last executing test programs:

6.128524473s ago: executing program 0 (id=2572):
set_mempolicy$auto(0x6, &(0x7f0000000000)=0x7e, 0x4) (async)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x10004) (async)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/nbd12\x00', 0x8001, 0x0) (async)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/thread-self/net/netfilter/nfnetlink_log\x00', 0x40080, 0x0) (async)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000180)='/dev/dsp1\x00', 0x20b42, 0x0)
r0 = socket(0x21, 0x2, 0x40001)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x155) (async)
r1 = socket(0x2, 0x80802, 0x0)
setsockopt$auto(r1, 0x11, 0x67, 0x0, 0x8) (async)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) (async)
connect$auto(0x3, &(0x7f0000000140)=@in={0x2, 0x0, @multicast1}, 0x55)
sendmsg$auto_NL80211_CMD_GET_WIPHY(r0, 0x0, 0x4004414)
bpf$auto(0x200000, &(0x7f0000000000)=@test={0xffffffffffffffff, 0x2e77, 0x5a, 0x5, 0x2, 0xffffffffffff0000, 0x4, 0x2, 0x8, 0x3, 0x100, 0x0, 0x80, 0xc, 0x101}, 0x1) (async)
sendmmsg$auto(0x3, &(0x7f00000001c0)={{0x0, 0x8002, 0x0, 0x1, 0x0, 0x2, 0x9}, 0x8}, 0x3, 0x0) (async)
unshare$auto(0x40000080)
writev$auto(0x1, 0x0, 0x1)
mmap$auto(0x5, 0x9, 0x0, 0xc1a, 0x80000001, 0x80000000) (async)
madvise$auto(0x0, 0x20200, 0x15) (async)
r2 = socket(0x0, 0x5, 0x6)
sendto$auto(r2, 0x0, 0xf, 0x800e, &(0x7f00000004c0), 0x19)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), r2)
openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0)
r3 = openat$auto_nsim_dev_health_break_fops_health(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/netdevsim/netdevsim1/health/break_health\x00', 0x9c142, 0x0)
write$auto(r3, &(0x7f0000000900)='netpci0\x00', 0x40) (async)
mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
socket(0x10, 0x2, 0x0)

4.582111348s ago: executing program 3 (id=2579):
bind$auto(0x3, 0x0, 0x6b)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) (async)
sendmsg$auto_OVS_METER_CMD_SET(0xffffffffffffffff, 0x0, 0x40) (async)
setsockopt$auto(0xffffffffffffffff, 0x4, 0x8001, 0x0, 0x2) (async, rerun: 64)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async, rerun: 64)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) (async, rerun: 64)
r0 = fanotify_init$auto(0x5, 0x2000000000002) (async, rerun: 64)
socket(0x2, 0x2, 0x1) (async)
r1 = socket(0x2, 0x801, 0x106) (async, rerun: 64)
r2 = socket(0x26, 0x80805, 0x0) (rerun: 64)
open(&(0x7f0000000000)='./bus\x00', 0x12ba7e, 0x145) (async)
r3 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000100), r1)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
io_uring_setup$auto(0x6, 0x0)
r4 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0)
write$auto_snd_pcm_oss_f_reg_pcm_oss(r4, &(0x7f0000000280)="c2", 0x1) (async)
ioctl$auto_SNDCTL_DSP_SYNC(r4, 0x5001, 0x7) (async, rerun: 32)
close_range$auto(0x2, 0x8, 0x0) (rerun: 32)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000140)={'veth0_virt_wifi\x00', <r5=>0x0})
sendmsg$auto_BATADV_CMD_SET_VLAN(r2, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x30, r3, 0x1, 0x70bd2a, 0x25dfdbfb, {}, [@BATADV_ATTR_GW_MODE={0x5}, @BATADV_ATTR_BLA_OWN={0x4}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r5}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5, 0x2a, 0x1}]}, 0x30}, 0x1, 0x0, 0x0, 0x1}, 0x4040000)
fanotify_mark$auto(0x0, 0x1, 0x9, 0x4, 0x0) (async)
close_range$auto(0x2, 0xffffffffffffffff, 0x0) (async)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg1\x00', 0x200, 0x0) (async)
readv$auto(0x0, &(0x7f0000000080)={0x0, 0x1e}, 0x3) (async)
ioctl$auto(0x1, 0x890c, 0x8) (async)
unshare$auto(0x40000080) (async)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) (async)
unshare$auto(0x40000080)

3.877308555s ago: executing program 1 (id=2582):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
r0 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card0\x00', 0x129800, 0x0)
syslog$auto(0x4, &(0x7f0000000180)='#[\\-\x00', 0x7)
ioctl$auto(r0, 0x901064b2, 0x2)
open(0x0, 0x22240, 0x55)
socket(0x2, 0x3, 0xa)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8)
connect$auto(0x3, 0x0, 0x55)
r1 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0xd}, 0x5af}, 0x40, 0x100)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40)
recvmmsg$auto(r1, &(0x7f0000000140)={{0x0, 0x4, &(0x7f0000000080)={0x0, 0x803}, 0x5, 0x0, 0x2, 0x8}, 0x800}, 0x10a, 0x8, 0x0)
r2 = socket(0xa, 0x806, 0x0)
mmap$auto(0x0, 0x400008, 0x400000000df, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1e, 0x4, 0x0)
r3 = socket(0x1e, 0x4, 0x0)
get_robust_list$auto(0x0, 0x0, 0x0)
setsockopt$auto(r3, 0x10f, 0x87, 0x0, 0x14)
setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14)
recvfrom$auto(r3, 0x0, 0xc, 0xb21, 0x0, 0x0)
write$auto(0x3, 0x0, 0xfdef)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
close_range$auto(r2, 0x1000000c, 0x0)
statx$auto(0xffffffffffffffff, 0x0, 0x1000, 0x2, 0x0)
r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
ioctl$auto(r4, 0x560a, 0x7)

3.044483938s ago: executing program 0 (id=2583):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
socket(0x848000000015, 0x805, 0x0)
bind$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x6b)
connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x0, @rand_addr=0x700}, 0x55)
sendmsg$auto_OVS_DP_CMD_GET(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000003c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="01002abd7000fcdbdf2503040000"], 0xd000}, 0x1, 0x0, 0x0, 0x50}, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r2 = socket(0xa, 0x1, 0x84)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0x4)
setresgid$auto(0x0, 0xee01, 0xffffffffffffffff)
r3 = getegid()
setregid$auto(r3, 0x0)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
r4 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
r5 = pipe$auto(0x0)
setsockopt$auto(r1, 0x100005, 0xffffffff, 0x0, 0x0)
recvmmsg$auto(r2, &(0x7f0000000100)={{0x0, 0xbb, 0x0, 0x8, &(0x7f0000000040), 0x81, 0x9}, 0xfffffffb}, 0x5, 0x6586, 0x0)
clock_gettime$auto(0x3, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
r6 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000280), r5)
newfstatat$auto(r5, &(0x7f0000000300)='./file0\x00', &(0x7f0000000340)={0x3, 0xb4a, 0x6, 0x0, <r7=>0x0, r3, 0x0, 0x6, 0xfffffffffffffffe, 0x39, 0x7fffffff, 0x400, 0xb4d, 0xf, 0x3, 0x4, 0x8000}, 0x1)
sendmsg$auto_TIPC_NL_NET_GET(r2, &(0x7f0000001580)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000001540)={&(0x7f0000000400)={0x1138, r6, 0x4, 0x70bd25, 0x25dfdbfc, {}, [@TIPC_NLA_PUBL={0x107c, 0x3, 0x0, 0x1, [@nested={0x1077, 0x112, 0x0, 0x1, [@nested={0x4, 0x137}, @generic="e3a5e4ddfacee5a4c72832701f77b455be03768139615075b9a29361f1a9ca3da315dae80b67199c32eec39466bf3d68cdc7d05643b425b078852d6c6aab1a37203aca190efac005b15658a61d1552f5857ecf356d842896ef33246e313cd00bd65bd5b11c93f9", @typed={0x8, 0x7b, 0x0, 0x0, @uid=r7}, @generic="70bd5b1d86152d3155024cabc3d4b13926ff11a9e7773280ba223ef2b4b3f293d74f9ff2beeaa95da173f11307d51759db5b3005ea87d2285a87e63b306806587851379ea0cb86b41308f3717988a99eb8e61e89c5402b9fb73ced511f51590bde8d46f48a1dffd220d07ba272b3ee34eee4b4539a1c612b198e21cd00b0b85114dabad275151f3f3ed7a8d4933cc998766a06a07947be4ce73eae9c13587d38f8c86dd9ca61374bb1e7213176088b34328c08161a12f5e712055d888661cb0c067296a1923a85e29f4c76451dfe2f82978e94600b2925685e523a5b586243d8bd7229894a34aa2a472bfae24ec4c12e698d0dbb48c4bd58c987c57911c0152f26752da515750bf8c9eff95e127bd3ac2db0f14f55bc08e5cc9686f021ac3ca3d0a6d726edbdeaddeebe9a3451f50b3a4bbff1ea0c195b81c5f6f7a788fdcf603c8abfec21ce656f88322e703048d99d11dd1c78fe6387011865fb35d3140cd195a2100a85ab6e013db4958832a97bd27a3444c21cd5e05a9c6148e5da096f0d9cd289993094eb47cfe0b6543e1f276ca7d2dd3053ae766fb5f8793c3685e693d61980e08885aed8e81a2c72307917bba1c68f3d2f0d165cfb296d4f9de0b4a56b52c7d230290db6ecc45bb52ea4771d018cf165d600bead788f809ab44f3b008e6dea691127bd1f2fa4794af7b87ed9fa18a215948b7a4daf35f6e41e33074be9858f4a445da943c859b901e08e3454f42193e9c0e708933de5bc009462bd5d5d18ca9e8b5744f2dfa5bfc3d807f3092b724925b4f49ee2878bf0a10535cdfc5c8d1ceec93242d253f5c84c10f2c14b0d0aee27631c322613f2be5ade603a4a5a6dfba28e2c94dd036411be0a844d33d1a64bf782b82b29247ba6493b243d5221192702acc63382ce8d744fbaf2624b68ccd7742003bc45cfb51ce7bc44789fbdde717efcd9628978a96af2c4df239e7af4a34521b3246514d66b4bc38a85f649e7ba1a5b2edf362d77cce0028c15a38a20a561ef925426440e925b66e6f58bf7bc5e677af640fd85216313d67de7b16a940e63b0d073a45dde418ca275f176a167f26c77ccd62c34d0666cecaa673ad8f29baa5d3a45bc4925e13f62ab9b3ac78bc3262345caa8dfb32bd9ffc3e555ebf178d5c8b0bfa3441a0018251cdfb17b55fc935a5f1ee50e826d3f66c6643689694964b2878a0c59196eda0c2521e8c03baf049c6e14fc150c51d0d6b20c68fb4cbc515f961161738a55336a47281dd9a8cd38b46d951ae7bfb0f73f475e88121303331c0848f878c534fd4d89529fd528b9f94285734578fd254d3096e18a7dd9576fe183db7bef73de3d07d1b1b9408aff28f08fb56119aa5e9df53e5dff2a8daad7ef3c897c97755ca7e97299b17514b9d6f6dad92307fb62d07b8d539c5ed5ecb215f166f5f5ff5d9a98bd11becaeb7597e85ea85cbe89507206ba30923c31a5217a8d28d256a120044da150d38da0c5ccd46af03280a4db10e3dac99cc7b8f19a27e2f343375f4ddf283ac373c3d55b8afd86cfef48bd65f7d1a4f5d9ca1e6a911ed4acce1b04678c726e124ebb19b48dc25cca5365121a4e68407a1609542470eca50252e1d10de63393106980c5eb47a8a489f106334d2d3a5e50539022cd822d53501da5d760b62d0c43ba162e02cc665fdb9ced411144ef0ed560a9c44f1c1575ab8638365804ad6ae03cf7797ce59c7660dedf0031e9c25405825f8c8182e01cb9daddbff49ac232917f185290579d23be57090cc516994cbd027e4c89dad9b320a9d923e31f14f42d107bcf54e98b787bde9e5ff1227abc5b8bb26d30964b0dc4bd332ad514fc8cb07a7af74b00505ac35549228223906344daf33202b45e28913440120041f7d966c15925206c9067df78649b73245d10eb2e08d2390b5a712a2cce894a086cc21b9640bc8be15df500e19f82715336daa8eb4057c312c70719147947527dfa037b41a2cd7b48b5b64de2050dab0ca918e9fb5bf99bb3f86848cd0c064b7349190fcca98cb627e14c395e9f1317c67d9243cd245f92b554f16b34b55c1b1e6a11f7969b59c8ec8b2a71c19289062eb7b9d3dc88b3cadc7cadd7d46935349c30ea72de2b2dc536ef7637a0998db733e121bba3931c85ad60e51c371d3d0a12a0eceb932b3746cc5f4cf898a7ff7013b6f67eabead23f366c67f46b527d9df8f42b759c15b2952126016edd6791c8ca53598cdb0825cf3b3ddad65bcba5c96b952a15b9eead09f88f384c9830a3e37bcf4a76c49746d7355df65cd577c2350be16eceb5197d69226a02cee9b61ffb51c29d5558c8e6dd056e85c75683bf86bff586ad358c0524977cb83999b854583657c4a042fa9367a22aa9f9844253ecd4476d8cacd1b683983ac858918b71fe1d173ef2d9ea131ed4fc8d1a546306a08a3590e1ffe6d9ed55121f44d147d0ab845fe52801eac0c9b4918d7d53929f703ac2c72353a173fb7380059ede08b6636efa803e0201f8aff38a3f93dd78fa44e53f25dcd2d195e9ec0c3b8109782f82f921754c95577b545c410bd331ceff041e7e9732752467b7dbaccd45d46c84665f4df9aed5299734763edfdc4c9d5b2c8afde4d9a52d987c6c5ffb31df6891bb63b8522c93067787e3acafe126bc13c2f86ffd5bf194eb2f63aed9d5fb3469e4afc83df981234a13b52f2ebf01148b34f8dd7317d05014e72e6032db107905e217223960a0688eba82c00dec7aacb8964f0fbe85f9681afff7090a225e20b5774ae5329b957e0bc2dd0965f5261ad6796adf33d5339675f57bc9fc6eb9d6d55ad664dd7b2157a9ebb55d2b33bd19994da588da27cace65087f6adf6f82603eac1952abc37e4d3d27f4dbc8d2aae5532aad870a4ce78fb720903fc39e32f18fc1c17883f20131644b3ddd776f3766944ded0b190be8ee1f67df87b3cc66bbd52ebbd75173bb29ef43348984a1ae09a0209749bfd8d903eece24ec757f76da548e0eacb9876cc1b346dc527b324f1d72a45b4fa3e658cb4d44e730a54889252d2678efeea945c3d4229bcaa3442879d162d9db3dda0f34b86b3ab79e0c2692dc568752694e1ff51f4f2408368da6b54271774137f34f4d728749bb0ca61d1d9034669a85821d4040505dee66df992055c159b8b4e8b512e82d2ce0d74eab4616273b08358b9e1a737b64019153f2785d94505c111307277b41686d96c5eb1271cfa569281d225e350833286464b1d64d13f387df589534d1d661bc33595e1be37041ec7ae437faad8c1c1e591802399119f6515983d8da1fb95d5c2248b7071119acd2341af6a8b8d4f96c04075f062b0ff183fba5142f2562c4392763aa656c0e1b1788c1d9d2b2e258647f53f8701e3ace33888b5801aaa05218d485ab7fa06cc5d09b393dd31fa985f203d61689294ba50f2163cdac7bb0cf691077b0acdf31afd28a1303a6682faa1a93eaa982bf67546b2b0e7cb8718baf203916f63770a529ca6ecbf9c7d55533f99d336330df88a464f57717086fa3ff36c461140305058997b2350bff269e5c5ba0d863377a0f05af1f05dbb201a1db96dca1ccf75a74b689bdb27c96e2fe01755a1172a4a9c1df63ef22853d5e2c113e4ac284664e97f8262374d6a0f6aee0c6b15a7434954e5075c1ae7aadf02956188c13eed794677ed4cd7bda82c6d416888fe0625055b7a187faffe85cb1373fd8db87679eb245629d4779f252561a3d8c0cd248fd8f1a9626646f5191f343211b03b2448732e0b252268abdbc4de77dc9880ceb40cd8d77dfdc83275d3aff3139bf6991ecb7e523f682dd8dbcf0af39530bbf8150cc777b6faa6416f2748d1b209a09c5fe10cd130df297d030fe4ede2a52893368dbccf4cdb0c696460bbc85d841265890575877920d3b3beb2b0b6ea27aecdae566dee1c671c169c46b6055fb67c76b408d01616efe3efafa0225a9122483560e68d2b6ee7c0d00ee1d2cba0e1c772e02d9105b65e60c62c58ebc1b771de4e2d927a750ac0ed887bfce238fb8155da18b5bd156860060c8ee29542be76c7f8b4c6be4c490e8d5a356c42e42ad4d7bf2d320fb20caa41c5d1d64e55fa33c8d5db5b1a6cc42f5dcaec328b8d671e66aee2c6ed106100b9c6aff1d0f617b3305ecd5a129310bd5fe64dd76aa43a0123f14fd597a60acf9d32ce032336b35401e6fbcfba9681e9c970cb31fb4e961b7b524ee5ee88e03318436c8d4cdf19b73927ae438df019c994a997ad15066b3affe08d4d4a19d9006ee99b6f091af88ae58af81dbfc6899f6dbe8b69bfa747f1a2b98ba1616b16bda7468d2f3157ae9e511492ba7e16c8d7d7bf66c86b145e3291abbc7b4919d24ba76d4d543512557417fa70e8a7e7451dcfd15d2698df2dfd832e8e8dfb03f02e21ad7ad5d2b7f309179941b9b6080768bdc12c99005eb08883876e6c1226e8243656b8555c5a49cbebf1f9c94ff5f10ec2a59bc4a7523aa65c0f4ab4ca9ccefb7cc7ca472087e88cc5b9e837abf46c8bf854a5a287428ee8f22dc803d20fdff86af812bb18d32d380748f6ab4fa015aabe12fdd17710c47bda7bd22015d46af988eea62cd5c41f533ffb3b408f50ef3728215290bf6e8f54db71aacc4ea3127265707e6624f1aeebf9b3ed5614c807a142e4bd4b521ca6ef240456767fff3eb768498d866d44e7f3e9b7b653191855ccff067dd600f3614f2ab0f5af8bbef5f254dabf4bb65dc986d5d829694a85e4deb51bcdf92c929677d9a10ff670210818c17e940ddd8306dcbb3174ec7c077b0c44bde430db326e7f7fcb9211dfdcf7eb486d715ef3a170f8bdf47dfb97711ea8f435388b10fd4c013edc2f9acf064461c4ff0e77866ed418f489a1b539d56dbc83e8b4bc802c094e56de7fa55d1454728877473af545b946d1b6f486502b0e6d429064559f43a804e7348b065d5c5a67709ff94c2771448d41a5d6ec8cea03b8c4652121ba3ce285f222b22850e061990dc8132396d711cfa3a8dbbd5f6f606268b347d91a5ef2d2dd398984fc2f8794d400e7d0821560a8d62fd4010cf1e8f838337b78c503605346389da4dc095b6e006b93baa52aaa9a66d8f4839fa5888a9bfc87d4522188c97753157383139643b8507ac704151d8c02d1becfbcf9c075c74ce853a51574b98646e2e65782c52252d1ed259889c0cf8412761038a8a4df9abf35dc7351d402a46a7fb70569bcb61631997dad7661640bbfb4c7721424043312159756b45c673773179cc92a038f59febe9764732510d7a89835bd547d1233b5004789a5ce4cce402306ad385f34b3fae5b0bfe90f9406d0fddafc5e5b2d0d0c54a0ae6217a09c8c6aa1895be570809ebc51b992c9b83fea6a6e1ccd6c59fda37aaa6615b003fd6bacbdbd3f57cb6a7b7e60ac3786fa2bd3d4d93511da35b7d1d25ef146913b24a84fe9e567fb61e6de60413cd456904e71891cf5bb30739f530c5319347f861c01a53326b217fe0b1a52acc5f10d727d64b93a3b9ab4d938759bdcd3aaf4418059483ebeebb138bf54c345a88d096e614c99fc0ebd4fb428c0a7ee28f9d8fb7089b201cf3e9b09ba5a0afc3a3cd8a9daddd3ba4cfa4861c1d43ab61033fe4b050ba624f88a2ce572d72fe32a6d910798bc6f83a44436583d4e3f99c9c2e294ec69ca7802b53fc58fb50403e90aae7c413c3bba77cbe14379fc8606be0bfa4e60266bcce140b0101c0b83db0f727b0c3a3e419476e7086959354b3c8db2e12086bf8fb782714ff4c134de6fe02f6c81bae1e20ce8cbacaa6bced"]}]}, @TIPC_NLA_UNSPEC={0xa7, 0x0, "2258f794ac5b11e09c035d3e2e0fb94dcd3e920cfc718001a8e2f5a48c30099d9fd57543e4ba286932a3b04132ef7cf04a2871470b142f36d0bb8c3eabc06e9b559b33f98da10562de24453ca61546a453097e3e96c2acd984908d05fa6fee166055a2b502fbc8b5d08c3843fc4650d51b757c936f6422e5d1db2f6500cf04156ddd34df0c24cab4ecb3dcff11cc3cb632eb8fff4326b2ac508af17175e8b92b716696"}]}, 0x1138}, 0x1, 0x0, 0x0, 0x20008812}, 0x20000004)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x403, 0x8000)
r8 = socket(0x25, 0x81d, 0x1)
splice$auto(r8, &(0x7f0000000000)=0xab, r8, &(0x7f0000000040)=0x3, 0x5, 0x6)
socket(0x23, 0x2, 0x0)

2.822383857s ago: executing program 3 (id=2584):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x55)
socket(0x2, 0x3, 0xa)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8)
connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55)
socket(0x2, 0x3, 0xa)
write$auto(0x3, 0x0, 0xfdf3)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB, @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40)
recvmmsg$auto(r0, &(0x7f0000000140)={{0x0, 0x4, &(0x7f0000000080)={0x0, 0x803}, 0x5, 0x0, 0x2, 0x8}, 0x800}, 0x10a, 0x8, 0x0)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
ioctl$auto(r1, 0x560a, 0x7)

