ T6890] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  178.537075][ T6887] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  179.509927][ T6909] program syz.2.161 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  179.662384][ T6909] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  180.248684][ T6909] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  180.909514][ T6923] program syz.0.172 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  180.919458][ T6923] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0

syzkaller
syzkaller login: [  185.882836][ T6951] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  186.083433][ T6980] program syz.3.176 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  186.093058][ T6980] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  186.232365][ T6985] netlink: 28 bytes leftover after parsing attributes in process `syz.1.177'.
[  186.430294][ T6986] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  188.122599][ T7010] program syz.1.183 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  188.172877][ T7010] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0

syzkaller
syzkaller login: [  190.260853][ T7046] program syz.2.191 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  190.281125][ T7046] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  190.782172][ T7041] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  191.695604][ T7066] program syz.1.202 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  191.736892][ T7066] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  192.093705][ T7066] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present

syzkaller
syzkaller login: [  193.497858][ T7099] program syz.3.199 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  193.507647][ T7099] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  193.599832][ T7101] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  194.616373][ T7121] program syz.3.205 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  194.626214][ T7121] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  194.974365][ T7125] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present

syzkaller
syzkaller login: [  198.995454][ T7183] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input20
[  199.314091][ T7188] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  199.775894][ T7184] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input21
[  200.952072][ T7210] program syz.2.219 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  200.962695][ T7210] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  201.180536][ T7212] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  201.805451][ T7225] program syz.0.221 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  201.848164][ T7225] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  202.106383][ T7217] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  204.333806][ T7258] FAULT_INJECTION: forcing a failure.
[  204.333806][ T7258] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  204.394080][ T7258] CPU: 1 UID: 0 PID: 7258 Comm: syz.0.227 Not tainted 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 PREEMPT(full) 
[  204.394123][ T7258] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  204.394142][ T7258] Call Trace:
[  204.394152][ T7258]  <TASK>
[  204.394164][ T7258]  dump_stack_lvl+0x16c/0x1f0
[  204.394222][ T7258]  should_fail_ex+0x512/0x640
[  204.394264][ T7258]  should_fail_alloc_page+0xe7/0x130
[  204.394295][ T7258]  prepare_alloc_pages+0x3c2/0x610
[  204.394335][ T7258]  ? rcu_is_watching+0x12/0xc0
[  204.394372][ T7258]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  204.394428][ T7258]  ? rcu_is_watching+0x12/0xc0
[  204.394460][ T7258]  ? trace_mm_page_alloc+0x11f/0x1a0
[  204.394496][ T7258]  ? __alloc_frozen_pages_noprof+0x294/0x23f0
[  204.394546][ T7258]  ? __pfx_stack_trace_save+0x10/0x10
[  204.394579][ T7258]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  204.394638][ T7258]  ? alloc_vmap_area+0x645/0x29c0
[  204.394674][ T7258]  ? __vmalloc_node_range_noprof+0x271/0x14b0
[  204.394720][ T7258]  ? __do_sys_listmount+0x1c2/0xec0
[  204.394771][ T7258]  ? do_syscall_64+0xcd/0x490
[  204.394801][ T7258]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  204.394854][ T7258]  alloc_pages_bulk_noprof+0x71c/0x1410
[  204.394904][ T7258]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  204.394958][ T7258]  ? policy_nodemask+0xea/0x4e0
[  204.394994][ T7258]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[  204.395047][ T7258]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  204.395098][ T7258]  kasan_populate_vmalloc+0xf1/0x1f0
[  204.395153][ T7258]  alloc_vmap_area+0x959/0x29c0
[  204.395208][ T7258]  ? __pfx_alloc_vmap_area+0x10/0x10
[  204.395256][ T7258]  __get_vm_area_node+0x1ca/0x330
[  204.395303][ T7258]  __vmalloc_node_range_noprof+0x271/0x14b0
[  204.395347][ T7258]  ? __do_sys_listmount+0x1c2/0xec0
[  204.395398][ T7258]  ? __lock_acquire+0xb8a/0x1c90
[  204.395441][ T7258]  ? __do_sys_listmount+0x1c2/0xec0
[  204.395493][ T7258]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  204.395537][ T7258]  ? __alloc_pages_noprof+0xb/0x1b0
[  204.395584][ T7258]  ? ___kmalloc_large_node+0x84/0x1e0
[  204.395621][ T7258]  ? find_held_lock+0x2b/0x80
[  204.395660][ T7258]  __kvmalloc_node_noprof+0x308/0x620
[  204.395706][ T7258]  ? __do_sys_listmount+0x1c2/0xec0
[  204.395749][ T7258]  ? __do_sys_listmount+0x1c2/0xec0
[  204.395813][ T7258]  ? __do_sys_listmount+0x1c2/0xec0
[  204.395852][ T7258]  __do_sys_listmount+0x1c2/0xec0
[  204.395893][ T7258]  ? __pfx___might_resched+0x10/0x10
[  204.395930][ T7258]  ? __x64_sys_futex+0x1e0/0x4c0
[  204.395969][ T7258]  ? __x64_sys_futex+0x1e9/0x4c0
[  204.396011][ T7258]  ? __pfx___do_sys_listmount+0x10/0x10
[  204.396080][ T7258]  do_syscall_64+0xcd/0x490
[  204.396116][ T7258]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  204.396148][ T7258] RIP: 0033:0x7f0ca158e969
[  204.396175][ T7258] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  204.396204][ T7258] RSP: 002b:00007f0ca2392038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[  204.396235][ T7258] RAX: ffffffffffffffda RBX: 00007f0ca17b5fa0 RCX: 00007f0ca158e969
[  204.396256][ T7258] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100
[  204.396275][ T7258] RBP: 00007f0ca1610ab1 R08: 0000000000000000 R09: 0000000000000000
[  204.396293][ T7258] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[  204.396311][ T7258] R13: 0000000000000000 R14: 00007f0ca17b5fa0 R15: 00007ffd871b6318
[  204.396352][ T7258]  </TASK>
[  204.751522][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  204.760099][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  204.773678][ T7258] warn_alloc: 1 callbacks suppressed
[  204.773700][ T7258] syz.0.227: vmalloc error: size 8000000, vm_struct allocation failed, mode:0x400cc0(GFP_KERNEL_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1
[  204.910696][ T7258] CPU: 1 UID: 0 PID: 7258 Comm: syz.0.227 Not tainted 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 PREEMPT(full) 
[  204.910738][ T7258] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  204.910756][ T7258] Call Trace:
[  204.910766][ T7258]  <TASK>
[  204.910777][ T7258]  dump_stack_lvl+0x16c/0x1f0
[  204.910833][ T7258]  warn_alloc+0x248/0x3a0
[  204.910886][ T7258]  ? __pfx_warn_alloc+0x10/0x10
[  204.910953][ T7258]  ? kfree+0x2b4/0x4d0
[  204.911007][ T7258]  ? __get_vm_area_node+0x208/0x330
[  204.911058][ T7258]  __vmalloc_node_range_noprof+0xb2d/0x14b0
[  204.911115][ T7258]  ? __lock_acquire+0xb8a/0x1c90
[  204.911157][ T7258]  ? __do_sys_listmount+0x1c2/0xec0
[  204.911222][ T7258]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  204.911278][ T7258]  ? __alloc_pages_noprof+0xb/0x1b0
[  204.911329][ T7258]  ? ___kmalloc_large_node+0x84/0x1e0
[  204.911367][ T7258]  ? find_held_lock+0x2b/0x80
[  204.911407][ T7258]  __kvmalloc_node_noprof+0x308/0x620
[  204.911464][ T7258]  ? __do_sys_listmount+0x1c2/0xec0
[  204.911510][ T7258]  ? __do_sys_listmount+0x1c2/0xec0
[  204.911561][ T7258]  ? __do_sys_listmount+0x1c2/0xec0
[  204.911628][ T7258]  __do_sys_listmount+0x1c2/0xec0
[  204.911671][ T7258]  ? __pfx___might_resched+0x10/0x10
[  204.911712][ T7258]  ? __x64_sys_futex+0x1e0/0x4c0
[  204.911752][ T7258]  ? __x64_sys_futex+0x1e9/0x4c0
[  204.911793][ T7258]  ? __pfx___do_sys_listmount+0x10/0x10
[  204.911857][ T7258]  do_syscall_64+0xcd/0x490
[  204.911903][ T7258]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  204.911939][ T7258] RIP: 0033:0x7f0ca158e969
[  204.911976][ T7258] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  204.912008][ T7258] RSP: 002b:00007f0ca2392038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[  204.912039][ T7258] RAX: ffffffffffffffda RBX: 00007f0ca17b5fa0 RCX: 00007f0ca158e969
[  204.912061][ T7258] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100
[  204.912080][ T7258] RBP: 00007f0ca1610ab1 R08: 0000000000000000 R09: 0000000000000000
[  204.912099][ T7258] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[  204.912118][ T7258] R13: 0000000000000000 R14: 00007f0ca17b5fa0 R15: 00007ffd871b6318
[  204.912160][ T7258]  </TASK>
[  204.912226][ T7258] Mem-Info:
[  205.142727][ T7258] active_anon:6470 inactive_anon:0 isolated_anon:0
[  205.142727][ T7258]  active_file:10923 inactive_file:40700 isolated_file:0
[  205.142727][ T7258]  unevictable:768 dirty:684 writeback:0
[  205.142727][ T7258]  slab_reclaimable:9798 slab_unreclaimable:92822
[  205.142727][ T7258]  mapped:25042 shmem:1363 pagetables:1066
[  205.142727][ T7258]  sec_pagetables:0 bounce:0
[  205.142727][ T7258]  kernel_misc_reclaimable:0
[  205.142727][ T7258]  free:1324730 free_pcp:22424 free_cma:0
[  205.280270][ T7274] program syz.1.229 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  205.294320][ T7274] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  205.303521][ T7258] Node 0 active_anon:26080kB inactive_anon:0kB active_file:23764kB inactive_file:162440kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:103792kB dirty:2572kB writeback:0kB shmem:3916kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10848kB pagetables:4104kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  205.372821][ T7258] Node 1 active_anon:0kB inactive_anon:0kB active_file:19928kB inactive_file:360kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:376kB dirty:164kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:160kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  205.405390][    C0] vkms_vblank_simulate: vblank timer overrun
[  205.543117][ T7258] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  205.574493][ T7258] lowmem_reserve[]: 0 2481 2483 2483 2483
[  205.580675][ T7258] Node 0 DMA32 free:1430412kB boost:0kB min:34092kB low:42612kB high:51132kB reserved_highatomic:0KB free_highatomic:0KB active_anon:26176kB inactive_anon:0kB active_file:23764kB inactive_file:160872kB unevictable:1536kB writepending:2572kB present:3129332kB managed:2541060kB mlocked:0kB bounce:0kB free_pcp:39552kB local_pcp:19108kB free_cma:0kB
[  205.617893][ T7258] lowmem_reserve[]: 0 0 1 1 1
[  205.622740][ T7258] Node 0 Normal free:12kB boost:0kB min:20kB low:24kB high:28kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1568kB unevictable:0kB writepending:0kB present:1048580kB managed:1644kB mlocked:0kB bounce:0kB free_pcp:16kB local_pcp:8kB free_cma:0kB
[  205.681007][ T7258] lowmem_reserve[]: 0 0 0 0 0
[  205.687283][ T7258] Node 1 Normal free:3853168kB boost:0kB min:55788kB low:69732kB high:83676kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:19928kB inactive_file:360kB unevictable:1536kB writepending:164kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:48796kB local_pcp:28808kB free_cma:0kB
[  205.757144][ T7258] lowmem_reserve[]: 0 0 0 0 0
[  205.771677][ T7258] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  205.817611][ T7258] Node 0 DMA32: 893*4kB (UM) 569*8kB (UM) 709*16kB (UME) 647*32kB (UM) 237*64kB (UME) 119*128kB (UME) 44*256kB (UME) 12*512kB (UM) 11*1024kB (UME) 8*2048kB (UME) 321*4096kB (UM) = 1430444kB
[  205.839096][ T7281] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  205.841382][ T7258] Node 0 Normal: 1*4kB (M) 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12kB
[  205.896056][ T7258] Node 1 Normal: 298*4kB (UME) 87*8kB (UME) 85*16kB (UME) 104*32kB (UME) 25*64kB (UME) 13*128kB (UME) 3*256kB (UME) 5*512kB (UME) 4*1024kB (UME) 3*2048kB (UME) 935*4096kB (M) = 3853168kB
[  205.916504][ T7258] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  205.926340][ T7258] Node 0 hugepages_total=2 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[  205.936312][ T7258] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  205.946376][ T7258] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  205.955747][ T7258] 53028 total pagecache pages
[  206.012287][ T7258] 20 pages in swap cache
[  206.041018][ T7258] Free swap  = 124996kB
[  206.045272][ T7258] Total swap = 124996kB
[  206.076052][ T7258] 2097051 pages RAM
[  206.079947][ T7258] 0 pages HighMem/MovableOnly
[  206.084681][ T7258] 429744 pages reserved
[  206.095960][ T7258] 0 pages cma reserved
[  207.029293][ T7298] program syz.2.237 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  207.039076][ T7298] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  207.384696][ T7298] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  208.215494][ T7319] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input26
[  208.638032][ T7321] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input27
[  208.790220][ T7330] block2mtd: error: cannot open device �inX�����±��jFB�B>U�;߸�Ilk�
[  211.659966][ T7370] program syz.3.252 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  211.716593][ T7370] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  211.958555][ T7377] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present

syzkaller
syzkaller login: [  214.220200][ T7405] netlink: 342 bytes leftover after parsing attributes in process `syz.1.263'.
[  215.067112][ T7426] program syz.2.265 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  215.126050][ T7426] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  215.248823][ T7426] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  217.003102][ T7457] program syz.0.270 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  217.012746][ T7457] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  217.366724][ T7460] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present

syzkaller
syzkaller login: [  219.474647][ T7496] program syz.3.278 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  219.484810][ T7496] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  219.614627][ T7504] program syz.2.280 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  219.624231][ T7504] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  219.716777][ T7508] program syz.0.281 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  219.727751][ T7508] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  219.753625][ T7487] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  220.201986][ T7512] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present

