last executing test programs:

9.932636104s ago: executing program 2 (id=2199):
mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000001d40), 0x40a40, 0x0)
set_mempolicy$auto(0x3, &(0x7f0000000000)=0x7, 0x9)
mmap$auto(0x0, 0x3, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x48140, 0x0)
readv$auto(r0, &(0x7f00000000c0)={0x0, 0x5}, 0x3)
ioctl$auto_TIOCVHANGUP2(r0, 0x5437, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0x1010001, 0x100000003)
read$auto(r1, 0x0, 0x20)
sendmsg$auto_NL80211_CMD_UPDATE_OWE_INFO(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYRESDEC=r0, @ANYRESHEX, @ANYBLOB="746cb551e830601e0d16aabb95291469d303f663aee02f11c85470d52aad0e1a83597ff7ee28603127a63aa61486d9def84244b955e043f80e4863109603599904e43691d52f8b8db3f762b23603e1aeea28c050892624ce04b9aa085cc103b84b27b4f6399119f1c648753803ada83ef75d2f83473afa338a9363aec6fc7e290c779f559a7721508685a053719936c59213308d23b1d3d1e8555c43793617dd0492ab7c5024ad50f8abd13c2b5ea6b33cb1b1730c67f78ba2a77fcf21948b126604c380be7ebf"], 0x40}, 0x1, 0x0, 0x0, 0x2408c810}, 0x40418c0)
mmap$auto(0xff0f200000000000, 0x400008, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r2 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000a40), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r3, &(0x7f0000001c00)={0x0, 0x0, &(0x7f0000001bc0)={&(0x7f0000000100)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2], 0x1c}, 0x1, 0x0, 0x0, 0x24000040}, 0x64)
io_uring_setup$auto(0x6, 0x0)
madvise$auto(0x0, 0x200006, 0x19)
shmctl$auto_IPC_STAT(0x4, 0x2, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
open(&(0x7f0000000000)='./file0\x00', 0x101800, 0x181)
creat$auto(&(0x7f0000000040)='./file0\x00', 0x81)
socket$nl_generic(0x10, 0x3, 0x10)

8.876441769s ago: executing program 0 (id=2202):
unshare$auto(0x20000)
r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/mnt\x00')
setns(r0, 0x0)
socket(0x1, 0x3, 0x5)
mount$auto(0x0, &(0x7f00000000c0)='.\x00', 0x0, 0x44000, 0x0)

8.575870517s ago: executing program 0 (id=2203):
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptywf\x00', 0x6cc041, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400007, 0x19dc, 0x13, 0x2, 0x7fff)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x401bf, 0x7352, 0x31, 0x8000, 0x1ffde, 0x1, 0x8000000000000001, 0x1, 0x9, 0x3, 0x5, 0x8, 0x3002, 0x9, 0xb, 0x80010002, 0x80, 0xd8f9, 0x0, 0x7, 0x2, 0x203, 0x400, 0x84, 0x0, 0x0, 0x0, 0x0, 0x1000, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}, 0x1fe, 0xd)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
mbind$auto(0x2000, 0x100000004, 0x400100000000, 0x0, 0x6, 0x2)
mprotect$auto(0x8000, 0x4, 0x5)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}}, 0x2400c010)
mmap$auto(0x0, 0xfb1, 0xffffffff, 0x9b72, 0x2, 0x8000)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x401, 0x0)
r1 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000180)='/dev/bus/usb/015/001\x00', 0xa901, 0x0)
ioctl$auto_USBDEVFS_SUBMITURB(r1, 0x8038550a, &(0x7f0000000100)={0x4, 0x81, 0x3, 0x80, &(0x7f0000000000), 0xabc, 0xeb91, 0x82, @stream_id=0x7ffc, 0x9, 0x476, 0x0})
r2 = ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/adsp1\x00', 0x2403, 0x0)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
r3 = socket(0x2c, 0x3, 0x1)
read$auto_ima_measurements_count_ops_ima_fs(r2, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'vxcan1\x00'})
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
r4 = mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x3, 0x0)
mq_timedsend$auto(r4, 0x0, 0x2000, 0x2, 0x0)
write$auto_dfs_sched_itmt_fops_itmt(r4, &(0x7f0000000080)="fabac313ed6edb7419b6de6479ba78d122fb098ee22c1ac8cf874d6f6a6766b7c4264441931e9c20caf74c251dc2ffa4d1db015aabe2e1e0df7b4935e1a6fab99b24d2b675bb7481d67a61af638b30bda1e424e42a6651", 0x57)
socket(0x1e, 0x2, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
r5 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r5, &(0x7f0000000200)={{0x0, 0xfe, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)

7.624525636s ago: executing program 0 (id=2206):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/pm_trace_dev_match\x00', 0x20080, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000280)=""/175, 0xaf)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/pids.max\x00', 0xa0942, 0x0)
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x0, 0x0)
mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x3, 0x6, 0x0, 0x200000000000001, 0x368e, 0x2, {0x100000000, 0x4}, 0xff, 0x6, 0xfffffffffffffffd, 0x1008000, 0x0, 0x8000000c, 0x81, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x804})
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
r3 = socket(0x15, 0x5, 0x0)
ustat$auto(0x801, 0x0)
sendmsg$auto(r3, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
sysfs$auto(0x2, 0x23, 0x0)
r4 = socket(0x11, 0xa, 0x300)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'vxcan1\x00'})
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x200)
listmount$auto(&(0x7f0000000040)={0x200, @inferred=r0, 0x5, 0x81, 0x400}, &(0x7f0000000140)=0x10000, 0x86, 0x2)
ioctl$auto_SNDCTL_DSP_SPEED(r1, 0xc0045002, &(0x7f00000000c0))
r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/afs/rootcell\x00', 0x1cb842, 0x0)
write$auto(r5, &(0x7f0000000300)='*o\xd3\xa49\xaf\xa9\xe4\xe17\x12\xb3Z\x17I\x82\xdc\xbeiw\xc1\xd1\x8d\x9b\r\x9aR\xe7\x9f\xd8\xab\x16`f\nT\xaa\xfap \xe6\xdaV\xdeD\x8dR5\xd2\xe58\n\xff\x19+\xeb\xb3+\xf6\xc6\a\x00\x00\x00\xf1A\xa5\x95\x1fk\x1f\xff\x99gP\x9e\x88\x97]\x93\xf4\xdd<\xe7p\x0e\xd4C\xdc\x84\v\xafz\xfd\x81\xa3\xb2\xbb\xa4\xd9\xf2P\xa8\xe9\x8f\x13\xa7\x98\x85\xf8\v\aB\xfc\xfa\x14E\xb8y\x884<\xa7\xffyb\x8a\b\xbb\x1b\x13W\xe3\xf7\xd8\x83\xc9\xd7\x8c', 0x6)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_CTRL_CMD_GETPOLICY(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000580)={0x1c, r7, 0x301, 0x70b52c, 0x25dfdbfb, {}, [@CTRL_ATTR_FAMILY_ID={0x6, 0x1, 0x17}]}, 0x1c}, 0x1, 0x0, 0x0, 0x400c01d}, 0x0)
syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000080), r6)
r8 = socket(0x2, 0x1, 0x106)
bind$auto(r8, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)

7.192134998s ago: executing program 3 (id=2207):
r0 = socket(0x10, 0x2, 0x0)
openat$auto_proc_coredump_filter_operations_base(0xffffffffffffff9c, &(0x7f0000000140), 0x40000, 0x0)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dri/card1\x00', 0x0, 0x0)
socket(0x28, 0x1, 0x0)
r1 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000000), 0xc0040, 0x0)
set_mempolicy$auto(0x0, 0x0, 0x5)
ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r1, 0xc0285700, &(0x7f00000000c0)={0x8, "e6c26c22ab89af11056b0001ac097e0a0728d9300000c500"})
ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r1, 0xc0285700, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
ioctl$auto_KVM_GET_VCPU_MMAP_SIZE(r2, 0xae04, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x800000001fc, 0x9, 0x100000000000d, 0x3, 0x9488, 0x6, 0x8, 0x400000002, 0x40000000000002, 0x300000000000000, 0xffff, 0x5, 0x6d3c, 0x7c00000000, 0x6, 0x4]}, 0x0)
r3 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x20000, 0x0)
pread64$auto(r3, &(0x7f0000000040)='/proc/scsi/sg/device\x95\x00', 0x100000001, 0xff)
close_range$auto(0x2, 0x8, 0x0)
mq_open$auto(&(0x7f0000000400)='{]@\x00', 0x0, 0x6, &(0x7f0000000440)={0x8000000000000001, 0x7d7, 0x80, 0x100000000})
mmap$auto(0x0, 0xd, 0x3, 0xeb1, 0xfffffffffffffffe, 0x8000)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x3, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000280)={'wg0\x00', <r6=>0x0})
bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r6, r5, 0x4, 0x1ff, 0xffffffffffffffff, @relative_id=0x13, 0xe600}, 0xf)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0xb, 0x5, 0x1ffde, 0x3, 0x1000006, 0xfffffffffffffffb, 0x9, 0x5, 0x20000000003, 0x6, 0xad, 0x7, 0x2, 0x3, 0x4, 0x7, 0x0, 0x0, 0x2, 0x0, 0x4, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x1, [0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x4]}, 0x1fe, 0x84)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0xc000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x800}, 0x44040)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0xc20f0000, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x8)