2.715503086s ago: executing program 1 (id=2585):
mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000)
sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008810}, 0x2000c041)
socket(0x2a, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000080), 0x6b)
connect$auto(0x3, &(0x7f00000000c0), 0x55)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
fcntl$auto(0xffffffffffffffff, 0x401, 0x5)
sendmsg$auto_OVS_METER_CMD_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc0}, 0x40)
write$auto(0x3, 0x0, 0xfffffdef)
setsockopt$auto(0xffffffffffffffff, 0xffffffee, 0x8001, 0x0, 0x2)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sysfs$auto(0xa5, 0x10000000000002d, 0x0)
mbind$auto(0x0, 0x100000100000004, 0xbe, 0x0, 0x6, 0x2)
r0 = gettid()
connect$auto(0xffffffffffffffff, 0x0, 0x1000)
mmap$auto(0x0, 0x5, 0x3, 0x16, 0x3, 0x8000)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000740), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'netdevsim0\x00'})
sendmsg$auto_ETHTOOL_MSG_COALESCE_SET(r1, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000140)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01002dbd7000fcdbdf25140000000c00018008000100", @ANYRES32=0x0, @ANYBLOB="05191b00a9a78b6034e6e6d0ac28d8e6ff0f0000e602c5ca61f9b35e6d31ca5ed54b93d8e7ddf030924a5d1b9c6c081e4fc59f1e675c7ac98fd7a8a245b41b48b7ba147f3b853eb88974c30ca3aa6bfe658581a7a752607a7047ed81f2af1772c568a02b35ac1911682d49ebae77cf"], 0x28}, 0x1, 0x0, 0x0, 0x80}, 0x48804)
sendfile$auto(0x6, 0xffffffffffffffff, 0x0, 0x8000)
unshare$auto(0x40000084)
writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1)
madvise$auto(0x0, 0x20200, 0x15)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
fchdir$auto(0xffffffffffffffff)
rmdir$auto(&(0x7f0000000340)='MAC80211_HWSIM\x00')
process_vm_readv$auto(r0, &(0x7f0000000040)={0x0, 0x7}, 0x4, &(0x7f00000000c0)={0x0, 0x100000000000002}, 0x6, 0x0)

2.627271s ago: executing program 2 (id=2586):
write$auto(0xffffffffffffffff, 0x0, 0x4)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
r0 = openat$auto_gpiolib_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x8000, 0x0)
mmap$auto(0x0, 0x4020009, 0xe3, 0xeb1, r0, 0x8000)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x801, 0x84)
io_uring_setup$auto(0x4, 0x0)
mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x14d27e, 0x72)
fallocate$auto(0x8000000000000003, 0x0, 0xd, 0xcbd5d)
copy_file_range$auto(r1, 0x0, r1, &(0x7f0000000080)=0x8, 0x2, 0x0)
move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
io_uring_enter$auto(0x3, 0x0, 0x1, 0x3, 0x0, 0x2)
io_uring_enter$auto(0x3, 0x7, 0x2688, 0xe, 0x0, 0x7)

2.153280789s ago: executing program 2 (id=2587):
close_range$auto(0x2, 0x8, 0x0)
openat$auto_userio_fops_userio(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x6)
socket(0xa, 0x5, 0x84)
openat$auto_random_fops_random(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
pselect6$auto(0x5, 0x0, &(0x7f00000025c0)={[0x2000000000007f, 0xfffffffffffff7f4, 0x3, 0x3, 0x0, 0x10001, 0x6, 0x3, 0x3, 0x3, 0x3, 0xa0, 0x2000000008, 0x7, 0x800080, 0x7]}, 0x0, 0x0, 0x0)

2.115757057s ago: executing program 0 (id=2588):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
timerfd_create$auto(0x0, 0x0)
socket(0x2, 0x6, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x3, 0x100)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x24, 0x940, 0x1ffe0, 0x3, 0x6, 0x8000002, 0x9, 0x5, 0x2, 0x4, 0xb0, 0x7, 0x2, 0x3, 0x5, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, [0x0, 0x0, 0x0, 0x243efbdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x9, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe6e]}, 0x1fe, 0x81)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
socket(0x25, 0x1, 0x800)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
eventfd$auto(0x3)
socket(0xa, 0x3, 0x73)
socket(0x2b, 0x1, 0x1)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f00000000c0), 0x662003, 0x0)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0)
ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0)

2.080997544s ago: executing program 2 (id=2589):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ptyq0\x00', 0x20000, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x0, 0x100000000008000)
write$auto(0x800000000000c8, 0x0, 0x1a)
mmap$auto(0x2, 0x9, 0x6, 0x10, 0x10000, 0x80000001)
ioctl$auto(0xc8, 0xffffffff800454dd, 0x4000000000008)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0)
shutdown$auto(r0, 0xa3)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, r0, 0x28000)
mremap$auto(0x4000, 0xfee0, 0x3fd6, 0x3, 0xfffff000)
set_mempolicy$auto(0x80, &(0x7f0000000280)=0x820e, 0x4)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_LINKINFO_SET(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010026bd7000fbdbdf2503000000180001801400020073797a5f74756e00000000000000000005000300fb00000005000200e00000400b423af674af7364435dc3f508eef486dc545376ab4644d855542bd79be95a3788b6851e46c0db52fc30a83d744d37a981681e42aabe5701925beb21fbc82f230c824b36eb99a51d541d863c0e21947908c1fafa2d727f01fd39e960a0ca"], 0x3c}, 0x1, 0x0, 0x0, 0x4000840}, 0x2000c840)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mbind$auto(0xb, 0x100000003, 0x100000003, 0x0, 0x6, 0xe)
mmap$auto(0x0, 0x7fffffffffffffff, 0xdf, 0x15, 0x7, 0x28000)
write$auto(0x3, 0x0, 0x7ffffffb)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_IPVS_CMD_GET_SERVICE(r3, &(0x7f00000015c0)={0x0, 0x0, &(0x7f0000001580)={&(0x7f00000002c0)={0x14, r4, 0x301, 0x70bd27, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x2004000d}, 0x20000800)
read$auto(0x3, 0x0, 0x80)
madvise$auto(0x0, 0x3, 0x66)
r5 = socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x8, 0x1040000004, 0x1008b74, 0x2, 0x8000)
getsockopt$auto(r5, 0x84, 0x1b, 0x0, &(0x7f0000000040)=0x400)
ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
mmap$auto(0x0, 0x4, 0x4000000020df, 0x40eb2, 0x402, 0x300000000000)

1.853496656s ago: executing program 1 (id=2590):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x55)
socket(0x2, 0x3, 0xa)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8)
connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55)
socket(0x2, 0x3, 0xa)
write$auto(0x3, 0x0, 0xfdf3)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40)
recvmmsg$auto(r0, &(0x7f0000000140)={{0x0, 0x4, &(0x7f0000000080)={0x0, 0x803}, 0x5, 0x0, 0x2, 0x8}, 0x800}, 0x10a, 0x8, 0x0)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
ioctl$auto(r1, 0x560a, 0x7)

1.825514269s ago: executing program 3 (id=2591):
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
pipe$auto(0x0)
vmsplice$auto(0x4, &(0x7f0000000040)={0x0, 0x2}, 0x2, 0x5)
readv$auto(0x3, &(0x7f00000000c0)={0x0, 0x8}, 0x400)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
getsockopt$auto(0xffffffffffffffff, 0x84, 0x75, 0x0, &(0x7f0000000000)=0x9000c)
socket(0x10, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2030009, 0x3, 0x100000000eb1, 0xfffffff7fffffff7, 0x8000)
io_cancel$auto(0x6, 0x0, &(0x7f00000002c0)={0x100000000, 0x42, 0xfffffffffdfffff8, 0xf23d})
close_range$auto(0x2, 0x8, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
r0 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/tty/driver/usbserial\x00', 0x2, 0x0)
read$auto_proc_single_file_operations_base(r0, &(0x7f00000000c0)=""/41, 0x11)
openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, 0x0, 0x1541, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x8, 0x8, 0x9b7f, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x19, &(0x7f0000000180), 0x7)
mmap$auto(0x0, 0x2a, 0xdf, 0x9b72, 0x1000, 0x28000)
open(&(0x7f0000000040)='./file0\x00', 0x200000, 0x141)
r1 = gettid()
signalfd4$auto(0xffffffffffffffff, 0x0, 0x8, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
tkill$auto(r1, 0x7)
io_uring_setup$auto(0x349f83f2, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)

1.597314124s ago: executing program 3 (id=2592):
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x5, 0x2000000000002)
r0 = open(&(0x7f00000001c0)='./file0\x00', 0x4242, 0x11a)
fanotify_mark$auto(0x0, 0x1, 0x3a, r0, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/vhci_hcd.0/usbip_debug\x00', 0x8002, 0x0)
write$auto(r1, &(0x7f0000000100)='\t\nD\\\'\x02\x00\x0f;\xd1\t\xbe\b\xe8P\xd2#\xcb\x98p\x81\xe7\x82k\xde|P\xfc\xcb%\xd4\xc2\xe8\x16A\xed \xec7\xa7\x9f\x969\x92t\xc9\xe9J\x1d-X_\xa1\xff@\x88\xbfP\xe9\x91\x82R+N\xe5\x10\x87\x92j\x953\x94\x13\xc4`\xbf\xa0\'\xd5F\x1a\xa0lSQ\x00\x99\xcf\xea\x86\xc3J\x8aE\f*T\x9dn5w}\x17\x97\x92*,\xddn6\xc3\xa4\xbc_\x9a\x9c\xc8\x80\xa3\xb9\x9aQL\x1d\xae\x14Ycd\xc0\xcf,\xb5Z\xab\xac_\xd5e3P\x97\x10X\x7fB\x88\xe63\xca\x00\xcf\xd1\xe3\xce*6\x11\xcbmv\x86\x0eM\xe7\x90\xbb]\xf5\x0f\x00\xee\x8e\x00\x00\x00\x00\x00\x00\x008\x1f\x9a\xe3\xa0\x14\xac\xf2{\x94E;\xef\xd0\x80\x8an\v\x9b\xf4M\xf8\x02\xd2\xe9\xb1\x81\x8d@\r\xc7\x11/\xaa9\xbbl\xb7\x90__[r\\\x9e\xcc\xbe2nw\xac\x02(\xf9\x9ajI\x1c\x91\xd7\xc7\xbc\x15\x8d\x03q\xb9\xd5\xe1\xb2\xc6\x89\x93M\x7f\xaf\xa1\xb9g\f\xe4\xfcfA\x8b\xd0\xd7\x8f\xd8R\x90*\xa6\x8d\xf7\xe5\xb1`E\xb8J[\xa9N\xac\x9bg\xe4\xeegb\xcab\xd1\x10\xfe\xac\xca1XH\xde\xc4\x10l\xaa\x012\x80\xac', 0xce)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
r2 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$auto_VHOST_SET_OWNER(r2, 0xaf01, 0x5)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
io_uring_setup$auto(0x6, 0x0)
ioctl$auto(r2, 0x4004af07, 0x0)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
ioctl$auto(r3, 0x4b68, 0x5)
fspick$auto(0x1, &(0x7f0000000440)='\x00', 0x9)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x64)

1.560462789s ago: executing program 0 (id=2593):
r0 = socket(0x27, 0x1, 0x8) (async, rerun: 32)
bpf$auto(0x5, &(0x7f0000000000)=@bpf_attr_0={0x8200, 0x1, 0x9, 0x7, 0x5, 0xffffffffffffffff, 0x80000001, "7829000000000000000200", 0x0, 0xffffffffffffffff, 0x7, 0xffff4e8b, 0x2, 0x1}, 0x7) (rerun: 32)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async, rerun: 64)
r1 = socket$nl_generic(0x10, 0x3, 0x10) (rerun: 64)
sendmsg$auto_NL802154_CMD_SET_CCA_MODE(r1, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000400)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="57ebc1297ee7c7de522a4dcfda6e7f01012bbd7000fddbdf2508000000080003005ad9c82cf1814dd865ca14ea58a45d462d974bb183bb11fffea3126e805f95b219476c16b5ff9c75c06ec5e36e71197ce8500632fbdf8f3157566fd59516d7582efec73aa17c9db1919f82fcbdfd1dc7f663e758d1adfd8a0a129c268ae9f7030e8bb063200dd3eeb79ffbce45adb9dc5d002e4e16d4c61902e82ad9a1", @ANYRES32=0x0, @ANYBLOB="0800010001000000"], 0x24}, 0x1, 0x0, 0x0, 0x60048400}, 0x800) (async)
sendmsg$auto_NL802154_CMD_DEL_INTERFACE(r0, &(0x7f00000003c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="000129bd7000030000000000000008002a0001000000"], 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x4000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async)
socket(0xa, 0x2, 0x73) (async)
socketpair$auto(0x6, 0x5, 0xa, 0x0) (async)
socket(0x1, 0x80000, 0x1) (async, rerun: 32)
bind$auto(0x3, 0x0, 0x6b) (async, rerun: 32)
listen$auto(0x3, 0x81)
r2 = socket(0x10, 0x2, 0x4)
sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_ID(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="14ffff007e593307beeb687e1d8ba32ea3e8dec8f0a50c47e77570232c79326f21147d595256df68f9d9ad360f43a01a73dd136741fdb5ae608f5299facebde5618828a41fa34b96f95b42439f9aedd9dbaf1d94a4b2b6f1a2fa4e53f5d281aa170e79a4e655271d", @ANYRES16=0x0, @ANYBLOB="21022cbd7000ebdbdf2501000000"], 0x14}, 0x1, 0x0, 0x0, 0x400c050}, 0x4000080) (async)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c00000014"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000) (async)
write$auto(r2, &(0x7f0000000000)='-\x00', 0x2fb) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async, rerun: 32)
socketpair$auto(0x8, 0x5, 0x3, 0x0) (async, rerun: 32)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_ftrace_system_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/tracing/events/vmalloc/enable\x00', 0x42101, 0x0)
write$auto(0x3, 0x0, 0xfdef)
socket(0xf, 0x3, 0x2) (async, rerun: 64)
recvfrom$auto(0x4, 0x0, 0x1, 0x6, 0x0, 0x0) (async, rerun: 64)
connect$auto(0x3, &(0x7f0000000380)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x55)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100) (async, rerun: 64)
prctl$auto(0x1000000001c, 0x400000, 0x9, 0x9, 0x8000000000000000) (rerun: 64)
fallocate$auto(r3, 0x0, 0x4000009, 0x4b) (async)
lseek$auto(0x3, 0x2, 0x4)

1.160443517s ago: executing program 3 (id=2594):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
r0 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card0\x00', 0x129800, 0x0)
syslog$auto(0x4, &(0x7f0000000180)='#[\\-\x00', 0x7)
ioctl$auto(r0, 0x901064b2, 0x2)
open(0x0, 0x22240, 0x55)
socket(0x2, 0x3, 0xa)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8)
connect$auto(0x3, 0x0, 0x55)
r1 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0xd}, 0x5af}, 0x40, 0x100)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40)
recvmmsg$auto(r1, &(0x7f0000000140)={{0x0, 0x4, &(0x7f0000000080)={0x0, 0x803}, 0x5, 0x0, 0x2, 0x8}, 0x800}, 0x10a, 0x8, 0x0)
r2 = socket(0xa, 0x806, 0x0)
mmap$auto(0x0, 0x400008, 0x400000000df, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1e, 0x4, 0x0)
r3 = socket(0x1e, 0x4, 0x0)
get_robust_list$auto(0x0, 0x0, 0x0)
setsockopt$auto(r3, 0x10f, 0x87, 0x0, 0x14)
setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14)
recvfrom$auto(r3, 0x0, 0xc, 0xb21, 0x0, 0x0)
write$auto(0x3, 0x0, 0xfdef)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
close_range$auto(r2, 0x1000000c, 0x0)
statx$auto(0xffffffffffffffff, 0x0, 0x1000, 0x2, 0x0)
r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
ioctl$auto(r4, 0x560a, 0x7)

892.306921ms ago: executing program 2 (id=2595):
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
r0 = socket(0x1e, 0x1, 0x0)
getsockname$auto(r0, &(0x7f0000000000), &(0x7f0000000040)=0x4dc) (async)
close_range$auto(0x2, 0xa, 0x0) (async, rerun: 32)
socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32)
socket(0x1e, 0x4, 0x0) (async)
socket(0x1e, 0x4, 0x0) (async)
get_robust_list$auto(0x0, 0x0, 0x0) (async, rerun: 32)
mmap$auto(0x0, 0x9, 0x3, 0x8012, 0x3, 0x8000) (rerun: 32)
sendfile$auto(0x6, 0x3, 0x0, 0x8000)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x10004) (async, rerun: 64)
unshare$auto(0x40000080) (rerun: 64)
writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1) (async, rerun: 32)
vmsplice$auto(0x3, 0x0, 0x9, 0x7) (async, rerun: 32)
madvise$auto(0x0, 0xffffffffffff0005, 0x19) (async)
munmap$auto(0x20001000, 0x7) (async, rerun: 64)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) (async, rerun: 64)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x2, 0x3, 0xa) (async, rerun: 64)
lsm_list_modules$auto(0x0, &(0x7f0000000100)=0xbefc, 0x0) (rerun: 64)
socket(0x2, 0x801, 0x106) (async)
open$dir(&(0x7f0000000080)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x80, 0xa0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
r1 = socket(0x11, 0x3, 0x6) (async)
capset$auto(0x0, &(0x7f0000000000)={0x1, 0x47, 0x4a})
sendmmsg$auto(r1, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5aa, &(0x7f0000000100)={&(0x7f0000000080), 0x5ea}, 0x5, 0x0, 0x7, 0x1000}, 0x5}, 0x5, 0x100) (async, rerun: 32)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async, rerun: 32)
io_uring_setup$auto(0x6, 0x0)

836.452096ms ago: executing program 1 (id=2596):
write$auto(0xffffffffffffffff, 0x0, 0x4)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
r0 = openat$auto_gpiolib_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x8000, 0x0)
mmap$auto(0x0, 0x4020009, 0xe3, 0xeb1, r0, 0x8000)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x801, 0x84)
io_uring_setup$auto(0x4, 0x0)
mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x14d27e, 0x72)
fallocate$auto(0x8000000000000003, 0x0, 0xd, 0xcbd5d)
copy_file_range$auto(r1, 0x0, r1, &(0x7f0000000080)=0x8, 0x2, 0x0)
move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
io_uring_enter$auto(0x3, 0x0, 0x1, 0x3, 0x0, 0x2)
io_uring_enter$auto(0x3, 0x7, 0x2688, 0xe, 0x0, 0x7)

604.539441ms ago: executing program 2 (id=2597):
mmap$auto(0x800000000000000, 0x5, 0x3ff57696, 0x13, 0x2, 0x80000007)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sysfs$auto(0x2, 0x4d, 0x0)
fsopen$auto(0x0, 0x1) (async)
r0 = fsopen$auto(0x0, 0x1)
r1 = socket(0x22, 0x3, 0x0)
sysfs$auto(0x5f, 0xff, 0x622)
setsockopt$auto(r0, 0x7fe, 0x7, &(0x7f0000000000)='\x00', 0x6)
ioctl$sock_SIOCGIFINDEX(r1, 0x80044943, 0x0) (async)
ioctl$sock_SIOCGIFINDEX(r1, 0x80044943, 0x0)

528.616845ms ago: executing program 2 (id=2598):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x55)
socket(0x2, 0x3, 0xa)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8)
connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55)
socket(0x2, 0x3, 0xa)
write$auto(0x3, 0x0, 0xfdf3)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB, @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40)
recvmmsg$auto(r0, &(0x7f0000000140)={{0x0, 0x4, &(0x7f0000000080)={0x0, 0x803}, 0x5, 0x0, 0x2, 0x8}, 0x800}, 0x10a, 0x8, 0x0)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
ioctl$auto(r1, 0x560a, 0x7)

473.599736ms ago: executing program 0 (id=2599):
mmap$auto(0x0, 0x8, 0x2, 0x9b72, 0x2, 0x0) (async)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) (async)
mknod$auto(&(0x7f0000000180)=':,\x00', 0xc9, 0xfffffffa) (async)
execve$auto(&(0x7f0000000040)=':,\x00', 0x0, 0x0) (async, rerun: 32)
mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000) (async, rerun: 32)
r0 = getpid()
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async, rerun: 64)
socket(0x10, 0x2, 0x0) (async, rerun: 64)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) (async, rerun: 64)
r1 = socket$nl_generic(0x10, 0x3, 0x10) (rerun: 64)
sendmsg$auto_SMC_NETLINK_GET_DEV_SMCD(r1, &(0x7f0000004380)={0x0, 0x0, &(0x7f0000004340)={&(0x7f0000004300)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB='\v'], 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x810) (async)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000300), r1)
openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x22340, 0x1a1)
r2 = socket(0x1e, 0x1, 0x0)
poll$auto(&(0x7f0000000040)={r2, 0x8, 0xea85}, 0x100, 0x8) (async)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
r3 = socket(0xa, 0x1, 0x84)
getsockopt$auto(r3, 0x84, 0x14, 0x0, &(0x7f0000000040)=0x3) (async, rerun: 64)
read$auto(r1, &(0x7f0000000100)='nl80211\x00', 0xbe62) (async, rerun: 64)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)={0x14, 0x0, 0x301, 0x4070bd25, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x30000881}, 0xc040804) (async)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x0, 0x0, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) (async, rerun: 32)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0xb00, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e"], 0x1ac}}, 0x40000) (async, rerun: 32)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/system/memory/memory12/state\x00', 0x101000, 0x0) (async)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4000080}, 0x800)
process_vm_readv$auto(r0, &(0x7f0000000100)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f00000002c0)="0f41ec2e89f47ef0bdd041ab181d3dab931015660f000000d50e358e333747b5f60b3e2ca17b8affffff7fc400b20e7a7789d1dedec47171eef00bc83833618f3a2a738d27168dd8b4b0ed64868f5937f407ceb038e1b8418cad5c1caa62dd43cc94dcd543b9f711ffe583d8fe473b34bde6fe2ce52b3f", 0xfffff7ff}, 0x24, 0x0) (async)
r4 = openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000000200), 0xe0080, 0x0)
ioctl$auto_I2C_RDWR(r4, 0x707, 0x0) (async, rerun: 64)
shutdown$auto(0x200000003, 0x2) (rerun: 64)

377.122962ms ago: executing program 1 (id=2600):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x51)
r0 = socket(0x2, 0x80802, 0x0)
setsockopt$auto(r0, 0x11, 0x67, 0x0, 0x8)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
connect$auto(0x3, &(0x7f0000000140), 0x55)
socket(0x10, 0x2, 0x4)
socket(0x2, 0x5, 0x0)
r1 = socket(0x10, 0x80002, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8000, 0x0)
io_uring_setup$auto(0x6, 0x0)
timerfd_create$auto(0x8, 0x800)
timerfd_settime$auto(r1, 0x2, 0x0, 0x0)
openat$auto_binder_ctl_fops_binderfs(0xffffffffffffff9c, 0x0, 0x800, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