syzkaller
syzkaller login: [  224.809398][ T7580] program syz.3.296 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  224.956196][ T7580] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  225.185072][ T7580] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  226.298025][ T7602] program syz.2.301 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  226.309704][ T7602] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  226.638265][ T7596] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  227.229717][ T5853] Bluetooth: hci1: command 0x0406 tx timeout
[  227.237500][ T5844] Bluetooth: hci2: command 0x0406 tx timeout
[  227.243688][ T5853] Bluetooth: hci0: command 0x0406 tx timeout
[  227.250071][ T5849] Bluetooth: hci3: command 0x0406 tx timeout
[  227.553468][ T7614] program syz.2.303 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  227.572606][ T7614] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0

syzkaller
syzkaller login: [  227.836558][ T7618] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  229.771276][ T7654] program syz.0.312 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  229.850856][ T7654] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  229.992528][ T7658] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  232.995303][ T7681] program syz.1.317 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  233.005215][ T7681] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  233.130383][ T7685] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present

syzkaller
syzkaller login: [  234.377957][ T7701] program syz.0.320 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  234.387970][ T7701] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  234.720055][ T7696] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  235.869725][ T7731] program syz.2.327 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  235.917273][ T7731] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  237.572150][ T7750] program syz.3.329 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  237.586697][ T7750] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  237.655901][ T7752] program syz.1.330 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  237.700420][ T7752] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  238.280395][ T7750] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  238.358417][ T7744] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  238.932771][ T7766] snd_aloop snd_aloop.0: control 1:6:-2147483647:���_�he�R��:6 is already present
[  239.032546][ T7776] program syz.1.333 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  239.042767][ T7776] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  239.452613][ T7776] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  240.291959][ T7800] program syz.0.338 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  240.302818][ T7800] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  241.522434][ T7815] program syz.1.348 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  241.587783][ T7815] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  241.994564][ T7810] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  242.753731][ T7831] program syz.0.342 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  242.836322][ T7831] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  242.971952][ T7841] program syz.2.343 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  242.998524][ T7831] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  243.006411][ T7841] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  243.325366][ T7841] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  244.108579][ T7860] program syz.0.346 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  244.120060][ T7860] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  244.228267][ T7864] program syz.2.347 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  244.243387][ T7864] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  244.498981][ T7866] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  244.565621][ T7869] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  244.616719][ T7875] program syz.1.349 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  244.626440][ T7875] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  244.756115][ T7880] program syz.3.350 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  244.765680][ T7880] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  245.172784][ T7873] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  246.212303][ T7892] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  246.716576][ T7912] program syz.3.353 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  246.749956][ T7912] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  247.944633][ T7925] program syz.2.357 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  248.009767][ T7925] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  249.808330][ T7951] program syz.0.362 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  249.914550][ T7951] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  250.859043][ T7973] program syz.2.363 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  250.869261][ T7973] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  251.081086][ T7964] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  252.935692][ T8003] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present

syzkaller
syzkaller login: [  254.996395][ T8032] program syz.0.374 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  255.013612][ T8032] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  256.256355][ T8054] program syz.3.378 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  256.266081][ T8054] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  256.564535][ T8047] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  256.920760][ T8066] program syz.1.382 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  257.511792][ T8072] HfR: entered promiscuous mode
[  257.538761][ T8072] netlink: 12 bytes leftover after parsing attributes in process `syz.3.384'.
[  257.562075][ T8072] openvswitch: HfR: Dropping previously announced user features
[  257.714350][ T8072] device-mapper: ioctl: Unable to rename non-existent device,  to �
[  257.729573][ T8077] program syz.0.385 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  257.739284][ T8077] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  257.997472][ T8077] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  259.608647][ T8109] program syz.1.390 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  259.679653][ T8109] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  260.938431][ T8129] program syz.2.392 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  261.016627][ T8129] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  261.099465][ T8140] program syz.3.394 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  261.147641][ T8141] program syz.1.393 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  261.157606][ T8141] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  261.186143][ T8140] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  261.509147][ T8140] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  261.560668][ T8133] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  261.836138][ T8124] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  262.358513][ T8157] program syz.3.395 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  262.568688][ T8163] program syz.1.398 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  262.583054][ T8163] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  262.717844][ T8169] program syz.2.399 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  262.792087][ T8170] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  262.816368][ T8169] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  263.103528][ T8169] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  264.128273][ T8189] netlink: 3 bytes leftover after parsing attributes in process `syz.1.402'.
[  264.283789][ T8183] random: crng reseeded on system resumption

		

		
		
		

	






	


	
	
	
	
	
	

		

		
		
		

	






	


	

	
		
	

	
		
	

	
		
		
		


	
			
	

	
				
		
		



syzkaller
syzkaller login: 
syzkaller
syzkaller login: 
syzkaller
syzkaller login: 
syzkaller
syzkaller login: [  287.752584][ T8484] program syz.1.461 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  287.818207][ T8484] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  288.004187][ T8484] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  288.784176][ T8501] aoe: could not set interface list: too many interfaces
[  288.859951][ T8508] program syz.3.465 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  288.884990][ T8504] FAULT_INJECTION: forcing a failure.
[  288.884990][ T8504] name failslab, interval 1, probability 0, space 0, times 0
[  288.899168][ T8508] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  288.956680][ T8504] CPU: 0 UID: 0 PID: 8504 Comm: syz.0.466 Not tainted 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 PREEMPT(full) 
[  288.956725][ T8504] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  288.956749][ T8504] Call Trace:
[  288.956763][ T8504]  <TASK>
[  288.956779][ T8504]  dump_stack_lvl+0x16c/0x1f0
[  288.956841][ T8504]  should_fail_ex+0x512/0x640
[  288.956876][ T8504]  ? __kvmalloc_node_noprof+0x122/0x620
[  288.956930][ T8504]  should_failslab+0xc2/0x120
[  288.956962][ T8504]  __kvmalloc_node_noprof+0x135/0x620
[  288.957013][ T8504]  ? seq_read_iter+0x826/0x12c0
[  288.957052][ T8504]  ? __lock_acquire+0xb8a/0x1c90
[  288.957102][ T8504]  ? seq_read_iter+0x826/0x12c0
[  288.957214][ T8504]  seq_read_iter+0x826/0x12c0
[  288.957258][ T8504]  ? __mutex_trylock_common+0xe9/0x250
[  288.957315][ T8504]  kernfs_fop_read_iter+0x40f/0x5a0
[  288.957350][ T8504]  ? rw_verify_area+0xcf/0x680
[  288.957398][ T8504]  vfs_read+0x8bf/0xc60
[  288.957450][ T8504]  ? __pfx___mutex_lock+0x10/0x10
[  288.957481][ T8504]  ? __pfx_vfs_read+0x10/0x10
[  288.957556][ T8504]  ksys_read+0x12a/0x250
[  288.957603][ T8504]  ? __pfx_ksys_read+0x10/0x10
[  288.957663][ T8504]  do_syscall_64+0xcd/0x490
[  288.957698][ T8504]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  288.957731][ T8504] RIP: 0033:0x7f0ca158e969
[  288.957756][ T8504] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  288.957787][ T8504] RSP: 002b:00007f0ca2392038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  288.957816][ T8504] RAX: ffffffffffffffda RBX: 00007f0ca17b5fa0 RCX: 00007f0ca158e969
[  288.957835][ T8504] RDX: 0000000000000009 RSI: 0000000000000000 RDI: 0000000000000003
[  288.957853][ T8504] RBP: 00007f0ca2392090 R08: 0000000000000000 R09: 0000000000000000
[  288.957871][ T8504] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  288.957889][ T8504] R13: 0000000000000000 R14: 00007f0ca17b5fa0 R15: 00007ffd871b6318
[  288.957931][ T8504]  </TASK>
[  289.029504][ T8513] program syz.2.463 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  289.033459][    C0] vkms_vblank_simulate: vblank timer overrun
[  289.177755][    C0] vkms_vblank_simulate: vblank timer overrun
[  289.183950][    C0] hrtimer: interrupt took 218163539 ns
[  289.236678][ T8513] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  289.283966][    C0] vkms_vblank_simulate: vblank timer overrun
[  289.436019][ T8512] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  289.494175][ T8497] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  290.894061][ T8546] FAULT_INJECTION: forcing a failure.
[  290.894061][ T8546] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  290.921490][ T8546] CPU: 0 UID: 0 PID: 8546 Comm: syz.0.473 Not tainted 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 PREEMPT(full) 
[  290.921531][ T8546] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  290.921549][ T8546] Call Trace:
[  290.921559][ T8546]  <TASK>
[  290.921570][ T8546]  dump_stack_lvl+0x16c/0x1f0
[  290.921626][ T8546]  should_fail_ex+0x512/0x640
[  290.921670][ T8546]  _copy_from_user+0x2e/0xd0
[  290.921710][ T8546]  core_sys_select+0x35b/0xc10
[  290.921766][ T8546]  ? __pfx_core_sys_select+0x10/0x10
[  290.921825][ T8546]  ? proc_fail_nth_write+0x9f/0x250
[  290.921901][ T8546]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  290.921947][ T8546]  kern_select+0x15d/0x1e0
[  290.922001][ T8546]  ? __pfx_kern_select+0x10/0x10
[  290.922053][ T8546]  ? __pfx_ksys_write+0x10/0x10
[  290.922095][ T8546]  ? xfd_validate_state+0x61/0x180
[  290.922130][ T8546]  __x64_sys_select+0xbd/0x160
[  290.922160][ T8546]  ? do_syscall_64+0x91/0x490
[  290.922184][ T8546]  ? lockdep_hardirqs_on+0x7c/0x110
[  290.922221][ T8546]  do_syscall_64+0xcd/0x490
[  290.922247][ T8546]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  290.922270][ T8546] RIP: 0033:0x7f0ca158e969
[  290.922290][ T8546] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  290.922312][ T8546] RSP: 002b:00007f0ca2350038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017
[  290.922332][ T8546] RAX: ffffffffffffffda RBX: 00007f0ca17b6160 RCX: 00007f0ca158e969
[  290.922347][ T8546] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000e
[  290.922361][ T8546] RBP: 00007f0ca2350090 R08: 0000000000000000 R09: 0000000000000000
[  290.922374][ T8546] R10: 00002000000002c0 R11: 0000000000000246 R12: 0000000000000001
[  290.922388][ T8546] R13: 0000000000000001 R14: 00007f0ca17b6160 R15: 00007ffd871b6318
[  290.922416][ T8546]  </TASK>
[  291.111912][    C0] vkms_vblank_simulate: vblank timer overrun

syzkaller
syzkaller login: [  292.160329][ T8559] netdevsim netdevsim15 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  292.432392][ T8569] program syz.3.480 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  292.456724][ T8569] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  292.691391][ T8579] program syz.2.481 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  292.717020][ T8579] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  292.773435][ T8576] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  293.160478][ T8584] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  293.778219][ T8598] program syz.0.483 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  293.787877][ T8598] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  294.005924][ T8604] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  294.726953][ T8615] FAULT_INJECTION: forcing a failure.
[  294.726953][ T8615] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  294.740396][ T8615] CPU: 0 UID: 0 PID: 8615 Comm: syz.0.488 Not tainted 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 PREEMPT(full) 
[  294.740427][ T8615] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  294.740440][ T8615] Call Trace:
[  294.740448][ T8615]  <TASK>
[  294.740456][ T8615]  dump_stack_lvl+0x16c/0x1f0
[  294.740499][ T8615]  should_fail_ex+0x512/0x640
[  294.740529][ T8615]  _copy_from_user+0x2e/0xd0
[  294.740559][ T8615]  do_sys_poll+0x1d5/0xdf0
[  294.740592][ T8615]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  294.740621][ T8615]  ? kernel_text_address+0x8d/0x100
[  294.740661][ T8615]  ? __kernel_text_address+0xd/0x40
[  294.740698][ T8615]  ? __pfx_do_sys_poll+0x10/0x10
[  294.740764][ T8615]  ? find_held_lock+0x2b/0x80
[  294.740840][ T8615]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  294.740866][ T8615]  ? set_user_sigmask+0x21b/0x2b0
[  294.740888][ T8615]  ? __pfx_set_user_sigmask+0x10/0x10
[  294.740910][ T8615]  ? __fget_files+0x20e/0x3c0
[  294.740946][ T8615]  __x64_sys_ppoll+0x254/0x2d0
[  294.740980][ T8615]  ? __pfx___x64_sys_ppoll+0x10/0x10
[  294.741012][ T8615]  ? ksys_write+0x1ac/0x250
[  294.741045][ T8615]  ? __pfx_ksys_write+0x10/0x10
[  294.741086][ T8615]  do_syscall_64+0xcd/0x490
[  294.741110][ T8615]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  294.741135][ T8615] RIP: 0033:0x7f0ca158e969
[  294.741152][ T8615] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  294.741173][ T8615] RSP: 002b:00007f0ca2392038 EFLAGS: 00000246 ORIG_RAX: 000000000000010f
[  294.741194][ T8615] RAX: ffffffffffffffda RBX: 00007f0ca17b5fa0 RCX: 00007f0ca158e969
[  294.741208][ T8615] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 0000200000000000
[  294.741222][ T8615] RBP: 00007f0ca2392090 R08: 0000000000000008 R09: 0000000000000000
[  294.741235][ T8615] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  294.741248][ T8615] R13: 0000000000000000 R14: 00007f0ca17b5fa0 R15: 00007ffd871b6318
[  294.741276][ T8615]  </TASK>
[  297.764141][ T8663] FAULT_INJECTION: forcing a failure.
[  297.764141][ T8663] name fail_futex, interval 1, probability 0, space 0, times 1
[  297.805120][ T8663] CPU: 1 UID: 0 PID: 8663 Comm: syz.3.501 Not tainted 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 PREEMPT(full) 
[  297.805166][ T8663] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  297.805185][ T8663] Call Trace:
[  297.805195][ T8663]  <TASK>
[  297.805206][ T8663]  dump_stack_lvl+0x16c/0x1f0
[  297.805266][ T8663]  should_fail_ex+0x512/0x640
[  297.805308][ T8663]  get_futex_key+0x1d0/0x1540
[  297.805352][ T8663]  ? __pfx_get_futex_key+0x10/0x10
[  297.805401][ T8663]  ? stack_trace_save+0x8e/0xc0
[  297.805441][ T8663]  futex_wait_setup+0x9d/0x550
[  297.805499][ T8663]  __futex_wait+0x194/0x2f0
[  297.805559][ T8663]  ? __pfx___futex_wait+0x10/0x10
[  297.805613][ T8663]  ? __pfx_futex_wake_mark+0x10/0x10
[  297.805684][ T8663]  futex_wait+0xe8/0x380
[  297.805730][ T8663]  ? __pfx_futex_wait+0x10/0x10
[  297.805798][ T8663]  do_futex+0x229/0x350
[  297.805836][ T8663]  ? __pfx_do_futex+0x10/0x10
[  297.805879][ T8663]  ? __pfx___might_resched+0x10/0x10
[  297.805919][ T8663]  __x64_sys_futex+0x1e0/0x4c0
[  297.805960][ T8663]  ? __pfx_blkcg_maybe_throttle_current+0x10/0x10
[  297.806016][ T8663]  ? __pfx___x64_sys_futex+0x10/0x10
[  297.806057][ T8663]  ? xfd_validate_state+0x61/0x180
[  297.806113][ T8663]  do_syscall_64+0xcd/0x490
[  297.806148][ T8663]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  297.806182][ T8663] RIP: 0033:0x7f59dcb8e969
[  297.806208][ T8663] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  297.806237][ T8663] RSP: 002b:00007f59dd9fd0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  297.806267][ T8663] RAX: ffffffffffffffda RBX: 00007f59dcdb5fa8 RCX: 00007f59dcb8e969
[  297.806287][ T8663] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f59dcdb5fa8
[  297.806305][ T8663] RBP: 00007f59dcdb5fa0 R08: 0000000000000000 R09: 0000000000000000
[  297.806324][ T8663] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f59dcdb5fac
[  297.806343][ T8663] R13: 0000000000000000 R14: 00007ffe0054ffe0 R15: 00007ffe005500c8
[  297.806384][ T8663]  </TASK>
[  298.010247][    C1] vkms_vblank_simulate: vblank timer overrun
[  299.850338][ T8668] kexec: Could not allocate control_code_buffer