7.166577515s ago: executing program 1 (id=2208):
r0 = open(&(0x7f0000000000)='./file0\x00', 0x220000, 0x134)
lstat$auto(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x20000000000000, 0x1, 0x3, 0x0, <r1=>0xee00, 0x0, 0x0, 0x1, 0x1, 0x8, 0x5166, 0x7, 0x1f4, 0x1, 0x800, 0x7a, 0x4})
msgctl$auto_IPC_RMID(0xd435, 0x0, &(0x7f00000001c0)={{0x8, <r2=>0xee01, <r3=>0xee01, 0x9, 0x2, 0x1000, 0x6}, &(0x7f0000000140), &(0x7f0000000180)=0x3, 0xeb, 0x6, 0x0, 0x4c0c, 0x5, 0x0, 0x3, 0x2, @raw=0x2, @raw=0x6d47})
shmctl$auto_SHM_INFO(0x31, 0xe, &(0x7f00000003c0)={{0x8, <r4=>r1, <r5=>r3, 0x4, 0x8, 0x398}, 0x6, 0x401, 0x4, 0x7, @raw=0x10001, @raw=0xe1e1, 0x9e26, 0x0, &(0x7f0000000240)="bb1e8da35588de4001b2a0d63d6b3d01d5132d45f514167754302b1c9d77d769a932b906987aaebb3ca1a5cdd18bdda5b39706c62d136caa46b303cb16db017aa121047e77ceccace8feb08217a85e96cb86ab1b86e7ce7785ad0e1c78eb9ce09faa416f7f5d43ebc7698f9d17d6878cba193e58d1f36b33a399e672b6acf00f5286c0bb76a8ec63d91d6d190ea51ada56b627a256d8ab4178603b15d444ee286516e09fb1f7bdbeacf8e0e36be37c4f680a7b90c717897275d1c5e799970aad0fb5626ad18bbbcf8437822ed417d8754e9279966d879c071b89e12da799d59798c2ed3140e2cf0f9add9f98be648a1b99cd8fea", &(0x7f0000000340)="a1beb66110274098d69445f3d5690f45018ce17ef467326a9f7d0be61321f0c9cda699f85c22609b687d1a788b92689602edcb4855d242ca7e2ce2dbd477622c2e01101b9fcd52f9135e875e265e427e04ef8ba49657e080b8d3"})
r6 = signalfd4$auto(r0, &(0x7f0000000440)={0xffffffffffffff81}, 0x9, 0x1)
bind$auto(r6, &(0x7f0000000480)=@ethernet={0x1, @local}, 0x8)
r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000004c0)='/sys/devices/virtual/net/bpq4/statistics/rx_bytes\x00', 0x802141, 0x0)
lremovexattr$auto(&(0x7f0000000500)='./file0\x00', &(0x7f0000000540)='(]\x00')
r8 = openat$auto_fops_ulong_ro_(0xffffffffffffff9c, &(0x7f0000000580)='/sys/kernel/debug/ieee80211/phy7/netdev:wlan0/stations/08:02:11:00:00:01/rx_fragments\x00', 0x402, 0x0)
close_range$auto(r8, r7, 0x7fff)
r9 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000640), r6)
sendmsg$auto_NL802154_CMD_NEW_INTERFACE(r0, &(0x7f0000000a40)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000a00)={&(0x7f0000000680)={0x360, r9, 0x0, 0x70bd28, 0x25dfdbfd, {}, [@NL802154_ATTR_SCAN_CHANNELS={0x8, 0x21, 0x8}, @NL802154_ATTR_MAX_BE={0x5, 0x10, 0x3}, @NL802154_ATTR_MAX_ASSOCIATIONS={0x8, 0x27, 0x29d}, @NL802154_ATTR_COORDINATOR={0x332, 0x1e, 0x0, 0x1, [@nested={0x10e, 0x14b, 0x0, 0x1, [@nested={0x4, 0x7}, @generic="ff305634ca611b13d148db1473b796699cea0246f382e12b92cc5058713f2f6c48de2a2c0163e18202c445eab16440e114d2ff090a3942d43cd661af1f2bdb365d696cd50da22bae6af38207c9e62005a0d217adb3ce48a20133c25f5cb9f8a7bc9fe1accfed61280bbd5de56ca365f9142aae5e4af071e018a5e199c1df40c6719598", @typed={0x8, 0xb7, 0x0, 0x0, @u32=0x3}, @generic="bda44a62f6ad51bbfd93719bbe11447227d900940ae65400df240351171a8d64f2a55287a7d9c151d7d923dcc20ba23c29e6543dba7de25e1d2890484cd1df1f0c6bb6336b5ebe105f17eb4ed6b746ee26c63e6307a27d277967e150c98c8d3a7c6a332cb6ad2d4e1994cfd871e3a0", @nested={0x4, 0xfc}, @nested={0x4, 0x6d}, @nested={0x4, 0xe9}]}, @nested={0xb4, 0x145, 0x0, 0x1, [@typed={0xad, 0x23, 0x0, 0x0, @binary="426ef551f4703da4e25247bd74d00ff5a8dcf762c8f76e3d942b856c0e99317c22f36c1a6d80f598c6cfe30f96d7bfe627a8ccbb817a21e77487931c8444ae226ae8a0cf45b62b712ab3256f8496b63bf7927065d0e01307e71eb3e73761733a71078e4e21047d3070c7fd0fa24098d1b839726ffd42949c987ef83e24033522778ab83866877f04e8d0c09c981af24ae8bf4972a66b3ec7c9e321b345bb215aead99f5c351faee4bf"}]}, @nested={0xbf, 0xde, 0x0, 0x1, [@typed={0x8, 0xa, 0x0, 0x0, @uid=r2}, @nested={0x4, 0x6f}, @generic="319bf9830871c3d686adb5c069d706783ffd5ff6c07a13f6c5ed0cdcb641e53b3ac2d852c2aa5c0cf2356a229c7a81622359ad9dd04198b104da6475861cf902828e198093f4d9332c2d2a13810fdd079adfc62f9a190df5b20ef062212a931f3b81d6062b2f05d3f8bce45ba4e939cc7dcee88490363ce8a9d97ff9ffad0114d48fb071ed9960fe4673730bc172daa1bab01d8178db441f3c02ef4d2031a4895c6c5b39408d581b1f3feba3bca756"]}, @generic="37a239168257f9601d8eb25a5e785ab9bc7d583cd9187308b8dc497898348b3d5824a433a10e8e6c890a91e99178", @nested={0xc, 0x72, 0x0, 0x1, [@nested={0x4, 0x2a}, @nested={0x4, 0x34}]}, @typed={0x6e, 0x147, 0x0, 0x0, @binary="af7e57a031010c23588dd5cdd58d39e49ebc7055d76561cd7c33fb027c804943dc3fffcc2a8bacd57fc2a59f06adae19d186fbb665107123e77badee1d26894829e75937327debb7089162c72ea21313ef354dd59e939790b666fd5fe58aef5a875270d8562e460e4cfd"}]}]}, 0x360}, 0x1, 0x0, 0x0, 0x4}, 0xc000)
syz_clone3(&(0x7f0000001bc0)={0x200000000, &(0x7f0000000a80)=<r10=>0xffffffffffffffff, &(0x7f0000000ac0)=<r11=>0x0, &(0x7f0000000b00)=<r12=>0x0, {0x24}, &(0x7f0000000b40)=""/19, 0x13, &(0x7f0000000b80)=""/4096, &(0x7f0000001b80)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2, {r0}}, 0x58)
r13 = fcntl$auto(r8, 0x3ff, r12)
sendmsg$auto_NL802154_CMD_DEL_SEC_LEVEL(r6, &(0x7f0000001d40)={&(0x7f0000001c40)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000001d00)={&(0x7f0000001c80)={0x58, 0x0, 0x200, 0x70bd2d, 0x25dfdbfb, {}, [@NL802154_ATTR_MAX_BE={0x5, 0x10, 0x2}, @NL802154_ATTR_IFNAME={0x14, 0x4, 'bridge0\x00'}, @NL802154_ATTR_CCA_MODE={0x8, 0xc, 0x1}, @NL802154_ATTR_SCAN_DURATION={0x5, 0x24, 0xed}, @NL802154_ATTR_SUPPORTED_CHANNEL={0x8, 0x16, 0xa}, @NL802154_ATTR_PAGE={0x5, 0x7, 0x2b}, @NL802154_ATTR_SCAN_CHANNELS={0x8, 0x21, 0xfffffff4}]}, 0x58}, 0x1, 0x0, 0x0, 0x40090}, 0x48000)
ioctl$auto_BLKPG2(r13, 0x1269, 0x0)
r14 = socket(0x15, 0x80000, 0xfffffffe)
r15 = seccomp$auto(0x8001, 0x8, &(0x7f0000001d80)="1a3462217b786f9a5b941d554a946e5fd35fb02f68")
shmctl$auto(0x6, 0x8c, &(0x7f0000001ec0)={{0x1, <r16=>r4, r5, 0xb, 0xc71b, 0x8, 0xe5}, 0x9, 0x7b00000, 0x200, 0x0, @raw=0x19, @inferred=r11, 0xd, 0x0, &(0x7f0000001e00)="2ac7d2a0f957432b", &(0x7f0000001e40)="96482dea404bb4cbb1d32ecd96d05ef54d62e5ea7abb0afe9c941facaf8999f875ec23464494d352fdac5a104b8c8622a28168c8880b6dcce4e8034e81486acdacf5ccd8660616ae3df22a79e372a6"})
ioctl$sock_SIOCGIFINDEX(r14, 0x8933, &(0x7f0000001f40)={'veth1_to_bridge\x00', <r17=>0x0})
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000001f80)={'macsec0\x00', <r18=>0x0})
sendmsg$auto_MACSEC_CMD_ADD_RXSC(r15, &(0x7f00000024c0)={&(0x7f0000001dc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000002480)={&(0x7f0000001fc0)={0x4a8, 0x0, 0x900, 0x70bd28, 0x25dfdbfc, {}, [@MACSEC_ATTR_RXSC_CONFIG={0x10c, 0x2, 0x0, 0x1, [@nested={0x107, 0x10f, 0x0, 0x1, [@generic="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", @nested={0x4, 0x8d}]}]}, @MACSEC_ATTR_RXSC_CONFIG={0x378, 0x2, 0x0, 0x1, [@nested={0x227, 0x74, 0x0, 0x1, [@typed={0x14, 0x18, 0x0, 0x0, @ipv6=@mcast1}, @generic="a0f1e06d3c992e8458dd16b1d1c55330c260499ac3f48b7f96323618e7c2b4482872bffdbbc95324191c91698ec3673cb539a9af433945633b0a8b93b5ae5317d9e43b1e8ed0a681babfdc2e21bd22f30ecd40ccbc903f0fb9c5ff7c5f91143bf28105116041846efd0f701450f5a20aafac0ecbfd23b7fabe5b5dd87bdbc7f12b486f6398d691983967538e126cfbde78", @generic="5068158e929b43cd2ec1567576bf4b8fe1caf1fc4b376b1984df6268c1168b319083fb88bf83de4d24c7576e1d78228e7b8ee73845a07b67538b42b0a1cd8e43f0b9c32001499bb29e814710c228430e68bd9dde428d8cf72faecc987c061e2800617753e12f53e15e2870ca9d6504039b0c458f1ca4f0ffd4edb2518b0e6eff86ef413ed48ed45109442c0f8392e13f9f7f459b37d87add0208d2b3c8747086aa31ee7b3b", @nested={0x4, 0x34}, @generic="6e0e89b0a8e717ffefb73b4e99c05dfe746364404e4099f86ce6a347bd1d1301b4122478c2ef19d147082d4174aa51425b690f52eae22f5fc7b39672cfede9f49a40ac45a10ee7ac42e6f52a9840d694761d4a3d40b90a7680c4e5b986b5ed280ea507a0c1c0288fe63ccfa75b01e009d09d55fe340b043ea5030b75d514a8525246bfc727789a45945e9a799e63244b55eec4c56c5fa221b88c13788526d989785185a33acd58dd2729486267611d08c6e015695f1c1bf4929c6b94ea0ea6bbc7d6f08263503ec3414f8063e6581c2d6ed6979d01"]}, @generic="3be3e97e862cd8a7ac173c64b6e5d9da226044475f6c8893c0a8554aea55709062d69229aa9bd12df8d4927038bceac46143229af860eb870407e1e8089190a91cbcd6", @generic="cc417bf12005ed282f46ece180119e804b445a91aab1cd19707aec3e3073a5667486a0bb79a6979b7cec402112262f57d64b37d956bc3ac41bca314827117d1530dd266c62762d6a8e91268642462c37c86a061c21513ccad8bed5b9bc426577ceadc6128400a74955b01a40d2375f4d11a11ca0a2546237bfa70add373ab6e48f56", @generic="cc9eff30f3061dd58eef180bedc971698eaf539ee893f2482c0e0512178082e3fc7d5c53b3f6c57a91a243875acfcf871796315ec8a2f162e70466b3761304543f9aa0d7c9d17ed4a241a62e22435fb5beacc7a7011d31c801e53eaf1620b7d7031682d176af8bd6f3a1fe7d0180da33bbe103594fc865df2ee0877c8f7703", @typed={0x8, 0xcd, 0x0, 0x0, @uid=r16}]}, @MACSEC_ATTR_IFINDEX={0x8, 0x1, r17}, @MACSEC_ATTR_IFINDEX={0x8, 0x1, r18}]}, 0x4a8}, 0x1, 0x0, 0x0, 0x20000800}, 0x8884)
waitid$auto(0x2, r7, &(0x7f0000002600)={@siginfo_0_0={0xff, 0x7fffffff, 0xf42, @_sigfault={&(0x7f0000002500)="e58ed507f9e83c9b1c263a4c32a75222f6624d6bf3831359f9b7d05538c54584b6d1d7a7030c09bfe35963f3b065115527dc114ed97e43471fea922e5a1ea8eb31309ae7c114b2135e32675c31e1e2b15539f9478c60dbf30b71bd02373564ff26c8d0dbd6c34eaaf8ff00d638c9cb5a2123cf8c2d6bf73182095b42cc1af68a20ee249ccc046c9cd7b59e41cc92cc4841ce633f4575291aba6c248647762781f542c69e67e683bea3fcb2aa5ed5dadcd39b59395128e966e52bda4fd4d542d3beceede8ae28", @_trapno=0x80}}}, 0xfffffffb, &(0x7f0000002680)={{0xb1, 0x40}, {0xa9ab, 0x7}, 0x5, 0x4, 0x2, 0x9, 0x0, 0x929, 0x8, 0x234119db, 0x0, 0x9, 0x800, 0xfff, 0x3, 0x5})
kexec_load$auto(0x7e3, 0xfffffffffffffff8, &(0x7f00000027c0)={@buf=&(0x7f0000002740)="6a23c9cb0931697ac498002fdf5021f092b3141c7750d88ce3125b53debb3f542b9f6db1424f0a01fc7691a52c1cfec3741bba68dd780aff740750ebf2c965b354884bbfb18a3322146d144dcd4b757433153156dc226969f2a0c19adf122d598ca75a14947677", 0xffffffffffffff81, 0x5, 0xa}, 0x3)
read$auto_fops_ulong_ro_(r8, &(0x7f0000002800)=""/145, 0x91)
io_uring_setup$auto(0x2, &(0x7f00000028c0)={0x5, 0x7, 0x5, 0xe6d8, 0x3, 0x100, <r19=>r13, [0xffffffff, 0x4, 0xf], {0x3ff, 0x8, 0x0, 0x1, 0x0, 0xfffffffd, 0x1, 0x8, 0x4000}, {0xffffff7f, 0x7f, 0x2, 0x18, 0x9, 0x81, 0x7f, 0x3, 0x9}})
symlinkat$auto(&(0x7f0000002940)='./file0\x00', r0, &(0x7f0000002980)='./file0\x00')
ioctl$auto_VHOST_SET_VRING_CALL(r19, 0x4008af21, &(0x7f00000029c0)={0xd4, <r20=>r0})
sendmsg$auto_NL802154_CMD_SET_CHANNEL(r20, &(0x7f0000003ec0)={&(0x7f0000002a00)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000003e80)={&(0x7f0000002a40)={0x1420, r9, 0x10, 0x70bd26, 0x25dfdbfd, {}, [@NL802154_ATTR_SUPPORTED_COMMANDS={0x1c6, 0x19, 0x0, 0x1, [@typed={0x8, 0x10c, 0x0, 0x0, @uid=r16}, @nested={0x4, 0x52}, @generic="8d37db97d3ed762be6f19134ba6482a17a732cf8271ead9210fb46d0c466559997b2d26aa4cdd6f9708a3f4889873c4230110ed725ff192901714efd87d53ba3839b6133b557aea312f22466479dd489eeb3bd00e35bf23a59823127d97109e16b8a55033b9b32673dc0ee1740d5aac9e6c707863f006bdf88559dce2958fc6fdeab0168acb1840833e36f1514dec4240813798da3e351b644ab3e36db8df086be6c86f50406c28c6eb33d35cb6a8362fb63d89d12bd7d2641ed38969f58c5ea9c02a1e061d062ada62830d2132d8458", @generic="b590537525ea2c07d99ac4cfcd3dcbdb7cd40383101f5e571b73ab41d83292b69eef6d47d3d6771545f4edd71bf1561def526760319aaca0f1c6cd70b12ba1cc520ef51052c1b92210107a78d5ac447564c82bc6b8c3fc23a6f23f42282a49a2c3034b0193d201de4781441ce03764713a9c6b4492c7cd83f2c2e23959c5ae4bc86269151e3f04e5ea8101948912ea28304f9f9110ad8eee5d2c492055cfaa55d3055ec9e9e8b75c8da559aac2b10f54fe1af6b0affc67f70714610037603a09b53bdfa4e0783603fc0b24da6ced080b6726be20def83be197a7be1e101b", @typed={0x7, 0x3b, 0x0, 0x0, @str='#&\x00'}]}, @NL802154_ATTR_SEC_OUT_LEVEL={0x8, 0x2a, 0x2}, @NL802154_ATTR_PEER={0x1217, 0x28, 0x0, 0x1, [@typed={0x4b, 0xb9, 0x0, 0x0, @binary="05c3518e84f15ad31ab82032a30b9d9c944da8db8c1ce88f68096e97265a34b2dddaa89e3cf9577daf052c1cf47d782b76bd4581df616eedb23583b17f794b7f87d94c91261ecb"}, @nested={0x77, 0xb4, 0x0, 0x1, [@generic="d1fa391d140a1c934227152d3d04edf5690d2bdbcc8158eb87041d20044d6fa82d455653a766f8d6ccb2c790a0451eb6d895fc10d039a04f03a30efc3ee3504efd31a20cf45eb2c481e2b708a215f9a0db58397328ffe615e19cdad4c0e679fd331fb2214a647edc4f0483d3c16ebe0ce982b6"]}, @generic="adc81fab08efc218f879602a63ba09b1a08a9b70f4514b1c41060d9a29110fa1f9cabb9af839c7e7d2091822f6d644ea290f403a35f1050275387b520ef239bf6c0ed6cb1b27d4ab8a5e645e697f988e2252ba2ed09023aa1cd6bdabccf1c4b715d93e813b4fb7d5a3f0f264b294d53d1613bfe6624031d19b595db38393a7cfd7aef32a47b67241e337c43557f1e839903aa6af2be17cf7e2199774307ec7d51a5aa8e3dbf35b3d3ce4a2f0117546c3a2f5733df39fd7085fdf02f4982dc6477ede685df35413c72a56b532e04a1ac7d94f5272a3ab7c14b6f59e2f9a50f2", @generic="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", @nested={0x6e, 0x12e, 0x0, 0x1, [@nested={0x4, 0xb4}, @nested={0x4, 0x19}, @typed={0xc, 0xe7, 0x0, 0x0, @u64=0x101}, @generic="402937104a58cbac2b7cbd383e337836c146158ed2139a9c47642c50468ecd561d2a2b78743b54ca866a1bc60e261bcdc495e6563c044a6633a476de9c3d31c4f6e5861fce0acfdc4e7976050c6e", @typed={0x4, 0xcb}, @generic, @nested={0x4, 0x4b}]}]}, @NL802154_ATTR_WPAN_PHY_CAPS={0x14, 0x18, 0x0, 0x1, [@nested={0x10, 0x68, 0x0, 0x1, [@nested={0x4, 0x141}, @typed={0x8, 0x123, 0x0, 0x0, @u32=0x7f}]}]}, @NL802154_ATTR_SEC_FRAME_COUNTER={0x8}, @NL802154_ATTR_CHANNEL={0x5, 0x8, 0xff}]}, 0x1420}, 0x1, 0x0, 0x0, 0x801}, 0x50)
sendmsg$auto_NL80211_CMD_UNEXPECTED_FRAME(r15, &(0x7f0000004040)={&(0x7f0000003f00)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000004000)={&(0x7f0000003f80)={0x68, 0x0, 0x400, 0x70bd26, 0x25dfdbfe, {}, [@NL80211_ATTR_OBSS_COLOR_BITMAP={0xc, 0x12e, 0xed}, @NL80211_ATTR_TIMED_OUT={0x4}, @NL80211_ATTR_HE_CAPABILITY={0x37, 0x10d, "478011cde9bfe258efcf3ea859a5b1331da5b6d2ab25be953b4428844166d1ea1bf6da25e12596223dd4cf56b257727a2b179b"}, @NL80211_ATTR_OBSS_COLOR_BITMAP={0xc, 0x12e, 0x7}]}, 0x68}}, 0xc5)

7.071519495s ago: executing program 1 (id=2209):
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x82000, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x28102, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, 0x0, 0x2dc08f24db163610, 0x0)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0x20000000000000d4, 0x1, 0x6, 0x0, 0x7, 0x368a, 0x2, {0x100000000, 0x10000}, 0x5, 0x8, 0xfffffffffffffffd, 0x1007fff, 0x0, 0x8, 0x81, 0xdfffffffffff628e, 0x6, 0xdeb1, 0x808})
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
mmap$auto(0x0, 0x400008, 0x1000df, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
ioctl$auto(0x3, 0x89e2, 0x91)
ioctl$auto(0x3, 0x89e2, 0x91)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0x4, 0x2020009, 0x9, 0xeb1, 0xffffffffffffffff, 0x8000)
msync$auto(0x0, 0xe0, 0x6)
socket(0xa, 0x2, 0x3a)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x1, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0xa3db)
syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x9a\xadu(:\x94:\xaf\x06c=3>1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5)
r2 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000080))
getdents64$auto(r2, 0x0, 0x3)
mmap$auto(0x0, 0x10810004, 0x100, 0x10, 0x3, 0x9)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS3\x00', 0x0, 0x0)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4)
madvise$auto(0x110c230000, 0x1, 0x9)
futex$auto(0x0, 0xc, 0xffffffff, 0x0, 0x0, 0x4)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/i8042/serio0/force_release\x00', 0xc2082, 0x0)
write$auto(r3, &(0x7f00000004c0)='N\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x7ff)

7.036774891s ago: executing program 3 (id=2210):
mmap$auto(0x0, 0xdb35, 0xe4, 0xeb1, 0x405, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
ioctl$auto_TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptya5\x00', 0x13bc00, 0x0)
close_range$auto(0x2, 0xa, 0x0)
socket(0x29, 0x2, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
write$auto(0x3, 0x0, 0xfffffdef)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x3ec0)
openat$auto_uinput_fops_uinput(0xffffffffffffff9c, 0x0, 0x101001, 0x0)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x109001, 0x0)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000500)='/dev/tty34\x00', 0x2200, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/bus/netdevsim/del_device\x00', 0x501, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000200)="34aeede84184", 0x6)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x4, 0x8, 0x3, 0x15f4da07, 0x5, 0x3, 0x62, 0x8000001f, 0x2, 0x6d3e, 0x9, 0x2, 0x8]}, 0x0)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
mincore$auto(0x1000, 0x8001, 0x0)
unshare$auto(0x20000080)
connect$auto(0x3, 0x0, 0x10)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
munmap$auto(0x20001000, 0x7fb3)

5.825924617s ago: executing program 0 (id=2211):
r0 = socket(0x1e, 0x805, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x78, 0xffffffffffffffff, 0x300000000000)
getsockopt$auto_SO_NOFCS(0xffffffffffffffff, 0x5, 0x2b, 0x0, &(0x7f0000000080)=0x7ff)
connect$auto(0xffffffffffffffff, 0x0, 0x7)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0)
write$auto(0x3, 0x0, 0x100082)
capget$auto(0x0, 0x0)
connect$auto(0x3, 0x0, 0x55)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x1, 0x106)
r1 = socket(0xf, 0x3, 0x2)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0)
bind$auto(r1, 0x0, 0x2)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
read$auto(0x3, 0x0, 0xf34)
setsockopt$auto(0x3, 0x1, 0x1d, 0x0, 0x9)
connect$auto(r0, &(0x7f0000000000)=@tipc=@id={0x1e, 0x3, 0x2, {0x4e20}}, 0x10)