142.372777ms ago: executing program 3 (id=2601):
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB='1\x00-'], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = socket(0x80000000000000a, 0x2, 0x0)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0)
r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/conf/batadv_slave_1/ignore_routes_with_linkdown\x00', 0x1401, 0x0)
pwrite64$auto(r3, &(0x7f0000000440)='\vX\xb5n\x91p\xe6\x1eRN8\x99C\x05s\x1cJ\x99\x00:\x00!\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2y\x1f\xee\xeeE\x18A\x14\xc6\xaa\x19\x9d\x17\xcf\x9e3!\x97\xe8X\xa3,a\xd5\x14\xb9\xa9\xb3\xf7\x19\xe5\xa6\x81\xbb 3\xc3\xec\x12\xef\xfbs\x9e}\xb0\xc9\x16I\x14\xbc\x01\xf0\x93O\xf0\x9byg\xb2\xdcZ\xf8g[\xf5\x97\x16\x0fm3\xcc\xc9\xaa\x812\b\x12\xffQq\xd5\xfc\xc5\xaf\xcd:1\xef\xca\xf3\xc7\xa4\xebS\x17\x99\x0f\xa3\x83\xb9\xbe\xa0u\x90(\xd2\xa5\xbe\xaf9a\x10K&\xf7N\xb8\xf5\x19\x12\x95\x1ex\xe3\x89\x9eU\xb5\x80\x0e\xfb\xe2\xd61\b\t\xa4H*v\x9a`%\xb4)\xa0\xb6\x11\xc3\xb4\xaa^\x02\xc5E\na\x03\xd3\xf2j\xa4Ly\xfa\xfcX.\xa1\xcfU\xcc\xec\x8b\x057\xda,v\x1br\xd3\xc1\xcc\xb4p\xff\x8c\x17YW\xc2\x92\xaf\xa8\x9c\x9dX]\xa4\x9a\x1a\xd5\x80B\x10\xd1\xd5\xca\x85\x9e)FT0\xe3\xb4\x19\x9dR\xc5\xdf\xb3\x9e\xea+2\x94\xba\x8c\xbe79\xba\x92\xcb\xd5\x87kB\xbd\xda\xf9\xb6)\xb3R\xe5A\xcfi\xd1\xf6\xa9\x86\x00\x88\x86\x05@d\xbc\xca\xd0v\xa07\xd9\x01Z\x89\xec\xce[J\xfeM\xfc\x1f\xe7j)\xe8\xdb\xfa\xa57\xe71\x9b\xbc\xf5|\xc6\xc8\xe7N\xd3i.|\xdd\xc0h\xd6', 0x8001, 0x3)
fstat$auto(r0, &(0x7f00000000c0)={0xcc, 0x0, 0x4, 0x80, <r4=>0xee00, 0xee01, 0x0, 0x1, 0x3a, 0xffffffffffffffff, 0xc, 0x5, 0x3, 0x8, 0x4, 0x1, 0x16})
r5 = getpid()
r6 = gettid()
rt_tgsigqueueinfo$auto(r5, r6, 0x1e, &(0x7f0000000400)={@siginfo_0_0={0x3, 0x1c51, 0xfffffffa, @_sigsys={0x0, 0x2, 0x7}}})
r7 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
move_pages$auto(r7, 0x1002, 0x0, 0x0, 0x0, 0x2)
r8 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/net/afs/addr_prefs\x00', 0x48041, 0x0)
write$auto(r8, 0x0, 0x6)
sendmsg$auto_NL80211_CMD_UPDATE_FT_IES(r1, &(0x7f0000000600)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40040}, 0xc, &(0x7f00000005c0)={&(0x7f00000002c0)={0x2f8, r2, 0x8, 0x70bd26, 0x25dfdbfb, {}, [@NL80211_ATTR_ROAM_SUPPORT={0x4}, @NL80211_ATTR_VHT_CAPABILITY_MASK={0x10, 0xb0, "556e85fe20f76d56f35c4ce6"}, @NL80211_ATTR_DISABLE_VHT={0x4}, @NL80211_ATTR_SPLIT_WIPHY_DUMP={0x4}, @NL80211_ATTR_STA_FLAGS={0x257, 0x11, 0x0, 0x1, [@generic="da8c00f07ac3b1c0c232497ef8c90be392ccb11749cbfea565a353644f71a982cbd13c1b134501008f18a8e53367b183d0fb02f4e2cb037a3da9602c6db54ed58dc70a51e64ac01f5dd997e9293003ffe6346b2d7ce800c995035e144bc54572349888117ba4f3", @typed={0x8, 0x67, 0x0, 0x0, @fd=r1}, @nested={0xc5, 0xe5, 0x0, 0x1, [@generic="2b6a248ad861aadde0f36827546b3b00cdf64b012028900ffd7e04676540911fe17ff32b9dddf0c5a9725ce7a750ad5f655b89c1559c9b4a4e972a23c8c54f795538c692b76dc21209066e9461b3776780aa7a776ac419b71dbb66521ab57cb695166a96790975938fe0c857388a21d6a07cffdb3579429d4f1439e331a67c5f4207e3faabb6ad28c9d865883f7d84e7a320a5db9349a6942ff50208bf99db85c6b5b2c78521d48ab906ee6fdf83a23d6294bcb10d465e68f2", @typed={0x8, 0xdb, 0x0, 0x0, @fd=r3}]}, @nested={0xa8, 0xf8, 0x0, 0x1, [@nested={0x4, 0xeb}, @nested={0x4, 0x14a}, @typed={0x93, 0x2b, 0x0, 0x0, @binary="020036ed25d17982d2494c657778a077ef15f93ba2cade6c2450aead0cdb05f6a0776ed41b823d9f152ca43f25cf9979a15f43ab8f0fdba31ffa75b6f3d872d0b636933768dc538eb6d5edc2976d035826c768d52f2e15d939682233992e7b14ae96d34fdcdd63ac8d3172cfc194c85c283d8db969b92ef5b5043c5d8e941ffa5627a162abaf831d15432ac0b3ec3c"}, @typed={0x8, 0x38, 0x0, 0x0, @uid=r4}]}, @typed={0x4, 0x13e}, @nested={0x6f, 0x144, 0x0, 0x1, [@typed={0x4, 0x13e}, @nested={0x4, 0x1c}, @typed={0x8, 0x98, 0x0, 0x0, @pid=r5}, @generic="54898c54a0865826b5afe0c7c726dd72f576ecf2e341a5da63184eb9a62db9eb072343340fcb134c86c553688f32c078c780019939d7922c33cd36bf143f16f016124ad450b1252c39a0af0a652d7cf4d66190", @typed={0x8, 0x2d, 0x0, 0x0, @pid=r7}]}]}, @NL80211_ATTR_TIMEOUT={0x8, 0x110, 0x1}, @NL80211_ATTR_TDLS_INITIATOR={0x4}, @NL80211_ATTR_MLO_LINK_ID={0x5, 0x139, 0x7}, @NL80211_ATTR_DISABLE_HT={0x4}, @NL80211_ATTR_MAC_ADDRS={0x55, 0xa6, 0x0, 0x1, [@typed={0x8, 0x28, 0x0, 0x0, @fd=r8}, @generic="545bdc55ef5a0ab4a9053d26611875c793ec3831f7573f3e9d2087644b1073b54b3db8c1eaa595a84c63e8f542a56c7398ad45ce053f5bda18", @typed={0x8, 0xa6, 0x0, 0x0, @uid=0xee01}, @nested={0x8, 0x96, 0x0, 0x1, [@nested={0x4, 0x105}]}]}]}, 0x2f8}, 0x1, 0x0, 0x0, 0x20004080}, 0x44000)
setsockopt$auto(r1, 0x11, 0x64, 0x0, 0x7)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r9, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r10, @ANYBLOB="01002dbd7001f9dbca250100000008000a00000000000500070000000000080009009c781e010600020000000000080017"], 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x48080)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x40000)

24.36059ms ago: executing program 0 (id=2602):
r0 = socket(0x11, 0x4, 0x4)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nbd(&(0x7f00000019c0), 0xffffffffffffffff)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0xa, 0x6, 0x0)
uname$auto(0x0)
ioctl$auto(0x3, 0x890c, 0x1)
sendmsg$auto_NBD_CMD_RECONFIGURE(r1, &(0x7f0000001b40)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4}, 0x40010)
sendmsg$auto_NBD_CMD_RECONFIGURE(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="11000000", @ANYRESOCT=r1, @ANYBLOB="000229bd7000fbdbdf25030000000c0004000400000000000000"], 0x20}, 0x1, 0x0, 0x0, 0x80}, 0x40440)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
setsockopt$auto(0x3, 0x0, 0x4, 0x0, 0x28)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f000000fc00), 0x5c1400, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x1)
mmap$auto(0x2, 0x2, 0x1, 0x9b74, 0x5aec, 0x2)
setsockopt$auto(0x3, 0x1, 0x20, 0x0, 0x9)
setitimer$auto(0x2, &(0x7f0000000040)={{0x0, 0x5}, {0x0, 0x8}}, 0x0)
pipe2$auto(&(0x7f0000000000)=<r4=>0xffffffffffffffff, 0x7)
pwrite64$auto(r4, &(0x7f0000000180)='\vX\xb5n\x91p\xe6\x1eRN8\x99\b\x06e\x1cJ\x99\x00:c\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\x80\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2\x03\x00\x00\x00\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#\x1c\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xaf\n1\x80\x1a\xbc_\xef\x8b\t\xcc\xa6\xf2\xc1\"\xact\xee\xc9', 0x94e, 0x3)
epoll_create1$auto(0x3)
unshare$auto(0x40000080)
mmap$auto(0x2, 0x800, 0x0, 0x40000eb1, 0x5, 0x7)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000140), 0x382, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xfffffffffffffffe, 0x8000)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
sendmsg$auto_NBD_CMD_RECONFIGURE(r0, &(0x7f00000003c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000380)={&(0x7f0000000240)={0x134, r2, 0x2, 0x70bd26, 0x25dfdbff, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x5}, @NBD_ATTR_SOCKETS={0xec, 0x7, 0x0, 0x1, [@typed={0xe8, 0x112, 0x0, 0x0, @binary="3b53d8e71e57cc42b9e15b8bab1d674a137259ee07b07788cebfda0653939ffc6725d88d358535af9902248d3151a61f21209400aa27f0164bc2efe0a87f60e51fd018ca83d5742921f9e5669face14b5c84998b33ac54f556f135dca0f16edf12b7f6391c14d4fec23c6fca8e753fe80543e39ca8fad86bc4e0640a74c5f3fa2b6f28b3c749c231a1ff5f60d8ed7ee9c8991da8d41870a58ebe3b28c12b375696f6b49d1a131e843bc8688715494b745fc6c6476dce1b6ce3b08e696853c6e1ce062a3193ccb4026a616ecbbbea632f53d9ba28d5a48fb05a043deaede83b29c4f15961"}]}, @NBD_ATTR_INDEX={0x8, 0x1, 0x4}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x1}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x5}, @NBD_ATTR_INDEX={0x8, 0x1, 0x7}]}, 0x134}, 0x1, 0x0, 0x0, 0x40000}, 0x4000)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_STOP_SCHED_SCAN(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x24040084)
sendmsg$auto_NL80211_CMD_SET_TID_CONFIG(r5, &(0x7f0000000180)={0x0, 0x30000, 0x0, 0x1, 0x0, 0x0, 0x80}, 0x4044000)
socket(0x10, 0x3, 0x0)

0s ago: executing program 1 (id=2603):
r0 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_PAUSE_SET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)={0x34, r1, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@ETHTOOL_A_PAUSE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}, @ETHTOOL_A_PAUSE_RX={0x5, 0x3, 0x4}]}, 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x4040000) (async)
mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000) (async)
sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, 0x0, 0x2000c041) (async)
r2 = socket(0x2a, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000080), 0x6b) (async, rerun: 32)
connect$auto(0x3, &(0x7f00000000c0), 0x55) (async, rerun: 32)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
fcntl$auto(0xffffffffffffffff, 0x401, 0x5) (async)
write$auto(0x3, 0x0, 0xfffffdef) (async)
setsockopt$auto(0xffffffffffffffff, 0x4, 0x8001, 0x0, 0x2) (async)
unshare$auto(0x40000080) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
sysfs$auto(0x2, 0x10000000000002d, 0x0)
syz_genetlink_get_family_id$auto_ovs_datapath(0x0, r2)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
gettid() (async)
connect$auto(0xffffffffffffffff, 0x0, 0x55) (async)
mmap$auto(0x0, 0x5, 0x3, 0x16, 0x3, 0x8000) (async)
sendfile$auto(0x6, 0xffffffffffffffff, 0x0, 0x8000) (async)
unshare$auto(0x40000080)
writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdeb}, 0x8000000000000001)
madvise$auto(0x0, 0x20200, 0x15)

kernel console output (not intermixed with test programs):