syzkaller
syzkaller login: 
syzkaller
syzkaller login: [  303.508761][ T8756] netlink: 8 bytes leftover after parsing attributes in process `syz.1.515'.
[  303.638068][ T8770] program syz.3.516 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  303.647972][ T8770] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  303.898968][ T8773] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  304.717023][ T8785] program syz.3.518 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  304.737856][ T8785] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  305.001881][ T8785] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  305.028649][ T8790] FAULT_INJECTION: forcing a failure.
[  305.028649][ T8790] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  305.063781][ T8790] CPU: 1 UID: 0 PID: 8790 Comm: syz.1.520 Not tainted 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 PREEMPT(full) 
[  305.063824][ T8790] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  305.063842][ T8790] Call Trace:
[  305.063852][ T8790]  <TASK>
[  305.063864][ T8790]  dump_stack_lvl+0x16c/0x1f0
[  305.063922][ T8790]  should_fail_ex+0x512/0x640
[  305.063965][ T8790]  _copy_to_iter+0x29f/0x16f0
[  305.064008][ T8790]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  305.064047][ T8790]  ? __pfx__copy_to_iter+0x10/0x10
[  305.064090][ T8790]  ? kernfs_seq_stop+0xcd/0x120
[  305.064132][ T8790]  ? kernfs_put_active+0x86/0xe0
[  305.064188][ T8790]  seq_read_iter+0xcf8/0x12c0
[  305.064249][ T8790]  kernfs_fop_read_iter+0x40f/0x5a0
[  305.064284][ T8790]  ? rw_verify_area+0xcf/0x680
[  305.064339][ T8790]  vfs_read+0x8bf/0xc60
[  305.064391][ T8790]  ? __pfx___mutex_lock+0x10/0x10
[  305.064422][ T8790]  ? __pfx_vfs_read+0x10/0x10
[  305.064497][ T8790]  ksys_read+0x12a/0x250
[  305.064543][ T8790]  ? __pfx_ksys_read+0x10/0x10
[  305.064602][ T8790]  do_syscall_64+0xcd/0x490
[  305.064636][ T8790]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  305.064670][ T8790] RIP: 0033:0x7fee3e58e969
[  305.064694][ T8790] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  305.064724][ T8790] RSP: 002b:00007fee3f3b4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  305.064753][ T8790] RAX: ffffffffffffffda RBX: 00007fee3e7b5fa0 RCX: 00007fee3e58e969
[  305.064773][ T8790] RDX: 0000000000000009 RSI: 0000000000000000 RDI: 0000000000000003
[  305.064790][ T8790] RBP: 00007fee3f3b4090 R08: 0000000000000000 R09: 0000000000000000
[  305.064809][ T8790] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  305.064828][ T8790] R13: 0000000000000000 R14: 00007fee3e7b5fa0 R15: 00007ffd5ef884c8
[  305.064869][ T8790]  </TASK>
[  305.752161][ T8801] program syz.0.522 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  305.766283][ T8801] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  305.922829][ T8807] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present

syzkaller
syzkaller login: [  309.967938][ T8852] device-mapper: ioctl: dm_ctl_ioctl: unknown command 0xeffffd12
[  310.166157][ T8857] program syz.1.535 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  310.177880][ T8857] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0

syzkaller
syzkaller login: [  313.675990][ T8916] FAULT_INJECTION: forcing a failure.
[  313.675990][ T8916] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  313.692914][ T8916] CPU: 1 UID: 0 PID: 8916 Comm: syz.0.548 Not tainted 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 PREEMPT(full) 
[  313.692955][ T8916] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  313.692974][ T8916] Call Trace:
[  313.692984][ T8916]  <TASK>
[  313.692995][ T8916]  dump_stack_lvl+0x16c/0x1f0
[  313.693051][ T8916]  should_fail_ex+0x512/0x640
[  313.693090][ T8916]  _copy_to_user+0x32/0xd0
[  313.693130][ T8916]  simple_read_from_buffer+0xcb/0x170
[  313.693173][ T8916]  proc_fail_nth_read+0x197/0x270
[  313.693210][ T8916]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  313.693250][ T8916]  ? rw_verify_area+0xcf/0x680
[  313.693289][ T8916]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  313.693325][ T8916]  vfs_read+0x1e1/0xc60
[  313.693393][ T8916]  ? __pfx___mutex_lock+0x10/0x10
[  313.693422][ T8916]  ? __pfx_vfs_read+0x10/0x10
[  313.693475][ T8916]  ? __fget_files+0x20e/0x3c0
[  313.693535][ T8916]  ksys_read+0x12a/0x250
[  313.693578][ T8916]  ? __pfx_ksys_read+0x10/0x10
[  313.693633][ T8916]  do_syscall_64+0xcd/0x490
[  313.693665][ T8916]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  313.693694][ T8916] RIP: 0033:0x7f0ca158d37c
[  313.693717][ T8916] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  313.693745][ T8916] RSP: 002b:00007f0ca2392030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  313.693773][ T8916] RAX: ffffffffffffffda RBX: 00007f0ca17b5fa0 RCX: 00007f0ca158d37c
[  313.693792][ T8916] RDX: 000000000000000f RSI: 00007f0ca23920a0 RDI: 0000000000000004
[  313.693808][ T8916] RBP: 00007f0ca2392090 R08: 0000000000000000 R09: 0000000000000000
[  313.693825][ T8916] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  313.693842][ T8916] R13: 0000000000000000 R14: 00007f0ca17b5fa0 R15: 00007ffd871b6318
[  313.693880][ T8916]  </TASK>
[  315.162399][ T8947] program syz.3.554 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  315.172307][ T8947] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  315.280186][ T8942] FAULT_INJECTION: forcing a failure.
[  315.280186][ T8942] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  315.294225][ T8942] CPU: 1 UID: 0 PID: 8942 Comm: syz.3.554 Not tainted 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 PREEMPT(full) 
[  315.294265][ T8942] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  315.294283][ T8942] Call Trace:
[  315.294293][ T8942]  <TASK>
[  315.294305][ T8942]  dump_stack_lvl+0x16c/0x1f0
[  315.294356][ T8942]  should_fail_ex+0x512/0x640
[  315.294386][ T8942]  _copy_to_user+0x32/0xd0
[  315.294418][ T8942]  simple_read_from_buffer+0xcb/0x170
[  315.294452][ T8942]  proc_fail_nth_read+0x197/0x270
[  315.294481][ T8942]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  315.294511][ T8942]  ? rw_verify_area+0xcf/0x680
[  315.294542][ T8942]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  315.294569][ T8942]  vfs_read+0x1e1/0xc60
[  315.294606][ T8942]  ? __pfx___mutex_lock+0x10/0x10
[  315.294629][ T8942]  ? __pfx_vfs_read+0x10/0x10
[  315.294677][ T8942]  ? __fget_files+0x20e/0x3c0
[  315.294718][ T8942]  ksys_read+0x12a/0x250
[  315.294751][ T8942]  ? __pfx_ksys_read+0x10/0x10
[  315.294793][ T8942]  do_syscall_64+0xcd/0x490
[  315.294817][ T8942]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  315.294840][ T8942] RIP: 0033:0x7f59dcb8d37c
[  315.294858][ T8942] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  315.294880][ T8942] RSP: 002b:00007f59dd9fd030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  315.294901][ T8942] RAX: ffffffffffffffda RBX: 00007f59dcdb5fa0 RCX: 00007f59dcb8d37c
[  315.294916][ T8942] RDX: 000000000000000f RSI: 00007f59dd9fd0a0 RDI: 0000000000000009
[  315.294930][ T8942] RBP: 00007f59dd9fd090 R08: 0000000000000000 R09: 0000000000000000
[  315.294944][ T8942] R10: 00002000000002c0 R11: 0000000000000246 R12: 0000000000000001
[  315.294957][ T8942] R13: 0000000000000000 R14: 00007f59dcdb5fa0 R15: 00007ffe005500c8
[  315.294986][ T8942]  </TASK>
[  315.921814][ T8962] FAULT_INJECTION: forcing a failure.
[  315.921814][ T8962] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  315.937737][ T8962] CPU: 0 UID: 0 PID: 8962 Comm: syz.0.558 Not tainted 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 PREEMPT(full) 
[  315.937779][ T8962] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  315.937797][ T8962] Call Trace:
[  315.937808][ T8962]  <TASK>
[  315.937821][ T8962]  dump_stack_lvl+0x16c/0x1f0
[  315.937876][ T8962]  should_fail_ex+0x512/0x640
[  315.937919][ T8962]  should_fail_alloc_page+0xe7/0x130
[  315.937954][ T8962]  prepare_alloc_pages+0x3c2/0x610
[  315.938002][ T8962]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  315.938059][ T8962]  ? __pfx_stack_trace_save+0x10/0x10
[  315.938094][ T8962]  ? stack_depot_save_flags+0x28/0xa40
[  315.938137][ T8962]  ? look_up_lock_class+0x59/0x150
[  315.938192][ T8962]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  315.938245][ T8962]  ? ima_match_policy+0x7f9/0x22e0
[  315.938317][ T8962]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  315.938388][ T8962]  ? policy_nodemask+0xea/0x4e0
[  315.938425][ T8962]  alloc_pages_mpol+0x1fb/0x550
[  315.938458][ T8962]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  315.938512][ T8962]  alloc_pages_noprof+0x131/0x390
[  315.938546][ T8962]  __pmd_alloc+0x3b/0x930
[  315.938582][ T8962]  ? find_held_lock+0x2b/0x80
[  315.938618][ T8962]  __handle_mm_fault+0xaac/0x5490
[  315.938675][ T8962]  ? __pfx___handle_mm_fault+0x10/0x10
[  315.938717][ T8962]  ? __pfx_mt_find+0x10/0x10
[  315.938776][ T8962]  ? find_vma+0xbf/0x140
[  315.938810][ T8962]  ? __pfx_find_vma+0x10/0x10
[  315.938848][ T8962]  handle_mm_fault+0x589/0xd10
[  315.938893][ T8962]  ? __pkru_allows_pkey+0x21/0xb0
[  315.938936][ T8962]  do_user_addr_fault+0x7a6/0x1370
[  315.938976][ T8962]  ? rcu_is_watching+0x12/0xc0
[  315.939008][ T8962]  exc_page_fault+0x5c/0xb0
[  315.939059][ T8962]  asm_exc_page_fault+0x26/0x30
[  315.939089][ T8962] RIP: 0010:rep_movs_alternative+0x11/0x90
[  315.939139][ T8962] Code: c3 cc cc cc cc 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 83 f9 40 73 44 83 f9 08 73 25 85 c9 74 0f 8a 06 <88> 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 bd 10 04 00 66 66 2e 0f
[  315.939168][ T8962] RSP: 0018:ffffc90004867af0 EFLAGS: 00050202
[  315.939194][ T8962] RAX: 0000000000000031 RBX: 0000000000000002 RCX: 0000000000000002
[  315.939213][ T8962] RDX: ffffed100adb2401 RSI: ffff888056d92000 RDI: 0000000000000000
[  315.939233][ T8962] RBP: 0000000000000000 R08: 0000000000000000 R09: ffffed100adb2400
[  315.939252][ T8962] R10: ffff888056d92001 R11: 0000000000000001 R12: ffffc90004867da0
[  315.939271][ T8962] R13: 0000000000000002 R14: ffff888056d92000 R15: 00007ffffffff000
[  315.939313][ T8962]  _copy_to_iter+0x383/0x16f0
[  315.939366][ T8962]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  315.939406][ T8962]  ? __pfx__copy_to_iter+0x10/0x10
[  315.939448][ T8962]  ? kernfs_seq_stop+0xcd/0x120
[  315.939490][ T8962]  ? kernfs_put_active+0x86/0xe0
[  315.939548][ T8962]  seq_read_iter+0xcf8/0x12c0
[  315.939610][ T8962]  kernfs_fop_read_iter+0x40f/0x5a0
[  315.939645][ T8962]  ? rw_verify_area+0xcf/0x680
[  315.939692][ T8962]  vfs_read+0x8bf/0xc60
[  315.939745][ T8962]  ? __pfx___mutex_lock+0x10/0x10
[  315.939776][ T8962]  ? __pfx_vfs_read+0x10/0x10
[  315.939850][ T8962]  ksys_read+0x12a/0x250
[  315.939897][ T8962]  ? __pfx_ksys_read+0x10/0x10
[  315.939964][ T8962]  do_syscall_64+0xcd/0x490
[  315.940000][ T8962]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  315.940032][ T8962] RIP: 0033:0x7f0ca158e969
[  315.940057][ T8962] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  315.940086][ T8962] RSP: 002b:00007f0ca2392038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  315.940114][ T8962] RAX: ffffffffffffffda RBX: 00007f0ca17b5fa0 RCX: 00007f0ca158e969
[  315.940134][ T8962] RDX: 0000000000000009 RSI: 0000000000000000 RDI: 0000000000000003
[  315.940153][ T8962] RBP: 00007f0ca2392090 R08: 0000000000000000 R09: 0000000000000000
[  315.940172][ T8962] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  315.940189][ T8962] R13: 0000000000000000 R14: 00007f0ca17b5fa0 R15: 00007ffd871b6318
[  315.940231][ T8962]  </TASK>
[  316.486919][ T5845] smpboot: CPU 1 is now offline
[  318.487029][ T8991] FAULT_INJECTION: forcing a failure.
[  318.487029][ T8991] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  318.551375][ T8991] CPU: 0 UID: 0 PID: 8991 Comm: syz.3.567 Not tainted 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 PREEMPT(full) 
[  318.551408][ T8991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  318.551421][ T8991] Call Trace:
[  318.551428][ T8991]  <TASK>
[  318.551437][ T8991]  dump_stack_lvl+0x16c/0x1f0
[  318.551479][ T8991]  should_fail_ex+0x512/0x640
[  318.551509][ T8991]  _copy_from_user+0x2e/0xd0
[  318.551539][ T8991]  ____sys_sendmsg+0x607/0xc70
[  318.551572][ T8991]  ? __pfx_____sys_sendmsg+0x10/0x10
[  318.551606][ T8991]  ? __pfx__kstrtoull+0x10/0x10
[  318.551647][ T8991]  ___sys_sendmsg+0x134/0x1d0
[  318.551671][ T8991]  ? __pfx____sys_sendmsg+0x10/0x10
[  318.551706][ T8991]  ? find_held_lock+0x2b/0x80
[  318.551748][ T8991]  __sys_sendmmsg+0x200/0x420
[  318.551774][ T8991]  ? __pfx___sys_sendmmsg+0x10/0x10
[  318.551806][ T8991]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  318.551842][ T8991]  ? fput+0x70/0xf0
[  318.551865][ T8991]  ? ksys_write+0x1ac/0x250
[  318.551898][ T8991]  ? __pfx_ksys_write+0x10/0x10
[  318.551937][ T8991]  __x64_sys_sendmmsg+0x9c/0x100
[  318.551959][ T8991]  ? lockdep_hardirqs_on+0x7c/0x110
[  318.551995][ T8991]  do_syscall_64+0xcd/0x490
[  318.552020][ T8991]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  318.552043][ T8991] RIP: 0033:0x7f59dcb8e969
[  318.552060][ T8991] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  318.552082][ T8991] RSP: 002b:00007f59dd9fd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  318.552103][ T8991] RAX: ffffffffffffffda RBX: 00007f59dcdb5fa0 RCX: 00007f59dcb8e969
[  318.552118][ T8991] RDX: 0000000000000005 RSI: 0000200000000140 RDI: 0000000000000003
[  318.552131][ T8991] RBP: 00007f59dd9fd090 R08: 0000000000000000 R09: 0000000000000000
[  318.552144][ T8991] R10: 0000000000000311 R11: 0000000000000246 R12: 0000000000000001
[  318.552157][ T8991] R13: 0000000000000000 R14: 00007f59dcdb5fa0 R15: 00007ffe005500c8
[  318.552185][ T8991]  </TASK>
[  319.027256][ T9002] FAULT_INJECTION: forcing a failure.
[  319.027256][ T9002] name failslab, interval 1, probability 0, space 0, times 0
[  319.044347][   T51] Bluetooth: hci2: unexpected subevent 0x19 length: 252 > 28
[  319.052921][   T51] Bluetooth: hci2: Unable to find connection with handle 0xc3d2
[  319.118167][ T9002] CPU: 0 UID: 0 PID: 9002 Comm: syz.3.570 Not tainted 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 PREEMPT(full) 
[  319.118201][ T9002] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  319.118215][ T9002] Call Trace:
[  319.118222][ T9002]  <TASK>
[  319.118231][ T9002]  dump_stack_lvl+0x16c/0x1f0
[  319.118277][ T9002]  should_fail_ex+0x512/0x640
[  319.118302][ T9002]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  319.118340][ T9002]  should_failslab+0xc2/0x120
[  319.118363][ T9002]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  319.118398][ T9002]  ? alloc_empty_file+0x55/0x1e0
[  319.118427][ T9002]  alloc_empty_file+0x55/0x1e0
[  319.118452][ T9002]  path_openat+0xda/0x2cb0
[  319.118484][ T9002]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  319.118517][ T9002]  ? __pfx_path_openat+0x10/0x10
[  319.118552][ T9002]  ? __lock_acquire+0xb8a/0x1c90
[  319.118586][ T9002]  do_filp_open+0x20b/0x470
[  319.118620][ T9002]  ? __pfx_do_filp_open+0x10/0x10
[  319.118673][ T9002]  ? alloc_fd+0x471/0x7d0
[  319.118712][ T9002]  do_sys_openat2+0x11b/0x1d0
[  319.118738][ T9002]  ? __pfx_do_sys_openat2+0x10/0x10
[  319.118767][ T9002]  ? __fget_files+0x20e/0x3c0
[  319.118804][ T9002]  __x64_sys_openat+0x174/0x210
[  319.118830][ T9002]  ? __pfx___x64_sys_openat+0x10/0x10
[  319.118856][ T9002]  ? ksys_write+0x1ac/0x250
[  319.118898][ T9002]  do_syscall_64+0xcd/0x490
[  319.118922][ T9002]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  319.118944][ T9002] RIP: 0033:0x7f59dcb8e969
[  319.118961][ T9002] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  319.118982][ T9002] RSP: 002b:00007f59dd9dc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  319.119002][ T9002] RAX: ffffffffffffffda RBX: 00007f59dcdb6080 RCX: 00007f59dcb8e969
[  319.119017][ T9002] RDX: 00000000000c0000 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  319.119031][ T9002] RBP: 00007f59dd9dc090 R08: 0000000000000000 R09: 0000000000000000
[  319.119044][ T9002] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  319.119057][ T9002] R13: 0000000000000000 R14: 00007f59dcdb6080 R15: 00007ffe005500c8
[  319.119085][ T9002]  </TASK>
[  319.628856][ T9006] netlink: 4 bytes leftover after parsing attributes in process `syz.2.571'.
[  319.643253][ T9006] netlink: 13 bytes leftover after parsing attributes in process `syz.2.571'.
[  319.664628][ T9006] netlink: 8 bytes leftover after parsing attributes in process `syz.2.571'.