4.830715095s ago: executing program 2 (id=2212):
shmctl$auto_SHM_UNLOCK(0xa, 0xc, &(0x7f0000000440)={{0x1, <r0=>0xee01, 0xee00, 0x2, 0x30, 0x90000000, 0x12b}, 0x7, 0x4, 0x4, 0x8, @inferred, @raw=0x2, 0x9, 0x0, &(0x7f0000000300)="c95a93c87a50c02594dc6781816eca516e128021ddf0de3d9972e075a10956424df157658b140cc0d2a54c3ef3ea4c4c9da34fba1a57da16e186b1da9d8f371e320ccf421aeaf34e4e1fdb169be9f78d2fe62cd8f5282c666293c47dbdd60a0ccc4af6557fbb40eecf90809476a4bc136e5615bada2583ce35c846f3d874a4d1636f072748b02e8d3a5df191ce01728843fdc4e990b768c1ae3c1d73c8e023955a07ca67d6b9df11ecee0f094a266fb9cb2d841a7f7b3922495730f813e8fe12ef07b6caf42d6dac4fa8565c62e150c98621680bc62e565944a8", &(0x7f0000000180)="6eec8c5f2b1fa38520b51d674a767fb0262bbcbfed1269176dfbc4c3fa3237b54d441b1be916107b5038974e149a90edef9ed599373e0168bcea95dcae28510d2fbf09a2a803b986c999001eaf3d52b5754754c33a9dd9e6792116ca16b16f8837a4857f29ce8824646d"})
fstat$auto(0xffffffffffffffff, &(0x7f00000004c0)={0x6dab, 0x2be3, 0xfffffffffffff00a, 0x8001, 0xee00, <r1=>0xffffffffffffffff, 0x0, 0x2, 0x7f, 0xffffffffffffffa6, 0xfffffffffffffff8, 0x5, 0x5, 0x4, 0x400, 0x4, 0x2})
r2 = getpid()
socket(0x15, 0x5, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x6, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x801, 0x106)
r3 = gettid()
rt_tgsigqueueinfo$auto(r2, r3, 0x1e, &(0x7f0000000400)={@_si_pad})
msgctl$auto_IPC_SET(0x8, 0x1, &(0x7f00000005c0)={{0x3, r0, r1, 0xc, 0x3, 0x9, 0x3}, &(0x7f0000000280)=0xfa, &(0x7f0000000580)=0x3, 0x1, 0xa9, 0x6, 0xffffffff7fffffff, 0x100000000, 0x0, 0x4, 0x3, @inferred=r3, @raw=0x3ff})
mmap$auto(0x0, 0x400008, 0xdf, 0x38, 0x6, 0x8000)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB="000229bd0000fbdbdf35020000000800fbffffffffff0737010005"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00211459a600fbdbdf250200000008000300000000001b"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0)
sendmsg$auto_CGROUPSTATS_CMD_GET(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x0, 0x25, 0x70bd25, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x400c9d0}, 0x4080)
r4 = socket(0x10, 0x2, 0x14)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000002fc0)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000000a14"], 0x14}, 0x1, 0x0, 0x0, 0x80c3}, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r5 = socket(0xa, 0x3, 0x3b)
r6 = getsockopt$auto(r5, 0x29, 0x30, 0x0, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='r'], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x200440c0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4c084}, 0x51)
openat$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x100, 0x0)
utimensat$auto(r6, &(0x7f0000000640)='./file0\x00', &(0x7f0000000680)={0x4, 0x9}, 0xffc0000)
sendmmsg$auto(r4, &(0x7f0000000080)={{0x0, 0x8001c01, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x1}, 0x7}, 0x3d55, 0x0)
r7 = socket(0xa, 0x801, 0x84)
getsockopt$auto(r7, 0x40000000029, 0xb, 0xfffffffffffffffe, 0x0)

4.645151734s ago: executing program 1 (id=2213):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_SMC_NETLINK_REMOVE_UEID(r0, &(0x7f00000023c0)={0x0, 0x0, &(0x7f0000002380)={&(0x7f0000002340)={0x14, 0x0, 0x1, 0x70bd2c, 0x25dfdbfc}, 0x14}}, 0x20000000)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/sockstat\x00', 0x280, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
socket(0x1d, 0x2, 0x6)
r1 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0xa901, 0x0)
mmap$auto(0x1, 0x202000b, 0x3, 0xeb1, r1, 0x8000)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0xc01)
setreuid$auto(0x0, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000480)=""/4096, 0x1000)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r2 = socket(0x15, 0x5, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
sendmsg$auto(r2, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0)
writev$auto(0x1, 0x0, 0x1)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
readahead$auto(r3, 0x6, 0x2)
r4 = socket(0x23, 0x5, 0x0)
listen$auto(r4, 0x5ed)
unshare$auto(0x40000080)
r5 = open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x42842, 0x95)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000f80)='/sys/devices/LNXSYSTM:00/LNXPWRBN:00/hid\x00', 0x0, 0x0)
pread64$auto(r6, 0x0, 0x3fc, 0x4000000000000006)
read$auto(r5, 0x0, 0x1)
r7 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/net/rpc/use-gss-proxy\x00', 0x48041, 0x0)
write$auto(r7, 0x0, 0x6)
r8 = socket(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000080)={'vcan0\x00'})

4.623969794s ago: executing program 0 (id=2214):
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x82000, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x28102, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, 0x0, 0x2dc08f24db163610, 0x0)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0x20000000000000d4, 0x1, 0x6, 0x0, 0x7, 0x368a, 0x2, {0x100000000, 0x10000}, 0x5, 0x8, 0xfffffffffffffffd, 0x1007fff, 0x0, 0x8, 0x81, 0xdfffffffffff628e, 0x6, 0xdeb1, 0x808})
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
mmap$auto(0x0, 0x400008, 0x1000df, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
ioctl$auto(0x3, 0x89e2, 0x91)
ioctl$auto(0x3, 0x89e2, 0x91)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0x4, 0x2020009, 0x9, 0xeb1, 0xffffffffffffffff, 0x8000)
msync$auto(0x0, 0xe0, 0x6)
socket(0xa, 0x2, 0x3a)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x1, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0xa3db)
syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x9a\xadu(:\x94:\xaf\x06c=3>1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5)
r2 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000080))
getdents64$auto(r2, 0x0, 0x3)
mmap$auto(0x0, 0x10810004, 0x100, 0x10, 0x3, 0x9)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS3\x00', 0x0, 0x0)
getrandom$auto(0x0, 0x8, 0x7)
madvise$auto(0x110c230000, 0x1, 0x9)
futex$auto(0x0, 0xc, 0xffffffff, 0x0, 0x0, 0x4)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/i8042/serio0/force_release\x00', 0xc2082, 0x0)
write$auto(r3, &(0x7f00000004c0)='N\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x7ff)

3.58967655s ago: executing program 2 (id=2215):
madvise$auto(0x101, 0xffffffff80000000, 0xfffffff8)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
socket(0x2b, 0x1, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
r0 = socket(0x2, 0x801, 0x106)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
bind$auto(0x3, 0x0, 0x6a)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x2a247da5, 0x7, 0x4000000000df, 0x16, 0x401, 0x8000)
socket(0x10, 0x2, 0x0)
fstat$auto(0xffffffffffffffff, &(0x7f0000000000)={0x5, 0x80000001, 0x0, 0x100, 0x0, 0x0, 0x0, 0xffffffffffffff91, 0xfd3, 0x2, 0xec, 0x4, 0x80000020281, 0x8, 0x2, 0xfffffffffffffff8})
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYBLOB="1a0027"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
setsockopt$auto(r0, 0x6, 0x3, 0x0, 0xa1)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
r1 = socket(0x2, 0x5, 0x0)
r2 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/rt_acct\x00', 0x840, 0x0)
read$auto_proc_iter_file_ops_compat_inode(r2, &(0x7f0000000180)=""/138, 0x8a)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0x28, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
shutdown$auto(0x200000003, 0x2)
recvmmsg$auto(0x3, &(0x7f0000000100)={{0x0, 0x9, &(0x7f0000000080)={0x0, 0x9}, 0x7, 0x0, 0x1, 0x4}, 0x4}, 0x10000, 0x300, 0x0)
sendmmsg$auto(r1, &(0x7f00000001c0)={{&(0x7f0000000280)="485cee07cc0e5b27bab297fda4bc509bbf83a21c11", 0x2010, &(0x7f00000000c0)={0x0, 0x1a000}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311)
write$auto(0x3, 0x0, 0xffd8)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

3.249468561s ago: executing program 3 (id=2216):
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x6c, 0x0, 0x800, 0x70bd26, 0x25dfdbfe, {}, [@HSR_A_IFINDEX={0xfc85}, @HSR_A_IF2_SEQ={0x6, 0x7, 0x8000}, @HSR_A_IFINDEX={0x8}, @HSR_A_NODE_ADDR_B={0xa}, @HSR_A_NODE_ADDR={0xa}, @HSR_A_NODE_ADDR={0xa, 0x1, @broadcast}, @HSR_A_IF1_SEQ={0x6, 0x6, 0xf}, @HSR_A_IF2_AGE={0x0, 0x4, 0x80000001}, @HSR_A_NODE_ADDR={0xa, 0x1, @multicast}]}, 0x6c}, 0x1, 0x0, 0x0, 0x40080}, 0xc000)
clock_adjtime$auto(0x0, &(0x7f0000000040)={0xfbb, 0x0, 0x7f, 0xfffffffff7fffffe, 0x600, 0x1, 0x7, 0x0, 0x7, 0x8, 0x5, {0x3ff, 0x7}, 0xfffffffffffffffa, 0xa5, 0xa, 0x13c, 0x0, 0xc3, 0x1000, 0x800000000000007, 0x5, 0x90, 0xfffffff5})
close_range$auto(0x2, 0x8, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0x1d, 0x2, 0x7)
r2 = socket(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r3=>0x0})
bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r3}, 0x6a)
sendmmsg$auto(0x3, &(0x7f0000000040)={{0x0, 0x2, &(0x7f0000000080)={0x0, 0x1}, 0x10a, 0x0, 0x0, 0x3ff}, 0xed7138c}, 0x200, 0x0)
r4 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000300), r2)
sendmsg$auto_NETDEV_CMD_BIND_RX(r2, &(0x7f0000000440)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000400)={&(0x7f0000000340)={0x98, r4, 0x800, 0x70bd27, 0x25dfdbfb, {}, [@NETDEV_A_DMABUF_FD={0x8, 0x3, r1}, @NETDEV_A_DMABUF_FD={0x8, 0x3, r2}, @NETDEV_A_DMABUF_QUEUES={0xc, 0x2, 0x0, 0x1, [@NETDEV_A_QUEUE_ID={0x8, 0x1, 0x80000000}]}, @NETDEV_A_DMABUF_FD={0x8, 0x3, r2}, @NETDEV_A_DMABUF_FD={0x8, 0x3, r1}, @NETDEV_A_DMABUF_QUEUES={0xc, 0x2, 0x0, 0x1, [@NETDEV_A_QUEUE_ID={0x8, 0x1, 0x8}]}, @NETDEV_A_DMABUF_FD={0x8, 0x3, r0}, @NETDEV_A_DMABUF_FD={0x8, 0x3, r0}, @NETDEV_A_DMABUF_QUEUES={0x3c, 0x2, 0x0, 0x1, [@NETDEV_A_QUEUE_ID={0x8, 0x1, 0x9}, @NETDEV_A_QUEUE_ID={0x8, 0x1, 0xffffffff}, @NETDEV_A_QUEUE_ID={0x8, 0x1, 0x7fffffff}, @NETDEV_A_QUEUE_ID={0x8, 0x1, 0x10001}, @NETDEV_A_QUEUE_TYPE={0x8}, @NETDEV_A_QUEUE_ID={0x8, 0x1, 0x10000}, @NETDEV_A_QUEUE_ID={0x8, 0x1, 0x6af3}]}]}, 0x98}, 0x1, 0x0, 0x0, 0x40}, 0x80)
close_range$auto(0x2, 0x8, 0x0)
read$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffffff, 0x0, 0x0)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
socket(0x10, 0x2, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$auto_NL802154_CMD_LIST_ASSOCIATIONS(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x14, r6, 0x305, 0x70bd27, 0x25dfdbff}, 0x14}, 0x1, 0xffff0000}, 0x84)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x1c1282, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', <r8=>0x0})
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00082dbd7000fedbdf250300000008000400b70a0000060007000080000008000200", @ANYRES32=r8, @ANYBLOB="0a0005000180c200000e00000a0001000180c200000e00000a000100aaaaaaaaaa35000008000200", @ANYRES32=r8], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40)
r9 = openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f0000000080), 0x2140, 0x0)
pread64$auto(r9, &(0x7f0000000140)=']}\x00', 0x101, 0x8)
sendmsg$auto_NL80211_CMD_START_NAN(r0, &(0x7f0000001640)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000001600)={&(0x7f0000000500)={0x10d8, 0x0, 0x0, 0x70bd2b, 0x25dfdbfd, {}, [@NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0x12, 0xe8, "8b43c17d579d5d5084a55da07bfb"}, @NL80211_ATTR_CSA_C_OFFSETS_TX={0xa3, 0xcd, "c194994f900d31fd46059543d73e6cf1cad819c014ba281593138d126a748a616316326fa046e60711b3afe3309fae1d79529b7c95f07f023cc01c157bfc0d5d6c75c057bf1a81a1a5f14429900b91c0243abbb37a416e012a1c2fe10860d710f082049010e850d65d85c5a69d8ec0849e523d7c90c2a58c9399287f285df2e6503a7ef5239c8a54491fd615492b588b0c8dc68ca8de8221d446718a277570"}, @NL80211_ATTR_WIPHY_ANTENNA_RX={0x8}, @NL80211_ATTR_QOS_MAP={0x1004, 0xc7, "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"}]}, 0x10d8}, 0x1, 0x0, 0x0, 0x4088004}, 0x4000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

3.229435615s ago: executing program 1 (id=2217):
mmap$auto(0x2, 0x20009, 0x4000000800df, 0xeb1, 0xffffffffffffffff, 0x7ffd)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/rpc/nfsd.export/channel\x00', 0x8f3b7a51b8162d21, 0x0)
userfaultfd$auto(0x1)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8400)
modify_ldt$auto(0x1, 0x0, 0x10)
r0 = socket(0x1d, 0x2, 0x6)
r1 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
pread64$auto(r1, &(0x7f0000000040)='\x00\x00\x00\x88\xde\x90\a\'\x9bM\xb1\x848\xbbz(\xe9\x05<\x82\xfe\xe2\xf6 \x0f8\xfb\xa7\xb4\xa0\x8e\xcf\xe1\x05\x96\x9e\xcb\xec\x9e{W\xed>\xe7!*\xe3\x99}x\xd4\xa5D\xfa\xe5\xf9od^\xa6', 0x7ff, 0x400)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
open(&(0x7f00000001c0)='./file0\x00', 0x3092c0, 0x4a)
r3 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000780), r0)
r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r6=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000400)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01002dbd7000fddbdf250800030008000300", @ANYRES32=r6, @ANYRESOCT], 0x24}, 0x1, 0x0, 0x0, 0x5c5fd097f751b33e}, 0x80)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000940)={&(0x7f0000000740)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000900)={&(0x7f00000007c0)={0x114, r3, 0x300, 0x70bd26, 0x25dfdbfb, {}, [@OVS_VPORT_ATTR_TYPE={0x8, 0x2, 0x5}, @OVS_VPORT_ATTR_IFINDEX={0x8, 0x8, r6}, @OVS_VPORT_ATTR_TYPE={0x8, 0x2, 0xfff}, @OVS_VPORT_ATTR_UPCALL_PID={0xe6, 0x5, "c3d7ff6bd7dc37c55863d37071281e106fe66ae62d3841ddd1a07d30cea55c8cf1e25f3c86bc96419af90e216ba00e03da35ded3224dc3eb9456bd680c2aee823f501695a7446f1fdd8829da9ce598f8824d8017598643d57969ac687afa7ee8da404ead21813556e8da3c135260b3f0aef22a1e2b7c7d54ecfaad264d1b007d263b6f01b7a7544821f3938e92e565a443d5dac94018c820d8177f3f062e8fdc4afbd793b53a45dd7b76752ab817e349b4f8149b810716b0463df63d7f6234459e5828d38d475dbe2f271f916328d435017f3e1b04fe4a7ba21352af0af8d67bb507"}]}, 0x114}, 0x1, 0x0, 0x0, 0x10}, 0x0)
msgctl$auto_IPC_SET(0x4, 0x1, &(0x7f0000000380)={{0x8, <r7=>0xffffffffffffffff, 0xffffffffffffffff, 0x3, 0x0, 0x2f87, 0xf26c}, &(0x7f0000000180)=0x9, &(0x7f0000000300)=0x93, 0x6, 0xffffffffffffff88, 0x6, 0x9, 0x800, 0x200, 0xfffe, 0x404, @inferred=0xffffffffffffffff})
shmctl$auto_IPC_STAT(0x2000000, 0x2, &(0x7f00000005c0)={{0x3f, 0x0, <r8=>0xffffffffffffffff, 0x4, 0x2, 0x1}, 0xac, 0x0, 0x3, 0x5, @inferred, @raw, 0x8, 0x0, &(0x7f0000000400)="f03725d250a7c25484b1ec64f5fae4cadb84006d23a771ba109f8a53f676dde79ad4b2e125497939c887d408c03e40cb26ff7b8384981fc462e9e7ba867b2671718f2a641de99e049f2b5794e252e9bcf0997d3724f3517ff8e027f106278f561986e6fa6db2339804af6c91d0ee7793f3a1a1539715577d7650ba078b53a6c3fbd5a70f5eb7f5ac47e523ccefde76320e4e0f789627bc8b60ef73db78a484f9f8e937c2bc2c6b14c1e963a87a7b0aec2761f4e2ec031712d5b8c8df6b62f8b8a1b6760248a2ce54e71c4b2ff1747638dd88e8bbbf140f93a6e7b78a44e520", &(0x7f0000000500)="15965fdf82e3526dc86618fd7947a665550b9042947cf4aafe5d561f4ac677d7d3b9340aa0d2bb3a095899214a2293f9546b0212acc713d295442e994701e2a8f8d678572ca2d0d8514fddb5b1177a5e3e783967c28e39dbd355cff61a64c8b68254c952006fb69d6e0ade2c9c139471aa1edbfdba1de1e589f9b97df1803a4817f84b09e230bdff63478ed7cbe1417fe9ee4822dc0da598e0f090129a3e89"})
msgctl$auto_MSG_STAT_ANY(0x8, 0xd, &(0x7f00000006c0)={{0xd6, r7, r8, 0x9, 0x6, 0x6, 0xfffe}, &(0x7f0000000640)=0xa, &(0x7f0000000680)=0x1, 0xffffffffffffffff, 0x6, 0x80000001, 0x100000001, 0x5, 0x307e, 0x8000, 0x4, @raw=0xaf8, @raw=0x80000000})
rename$auto(&(0x7f0000000040)='./file0\x00', &(0x7f0000000340)='./file0\x00')
rename$auto(&(0x7f0000000000)='./file0\x00', &(0x7f00000002c0)='./file1\x00')
r9 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0)
ioctl$auto_userfaultfd_dev_fops_userfaultfd(r9, 0x8, &(0x7f0000000400))
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000240)={[0xd1, 0x7, 0xa, 0x1, 0x948b, 0x3, 0x6, 0x3, 0x3, 0x65, 0x80000021, 0xc9, 0x6d3e, 0x9, 0xfffffffffffffff7, 0x6]}, 0x0)
syz_genetlink_get_family_id$auto_macsec(0x0, 0xffffffffffffffff)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0xd, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)