_param_near.constprop.0+0x10/0x10
[  316.189121][T10266]  ? calc_src_frames.isra.0+0x187/0x1d0
[  316.194705][T10266]  ? calc_dst_frames.constprop.0.isra.0+0x103/0x130
[  316.201347][T10266]  snd_pcm_oss_change_params_locked+0x1376/0x3a50
[  316.207829][T10266]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  316.214636][T10266]  ? __mutex_lock+0x1cc/0xa60
[  316.219391][T10266]  snd_pcm_oss_get_active_substream+0x168/0x1d0
[  316.225693][T10266]  snd_pcm_oss_ioctl+0x21d5/0x3780
[  316.230854][T10266]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  316.236362][T10266]  ? __fget_files+0x206/0x3a0
[  316.241089][T10266]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  316.246589][T10266]  __x64_sys_ioctl+0x190/0x200
[  316.251413][T10266]  do_syscall_64+0xcd/0x250
[  316.255956][T10266]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  316.261888][T10266] RIP: 0033:0x7f0b41d85d29
[  316.266338][T10266] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  316.286082][T10266] RSP: 002b:00007f0b42ad4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  316.294542][T10266] RAX: ffffffffffffffda RBX: 00007f0b41f75fa0 RCX: 00007f0b41d85d29
[  316.302574][T10266] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 0000000000000003
[  316.310584][T10266] RBP: 00007f0b42ad4090 R08: 0000000000000000 R09: 0000000000000000
[  316.318596][T10266] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  316.326611][T10266] R13: 0000000000000000 R14: 00007f0b41f75fa0 R15: 00007ffdef6d10e8
[  316.334642][T10266]  </TASK>
[  316.634938][T10266] kernel write not supported for file netdevsim2/ports/2/bpf_offloaded_id (pid: 10266 comm: syz.1.1196)
[  316.754735][T10284] netlink: 'syz.2.1202': attribute type 23 has an invalid length.
[  317.433570][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  317.433659][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  317.669931][T10292] kernel write not supported for file netdevsim2/ports/2/bpf_offloaded_id (pid: 10292 comm: syz.1.1203)
[  318.245306][T10311] kernel write not supported for file netdevsim2/ports/2/bpf_offloaded_id (pid: 10311 comm: syz.1.1209)
[  318.580715][T10301] FAULT_INJECTION: forcing a failure.
[  318.580715][T10301] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  318.623920][T10320] FAULT_INJECTION: forcing a failure.
[  318.623920][T10320] name failslab, interval 1, probability 0, space 0, times 0
[  318.663981][   T29] audit: type=1806 audit(4294967358.389:7): xattr="." res=0
[  318.668457][T10301] CPU: 1 UID: 0 PID: 10301 Comm: syz.0.1206 Not tainted 6.13.0-rc3-syzkaller-00026-g59dbb9d81adf #0
[  318.682079][T10301] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  318.693430][T10301] Call Trace:
[  318.693445][T10301]  <TASK>
[  318.693456][T10301]  dump_stack_lvl+0x16c/0x1f0
[  318.693489][T10301]  should_fail_ex+0x497/0x5b0
[  318.709074][T10301]  _copy_from_user+0x2e/0xd0
[  318.713709][T10301]  kstrtouint_from_user+0xd7/0x1c0
[  318.718864][T10301]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  318.724637][T10301]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  318.730316][T10301]  proc_fail_nth_write+0x84/0x250
[  318.735387][T10301]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  318.741065][T10301]  ? ksys_write+0x12b/0x250
[  318.745612][T10301]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  318.751282][T10301]  vfs_write+0x24c/0x1150
[  318.755647][T10301]  ? __pfx_vfs_write+0x10/0x10
[  318.760441][T10301]  ? do_sys_openat2+0xb1/0x1e0
[  318.765243][T10301]  ? __pfx_do_sys_openat2+0x10/0x10
[  318.770491][T10301]  ksys_write+0x12b/0x250
[  318.774854][T10301]  ? __pfx_ksys_write+0x10/0x10
[  318.779760][T10301]  do_syscall_64+0xcd/0x250
[  318.784306][T10301]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  318.790239][T10301] RIP: 0033:0x7f5243785d29
[  318.794682][T10301] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  318.804744][T10318] Process accounting resumed
[  318.814325][T10301] RSP: 002b:00007f5244562038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  318.814355][T10301] RAX: ffffffffffffffda RBX: 00007f5243976080 RCX: 00007f5243785d29
[  318.814371][T10301] RDX: 0000000000010001 RSI: 00000000200000c0 RDI: 0000000000000000
[  318.814387][T10301] RBP: 00007f5244562090 R08: 0000000000000000 R09: 0000000000000000
[  318.814401][T10301] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  318.814416][T10301] R13: 0000000000000000 R14: 00007f5243976080 R15: 00007fff0f176d58
[  318.814448][T10301]  </TASK>
[  318.880619][T10320] CPU: 0 UID: 0 PID: 10320 Comm: syz.1.1212 Not tainted 6.13.0-rc3-syzkaller-00026-g59dbb9d81adf #0
[  318.891444][T10320] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  318.901534][T10320] Call Trace:
[  318.904839][T10320]  <TASK>
[  318.907794][T10320]  dump_stack_lvl+0x16c/0x1f0
[  318.912516][T10320]  should_fail_ex+0x497/0x5b0
[  318.917229][T10320]  ? fs_reclaim_acquire+0xae/0x150
[  318.922381][T10320]  should_failslab+0xc2/0x120
[  318.927100][T10320]  __kmalloc_noprof+0xce/0x4f0
[  318.931910][T10320]  ? kasan_quarantine_put+0x10a/0x240
[  318.937322][T10320]  ? lockdep_hardirqs_on+0x7c/0x110
[  318.942561][T10320]  ? constrain_params_by_rules+0x176/0xca0
[  318.948413][T10320]  constrain_params_by_rules+0x176/0xca0
[  318.954089][T10320]  ? constrain_params_by_rules+0xa0e/0xca0
[  318.959958][T10320]  ? constrain_params_by_rules+0xa13/0xca0
[  318.965811][T10320]  ? __pfx_constrain_params_by_rules+0x10/0x10
[  318.971564][T10318] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10318 comm: syz.3.1211)
[  318.971991][T10320]  ? __pfx_constrain_params_by_rules+0x10/0x10
[  318.989707][T10320]  ? snd_pcm_oss_change_params_locked+0x1376/0x3a50
[  318.998364][T10320]  ? snd_pcm_oss_get_active_substream+0x168/0x1d0
[  318.998410][T10320]  ? snd_interval_refine+0x2fa/0x580
[  318.998452][T10320]  snd_pcm_hw_refine+0x7ec/0xad0
[  318.998491][T10320]  ? __pfx_snd_pcm_hw_refine+0x10/0x10
[  318.998530][T10320]  ? __pfx_snd_pcm_hw_refine+0x10/0x10
[  318.998575][T10320]  snd_pcm_hw_param_first+0x328/0x6b0
[  318.998614][T10320]  snd_pcm_hw_param_near.constprop.0+0x711/0x8f0
[  318.998650][T10320]  ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10
[  318.998683][T10320]  ? calc_src_frames.isra.0+0x187/0x1d0
[  318.998714][T10320]  ? calc_dst_frames.constprop.0.isra.0+0x103/0x130
[  318.998753][T10320]  snd_pcm_oss_change_params_locked+0x1376/0x3a50
[  318.998800][T10320]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  318.998830][T10320]  ? __mutex_lock+0x1cc/0xa60
[  318.998882][T10320]  snd_pcm_oss_get_active_substream+0x168/0x1d0
[  318.998919][T10320]  snd_pcm_oss_ioctl+0x21d5/0x3780
[  318.998955][T10320]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  318.999001][T10320]  ? __fget_files+0x206/0x3a0
[  318.999036][T10320]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  318.999068][T10320]  __x64_sys_ioctl+0x190/0x200
[  318.999116][T10320]  do_syscall_64+0xcd/0x250
[  318.999150][T10320]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  318.999182][T10320] RIP: 0033:0x7f0b41d85d29
[  318.999205][T10320] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  318.999229][T10320] RSP: 002b:00007f0b42ad4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  318.999256][T10320] RAX: ffffffffffffffda RBX: 00007f0b41f75fa0 RCX: 00007f0b41d85d29
[  318.999275][T10320] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 0000000000000003
[  318.999292][T10320] RBP: 00007f0b42ad4090 R08: 0000000000000000 R09: 0000000000000000
[  318.999309][T10320] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  318.999325][T10320] R13: 0000000000000000 R14: 00007f0b41f75fa0 R15: 00007ffdef6d10e8
[  318.999359][T10320]  </TASK>
[  318.999462][    C0] vkms_vblank_simulate: vblank timer overrun
[  319.222577][T10320] kernel write not supported for file netdevsim2/ports/2/bpf_offloaded_id (pid: 10320 comm: syz.1.1212)
[  319.493396][T10244] kernel write not supported for file netdevsim2/ports/2/bpf_offloaded_id (pid: 10244 comm: syz.1.1192)
[  319.763833][T10329] kernel write not supported for file netdevsim2/ports/2/bpf_offloaded_id (pid: 10329 comm: syz.1.1222)
[  319.905739][T10329] Process accounting resumed
[  319.910393][T10329] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10329 comm: syz.1.1222)
[  320.772842][T10340] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10340 comm: syz.1.1217)
[  321.271870][T10358] Process accounting resumed
[  321.510263][T10357] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10357 comm: syz.3.1215)
[  321.611063][T10365] block nbd0: not configured, cannot reconfigure
[  321.795848][T10370] FAULT_INJECTION: forcing a failure.
[  321.795848][T10370] name failslab, interval 1, probability 0, space 0, times 0
[  321.840741][T10367] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10367 comm: syz.1.1220)
[  321.912538][T10370] CPU: 1 UID: 0 PID: 10370 Comm: syz.0.1224 Not tainted 6.13.0-rc3-syzkaller-00026-g59dbb9d81adf #0
[  321.923379][T10370] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  321.933473][T10370] Call Trace:
[  321.936785][T10370]  <TASK>
[  321.939747][T10370]  dump_stack_lvl+0x16c/0x1f0
[  321.944473][T10370]  should_fail_ex+0x497/0x5b0
[  321.949199][T10370]  ? fs_reclaim_acquire+0xae/0x150
[  321.954359][T10370]  should_failslab+0xc2/0x120
[  321.959092][T10370]  __kmalloc_cache_noprof+0x68/0x420
[  321.964436][T10370]  ? snd_pcm_hw_param_first+0x301/0x6b0
[  321.970033][T10370]  ? snd_pcm_hw_param_near.constprop.0+0x73e/0x8f0
[  321.976588][T10370]  snd_pcm_hw_param_near.constprop.0+0xbe/0x8f0
[  321.982888][T10370]  ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10
[  321.989791][T10370]  ? calc_src_frames.isra.0+0x187/0x1d0
[  321.995401][T10370]  ? calc_dst_frames.constprop.0.isra.0+0x103/0x130
[  322.002049][T10370]  snd_pcm_oss_change_params_locked+0x13d7/0x3a50
[  322.008546][T10370]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  322.015371][T10370]  ? __mutex_lock+0x1cc/0xa60
[  322.020121][T10370]  snd_pcm_oss_get_active_substream+0x168/0x1d0
[  322.026505][T10370]  snd_pcm_oss_ioctl+0x21d5/0x3780
[  322.031770][T10370]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  322.037284][T10370]  ? __fget_files+0x206/0x3a0
[  322.042015][T10370]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  322.047528][T10370]  __x64_sys_ioctl+0x190/0x200
[  322.052352][T10370]  do_syscall_64+0xcd/0x250
[  322.056905][T10370]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  322.062844][T10370] RIP: 0033:0x7f5243785d29
[  322.067290][T10370] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  322.086943][T10370] RSP: 002b:00007f5244583038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  322.095404][T10370] RAX: ffffffffffffffda RBX: 00007f5243975fa0 RCX: 00007f5243785d29
[  322.103426][T10370] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 0000000000000003
[  322.111435][T10370] RBP: 00007f5244583090 R08: 0000000000000000 R09: 0000000000000000
[  322.119441][T10370] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  322.127461][T10370] R13: 0000000000000000 R14: 00007f5243975fa0 R15: 00007fff0f176d58
[  322.135487][T10370]  </TASK>
[  322.619410][T10372] Process accounting resumed
[  323.157186][T10378] warn_unsupported: 3 callbacks suppressed
[  323.157207][T10378] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10378 comm: syz.2.1229)
[  323.437893][T10386] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10386 comm: syz.3.1230)
[  323.504299][T10377] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10377 comm: syz.1.1226)
[  323.569231][T10296] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10296 comm: syz.3.1205)
[  323.773771][T10401] FAULT_INJECTION: forcing a failure.
[  323.773771][T10401] name failslab, interval 1, probability 0, space 0, times 0
[  323.814768][T10401] CPU: 1 UID: 0 PID: 10401 Comm: syz.1.1234 Not tainted 6.13.0-rc3-syzkaller-00026-g59dbb9d81adf #0
[  323.825601][T10401] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  323.835746][T10401] Call Trace:
[  323.839051][T10401]  <TASK>
[  323.842015][T10401]  dump_stack_lvl+0x16c/0x1f0
[  323.846912][T10401]  should_fail_ex+0x497/0x5b0
[  323.851632][T10401]  ? fs_reclaim_acquire+0xae/0x150
[  323.856788][T10401]  should_failslab+0xc2/0x120
[  323.861511][T10401]  __kmalloc_noprof+0xce/0x4f0
[  323.866323][T10401]  ? unwind_get_return_address+0x59/0xa0
[  323.871994][T10401]  ? constrain_params_by_rules+0x176/0xca0
[  323.877850][T10401]  constrain_params_by_rules+0x176/0xca0
[  323.883533][T10401]  ? stack_trace_save+0x95/0xd0
[  323.888434][T10401]  ? stack_depot_save_flags+0x28/0x9e0
[  323.893939][T10401]  ? __pfx_constrain_params_by_rules+0x10/0x10
[  323.900144][T10401]  ? __kasan_kmalloc+0xaa/0xb0
[  323.904947][T10401]  ? snd_pcm_hw_param_near.constprop.0+0xbe/0x8f0
[  323.911405][T10401]  ? snd_pcm_oss_change_params_locked+0x13d7/0x3a50
[  323.918035][T10401]  ? snd_pcm_oss_get_active_substream+0x168/0x1d0
[  323.924506][T10401]  ? snd_interval_refine+0x2fa/0x580
[  323.929846][T10401]  snd_pcm_hw_refine+0x7ec/0xad0
[  323.934842][T10401]  ? __pfx_snd_pcm_hw_refine+0x10/0x10
[  323.940357][T10401]  ? _snd_pcm_hw_param_min+0x259/0x630
[  323.945865][T10401]  snd_pcm_hw_param_near.constprop.0+0x597/0x8f0
[  323.952245][T10401]  ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10
[  323.959140][T10401]  ? calc_src_frames.isra.0+0x187/0x1d0
[  323.964740][T10401]  ? calc_dst_frames.constprop.0.isra.0+0x103/0x130
[  323.971382][T10401]  snd_pcm_oss_change_params_locked+0x13d7/0x3a50
[  323.977859][T10401]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  323.984665][T10401]  ? __mutex_lock+0x1cc/0xa60
[  323.989408][T10401]  snd_pcm_oss_get_active_substream+0x168/0x1d0
[  323.995702][T10401]  snd_pcm_oss_ioctl+0x21d5/0x3780
[  324.000866][T10401]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  324.006383][T10401]  ? __fget_files+0x206/0x3a0
[  324.011115][T10401]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  324.016629][T10401]  __x64_sys_ioctl+0x190/0x200
[  324.021445][T10401]  do_syscall_64+0xcd/0x250
[  324.025992][T10401]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  324.031933][T10401] RIP: 0033:0x7f0b41d85d29
[  324.036377][T10401] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  324.056026][T10401] RSP: 002b:00007f0b42ad4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  324.064482][T10401] RAX: ffffffffffffffda RBX: 00007f0b41f75fa0 RCX: 00007f0b41d85d29
[  324.072492][T10401] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 0000000000000003
[  324.080503][T10401] RBP: 00007f0b42ad4090 R08: 0000000000000000 R09: 0000000000000000
[  324.088509][T10401] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  324.096519][T10401] R13: 0000000000000000 R14: 00007f0b41f75fa0 R15: 00007ffdef6d10e8
[  324.104546][T10401]  </TASK>
[  324.248402][T10392] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10392 comm: syz.2.1231)
[  324.383318][T10401] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10401 comm: syz.1.1234)
[  324.464789][T10406] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10406 comm: syz.2.1235)
[  324.776632][T10403] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10403 comm: syz.3.1232)
[  325.044074][T10412] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10412 comm: syz.1.1237)
[  325.049999][T10422] Process accounting resumed
[  325.082765][T10422] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10422 comm: syz.0.1236)
[  325.283611][T10428] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1241'.
[  325.351841][T10431] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1241'.
[  325.377385][   T29] audit: type=1800 audit(4294967365.099:8): pid=10434 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1242" name="features" dev="configfs" ino=23990 res=0 errno=0
[  325.443371][T10435] netlink: 334 bytes leftover after parsing attributes in process `syz.0.1242'.
[  325.615091][T10442] delete_channel: no stack
[  326.200612][T10458] netlink: 138 bytes leftover after parsing attributes in process `syz.0.1246'.
[  326.492324][T10454] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1244'.
[  327.631330][T10486] program syz.3.1252 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  328.216844][T10493] warn_unsupported: 18 callbacks suppressed
[  328.216866][T10493] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10493 comm: syz.0.1255)
[  328.302035][T10486] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10486 comm: syz.3.1252)
[  328.618603][T10497] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10497 comm: syz.1.1254)
[  328.639646][T10469] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10469 comm: syz.2.1249)
[  328.693617][T10510] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10510 comm: syz.0.1264)
[  328.902632][T10522] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10522 comm: syz.1.1257)
[  329.051055][T10517] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10517 comm: syz.0.1258)
[  329.303903][T10531] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10531 comm: syz.0.1261)
[  329.470816][T10514] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10514 comm: syz.3.1256)
[  329.921350][T10530] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10530 comm: syz.1.1260)
[  330.292247][T10551] FAULT_INJECTION: forcing a failure.
[  330.292247][T10551] name failslab, interval 1, probability 0, space 0, times 0
[  330.345301][T10551] CPU: 0 UID: 0 PID: 10551 Comm: syz.3.1266 Not tainted 6.13.0-rc3-syzkaller-00026-g59dbb9d81adf #0
[  330.356140][T10551] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  330.366243][T10551] Call Trace:
[  330.369553][T10551]  <TASK>
[  330.372520][T10551]  dump_stack_lvl+0x16c/0x1f0
[  330.377255][T10551]  should_fail_ex+0x497/0x5b0
[  330.381987][T10551]  ? fs_reclaim_acquire+0xae/0x150
[  330.387148][T10551]  should_failslab+0xc2/0x120
[  330.391900][T10551]  __kmalloc_cache_node_noprof+0x6f/0x3f0
[  330.397670][T10551]  ? __get_vm_area_node+0x101/0x2f0
[  330.402917][T10551]  __get_vm_area_node+0x101/0x2f0
[  330.407992][T10551]  __vmalloc_node_range_noprof+0x26a/0x1530
[  330.413946][T10551]  ? __snd_dma_alloc_pages+0x50/0x90
[  330.419291][T10551]  ? find_held_lock+0x2d/0x110
[  330.424116][T10551]  ? do_alloc_pages+0xd3/0x270
[  330.428943][T10551]  ? __pfx_lock_release+0x10/0x10
[  330.434016][T10551]  ? __snd_dma_alloc_pages+0x50/0x90
[  330.439352][T10551]  ? __mutex_lock+0x1cc/0xa60
[  330.444080][T10551]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  330.450458][T10551]  ? __mutex_unlock_slowpath+0x164/0x690
[  330.456147][T10551]  ? __snd_dma_alloc_pages+0x50/0x90
[  330.461475][T10551]  vmalloc_noprof+0x6b/0x90
[  330.466015][T10551]  ? __snd_dma_alloc_pages+0x50/0x90
[  330.471358][T10551]  ? __pfx_snd_dma_vmalloc_alloc+0x10/0x10
[  330.477218][T10551]  __snd_dma_alloc_pages+0x50/0x90
[  330.482389][T10551]  snd_dma_alloc_dir_pages+0x151/0x240
[  330.487906][T10551]  do_alloc_pages+0x115/0x270
[  330.492660][T10551]  snd_pcm_lib_malloc_pages+0x3df/0x980
[  330.498269][T10551]  snd_pcm_hw_params+0x15e6/0x1b20
[  330.503436][T10551]  ? snd_pcm_hw_param_near.constprop.0+0x73e/0x8f0
[  330.509995][T10551]  ? __pfx_snd_pcm_hw_params+0x10/0x10
[  330.515513][T10551]  ? snd_pcm_hw_param_near.constprop.0+0x743/0x8f0
[  330.522081][T10551]  ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10
[  330.528984][T10551]  snd_pcm_kernel_ioctl+0x147/0x2e0
[  330.534245][T10551]  snd_pcm_oss_change_params_locked+0x1410/0x3a50
[  330.540726][T10551]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  330.547536][T10551]  ? __mutex_lock+0x1cc/0xa60
[  330.552289][T10551]  snd_pcm_oss_get_active_substream+0x168/0x1d0
[  330.558589][T10551]  snd_pcm_oss_ioctl+0x21d5/0x3780
[  330.563765][T10551]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  330.569274][T10551]  ? __fget_files+0x206/0x3a0
[  330.574018][T10551]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  330.579583][T10551]  __x64_sys_ioctl+0x190/0x200
[  330.584491][T10551]  do_syscall_64+0xcd/0x250
[  330.589041][T10551]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  330.594986][T10551] RIP: 0033:0x7fed9b585d29
[  330.599433][T10551] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  330.619255][T10551] RSP: 002b:00007fed9b3d8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  330.627738][T10551] RAX: ffffffffffffffda RBX: 00007fed9b776080 RCX: 00007fed9b585d29
[  330.635751][T10551] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 0000000000000003
[  330.643764][T10551] RBP: 00007fed9b3d8090 R08: 0000000000000000 R09: 0000000000000000
[  330.651776][T10551] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  330.659789][T10551] R13: 0000000000000001 R14: 00007fed9b776080 R15: 00007ffe805e8878
[  330.667823][T10551]  </TASK>
[  330.671027][    C0] vkms_vblank_simulate: vblank timer overrun
[  330.748167][T10551] syz.3.1266: vmalloc error: size 2097152, vm_struct allocation failed, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1
[  330.780612][T10551] CPU: 0 UID: 0 PID: 10551 Comm: syz.3.1266 Not tainted 6.13.0-rc3-syzkaller-00026-g59dbb9d81adf #0
[  330.791454][T10551] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  330.801557][T10551] Call Trace:
[  330.804868][T10551]  <TASK>
[  330.807865][T10551]  dump_stack_lvl+0x16c/0x1f0
[  330.812588][T10551]  warn_alloc+0x24d/0x3a0
[  330.816970][T10551]  ? __pfx_warn_alloc+0x10/0x10
[  330.821858][T10551]  ? rcu_is_watching+0x12/0xc0
[  330.826666][T10551]  ? __kmalloc_cache_node_noprof+0x245/0x3f0
[  330.832703][T10551]  ? __kasan_kmalloc+0x8a/0xb0
[  330.837508][T10551]  ? __get_vm_area_node+0x1dc/0x2f0
[  330.842754][T10551]  __vmalloc_node_range_noprof+0xd27/0x1530
[  330.848690][T10551]  ? find_held_lock+0x2d/0x110
[  330.853501][T10551]  ? do_alloc_pages+0xd3/0x270
[  330.858316][T10551]  ? __pfx_lock_release+0x10/0x10
[  330.863378][T10551]  ? __snd_dma_alloc_pages+0x50/0x90
[  330.868716][T10551]  ? __mutex_lock+0x1cc/0xa60
[  330.873447][T10551]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  330.879822][T10551]  ? __mutex_unlock_slowpath+0x164/0x690
[  330.885506][T10551]  ? __snd_dma_alloc_pages+0x50/0x90
[  330.890842][T10551]  vmalloc_noprof+0x6b/0x90
[  330.895389][T10551]  ? __snd_dma_alloc_pages+0x50/0x90
[  330.900725][T10551]  ? __pfx_snd_dma_vmalloc_alloc+0x10/0x10
[  330.906582][T10551]  __snd_dma_alloc_pages+0x50/0x90
[  330.911749][T10551]  snd_dma_alloc_dir_pages+0x151/0x240
[  330.917267][T10551]  do_alloc_pages+0x115/0x270
[  330.922002][T10551]  snd_pcm_lib_malloc_pages+0x3df/0x980
[  330.927598][T10551]  snd_pcm_hw_params+0x15e6/0x1b20
[  330.932759][T10551]  ? snd_pcm_hw_param_near.constprop.0+0x73e/0x8f0
[  330.939314][T10551]  ? __pfx_snd_pcm_hw_params+0x10/0x10
[  330.944826][T10551]  ? snd_pcm_hw_param_near.constprop.0+0x743/0x8f0
[  330.951376][T10551]  ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10
[  330.958276][T10551]  snd_pcm_kernel_ioctl+0x147/0x2e0
[  330.963531][T10551]  snd_pcm_oss_change_params_locked+0x1410/0x3a50
[  330.970031][T10551]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  330.976841][T10551]  ? __mutex_lock+0x1cc/0xa60
[  330.981591][T10551]  snd_pcm_oss_get_active_substream+0x168/0x1d0
[  330.987885][T10551]  snd_pcm_oss_ioctl+0x21d5/0x3780
[  330.993057][T10551]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  330.998559][T10551]  ? __fget_files+0x206/0x3a0
[  331.003372][T10551]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  331.008885][T10551]  __x64_sys_ioctl+0x190/0x200
[  331.013714][T10551]  do_syscall_64+0xcd/0x250
[  331.018262][T10551]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  331.024199][T10551] RIP: 0033:0x7fed9b585d29
[  331.028663][T10551] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  331.048312][T10551] RSP: 002b:00007fed9b3d8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  331.056860][T10551] RAX: ffffffffffffffda RBX: 00007fed9b776080 RCX: 00007fed9b585d29
[  331.064879][T10551] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 0000000000000003
[  331.072895][T10551] RBP: 00007fed9b3d8090 R08: 0000000000000000 R09: 0000000000000000
[  331.080911][T10551] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  331.088924][T10551] R13: 0000000000000001 R14: 00007fed9b776080 R15: 00007ffe805e8878
[  331.096965][T10551]  </TASK>
[  331.100129][    C0] vkms_vblank_simulate: vblank timer overrun
[  331.218474][T10551] Mem-Info:
[  331.241577][T10551] active_anon:56038 inactive_anon:0 isolated_anon:0
[  331.241577][T10551]  active_file:20988 inactive_file:42286 isolated_file:0
[  331.241577][T10551]  unevictable:768 dirty:1537 writeback:0
[  331.241577][T10551]  slab_reclaimable:10953 slab_unreclaimable:93564
[  331.241577][T10551]  mapped:38975 shmem:48410 pagetables:874
[  331.241577][T10551]  sec_pagetables:0 bounce:0
[  331.241577][T10551]  kernel_misc_reclaimable:0
[  331.241577][T10551]  free:1280875 free_pcp:1551 free_cma:0
[  331.287578][T10551] Node 0 active_anon:225552kB inactive_anon:0kB active_file:83952kB inactive_file:169060kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:155900kB dirty:6144kB writeback:0kB shmem:193404kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11652kB pagetables:3496kB sec_pagetables:0kB all_unreclaimable? no