syzkaller
syzkaller login: [  320.989064][ T9030] program syz.3.576 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  321.115611][ T9030] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  321.226293][ T9036] FAULT_INJECTION: forcing a failure.
[  321.226293][ T9036] name failslab, interval 1, probability 0, space 0, times 0
[  321.353137][ T9030] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  321.446658][ T9036] CPU: 0 UID: 0 PID: 9036 Comm: syz.3.576 Not tainted 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 PREEMPT(full) 
[  321.446690][ T9036] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  321.446703][ T9036] Call Trace:
[  321.446711][ T9036]  <TASK>
[  321.446719][ T9036]  dump_stack_lvl+0x16c/0x1f0
[  321.446762][ T9036]  should_fail_ex+0x512/0x640
[  321.446792][ T9036]  should_failslab+0xc2/0x120
[  321.446815][ T9036]  __kmalloc_cache_noprof+0x6a/0x3e0
[  321.446848][ T9036]  ? sctp_add_bind_addr+0xae/0x3f0
[  321.446889][ T9036]  sctp_add_bind_addr+0xae/0x3f0
[  321.446929][ T9036]  sctp_copy_local_addr_list+0x39d/0x5a0
[  321.446960][ T9036]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  321.446992][ T9036]  ? sctp_auth_asoc_copy_shkeys+0x2a5/0x360
[  321.447031][ T9036]  ? sctp_bind_addr_copy+0xe0/0x530
[  321.447052][ T9036]  sctp_bind_addr_copy+0xe0/0x530
[  321.447080][ T9036]  sctp_connect_new_asoc+0x1d7/0x790
[  321.447114][ T9036]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  321.447154][ T9036]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  321.447189][ T9036]  sctp_sendmsg+0x15f9/0x1ee0
[  321.447224][ T9036]  ? __lock_acquire+0x622/0x1c90
[  321.447262][ T9036]  ? __pfx_sctp_sendmsg+0x10/0x10
[  321.447298][ T9036]  ? __pfx___might_resched+0x10/0x10
[  321.447335][ T9036]  ? __pfx_aa_sk_perm+0x10/0x10
[  321.447373][ T9036]  ? __pfx_sctp_sendmsg+0x10/0x10
[  321.447405][ T9036]  inet_sendmsg+0x119/0x140
[  321.447441][ T9036]  ____sys_sendmsg+0x973/0xc70
[  321.447474][ T9036]  ? __pfx_____sys_sendmsg+0x10/0x10
[  321.447507][ T9036]  ? __pfx__kstrtoull+0x10/0x10
[  321.447548][ T9036]  ___sys_sendmsg+0x134/0x1d0
[  321.447572][ T9036]  ? __pfx____sys_sendmsg+0x10/0x10
[  321.447608][ T9036]  ? find_held_lock+0x2b/0x80
[  321.447648][ T9036]  __sys_sendmmsg+0x200/0x420
[  321.447674][ T9036]  ? __pfx___sys_sendmmsg+0x10/0x10
[  321.447711][ T9036]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  321.447747][ T9036]  ? fput+0x70/0xf0
[  321.447770][ T9036]  ? ksys_write+0x1ac/0x250
[  321.447803][ T9036]  ? __pfx_ksys_write+0x10/0x10
[  321.447842][ T9036]  __x64_sys_sendmmsg+0x9c/0x100
[  321.447864][ T9036]  ? lockdep_hardirqs_on+0x7c/0x110
[  321.447902][ T9036]  do_syscall_64+0xcd/0x490
[  321.447926][ T9036]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  321.447950][ T9036] RIP: 0033:0x7f59dcb8e969
[  321.447967][ T9036] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  321.447989][ T9036] RSP: 002b:00007f59dd979038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  321.448010][ T9036] RAX: ffffffffffffffda RBX: 00007f59dcdb6320 RCX: 00007f59dcb8e969
[  321.448034][ T9036] RDX: 0000000000000005 RSI: 0000200000000140 RDI: 0000000000000002
[  321.448048][ T9036] RBP: 00007f59dd979090 R08: 0000000000000000 R09: 0000000000000000
[  321.448062][ T9036] R10: 0000000000000311 R11: 0000000000000246 R12: 0000000000000002
[  321.448075][ T9036] R13: 0000000000000000 R14: 00007f59dcdb6320 R15: 00007ffe005500c8
[  321.448104][ T9036]  </TASK>