3.054693304s ago: executing program 3 (id=2218):
mmap$auto(0x0, 0x128009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000340), 0x189400, 0x0)
ioctl$auto_RTC_RD_TIME(r0, 0x80247009, 0x0)
r1 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fb0\x00', 0x20401, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x4601, 0x0)
mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4)
open(&(0x7f0000000140)='./file0/../file0\x00', 0x101800, 0x181)
r2 = creat$auto(&(0x7f0000000040)='./file0\x00', 0x81)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="140064bb", @ANYRES16=r4, @ANYBLOB="01032dbd7000fedbdf251f000000"], 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x4000)
splice$auto(r0, 0x0, r2, 0x0, 0xb, 0x4000f)
prctl$auto_PR_SET_VMA(0x53564d41, 0xfffffffffffffffe, 0x8000000000000001, 0xfff, 0x1ff)

2.013500592s ago: executing program 3 (id=2219):
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x8000}, 0x4040804)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
connect$auto(0xffffffffffffffff, &(0x7f0000000140)=@qipcrtr={0x2a, 0x1, 0x3fff}, 0x57)
socket(0x18, 0xa, 0x1)
connect$auto(0x3, 0x0, 0x55)
sendmmsg$auto(0x3, 0x0, 0x3, 0x6)
mmap$auto(0x0, 0x4, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
setsockopt$auto_SO_TIMESTAMPING_NEW(0xffffffffffffffff, 0x7ff, 0x41, &(0x7f0000000080)='/dev/sequencer\x00', 0x9)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/nfs/parameters/nfs_idmap_cache_timeout\x00', 0xc2902, 0x0)
read$auto(r0, 0x0, 0x20)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x48140, 0x0)
ioctl$auto_TIOCSWINSZ2(r2, 0x5414, &(0x7f0000000040))
writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0)
keyctl$auto(0x8, 0xfffffffffffffffd, 0xffffffffffffffff, 0x5092, 0x2)
syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
unshare$auto(0x40000080)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
clone$auto(0x9001, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x6)
swapon$auto(&(0x7f0000000040)='K\xe7', 0x8000004)
get_mempolicy$auto(0xfffffffffffffffe, 0x0, 0x7, 0x1ff, 0x3)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0xb, 0x6, 0x76402f57, 0x0, 0x0, 0x0, 0x4, 0x40000000000f, 0x400, 0x40000402, 0x4, 0x9, 0xffffffff7fffffff, 0x9, 0x7, 0x20000010010b})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})

1.932841909s ago: executing program 1 (id=2220):
openat$auto_percpu_stats_fops_(0xffffffffffffff9c, 0x0, 0x200, 0x0)
mmap$auto(0x4, 0x10000002020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x7ffd)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/virtual/tty/ttyc6/uevent\x00', 0x0, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
sendmsg$auto_ETHTOOL_MSG_RSS_GET(r0, 0x0, 0x8010)
writev$auto(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x1}, 0x8)
connect$auto(0x4, 0x0, 0x10)
sendmmsg$auto(0x4, 0x0, 0x986, 0x6)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x0, 0x0)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)
mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0)
r1 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
mount$auto(&(0x7f0000000000), &(0x7f0000000080)='}[,&*}\x00', 0x0, 0x339, 0x0)
socket(0x2, 0x1, 0x106)
r2 = pipe$auto(&(0x7f0000000500))
flock$auto(0xffffffffffffffff, 0x9)
r3 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/locks\x00', 0x0, 0x0)
vmsplice$auto(r2, &(0x7f0000000300)={&(0x7f0000000280)="56f90205b43f24cef26dc596137c0d23a6b901e073ef45c08718c686c8323c8350c9556e413adff8b7c470611ed60e7be6b3ba511263706cddbc994dc905a30e366fe0afb0ef690ab4257813640172affb6dd4e5c39655ac4dbcb08a61f3966f84a1607d32a170945e873d8cf0", 0x4}, 0xcb3, 0xfc0)
read$auto_proc_iter_file_ops_compat_inode(r3, &(0x7f0000000180)=""/250, 0xfa)
read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000540)=""/245, 0xf5)
openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000240), 0x183440, 0x0)
openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000040), 0x12f040, 0x0)
openat$nci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000000), r4)
sendmsg$auto_ETHTOOL_MSG_LINKINFO_SET(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB="010026bd7000fbdbdf250300000005000300050000000500030004000000050005009e000000"], 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x2000c840)

1.853368293s ago: executing program 2 (id=2221):
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x382, 0x0)
unshare$auto(0x40000080)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40800)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
read$auto(r1, 0x0, 0x1f40)
r2 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/block/loop2/hctx0/cpu0/default_rq_list\x00', 0x29000, 0x0)
pread64$auto(r2, 0x0, 0x1000f42d, 0x100)
fallocate$auto(r0, 0x5362, 0x2, 0x1ff)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3)
r4 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video33\x00', 0x80382, 0x0)
mprotect$auto(0x7fffffff, 0x0, 0x74)
readv$auto(r4, &(0x7f0000000080)={&(0x7f0000000000), 0x197188}, 0x8)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
socket(0xa, 0x3, 0x3a)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x3, 0x6)
eventfd$auto(0x3)

1.797928906s ago: executing program 0 (id=2222):
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x82000, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x28102, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, 0x0, 0x2dc08f24db163610, 0x0)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0x20000000000000d4, 0x1, 0x6, 0x0, 0x7, 0x368a, 0x2, {0x100000000, 0x10000}, 0x5, 0x8, 0xfffffffffffffffd, 0x1007fff, 0x0, 0x8, 0x81, 0xdfffffffffff628e, 0x6, 0xdeb1, 0x808})
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
mmap$auto(0x0, 0x400008, 0x1000df, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
ioctl$auto(0x3, 0x89e2, 0x91)
ioctl$auto(0x3, 0x89e2, 0x91)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0x4, 0x2020009, 0x9, 0xeb1, 0xffffffffffffffff, 0x8000)
msync$auto(0x0, 0xe0, 0x6)
socket(0xa, 0x2, 0x3a)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x1, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0xa3db)
syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x9a\xadu(:\x94:\xaf\x06c=3>1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5)
r2 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000080))
getdents64$auto(r2, 0x0, 0x3)
mmap$auto(0x0, 0x10810004, 0x100, 0x10, 0x3, 0x9)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS3\x00', 0x0, 0x0)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4)
madvise$auto(0x110c230000, 0x1, 0x9)
futex$auto(0x0, 0xc, 0xffffffff, 0x0, 0x0, 0x4)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/i8042/serio0/force_release\x00', 0xc2082, 0x0)
write$auto(r3, &(0x7f00000004c0)='N\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x7ff)

751.263086ms ago: executing program 2 (id=2223):
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x608100, 0x0)
r0 = io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
socket(0x26, 0x80805, 0x0)
dup2$auto(0x0, 0x3)
socket(0x2, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0)
r2 = ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0xffffffffffffffff, 0x8000)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/008/001\x00', 0x2101, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x1, 0x5, 0x0)
socket(0x10, 0x2, 0x4)
io_uring_setup$auto(0x6, 0x0)
socket(0x10, 0x2, 0x0)
writev$auto(r2, &(0x7f0000000180)={&(0x7f0000000100)="f1e323340bdb14ed9e6189710d4ad51cf47fcd372ffde6bf4d75163864f8b4c902f42bd78b2ba04bcc9fe8b2e5dc805494d11b7c765a3b4508c6968c520fde1224da20e5d4a4aaa6d2fb8c6bac6266c242d20bcd033abe158104e1aaf90cbc21eba69a985961904b", 0x8}, 0x7)
ioctl$auto_OTPLOCK(r2, 0x800c4d10, &(0x7f00000001c0)={0xa, 0x1, 0x8})
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='#\x00\x00\x00', @ANYBLOB='.\x00'], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x3, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
ioctl$auto(r0, 0x8000ae41, r1)

396.448449ms ago: executing program 2 (id=2224):
openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/pcmC0D0c\x00', 0x200, 0x0) (async, rerun: 64)
r0 = openat$auto_tracing_iter_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/tracing/trace_options\x00', 0x40000, 0x0) (rerun: 64)
listen$auto(r0, 0x611e) (async, rerun: 64)
poll$auto(0x0, 0x6, 0x8) (async, rerun: 64)
socketpair$auto(0x20, 0x5, 0x4000, 0x0) (async, rerun: 32)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async, rerun: 32)
open(0x0, 0x7ffd, 0x12) (async)
madvise$auto(0x0, 0x200007, 0x19) (async)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x9, 0x3)
close_range$auto(0x2, 0x8, 0x0) (async)
socket(0x2, 0x80002, 0x73)
read$auto(0x3, 0x0, 0x80) (async)
madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async)
r1 = io_uring_setup$auto(0x406, 0x0) (async, rerun: 32)
mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0) (rerun: 32)
getrandom$auto(0x0, 0x6000000, 0x3) (async)
r2 = syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
r3 = socket(0x11, 0x80003, 0x300)
io_uring_enter$auto(0x3, 0xa84, 0x80000001, 0xa, 0x0, 0x46) (async, rerun: 64)
sendmsg$auto_NL80211_CMD_SET_REKEY_OFFLOAD(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000003c0)={0x14, r2, 0x8, 0x70bd2b, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x4040091}, 0x40850) (async, rerun: 64)
io_uring_enter$auto(r1, 0x7, 0x7ffffffb, 0x3, 0x0, 0x3)
move_pages$auto(0x0, 0xa, 0x0, 0x0, 0x0, 0x2)
sendmsg$auto_NL80211_CMD_SET_COALESCE(r1, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000080)={&(0x7f0000000240)={0xc8, r2, 0x4, 0x70bd25, 0x25dfdbfb, {}, [@NL80211_ATTR_PMKR0_NAME={0x8a, 0x102, "f50bd5e2eddefb14d02843d6c014d6e4a5ef49df4ec4a9f71a11880aa42191b413763d8b3370dcfaa8058d376265036f49361d1eea7676e6aba7d63501ba9d4a98a5296c4797be76f8a80d6026c52e29c69caed476f045e25b89b0d50e41eb759d537183c0fefff7217ff12a7240a7f504f7e2ec65d222bed27d13ec50f14b5801f9a449d0fe"}, @NL80211_ATTR_TIMED_OUT={0x4}, @NL80211_ATTR_STA_PLINK_ACTION={0x5}, @NL80211_ATTR_HE_CAPABILITY={0xf, 0x10d, "b684fe3faf2fe55d6e1a21"}, @NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x81}]}, 0xc8}, 0x1, 0x0, 0x0, 0x20}, 0x20000000) (async)
io_uring_enter$auto(0x3, 0x5, 0x5f3, 0x3, 0x0, 0x2)

388.615898ms ago: executing program 1 (id=2225):
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/sctp/udp_port\x00', 0x202, 0x0) (async)
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/sctp/udp_port\x00', 0x202, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/loop12/queue/nr_requests\x00', 0x80302, 0x0)
mmap$auto(0x0, 0x8, 0x80000000000000df, 0x10004000eb1, 0x8, 0x8002008000)
write$auto(0x3, 0x0, 0x3f00)
sendfile$auto(r0, r0, 0x0, 0x7fffe000)

0s ago: executing program 3 (id=2226):
r0 = socket(0x10, 0x2, 0x0)
openat$auto_proc_coredump_filter_operations_base(0xffffffffffffff9c, &(0x7f0000000140), 0x40000, 0x0)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dri/card1\x00', 0x0, 0x0)
socket(0x28, 0x1, 0x0)
r1 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000000), 0xc0040, 0x0)
set_mempolicy$auto(0x0, &(0x7f0000000040)=0x200000005, 0x5)
ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r1, 0xc0285700, 0x0)
ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r1, 0xc0285700, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
ioctl$auto_KVM_GET_VCPU_MMAP_SIZE(r2, 0xae04, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x800000001fc, 0x9, 0x100000000000d, 0x3, 0x9488, 0x6, 0x8, 0x400000002, 0x40000000000002, 0x300000000000000, 0xffff, 0x5, 0x6d3c, 0x7c00000000, 0x6, 0x4]}, 0x0)
r3 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x20000, 0x0)
pread64$auto(r3, &(0x7f0000000040)='/proc/scsi/sg/device\x95\x00', 0x100000001, 0xff)
close_range$auto(0x2, 0x8, 0x0)
mq_open$auto(&(0x7f0000000400)='{]@\x00', 0x0, 0x6, &(0x7f0000000440)={0x8000000000000001, 0x7d7, 0x80, 0x100000000})
mmap$auto(0x0, 0xd, 0x3, 0xeb1, 0xfffffffffffffffe, 0x8000)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x3, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000280)={'wg0\x00', <r6=>0x0})
bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r6, r5, 0x4, 0x1ff, 0xffffffffffffffff, @relative_id=0x13, 0xe600}, 0xf)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0xb, 0x5, 0x1ffde, 0x3, 0x1000006, 0xfffffffffffffffb, 0x9, 0x5, 0x20000000003, 0x6, 0xad, 0x7, 0x2, 0x3, 0x4, 0x7, 0x0, 0x0, 0x2, 0x0, 0x4, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x1, [0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x4]}, 0x1fe, 0x84)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0xc000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x800}, 0x44040)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0xc20f0000, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x8)

kernel console output (not intermixed with test programs):