[  331.461716][T10551] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:84kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  331.491924][    C0] vkms_vblank_simulate: vblank timer overrun
[  331.508437][T10551] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  331.551872][T10551] lowmem_reserve[]: 0 2465 2466 0 0
[  331.557260][T10551] Node 0 DMA32 free:1198908kB boost:0kB min:34200kB low:42748kB high:51296kB reserved_highatomic:0KB active_anon:222512kB inactive_anon:0kB active_file:83952kB inactive_file:168232kB unevictable:1536kB writepending:6144kB present:3129332kB managed:2551336kB mlocked:0kB bounce:0kB free_pcp:8176kB local_pcp:1168kB free_cma:0kB
[  331.601498][T10551] lowmem_reserve[]: 0 0 0 0 0
[  331.606662][T10551] Node 0 Normal free:0kB boost:0kB min:8kB low:8kB high:8kB reserved_highatomic:0KB active_anon:40kB inactive_anon:0kB active_file:0kB inactive_file:828kB unevictable:0kB writepending:0kB present:1048580kB managed:876kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB
[  331.633472][    C0] vkms_vblank_simulate: vblank timer overrun
[  331.652952][T10551] lowmem_reserve[]: 0 0 0 0 0
[  331.657760][T10551] Node 1 Normal free:3908396kB boost:0kB min:55688kB low:69608kB high:83528kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:84kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:116kB local_pcp:108kB free_cma:0kB
[  331.794096][T10551] lowmem_reserve[]: 0 0 0 0 0
[  331.798912][T10551] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  331.862586][T10551] Node 0 DMA32: 1*4kB (E) 639*8kB (UME) 383*16kB (UME) 263*32kB (ME) 1090*64kB (UME) 682*128kB (UME) 239*256kB (UME) 86*512kB (UME) 29*1024kB (UME) 4*2048kB (UM) 214*4096kB (UME) = 1196364kB
[  331.966617][T10551] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  332.011677][T10551] Node 1 Normal: 183*4kB (UME) 82*8kB (UME) 34*16kB (UME) 201*32kB (UME) 106*64kB (UME) 32*128kB (UME) 14*256kB (UME) 5*512kB (UM) 4*1024kB (UME) 2*2048kB (UE) 946*4096kB (M) = 3908396kB
[  332.051514][T10551] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  332.066963][T10551] Node 0 hugepages_total=2 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  332.076530][T10551] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  332.086296][T10551] Node 1 hugepages_total=2 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  332.096406][T10551] 104125 total pagecache pages
[  332.101514][T10551] 41 pages in swap cache
[  332.105787][T10551] Free swap  = 122464kB
[  332.110562][T10551] Total swap = 124996kB
[  332.114815][T10551] 2097051 pages RAM
[  332.118967][T10551] 0 pages HighMem/MovableOnly
[  332.123831][T10551] 427367 pages reserved
[  332.128017][T10551] 0 pages cma reserved
[  332.818068][T10594] program syz.2.1276 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  333.442858][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  333.469087][T10602] warn_unsupported: 19 callbacks suppressed
[  333.469102][T10602] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10602 comm: syz.1.1280)
[  333.599432][T10586] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10586 comm: syz.3.1274)
[  333.618299][T10588] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10588 comm: syz.2.1276)
[  333.708621][T10613] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10613 comm: syz.1.1281)
[  333.848612][T10592] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10592 comm: syz.0.1277)
[  333.925341][T10618] ICMPv6: process `syz.3.1282' is using deprecated sysctl (syscall) net.ipv6.neigh.virt_wifi0.retrans_time - use net.ipv6.neigh.virt_wifi0.retrans_time_ms instead
[  334.029255][T10617] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10617 comm: syz.3.1282)
[  334.100079][T10630] FAULT_INJECTION: forcing a failure.
[  334.100079][T10630] name failslab, interval 1, probability 0, space 0, times 0
[  334.183132][T10630] CPU: 0 UID: 0 PID: 10630 Comm: syz.0.1285 Not tainted 6.13.0-rc3-syzkaller-00026-g59dbb9d81adf #0
[  334.193969][T10630] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  334.204057][T10630] Call Trace:
[  334.207374][T10630]  <TASK>
[  334.210335][T10630]  dump_stack_lvl+0x16c/0x1f0
[  334.215064][T10630]  should_fail_ex+0x497/0x5b0
[  334.219781][T10630]  ? fs_reclaim_acquire+0xae/0x150
[  334.224934][T10630]  should_failslab+0xc2/0x120
[  334.229653][T10630]  __kmalloc_cache_noprof+0x68/0x420
[  334.234982][T10630]  snd_pcm_oss_change_params_locked+0x20c/0x3a50
[  334.241355][T10630]  ? rcu_is_watching+0x12/0xc0
[  334.246163][T10630]  ? trace_contention_end+0xee/0x140
[  334.250775][T10539] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10539 comm: syz.0.1262)
[  334.251468][T10630]  ? __mutex_lock+0x1cc/0xa60
[  334.251501][T10630]  ? __pfx___lock_acquire+0x10/0x10
[  334.272959][T10630]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  334.279773][T10630]  ? __pfx___mutex_lock+0x10/0x10
[  334.284857][T10630]  ? snd_pcm_stream_unlock_irq+0x90/0xb0
[  334.290540][T10630]  snd_pcm_oss_make_ready+0xe6/0x1b0
[  334.295878][T10630]  snd_pcm_oss_set_trigger.isra.0+0x211/0x6b0
[  334.301997][T10630]  ? lockdep_hardirqs_on+0x7c/0x110
[  334.307247][T10630]  snd_pcm_oss_poll+0x51f/0xac0
[  334.312146][T10630]  ? lock_acquire+0x2f/0xb0
[  334.316713][T10630]  ? __pfx_snd_pcm_oss_poll+0x10/0x10
[  334.322143][T10630]  ? __pfx_snd_pcm_oss_poll+0x10/0x10
[  334.327560][T10630]  do_select+0xd88/0x17e0
[  334.331965][T10630]  ? __pfx_do_select+0x10/0x10
[  334.336771][T10630]  ? __pfx_mark_lock+0x10/0x10
[  334.341588][T10630]  ? mark_lock+0xb5/0xc60
[  334.345968][T10630]  ? mark_lock+0xb5/0xc60
[  334.350341][T10630]  ? __pfx_mark_lock+0x10/0x10
[  334.355163][T10630]  ? __pfx_pollwake+0x10/0x10
[  334.359934][T10630]  ? trace_lock_acquire+0x14e/0x1f0
[  334.365188][T10630]  ? lock_acquire+0x2f/0xb0
[  334.369746][T10630]  ? __might_fault+0xe3/0x190
[  334.374475][T10630]  ? __might_fault+0xe3/0x190
[  334.379209][T10630]  ? core_sys_select+0x3a6/0xa10
[  334.384189][T10630]  core_sys_select+0x3a6/0xa10
[  334.389004][T10630]  ? __pfx_core_sys_select+0x10/0x10
[  334.394411][T10630]  ? get_pid_task+0xfc/0x250
[  334.399049][T10630]  ? set_user_sigmask+0x217/0x2a0
[  334.404087][T10630]  ? __pfx_set_user_sigmask+0x10/0x10
[  334.409473][T10630]  do_pselect.constprop.0+0x1a0/0x1f0
[  334.414862][T10630]  ? __pfx_do_pselect.constprop.0+0x10/0x10
[  334.420779][T10630]  __x64_sys_pselect6+0x183/0x240
[  334.425819][T10630]  ? __pfx___x64_sys_pselect6+0x10/0x10
[  334.431387][T10630]  do_syscall_64+0xcd/0x250
[  334.435911][T10630]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  334.441820][T10630] RIP: 0033:0x7f5243785d29
[  334.446242][T10630] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  334.465863][T10630] RSP: 002b:00007f5244562038 EFLAGS: 00000246 ORIG_RAX: 000000000000010e
[  334.474289][T10630] RAX: ffffffffffffffda RBX: 00007f5243976080 RCX: 00007f5243785d29
[  334.482274][T10630] RDX: 00000000200025c0 RSI: 0000000000000000 RDI: 0000000000000005
[  334.490309][T10630] RBP: 00007f5244562090 R08: 0000000000000000 R09: 0000000000000000
[  334.498295][T10630] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  334.506275][T10630] R13: 0000000000000000 R14: 00007f5243976080 R15: 00007fff0f176d58
[  334.514272][T10630]  </TASK>
[  334.517365][    C0] vkms_vblank_simulate: vblank timer overrun
[  334.674510][T10627] IPVS: length: 11322 != 999607072
[  334.802153][T10626] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10626 comm: syz.0.1285)
[  334.828007][T10634] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10634 comm: syz.2.1284)
[  335.048396][T10631] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10631 comm: syz.3.1286)
[  335.557809][T10659] program syz.1.1293 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  336.388260][T10694] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1298'.
[  337.217904][T10708] syz.0.1303 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  338.716871][T10737] warn_unsupported: 24 callbacks suppressed
[  338.716893][T10737] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10737 comm: syz.3.1309)
[  338.830883][T10720] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10720 comm: syz.0.1306)
[  339.038886][T10738] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10738 comm: syz.3.1311)
[  339.043078][T10734] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10734 comm: syz.2.1308)
[  339.514321][T10691] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10691 comm: syz.1.1300)
[  339.690548][T10744] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10744 comm: syz.2.1313)
[  339.954859][T10754] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10754 comm: syz.1.1315)
[  340.233291][T10758] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10758 comm: syz.1.1316)
[  340.246957][T10756] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10756 comm: syz.2.1314)
[  340.479106][T10763] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10763 comm: syz.1.1317)
[  341.991794][ T5845] Bluetooth: hci2: ISO packet for unknown connection handle 0
[  342.531654][T10815] ptrace attach of "./syz-executor exec"[5837] was attempted by "./syz-executor exec"[10815]
[  343.737346][T10841] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1342'.
[  343.755074][T10832] warn_unsupported: 27 callbacks suppressed
[  343.755094][T10832] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10832 comm: syz.1.1341)
[  343.776713][T10841] geneve1: entered allmulticast mode
[  343.871205][T10842] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10842 comm: syz.1.1343)
[  344.022262][T10847] can: request_module (can-proto-0) failed.
[  344.329543][T10835] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10835 comm: syz.3.1338)
[  344.406271][T10845] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10845 comm: syz.0.1340)
[  344.586704][T10857] netlink: 334 bytes leftover after parsing attributes in process `syz.0.1346'.
[  344.606617][T10853] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10853 comm: syz.3.1345)
[  344.664945][T10856] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10856 comm: syz.0.1346)
[  344.834386][T10858] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10858 comm: syz.3.1347)
[  345.018216][T10867] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10867 comm: syz.3.1349)
[  345.206412][T10861] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10861 comm: syz.0.1348)
[  345.305827][T10869] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10869 comm: syz.0.1348)
[  346.540747][T10885] openvswitch: netlink: Flow key attr not present in new flow.
[  347.538614][T10901] erspan0: entered allmulticast mode
[  348.875454][T10939] warn_unsupported: 22 callbacks suppressed
[  348.875474][T10939] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10939 comm: syz.0.1370)
[  348.887296][T10936] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10936 comm: syz.3.1369)
[  348.944103][T10944] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10944 comm: syz.2.1368)
[  349.010613][T10851] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10851 comm: syz.1.1344)
[  349.139909][T10947] Process accounting paused
[  349.456709][T10932] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10932 comm: syz.2.1368)
[  349.510886][T10924] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10924 comm: syz.1.1365)
[  349.711197][T10962] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10962 comm: syz.2.1374)
[  349.850591][T10948] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10948 comm: syz.0.1371)
[  349.970330][T10968] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10968 comm: syz.2.1378)
[  350.289670][T10972] Process accounting paused
[  351.583036][T10984] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 10984 comm: syz.0.1379)
[  353.376718][T10978] Process accounting paused
[  354.176681][T11053] warn_unsupported: 3 callbacks suppressed
[  354.176703][T11053] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 11053 comm: syz.0.1396)
[  354.560839][T11072] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 11072 comm: syz.0.1402)
[  355.496503][T11085] Process accounting paused
[  356.824813][T11131] erspan0: entered allmulticast mode
[  356.848392][T11135] can: request_module (can-proto-0) failed.
[  357.976341][T11175] binder: 11174:11175 ioctl c0306201 9 returned -14
[  359.063520][T11194] erspan0: entered allmulticast mode
[  364.909899][T11337] syz.3.1470 (11337): attempted to duplicate a private mapping with mremap.  This is not supported.
[  373.240309][T11563] can: request_module (can-proto-4) failed.
[  377.602251][T11647] ucma_write: process 1204 (syz.1.1544) changed security contexts after opening file descriptor, this is not allowed.
[  378.883892][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  378.890560][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  380.547435][T11699] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  380.583818][T11699] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  380.633392][T11687] syz.1.1557 (11687) used greatest stack depth: 20224 bytes left
[  380.835024][T11702] Process accounting resumed
[  380.839680][T11702] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 11702 comm: syz.1.1557)
[  381.457468][   T29] audit: type=1800 audit(4294967421.177:9): pid=11719 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1568" name="features" dev="configfs" ino=28844 res=0 errno=0
[  381.477741][    C0] vkms_vblank_simulate: vblank timer overrun
[  381.561191][T11719] Process accounting resumed
[  381.653294][T11724] program syz.2.1570 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  382.669168][T11749] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1576'.
[  382.701818][T11749] ›: renamed from veth0_vlan (while UP)
[  382.761744][T11734] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 11734 comm: syz.1.1566)
[  382.932146][T11751] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1577'.
[  382.973152][T11759] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1577'.
[  384.410973][T11800] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1590'.
[  386.199667][T11764] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 11764 comm: syz.1.1578)
[  387.744676][T11824] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1595'.
[  388.046506][T11808] Process accounting resumed
[  388.051164][T11808] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 11808 comm: syz.0.1593)
[  388.064637][T11829] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1599'.
[  388.266551][T11834] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 11834 comm: syz.0.1601)
[  388.583524][T11840] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 11840 comm: syz.0.1603)
[  389.296571][T11854] nbd: must specify a size in bytes for the device
[  390.978441][T11846] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 11846 comm: syz.0.1605)
[  391.194840][T11815] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 11815 comm: syz.1.1594)
[  391.949878][T11879] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 11879 comm: syz.0.1613)
[  392.468569][T11883] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 11883 comm: syz.0.1618)
[  394.623663][T11908] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 11908 comm: syz.0.1620)
[  395.234968][T11894] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 11894 comm: syz.0.1620)
[  395.293281][   T29] audit: type=1326 audit(4294967435.017:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11920 comm="syz.3.1629" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fed9b585d29 code=0x0
[  395.351533][   T29] audit: type=1326 audit(4294967435.047:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11920 comm="syz.3.1629" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fed9b585d29 code=0x0
[  395.586145][T11877] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 11877 comm: syz.1.1615)
[  395.887083][T11939] netlink: 326 bytes leftover after parsing attributes in process `syz.0.1633'.
[  396.005193][T11939] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 11939 comm: syz.0.1633)
[  396.322363][T11942] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1635'.
[  396.360254][T11944] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 11944 comm: syz.0.1636)
[  396.691706][T11942] hsr_slave_1 (unregistering): left promiscuous mode
[  397.126745][T11953] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 11953 comm: syz.0.1638)
[  397.284206][T11960] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1640'.
[  397.407252][T11960] veth0_macvtap: left promiscuous mode
[  397.414248][T11960] macvtap0: entered allmulticast mode
[  397.501202][T11963] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 11963 comm: syz.0.1641)
[  398.049929][T11975] HfR: entered promiscuous mode
[  398.094934][T11975] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1644'.
[  398.191076][T11891] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 11891 comm: syz.0.1620)
[  399.375814][T11970] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 11970 comm: syz.0.1650)
[  399.644458][T11993] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 11993 comm: syz.0.1649)
[  399.841295][T11995] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 11995 comm: syz.0.1651)
[  400.127854][T11952] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 11952 comm: syz.1.1634)
[  400.232830][T12000] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12000 comm: syz.0.1652)
[  400.791711][T12018] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1656'.
[  401.210976][T12004] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12004 comm: syz.0.1654)
[  401.678413][T12036] openvswitch: netlink: Flow key attr not present in new flow.
[  401.684806][T12026] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12026 comm: syz.0.1659)
[  402.236927][T12015] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12015 comm: syz.1.1656)
[  402.239944][T12041] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12041 comm: syz.0.1670)
[  402.560772][T12051] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12051 comm: syz.0.1664)
[  402.828250][T12056] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12056 comm: syz.0.1666)
[  403.156622][T12066] openvswitch: netlink: Geneve option length err (len 256, max 255).
[  403.727826][T12059] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12059 comm: syz.0.1668)
[  404.715305][T12072] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12072 comm: syz.0.1673)
[  404.935378][T12085] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12085 comm: syz.0.1676)
[  406.466192][T12092] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12092 comm: syz.0.1677)
[  406.935799][T12103] FAULT_INJECTION: forcing a failure.
[  406.935799][T12103] name failslab, interval 1, probability 0, space 0, times 0
[  407.152981][T12103] CPU: 1 UID: 0 PID: 12103 Comm: syz.2.1680 Not tainted 6.13.0-rc3-syzkaller-00026-g59dbb9d81adf #0
[  407.163819][T12103] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  407.173903][T12103] Call Trace:
[  407.177205][T12103]  <TASK>
[  407.180158][T12103]  dump_stack_lvl+0x16c/0x1f0
[  407.184885][T12103]  should_fail_ex+0x497/0x5b0
[  407.189605][T12103]  ? fs_reclaim_acquire+0xae/0x150
[  407.194757][T12103]  should_failslab+0xc2/0x120
[  407.199483][T12103]  __kmalloc_cache_noprof+0x68/0x420
[  407.204823][T12103]  snd_pcm_oss_change_params_locked+0x1d6/0x3a50
[  407.211188][T12103]  ? snd_pcm_oss_write+0x482/0xa00
[  407.216333][T12103]  ? rcu_is_watching+0x12/0xc0
[  407.221133][T12103]  ? trace_contention_end+0xee/0x140
[  407.226444][T12103]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  407.230102][T11375] syz.1.1482 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  407.233225][T12103]  ? snd_pcm_oss_write+0x482/0xa00
[  407.233263][T12103]  ? __lock_acquire+0xcc5/0x3c40
[  407.233308][T12103]  snd_pcm_oss_make_ready_locked+0xb7/0x130
[  407.233346][T12103]  snd_pcm_oss_write+0x4a3/0xa00
[  407.264248][T12103]  ? security_file_permission+0x71/0x210
[  407.269925][T12103]  ? rw_verify_area+0xd0/0x700
[  407.274726][T12103]  ? __pfx_snd_pcm_oss_write+0x10/0x10
[  407.280212][T12103]  vfs_write+0x24c/0x1150
[  407.284560][T12103]  ? __fget_files+0x1fc/0x3a0
[  407.289253][T12103]  ? __pfx_lock_release+0x10/0x10
[  407.294297][T12103]  ? __pfx_vfs_write+0x10/0x10
[  407.299094][T12103]  ? lock_acquire+0x2f/0xb0
[  407.303612][T12103]  ? __fget_files+0x40/0x3a0
[  407.308225][T12103]  ? __fget_files+0x206/0x3a0
[  407.312927][T12103]  ksys_write+0x12b/0x250
[  407.317293][T12103]  ? __pfx_ksys_write+0x10/0x10
[  407.322177][T12103]  do_syscall_64+0xcd/0x250
[  407.326713][T12103]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  407.332634][T12103] RIP: 0033:0x7fea78d85d29
[  407.337077][T12103] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  407.356747][T12103] RSP: 002b:00007fea79bee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  407.365214][T12103] RAX: ffffffffffffffda RBX: 00007fea78f75fa0 RCX: 00007fea78d85d29
[  407.373221][T12103] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003
[  407.381221][T12103] RBP: 00007fea79bee090 R08: 0000000000000000 R09: 0000000000000000
[  407.389210][T12103] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  407.397209][T12103] R13: 0000000000000000 R14: 00007fea78f75fa0 R15: 00007ffe2b37a6e8
[  407.405234][T12103]  </TASK>
[  407.408265][T11375] CPU: 0 UID: 0 PID: 11375 Comm: syz.1.1482 Not tainted 6.13.0-rc3-syzkaller-00026-g59dbb9d81adf #0
[  407.408298][    C1] vkms_vblank_simulate: vblank timer overrun
[  407.419036][T11375] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  407.435096][T11375] Call Trace:
[  407.438407][T11375]  <TASK>
[  407.441368][T11375]  dump_stack_lvl+0x16c/0x1f0
[  407.446074][T11375]  dump_header+0x101/0x900
[  407.450525][T11375]  oom_kill_process+0x270/0xa60
[  407.455409][T11375]  ? mem_cgroup_out_of_memory+0x8d/0x270
[  407.461083][T11375]  out_of_memory+0x351/0x1700
[  407.465779][T11375]  ? __pfx_out_of_memory+0x10/0x10
[  407.470897][T11375]  ? rcu_read_unlock+0x17/0x60
[  407.475675][T11375]  ? find_held_lock+0x2d/0x110
[  407.480459][T11375]  mem_cgroup_out_of_memory+0x207/0x270
[  407.486011][T11375]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  407.492090][T11375]  ? do_raw_spin_unlock+0x172/0x230
[  407.497302][T11375]  try_charge_memcg+0x54c/0xaf0
[  407.502372][T11375]  ? __pfx_try_charge_memcg+0x10/0x10
[  407.507773][T11375]  ? get_mem_cgroup_from_mm+0x87/0x5f0
[  407.513251][T11375]  ? get_mem_cgroup_from_mm+0x87/0x5f0
[  407.518723][T11375]  ? get_mem_cgroup_from_mm+0x131/0x5f0
[  407.524282][T11375]  __mem_cgroup_charge+0x9b/0x280
[  407.529325][T11375]  shmem_alloc_and_add_folio+0x507/0xc00
[  407.534970][T11375]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  407.540874][T11375]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  407.547033][T11375]  ? shmem_huge_global_enabled+0x176/0x250
[  407.552856][T11375]  ? shmem_allowable_huge_orders+0xcd/0x3e0
[  407.558762][T11375]  shmem_get_folio_gfp+0x689/0x1530
[  407.563977][T11375]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  407.569614][T11375]  ? find_held_lock+0x2d/0x110
[  407.574404][T11375]  shmem_write_begin+0x161/0x300
[  407.579366][T11375]  ? __pfx_shmem_write_begin+0x10/0x10
[  407.584837][T11375]  ? timestamp_truncate+0x21f/0x2e0
[  407.590050][T11375]  ? balance_dirty_pages_ratelimited_flags+0x92/0x1270
[  407.596922][T11375]  generic_perform_write+0x2ba/0x920
[  407.602223][T11375]  ? __pfx_generic_perform_write+0x10/0x10
[  407.608038][T11375]  ? inode_needs_update_time.part.0+0x191/0x270
[  407.614298][T11375]  shmem_file_write_iter+0x10e/0x140
[  407.619598][T11375]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  407.625419][T11375]  __kernel_write_iter+0x318/0xa80
[  407.630549][T11375]  ? __pfx___kernel_write_iter+0x10/0x10
[  407.636202][T11375]  ? get_dump_page+0x15b/0x230
[  407.640982][T11375]  ? __pfx___might_resched+0x10/0x10
[  407.646290][T11375]  ? copy_mc_enhanced_fast_string+0xa/0x13
[  407.652119][T11375]  dump_user_range+0x389/0x8c0
[  407.656901][T11375]  ? __pfx_dump_user_range+0x10/0x10
[  407.662202][T11375]  ? elf_coredump_extra_notes_write+0xbe/0x430
[  407.668367][T11375]  ? __pfx_writenote+0x10/0x10
[  407.673234][T11375]  elf_core_dump+0x2787/0x3880
[  407.678020][T11375]  ? __pfx_elf_core_dump+0x10/0x10
[  407.683141][T11375]  ? kasan_save_stack+0x42/0x60
[  407.687998][T11375]  ? kasan_save_stack+0x33/0x60
[  407.692858][T11375]  ? kasan_save_track+0x14/0x30
[  407.697716][T11375]  ? __kasan_kmalloc+0xaa/0xb0
[  407.702489][T11375]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  407.707959][T11375]  ? do_coredump+0x1665/0x43e0
[  407.712735][T11375]  ? get_signal+0x23f3/0x2610
[  407.717462][T11375]  ? rcu_is_watching+0x12/0xc0
[  407.722324][T11375]  ? trace_lock_acquire+0x14e/0x1f0
[  407.727539][T11375]  ? __pfx_sort+0x10/0x10
[  407.731877][T11375]  ? get_signal+0x23f3/0x2610
[  407.736570][T11375]  ? do_coredump+0x2dd5/0x43e0
[  407.741349][T11375]  do_coredump+0x2dd5/0x43e0
[  407.745979][T11375]  ? __pfx_do_coredump+0x10/0x10
[  407.750925][T11375]  ? irqentry_exit_to_user_mode+0x13f/0x280
[  407.756880][T11375]  get_signal+0x23f3/0x2610
[  407.761404][T11375]  ? __pfx_get_signal+0x10/0x10
[  407.766268][T11375]  ? __pfx_force_sig+0x10/0x10