syzkaller
syzkaller login: [  323.494612][ T9060] netlink: 24 bytes leftover after parsing attributes in process `syz.0.582'.
[  323.586855][ T9062] FAULT_INJECTION: forcing a failure.
[  323.586855][ T9062] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  323.669118][ T9062] CPU: 0 UID: 0 PID: 9062 Comm: syz.3.583 Not tainted 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 PREEMPT(full) 
[  323.669150][ T9062] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  323.669163][ T9062] Call Trace:
[  323.669171][ T9062]  <TASK>
[  323.669179][ T9062]  dump_stack_lvl+0x16c/0x1f0
[  323.669222][ T9062]  should_fail_ex+0x512/0x640
[  323.669252][ T9062]  should_fail_alloc_page+0xe7/0x130
[  323.669278][ T9062]  prepare_alloc_pages+0x3c2/0x610
[  323.669312][ T9062]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  323.669347][ T9062]  ? bpf_ksym_find+0x124/0x1c0
[  323.669373][ T9062]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  323.669400][ T9062]  ? is_bpf_text_address+0x94/0x1a0
[  323.669431][ T9062]  ? look_up_lock_class+0x59/0x150
[  323.669469][ T9062]  ? register_lock_class+0x41/0x4c0
[  323.669500][ T9062]  ? unwind_get_return_address+0x59/0xa0
[  323.669536][ T9062]  ? arch_stack_walk+0xa6/0x100
[  323.669574][ T9062]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  323.669612][ T9062]  ? look_up_lock_class+0x59/0x150
[  323.669649][ T9062]  ? register_lock_class+0x41/0x4c0
[  323.669687][ T9062]  ? __lock_acquire+0xb8a/0x1c90
[  323.669719][ T9062]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  323.669756][ T9062]  ? policy_nodemask+0xea/0x4e0
[  323.669781][ T9062]  alloc_pages_mpol+0x1fb/0x550
[  323.669805][ T9062]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  323.669844][ T9062]  alloc_pages_noprof+0x131/0x390
[  323.669868][ T9062]  __pmd_alloc+0x3b/0x930
[  323.669898][ T9062]  huge_pte_alloc+0x41d/0x5b0
[  323.669932][ T9062]  hugetlb_fault+0x373/0x3060
[  323.669969][ T9062]  ? __pfx_hugetlb_fault+0x10/0x10
[  323.670012][ T9062]  ? find_vma+0xbf/0x140
[  323.670036][ T9062]  ? __pfx_find_vma+0x10/0x10
[  323.670062][ T9062]  handle_mm_fault+0xbfa/0xd10
[  323.670097][ T9062]  ? __pkru_allows_pkey+0x21/0xb0
[  323.670134][ T9062]  do_user_addr_fault+0x7a6/0x1370
[  323.670168][ T9062]  ? rcu_is_watching+0x12/0xc0
[  323.670196][ T9062]  exc_page_fault+0x5c/0xb0
[  323.670232][ T9062]  asm_exc_page_fault+0x26/0x30
[  323.670254][ T9062] RIP: 0010:rep_movs_alternative+0xf/0x90
[  323.670285][ T9062] Code: c4 10 c3 cc cc cc cc 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 83 f9 40 73 44 83 f9 08 73 25 85 c9 74 0f <8a> 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 bd 10 04 00 66 66
[  323.670306][ T9062] RSP: 0018:ffffc9000e93f9d0 EFLAGS: 00050202
[  323.670324][ T9062] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000002
[  323.670338][ T9062] RDX: fffff52001d27f4c RSI: 0000000000000000 RDI: ffffc9000e93fa58
[  323.670352][ T9062] RBP: 0000000000000002 R08: 0000000000000001 R09: fffff52001d27f4b
[  323.670365][ T9062] R10: ffffc9000e93fa59 R11: 0000000000000001 R12: 0000000000000000
[  323.670378][ T9062] R13: ffffc9000e93fa58 R14: 1ffff92001d27f45 R15: ffffc9000e93fd8c
[  323.670408][ T9062]  _copy_from_user+0x98/0xd0
[  323.670437][ T9062]  ____sys_sendmsg+0x607/0xc70
[  323.670470][ T9062]  ? __pfx_____sys_sendmsg+0x10/0x10
[  323.670504][ T9062]  ? __pfx__kstrtoull+0x10/0x10
[  323.670545][ T9062]  ___sys_sendmsg+0x134/0x1d0
[  323.670569][ T9062]  ? __pfx____sys_sendmsg+0x10/0x10
[  323.670606][ T9062]  ? find_held_lock+0x2b/0x80
[  323.670646][ T9062]  __sys_sendmmsg+0x200/0x420
[  323.670677][ T9062]  ? __pfx___sys_sendmmsg+0x10/0x10
[  323.670710][ T9062]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  323.670746][ T9062]  ? fput+0x70/0xf0
[  323.670769][ T9062]  ? ksys_write+0x1ac/0x250
[  323.670802][ T9062]  ? __pfx_ksys_write+0x10/0x10
[  323.670847][ T9062]  __x64_sys_sendmmsg+0x9c/0x100
[  323.670868][ T9062]  ? lockdep_hardirqs_on+0x7c/0x110
[  323.670904][ T9062]  do_syscall_64+0xcd/0x490
[  323.670928][ T9062]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  323.670950][ T9062] RIP: 0033:0x7f59dcb8e969
[  323.670967][ T9062] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  323.670988][ T9062] RSP: 002b:00007f59dd9fd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  323.671007][ T9062] RAX: ffffffffffffffda RBX: 00007f59dcdb5fa0 RCX: 00007f59dcb8e969
[  323.671021][ T9062] RDX: 0000000000000005 RSI: 0000200000000140 RDI: 0000000000000003
[  323.671034][ T9062] RBP: 00007f59dd9fd090 R08: 0000000000000000 R09: 0000000000000000
[  323.671047][ T9062] R10: 0000000000000311 R11: 0000000000000246 R12: 0000000000000001
[  323.671060][ T9062] R13: 0000000000000000 R14: 00007f59dcdb5fa0 R15: 00007ffe005500c8
[  323.671090][ T9062]  </TASK>
[  325.173943][ T9069] can: request_module (can-proto-0) failed.
[  325.225715][ T9069] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input39
[  325.972790][ T9083] sg_write: data in/out 32732/16086 bytes for SCSI command 0x0-- guessing data in;
[  325.972790][ T9083]    program syz.0.588 not setting count and/or reply_len properly
[  326.269667][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  326.280892][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  327.344335][ T9103] netlink: 28 bytes leftover after parsing attributes in process `syz.3.593'.
[  327.478967][ T9106] nfs4: Unknown parameter '�
'
[  331.861653][ T9168] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78008
[  332.047476][ T9168] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  332.208634][ T9173] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[  332.343716][ T9168] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  332.545504][ T9168] page_type: f5(slab)
[  332.613173][ T9171] could not allocate digest TFM handle 
[  332.632675][ T9168] raw: 00fff00000000040 ffff88801decf140 dead000000000122 0000000000000000
[  332.789490][ T9189] FAULT_INJECTION: forcing a failure.
[  332.789490][ T9189] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  332.845082][ T9168] raw: 0000000000000000 0000000000130013 00000000f5000000 0000000000000000
[  332.867786][ T9189] CPU: 0 UID: 0 PID: 9189 Comm: syz.3.610 Not tainted 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 PREEMPT(full) 
[  332.867817][ T9189] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  332.867830][ T9189] Call Trace:
[  332.867837][ T9189]  <TASK>
[  332.867845][ T9189]  dump_stack_lvl+0x16c/0x1f0
[  332.867886][ T9189]  should_fail_ex+0x512/0x640
[  332.867916][ T9189]  should_fail_alloc_page+0xe7/0x130
[  332.867941][ T9189]  prepare_alloc_pages+0x3c2/0x610
[  332.867974][ T9189]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  332.868029][ T9189]  ? __lock_acquire+0x622/0x1c90
[  332.868067][ T9189]  ? __lock_acquire+0x622/0x1c90
[  332.868103][ T9189]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  332.868151][ T9189]  ? find_held_lock+0x2b/0x80
[  332.868174][ T9189]  ? is_bpf_text_address+0x8a/0x1a0
[  332.868207][ T9189]  ? bpf_ksym_find+0x124/0x1c0
[  332.868233][ T9189]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  332.868264][ T9189]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  332.868302][ T9189]  ? policy_nodemask+0xea/0x4e0
[  332.868327][ T9189]  alloc_pages_mpol+0x1fb/0x550
[  332.868360][ T9189]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  332.868391][ T9189]  folio_alloc_mpol_noprof+0x36/0x2f0
[  332.868421][ T9189]  shmem_alloc_folio+0x135/0x160
[  332.868451][ T9189]  shmem_alloc_and_add_folio+0x499/0xc20
[  332.868505][ T9189]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  332.868541][ T9189]  ? shmem_allowable_huge_orders+0xcb/0x2f0
[  332.868580][ T9189]  shmem_get_folio_gfp+0x67f/0x1600
[  332.868619][ T9189]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  332.868660][ T9189]  shmem_fault+0x1fe/0xa30
[  332.868713][ T9189]  ? __pfx_shmem_fault+0x10/0x10
[  332.868746][ T9189]  ? mod_memcg_lruvec_state+0x394/0x610
[  332.868779][ T9189]  ? find_held_lock+0x2b/0x80
[  332.868806][ T9189]  ? pte_alloc_one+0x2b6/0x3a0
[  332.868846][ T9189]  __do_fault+0x10a/0x490
[  332.868883][ T9189]  ? __pfx_filemap_map_pages+0x10/0x10
[  332.868920][ T9189]  __handle_mm_fault+0x374c/0x5490
[  332.868960][ T9189]  ? __pfx___handle_mm_fault+0x10/0x10
[  332.868990][ T9189]  ? __pfx_mt_find+0x10/0x10
[  332.869036][ T9189]  ? find_vma+0xbf/0x140
[  332.869070][ T9189]  ? __pfx_find_vma+0x10/0x10
[  332.869101][ T9189]  handle_mm_fault+0x589/0xd10
[  332.869133][ T9189]  ? __pkru_allows_pkey+0x21/0xb0
[  332.869166][ T9189]  do_user_addr_fault+0x7a6/0x1370
[  332.869200][ T9189]  ? rcu_is_watching+0x12/0xc0
[  332.869227][ T9189]  exc_page_fault+0x5c/0xb0
[  332.869271][ T9189]  asm_exc_page_fault+0x26/0x30
[  332.869294][ T9189] RIP: 0010:rep_movs_alternative+0x11/0x90
[  332.869325][ T9189] Code: c3 cc cc cc cc 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 83 f9 40 73 44 83 f9 08 73 25 85 c9 74 0f 8a 06 <88> 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 bd 10 04 00 66 66 2e 0f
[  332.869346][ T9189] RSP: 0018:ffffc90004707af0 EFLAGS: 00050202
[  332.869363][ T9189] RAX: 0000000000000031 RBX: 0000000000000002 RCX: 0000000000000002
[  332.869377][ T9189] RDX: ffffed10049c2801 RSI: ffff888024e14000 RDI: 0000000000000000
[  332.869391][ T9189] RBP: 0000000000000000 R08: 0000000000000000 R09: ffffed10049c2800
[  332.869405][ T9189] R10: ffff888024e14001 R11: 0000000000000001 R12: ffffc90004707da0
[  332.869419][ T9189] R13: 0000000000000002 R14: ffff888024e14000 R15: 00007ffffffff000
[  332.869448][ T9189]  _copy_to_iter+0x383/0x16f0
[  332.869480][ T9189]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  332.869507][ T9189]  ? __pfx__copy_to_iter+0x10/0x10
[  332.869537][ T9189]  ? kernfs_seq_stop+0xcd/0x120
[  332.869567][ T9189]  ? kernfs_put_active+0x86/0xe0
[  332.869607][ T9189]  seq_read_iter+0xcf8/0x12c0
[  332.869650][ T9189]  kernfs_fop_read_iter+0x40f/0x5a0
[  332.869674][ T9189]  ? rw_verify_area+0xcf/0x680
[  332.869708][ T9189]  vfs_read+0x8bf/0xc60
[  332.869746][ T9189]  ? __pfx___mutex_lock+0x10/0x10
[  332.869768][ T9189]  ? __pfx_vfs_read+0x10/0x10
[  332.869821][ T9189]  ksys_read+0x12a/0x250
[  332.869853][ T9189]  ? __pfx_ksys_read+0x10/0x10
[  332.869896][ T9189]  do_syscall_64+0xcd/0x490
[  332.869920][ T9189]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  332.869943][ T9189] RIP: 0033:0x7f59dcb8e969
[  332.869960][ T9189] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  332.869982][ T9189] RSP: 002b:00007f59dd9fd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  332.870002][ T9189] RAX: ffffffffffffffda RBX: 00007f59dcdb5fa0 RCX: 00007f59dcb8e969
[  332.870017][ T9189] RDX: 0000000000000009 RSI: 0000000000000000 RDI: 0000000000000003
[  332.870030][ T9189] RBP: 00007f59dd9fd090 R08: 0000000000000000 R09: 0000000000000000
[  332.870044][ T9189] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  332.870057][ T9189] R13: 0000000000000000 R14: 00007f59dcdb5fa0 R15: 00007ffe005500c8
[  332.870086][ T9189]  </TASK>
[  333.334465][    C0] vkms_vblank_simulate: vblank timer overrun
[  333.530849][ T9168] head: 00fff00000000040 ffff88801decf140 dead000000000122 0000000000000000
[  333.539680][ T9168] head: 0000000000000000 0000000000130013 00000000f5000000 0000000000000000
[  333.548744][ T9168] head: 00fff00000000003 ffffea0001e00201 00000000ffffffff 00000000ffffffff
[  333.557528][ T9168] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  333.566325][ T9168] page dumped because: unmovable page
[  333.571720][ T9168] page_owner tracks the page as allocated
[  333.577569][ T9168] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5208, tgid 5208 (udevd), ts 63358659140, free_ts 63341011585
[  333.598516][ T9168]  post_alloc_hook+0x1c0/0x230
[  333.603327][ T9168]  get_page_from_freelist+0x1321/0x3890
[  333.609125][ T9168]  __alloc_frozen_pages_noprof+0x261/0x23f0
[  333.615077][ T9168]  alloc_pages_mpol+0x1fb/0x550
[  333.620117][ T9168]  new_slab+0x23b/0x330
[  333.624338][ T9168]  ___slab_alloc+0xd9c/0x1940
[  333.630374][ T9168]  __slab_alloc.constprop.0+0x56/0xb0
[  333.636757][ T9168]  kmem_cache_alloc_lru_noprof+0xf4/0x3b0
[  333.642624][ T9168]  shmem_alloc_inode+0x25/0x50
[  333.647528][ T9168]  alloc_inode+0x64/0x240
[  333.651909][ T9168]  new_inode+0x22/0x1c0
[  333.656247][ T9168]  shmem_get_inode+0x19a/0xfb0
[  333.661068][ T9168]  shmem_mknod+0x1a8/0x450
[  333.665511][ T9168]  lookup_open.isra.0+0x11d3/0x1580
[  333.670848][ T9168]  path_openat+0x893/0x2cb0
[  333.675411][ T9168]  do_filp_open+0x20b/0x470
[  333.679997][ T9168] page last free pid 5209 tgid 5209 stack trace:
[  333.686443][ T9168]  __free_frozen_pages+0x7fe/0x1180
[  333.691694][ T9168]  __put_partials+0x16d/0x1c0
[  333.696442][ T9168]  qlist_free_all+0x4d/0x120
[  333.701131][ T9168]  kasan_quarantine_reduce+0x195/0x1e0
[  333.706694][ T9168]  __kasan_slab_alloc+0x69/0x90
[  333.711741][ T9168]  kmem_cache_alloc_noprof+0x1cb/0x3b0
[  333.717312][ T9168]  getname_flags.part.0+0x4c/0x550
[  333.722533][ T9168]  getname_flags+0x93/0xf0
[  333.727067][ T9168]  do_sys_openat2+0xb8/0x1d0
[  333.733006][ T9168]  __x64_sys_openat+0x174/0x210
[  333.738865][ T9168]  do_syscall_64+0xcd/0x490
[  333.743590][ T9168]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  334.437411][ T9201] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  335.491221][ T9198] kexec: Could not allocate control_code_buffer
[  336.253931][ T9227] program syz.0.620 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  336.360631][ T9227] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  336.610005][ T9223] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  338.466938][ T9261] FAULT_INJECTION: forcing a failure.
[  338.466938][ T9261] name failslab, interval 1, probability 0, space 0, times 0
[  338.528464][ T9261] CPU: 0 UID: 0 PID: 9261 Comm: syz.1.626 Not tainted 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 PREEMPT(full) 
[  338.528500][ T9261] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  338.528514][ T9261] Call Trace:
[  338.528522][ T9261]  <TASK>
[  338.528532][ T9261]  dump_stack_lvl+0x16c/0x1f0
[  338.528576][ T9261]  should_fail_ex+0x512/0x640
[  338.528607][ T9261]  should_failslab+0xc2/0x120
[  338.528630][ T9261]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  338.528670][ T9261]  ? zswap_store+0x839/0x25a0
[  338.528704][ T9261]  zswap_store+0x839/0x25a0
[  338.528744][ T9261]  ? __pfx_zswap_store+0x10/0x10
[  338.528772][ T9261]  ? do_raw_spin_lock+0x12c/0x2b0
[  338.528808][ T9261]  ? find_held_lock+0x2b/0x80
[  338.528831][ T9261]  ? folio_free_swap+0x171/0x580
[  338.528855][ T9261]  ? do_raw_spin_unlock+0x172/0x230
[  338.528899][ T9261]  ? swp_swap_info+0xce/0x130
[  338.528923][ T9261]  ? __pfx_swp_swap_info+0x10/0x10
[  338.528949][ T9261]  ? mod_memcg_lruvec_state+0x394/0x610
[  338.528986][ T9261]  swap_writeout+0x38e/0xfe0
[  338.529014][ T9261]  ? mark_held_locks+0x49/0x80
[  338.529049][ T9261]  shmem_writeout+0xef8/0x13b0
[  338.529086][ T9261]  ? __pfx_shmem_writeout+0x10/0x10
[  338.529122][ T9261]  ? inode_to_bdi+0x9e/0x160
[  338.529160][ T9261]  ? folio_clear_dirty_for_io+0x112/0x810
[  338.529190][ T9261]  ? __pfx_shmem_writeout+0x10/0x10
[  338.529223][ T9261]  pageout+0x38f/0xa50
[  338.529252][ T9261]  ? __pfx_pageout+0x10/0x10
[  338.529315][ T9261]  ? __pfx_try_to_unmap_one+0x10/0x10
[  338.529346][ T9261]  ? __pfx_folio_not_mapped+0x10/0x10
[  338.529375][ T9261]  ? __pfx_folio_lock_anon_vma_read+0x10/0x10
[  338.529419][ T9261]  shrink_folio_list+0x2f4d/0x3fc0
[  338.529461][ T9261]  ? __pfx_shrink_folio_list+0x10/0x10
[  338.529539][ T9261]  ? __lock_acquire+0x622/0x1c90
[  338.529574][ T9261]  ? __lock_acquire+0x622/0x1c90
[  338.529608][ T9261]  reclaim_folio_list+0xda/0x5d0
[  338.529639][ T9261]  ? __lock_acquire+0x622/0x1c90
[  338.529670][ T9261]  ? css_rstat_updated+0x9d/0xd30
[  338.529695][ T9261]  ? __pfx_reclaim_folio_list+0x10/0x10
[  338.529740][ T9261]  ? lru_gen_update_size+0x543/0xe10
[  338.529782][ T9261]  ? lru_gen_del_folio+0x32b/0x540
[  338.529816][ T9261]  reclaim_pages+0x47b/0x650
[  338.529852][ T9261]  ? __pfx_reclaim_pages+0x10/0x10
[  338.529883][ T9261]  ? find_held_lock+0x2b/0x80
[  338.529911][ T9261]  ? madvise_cold_or_pageout_pte_range+0x5fb/0x2180
[  338.529945][ T9261]  madvise_cold_or_pageout_pte_range+0x1427/0x2180
[  338.529986][ T9261]  ? __pfx_madvise_cold_or_pageout_pte_range+0x10/0x10
[  338.530017][ T9261]  ? __lock_acquire+0x622/0x1c90
[  338.530056][ T9261]  ? __pfx_madvise_cold_or_pageout_pte_range+0x10/0x10
[  338.530086][ T9261]  walk_pgd_range+0xc53/0x1f60
[  338.530145][ T9261]  ? __pfx_walk_pgd_range+0x10/0x10
[  338.530187][ T9261]  ? folios_put_refs+0x5ce/0x740
[  338.530211][ T9261]  __walk_page_range+0x163/0x820
[  338.530253][ T9261]  ? find_vma+0xbf/0x140
[  338.530277][ T9261]  ? __pfx_find_vma+0x10/0x10
[  338.530304][ T9261]  ? walk_page_test+0x9b/0x180
[  338.530344][ T9261]  walk_page_range_mm+0x54d/0x8a0
[  338.530369][ T9261]  ? __pfx_walk_page_range_mm+0x10/0x10
[  338.530413][ T9261]  ? find_held_lock+0x2b/0x80
[  338.530437][ T9261]  ? mlock_drain_local+0x22d/0x4f0
[  338.530477][ T9261]  walk_page_range+0x63/0x90
[  338.530501][ T9261]  madvise_pageout+0x254/0x540
[  338.530528][ T9261]  ? __pfx_madvise_pageout+0x10/0x10
[  338.530567][ T9261]  ? mtree_range_walk+0x718/0xc00
[  338.530602][ T9261]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  338.530643][ T9261]  madvise_vma_behavior+0x460/0x2420
[  338.530675][ T9261]  ? mas_prev_setup.constprop.0+0x1/0x830
[  338.530716][ T9261]  ? __pfx_madvise_vma_behavior+0x10/0x10
[  338.530744][ T9261]  ? __pfx_mas_prev+0x10/0x10
[  338.530773][ T9261]  ? find_vma_prev+0xda/0x160
[  338.530801][ T9261]  ? __pfx_find_vma_prev+0x10/0x10
[  338.530845][ T9261]  ? __pfx_madvise_vma_behavior+0x10/0x10
[  338.530871][ T9261]  madvise_walk_vmas+0x1d1/0x2c0
[  338.530901][ T9261]  ? __pfx_madvise_walk_vmas+0x10/0x10
[  338.530934][ T9261]  madvise_do_behavior+0x15d/0x3f0
[  338.530965][ T9261]  ? __pfx_madvise_do_behavior+0x10/0x10
[  338.531008][ T9261]  do_madvise+0x161/0x230
[  338.531034][ T9261]  ? __pfx_do_madvise+0x10/0x10
[  338.531060][ T9261]  ? __pfx___might_resched+0x10/0x10
[  338.531098][ T9261]  ? xfd_validate_state+0x61/0x180
[  338.531128][ T9261]  ? __pfx___do_sys_close_range+0x10/0x10
[  338.531170][ T9261]  __x64_sys_madvise+0xa9/0x110
[  338.531196][ T9261]  ? lockdep_hardirqs_on+0x7c/0x110
[  338.531233][ T9261]  do_syscall_64+0xcd/0x490
[  338.531258][ T9261]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  338.531283][ T9261] RIP: 0033:0x7fee3e58e969
[  338.531302][ T9261] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  338.531326][ T9261] RSP: 002b:00007fee3f372038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[  338.531347][ T9261] RAX: ffffffffffffffda RBX: 00007fee3e7b6160 RCX: 00007fee3e58e969
[  338.531363][ T9261] RDX: 0000000000000015 RSI: ffffffffffff0001 RDI: 0000000000000000
[  338.531377][ T9261] RBP: 00007fee3e610ab1 R08: 0000000000000000 R09: 0000000000000000
[  338.531392][ T9261] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  338.531405][ T9261] R13: 0000000000000000 R14: 00007fee3e7b6160 R15: 00007ffd5ef884c8
[  338.531435][ T9261]  </TASK>
[  339.049503][    C0] vkms_vblank_simulate: vblank timer overrun
[  341.370704][ T9293] sg_write: data in/out 32732/16086 bytes for SCSI command 0x0-- guessing data in;
[  341.370704][ T9293]    program syz.3.628 not setting count and/or reply_len properly