8][T12813]  chrdev_open+0x231/0x6a0
[  595.114290][T12813]  ? __pfx_apparmor_file_open+0x10/0x10
[  595.114349][T12813]  ? __pfx_chrdev_open+0x10/0x10
[  595.114394][T12813]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  595.114453][T12813]  do_dentry_open+0x741/0x1c10
[  595.114488][T12813]  ? __pfx_chrdev_open+0x10/0x10
[  595.114530][T12813]  vfs_open+0x82/0x3f0
[  595.114577][T12813]  path_openat+0x1e5e/0x2d40
[  595.114625][T12813]  ? __pfx_path_openat+0x10/0x10
[  595.114668][T12813]  do_filp_open+0x20b/0x470
[  595.114700][T12813]  ? __pfx_do_filp_open+0x10/0x10
[  595.114762][T12813]  ? alloc_fd+0x471/0x7d0
[  595.114824][T12813]  do_sys_openat2+0x11b/0x1d0
[  595.114866][T12813]  ? __pfx_do_sys_openat2+0x10/0x10
[  595.114924][T12813]  __x64_sys_openat+0x174/0x210
[  595.114969][T12813]  ? __pfx___x64_sys_openat+0x10/0x10
[  595.115016][T12813]  ? rcu_is_watching+0x12/0xc0
[  595.115059][T12813]  do_syscall_64+0xcd/0x230
[  595.115107][T12813]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  595.115139][T12813] RIP: 0033:0x7fafe338e969
[  595.115165][T12813] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  595.115199][T12813] RSP: 002b:00007fafe42df038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  595.115231][T12813] RAX: ffffffffffffffda RBX: 00007fafe35b5fa0 RCX: 00007fafe338e969
[  595.115252][T12813] RDX: 0000000000000080 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  595.115273][T12813] RBP: 00007fafe3410ab1 R08: 0000000000000000 R09: 0000000000000000
[  595.115293][T12813] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  595.115313][T12813] R13: 0000000000000000 R14: 00007fafe35b5fa0 R15: 00007ffd7af305d8
[  595.115354][T12813]  </TASK>
[  595.659093][T12813] can: request_module (can-proto-0) failed.
[  595.671363][T12819] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1421'.
[  596.361625][T12835] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1426'.
[  596.969895][T12851] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1429'.
[  597.006472][T12851] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1429'.
[  597.081909][T12851] netlink: 210 bytes leftover after parsing attributes in process `syz.0.1429'.
[  597.986638][T12873] netlink: 'syz.0.1433': attribute type 1 has an invalid length.
[  598.692201][T12881] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1436'.
[  601.452216][T12923] FAULT_INJECTION: forcing a failure.
[  601.452216][T12923] name failslab, interval 1, probability 0, space 0, times 0
[  601.553307][T12923] CPU: 1 UID: 0 PID: 12923 Comm: syz.2.1445 Tainted: G     U              6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  601.553359][T12923] Tainted: [U]=USER
[  601.553368][T12923] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  601.553386][T12923] Call Trace:
[  601.553396][T12923]  <TASK>
[  601.553407][T12923]  dump_stack_lvl+0x16c/0x1f0
[  601.553453][T12923]  should_fail_ex+0x512/0x640
[  601.553496][T12923]  ? __kmalloc_noprof+0xbf/0x510
[  601.553530][T12923]  ? alloc_pipe_info+0x1ec/0x590
[  601.553559][T12923]  should_failslab+0xc2/0x120
[  601.553596][T12923]  __kmalloc_noprof+0xd2/0x510
[  601.553635][T12923]  alloc_pipe_info+0x1ec/0x590
[  601.553670][T12923]  create_pipe_files+0x8c/0x930
[  601.553706][T12923]  do_pipe2+0xaf/0x1c0
[  601.553735][T12923]  ? __pfx_do_pipe2+0x10/0x10
[  601.553777][T12923]  __x64_sys_pipe+0x33/0x50
[  601.553807][T12923]  do_syscall_64+0xcd/0x230
[  601.553857][T12923]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  601.553886][T12923] RIP: 0033:0x7fb15158e969
[  601.553910][T12923] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  601.553939][T12923] RSP: 002b:00007fb15246d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000016
[  601.553964][T12923] RAX: ffffffffffffffda RBX: 00007fb1517b6240 RCX: 00007fb15158e969
[  601.553986][T12923] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  601.554006][T12923] RBP: 00007fb151610ab1 R08: 0000000000000000 R09: 0000000000000000
[  601.554027][T12923] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  601.554047][T12923] R13: 0000000000000000 R14: 00007fb1517b6240 R15: 00007ffe54cb08e8
[  601.554101][T12923]  </TASK>
[  601.839642][T12927] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1448'.
[  603.079928][T12954] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1457'.
[  603.095054][T12952] netlink: 296 bytes leftover after parsing attributes in process `syz.3.1455'.
[  604.755530][T12980] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz.0.1463: bg 4: bad block bitmap checksum
[  604.784518][T13004] netlink: 'syz.1.1466': attribute type 21 has an invalid length.
[  604.795433][T12980] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 0 with max blocks 1 with error 74
[  604.810397][T12980] EXT4-fs (sda1): This should not happen!! Data will be lost
[  604.810397][T12980] 
[  604.823954][T13004] netlink: 326 bytes leftover after parsing attributes in process `syz.1.1466'.
[  604.885850][T13004] IPv6: NLM_F_CREATE should be specified when creating new route
[  605.026216][T13005] netlink: 'syz.1.1466': attribute type 21 has an invalid length.
[  605.039702][T13005] netlink: 326 bytes leftover after parsing attributes in process `syz.1.1466'.
[  605.183757][T13015] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1469'.
[  606.214714][T13032] Invalid ELF header magic: != ELF
[  607.934435][T13064] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1479'.
[  608.236740][ T5836] Bluetooth: hci1: Unable to find connection for big 0xd2
[  608.451990][T13071] nbd: socks must be embedded in a SOCK_ITEM attr
[  608.462248][T13071] block nbd0: shutting down sockets
[  610.706721][T13121] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1490'.
[  610.917518][T13125] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1491'.
[  611.208315][T13130] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1494'.
[  611.306537][T13133] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1493'.
[  612.493445][T13156] blktrace: Concurrent blktraces are not allowed on mtdblock0
[  613.253808][T13173] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1501'.
[  614.919953][T13194] FAULT_INJECTION: forcing a failure.
[  614.919953][T13194] name failslab, interval 1, probability 0, space 0, times 0
[  614.955126][T13194] CPU: 1 UID: 0 PID: 13194 Comm: syz.0.1507 Tainted: G     U              6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  614.955178][T13194] Tainted: [U]=USER
[  614.955188][T13194] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  614.955207][T13194] Call Trace:
[  614.955217][T13194]  <TASK>
[  614.955229][T13194]  dump_stack_lvl+0x16c/0x1f0
[  614.955277][T13194]  should_fail_ex+0x512/0x640
[  614.955321][T13194]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  614.955360][T13194]  should_failslab+0xc2/0x120
[  614.955398][T13194]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  614.955430][T13194]  ? __might_fault+0xe3/0x190
[  614.955464][T13194]  ? __might_fault+0x13b/0x190
[  614.955499][T13194]  ? getname_flags.part.0+0x4c/0x550
[  614.955546][T13194]  getname_flags.part.0+0x4c/0x550
[  614.955591][T13194]  getname_flags+0x93/0xf0
[  614.955639][T13194]  user_path_at+0x24/0x60
[  614.955697][T13194]  __x64_sys_mount+0x1fc/0x310
[  614.955732][T13194]  ? __pfx___x64_sys_mount+0x10/0x10
[  614.955764][T13194]  ? rcu_is_watching+0x12/0xc0
[  614.955806][T13194]  do_syscall_64+0xcd/0x230
[  614.955854][T13194]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  614.955885][T13194] RIP: 0033:0x7efee0b8e969
[  614.955910][T13194] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  614.955941][T13194] RSP: 002b:00007efee192d038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  614.955970][T13194] RAX: ffffffffffffffda RBX: 00007efee0db5fa0 RCX: 00007efee0b8e969
[  614.955992][T13194] RDX: 0000200000001040 RSI: 00002000000001c0 RDI: 0000000000000000
[  614.956011][T13194] RBP: 00007efee192d090 R08: 0000000000000000 R09: 0000000000000000
[  614.956030][T13194] R10: 0000000002000401 R11: 0000000000000246 R12: 0000000000000001
[  614.956049][T13194] R13: 0000000000000000 R14: 00007efee0db5fa0 R15: 00007ffd884518c8
[  614.956090][T13194]  </TASK>
[  615.168752][    C1] vkms_vblank_simulate: vblank timer overrun
[  615.479433][T13199] FAULT_INJECTION: forcing a failure.
[  615.479433][T13199] name failslab, interval 1, probability 0, space 0, times 0
[  615.497147][T13199] CPU: 1 UID: 0 PID: 13199 Comm: syz.0.1509 Tainted: G     U              6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  615.497188][T13199] Tainted: [U]=USER
[  615.497196][T13199] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  615.497210][T13199] Call Trace:
[  615.497218][T13199]  <TASK>
[  615.497227][T13199]  dump_stack_lvl+0x16c/0x1f0
[  615.497265][T13199]  should_fail_ex+0x512/0x640
[  615.497298][T13199]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  615.497329][T13199]  should_failslab+0xc2/0x120
[  615.497360][T13199]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  615.497385][T13199]  ? __pfx___mutex_lock+0x10/0x10
[  615.497420][T13199]  ? __pmd_alloc+0xc3/0x870
[  615.497459][T13199]  __pmd_alloc+0xc3/0x870
[  615.497498][T13199]  huge_pte_alloc+0x292/0x3a0
[  615.497538][T13199]  hugetlb_fault+0x373/0x2e90
[  615.497583][T13199]  ? __pfx_hugetlb_fault+0x10/0x10
[  615.497639][T13199]  ? find_vma+0xbf/0x140
[  615.497671][T13199]  ? __pfx_find_vma+0x10/0x10
[  615.497709][T13199]  handle_mm_fault+0x95d/0xad0
[  615.497751][T13199]  do_user_addr_fault+0x7a6/0x1370
[  615.497788][T13199]  ? rcu_is_watching+0x12/0xc0
[  615.497823][T13199]  exc_page_fault+0x5c/0xc0
[  615.497869][T13199]  asm_exc_page_fault+0x26/0x30
[  615.497901][T13199] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  615.497939][T13199] Code: cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  615.497971][T13199] RSP: 0018:ffffc90018a27c00 EFLAGS: 00050202
[  615.497997][T13199] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 00000000000001ff
[  615.498015][T13199] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff88802977dc00
[  615.498035][T13199] RBP: 00000000000001ff R08: 0000000000000001 R09: ffffed10052efbbf
[  615.498054][T13199] R10: ffff88802977ddfe R11: 0000000000000000 R12: 0000000000000000
[  615.498074][T13199] R13: ffff88802977dc00 R14: ffff88805faba430 R15: 0000000000000000
[  615.498118][T13199]  _copy_from_user+0x98/0xd0
[  615.498172][T13199]  memdup_user_nul+0x6c/0x120
[  615.498218][T13199]  nsim_dev_health_break_write+0xbd/0x210
[  615.498253][T13199]  ? __pfx_nsim_dev_health_break_write+0x10/0x10
[  615.498303][T13199]  full_proxy_write+0x13c/0x200
[  615.498347][T13199]  vfs_write+0x25c/0x1180
[  615.498376][T13199]  ? __pfx_full_proxy_write+0x10/0x10
[  615.498419][T13199]  ? __pfx___mutex_lock+0x10/0x10
[  615.498465][T13199]  ? __pfx_vfs_write+0x10/0x10
[  615.498507][T13199]  ? __fget_files+0x20e/0x3c0
[  615.498570][T13199]  ksys_write+0x12a/0x240
[  615.498609][T13199]  ? __pfx_ksys_write+0x10/0x10
[  615.498639][T13199]  ? rcu_is_watching+0x12/0xc0
[  615.498684][T13199]  do_syscall_64+0xcd/0x230
[  615.498733][T13199]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  615.498766][T13199] RIP: 0033:0x7efee0b8e969
[  615.498792][T13199] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  615.498824][T13199] RSP: 002b:00007efee192d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  615.498850][T13199] RAX: ffffffffffffffda RBX: 00007efee0db5fa0 RCX: 00007efee0b8e969
[  615.498871][T13199] RDX: 00000000000001ff RSI: 0000000000000000 RDI: 0000000000000006
[  615.498891][T13199] RBP: 00007efee0c10ab1 R08: 0000000000000000 R09: 0000000000000000
[  615.498911][T13199] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  615.498930][T13199] R13: 0000000000000000 R14: 00007efee0db5fa0 R15: 00007ffd884518c8
[  615.498975][T13199]  </TASK>
[  615.877253][    C1] vkms_vblank_simulate: vblank timer overrun
[  616.342490][T13215] FAULT_INJECTION: forcing a failure.
[  616.342490][T13215] name failslab, interval 1, probability 0, space 0, times 0
[  616.392469][T13215] CPU: 0 UID: 0 PID: 13215 Comm: syz.1.1513 Tainted: G     U              6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  616.392524][T13215] Tainted: [U]=USER
[  616.392535][T13215] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  616.392555][T13215] Call Trace:
[  616.392566][T13215]  <TASK>
[  616.392578][T13215]  dump_stack_lvl+0x16c/0x1f0
[  616.392638][T13215]  should_fail_ex+0x512/0x640
[  616.392682][T13215]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  616.392722][T13215]  should_failslab+0xc2/0x120
[  616.392762][T13215]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  616.392799][T13215]  ? apparmor_capable+0x114/0x1d0
[  616.392830][T13215]  ? prepare_creds+0x2c/0x7d0
[  616.392883][T13215]  prepare_creds+0x2c/0x7d0
[  616.392931][T13215]  __do_sys_landlock_restrict_self+0x13e/0x910
[  616.392982][T13215]  ? rcu_is_watching+0x12/0xc0
[  616.393013][T13215]  do_syscall_64+0xcd/0x230
[  616.393061][T13215]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  616.393094][T13215] RIP: 0033:0x7fafe338e969
[  616.393120][T13215] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  616.393153][T13215] RSP: 002b:00007fafe42df038 EFLAGS: 00000246 ORIG_RAX: 00000000000001be
[  616.393184][T13215] RAX: ffffffffffffffda RBX: 00007fafe35b5fa0 RCX: 00007fafe338e969
[  616.393205][T13215] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[  616.393225][T13215] RBP: 00007fafe3410ab1 R08: 0000000000000000 R09: 0000000000000000
[  616.393244][T13215] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  616.393264][T13215] R13: 0000000000000000 R14: 00007fafe35b5fa0 R15: 00007ffd7af305d8
[  616.393306][T13215]  </TASK>
[  616.991709][T13219] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1514'.
[  617.317707][T13223] netlink: 'syz.1.1515': attribute type 22 has an invalid length.
[  617.355145][T13223] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1515'.
[  617.390115][T13223] net_ratelimit: 77 callbacks suppressed
[  617.390140][T13223] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[  617.613907][T13234] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1517'.
[  617.691571][T13237] FAULT_INJECTION: forcing a failure.
[  617.691571][T13237] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  617.706322][T13237] CPU: 0 UID: 0 PID: 13237 Comm: syz.1.1519 Tainted: G     U              6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  617.706369][T13237] Tainted: [U]=USER
[  617.706378][T13237] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  617.706396][T13237] Call Trace:
[  617.706406][T13237]  <TASK>
[  617.706418][T13237]  dump_stack_lvl+0x16c/0x1f0
[  617.706465][T13237]  should_fail_ex+0x512/0x640
[  617.706513][T13237]  strncpy_from_user+0x3b/0x2e0
[  617.706560][T13237]  getname_flags.part.0+0x8f/0x550
[  617.706607][T13237]  getname_flags+0x93/0xf0
[  617.706655][T13237]  user_path_at+0x24/0x60
[  617.706705][T13237]  __x64_sys_mount+0x1fc/0x310
[  617.706740][T13237]  ? __pfx___x64_sys_mount+0x10/0x10