[  407.771043][T11375]  arch_do_signal_or_restart+0x90/0x7e0
[  407.776603][T11375]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  407.782779][T11375]  ? trace_irq_disable.constprop.0+0xea/0x140
[  407.788859][T11375]  irqentry_exit_to_user_mode+0x13f/0x280
[  407.794590][T11375]  asm_exc_stack_segment+0x26/0x30
[  407.799723][T11375] RIP: 0033:0x7f0b41d85d31
[  407.804151][T11375] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 <c3> 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f
[  407.823776][T11375] RSP: 002b:7fffffffffffffff EFLAGS: 00010217
[  407.829856][T11375] RAX: 0000000000000000 RBX: 00007f0b41f75fa0 RCX: 00007f0b41d85d29
[  407.837862][T11375] RDX: ffffffffffffffff RSI: 7fffffffffffffff RDI: 0000000000000007
[  407.845838][T11375] RBP: 00007f0b41e01a20 R08: 0000000000000001 R09: 0000000000000000
[  407.853811][T11375] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  407.861787][T11375] R13: 0000000000000000 R14: 00007f0b41f75fa0 R15: 00007ffdef6d10e8
[  407.869777][T11375]  </TASK>
[  407.942714][T11375] memory: usage 307200kB, limit 307200kB, failcnt 20924
[  407.949718][T11375] memory+swap: usage 430268kB, limit 9007199254740988kB, failcnt 0
[  407.950830][T12099] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12099 comm: syz.0.1679)
[  408.010563][T11375] kmem: usage 3596kB, limit 9007199254740988kB, failcnt 0
[  408.021457][T11375] Memory cgroup stats for /syz1:
[  408.021826][T11375] cache 310788096
[  408.030597][T11375] rss 57344
[  408.071488][T11375] rss_huge 0
[  408.074777][T11375] shmem 310784000
[  408.078434][T11375] mapped_file 29061120
[  408.082595][T11375] dirty 4096
[  408.086070][T11375] writeback 0
[  408.089383][T11375] workingset_refault_anon 12377
[  408.112203][T11375] workingset_refault_file 113
[  408.116942][T11375] swap 126021632
[  408.120509][T11375] swapcached 4096
[  408.134386][T11375] pgpgin 1008234
[  408.137989][T11375] pgpgout 940007
[  408.161659][T11375] pgfault 407932
[  408.165264][T11375] pgmajfault 1167
[  408.168919][T11375] inactive_anon 306987008
[  408.191475][T11375] active_anon 3858432
[  408.195543][T11375] inactive_file 0
[  408.199200][T11375] active_file 0
[  408.211187][T11375] unevictable 0
[  408.227959][T11375] hierarchical_memory_limit 314572800
[  408.233456][T11375] hierarchical_memsw_limit 9223372036854771712
[  408.239633][T11375] total_cache 310788096
[  408.261460][T11375] total_rss 57344
[  408.265152][T11375] total_rss_huge 0
[  408.268908][T11375] total_shmem 310784000
[  408.310509][T11375] total_mapped_file 29061120
[  408.331515][T11375] total_dirty 4096
[  408.335306][T11375] total_writeback 0
[  408.339137][T11375] total_workingset_refault_anon 12377
[  408.344597][T11375] total_workingset_refault_file 113
[  408.349819][T11375] total_swap 126021632
[  408.401622][T11375] total_swapcached 4096
[  408.406031][T11375] total_pgpgin 1008234
[  408.421558][T11375] total_pgpgout 940007
[  408.425907][T11375] total_pgfault 407932
[  408.430004][T11375] total_pgmajfault 1167
[  408.476030][T11375] total_inactive_anon 306987008
[  408.480953][T11375] total_active_anon 3858432
[  408.485567][T11375] total_inactive_file 0
[  408.509914][T11375] total_active_file 0
[  408.514097][T11375] total_unevictable 0
[  408.518104][T11375] anon_cost 0
[  408.521796][T11375] file_cost 0
[  408.525147][T11375] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.1482,pid=11375,uid=0
[  408.540700][T11375] Memory cgroup out of memory: Killed process 11375 (syz.1.1482) total-vm:130772kB, anon-rss:896kB, file-rss:48860kB, shmem-rss:2300kB, UID:0 pgtables:256kB oom_score_adj:1000
[  408.686410][T12122] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1684'.
[  409.082674][T11402] syz.1.1482 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  409.087423][T11375] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 11375 comm: syz.1.1482)
[  409.201478][T11402] CPU: 1 UID: 0 PID: 11402 Comm: syz.1.1482 Not tainted 6.13.0-rc3-syzkaller-00026-g59dbb9d81adf #0
[  409.212314][T11402] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  409.222411][T11402] Call Trace:
[  409.225716][T11402]  <TASK>
[  409.228675][T11402]  dump_stack_lvl+0x16c/0x1f0
[  409.233401][T11402]  dump_header+0x101/0x900
[  409.237866][T11402]  oom_kill_process+0x270/0xa60
[  409.242756][T11402]  ? mem_cgroup_out_of_memory+0x8d/0x270
[  409.248431][T11402]  out_of_memory+0x351/0x1700
[  409.253153][T11402]  ? __pfx_out_of_memory+0x10/0x10
[  409.258401][T11402]  ? rcu_read_unlock+0x17/0x60
[  409.263217][T11402]  ? find_held_lock+0x2d/0x110
[  409.268030][T11402]  mem_cgroup_out_of_memory+0x207/0x270
[  409.273612][T11402]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  409.279725][T11402]  ? do_raw_spin_unlock+0x172/0x230
[  409.284965][T11402]  try_charge_memcg+0x54c/0xaf0
[  409.289861][T11402]  ? __pfx_try_charge_memcg+0x10/0x10
[  409.295273][T11402]  ? get_mem_cgroup_from_mm+0x87/0x5f0
[  409.300771][T11402]  ? get_mem_cgroup_from_mm+0x87/0x5f0
[  409.306267][T11402]  ? get_mem_cgroup_from_mm+0x131/0x5f0
[  409.311858][T11402]  __mem_cgroup_charge+0x9b/0x280
[  409.316927][T11402]  shmem_alloc_and_add_folio+0x507/0xc00
[  409.322599][T11402]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  409.328526][T11402]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  409.334714][T11402]  ? shmem_huge_global_enabled+0x176/0x250
[  409.340566][T11402]  ? shmem_allowable_huge_orders+0xcd/0x3e0
[  409.346503][T11402]  shmem_get_folio_gfp+0x689/0x1530
[  409.351754][T11402]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  409.357428][T11402]  ? mark_held_locks+0x9f/0xe0
[  409.362240][T11402]  ? timestamp_truncate+0x21f/0x2e0
[  409.367489][T11402]  shmem_write_begin+0x161/0x300
[  409.372471][T11402]  ? __pfx_shmem_write_begin+0x10/0x10
[  409.377975][T11402]  ? inode_set_ctime_current+0x2a7/0x900
[  409.383662][T11402]  ? balance_dirty_pages_ratelimited_flags+0x92/0x1270
[  409.390566][T11402]  ? __pfx_inode_set_ctime_current+0x10/0x10
[  409.396601][T11402]  generic_perform_write+0x2ba/0x920
[  409.401962][T11402]  ? __pfx_generic_perform_write+0x10/0x10
[  409.407807][T11402]  ? __mark_inode_dirty+0x2a5/0xe50
[  409.413055][T11402]  ? generic_update_time+0xcf/0xf0
[  409.418219][T11402]  ? mnt_put_write_access_file+0x45/0xf0
[  409.423900][T11402]  shmem_file_write_iter+0x10e/0x140
[  409.429225][T11402]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  409.435078][T11402]  __kernel_write_iter+0x318/0xa80
[  409.440237][T11402]  ? __pfx___kernel_write_iter+0x10/0x10
[  409.445905][T11402]  ? get_dump_page+0x15b/0x230
[  409.450716][T11402]  ? __pfx___might_resched+0x10/0x10
[  409.456041][T11402]  ? copy_mc_enhanced_fast_string+0xa/0x13
[  409.461904][T11402]  dump_user_range+0x389/0x8c0
[  409.466716][T11402]  ? __pfx_dump_user_range+0x10/0x10
[  409.472052][T11402]  ? elf_coredump_extra_notes_write+0xbe/0x430
[  409.478256][T11402]  ? __pfx_writenote+0x10/0x10
[  409.483065][T11402]  elf_core_dump+0x2787/0x3880
[  409.487890][T11402]  ? __pfx_elf_core_dump+0x10/0x10
[  409.493116][T11402]  ? kasan_save_stack+0x42/0x60
[  409.498015][T11402]  ? kasan_save_stack+0x33/0x60
[  409.502912][T11402]  ? kasan_save_track+0x14/0x30
[  409.507805][T11402]  ? __kasan_kmalloc+0xaa/0xb0
[  409.512608][T11402]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  409.518107][T11402]  ? do_coredump+0x1665/0x43e0
[  409.522920][T11402]  ? get_signal+0x23f3/0x2610
[  409.527688][T11402]  ? rcu_is_watching+0x12/0xc0
[  409.532491][T11402]  ? trace_lock_acquire+0x14e/0x1f0
[  409.537717][T11402]  ? __pfx_sort+0x10/0x10
[  409.542084][T11402]  ? get_signal+0x23f3/0x2610
[  409.546816][T11402]  ? do_coredump+0x2dd5/0x43e0
[  409.551631][T11402]  do_coredump+0x2dd5/0x43e0
[  409.556268][T11402]  ? __pfx_do_coredump+0x10/0x10
[  409.561249][T11402]  ? irqentry_exit_to_user_mode+0x13f/0x280
[  409.567256][T11402]  get_signal+0x23f3/0x2610
[  409.571817][T11402]  ? __pfx_get_signal+0x10/0x10
[  409.576707][T11402]  ? __pfx_force_sig+0x10/0x10
[  409.581515][T11402]  arch_do_signal_or_restart+0x90/0x7e0
[  409.587105][T11402]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  409.593322][T11402]  ? trace_irq_disable.constprop.0+0xea/0x140
[  409.599439][T11402]  irqentry_exit_to_user_mode+0x13f/0x280
[  409.605198][T11402]  asm_exc_stack_segment+0x26/0x30
[  409.610352][T11402] RIP: 0033:0x7f0b41d85d31
[  409.614793][T11402] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 <c3> 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f
[  409.634434][T11402] RSP: 002b:7fffffffffffffff EFLAGS: 00010217
[  409.640542][T11402] RAX: 0000000000000000 RBX: 00007f0b41f75fa0 RCX: 00007f0b41d85d29
[  409.648553][T11402] RDX: ffffffffffffffff RSI: 7fffffffffffffff RDI: 0000000000000007
[  409.656557][T11402] RBP: 00007f0b41e01a20 R08: 0000000000000001 R09: 0000000000000000
[  409.664567][T11402] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  409.672572][T11402] R13: 0000000000000000 R14: 00007f0b41f75fa0 R15: 00007ffdef6d10e8
[  409.680599][T11402]  </TASK>
[  409.918829][T11402] memory: usage 278544kB, limit 307200kB, failcnt 21217
[  410.021880][T11402] memory+swap: usage 393572kB, limit 9007199254740988kB, failcnt 0
[  410.029884][T11402] kmem: usage 3232kB, limit 9007199254740988kB, failcnt 0
[  410.166708][T11402] Memory cgroup stats for /syz1:
[  410.166895][T11402] cache 280784896
[  410.207203][T11402] rss 57344
[  410.210385][T11402] rss_huge 0
[  410.270937][T11402] shmem 280784896
[  410.291591][T11402] mapped_file 29212672
[  410.331597][T11402] dirty 0
[  410.335132][T11402] writeback 0
[  410.484638][T11402] workingset_refault_anon 12377
[  410.544458][T11402] workingset_refault_file 113
[  410.549197][T11402] swap 113340416
[  410.621579][T11402] swapcached 16384
[  410.646572][T12135] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12135 comm: syz.1.1678)
[  410.685553][T11402] pgpgin 1008307
[  410.689163][T11402] pgpgout 947403
[  410.712219][T11402] pgfault 407969
[  410.715841][T11402] pgmajfault 1167
[  410.837978][T11402] inactive_anon 275906560
[  410.908587][T11402] active_anon 4685824
[  410.913002][T11402] inactive_file 0
[  410.916660][T11402] active_file 0
[  410.920132][T11402] unevictable 0
[  411.027450][T11402] hierarchical_memory_limit 314572800
[  411.080040][T11402] hierarchical_memsw_limit 9223372036854771712
[  411.094443][T12108] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12108 comm: syz.0.1682)
[  411.218426][T11402] total_cache 280784896
[  411.252962][T11402] total_rss 57344
[  411.262199][T11402] total_rss_huge 0
[  411.381472][T11402] total_shmem 280784896
[  411.385691][T11402] total_mapped_file 29212672
[  411.390301][T11402] total_dirty 0
[  411.462608][T12139] Process accounting paused
[  411.576353][T11402] total_writeback 0
[  411.580408][T11402] total_workingset_refault_anon 12377
[  411.661535][T11402] total_workingset_refault_file 113
[  411.682936][T11402] total_swap 113340416
[  411.687082][T11402] total_swapcached 16384
[  411.691340][T11402] total_pgpgin 1008307
[  411.769215][T11402] total_pgpgout 947403
[  411.781782][T11402] total_pgfault 407969
[  411.791818][T11402] total_pgmajfault 1167
[  411.796018][T11402] total_inactive_anon 275906560
[  411.821269][T11402] total_active_anon 4685824
[  411.862549][T11402] total_inactive_file 0
[  411.911524][T11402] total_active_file 0
[  411.915565][T11402] total_unevictable 0
[  411.997340][T11402] anon_cost 0
[  412.051497][T11402] file_cost 0
[  412.085416][T11402] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.1482,pid=11398,uid=0
[  412.221666][T11402] Memory cgroup out of memory: Killed process 11398 (syz.1.1482) total-vm:131168kB, anon-rss:768kB, file-rss:42020kB, shmem-rss:13312kB, UID:0 pgtables:220kB oom_score_adj:1000
[  413.082744][T11375] syz.1.1482 (11375) used greatest stack depth: 19248 bytes left
[  413.293054][T12132] Process accounting paused
[  414.467331][   T31] oom_reaper: reaped process 11398 (syz.1.1482), now anon-rss:48kB, file-rss:39332kB, shmem-rss:13312kB
[  414.685718][T12145] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12145 comm: syz.0.1696)
[  414.906715][T12171] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12171 comm: syz.0.1692)
[  415.279734][T12174] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12174 comm: syz.0.1694)
[  415.988915][T12189] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12189 comm: syz.0.1697)
[  416.185151][T12198] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12198 comm: syz.0.1700)
[  416.566056][T12201] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12201 comm: syz.0.1701)
[  417.368684][T12215] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12215 comm: syz.0.1704)
[  417.525745][T12236] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12236 comm: syz.0.1709)
[  417.678138][T12243] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12243 comm: syz.0.1711)
[  418.496811][T12249] Process accounting paused
[  419.402634][T12277] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1716'.
[  419.827183][T12282] capability: warning: `syz.3.1718' uses 32-bit capabilities (legacy support in use)
[  420.873956][T12308] openvswitch: netlink: IPv4 tunnel dst address is zero
[  425.682205][T11398] syz.1.1482 (11398) used greatest stack depth: 18624 bytes left
[  428.688809][T12456] Process accounting resumed
[  428.709061][T12461] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1763'.
[  430.710848][T12488] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1768'.
[  432.931636][T11449] syz.1.1497 (11449) used greatest stack depth: 17680 bytes left
[  434.067660][T12531] netlink: 252 bytes leftover after parsing attributes in process `syz.0.1781'.
[  434.079162][T12532] sd 0:0:1:0: PR command failed: 1026
[  434.106894][T12532] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  434.122519][T12532] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  434.462615][T12543] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1783'.
[  434.697566][T12543] bond0: (slave bond_slave_1): Releasing backup interface
[  435.214668][T12552] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1786'.
[  435.271627][T12552] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  435.535819][T12552] batman_adv: batadv0: Removing interface: batadv_slave_0
[  436.112907][T12569] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1799'.
[  436.597172][T12586] random: crng reseeded on system resumption
[  437.785719][T12610] netlink: 'syz.0.1804': attribute type 11 has an invalid length.
[  437.852212][T12612] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1803'.
[  437.855046][T12610] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1804'.
[  437.871582][T12612] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  437.948786][T12612] batman_adv: batadv0: Removing interface: batadv_slave_0
[  438.381788][ T5845] Bluetooth: hci1: unexpected event 0x01 length: 13 > 1
[  438.523513][T12640] program syz.0.1813 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  439.409272][T12674] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  439.424324][T12674] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  440.057963][T12699] sd 0:0:1:0: PR command failed: 1026
[  440.063746][T12699] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  440.070568][T12699] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  440.304462][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  440.310960][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  440.420747][T12710] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1830'.
[  441.504665][T12722] Process accounting resumed
[  441.509376][T12722] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12722 comm: syz.1.1835)
[  441.928868][T12735] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12735 comm: syz.1.1847)
[  442.013883][T12734] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  442.024453][T12744] FAULT_INJECTION: forcing a failure.
[  442.024453][T12744] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  442.027679][T12734] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  442.040073][T12744] CPU: 0 UID: 0 PID: 12744 Comm: syz.1.1840 Not tainted 6.13.0-rc3-syzkaller-00026-g59dbb9d81adf #0
[  442.056970][T12744] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  442.067041][T12744] Call Trace:
[  442.070354][T12744]  <TASK>
[  442.073296][T12744]  dump_stack_lvl+0x16c/0x1f0
[  442.077994][T12744]  should_fail_ex+0x497/0x5b0
[  442.082725][T12744]  _copy_from_user+0x2e/0xd0
[  442.087342][T12744]  core_sys_select+0x306/0xa10
[  442.092116][T12744]  ? __pfx_core_sys_select+0x10/0x10
[  442.097410][T12744]  ? get_pid_task+0xfc/0x250
[  442.102029][T12744]  ? set_user_sigmask+0x217/0x2a0
[  442.107052][T12744]  ? __pfx_set_user_sigmask+0x10/0x10
[  442.112430][T12744]  do_pselect.constprop.0+0x1a0/0x1f0
[  442.117811][T12744]  ? __pfx_do_pselect.constprop.0+0x10/0x10
[  442.123710][T12744]  __x64_sys_pselect6+0x183/0x240
[  442.128747][T12744]  ? __pfx___x64_sys_pselect6+0x10/0x10
[  442.134342][T12744]  do_syscall_64+0xcd/0x250
[  442.138882][T12744]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  442.144810][T12744] RIP: 0033:0x7f0b41d85d29
[  442.149249][T12744] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  442.168863][T12744] RSP: 002b:00007f0b42ad4038 EFLAGS: 00000246 ORIG_RAX: 000000000000010e
[  442.177275][T12744] RAX: ffffffffffffffda RBX: 00007f0b41f75fa0 RCX: 00007f0b41d85d29
[  442.185260][T12744] RDX: 00000000200025c0 RSI: 0000000000000000 RDI: 0000000000000005
[  442.193273][T12744] RBP: 00007f0b42ad4090 R08: 0000000000000000 R09: 0000000000000000
[  442.201258][T12744] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  442.209227][T12744] R13: 0000000000000000 R14: 00007f0b41f75fa0 R15: 00007ffdef6d10e8
[  442.217299][T12744]  </TASK>
[  442.272157][T12744] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12744 comm: syz.1.1840)
[  442.432542][T12754] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1841'.
[  442.535173][T12749] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12749 comm: syz.1.1841)
[  442.562442][T12758] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1843'.
[  442.692866][T12764] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007
[  443.003152][T12775] sd 0:0:1:0: PR command failed: 1026
[  443.008751][T12775] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  443.020721][T12775] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  443.517314][T12761] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12761 comm: syz.1.1844)
[  443.634715][T12790] kernel write not supported for file netdevsim/netdevsim0/psample/latency_max (pid: 12790 comm: syz.1.1854)
[  443.999989][T12792] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  444.010939][T12792] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  444.186591][T12804] sd 0:0:1:0: PR command failed: 1026
[  444.193623][T12804] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  444.200507][T12804] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  446.338974][T12847] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  446.351604][T12847] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  446.769049][T12862] delete_channel: no stack
[  447.534383][T12890] sd 0:0:1:0: PR command failed: 1026
[  447.539882][T12890] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  447.551665][T12890] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  447.870051][T12900] netlink: 334 bytes leftover after parsing attributes in process `syz.1.1888'.
[  449.598130][T12947] sd 0:0:1:0: PR command failed: 1026
[  449.621854][T12947] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  449.643210][T12947] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  449.718127][T12951] sd 0:0:1:0: PR command failed: 1026
[  449.744090][T12951] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  449.750864][T12951] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  450.413440][T12966] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1902'.
[  450.605436][T12976] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1902'.
[  451.212931][T12963] binder: 12961:12963 ioctl c0105512 1 returned -22
[  451.518890][T12988] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1904'.
[  455.383960][T13052] sd 0:0:1:0: PR command failed: 1026
[  455.407475][T13052] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  455.424634][T13052] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  455.635922][T13057] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1918'.
[  458.110472][T13094] sd 0:0:1:0: PR command failed: 1026
[  458.137326][T13094] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  458.167875][T13094] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  461.020124][T13146] sd 0:0:1:0: PR command failed: 1026
[  461.041566][T13146] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  461.081580][T13146] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  462.102817][T13157] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1944'.
[  463.608316][T13183] sd 0:0:1:0: PR command failed: 1026
[  463.613867][T13183] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  463.620739][T13183] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  466.891524][T13221] sd 0:0:1:0: PR command failed: 1026
[  466.902074][T13221] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  466.919092][T13221] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  467.174000][T13228] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1964'.
[  467.208190][T13228] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  467.241497][T13228] batman_adv: batadv0: Removing interface: batadv_slave_1
[  467.269751][T13231] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1964'.
[  467.995842][T13244] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1967'.
[  471.359964][T13302] sd 0:0:1:0: PR command failed: 1026
[  471.381862][T13302] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  471.421592][T13302] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  476.360623][T13408] ptrace attach of "./syz-executor exec"[5837] was attempted by "./syz-executor exec"[13408]
[  476.501596][T13415] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2005'.
[  478.207409][T13464] netlink: 334 bytes leftover after parsing attributes in process `syz.1.2015'.
[  478.733309][T13480] warning: `syz.1.2018' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  478.937023][T13438] could not allocate digest TFM handle 
[  479.462136][T13438] could not allocate digest TFM handle 
[  479.721648][T13495] netlink: 334 bytes leftover after parsing attributes in process `syz.0.2021'.
[  480.368665][T13508] delete_channel: no stack
[  481.159736][T13518] netlink: 334 bytes leftover after parsing attributes in process `syz.3.2028'.
[  486.195302][T13589] sd 0:0:1:0: PR command failed: 1026
[  486.207326][T13589] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  486.223743][T13589] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  486.922089][   T29] audit: type=1326 audit(4294967395.601:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13603 comm="syz.2.2050" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fea78d85d29 code=0x0
[  487.977421][T13612] futex_wake_op: syz.1.2051 tries to shift op by 64; fix this program
[  489.872814][T13640] sd 0:0:1:0: PR command failed: 1026
[  489.878325][T13640] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  490.031862][T13640] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  492.621593][T13683] sd 0:0:1:0: PR command failed: 1026
[  492.633829][T13683] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  492.640594][T13683] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  492.939822][T13688] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2068'.
[  494.660290][T13720] sd 0:0:1:0: PR command failed: 1026
[  494.677443][T13720] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  494.689748][T13720] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  495.391671][   T29] audit: type=1107 audit(4294967404.061:13): pid=13733 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  495.926181][T13717] kexec: Could not allocate control_code_buffer
[  496.689504][T13755] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  496.783359][T13756] can: request_module (can-proto-0) failed.
[  497.348656][T13772] netlink: 'syz.3.2092': attribute type 1 has an invalid length.
[  499.874180][T13827] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2107'.
[  500.983663][T13843] do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app
[  501.362525][T13871] Ignoring unsupported numa_zonelist_order value:  
[  501.362525][T13871] 
[  501.758758][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  501.765158][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  503.830792][T13913] netlink: get zone limit has 8 unknown bytes
[  503.876083][T13915] netlink: zone id is out of range
[  503.881315][T13915] netlink: zone id is out of range
[  503.906464][T13915] netlink: zone id is out of range
[  503.916763][T13915] netlink: zone id is out of range
[  503.929721][T13912] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2131'.
[  503.955008][T13915] netlink: zone id is out of range
[  503.960165][T13915] netlink: zone id is out of range