syzkaller
syzkaller login: [  341.735920][ T9299] FAULT_INJECTION: forcing a failure.
[  341.735920][ T9299] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  341.901815][ T9292] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78008
[  341.911067][ T9299] CPU: 0 UID: 0 PID: 9299 Comm: syz.1.634 Not tainted 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 PREEMPT(full) 
[  341.911097][ T9299] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  341.911110][ T9299] Call Trace:
[  341.911118][ T9299]  <TASK>
[  341.911126][ T9299]  dump_stack_lvl+0x16c/0x1f0
[  341.911169][ T9299]  should_fail_ex+0x512/0x640
[  341.911199][ T9299]  _copy_from_iter+0x29f/0x16f0
[  341.911231][ T9299]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  341.911256][ T9299]  ? __pfx__copy_from_iter+0x10/0x10
[  341.911282][ T9299]  ? __sk_mem_raise_allocated+0x895/0x1700
[  341.911321][ T9299]  mptcp_sendmsg+0x1034/0x1eb0
[  341.911372][ T9299]  ? __pfx_mptcp_sendmsg+0x10/0x10
[  341.911408][ T9299]  ? __pfx_aa_sk_perm+0x10/0x10
[  341.911446][ T9299]  ? __pfx_mptcp_sendmsg+0x10/0x10
[  341.911503][ T9299]  inet_sendmsg+0x119/0x140
[  341.911540][ T9299]  sock_write_iter+0x4aa/0x5b0
[  341.911571][ T9299]  ? __pfx_sock_write_iter+0x10/0x10
[  341.911611][ T9299]  ? bpf_lsm_file_permission+0x9/0x10
[  341.911636][ T9299]  ? security_file_permission+0x71/0x210
[  341.911682][ T9299]  ? rw_verify_area+0xcf/0x680
[  341.911717][ T9299]  vfs_write+0x6c7/0x1150
[  341.911751][ T9299]  ? __pfx_sock_write_iter+0x10/0x10
[  341.911783][ T9299]  ? __pfx_vfs_write+0x10/0x10
[  341.911815][ T9299]  ? find_held_lock+0x2b/0x80
[  341.911860][ T9299]  ksys_write+0x1f8/0x250
[  341.911893][ T9299]  ? __pfx_ksys_write+0x10/0x10
[  341.911936][ T9299]  do_syscall_64+0xcd/0x490
[  341.911961][ T9299]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  341.911985][ T9299] RIP: 0033:0x7fee3e58e969
[  341.912004][ T9299] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  341.912026][ T9299] RSP: 002b:00007fee3f351038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  341.912047][ T9299] RAX: ffffffffffffffda RBX: 00007fee3e7b6240 RCX: 00007fee3e58e969
[  341.912063][ T9299] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003
[  341.912076][ T9299] RBP: 00007fee3f351090 R08: 0000000000000000 R09: 0000000000000000
[  341.912090][ T9299] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  341.912103][ T9299] R13: 0000000000000000 R14: 00007fee3e7b6240 R15: 00007ffd5ef884c8
[  341.912132][ T9299]  </TASK>
[  342.412930][ T9292] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  342.465824][ T9292] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  342.562949][ T9292] page_type: f5(slab)
[  342.577298][ T9292] raw: 00fff00000000040 ffff88801decf140 dead000000000122 0000000000000000
[  342.654472][ T9292] raw: 0000000000000000 0000000000130013 00000000f5000000 0000000000000000
[  342.776114][ T9292] head: 00fff00000000040 ffff88801decf140 dead000000000122 0000000000000000
[  342.909762][ T9292] head: 0000000000000000 0000000000130013 00000000f5000000 0000000000000000
[  342.972373][ T9303] could not allocate digest TFM handle 
[  343.109279][ T9292] head: 00fff00000000003 ffffea0001e00201 00000000ffffffff 00000000ffffffff
[  343.352185][ T9292] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  343.423046][ T9292] page dumped because: unmovable page
[  343.562143][ T9292] page_owner tracks the page as allocated
[  343.688193][ T9292] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5208, tgid 5208 (udevd), ts 63358659140, free_ts 63341011585
[  344.116695][ T9292]  post_alloc_hook+0x1c0/0x230
[  344.121580][ T9292]  get_page_from_freelist+0x1321/0x3890
[  344.355993][ T9292]  __alloc_frozen_pages_noprof+0x261/0x23f0
[  344.465155][ T9292]  alloc_pages_mpol+0x1fb/0x550
[  344.573542][ T9292]  new_slab+0x23b/0x330
[  344.666632][ T9292]  ___slab_alloc+0xd9c/0x1940
[  344.716372][ T9292]  __slab_alloc.constprop.0+0x56/0xb0
[  344.757485][ T9292]  kmem_cache_alloc_lru_noprof+0xf4/0x3b0
[  344.763290][ T9292]  shmem_alloc_inode+0x25/0x50
[  344.835982][ T9292]  alloc_inode+0x64/0x240
[  344.852520][ T9292]  new_inode+0x22/0x1c0
[  344.878890][ T9292]  shmem_get_inode+0x19a/0xfb0
[  344.925626][ T9292]  shmem_mknod+0x1a8/0x450
[  344.931412][ T9292]  lookup_open.isra.0+0x11d3/0x1580
[  344.955715][ T9292]  path_openat+0x893/0x2cb0
[  344.977213][ T9292]  do_filp_open+0x20b/0x470
[  345.004507][ T9292] page last free pid 5209 tgid 5209 stack trace:
[  345.043334][ T9292]  __free_frozen_pages+0x7fe/0x1180
[  345.061388][ T9292]  __put_partials+0x16d/0x1c0
[  345.074230][ T9292]  qlist_free_all+0x4d/0x120
[  345.106044][ T9292]  kasan_quarantine_reduce+0x195/0x1e0
[  345.121817][ T9292]  __kasan_slab_alloc+0x69/0x90
[  345.137577][ T9292]  kmem_cache_alloc_noprof+0x1cb/0x3b0
[  345.153374][ T9292]  getname_flags.part.0+0x4c/0x550
[  345.176057][ T9292]  getname_flags+0x93/0xf0
[  345.196012][ T9292]  do_sys_openat2+0xb8/0x1d0
[  345.212556][ T9292]  __x64_sys_openat+0x174/0x210
[  345.234368][ T9292]  do_syscall_64+0xcd/0x490
[  345.249596][ T9292]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  345.896824][ T9349] program syz.2.645 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  346.007913][ T9349] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  346.344089][ T9349] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present