[  617.706769][T13237]  ? rcu_is_watching+0x12/0xc0
[  617.706804][T13237]  do_syscall_64+0xcd/0x230
[  617.706846][T13237]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  617.706876][T13237] RIP: 0033:0x7fafe338e969
[  617.706899][T13237] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  617.706928][T13237] RSP: 002b:00007fafe42df038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  617.706957][T13237] RAX: ffffffffffffffda RBX: 00007fafe35b5fa0 RCX: 00007fafe338e969
[  617.706978][T13237] RDX: 0000200000001040 RSI: 00002000000001c0 RDI: 0000000000000000
[  617.706997][T13237] RBP: 00007fafe42df090 R08: 0000000000000000 R09: 0000000000000000
[  617.707017][T13237] R10: 0000000002000401 R11: 0000000000000246 R12: 0000000000000001
[  617.707036][T13237] R13: 0000000000000000 R14: 00007fafe35b5fa0 R15: 00007ffd7af305d8
[  617.707076][T13237]  </TASK>
[  617.986399][T13238] FAULT_INJECTION: forcing a failure.
[  617.986399][T13238] name failslab, interval 1, probability 0, space 0, times 0
[  618.001192][T13238] CPU: 0 UID: 0 PID: 13238 Comm: syz.3.1518 Tainted: G     U              6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  618.001245][T13238] Tainted: [U]=USER
[  618.001257][T13238] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  618.001276][T13238] Call Trace:
[  618.001287][T13238]  <TASK>
[  618.001300][T13238]  dump_stack_lvl+0x16c/0x1f0
[  618.001351][T13238]  should_fail_ex+0x512/0x640
[  618.001398][T13238]  ? __kmalloc_noprof+0xbf/0x510
[  618.001436][T13238]  ? __register_sysctl_table+0xea2/0x1900
[  618.001473][T13238]  should_failslab+0xc2/0x120
[  618.001513][T13238]  __kmalloc_noprof+0xd2/0x510
[  618.001547][T13238]  ? __register_sysctl_table+0xe8e/0x1900
[  618.001595][T13238]  __register_sysctl_table+0xea2/0x1900
[  618.001641][T13238]  ? __pfx___register_sysctl_table+0x10/0x10
[  618.001677][T13238]  ? is_module_address+0x69/0xf0
[  618.001719][T13238]  ? register_net_sysctl_sz+0x228/0x3e0
[  618.001772][T13238]  ? __asan_memcpy+0x3c/0x60
[  618.001806][T13238]  mptcp_net_init+0x499/0x620
[  618.001852][T13238]  ? __pfx_mptcp_net_init+0x10/0x10
[  618.001888][T13238]  ops_init+0x1df/0x5f0
[  618.001932][T13238]  setup_net+0x21e/0x850
[  618.001976][T13238]  ? __pfx_setup_net+0x10/0x10
[  618.002013][T13238]  ? lockdep_init_map_type+0x5c/0x280
[  618.002064][T13238]  ? __pfx_down_read_killable+0x10/0x10
[  618.002121][T13238]  ? debug_mutex_init+0x37/0x70
[  618.002168][T13238]  copy_net_ns+0x2a6/0x5f0
[  618.002215][T13238]  create_new_namespaces+0x3ea/0xad0
[  618.002261][T13238]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  618.002300][T13238]  ksys_unshare+0x45b/0xa40
[  618.002345][T13238]  ? __pfx_ksys_unshare+0x10/0x10
[  618.002387][T13238]  ? xfd_validate_state+0x5d/0x180
[  618.002441][T13238]  ? rcu_is_watching+0x12/0xc0
[  618.002482][T13238]  __x64_sys_unshare+0x31/0x40
[  618.002524][T13238]  do_syscall_64+0xcd/0x230
[  618.002574][T13238]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  618.002606][T13238] RIP: 0033:0x7f366238e969
[  618.002633][T13238] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  618.002665][T13238] RSP: 002b:00007f36631f5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  618.002694][T13238] RAX: ffffffffffffffda RBX: 00007f36625b6080 RCX: 00007f366238e969
[  618.002716][T13238] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  618.002735][T13238] RBP: 00007f3662410ab1 R08: 0000000000000000 R09: 0000000000000000
[  618.002755][T13238] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  618.002774][T13238] R13: 0000000000000000 R14: 00007f36625b6080 R15: 00007ffd9fef2238
[  618.002818][T13238]  </TASK>
[  618.297767][T13238] sysctl could not get directory: /net/mptcp -12
[  619.352283][T13258] openvswitch: netlink: ct_state flags aa1414ac unsupported
[  620.794671][T13301] FAULT_INJECTION: forcing a failure.
[  620.794671][T13301] name failslab, interval 1, probability 0, space 0, times 0
[  620.850738][T13301] CPU: 1 UID: 0 PID: 13301 Comm: syz.1.1533 Tainted: G     U              6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  620.850795][T13301] Tainted: [U]=USER
[  620.850805][T13301] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  620.850825][T13301] Call Trace:
[  620.850836][T13301]  <TASK>
[  620.850848][T13301]  dump_stack_lvl+0x16c/0x1f0
[  620.850899][T13301]  should_fail_ex+0x512/0x640
[  620.850946][T13301]  ? __kmalloc_noprof+0xbf/0x510
[  620.850985][T13301]  ? ops_init+0x77/0x5f0
[  620.851020][T13301]  should_failslab+0xc2/0x120
[  620.851061][T13301]  __kmalloc_noprof+0xd2/0x510
[  620.851096][T13301]  ? __asan_memcpy+0x3c/0x60
[  620.851132][T13301]  ops_init+0x77/0x5f0
[  620.851200][T13301]  setup_net+0x21e/0x850
[  620.851246][T13301]  ? __pfx_setup_net+0x10/0x10
[  620.851283][T13301]  ? lockdep_init_map_type+0x5c/0x280
[  620.851329][T13301]  ? __pfx_down_read_killable+0x10/0x10
[  620.851386][T13301]  ? debug_mutex_init+0x37/0x70
[  620.851422][T13301]  copy_net_ns+0x2a6/0x5f0
[  620.851471][T13301]  create_new_namespaces+0x3ea/0xad0
[  620.851517][T13301]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  620.851558][T13301]  ksys_unshare+0x45b/0xa40
[  620.851602][T13301]  ? __pfx_ksys_unshare+0x10/0x10
[  620.851645][T13301]  ? xfd_validate_state+0x5d/0x180
[  620.851701][T13301]  ? rcu_is_watching+0x12/0xc0
[  620.851741][T13301]  __x64_sys_unshare+0x31/0x40
[  620.851790][T13301]  do_syscall_64+0xcd/0x230
[  620.851842][T13301]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  620.851875][T13301] RIP: 0033:0x7fafe338e969
[  620.851901][T13301] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  620.851934][T13301] RSP: 002b:00007fafe429d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  620.851965][T13301] RAX: ffffffffffffffda RBX: 00007fafe35b6160 RCX: 00007fafe338e969
[  620.851988][T13301] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  620.852009][T13301] RBP: 00007fafe3410ab1 R08: 0000000000000000 R09: 0000000000000000
[  620.852029][T13301] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  620.852048][T13301] R13: 0000000000000000 R14: 00007fafe35b6160 R15: 00007ffd7af305d8
[  620.852087][T13301]  </TASK>
[  622.433007][T13349] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1542'.
[  622.488428][T13349] macvlan0: entered allmulticast mode
[  622.520554][T13349] veth1_vlan: entered allmulticast mode
[  623.093247][T13365] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1547'.
[  623.630487][T13376] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1551'.
[  624.452278][T13394] device-mapper: ioctl: device name cannot contain '/'
[  625.748441][T13417] FAULT_INJECTION: forcing a failure.
[  625.748441][T13417] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  625.793206][T13417] CPU: 0 UID: 0 PID: 13417 Comm: syz.1.1563 Tainted: G     U              6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  625.793256][T13417] Tainted: [U]=USER
[  625.793265][T13417] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  625.793284][T13417] Call Trace:
[  625.793293][T13417]  <TASK>
[  625.793303][T13417]  dump_stack_lvl+0x16c/0x1f0
[  625.793366][T13417]  should_fail_ex+0x512/0x640
[  625.793414][T13417]  should_fail_alloc_page+0xe7/0x130
[  625.793453][T13417]  prepare_alloc_pages+0x3c2/0x610
[  625.793509][T13417]  ? rcu_is_watching+0x12/0xc0
[  625.793539][T13417]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[  625.793584][T13417]  ? cgroup_rstat_updated+0x2a/0xb20
[  625.793632][T13417]  ? __lock_acquire+0x5ca/0x1ba0
[  625.793678][T13417]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  625.793728][T13417]  ? __lock_acquire+0x5ca/0x1ba0
[  625.793770][T13417]  ? __lock_acquire+0x5ca/0x1ba0
[  625.793810][T13417]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  625.793856][T13417]  ? policy_nodemask+0xea/0x4e0
[  625.793898][T13417]  alloc_pages_mpol+0x1fb/0x550
[  625.793939][T13417]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  625.793979][T13417]  ? __lock_acquire+0x5ca/0x1ba0
[  625.794027][T13417]  folio_alloc_mpol_noprof+0x36/0x2f0
[  625.794080][T13417]  vma_alloc_folio_noprof+0xed/0x1e0
[  625.794125][T13417]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  625.794183][T13417]  do_pte_missing+0x223d/0x3fb0
[  625.794230][T13417]  __handle_mm_fault+0x103d/0x2a40
[  625.794274][T13417]  ? __pfx___handle_mm_fault+0x10/0x10
[  625.794304][T13417]  ? __pte_offset_map_lock+0x155/0x2f0
[  625.794350][T13417]  ? find_held_lock+0x2b/0x80
[  625.794376][T13417]  ? find_held_lock+0x2b/0x80
[  625.794433][T13417]  handle_mm_fault+0x3fe/0xad0
[  625.794480][T13417]  __get_user_pages+0x771/0x36f0
[  625.794540][T13417]  ? __pfx_mt_find+0x10/0x10
[  625.794587][T13417]  ? __pfx___get_user_pages+0x10/0x10
[  625.794651][T13417]  populate_vma_page_range+0x278/0x3a0
[  625.794683][T13417]  ? __pfx_populate_vma_page_range+0x10/0x10
[  625.794713][T13417]  ? __pfx_find_vma_intersection+0x10/0x10
[  625.794763][T13417]  ? do_mmap+0x69c/0x11b0
[  625.794813][T13417]  __mm_populate+0x1d8/0x380
[  625.794844][T13417]  ? __pfx___mm_populate+0x10/0x10
[  625.794877][T13417]  ? up_write+0x1b2/0x520
[  625.794927][T13417]  vm_mmap_pgoff+0x362/0x450
[  625.794974][T13417]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  625.795030][T13417]  ? __x64_sys_futex+0x1e0/0x4c0
[  625.795063][T13417]  ? __x64_sys_futex+0x1e9/0x4c0
[  625.795103][T13417]  ksys_mmap_pgoff+0x7d/0x5c0
[  625.795149][T13417]  ? rcu_is_watching+0x12/0xc0
[  625.795182][T13417]  __x64_sys_mmap+0x125/0x190
[  625.795218][T13417]  do_syscall_64+0xcd/0x230
[  625.795268][T13417]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  625.795298][T13417] RIP: 0033:0x7fafe338e969
[  625.795323][T13417] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  625.795355][T13417] RSP: 002b:00007fafe42df038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  625.795396][T13417] RAX: ffffffffffffffda RBX: 00007fafe35b5fa0 RCX: 00007fafe338e969
[  625.795417][T13417] RDX: 00000000000000df RSI: 0000000000400007 RDI: 0000000000000000
[  625.795435][T13417] RBP: 00007fafe3410ab1 R08: 0000000000000002 R09: 0000000000008000
[  625.795454][T13417] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  625.795480][T13417] R13: 0000000000000000 R14: 00007fafe35b5fa0 R15: 00007ffd7af305d8
[  625.795520][T13417]  </TASK>
[  626.173995][    C0] vkms_vblank_simulate: vblank timer overrun
[  627.354337][T13431] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1565'.
[  628.900497][T13449] can: request_module (can-proto-0) failed.
[  629.721136][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[  629.729899][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  631.011698][T12488] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 0 with max blocks 1 with error 117
[  631.202309][T12488] EXT4-fs (sda1): This should not happen!! Data will be lost
[  631.202309][T12488] 
[  632.289370][    C1] vcan0: j1939_tp_rxtimer: 0xffff888028d56000: rx timeout, send abort
[  632.799927][    C1] vcan0: j1939_tp_rxtimer: 0xffff888028d56000: abort rx timeout. Force session deactivation
[  632.814503][T13511] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 0 with max blocks 1 with error 117
[  632.845429][T13511] EXT4-fs (sda1): This should not happen!! Data will be lost
[  632.845429][T13511] 
[  632.981661][T13504] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1585'.
[  633.081193][T13504] team_slave_0: entered allmulticast mode
[  633.131463][T13496] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  633.140399][T13496] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  633.148078][T13496] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  633.180658][T13496] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  633.881768][T13519] random: crng reseeded on system resumption
[  634.322434][ T5836] Bluetooth: hci0: command 0x0c1a tx timeout
[  635.208268][ T5836] Bluetooth: hci3: command 0x0c1a tx timeout
[  635.208299][   T55] Bluetooth: hci2: command 0x0c1a tx timeout
[  635.215219][ T5836] Bluetooth: hci1: command 0x0c1a tx timeout
[  637.183076][T13596] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1604'.
[  639.073643][T13615] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1608'.
[  641.262927][T13647] FAULT_INJECTION: forcing a failure.
[  641.262927][T13647] name failslab, interval 1, probability 0, space 0, times 0
[  641.385665][T13647] CPU: 0 UID: 0 PID: 13647 Comm: syz.3.1615 Tainted: G     U              6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  641.385715][T13647] Tainted: [U]=USER
[  641.385725][T13647] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  641.385742][T13647] Call Trace:
[  641.385752][T13647]  <TASK>
[  641.385762][T13647]  dump_stack_lvl+0x16c/0x1f0
[  641.385808][T13647]  should_fail_ex+0x512/0x640
[  641.385853][T13647]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  641.385902][T13647]  should_failslab+0xc2/0x120
[  641.385935][T13647]  __kmalloc_cache_noprof+0x6a/0x3e0
[  641.385983][T13647]  ? __vb2_init_fileio+0x253/0x1100
[  641.386025][T13647]  __vb2_init_fileio+0x253/0x1100
[  641.386052][T13647]  ? __mutex_lock+0x1ca/0xb90
[  641.386106][T13647]  ? vb2_fop_read+0xe6/0x3e0
[  641.386169][T13647]  __vb2_perform_fileio+0x9c2/0x1660
[  641.386212][T13647]  ? __pfx___vb2_perform_fileio+0x10/0x10
[  641.386248][T13647]  ? iovec_from_user+0xbb/0x140
[  641.386304][T13647]  vb2_fop_read+0x215/0x3e0
[  641.386358][T13647]  v4l2_read+0x226/0x360
[  641.386397][T13647]  ? __pfx_v4l2_read+0x10/0x10
[  641.386436][T13647]  vfs_readv+0x6bc/0x8a0
[  641.386496][T13647]  ? __pfx_vfs_readv+0x10/0x10
[  641.386574][T13647]  ? __fget_files+0x20e/0x3c0
[  641.386635][T13647]  ? do_readv+0x132/0x330
[  641.386681][T13647]  do_readv+0x132/0x330
[  641.386730][T13647]  ? __pfx_do_readv+0x10/0x10
[  641.386775][T13647]  ? rcu_is_watching+0x12/0xc0
[  641.386817][T13647]  do_syscall_64+0xcd/0x230
[  641.386867][T13647]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  641.386900][T13647] RIP: 0033:0x7f366238e969
[  641.386924][T13647] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  641.386957][T13647] RSP: 002b:00007f36631f5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000013
[  641.386987][T13647] RAX: ffffffffffffffda RBX: 00007f36625b6080 RCX: 00007f366238e969
[  641.387008][T13647] RDX: 0000000000000008 RSI: 0000200000000080 RDI: 0000000000000007
[  641.387029][T13647] RBP: 00007f3662410ab1 R08: 0000000000000000 R09: 0000000000000000
[  641.387049][T13647] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  641.387068][T13647] R13: 0000000000000000 R14: 00007f36625b6080 R15: 00007ffd9fef2238
[  641.387105][T13647]  </TASK>
[  641.642937][    C0] vkms_vblank_simulate: vblank timer overrun
[  642.230693][T13662] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 0 with max blocks 1 with error 117
[  642.255464][T13662] EXT4-fs (sda1): This should not happen!! Data will be lost
[  642.255464][T13662] 
[  642.362392][T13661] random: crng reseeded on system resumption
[  642.648627][T13666] Invalid ELF header magic: != ELF