[  503.983801][T13915] netlink: zone id is out of range
[  503.990988][T13915] netlink: zone id is out of range
[  504.009358][T13915] netlink: zone id is out of range
[  506.011511][T13944] sd 0:0:1:0: PR command failed: 1026
[  506.022063][T13944] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  506.041542][T13944] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  506.416012][T13953] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  509.146655][T13994] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2155'.
[  510.116146][T14027] netlink: 252 bytes leftover after parsing attributes in process `syz.3.2165'.
[  511.093897][T14051] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  511.155153][T14051] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  511.408010][T14063] netlink: 'syz.3.2175': attribute type 11 has an invalid length.
[  512.028772][T14073] netlink: 85 bytes leftover after parsing attributes in process `syz.0.2178'.
[  512.814166][T14092] sd 0:0:1:0: PR command failed: 1026
[  512.841541][T14092] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  512.861916][T14092] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  513.389478][T14103] RDS: rds_bind could not find a transport for fe80::, load rds_tcp or rds_rdma?
[  513.998783][T14120] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2193'.
[  514.075384][T14120] ipvlan1: entered allmulticast mode
[  514.080736][T14120] veth0_vlan: entered allmulticast mode
[  514.190958][ T5145] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  514.200280][ T5145] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  514.208947][ T5145] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  514.225477][ T5145] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  514.241573][ T5145] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  514.249092][ T5145] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  514.742350][T14136] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2196'.
[  515.011456][T14142] sd 0:0:1:0: PR command failed: 1026
[  515.016928][T14142] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  515.048304][T14142] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  515.184116][T14124] chnl_net:caif_netlink_parms(): no params data found
[  515.717234][T14124] bridge0: port 1(bridge_slave_0) entered blocking state
[  515.727573][T14124] bridge0: port 1(bridge_slave_0) entered disabled state
[  515.735095][T14124] bridge_slave_0: entered allmulticast mode
[  515.742868][T14124] bridge_slave_0: entered promiscuous mode
[  515.750627][T14124] bridge0: port 2(bridge_slave_1) entered blocking state
[  515.758078][T14124] bridge0: port 2(bridge_slave_1) entered disabled state
[  515.771711][T14124] bridge_slave_1: entered allmulticast mode
[  515.778820][T14124] bridge_slave_1: entered promiscuous mode
[  515.954237][T14124] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  515.988091][T14124] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  516.086113][T14173] net_ratelimit: 27 callbacks suppressed
[  516.086134][T14173] openvswitch: netlink: ct_state flags 03001eac unsupported
[  516.112419][T14124] team0: Port device team_slave_0 added
[  516.121043][T14124] team0: Port device team_slave_1 added
[  516.302788][ T5145] Bluetooth: hci4: command tx timeout
[  516.354067][T14124] batman_adv: batadv0: Adding interface: batadv_slave_0
[  516.361065][T14124] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  516.387011][    C1] vkms_vblank_simulate: vblank timer overrun
[  516.462337][T14124] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  516.496967][T14124] batman_adv: batadv0: Adding interface: batadv_slave_1
[  516.514399][T14124] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  516.540333][    C1] vkms_vblank_simulate: vblank timer overrun
[  516.606671][T14124] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  516.947723][T14124] hsr_slave_0: entered promiscuous mode
[  517.039468][T14124] hsr_slave_1: entered promiscuous mode
[  517.244818][T14124] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  517.265868][T14124] Cannot create hsr debugfs directory
[  517.975597][T14124] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  518.253988][T14124] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  518.367973][T14124] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  518.386592][ T5145] Bluetooth: hci4: command tx timeout
[  518.792218][T14124] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  519.091003][T14124] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  519.120664][T14124] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  519.140085][T14124] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  519.165583][T14124] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  519.306706][T14124] 8021q: adding VLAN 0 to HW filter on device bond0
[  519.338759][T14124] 8021q: adding VLAN 0 to HW filter on device team0
[  519.358071][ T1334] bridge0: port 1(bridge_slave_0) entered blocking state
[  519.365259][ T1334] bridge0: port 1(bridge_slave_0) entered forwarding state
[  519.395197][ T1334] bridge0: port 2(bridge_slave_1) entered blocking state
[  519.403456][ T1334] bridge0: port 2(bridge_slave_1) entered forwarding state
[  519.695488][T14124] 8021q: adding VLAN 0 to HW filter on device batadv0
[  519.813948][T14124] veth0_vlan: entered promiscuous mode
[  519.847028][T14124] veth1_vlan: entered promiscuous mode
[  519.914621][T14124] veth0_macvtap: entered promiscuous mode
[  519.937457][T14124] veth1_macvtap: entered promiscuous mode
[  519.977268][T14124] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  520.001454][T14124] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  520.026766][T14124] batman_adv: batadv0: Interface activated: batadv_slave_0
[  520.060409][T14124] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  520.087327][T14124] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  520.118839][T14124] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  520.134841][T14124] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  520.156594][T14124] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  520.177897][T14124] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  520.199115][T14124] batman_adv: batadv0: Interface activated: batadv_slave_1
[  520.228416][T14124] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  520.256776][T14124] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  520.266007][T14124] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  520.296244][T14124] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  520.421254][T11004] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  520.442795][T11004] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  520.462968][ T5145] Bluetooth: hci4: command tx timeout
[  520.489570][T11004] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  520.505730][T11004] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  521.812239][T14276] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2227'.
[  522.541567][ T5145] Bluetooth: hci4: command tx timeout
[  524.123502][T14349] sd 0:0:1:0: PR command failed: 1026
[  524.138978][T14349] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  524.156988][T14349] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  524.928722][T14381] netlink: zone id is out of range
[  524.934031][T14381] netlink: zone id is out of range
[  524.939509][T14381] netlink: zone id is out of range
[  524.946120][T14381] netlink: zone id is out of range
[  524.951285][T14381] netlink: zone id is out of range
[  524.956921][T14381] netlink: zone id is out of range
[  524.962819][T14381] netlink: zone id is out of range
[  524.970123][T14381] netlink: zone id is out of range
[  524.975706][T14381] netlink: zone id is out of range
[  524.980849][T14381] netlink: zone id is out of range
[  525.001511][T14367] cgroup: fork rejected by pids controller in /syz1
[  525.934192][ T5845] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  525.945331][ T5845] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  525.954456][ T5845] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  525.965863][ T5845] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  525.975617][ T5845] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  525.985003][ T5845] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  526.533742][T14450] chnl_net:caif_netlink_parms(): no params data found
[  526.956966][T14494] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2251'.
[  527.716580][T14501] netlink: 342 bytes leftover after parsing attributes in process `syz.0.2252'.
[  527.730721][T14450] bridge0: port 1(bridge_slave_0) entered blocking state
[  527.750919][T14450] bridge0: port 1(bridge_slave_0) entered disabled state
[  527.772432][T14450] bridge_slave_0: entered allmulticast mode
[  527.794969][T14450] bridge_slave_0: entered promiscuous mode
[  527.817187][T14450] bridge0: port 2(bridge_slave_1) entered blocking state
[  527.826324][T14450] bridge0: port 2(bridge_slave_1) entered disabled state
[  527.833961][T14450] bridge_slave_1: entered allmulticast mode
[  527.841281][T14450] bridge_slave_1: entered promiscuous mode
[  527.906153][T14450] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  527.918727][T14450] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  527.950641][T14450] team0: Port device team_slave_0 added
[  527.963424][T14450] team0: Port device team_slave_1 added
[  527.986172][T14450] batman_adv: batadv0: Adding interface: batadv_slave_0
[  527.993409][T14450] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  528.019649][T14450] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  528.040183][T14450] batman_adv: batadv0: Adding interface: batadv_slave_1
[  528.047435][T14450] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  528.073356][    C0] vkms_vblank_simulate: vblank timer overrun
[  528.081269][ T5145] Bluetooth: hci2: command tx timeout
[  528.082964][T14450] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  528.130060][T11009] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  528.163472][T14450] hsr_slave_0: entered promiscuous mode
[  528.169733][T14450] hsr_slave_1: entered promiscuous mode
[  528.176598][T14450] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  528.184470][T14450] Cannot create hsr debugfs directory
[  528.213869][T11009] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  528.288440][T11009] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  528.329993][T11009] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  528.506090][T11009] bridge_slave_1: left allmulticast mode
[  528.513245][T11009] bridge_slave_1: left promiscuous mode
[  528.521321][T11009] bridge0: port 2(bridge_slave_1) entered disabled state
[  528.757617][T11009] erspan0 (unregistering): left allmulticast mode
[  528.981606][T11009] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  528.994893][T11009] bond0 (unregistering): Released all slaves
[  529.070678][T11009] tipc: Left network mode
[  529.489168][T11009] hsr_slave_0: left promiscuous mode
[  529.495269][T11009] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  529.506988][T11009] batman_adv: batadv0: Removing interface: batadv_slave_1
[  529.526234][T11009] veth1_macvtap: left promiscuous mode
[  529.532226][T11009] veth1_vlan: left promiscuous mode
[  529.537775][T11009] veth0_vlan: left promiscuous mode
[  529.847283][T11009] team0 (unregistering): Port device team_slave_1 removed
[  529.890089][T11009] team0 (unregistering): Port device team_slave_0 removed
[  530.141698][ T5145] Bluetooth: hci2: command tx timeout
[  530.218586][T14450] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  530.229911][T14450] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  530.241638][T14450] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  530.257023][T14450] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  530.359478][T14450] 8021q: adding VLAN 0 to HW filter on device bond0
[  530.411870][T14450] 8021q: adding VLAN 0 to HW filter on device team0
[  530.432152][ T3505] bridge0: port 1(bridge_slave_0) entered blocking state
[  530.439231][ T3505] bridge0: port 1(bridge_slave_0) entered forwarding state
[  530.456405][ T3505] bridge0: port 2(bridge_slave_1) entered blocking state
[  530.463519][ T3505] bridge0: port 2(bridge_slave_1) entered forwarding state
[  530.687178][T14450] 8021q: adding VLAN 0 to HW filter on device batadv0
[  530.742000][T14450] veth0_vlan: entered promiscuous mode
[  530.760513][T14450] veth1_vlan: entered promiscuous mode
[  530.799100][T14450] veth0_macvtap: entered promiscuous mode
[  530.808313][T14450] veth1_macvtap: entered promiscuous mode
[  530.832777][T14450] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  530.846780][T14450] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  530.858543][T14450] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  530.874739][T14450] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  530.888805][T14450] batman_adv: batadv0: Interface activated: batadv_slave_0
[  530.905479][T14450] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  530.916262][T14450] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  530.927007][T14450] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  530.938813][T14450] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  530.952763][T14450] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  530.963608][T14450] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  530.975876][T14450] batman_adv: batadv0: Interface activated: batadv_slave_1
[  530.989482][T14450] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  531.005513][T14450] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  531.016360][T14450] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  531.028971][T14450] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  531.124988][T11004] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  531.135520][T11004] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  531.186595][T11009] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  531.195757][T11009] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  531.315095][T14570] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2262'.
[  531.361604][T14570] veth0_macvtap: left promiscuous mode
[  531.391515][T14570] macvtap0: entered allmulticast mode
[  532.221716][ T5145] Bluetooth: hci2: command tx timeout
[  532.421230][T14614] mkiss: ax0: crc mode is auto.
[  532.763222][T14633] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2268'.
[  532.773550][T14633] veth0_macvtap: left promiscuous mode
[  532.780577][T14633] macvtap0: entered allmulticast mode
[  533.253257][T14648] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2272'.
[  534.082176][   T29] audit: type=1804 audit(4294967442.751:14): pid=14669 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.2278" name="#)-\&[}" dev="mqueue" ino=41760 res=1 errno=0
[  534.141933][T14669] kernel read not supported for file /#)-\&[} (pid: 14669 comm: syz.1.2278)
[  534.171504][   T29] audit: type=1800 audit(4294967442.821:15): pid=14669 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2278" name="#)-\&[}" dev="mqueue" ino=41760 res=0 errno=0
[  534.301617][ T5145] Bluetooth: hci2: command tx timeout
[  534.514141][T14679] FAULT_INJECTION: forcing a failure.
[  534.514141][T14679] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  534.591489][T14679] CPU: 0 UID: 0 PID: 14679 Comm: syz.0.2280 Not tainted 6.13.0-rc3-syzkaller-00026-g59dbb9d81adf #0
[  534.602327][T14679] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  534.612418][T14679] Call Trace:
[  534.615722][T14679]  <TASK>
[  534.618741][T14679]  dump_stack_lvl+0x16c/0x1f0
[  534.623461][T14679]  should_fail_ex+0x497/0x5b0
[  534.628182][T14679]  _copy_to_user+0x32/0xd0
[  534.632644][T14679]  simple_read_from_buffer+0xd0/0x160
[  534.638076][T14679]  proc_fail_nth_read+0x198/0x270
[  534.643152][T14679]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  534.648747][T14679]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  534.654339][T14679]  vfs_read+0x1df/0xbe0
[  534.658536][T14679]  ? __pfx_vfs_read+0x10/0x10
[  534.663251][T14679]  ? do_pselect.constprop.0+0x13c/0x1f0
[  534.668832][T14679]  ? __pfx_do_pselect.constprop.0+0x10/0x10
[  534.674774][T14679]  ksys_read+0x12b/0x250
[  534.679056][T14679]  ? __pfx_ksys_read+0x10/0x10
[  534.683859][T14679]  do_syscall_64+0xcd/0x250
[  534.688415][T14679]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  534.694358][T14679] RIP: 0033:0x7f91c538473c
[  534.698801][T14679] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  534.718450][T14679] RSP: 002b:00007f91c61af030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  534.726906][T14679] RAX: ffffffffffffffda RBX: 00007f91c5575fa0 RCX: 00007f91c538473c
[  534.734912][T14679] RDX: 000000000000000f RSI: 00007f91c61af0a0 RDI: 0000000000000005
[  534.742921][T14679] RBP: 00007f91c61af090 R08: 0000000000000000 R09: 0000000000000000
[  534.750937][T14679] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  534.758943][T14679] R13: 0000000000000000 R14: 00007f91c5575fa0 R15: 00007ffe38e7cc48
[  534.766965][T14679]  </TASK>
[  534.770176][    C0] vkms_vblank_simulate: vblank timer overrun
[  535.206103][T14690] proc: Bad value for 'gid'
[  535.528082][T14694] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2287'.
[  537.058430][T14726] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2291'.
[  538.410853][T14747] mkiss: ax0: crc mode is auto.
[  539.622465][T14783] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2307'.
[  541.656140][T14805] mkiss: ax0: crc mode is auto.
[  542.301840][T14816] sd 0:0:1:0: PR command failed: 1026
[  542.307333][T14816] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  542.371507][T14816] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  544.611519][T14879] sd 0:0:1:0: PR command failed: 1026
[  544.616976][T14879] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  544.661578][T14879] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  545.890744][T14919] sd 0:0:1:0: PR command failed: 1026
[  545.926854][T14919] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  545.934420][T14919] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  546.305079][T14927] program syz.2.2344 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  546.556758][T14930] proc: Bad value for 'gid'
[  546.965628][T14937] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2346'.
[  547.591576][T14947] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2350'.
[  548.150491][T14954] can: request_module (can-proto-4) failed.
[  549.398649][T14991] can: request_module (can-proto-0) failed.
[  549.697316][T15004] binder: 15003:15004 ioctl 40046205 800000000000003 returned -22
[  549.801250][T15006] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2361'.
[  550.635217][T15035] netlink: 334 bytes leftover after parsing attributes in process `syz.0.2373'.
[  550.664212][T15036] netlink: 334 bytes leftover after parsing attributes in process `syz.0.2373'.
[  550.905235][T15048] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2375'.
[  551.236767][T15048] bond0: (slave bond_slave_0): Releasing backup interface
[  551.338644][T15064] netlink: 'syz.1.2379': attribute type 1 has an invalid length.
[  551.491991][T15055] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  551.537623][T15055] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  551.614369][T15055] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  551.625242][T15055] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  551.764944][T15055] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  551.778767][T15055] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  551.814268][T15055] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  551.896229][T15055] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  551.912608][T15055] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  551.989278][T15055] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  553.501636][ T5145] Bluetooth: hci0: command 0x0406 tx timeout
[  553.661626][ T5145] Bluetooth: hci3: command 0x0406 tx timeout
[  553.821595][ T5145] Bluetooth: hci4: command 0x0c1a tx timeout
[  553.906165][ T5145] Bluetooth: hci2: command 0x0c1a tx timeout
[  554.491044][T15123] option changes via remount are deprecated (pid=15122 comm=syz.2.2396)
[  554.581992][T15123] option changes via remount are deprecated (pid=15122 comm=syz.2.2396)
[  555.607123][ T5145] Bluetooth: hci0: command 0x0406 tx timeout
[  555.741642][ T5145] Bluetooth: hci3: command 0x0406 tx timeout
[  555.919766][ T5145] Bluetooth: hci4: command 0x0c1a tx timeout
[  555.981501][ T5145] Bluetooth: hci2: command 0x0c1a tx timeout
[  557.285684][ T5845] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  557.300944][ T5845] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  557.346597][ T5845] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  557.357933][ T5845] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  557.367595][ T5845] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  557.375548][ T5845] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  557.403231][T15153] FAULT_INJECTION: forcing a failure.
[  557.403231][T15153] name failslab, interval 1, probability 0, space 0, times 0
[  557.416151][T15153] CPU: 0 UID: 0 PID: 15153 Comm: syz.3.2403 Not tainted 6.13.0-rc3-syzkaller-00026-g59dbb9d81adf #0
[  557.426959][T15153] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  557.437049][T15153] Call Trace:
[  557.440359][T15153]  <TASK>
[  557.443316][T15153]  dump_stack_lvl+0x16c/0x1f0
[  557.448036][T15153]  should_fail_ex+0x497/0x5b0
[  557.452750][T15153]  ? fs_reclaim_acquire+0xae/0x150
[  557.457899][T15153]  should_failslab+0xc2/0x120
[  557.462612][T15153]  __kmalloc_noprof+0xce/0x4f0
[  557.467411][T15153]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  557.473073][T15153]  ? tomoyo_realpath_from_path+0xbf/0x710
[  557.478830][T15153]  tomoyo_realpath_from_path+0xbf/0x710
[  557.484414][T15153]  ? tomoyo_path_number_perm+0x235/0x5b0
[  557.490095][T15153]  tomoyo_path_number_perm+0x248/0x5b0
[  557.495603][T15153]  ? tomoyo_path_number_perm+0x235/0x5b0
[  557.501329][T15153]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  557.502065][T15156] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2401'.
[  557.507359][T15153]  ? __pfx_lock_release+0x10/0x10
[  557.521315][T15153]  ? trace_lock_acquire+0x14e/0x1f0
[  557.526563][T15153]  ? lock_acquire+0x2f/0xb0
[  557.531100][T15153]  ? __fget_files+0x40/0x3a0
[  557.535743][T15153]  ? __fget_files+0x206/0x3a0
[  557.540458][T15153]  security_file_ioctl+0x9b/0x240
[  557.545522][T15153]  __x64_sys_ioctl+0xb7/0x200
[  557.550245][T15153]  do_syscall_64+0xcd/0x250
[  557.554788][T15153]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  557.560710][T15153] RIP: 0033:0x7f843b385d29
[  557.565159][T15153] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  557.584805][T15153] RSP: 002b:00007f843c1b6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  557.593254][T15153] RAX: ffffffffffffffda RBX: 00007f843b575fa0 RCX: 00007f843b385d29
[  557.601259][T15153] RDX: 0000000000000007 RSI: 000000000000560a RDI: 0000000000000008
[  557.609257][T15153] RBP: 00007f843c1b6090 R08: 0000000000000000 R09: 0000000000000000
[  557.617262][T15153] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  557.625263][T15153] R13: 0000000000000000 R14: 00007f843b575fa0 R15: 00007ffef6f52498
[  557.633282][T15153]  </TASK>
[  557.670982][T15153] ERROR: Out of memory at tomoyo_realpath_from_path.
[  557.745306][T15156] lo: entered promiscuous mode
[  557.750163][T15156] lo: entered allmulticast mode
[  557.981738][ T5845] Bluetooth: hci4: command 0x0c1a tx timeout
[  558.007530][T15150] chnl_net:caif_netlink_parms(): no params data found
[  558.068287][ T5845] Bluetooth: hci2: command 0x0c1a tx timeout
[  558.300808][T15150] bridge0: port 1(bridge_slave_0) entered blocking state
[  558.312759][T15150] bridge0: port 1(bridge_slave_0) entered disabled state
[  558.320192][T15150] bridge_slave_0: entered allmulticast mode
[  558.328409][T15150] bridge_slave_0: entered promiscuous mode
[  558.343723][T15150] bridge0: port 2(bridge_slave_1) entered blocking state
[  558.361177][T15150] bridge0: port 2(bridge_slave_1) entered disabled state
[  558.369095][T15150] bridge_slave_1: entered allmulticast mode
[  558.377687][T15150] bridge_slave_1: entered promiscuous mode
[  558.393609][T15171] svc: failed to register nfsdv3 RPC service (errno 111).
[  558.403971][T15171] svc: failed to register nfsaclv3 RPC service (errno 111).
[  558.434919][T15150] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  558.446957][T15150] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  558.486383][T15150] team0: Port device team_slave_0 added
[  558.496662][T15150] team0: Port device team_slave_1 added
[  558.516230][T15150] batman_adv: batadv0: Adding interface: batadv_slave_0
[  558.523362][T15150] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  558.561240][T15150] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  558.574063][T15150] batman_adv: batadv0: Adding interface: batadv_slave_1