syzkaller
syzkaller login: [  348.944699][ T9395] tc_dump_action: action bad kind
[  350.048593][ T9419] program syz.3.659 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  350.129376][ T9419] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  350.494830][ T9419] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  352.159494][ T9458] FAULT_INJECTION: forcing a failure.
[  352.159494][ T9458] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  352.278736][ T9458] CPU: 0 UID: 0 PID: 9458 Comm: syz.0.669 Not tainted 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 PREEMPT(full) 
[  352.278769][ T9458] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  352.278783][ T9458] Call Trace:
[  352.278790][ T9458]  <TASK>
[  352.278798][ T9458]  dump_stack_lvl+0x16c/0x1f0
[  352.278840][ T9458]  should_fail_ex+0x512/0x640
[  352.278870][ T9458]  should_fail_alloc_page+0xe7/0x130
[  352.278895][ T9458]  prepare_alloc_pages+0x3c2/0x610
[  352.278928][ T9458]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  352.278979][ T9458]  ? __lock_acquire+0x622/0x1c90
[  352.279015][ T9458]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  352.279066][ T9458]  ? find_held_lock+0x2b/0x80
[  352.279088][ T9458]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  352.279125][ T9458]  ? policy_nodemask+0xea/0x4e0
[  352.279149][ T9458]  alloc_pages_mpol+0x1fb/0x550
[  352.279173][ T9458]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  352.279203][ T9458]  folio_alloc_mpol_noprof+0x36/0x2f0
[  352.279231][ T9458]  shmem_alloc_folio+0x135/0x160
[  352.279261][ T9458]  shmem_alloc_and_add_folio+0x499/0xc20
[  352.279300][ T9458]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  352.279337][ T9458]  ? shmem_allowable_huge_orders+0xcb/0x2f0
[  352.279375][ T9458]  shmem_get_folio_gfp+0x67f/0x1600
[  352.279415][ T9458]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  352.279451][ T9458]  ? filemap_map_pages+0xf6f/0x1680
[  352.279489][ T9458]  shmem_fault+0x1fe/0xa30
[  352.279521][ T9458]  ? __lock_acquire+0x622/0x1c90
[  352.279550][ T9458]  ? __pfx_shmem_fault+0x10/0x10
[  352.279604][ T9458]  ? rcu_is_watching+0x12/0xc0
[  352.279627][ T9458]  ? __pfx_filemap_map_pages+0x10/0x10
[  352.279671][ T9458]  __do_fault+0x10a/0x490
[  352.279709][ T9458]  __handle_mm_fault+0x3c2a/0x5490
[  352.279748][ T9458]  ? __pfx___handle_mm_fault+0x10/0x10
[  352.279777][ T9458]  ? __pfx_mt_find+0x10/0x10
[  352.279818][ T9458]  ? find_vma+0xbf/0x140
[  352.279840][ T9458]  ? __pfx_find_vma+0x10/0x10
[  352.279867][ T9458]  handle_mm_fault+0x589/0xd10
[  352.279900][ T9458]  ? __pkru_allows_pkey+0x21/0xb0
[  352.279938][ T9458]  do_user_addr_fault+0x7a6/0x1370
[  352.279979][ T9458]  ? rcu_is_watching+0x12/0xc0
[  352.280005][ T9458]  exc_page_fault+0x5c/0xb0
[  352.280042][ T9458]  asm_exc_page_fault+0x26/0x30
[  352.280065][ T9458] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  352.280097][ T9458] Code: 10 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 e9 8f 10 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  352.280119][ T9458] RSP: 0018:ffffc900038a7cc0 EFLAGS: 00050206
[  352.280137][ T9458] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000fd0
[  352.280150][ T9458] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff88807b9e8030
[  352.280164][ T9458] RBP: 0000000000000fd0 R08: 0000000000000001 R09: ffffed100f73d1ff
[  352.280178][ T9458] R10: ffff88807b9e8fff R11: 0000000000000000 R12: 0000000000000000
[  352.280191][ T9458] R13: ffff88807b9e8030 R14: dffffc0000000000 R15: ffff888033e81880
[  352.280221][ T9458]  _copy_from_user+0x98/0xd0
[  352.280250][ T9458]  load_msg+0x19e/0x4a0
[  352.280279][ T9458]  do_mq_timedsend+0x3d7/0xc40
[  352.280311][ T9458]  ? __pfx_do_mq_timedsend+0x10/0x10
[  352.280340][ T9458]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  352.280366][ T9458]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  352.280392][ T9458]  ? __fget_files+0x20e/0x3c0
[  352.280431][ T9458]  __x64_sys_mq_timedsend+0x1cd/0x260
[  352.280462][ T9458]  ? ksys_write+0x1ac/0x250
[  352.280501][ T9458]  ? __pfx___x64_sys_mq_timedsend+0x10/0x10
[  352.280543][ T9458]  do_syscall_64+0xcd/0x490
[  352.280567][ T9458]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  352.280589][ T9458] RIP: 0033:0x7f0ca158e969
[  352.280606][ T9458] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  352.280628][ T9458] RSP: 002b:00007f0ca2392038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f2
[  352.280649][ T9458] RAX: ffffffffffffffda RBX: 00007f0ca17b5fa0 RCX: 00007f0ca158e969
[  352.280664][ T9458] RDX: 0000000000002000 RSI: 0000000000000000 RDI: 0000000000000003
[  352.280681][ T9458] RBP: 00007f0ca2392090 R08: 0000000000000000 R09: 0000000000000000
[  352.280695][ T9458] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  352.280709][ T9458] R13: 0000000000000000 R14: 00007f0ca17b5fa0 R15: 00007ffd871b6318
[  352.280738][ T9458]  </TASK>
[  352.709922][    C0] vkms_vblank_simulate: vblank timer overrun
[  352.993531][ T9475] program syz.2.671 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  353.003229][ T9475] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  353.023442][ T9476] netlink: 326 bytes leftover after parsing attributes in process `syz.0.672'.
[  353.156263][ T9478] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present

syzkaller
syzkaller login: [  359.745417][ T9591] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input44
[  362.128842][ T9613] netlink: 330 bytes leftover after parsing attributes in process `syz.0.703'.
[  362.222510][ T9613] veth0_macvtap: left promiscuous mode
[  363.235451][ T9641] hub 8-0:1.0: USB hub found
[  363.336652][ T9641] hub 8-0:1.0: 1 port detected
[  363.540326][ T9645] netlink: 326 bytes leftover after parsing attributes in process `syz.2.711'.
[  363.595418][ T9645] veth1_macvtap: left promiscuous mode
[  363.995983][ T9654] netlink: 20 bytes leftover after parsing attributes in process `syz.1.714'.
[  364.690567][ T9674] FAULT_INJECTION: forcing a failure.
[  364.690567][ T9674] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  364.885987][ T9679] block2mtd: device name too long
[  364.891280][ T9674] CPU: 0 UID: 0 PID: 9674 Comm: syz.1.716 Not tainted 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 PREEMPT(full) 
[  364.891312][ T9674] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  364.891327][ T9674] Call Trace:
[  364.891334][ T9674]  <TASK>
[  364.891343][ T9674]  dump_stack_lvl+0x16c/0x1f0
[  364.891387][ T9674]  should_fail_ex+0x512/0x640
[  364.891418][ T9674]  _copy_from_iter+0x29f/0x16f0
[  364.891451][ T9674]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  364.891476][ T9674]  ? __pfx__copy_from_iter+0x10/0x10
[  364.891502][ T9674]  ? __sk_mem_raise_allocated+0x895/0x1700
[  364.891542][ T9674]  mptcp_sendmsg+0x1034/0x1eb0
[  364.891594][ T9674]  ? __pfx_mptcp_sendmsg+0x10/0x10
[  364.891632][ T9674]  ? __pfx_aa_sk_perm+0x10/0x10
[  364.891671][ T9674]  ? __pfx_mptcp_sendmsg+0x10/0x10
[  364.891710][ T9674]  inet_sendmsg+0x119/0x140
[  364.891747][ T9674]  sock_write_iter+0x4aa/0x5b0
[  364.891777][ T9674]  ? __pfx_sock_write_iter+0x10/0x10
[  364.891817][ T9674]  ? bpf_lsm_file_permission+0x9/0x10
[  364.891843][ T9674]  ? security_file_permission+0x71/0x210
[  364.891882][ T9674]  ? rw_verify_area+0xcf/0x680
[  364.891916][ T9674]  vfs_write+0x6c7/0x1150
[  364.891950][ T9674]  ? __pfx_sock_write_iter+0x10/0x10
[  364.891983][ T9674]  ? __pfx_vfs_write+0x10/0x10
[  364.892014][ T9674]  ? find_held_lock+0x2b/0x80
[  364.892056][ T9674]  ksys_write+0x1f8/0x250
[  364.892089][ T9674]  ? __pfx_ksys_write+0x10/0x10
[  364.892131][ T9674]  do_syscall_64+0xcd/0x490
[  364.892165][ T9674]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  364.892189][ T9674] RIP: 0033:0x7fee3e58e969
[  364.892207][ T9674] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  364.892230][ T9674] RSP: 002b:00007fee3f351038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  364.892251][ T9674] RAX: ffffffffffffffda RBX: 00007fee3e7b6240 RCX: 00007fee3e58e969
[  364.892266][ T9674] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003
[  364.892279][ T9674] RBP: 00007fee3f351090 R08: 0000000000000000 R09: 0000000000000000
[  364.892293][ T9674] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  364.892306][ T9674] R13: 0000000000000000 R14: 00007fee3e7b6240 R15: 00007ffd5ef884c8
[  364.892337][ T9674]  </TASK>
[  365.119044][    C0] vkms_vblank_simulate: vblank timer overrun
[  365.240735][ T9687] Invalid ELF header magic: != ELF
[  365.252233][ T9687] Invalid ELF header magic: != ELF
[  365.263796][ T9687] Invalid ELF header magic: != ELF
[  365.276952][ T9687] Invalid ELF header magic: != ELF
[  365.288526][ T9687] Invalid ELF header magic: != ELF
[  365.300130][ T9687] Invalid ELF header magic: != ELF
[  365.312022][ T9687] Invalid ELF header magic: != ELF
[  365.323513][ T9687] Invalid ELF header magic: != ELF
[  365.334913][ T9687] Invalid ELF header magic: != ELF
[  365.346514][ T9687] Invalid ELF header magic: != ELF
[  365.358049][ T9687] Invalid ELF header magic: != ELF
[  365.379824][ T9687] Invalid ELF header magic: != ELF
[  365.459996][ T9687] Invalid ELF header magic: != ELF
[  365.823579][ T9687] Invalid ELF header magic: != ELF
[  366.216202][ T9698] Invalid ELF header magic: != ELF
[  366.938246][ T9716] sd 0:0:1:0: PR command failed: 1026
[  366.981053][ T9716] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  367.019883][ T9716] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  367.942936][ T9735] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input46
[  368.563376][ T9736] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input47