[  558.581033][T15150] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  558.607470][T15150] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  558.643910][T15150] hsr_slave_0: entered promiscuous mode
[  558.660231][T15150] hsr_slave_1: entered promiscuous mode
[  558.681312][T15150] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  558.690450][T15150] Cannot create hsr debugfs directory
[  558.862166][T15150] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  558.975130][T15150] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  559.051233][T15150] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  559.131385][T15150] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  559.278985][T15150] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  559.289694][T15150] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  559.304254][T15150] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  559.308096][T15186] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2411'.
[  559.329606][T15150] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  559.421788][ T5845] Bluetooth: hci1: command tx timeout
[  559.481136][T15150] 8021q: adding VLAN 0 to HW filter on device bond0
[  559.530639][T15150] 8021q: adding VLAN 0 to HW filter on device team0
[  559.559156][T15193] FAULT_INJECTION: forcing a failure.
[  559.559156][T15193] name failslab, interval 1, probability 0, space 0, times 0
[  559.572676][T15193] CPU: 0 UID: 0 PID: 15193 Comm: syz.0.2412 Not tainted 6.13.0-rc3-syzkaller-00026-g59dbb9d81adf #0
[  559.583563][T15193] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  559.589407][T15150] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  559.593620][T15193] Call Trace:
[  559.593630][T15193]  <TASK>
[  559.593640][T15193]  dump_stack_lvl+0x16c/0x1f0
[  559.593673][T15193]  should_fail_ex+0x497/0x5b0
[  559.604014][T15150] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  559.607251][T15193]  ? fs_reclaim_acquire+0xae/0x150
[  559.635050][T15193]  should_failslab+0xc2/0x120
[  559.639854][T15193]  __kmalloc_noprof+0xce/0x4f0
[  559.644656][T15193]  ? d_absolute_path+0x137/0x1b0
[  559.649658][T15193]  ? tomoyo_encode2+0x100/0x3e0
[  559.654565][T15193]  tomoyo_encode2+0x100/0x3e0
[  559.659272][T15193]  tomoyo_realpath_from_path+0x1a7/0x710
[  559.664906][T15193]  tomoyo_path_number_perm+0x248/0x5b0
[  559.670375][T15193]  ? tomoyo_path_number_perm+0x235/0x5b0
[  559.676007][T15193]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  559.682085][T15193]  ? __pfx_lock_release+0x10/0x10
[  559.687137][T15193]  ? trace_lock_acquire+0x14e/0x1f0
[  559.691083][T11009] bridge0: port 1(bridge_slave_0) entered blocking state
[  559.692352][T15193]  ? lock_acquire+0x2f/0xb0
[  559.692377][T15193]  ? __fget_files+0x40/0x3a0
[  559.699454][T11009] bridge0: port 1(bridge_slave_0) entered forwarding state
[  559.703883][T15193]  ? __fget_files+0x206/0x3a0
[  559.703922][T15193]  security_file_ioctl+0x9b/0x240
[  559.711996][T11009] bridge0: port 2(bridge_slave_1) entered blocking state
[  559.715690][T15193]  __x64_sys_ioctl+0xb7/0x200
[  559.720399][T11009] bridge0: port 2(bridge_slave_1) entered forwarding state
[  559.725358][T15193]  do_syscall_64+0xcd/0x250
[  559.725391][T15193]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  559.754761][T15193] RIP: 0033:0x7f91c5385d29
[  559.759212][T15193] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  559.778958][T15193] RSP: 002b:00007f91c61af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  559.787410][T15193] RAX: ffffffffffffffda RBX: 00007f91c5575fa0 RCX: 00007f91c5385d29
[  559.795421][T15193] RDX: 0000000000000007 RSI: 000000000000560a RDI: 0000000000000008
[  559.803424][T15193] RBP: 00007f91c61af090 R08: 0000000000000000 R09: 0000000000000000
[  559.811425][T15193] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  559.819465][T15193] R13: 0000000000000000 R14: 00007f91c5575fa0 R15: 00007ffe38e7cc48
[  559.827486][T15193]  </TASK>
[  559.830675][    C0] vkms_vblank_simulate: vblank timer overrun
[  559.897402][T15193] ERROR: Out of memory at tomoyo_realpath_from_path.
[  559.925892][T15150] 8021q: adding VLAN 0 to HW filter on device batadv0
[  560.004959][T15150] veth0_vlan: entered promiscuous mode
[  560.026439][T15150] veth1_vlan: entered promiscuous mode
[  560.078530][T15150] veth0_macvtap: entered promiscuous mode
[  560.093972][T15150] veth1_macvtap: entered promiscuous mode
[  560.119887][T15150] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  560.138660][T15150] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  560.149439][T15150] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  560.169283][T15150] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  560.179579][T15150] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  560.196415][T15150] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  560.207923][T15150] batman_adv: batadv0: Interface activated: batadv_slave_0
[  560.226313][T15200] netlink: 334 bytes leftover after parsing attributes in process `syz.3.2413'.
[  560.254765][T15150] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  560.271797][T15150] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  560.291422][T15150] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  560.302316][T15150] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  560.312235][T15150] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  560.322903][T15150] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  560.332797][T15150] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  560.343345][T15150] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  560.360911][T15150] batman_adv: batadv0: Interface activated: batadv_slave_1
[  560.392848][T15150] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  560.411400][T15150] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  560.420134][T15150] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  560.441418][T15150] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  560.752610][T11009] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  560.771483][T11009] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  560.864693][ T9858] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  560.883909][ T9858] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  561.501610][ T5845] Bluetooth: hci1: command tx timeout
[  561.624863][T15245] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2423'.
[  562.254352][T15252] svc: failed to register nfsdv3 RPC service (errno 111).
[  562.270145][T15252] svc: failed to register nfsaclv3 RPC service (errno 111).
[  562.931988][T15280] FAULT_INJECTION: forcing a failure.
[  562.931988][T15280] name failslab, interval 1, probability 0, space 0, times 0
[  562.932179][T15280] CPU: 1 UID: 0 PID: 15280 Comm: syz.3.2434 Not tainted 6.13.0-rc3-syzkaller-00026-g59dbb9d81adf #0
[  562.932213][T15280] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  562.932228][T15280] Call Trace:
[  562.932237][T15280]  <TASK>
[  562.932248][T15280]  dump_stack_lvl+0x16c/0x1f0
[  562.932285][T15280]  should_fail_ex+0x497/0x5b0
[  562.932315][T15280]  ? fs_reclaim_acquire+0xae/0x150
[  562.932356][T15280]  should_failslab+0xc2/0x120
[  562.932391][T15280]  __kmalloc_cache_noprof+0x68/0x420
[  562.932433][T15280]  drm_atomic_state_alloc+0xb8/0x120
[  562.932472][T15280]  drm_client_modeset_commit_atomic+0xd1/0x7f0
[  562.932506][T15280]  ? drm_client_modeset_commit_locked+0x4c/0x580
[  562.932541][T15280]  ? rcu_is_watching+0x12/0xc0
[  562.932573][T15280]  ? trace_contention_end+0xee/0x140
[  562.932602][T15280]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  562.932633][T15280]  ? __mutex_lock+0x1cc/0xa60
[  562.932703][T15280]  drm_client_modeset_commit_locked+0x14d/0x580
[  562.932741][T15280]  drm_client_modeset_commit+0x4f/0x80
[  562.932774][T15280]  __drm_fb_helper_restore_fbdev_mode_unlocked+0x130/0x180
[  562.932809][T15280]  drm_fb_helper_set_par+0xd8/0x120
[  562.932834][T15280]  ? __pfx_drm_fb_helper_set_par+0x10/0x10
[  562.932862][T15280]  fb_set_var+0x7af/0x1130
[  562.932904][T15280]  ? __pfx_fb_set_var+0x10/0x10
[  562.932951][T15280]  ? psi_task_switch+0x2c1/0x8e0
[  562.932991][T15280]  ? find_held_lock+0x2d/0x110
[  562.933029][T15280]  ? finish_task_switch.isra.0+0x212/0xcc0
[  562.933057][T15280]  ? __pfx_lock_release+0x10/0x10
[  562.933080][T15280]  ? rcu_is_watching+0x12/0xc0
[  562.933111][T15280]  ? hlock_class+0x4e/0x130
[  562.933141][T15280]  ? mark_lock+0xb5/0xc60
[  562.933175][T15280]  ? finish_task_switch.isra.0+0x160/0xcc0
[  562.933208][T15280]  ? __pfx_mark_lock+0x10/0x10
[  562.933243][T15280]  ? finish_task_switch.isra.0+0x217/0xcc0
[  562.933269][T15280]  ? lockdep_hardirqs_on+0x7c/0x110
[  562.933299][T15280]  ? finish_task_switch.isra.0+0x217/0xcc0
[  562.933349][T15280]  ? mark_lock+0xb5/0xc60
[  562.933385][T15280]  ? hlock_class+0x4e/0x130
[  562.933415][T15280]  ? fb_find_best_mode+0x1e7/0x2f0
[  562.933444][T15280]  ? fb_videomode_to_var+0x13/0x610
[  562.933476][T15280]  fbcon_resize+0x679/0x900
[  562.933517][T15280]  ? __pfx_fbcon_resize+0x10/0x10
[  562.933578][T15280]  ? do_raw_spin_lock+0x12d/0x2c0
[  562.933610][T15280]  ? __pfx_fbcon_resize+0x10/0x10
[  562.933645][T15280]  vc_do_resize+0xd2e/0x10f0
[  562.933693][T15280]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  562.933721][T15280]  ? rcu_is_watching+0x12/0xc0
[  562.933752][T15280]  ? __pfx_vc_do_resize+0x10/0x10
[  562.933782][T15280]  ? lock_acquire+0x2f/0xb0
[  562.933805][T15280]  ? vt_ioctl+0x28cb/0x2fd0
[  562.933832][T15280]  ? lock_acquire+0x2f/0xb0
[  562.933855][T15280]  ? vt_ioctl+0x28cb/0x2fd0
[  562.933888][T15280]  vt_ioctl+0x29e8/0x2fd0
[  562.933921][T15280]  ? __pfx_vt_ioctl+0x10/0x10
[  562.933948][T15280]  ? tomoyo_path_number_perm+0x46d/0x5b0
[  562.933994][T15280]  ? tomoyo_path_number_perm+0x190/0x5b0
[  562.934036][T15280]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  562.934073][T15280]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  562.934106][T15280]  ? do_vfs_ioctl+0x513/0x1950
[  562.934143][T15280]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  562.934174][T15280]  ? tty_jobctrl_ioctl+0x152/0xe00
[  562.934201][T15280]  ? __pfx_vt_ioctl+0x10/0x10
[  562.934230][T15280]  tty_ioctl+0x651/0x1640
[  562.934264][T15280]  ? __pfx_tty_ioctl+0x10/0x10
[  562.934297][T15280]  ? __pfx_lock_release+0x10/0x10
[  562.934310][T15280]  ? trace_lock_acquire+0x14e/0x1f0
[  562.934342][T15280]  ? __fget_files+0x206/0x3a0
[  562.934363][T15280]  ? __pfx_tty_ioctl+0x10/0x10
[  562.934383][T15280]  __x64_sys_ioctl+0x190/0x200
[  562.934407][T15280]  do_syscall_64+0xcd/0x250
[  562.934428][T15280]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  562.934447][T15280] RIP: 0033:0x7f843b385d29
[  562.934460][T15280] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  562.934475][T15280] RSP: 002b:00007f843c1b6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  562.934491][T15280] RAX: ffffffffffffffda RBX: 00007f843b575fa0 RCX: 00007f843b385d29
[  562.934502][T15280] RDX: 0000000000000007 RSI: 000000000000560a RDI: 0000000000000008
[  562.934512][T15280] RBP: 00007f843c1b6090 R08: 0000000000000000 R09: 0000000000000000
[  562.934522][T15280] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  562.934532][T15280] R13: 0000000000000000 R14: 00007f843b575fa0 R15: 00007ffef6f52498
[  562.934552][T15280]  </TASK>
[  563.187060][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  563.187115][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  563.591612][ T5845] Bluetooth: hci1: command tx timeout
[  565.478907][T15302] kexec: Could not allocate control_code_buffer
[  565.675903][ T5845] Bluetooth: hci1: command tx timeout
[  570.667016][T15435] sd 0:0:1:0: PR command failed: 1026
[  570.677590][T15435] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  570.696623][T15435] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  570.736879][T15439] cougar: G6 mapped to space
[  570.777621][T15439] sd 0:0:1:0: PR command failed: 1026
[  570.801589][T15439] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  570.808359][T15439] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  572.191932][T15464] netlink: 'syz.2.2475': attribute type 33 has an invalid length.
[  572.220546][T15464] netlink: 322 bytes leftover after parsing attributes in process `syz.2.2475'.
[  573.151670][T15459] kexec: Could not allocate control_code_buffer
[  573.318333][T15474] Process accounting resumed
[  573.921937][T15485] sd 0:0:1:0: PR command failed: 1026
[  573.927403][T15485] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  573.961446][T15485] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  575.978577][T15523] sd 0:0:1:0: PR command failed: 1026
[  576.052457][T15523] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  576.130880][T15523] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  576.820472][T15532] ima: policy update failed
[  576.831927][   T29] audit: type=1802 audit(4294967485.511:16): pid=15532 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.2494" res=0 errno=0
[  577.687746][T15574] Process accounting resumed
[  578.197033][T15597] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2511'.
[  578.206426][T15597] mac80211_hwsim hwsim18 ›: renamed from wlan0 (while UP)
[  578.657269][T15610] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2515'.
[  579.090000][T15627] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2520'.
[  579.108506][T15627] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2520'.
[  579.514437][T15643] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2525'.
[  579.561401][T15643] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2525'.
[  580.025348][T15645] Process accounting resumed
[  581.064039][T15684] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2539'.
[  581.332758][T15694] raw_sendmsg: syz.1.2541 forgot to set AF_INET. Fix it!
[  582.020274][T15705] futex_wake_op: syz.3.2543 tries to shift op by -1; fix this program
[  582.251711][T15715] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2545'.
[  582.331774][T15715] geneve0: entered allmulticast mode
[  582.946425][T15737] ovs_: entered promiscuous mode
[  583.411962][T15744] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2550'.
[  585.212153][T15784] netlink: 'syz.0.2561': attribute type 1 has an invalid length.
[  585.241273][T15786] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2562'.
[  586.591977][T15806] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 400008000010006
[  588.060192][T15836] netlink: 326 bytes leftover after parsing attributes in process `syz.3.2573'.
[  588.124936][T15837] netlink: 326 bytes leftover after parsing attributes in process `syz.3.2573'.
[  588.304865][T15843] sctp: [Deprecated]: syz.1.2574 (pid 15843) Use of int in max_burst socket option deprecated.
[  588.304865][T15843] Use struct sctp_assoc_value instead
[  588.331863][T15836] bridge0: port 2(bridge_slave_1) entered disabled state
[  588.339679][T15836] bridge0: port 1(bridge_slave_0) entered disabled state
[  588.698787][T15845] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2576'.
[  589.105465][T15845] team0: Port device team_slave_0 removed
[  591.598467][T15885] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2585'.
[  591.633588][T15887] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2583'.
[  591.856861][T15893] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2588'.
[  592.122979][T15893] team0: Port device team_slave_0 removed
[  593.961194][T15949] ==================================================================
[  593.969394][T15949] BUG: KASAN: slab-out-of-bounds in afs_proc_addr_prefs_write+0x123b/0x14e0
[  593.978108][T15949] Read of size 1 at addr ffff888022b70d67 by task syz.3.2601/15949
[  593.986021][T15949] 
[  593.988361][T15949] CPU: 1 UID: 0 PID: 15949 Comm: syz.3.2601 Not tainted 6.13.0-rc3-syzkaller-00026-g59dbb9d81adf #0
[  593.999150][T15949] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  594.009233][T15949] Call Trace:
[  594.012529][T15949]  <TASK>
[  594.015486][T15949]  dump_stack_lvl+0x116/0x1f0
[  594.020202][T15949]  print_report+0xc3/0x620
[  594.024656][T15949]  ? __virt_addr_valid+0x5e/0x590
[  594.029716][T15949]  ? __phys_addr+0xc6/0x150
[  594.034252][T15949]  kasan_report+0xd9/0x110
[  594.038703][T15949]  ? afs_proc_addr_prefs_write+0x123b/0x14e0
[  594.044710][T15949]  ? afs_proc_addr_prefs_write+0x123b/0x14e0
[  594.050721][T15949]  afs_proc_addr_prefs_write+0x123b/0x14e0
[  594.056551][T15949]  ? find_held_lock+0x2d/0x110
[  594.061354][T15949]  ? __pfx_afs_proc_addr_prefs_write+0x10/0x10
[  594.067528][T15949]  ? __might_fault+0x13b/0x190
[  594.072336][T15949]  ? __pfx_lock_release+0x10/0x10
[  594.077386][T15949]  ? trace_lock_acquire+0x14e/0x1f0
[  594.082627][T15949]  ? lock_acquire+0x2f/0xb0
[  594.087159][T15949]  ? proc_simple_write+0x114/0x1b0
[  594.092308][T15949]  proc_simple_write+0x114/0x1b0
[  594.097275][T15949]  ? __pfx_proc_simple_write+0x10/0x10
[  594.102766][T15949]  proc_reg_write+0x23d/0x330
[  594.107475][T15949]  ? __pfx_proc_reg_write+0x10/0x10
[  594.112703][T15949]  vfs_write+0x24c/0x1150
[  594.117059][T15949]  ? __pfx_vfs_write+0x10/0x10
[  594.121847][T15949]  ? do_futex+0x123/0x350
[  594.126210][T15949]  ? __pfx_do_futex+0x10/0x10
[  594.130918][T15949]  ? __pfx___might_resched+0x10/0x10
[  594.136229][T15949]  ? __x64_sys_futex+0x1e1/0x4c0
[  594.141205][T15949]  ? __x64_sys_futex+0x1ea/0x4c0
[  594.146176][T15949]  ksys_write+0x12b/0x250
[  594.150535][T15949]  ? __pfx_ksys_write+0x10/0x10
[  594.155422][T15949]  do_syscall_64+0xcd/0x250
[  594.159960][T15949]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  594.165892][T15949] RIP: 0033:0x7f843b385d29
[  594.170328][T15949] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  594.189982][T15949] RSP: 002b:00007f843c1b6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  594.198427][T15949] RAX: ffffffffffffffda RBX: 00007f843b575fa0 RCX: 00007f843b385d29
[  594.206423][T15949] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000002
[  594.214414][T15949] RBP: 00007f843b401a20 R08: 0000000000000000 R09: 0000000000000000
[  594.222406][T15949] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  594.230393][T15949] R13: 0000000000000000 R14: 00007f843b575fa0 R15: 00007ffef6f52498
[  594.238400][T15949]  </TASK>
[  594.241435][T15949] 
[  594.243767][T15949] Allocated by task 15949:
[  594.248191][T15949]  kasan_save_stack+0x33/0x60
[  594.252904][T15949]  kasan_save_track+0x14/0x30
[  594.257610][T15949]  __kasan_kmalloc+0xaa/0xb0
[  594.262237][T15949]  __kmalloc_node_track_caller_noprof+0x21d/0x520
[  594.268690][T15949]  memdup_user_nul+0x2b/0x110
[  594.273405][T15949]  proc_simple_write+0xc7/0x1b0
[  594.278284][T15949]  proc_reg_write+0x23d/0x330
[  594.282985][T15949]  vfs_write+0x24c/0x1150
[  594.287341][T15949]  ksys_write+0x12b/0x250
[  594.291692][T15949]  do_syscall_64+0xcd/0x250
[  594.296236][T15949]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  594.302163][T15949] 
[  594.304496][T15949] The buggy address belongs to the object at ffff888022b70d60
[  594.304496][T15949]  which belongs to the cache kmalloc-8 of size 8
[  594.318233][T15949] The buggy address is located 0 bytes to the right of
[  594.318233][T15949]  allocated 7-byte region [ffff888022b70d60, ffff888022b70d67)
[  594.332587][T15949] 
[  594.334919][T15949] The buggy address belongs to the physical page:
[  594.341349][T15949] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888022b70a40 pfn:0x22b70
[  594.351431][T15949] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  594.358560][T15949] page_type: f5(slab)
[  594.362573][T15949] raw: 00fff00000000000 ffff88801ac41500 dead000000000100 dead000000000122
[  594.371181][T15949] raw: ffff888022b70a40 000000008080007f 00000001f5000000 0000000000000000
[  594.379792][T15949] page dumped because: kasan: bad access detected
[  594.386229][T15949] page_owner tracks the page as allocated
[  594.391958][T15949] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 5836, tgid 5836 (syz-executor), ts 286722414576, free_ts 286722344679
[  594.411448][T15949]  post_alloc_hook+0x2d1/0x350
[  594.416249][T15949]  get_page_from_freelist+0xfce/0x2f80
[  594.421744][T15949]  __alloc_pages_noprof+0x223/0x25b0
[  594.427061][T15949]  alloc_pages_mpol_noprof+0x2c9/0x610
[  594.432567][T15949]  new_slab+0x2c9/0x410
[  594.436747][T15949]  ___slab_alloc+0xce2/0x1650
[  594.441452][T15949]  __slab_alloc.constprop.0+0x56/0xb0
[  594.446848][T15949]  __kmalloc_node_noprof+0x2f0/0x520
[  594.452162][T15949]  __vmalloc_node_range_noprof+0x3d8/0x1530
[  594.458084][T15949]  vzalloc_noprof+0x6b/0x90
[  594.462629][T15949]  do_ip6t_get_ctl+0x6ba/0xaf0
[  594.467420][T15949]  nf_getsockopt+0x79/0xe0
[  594.471867][T15949]  ipv6_getsockopt+0x1f7/0x280
[  594.476656][T15949]  tcp_getsockopt+0x9e/0x100
[  594.481267][T15949]  do_sock_getsockopt+0x3fe/0x870
[  594.486312][T15949]  __sys_getsockopt+0x12f/0x260
[  594.491192][T15949] page last free pid 5836 tgid 5836 stack trace:
[  594.497618][T15949]  free_unref_page+0x661/0x1080
[  594.502497][T15949]  vfree+0x17a/0x890
[  594.506405][T15949]  __do_replace+0x7d4/0x9e0
[  594.511008][T15949]  do_ip6t_set_ctl+0x990/0xc20
[  594.515784][T15949]  nf_setsockopt+0x8a/0xf0
[  594.520214][T15949]  ipv6_setsockopt+0x135/0x170
[  594.524986][T15949]  tcp_setsockopt+0xa4/0x100
[  594.529581][T15949]  do_sock_setsockopt+0x222/0x480
[  594.534616][T15949]  __sys_setsockopt+0x1a0/0x230
[  594.539477][T15949]  __x64_sys_setsockopt+0xbd/0x160
[  594.544595][T15949]  do_syscall_64+0xcd/0x250
[  594.549104][T15949]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  594.555033][T15949] 
[  594.557360][T15949] Memory state around the buggy address:
[  594.562979][T15949]  ffff888022b70c00: 05 fc fc fc fa fc fc fc 05 fc fc fc 05 fc fc fc
[  594.571039][T15949]  ffff888022b70c80: fa fc fc fc 04 fc fc fc 05 fc fc fc 01 fc fc fc
[  594.579098][T15949] >ffff888022b70d00: fa fc fc fc 00 fc fc fc 00 fc fc fc 07 fc fc fc
[  594.587157][T15949]                                                        ^
[  594.594349][T15949]  ffff888022b70d80: 06 fc fc fc 00 fc fc fc 05 fc fc fc fa fc fc fc
[  594.602410][T15949]  ffff888022b70e00: 05 fc fc fc fa fc fc fc 05 fc fc fc 05 fc fc fc
[  594.610463][T15949] ==================================================================
[  594.632854][T15949] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  594.640088][T15949] CPU: 0 UID: 0 PID: 15949 Comm: syz.3.2601 Not tainted 6.13.0-rc3-syzkaller-00026-g59dbb9d81adf #0
[  594.650875][T15949] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  594.660949][T15949] Call Trace:
[  594.664246][T15949]  <TASK>
[  594.667194][T15949]  dump_stack_lvl+0x3d/0x1f0
[  594.671818][T15949]  panic+0x71d/0x800
[  594.675750][T15949]  ? __pfx_panic+0x10/0x10
[  594.680201][T15949]  ? irqentry_exit+0x3b/0x90
[  594.684818][T15949]  ? lockdep_hardirqs_on+0x7c/0x110
[  594.690050][T15949]  ? preempt_schedule_thunk+0x1a/0x30
[  594.695450][T15949]  ? preempt_schedule_common+0x44/0xc0
[  594.700939][T15949]  check_panic_on_warn+0xab/0xb0
[  594.705911][T15949]  end_report+0x117/0x180
[  594.710281][T15949]  kasan_report+0xe9/0x110
[  594.714731][T15949]  ? afs_proc_addr_prefs_write+0x123b/0x14e0
[  594.720739][T15949]  ? afs_proc_addr_prefs_write+0x123b/0x14e0
[  594.726747][T15949]  afs_proc_addr_prefs_write+0x123b/0x14e0
[  594.732580][T15949]  ? find_held_lock+0x2d/0x110
[  594.737375][T15949]  ? __pfx_afs_proc_addr_prefs_write+0x10/0x10
[  594.743558][T15949]  ? __might_fault+0x13b/0x190
[  594.748360][T15949]  ? __pfx_lock_release+0x10/0x10
[  594.753407][T15949]  ? trace_lock_acquire+0x14e/0x1f0
[  594.758639][T15949]  ? lock_acquire+0x2f/0xb0
[  594.763173][T15949]  ? proc_simple_write+0x114/0x1b0
[  594.768329][T15949]  proc_simple_write+0x114/0x1b0
[  594.773306][T15949]  ? __pfx_proc_simple_write+0x10/0x10
[  594.778796][T15949]  proc_reg_write+0x23d/0x330
[  594.783502][T15949]  ? __pfx_proc_reg_write+0x10/0x10
[  594.788729][T15949]  vfs_write+0x24c/0x1150
[  594.793093][T15949]  ? __pfx_vfs_write+0x10/0x10
[  594.797881][T15949]  ? do_futex+0x123/0x350
[  594.802421][T15949]  ? __pfx_do_futex+0x10/0x10
[  594.807133][T15949]  ? __pfx___might_resched+0x10/0x10
[  594.812445][T15949]  ? __x64_sys_futex+0x1e1/0x4c0
[  594.817418][T15949]  ? __x64_sys_futex+0x1ea/0x4c0
[  594.822393][T15949]  ksys_write+0x12b/0x250
[  594.826751][T15949]  ? __pfx_ksys_write+0x10/0x10
[  594.831634][T15949]  do_syscall_64+0xcd/0x250
[  594.836164][T15949]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  594.842091][T15949] RIP: 0033:0x7f843b385d29
[  594.846524][T15949] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  594.866158][T15949] RSP: 002b:00007f843c1b6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  594.874601][T15949] RAX: ffffffffffffffda RBX: 00007f843b575fa0 RCX: 00007f843b385d29
[  594.882597][T15949] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000002
[  594.890589][T15949] RBP: 00007f843b401a20 R08: 0000000000000000 R09: 0000000000000000
[  594.898580][T15949] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  594.906581][T15949] R13: 0000000000000000 R14: 00007f843b575fa0 R15: 00007ffef6f52498
[  594.914585][T15949]  </TASK>
[  594.917859][T15949] Kernel Offset: disabled
[  594.922180][T15949] Rebooting in 86400 seconds..