syzkaller
syzkaller login: [  372.009167][ T9768] netlink: 28 bytes leftover after parsing attributes in process `syz.0.735'.
[  372.427717][ T9775] batman_adv: Routing algorithm 'QSIZE:327' is not supported
[  372.791537][ T9782] mtrr: base(0x7961000) is not aligned on a size(0x0000) boundary
[  372.840996][ T9784] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input49
[  373.226030][ T9792] program syz.0.741 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  373.342887][ T9792] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  373.589909][ T9792] snd_aloop snd_aloop.0: control 1:262152:7:���:0 is already present
[  373.700122][ T9800] netlink: 'syz.0.741': attribute type 1 has an invalid length.
[  373.845141][ T9800] netlink: 33 bytes leftover after parsing attributes in process `syz.0.741'.
[  373.858067][ T9785] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input50
[  373.957341][ T9805] netlink: 13 bytes leftover after parsing attributes in process `syz.3.743'.
[  374.712390][ T9806] Invalid ELF header magic: != ELF
[  377.141336][ T9852] can: request_module (can-proto-0) failed.
[  377.646580][ T9860] ubi0: attaching mtd0
[  377.686791][ T9860] ubi0: scanning is finished
[  377.715957][ T9860] ubi0: empty MTD device detected
[  378.395192][ T9870] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input51
[  378.438278][ T9860] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB)
[  378.630078][ T9860] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[  378.711110][ T9860] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1
[  378.789998][ T9860] ubi0: VID header offset: 64 (aligned 64), data offset: 128
[  378.846534][ T9860] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[  378.912681][ T9860] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23
[  378.951427][ T9860] ubi0: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 2865622798
[  379.021468][ T9860] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[  379.117989][ T9871] ubi0: background thread "ubi_bgt0d" started, PID 9871
[  379.987122][ T9872] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input52
[  380.816055][ T9898] zram: Added device: zram1
[  382.352040][ T9920] mkiss: ax0: crc mode is auto.
[  387.575313][ T9971] sp0: Synchronizing with TNC
[  389.018543][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  389.031036][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  389.195694][ T9994] netlink: zone id is out of range
[  389.235534][ T9994] netlink: del zone limit has 4 unknown bytes
[  389.881835][T10004] FAULT_INJECTION: forcing a failure.
[  389.881835][T10004] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  390.004936][T10004] CPU: 0 UID: 0 PID: 10004 Comm: syz.2.779 Not tainted 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 PREEMPT(full) 
[  390.004971][T10004] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  390.004985][T10004] Call Trace:
[  390.004993][T10004]  <TASK>
[  390.005001][T10004]  dump_stack_lvl+0x16c/0x1f0
[  390.005045][T10004]  should_fail_ex+0x512/0x640
[  390.005076][T10004]  _copy_from_iter+0x29f/0x16f0
[  390.005108][T10004]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  390.005133][T10004]  ? __pfx__copy_from_iter+0x10/0x10
[  390.005160][T10004]  ? __sk_mem_raise_allocated+0x895/0x1700
[  390.005199][T10004]  mptcp_sendmsg+0x1034/0x1eb0
[  390.005250][T10004]  ? __pfx_mptcp_sendmsg+0x10/0x10
[  390.005287][T10004]  ? __pfx_aa_sk_perm+0x10/0x10
[  390.005325][T10004]  ? __pfx_mptcp_sendmsg+0x10/0x10
[  390.005364][T10004]  inet_sendmsg+0x119/0x140
[  390.005400][T10004]  sock_write_iter+0x4aa/0x5b0
[  390.005430][T10004]  ? __pfx_sock_write_iter+0x10/0x10
[  390.005477][T10004]  ? bpf_lsm_file_permission+0x9/0x10
[  390.005503][T10004]  ? security_file_permission+0x71/0x210
[  390.005542][T10004]  ? rw_verify_area+0xcf/0x680
[  390.005576][T10004]  vfs_write+0x6c7/0x1150
[  390.005610][T10004]  ? __pfx_sock_write_iter+0x10/0x10
[  390.005643][T10004]  ? __pfx_vfs_write+0x10/0x10
[  390.005674][T10004]  ? find_held_lock+0x2b/0x80
[  390.005718][T10004]  ksys_write+0x1f8/0x250
[  390.005752][T10004]  ? __pfx_ksys_write+0x10/0x10
[  390.005795][T10004]  do_syscall_64+0xcd/0x490
[  390.005820][T10004]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  390.005844][T10004] RIP: 0033:0x7f348b18e969
[  390.005862][T10004] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  390.005884][T10004] RSP: 002b:00007f348bf92038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  390.005906][T10004] RAX: ffffffffffffffda RBX: 00007f348b3b6240 RCX: 00007f348b18e969
[  390.005922][T10004] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003
[  390.005936][T10004] RBP: 00007f348bf92090 R08: 0000000000000000 R09: 0000000000000000
[  390.005951][T10004] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  390.005964][T10004] R13: 0000000000000000 R14: 00007f348b3b6240 R15: 00007ffd5e8699d8
[  390.005994][T10004]  </TASK>
[  390.229705][    C0] vkms_vblank_simulate: vblank timer overrun
[  390.631676][ T9990] netlink: 346 bytes leftover after parsing attributes in process `syz.3.777'.
[  395.166853][T10052] ptrace attach of "./syz-executor exec"[5840] was attempted by "./syz-executor exec"[10052]
[  396.361447][T10061] ubi: mtd0 is already attached to ubi0
[  396.575338][T10076] Invalid ELF header magic: != ELF
[  401.399550][T10119] ptrace attach of "./syz-executor exec"[5843] was attempted by "./syz-executor exec"[10119]
[  401.922721][T10123] can: request_module (can-proto-0) failed.
[  403.442546][T10137] netlink: 8 bytes leftover after parsing attributes in process `syz.0.805'.
[  403.559408][T10137] netlink: 4 bytes leftover after parsing attributes in process `syz.0.805'.
[  405.095040][T10164] can: request_module (can-proto-0) failed.
[  408.229076][T10202] ovs_: entered promiscuous mode
[  410.421505][T10224] ksmbd: Unknown IPC event: 14, ignore.
[  411.760834][ T5155] Bluetooth: hci3: unexpected subevent 0x01 length: 4 < 18
[  413.375069][T10254] zero sized request
[  415.216051][T10260] can: request_module (can-proto-0) failed.
[  419.380035][T10303] netlink: 28 bytes leftover after parsing attributes in process `syz.1.837'.
[  419.513515][T10284] netlink: 4 bytes leftover after parsing attributes in process `syz.3.829'.
[  419.587674][T10303] mac80211_hwsim hwsim5 wlan1: entered allmulticast mode
[  420.145133][T10315] ==================================================================
[  420.153335][T10315] BUG: KASAN: slab-out-of-bounds in afs_proc_addr_prefs_write+0x13a9/0x15f0
[  420.162120][T10315] Read of size 1 at addr ffff88807524a587 by task syz.2.838/10315
[  420.169941][T10315] 
[  420.172277][T10315] CPU: 0 UID: 0 PID: 10315 Comm: syz.2.838 Not tainted 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 PREEMPT(full) 
[  420.172308][T10315] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  420.172323][T10315] Call Trace:
[  420.172332][T10315]  <TASK>
[  420.172341][T10315]  dump_stack_lvl+0x116/0x1f0
[  420.172384][T10315]  print_report+0xcd/0x680
[  420.172406][T10315]  ? __virt_addr_valid+0x81/0x610
[  420.172431][T10315]  ? __phys_addr+0xe8/0x180
[  420.172455][T10315]  ? afs_proc_addr_prefs_write+0x13a9/0x15f0
[  420.172483][T10315]  kasan_report+0xe0/0x110
[  420.172505][T10315]  ? afs_proc_addr_prefs_write+0x13a9/0x15f0
[  420.172536][T10315]  afs_proc_addr_prefs_write+0x13a9/0x15f0
[  420.172563][T10315]  ? __lock_acquire+0xb8a/0x1c90
[  420.172598][T10315]  ? __pfx_afs_proc_addr_prefs_write+0x10/0x10
[  420.172628][T10315]  ? find_held_lock+0x2b/0x80
[  420.172649][T10315]  ? __might_fault+0xe3/0x190
[  420.172683][T10315]  ? __might_fault+0xe3/0x190
[  420.172717][T10315]  ? __might_fault+0x13b/0x190
[  420.172762][T10315]  ? proc_simple_write+0x114/0x1b0
[  420.172787][T10315]  proc_simple_write+0x114/0x1b0
[  420.172812][T10315]  ? __pfx_proc_simple_write+0x10/0x10
[  420.172837][T10315]  proc_reg_write+0x23d/0x330
[  420.172874][T10315]  ? __pfx_proc_reg_write+0x10/0x10
[  420.172909][T10315]  vfs_writev+0x5df/0xde0
[  420.172941][T10315]  ? __pfx___mutex_trylock_common+0x10/0x10
[  420.172979][T10315]  ? __pfx_vfs_writev+0x10/0x10
[  420.173011][T10315]  ? __mutex_lock+0x1ca/0xb90
[  420.173033][T10315]  ? kmem_cache_free+0x2d1/0x4d0
[  420.173070][T10315]  ? __pfx___mutex_lock+0x10/0x10
[  420.173098][T10315]  ? __fget_files+0x20e/0x3c0
[  420.173135][T10315]  ? do_writev+0x132/0x340
[  420.173166][T10315]  do_writev+0x132/0x340
[  420.173198][T10315]  ? __pfx_do_writev+0x10/0x10
[  420.173235][T10315]  do_syscall_64+0xcd/0x490
[  420.173258][T10315]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  420.173282][T10315] RIP: 0033:0x7f348b18e969
[  420.173300][T10315] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  420.173324][T10315] RSP: 002b:00007f348bfd4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  420.173347][T10315] RAX: ffffffffffffffda RBX: 00007f348b3b6080 RCX: 00007f348b18e969
[  420.173363][T10315] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000005
[  420.173377][T10315] RBP: 00007f348b210ab1 R08: 0000000000000000 R09: 0000000000000000
[  420.173393][T10315] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  420.173407][T10315] R13: 0000000000000000 R14: 00007f348b3b6080 R15: 00007ffd5e8699d8
[  420.173430][T10315]  </TASK>
[  420.173438][T10315] 
[  420.434585][T10315] Allocated by task 10315:
[  420.439011][T10315]  kasan_save_stack+0x33/0x60
[  420.443751][T10315]  kasan_save_track+0x14/0x30
[  420.448454][T10315]  __kasan_kmalloc+0xaa/0xb0
[  420.453093][T10315]  __kmalloc_node_track_caller_noprof+0x221/0x510
[  420.459551][T10315]  memdup_user_nul+0x2b/0x120
[  420.464257][T10315]  proc_simple_write+0xc7/0x1b0
[  420.469141][T10315]  proc_reg_write+0x23d/0x330
[  420.473919][T10315]  vfs_writev+0x5df/0xde0
[  420.478274][T10315]  do_writev+0x132/0x340
[  420.482542][T10315]  do_syscall_64+0xcd/0x490
[  420.487070][T10315]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  420.492992][T10315] 
[  420.495335][T10315] The buggy address belongs to the object at ffff88807524a580
[  420.495335][T10315]  which belongs to the cache kmalloc-8 of size 8
[  420.509057][T10315] The buggy address is located 0 bytes to the right of
[  420.509057][T10315]  allocated 7-byte region [ffff88807524a580, ffff88807524a587)
[  420.523418][T10315] 
[  420.525774][T10315] The buggy address belongs to the physical page:
[  420.532206][T10315] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x7524a
[  420.541004][T10315] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  420.548560][T10315] page_type: f5(slab)
[  420.552568][T10315] raw: 00fff00000000000 ffff88801b441500 ffffea00015fd5c0 dead000000000002
[  420.561169][T10315] raw: 0000000000000000 0000000080800080 00000000f5000000 0000000000000000
[  420.569765][T10315] page dumped because: kasan: bad access detected
[  420.576275][T10315] page_owner tracks the page as allocated
[  420.582082][T10315] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 6750, tgid 6732 (syz.2.135), ts 168944222663, free_ts 168766589329
[  420.601301][T10315]  post_alloc_hook+0x1c0/0x230
[  420.606093][T10315]  get_page_from_freelist+0x1321/0x3890
[  420.611684][T10315]  __alloc_frozen_pages_noprof+0x261/0x23f0
[  420.617722][T10315]  alloc_pages_mpol+0x1fb/0x550
[  420.622603][T10315]  new_slab+0x23b/0x330
[  420.626875][T10315]  ___slab_alloc+0xd9c/0x1940
[  420.631605][T10315]  __slab_alloc.constprop.0+0x56/0xb0
[  420.637095][T10315]  __kmalloc_node_track_caller_noprof+0x2ee/0x510
[  420.643541][T10315]  kstrdup+0x53/0x100
[  420.647552][T10315]  kstrdup_const+0x63/0x80
[  420.651993][T10315]  kvasprintf_const+0x10f/0x1a0
[  420.656861][T10315]  kobject_set_name_vargs+0x5a/0x140
[  420.662174][T10315]  dev_set_name+0xc7/0x100
[  420.666614][T10315]  netdev_register_kobject+0xc5/0x3a0
[  420.672007][T10315]  register_netdevice+0x13dc/0x2270
[  420.677219][T10315]  __ip_tunnel_create+0x540/0x6e0
[  420.682261][T10315] page last free pid 23 tgid 23 stack trace:
[  420.688248][T10315]  __free_frozen_pages+0x7fe/0x1180
[  420.693462][T10315]  tlb_remove_table_rcu+0x116/0x1a0
[  420.698677][T10315]  rcu_core+0x799/0x14e0
[  420.702942][T10315]  handle_softirqs+0x219/0x8e0
[  420.707717][T10315]  run_ksoftirqd+0x3a/0x60
[  420.712143][T10315]  smpboot_thread_fn+0x3f7/0xae0
[  420.717094][T10315]  kthread+0x3c2/0x780
[  420.721187][T10315]  ret_from_fork+0x5d7/0x6f0
[  420.725810][T10315]  ret_from_fork_asm+0x1a/0x30
[  420.730586][T10315] 
[  420.732913][T10315] Memory state around the buggy address:
[  420.738547][T10315]  ffff88807524a480: fa fc fc fc fa fc fc fc fa fc fc fc 00 fc fc fc
[  420.746614][T10315]  ffff88807524a500: fa fc fc fc fa fc fc fc fa fc fc fc fa fc fc fc
[  420.754686][T10315] >ffff88807524a580: 07 fc fc fc fa fc fc fc fa fc fc fc fa fc fc fc
[  420.762751][T10315]                    ^
[  420.766821][T10315]  ffff88807524a600: fa fc fc fc fa fc fc fc fa fc fc fc fa fc fc fc
[  420.774910][T10315]  ffff88807524a680: fa fc fc fc fa fc fc fc fa fc fc fc fa fc fc fc
[  420.783094][T10315] ==================================================================
[  420.791256][    C0] vkms_vblank_simulate: vblank timer overrun
[  421.544720][T10314] zswap: compressor  not available
[  422.152183][T10315] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  422.159437][T10315] CPU: 0 UID: 0 PID: 10315 Comm: syz.2.838 Not tainted 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 PREEMPT(full) 
[  422.171711][T10315] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  422.181804][T10315] Call Trace:
[  422.185225][T10315]  <TASK>
[  422.188183][T10315]  dump_stack_lvl+0x3d/0x1f0
[  422.192921][T10315]  panic+0x71c/0x800
[  422.196871][T10315]  ? __pfx_panic+0x10/0x10
[  422.201343][T10315]  ? mark_held_locks+0x49/0x80
[  422.206150][T10315]  ? preempt_schedule_thunk+0x16/0x30
[  422.211560][T10315]  ? afs_proc_addr_prefs_write+0x13a9/0x15f0
[  422.217587][T10315]  ? preempt_schedule_common+0x44/0xc0
[  422.223085][T10315]  ? afs_proc_addr_prefs_write+0x13a9/0x15f0
[  422.229087][T10315]  check_panic_on_warn+0xab/0xb0
[  422.234056][T10315]  end_report+0x107/0x170
[  422.238410][T10315]  kasan_report+0xee/0x110
[  422.242845][T10315]  ? afs_proc_addr_prefs_write+0x13a9/0x15f0
[  422.248860][T10315]  afs_proc_addr_prefs_write+0x13a9/0x15f0
[  422.254703][T10315]  ? __lock_acquire+0xb8a/0x1c90
[  422.259774][T10315]  ? __pfx_afs_proc_addr_prefs_write+0x10/0x10
[  422.265955][T10315]  ? find_held_lock+0x2b/0x80
[  422.270657][T10315]  ? __might_fault+0xe3/0x190
[  422.275565][T10315]  ? __might_fault+0xe3/0x190
[  422.280447][T10315]  ? __might_fault+0x13b/0x190
[  422.285615][T10315]  ? proc_simple_write+0x114/0x1b0
[  422.290770][T10315]  proc_simple_write+0x114/0x1b0
[  422.295761][T10315]  ? __pfx_proc_simple_write+0x10/0x10
[  422.301246][T10315]  proc_reg_write+0x23d/0x330
[  422.305956][T10315]  ? __pfx_proc_reg_write+0x10/0x10
[  422.311197][T10315]  vfs_writev+0x5df/0xde0
[  422.315556][T10315]  ? __pfx___mutex_trylock_common+0x10/0x10
[  422.321479][T10315]  ? __pfx_vfs_writev+0x10/0x10
[  422.326373][T10315]  ? __mutex_lock+0x1ca/0xb90
[  422.331207][T10315]  ? kmem_cache_free+0x2d1/0x4d0
[  422.336186][T10315]  ? __pfx___mutex_lock+0x10/0x10
[  422.341424][T10315]  ? __fget_files+0x20e/0x3c0
[  422.346164][T10315]  ? do_writev+0x132/0x340
[  422.350701][T10315]  do_writev+0x132/0x340
[  422.354972][T10315]  ? __pfx_do_writev+0x10/0x10
[  422.359767][T10315]  do_syscall_64+0xcd/0x490
[  422.364289][T10315]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  422.370199][T10315] RIP: 0033:0x7f348b18e969
[  422.374624][T10315] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  422.394248][T10315] RSP: 002b:00007f348bfd4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  422.402677][T10315] RAX: ffffffffffffffda RBX: 00007f348b3b6080 RCX: 00007f348b18e969
[  422.410660][T10315] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000005
[  422.418644][T10315] RBP: 00007f348b210ab1 R08: 0000000000000000 R09: 0000000000000000
[  422.426625][T10315] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  422.434616][T10315] R13: 0000000000000000 R14: 00007f348b3b6080 R15: 00007ffd5e8699d8
[  422.442608][T10315]  </TASK>
[  422.445702][T10315] Kernel Offset: disabled
[  422.450035][T10315] Rebooting in 86400 seconds..