syzkaller
syzkaller login: [  645.268804][T13712] FAULT_INJECTION: forcing a failure.
[  645.268804][T13712] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  645.294968][T13712] CPU: 1 UID: 0 PID: 13712 Comm: syz.1.1632 Tainted: G     U              6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  645.295020][T13712] Tainted: [U]=USER
[  645.295030][T13712] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  645.295047][T13712] Call Trace:
[  645.295056][T13712]  <TASK>
[  645.295067][T13712]  dump_stack_lvl+0x16c/0x1f0
[  645.295116][T13712]  should_fail_ex+0x512/0x640
[  645.295164][T13712]  _copy_to_iter+0x2a4/0x15a0
[  645.295216][T13712]  ? chacha_block_generic+0x189/0x260
[  645.295259][T13712]  ? __pfx__copy_to_iter+0x10/0x10
[  645.295313][T13712]  ? __pfx___might_resched+0x10/0x10
[  645.295345][T13712]  ? crng_make_state+0x48e/0x6d0
[  645.295395][T13712]  get_random_bytes_user+0x17f/0x3c0
[  645.295442][T13712]  ? __pfx_get_random_bytes_user+0x10/0x10
[  645.295494][T13712]  ? do_futex+0x122/0x350
[  645.295554][T13712]  ? import_ubuf+0x1b6/0x220
[  645.295600][T13712]  __x64_sys_getrandom+0x183/0x290
[  645.295649][T13712]  ? __pfx___x64_sys_getrandom+0x10/0x10
[  645.295697][T13712]  ? xfd_validate_state+0x5d/0x180
[  645.295750][T13712]  ? rcu_is_watching+0x12/0xc0
[  645.295811][T13712]  do_syscall_64+0xcd/0x230
[  645.295861][T13712]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  645.295891][T13712] RIP: 0033:0x7fafe338e969
[  645.295914][T13712] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  645.295945][T13712] RSP: 002b:00007fafe42be038 EFLAGS: 00000246 ORIG_RAX: 000000000000013e
[  645.295974][T13712] RAX: ffffffffffffffda RBX: 00007fafe35b6080 RCX: 00007fafe338e969
[  645.295994][T13712] RDX: 0000000000000003 RSI: 0000000006000000 RDI: 0000000000000000
[  645.296014][T13712] RBP: 00007fafe3410ab1 R08: 0000000000000000 R09: 0000000000000000
[  645.296033][T13712] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  645.296052][T13712] R13: 0000000000000000 R14: 00007fafe35b6080 R15: 00007ffd7af305d8
[  645.296092][T13712]  </TASK>
[  645.673080][T13714] netlink: 'syz.3.1633': attribute type 22 has an invalid length.
[  645.698982][T13714] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1633'.
[  645.718460][T13723] ptrace attach of "./syz-executor exec"[5834] was attempted by "./syz-executor exec"[13723]
[  646.397281][T13737] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1638'.
[  646.516011][T13742] FAULT_INJECTION: forcing a failure.
[  646.516011][T13742] name failslab, interval 1, probability 0, space 0, times 0
[  646.531889][T13742] CPU: 0 UID: 0 PID: 13742 Comm: syz.1.1639 Tainted: G     U              6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  646.531947][T13742] Tainted: [U]=USER
[  646.531957][T13742] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  646.531974][T13742] Call Trace:
[  646.531984][T13742]  <TASK>
[  646.531996][T13742]  dump_stack_lvl+0x16c/0x1f0
[  646.532044][T13742]  should_fail_ex+0x512/0x640
[  646.532086][T13742]  ? __kmalloc_noprof+0xbf/0x510
[  646.532118][T13742]  ? __list_lru_init+0xe8/0x4c0
[  646.532146][T13742]  should_failslab+0xc2/0x120
[  646.532178][T13742]  __kmalloc_noprof+0xd2/0x510
[  646.532205][T13742]  ? lockdep_init_map_type+0x5c/0x280
[  646.532247][T13742]  __list_lru_init+0xe8/0x4c0
[  646.532279][T13742]  alloc_super+0x904/0xbd0
[  646.532324][T13742]  ? __pfx_test_keyed_super+0x10/0x10
[  646.532358][T13742]  sget_fc+0x116/0xc20
[  646.532399][T13742]  ? __pfx_set_anon_super_fc+0x10/0x10
[  646.532438][T13742]  ? __pfx_nfsd_fill_super+0x10/0x10
[  646.532480][T13742]  get_tree_keyed+0x59/0x1d0
[  646.532522][T13742]  vfs_get_tree+0x8b/0x340
[  646.532558][T13742]  path_mount+0x14d4/0x1f20
[  646.532586][T13742]  ? kmem_cache_free+0x2d4/0x4d0
[  646.532614][T13742]  ? __pfx_path_mount+0x10/0x10
[  646.532650][T13742]  ? putname+0x154/0x1a0
[  646.532685][T13742]  __x64_sys_mount+0x28d/0x310
[  646.532713][T13742]  ? __pfx___x64_sys_mount+0x10/0x10
[  646.532739][T13742]  ? rcu_is_watching+0x12/0xc0
[  646.532772][T13742]  do_syscall_64+0xcd/0x230
[  646.532811][T13742]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  646.532838][T13742] RIP: 0033:0x7fafe338e969
[  646.532858][T13742] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  646.532883][T13742] RSP: 002b:00007fafe42df038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  646.532914][T13742] RAX: ffffffffffffffda RBX: 00007fafe35b5fa0 RCX: 00007fafe338e969
[  646.532931][T13742] RDX: 0000200000001040 RSI: 00002000000001c0 RDI: 0000000000000000
[  646.532948][T13742] RBP: 00007fafe42df090 R08: 0000000000000000 R09: 0000000000000000
[  646.532964][T13742] R10: 0000000002000401 R11: 0000000000000246 R12: 0000000000000002
[  646.532979][T13742] R13: 0000000000000000 R14: 00007fafe35b5fa0 R15: 00007ffd7af305d8
[  646.533012][T13742]  </TASK>
[  647.317131][T13756] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1642'.
[  648.513883][T13781] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1647'.
[  648.582089][T13782] netlink: zone id is out of range
[  648.587788][T13782] netlink: zone id is out of range
[  648.615514][T13782] netlink: zone id is out of range
[  648.625218][T13782] netlink: zone id is out of range
[  648.660936][T13782] netlink: zone id is out of range
[  648.666662][T13782] netlink: zone id is out of range
[  648.714674][T13782] netlink: zone id is out of range
[  648.735016][T13782] netlink: zone id is out of range
[  648.759187][T13782] netlink: zone id is out of range
[  648.764878][T13782] netlink: zone id is out of range
[  652.171676][T13873] input: jJǸ-�¶š9ã%vø“û¨l�ÐQ 	J86Ö‘ as /devices/virtual/input/input21
[  653.298477][T13883] FAULT_INJECTION: forcing a failure.
[  653.298477][T13883] name failslab, interval 1, probability 0, space 0, times 0
[  653.331392][T13883] CPU: 1 UID: 0 PID: 13883 Comm: syz.3.1671 Tainted: G     U              6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  653.331446][T13883] Tainted: [U]=USER
[  653.331456][T13883] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  653.331478][T13883] Call Trace:
[  653.331488][T13883]  <TASK>
[  653.331500][T13883]  dump_stack_lvl+0x16c/0x1f0
[  653.331550][T13883]  should_fail_ex+0x512/0x640
[  653.331595][T13883]  ? __kmalloc_cache_node_noprof+0x5a/0x420
[  653.331636][T13883]  should_failslab+0xc2/0x120
[  653.331677][T13883]  __kmalloc_cache_node_noprof+0x6d/0x420
[  653.331713][T13883]  ? lockdep_init_map_type+0x5c/0x280
[  653.331756][T13883]  ? __alloc_workqueue+0x506/0x1810
[  653.331803][T13883]  __alloc_workqueue+0x506/0x1810
[  653.331851][T13883]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  653.331899][T13883]  alloc_workqueue+0xd2/0x200
[  653.331941][T13883]  ? __pfx_alloc_workqueue+0x10/0x10
[  653.331993][T13883]  ? __pfx___debug_object_init+0x10/0x10
[  653.332038][T13883]  nci_register_device+0x394/0xb80
[  653.332091][T13883]  ? __pfx_nci_register_device+0x10/0x10
[  653.332137][T13883]  ? lockdep_init_map_type+0x5c/0x280
[  653.332200][T13883]  virtual_ncidev_open+0x141/0x220
[  653.332246][T13883]  ? __pfx_virtual_ncidev_open+0x10/0x10
[  653.332289][T13883]  misc_open+0x35a/0x420
[  653.332338][T13883]  ? __pfx_misc_open+0x10/0x10
[  653.332385][T13883]  chrdev_open+0x231/0x6a0
[  653.332441][T13883]  ? __pfx_apparmor_file_open+0x10/0x10
[  653.332483][T13883]  ? __pfx_chrdev_open+0x10/0x10
[  653.332520][T13883]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  653.332574][T13883]  do_dentry_open+0x741/0x1c10
[  653.332607][T13883]  ? __pfx_chrdev_open+0x10/0x10
[  653.332646][T13883]  vfs_open+0x82/0x3f0
[  653.332689][T13883]  path_openat+0x1e5e/0x2d40
[  653.332733][T13883]  ? __pfx_path_openat+0x10/0x10
[  653.332773][T13883]  do_filp_open+0x20b/0x470
[  653.332815][T13883]  ? __pfx_do_filp_open+0x10/0x10
[  653.332865][T13883]  ? alloc_fd+0x471/0x7d0
[  653.332915][T13883]  do_sys_openat2+0x11b/0x1d0
[  653.332950][T13883]  ? __pfx_do_sys_openat2+0x10/0x10
[  653.332998][T13883]  __x64_sys_openat+0x174/0x210
[  653.333035][T13883]  ? __pfx___x64_sys_openat+0x10/0x10
[  653.333082][T13883]  ? rcu_is_watching+0x12/0xc0
[  653.333116][T13883]  do_syscall_64+0xcd/0x230
[  653.333158][T13883]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  653.333185][T13883] RIP: 0033:0x7f366238e969
[  653.333207][T13883] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  653.333234][T13883] RSP: 002b:00007f3663216038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  653.333259][T13883] RAX: ffffffffffffffda RBX: 00007f36625b5fa0 RCX: 00007f366238e969
[  653.333277][T13883] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c
[  653.333295][T13883] RBP: 00007f3662410ab1 R08: 0000000000000000 R09: 0000000000000000
[  653.333312][T13883] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  653.333328][T13883] R13: 0000000000000000 R14: 00007f36625b5fa0 R15: 00007ffd9fef2238
[  653.333362][T13883]  </TASK>
[  653.673635][    C1] vkms_vblank_simulate: vblank timer overrun
[  656.680543][T13936] net_ratelimit: 77 callbacks suppressed
[  656.680569][T13936] netlink: set zone limit has 8 unknown bytes
[  658.600258][T13941] kexec: Could not allocate control_code_buffer
[  658.709602][T13556] Bluetooth: hci3: unexpected subevent 0x01 length: 4 < 18
[  658.825511][   T30] audit: type=1800 audit(4294999181.180:16): pid=13960 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1691" name="dbroot" dev="configfs" ino=40615 res=0 errno=0
[  659.122058][T13968] FAULT_INJECTION: forcing a failure.
[  659.122058][T13968] name failslab, interval 1, probability 0, space 0, times 0
[  659.143382][T13962] EXT4-fs error (device sda1): ext4_discard_preallocations:5601: comm syz.0.1691: Error -117 reading block bitmap for 4
[  659.193296][T13968] CPU: 1 UID: 0 PID: 13968 Comm: syz.3.1696 Tainted: G     U              6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  659.193347][T13968] Tainted: [U]=USER
[  659.193358][T13968] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  659.193376][T13968] Call Trace:
[  659.193386][T13968]  <TASK>
[  659.193398][T13968]  dump_stack_lvl+0x16c/0x1f0
[  659.193444][T13968]  should_fail_ex+0x512/0x640
[  659.193489][T13968]  ? fs_reclaim_acquire+0xae/0x150
[  659.193540][T13968]  should_failslab+0xc2/0x120
[  659.193578][T13968]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  659.193616][T13968]  ? security_inode_alloc+0x3b/0x2b0
[  659.193657][T13968]  security_inode_alloc+0x3b/0x2b0
[  659.193694][T13968]  inode_init_always_gfp+0xce4/0x1030
[  659.193748][T13968]  ? __pfx_nfsd_fill_super+0x10/0x10
[  659.193806][T13968]  alloc_inode+0x86/0x240
[  659.193845][T13968]  new_inode+0x22/0x1c0
[  659.193880][T13968]  ? find_held_lock+0x2b/0x80
[  659.193910][T13968]  ? __pfx_nfsd_fill_super+0x10/0x10
[  659.193960][T13968]  simple_fill_super+0xff/0x720
[  659.194017][T13968]  ? __pfx_nfsd_fill_super+0x10/0x10
[  659.194064][T13968]  nfsd_fill_super+0x90/0x530
[  659.194111][T13968]  ? __pfx_set_anon_super_fc+0x10/0x10
[  659.194155][T13968]  ? __pfx_nfsd_fill_super+0x10/0x10
[  659.194203][T13968]  get_tree_keyed+0x10b/0x1d0
[  659.194255][T13968]  vfs_get_tree+0x8b/0x340
[  659.194298][T13968]  path_mount+0x14d4/0x1f20
[  659.194329][T13968]  ? kmem_cache_free+0x2d4/0x4d0
[  659.194356][T13968]  ? __pfx_path_mount+0x10/0x10
[  659.194387][T13968]  ? putname+0x154/0x1a0
[  659.194420][T13968]  __x64_sys_mount+0x28d/0x310
[  659.194448][T13968]  ? __pfx___x64_sys_mount+0x10/0x10
[  659.194474][T13968]  ? rcu_is_watching+0x12/0xc0
[  659.194507][T13968]  do_syscall_64+0xcd/0x230
[  659.194547][T13968]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  659.194575][T13968] RIP: 0033:0x7f366238e969
[  659.194596][T13968] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  659.194622][T13968] RSP: 002b:00007f3663216038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  659.194646][T13968] RAX: ffffffffffffffda RBX: 00007f36625b5fa0 RCX: 00007f366238e969
[  659.194663][T13968] RDX: 0000200000001040 RSI: 00002000000001c0 RDI: 0000000000000000
[  659.194680][T13968] RBP: 00007f3663216090 R08: 0000000000000000 R09: 0000000000000000
[  659.194695][T13968] R10: 0000000002000401 R11: 0000000000000246 R12: 0000000000000002
[  659.194711][T13968] R13: 0000000000000000 R14: 00007f36625b5fa0 R15: 00007ffd9fef2238
[  659.194744][T13968]  </TASK>
[  661.641548][T14006] FAULT_INJECTION: forcing a failure.
[  661.641548][T14006] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  661.667740][T14004] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1706'.
[  661.705002][T14006] CPU: 0 UID: 0 PID: 14006 Comm: syz.3.1707 Tainted: G     U              6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  661.705054][T14006] Tainted: [U]=USER
[  661.705063][T14006] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  661.705080][T14006] Call Trace:
[  661.705090][T14006]  <TASK>
[  661.705101][T14006]  dump_stack_lvl+0x16c/0x1f0
[  661.705148][T14006]  should_fail_ex+0x512/0x640
[  661.705196][T14006]  _copy_from_iter+0x2a4/0x15b0
[  661.705256][T14006]  ? __pfx__copy_from_iter+0x10/0x10
[  661.705305][T14006]  ? rcu_is_watching+0x12/0xc0
[  661.705335][T14006]  ? trace_kmalloc+0x2b/0xd0
[  661.705376][T14006]  ? __kmalloc_noprof+0x242/0x510
[  661.705431][T14006]  kernfs_fop_write_iter+0x19a/0x510
[  661.705477][T14006]  vfs_write+0x5ba/0x1180
[  661.705507][T14006]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  661.705553][T14006]  ? __pfx_vfs_write+0x10/0x10
[  661.705587][T14006]  ? __pfx_do_sys_openat2+0x10/0x10
[  661.705627][T14006]  ? __pfx_do_sys_openat2+0x10/0x10
[  661.705688][T14006]  ksys_write+0x12a/0x240
[  661.705718][T14006]  ? __pfx_ksys_write+0x10/0x10
[  661.705744][T14006]  ? rcu_is_watching+0x12/0xc0
[  661.705782][T14006]  do_syscall_64+0xcd/0x230
[  661.705830][T14006]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  661.705861][T14006] RIP: 0033:0x7f366238e969
[  661.705885][T14006] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  661.705915][T14006] RSP: 002b:00007f3663216038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  661.705944][T14006] RAX: ffffffffffffffda RBX: 00007f36625b5fa0 RCX: 00007f366238e969
[  661.705965][T14006] RDX: 000000000000fdef RSI: 0000000000000000 RDI: 0000000000000003
[  661.705984][T14006] RBP: 00007f3663216090 R08: 0000000000000000 R09: 0000000000000000
[  661.706004][T14006] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  661.706022][T14006] R13: 0000000000000000 R14: 00007f36625b5fa0 R15: 00007ffd9fef2238
[  661.706064][T14006]  </TASK>
[  661.932818][    C0] vkms_vblank_simulate: vblank timer overrun
[  664.209730][T14049] FAULT_INJECTION: forcing a failure.
[  664.209730][T14049] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  664.224543][T14049] CPU: 0 UID: 0 PID: 14049 Comm: syz.0.1718 Tainted: G     U              6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  664.224592][T14049] Tainted: [U]=USER
[  664.224602][T14049] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  664.224620][T14049] Call Trace:
[  664.224630][T14049]  <TASK>
[  664.224642][T14049]  dump_stack_lvl+0x16c/0x1f0
[  664.224691][T14049]  should_fail_ex+0x512/0x640
[  664.224741][T14049]  _copy_from_user+0x2e/0xd0
[  664.224790][T14049]  copy_msghdr_from_user+0x98/0x160
[  664.224827][T14049]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  664.224874][T14049]  ? _raw_spin_unlock_irqrestore+0x61/0x80
[  664.224922][T14049]  ___sys_sendmsg+0xfe/0x1d0
[  664.224959][T14049]  ? __pfx____sys_sendmsg+0x10/0x10
[  664.225046][T14049]  __sys_sendmsg+0x16d/0x220
[  664.225083][T14049]  ? __pfx___sys_sendmsg+0x10/0x10
[  664.225131][T14049]  ? rcu_is_watching+0x12/0xc0
[  664.225172][T14049]  do_syscall_64+0xcd/0x230
[  664.225219][T14049]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  664.225250][T14049] RIP: 0033:0x7efee0b8e969
[  664.225272][T14049] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  664.225300][T14049] RSP: 002b:00007efee192d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  664.225328][T14049] RAX: ffffffffffffffda RBX: 00007efee0db5fa0 RCX: 00007efee0b8e969
[  664.225348][T14049] RDX: 0000000000042000 RSI: 0000200000001fc0 RDI: 0000000000000003
[  664.225373][T14049] RBP: 00007efee192d090 R08: 0000000000000000 R09: 0000000000000000
[  664.225391][T14049] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  664.225409][T14049] R13: 0000000000000000 R14: 00007efee0db5fa0 R15: 00007ffd884518c8
[  664.225446][T14049]  </TASK>
[  667.426839][T14103] ksmbd: Unknown IPC event: 14, ignore.
[  673.270168][T14230] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1760'.
[  673.512434][T14240] openvswitch: netlink: Multiple metadata blocks provided
[  673.897117][T14261] FAULT_INJECTION: forcing a failure.
[  673.897117][T14261] name failslab, interval 1, probability 0, space 0, times 0
[  673.930931][T14261] CPU: 1 UID: 0 PID: 14261 Comm: syz.0.1770 Tainted: G     U              6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  673.930983][T14261] Tainted: [U]=USER
[  673.930994][T14261] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  673.931011][T14261] Call Trace:
[  673.931021][T14261]  <TASK>
[  673.931033][T14261]  dump_stack_lvl+0x16c/0x1f0
[  673.931082][T14261]  should_fail_ex+0x512/0x640
[  673.931133][T14261]  should_failslab+0xc2/0x120
[  673.931169][T14261]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  673.931210][T14261]  ? skb_clone+0x190/0x3f0
[  673.931251][T14261]  skb_clone+0x190/0x3f0
[  673.931296][T14261]  netlink_deliver_tap+0xabd/0xd30
[  673.931342][T14261]  netlink_unicast+0x5df/0x7f0
[  673.931387][T14261]  ? __pfx_netlink_unicast+0x10/0x10
[  673.931424][T14261]  ? __lock_acquire+0xaa4/0x1ba0
[  673.931476][T14261]  netlink_sendmsg+0x8d1/0xdd0
[  673.931521][T14261]  ? __pfx_netlink_sendmsg+0x10/0x10
[  673.931578][T14261]  ____sys_sendmsg+0xa95/0xc70
[  673.931623][T14261]  ? copy_msghdr_from_user+0x10a/0x160
[  673.931656][T14261]  ? __pfx_____sys_sendmsg+0x10/0x10
[  673.931722][T14261]  ___sys_sendmsg+0x134/0x1d0
[  673.931760][T14261]  ? __pfx____sys_sendmsg+0x10/0x10
[  673.931849][T14261]  __sys_sendmsg+0x16d/0x220
[  673.931886][T14261]  ? __pfx___sys_sendmsg+0x10/0x10
[  673.931932][T14261]  ? rcu_is_watching+0x12/0xc0
[  673.931974][T14261]  do_syscall_64+0xcd/0x230
[  673.932022][T14261]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  673.932053][T14261] RIP: 0033:0x7efee0b8e969
[  673.932078][T14261] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  673.932109][T14261] RSP: 002b:00007efee192d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  673.932137][T14261] RAX: ffffffffffffffda RBX: 00007efee0db5fa0 RCX: 00007efee0b8e969
[  673.932158][T14261] RDX: 0000000000042000 RSI: 0000200000001fc0 RDI: 0000000000000003
[  673.932177][T14261] RBP: 00007efee192d090 R08: 0000000000000000 R09: 0000000000000000
[  673.932196][T14261] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  673.932215][T14261] R13: 0000000000000000 R14: 00007efee0db5fa0 R15: 00007ffd884518c8
[  673.932257][T14261]  </TASK>
[  674.183351][    C1] vkms_vblank_simulate: vblank timer overrun
[  674.724202][T14280] FAULT_INJECTION: forcing a failure.
[  674.724202][T14280] name failslab, interval 1, probability 0, space 0, times 0
[  674.789740][T14280] CPU: 0 UID: 0 PID: 14280 Comm: syz.3.1774 Tainted: G     U              6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  674.789797][T14280] Tainted: [U]=USER
[  674.789809][T14280] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  674.789829][T14280] Call Trace:
[  674.789839][T14280]  <TASK>
[  674.789852][T14280]  dump_stack_lvl+0x16c/0x1f0
[  674.789905][T14280]  should_fail_ex+0x512/0x640
[  674.789945][T14280]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  674.789994][T14280]  should_failslab+0xc2/0x120
[  674.790028][T14280]  __kmalloc_cache_noprof+0x6a/0x3e0
[  674.790074][T14280]  ? _raw_spin_unlock+0x28/0x50
[  674.790105][T14280]  ? snd_ctl_open+0x174/0x5e0
[  674.790137][T14280]  snd_ctl_open+0x174/0x5e0
[  674.790165][T14280]  ? __pfx_snd_ctl_open+0x10/0x10
[  674.790193][T14280]  snd_open+0x1fe/0x450
[  674.790227][T14280]  ? __pfx_snd_open+0x10/0x10
[  674.790260][T14280]  chrdev_open+0x231/0x6a0
[  674.790287][T14280]  ? __pfx_apparmor_file_open+0x10/0x10
[  674.790321][T14280]  ? __pfx_chrdev_open+0x10/0x10
[  674.790351][T14280]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  674.790398][T14280]  do_dentry_open+0x741/0x1c10
[  674.790425][T14280]  ? __pfx_chrdev_open+0x10/0x10
[  674.790467][T14280]  vfs_open+0x82/0x3f0
[  674.790507][T14280]  path_openat+0x1e5e/0x2d40
[  674.790548][T14280]  ? __pfx_path_openat+0x10/0x10
[  674.790583][T14280]  do_filp_open+0x20b/0x470
[  674.790609][T14280]  ? __pfx_do_filp_open+0x10/0x10
[  674.790657][T14280]  ? alloc_fd+0x471/0x7d0
[  674.790707][T14280]  do_sys_openat2+0x11b/0x1d0
[  674.790741][T14280]  ? __pfx_do_sys_openat2+0x10/0x10
[  674.790789][T14280]  __x64_sys_openat+0x174/0x210
[  674.790825][T14280]  ? __pfx___x64_sys_openat+0x10/0x10
[  674.790864][T14280]  ? rcu_is_watching+0x12/0xc0
[  674.790897][T14280]  do_syscall_64+0xcd/0x230
[  674.790938][T14280]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  674.790965][T14280] RIP: 0033:0x7f366238e969
[  674.790986][T14280] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  674.791012][T14280] RSP: 002b:00007f3663216038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  674.791038][T14280] RAX: ffffffffffffffda RBX: 00007f36625b5fa0 RCX: 00007f366238e969
[  674.791056][T14280] RDX: 0000000000002000 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  674.791073][T14280] RBP: 00007f3662410ab1 R08: 0000000000000000 R09: 0000000000000000
[  674.791090][T14280] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  674.791106][T14280] R13: 0000000000000000 R14: 00007f36625b5fa0 R15: 00007ffd9fef2238
[  674.791154][T14280]  </TASK>
[  675.359529][T14290] netlink: 'syz.0.1776': attribute type 10 has an invalid length.
[  675.437463][T14290] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1776'.
[  675.955392][T14307] FAULT_INJECTION: forcing a failure.
[  675.955392][T14307] name failslab, interval 1, probability 0, space 0, times 0
[  675.971879][T14307] CPU: 0 UID: 0 PID: 14307 Comm: syz.1.1782 Tainted: G     U              6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  675.971930][T14307] Tainted: [U]=USER
[  675.971941][T14307] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  675.971958][T14307] Call Trace:
[  675.971968][T14307]  <TASK>
[  675.971980][T14307]  dump_stack_lvl+0x16c/0x1f0
[  675.972029][T14307]  should_fail_ex+0x512/0x640
[  675.972074][T14307]  ? __kmalloc_noprof+0xbf/0x510
[  675.972121][T14307]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  675.972171][T14307]  should_failslab+0xc2/0x120
[  675.972209][T14307]  __kmalloc_noprof+0xd2/0x510
[  675.972242][T14307]  ? __pfx___mutex_trylock_common+0x10/0x10
[  675.972296][T14307]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  675.972352][T14307]  genl_family_rcv_msg_doit+0xbf/0x2f0
[  675.972401][T14307]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  675.972448][T14307]  ? genl_get_cmd+0x194/0x580
[  675.972501][T14307]  ? __local_bh_enable_ip+0xa4/0x120
[  675.972536][T14307]  ? __dev_queue_xmit+0x896/0x43e0
[  675.972583][T14307]  ? __radix_tree_lookup+0x21f/0x2c0
[  675.972631][T14307]  genl_rcv_msg+0x55c/0x800
[  675.972682][T14307]  ? __pfx_genl_rcv_msg+0x10/0x10
[  675.972726][T14307]  ? __pfx___dev_queue_xmit+0x10/0x10
[  675.972776][T14307]  ? __pfx_tipc_nl_node_set_key+0x10/0x10
[  675.972824][T14307]  ? __lock_acquire+0xaa4/0x1ba0
[  675.972875][T14307]  netlink_rcv_skb+0x16a/0x440
[  675.972914][T14307]  ? __pfx_genl_rcv_msg+0x10/0x10
[  675.972962][T14307]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  675.973025][T14307]  ? __pfx_down_read+0x10/0x10
[  675.973076][T14307]  ? netlink_deliver_tap+0x1ae/0xd30
[  675.973129][T14307]  genl_rcv+0x28/0x40
[  675.973168][T14307]  netlink_unicast+0x53a/0x7f0
[  675.973213][T14307]  ? __pfx_netlink_unicast+0x10/0x10
[  675.973250][T14307]  ? __lock_acquire+0xaa4/0x1ba0
[  675.973302][T14307]  netlink_sendmsg+0x8d1/0xdd0
[  675.973349][T14307]  ? __pfx_netlink_sendmsg+0x10/0x10
[  675.973406][T14307]  ____sys_sendmsg+0xa95/0xc70
[  675.973454][T14307]  ? copy_msghdr_from_user+0x10a/0x160
[  675.973490][T14307]  ? __pfx_____sys_sendmsg+0x10/0x10
[  675.973556][T14307]  ___sys_sendmsg+0x134/0x1d0
[  675.973596][T14307]  ? __pfx____sys_sendmsg+0x10/0x10
[  675.973687][T14307]  __sys_sendmsg+0x16d/0x220
[  675.973723][T14307]  ? __pfx___sys_sendmsg+0x10/0x10
[  675.973773][T14307]  ? rcu_is_watching+0x12/0xc0
[  675.973815][T14307]  do_syscall_64+0xcd/0x230
[  675.973862][T14307]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  675.973893][T14307] RIP: 0033:0x7fafe338e969
[  675.973917][T14307] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  675.973948][T14307] RSP: 002b:00007fafe42df038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  675.973977][T14307] RAX: ffffffffffffffda RBX: 00007fafe35b5fa0 RCX: 00007fafe338e969
[  675.973999][T14307] RDX: 0000000000042000 RSI: 0000200000001fc0 RDI: 0000000000000003
[  675.974019][T14307] RBP: 00007fafe42df090 R08: 0000000000000000 R09: 0000000000000000
[  675.974038][T14307] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  675.974057][T14307] R13: 0000000000000000 R14: 00007fafe35b5fa0 R15: 00007ffd7af305d8
[  675.974106][T14307]  </TASK>
[  676.596311][T14317] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1784'.
[  678.733756][T14354] nvme_fcloop: unknown parameter or missing value '7'
[  679.440408][T14353] FAULT_INJECTION: forcing a failure.
[  679.440408][T14353] name failslab, interval 1, probability 0, space 0, times 0
[  679.470972][T14358] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1792'.
[  679.512607][T14353] CPU: 0 UID: 0 PID: 14353 Comm: syz.0.1794 Tainted: G     U              6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  679.512658][T14353] Tainted: [U]=USER
[  679.512668][T14353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  679.512686][T14353] Call Trace:
[  679.512696][T14353]  <TASK>
[  679.512708][T14353]  dump_stack_lvl+0x16c/0x1f0
[  679.512756][T14353]  should_fail_ex+0x512/0x640
[  679.512800][T14353]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  679.512851][T14353]  should_failslab+0xc2/0x120
[  679.512887][T14353]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  679.512922][T14353]  ? __alloc_skb+0x2b2/0x380
[  679.512960][T14353]  __alloc_skb+0x2b2/0x380
[  679.512990][T14353]  ? __pfx___alloc_skb+0x10/0x10
[  679.513015][T14353]  ? genl_rcv_msg+0x4bb/0x800
[  679.513056][T14353]  netlink_ack+0x15d/0xb80
[  679.513087][T14353]  ? __lock_acquire+0xaa4/0x1ba0
[  679.513123][T14353]  netlink_rcv_skb+0x347/0x440
[  679.513151][T14353]  ? __pfx_genl_rcv_msg+0x10/0x10
[  679.513185][T14353]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  679.513229][T14353]  ? __pfx_down_read+0x10/0x10
[  679.513266][T14353]  ? netlink_deliver_tap+0x1ae/0xd30
[  679.513298][T14353]  genl_rcv+0x28/0x40
[  679.513327][T14353]  netlink_unicast+0x53a/0x7f0
[  679.513359][T14353]  ? __pfx_netlink_unicast+0x10/0x10
[  679.513386][T14353]  ? __lock_acquire+0xaa4/0x1ba0
[  679.513423][T14353]  netlink_sendmsg+0x8d1/0xdd0
[  679.513457][T14353]  ? __pfx_netlink_sendmsg+0x10/0x10
[  679.513497][T14353]  ____sys_sendmsg+0xa95/0xc70
[  679.513531][T14353]  ? copy_msghdr_from_user+0x10a/0x160
[  679.513557][T14353]  ? __pfx_____sys_sendmsg+0x10/0x10
[  679.513604][T14353]  ___sys_sendmsg+0x134/0x1d0
[  679.513638][T14353]  ? __pfx____sys_sendmsg+0x10/0x10
[  679.513700][T14353]  __sys_sendmsg+0x16d/0x220
[  679.513727][T14353]  ? __pfx___sys_sendmsg+0x10/0x10
[  679.513762][T14353]  ? rcu_is_watching+0x12/0xc0
[  679.513791][T14353]  do_syscall_64+0xcd/0x230
[  679.513836][T14353]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  679.513859][T14353] RIP: 0033:0x7efee0b8e969
[  679.513877][T14353] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  679.513900][T14353] RSP: 002b:00007efee192d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  679.513922][T14353] RAX: ffffffffffffffda RBX: 00007efee0db5fa0 RCX: 00007efee0b8e969
[  679.513938][T14353] RDX: 0000000000042000 RSI: 0000200000001fc0 RDI: 0000000000000003
[  679.513953][T14353] RBP: 00007efee192d090 R08: 0000000000000000 R09: 0000000000000000
[  679.513967][T14353] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  679.513980][T14353] R13: 0000000000000000 R14: 00007efee0db5fa0 R15: 00007ffd884518c8
[  679.514009][T14353]  </TASK>
[  682.723691][T14414] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1807'.
[  685.277026][T14450] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78800
[  685.294110][T14450] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  685.304072][T14450] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  685.319735][T14450] page_type: f5(slab)
[  685.331154][T14456] FAULT_INJECTION: forcing a failure.
[  685.331154][T14456] name failslab, interval 1, probability 0, space 0, times 0
[  685.331746][T14450] raw: 00fff00000000040 ffff888146ea9280 dead000000000122 0000000000000000
[  685.356592][T14456] CPU: 1 UID: 0 PID: 14456 Comm: syz.3.1815 Tainted: G     U              6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  685.356646][T14456] Tainted: [U]=USER
[  685.356656][T14456] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  685.356674][T14456] Call Trace:
[  685.356683][T14456]  <TASK>
[  685.356694][T14456]  dump_stack_lvl+0x16c/0x1f0
[  685.356744][T14456]  should_fail_ex+0x512/0x640
[  685.356792][T14456]  should_failslab+0xc2/0x120
[  685.356834][T14456]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  685.356875][T14456]  ? skb_clone+0x190/0x3f0
[  685.356920][T14456]  skb_clone+0x190/0x3f0
[  685.356960][T14456]  netlink_deliver_tap+0xabd/0xd30
[  685.357009][T14456]  netlink_unicast+0x6b2/0x7f0
[  685.357056][T14456]  ? __pfx_netlink_unicast+0x10/0x10
[  685.357095][T14456]  ? genl_rcv_msg+0x4bb/0x800
[  685.357151][T14456]  netlink_ack+0x696/0xb80
[  685.357205][T14456]  netlink_rcv_skb+0x347/0x440
[  685.357245][T14456]  ? __pfx_genl_rcv_msg+0x10/0x10
[  685.357294][T14456]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  685.357356][T14456]  ? __pfx_down_read+0x10/0x10
[  685.357408][T14456]  ? netlink_deliver_tap+0x1ae/0xd30
[  685.357453][T14456]  genl_rcv+0x28/0x40
[  685.357494][T14456]  netlink_unicast+0x53a/0x7f0
[  685.357549][T14456]  ? __pfx_netlink_unicast+0x10/0x10
[  685.357587][T14456]  ? __lock_acquire+0xaa4/0x1ba0
[  685.357641][T14456]  netlink_sendmsg+0x8d1/0xdd0
[  685.357690][T14456]  ? __pfx_netlink_sendmsg+0x10/0x10
[  685.357747][T14456]  ____sys_sendmsg+0xa95/0xc70
[  685.357798][T14456]  ? copy_msghdr_from_user+0x10a/0x160
[  685.357834][T14456]  ? __pfx_____sys_sendmsg+0x10/0x10
[  685.357902][T14456]  ___sys_sendmsg+0x134/0x1d0
[  685.357942][T14456]  ? __pfx____sys_sendmsg+0x10/0x10
[  685.358033][T14456]  __sys_sendmsg+0x16d/0x220
[  685.358070][T14456]  ? __pfx___sys_sendmsg+0x10/0x10
[  685.358121][T14456]  ? rcu_is_watching+0x12/0xc0
[  685.358164][T14456]  do_syscall_64+0xcd/0x230
[  685.358215][T14456]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  685.358250][T14456] RIP: 0033:0x7f366238e969
[  685.358274][T14456] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  685.358306][T14456] RSP: 002b:00007f3663216038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  685.358337][T14456] RAX: ffffffffffffffda RBX: 00007f36625b5fa0 RCX: 00007f366238e969
[  685.358360][T14456] RDX: 0000000000042000 RSI: 0000200000001fc0 RDI: 0000000000000003
[  685.358381][T14456] RBP: 00007f3663216090 R08: 0000000000000000 R09: 0000000000000000
[  685.358402][T14456] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  685.358422][T14456] R13: 0000000000000000 R14: 00007f36625b5fa0 R15: 00007ffd9fef2238
[  685.358467][T14456]  </TASK>
[  685.675579][T14450] raw: 0000000000000000 00000000000c000c 00000000f5000000 0000000000000000
[  685.770477][T14455] can0: slcan on ttyS2.
[  685.789575][T14450] head: 00fff00000000040 ffff888146ea9280 dead000000000122 0000000000000000
[  685.889535][T14450] head: 0000000000000000 00000000000c000c 00000000f5000000 0000000000000000
[  685.958183][T14450] head: 00fff00000000003 ffffea0001e20001 00000000ffffffff 00000000ffffffff
[  685.978022][T14450] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  685.990746][T14450] page dumped because: unmovable page
[  685.998592][T14450] page_owner tracks the page as allocated
[  686.008677][T14450] page last allocated via order 3, migratetype Reclaimable, gfp_mask 0xd2050(__GFP_RECLAIMABLE|__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5497, tgid 5497 (dhcpcd-run-hook), ts 66642181674, free_ts 36095119202
[  686.033650][    C1] vkms_vblank_simulate: vblank timer overrun
[  686.042533][T14461] can0 (unregistered): slcan off ttyS2.
[  686.042809][T14450]  post_alloc_hook+0x181/0x1b0
[  686.057490][T14450]  get_page_from_freelist+0x135c/0x3920
[  686.072018][T14450]  __alloc_frozen_pages_noprof+0x263/0x23a0
[  686.078714][T14450]  alloc_pages_mpol+0x1fb/0x550
[  686.085651][T14450]  new_slab+0x244/0x340
[  686.090406][T14450]  ___slab_alloc+0xd9c/0x1940
[  686.141756][T14450]  __slab_alloc.constprop.0+0x56/0xb0
[  686.147781][T14450]  kmem_cache_alloc_lru_noprof+0xf4/0x3b0
[  686.182716][T14450]  ext4_alloc_inode+0x28/0x610
[  686.188067][T14450]  alloc_inode+0x61/0x240
[  686.245620][T14450]  iget_locked+0x2e4/0x830
[  686.250596][T14450]  __ext4_iget+0x3ca/0x44e0
[  686.294537][T14450]  ext4_lookup+0x37c/0x730
[  686.323859][T14450]  __lookup_slow+0x24e/0x460
[  686.342040][T14450]  walk_component+0x353/0x5b0
[  686.497086][T14450]  path_lookupat+0x17e/0x780
[  686.535016][T14450] page last free pid 1 tgid 1 stack trace:
[  686.625969][T14450]  __free_frozen_pages+0x69d/0xff0
[  686.632887][T14450]  free_contig_range+0x135/0x3f0
[  686.639465][T14450]  destroy_args+0x66f/0x830
[  686.646063][T14450]  debug_vm_pgtable+0x130e/0x2d50
[  686.654363][T14450]  do_one_initcall+0x120/0x6e0
[  686.664048][T14450]  kernel_init_freeable+0x5c2/0x900
[  686.677075][T14450]  kernel_init+0x1c/0x2b0
[  686.684503][T14450]  ret_from_fork+0x45/0x80
[  686.690571][T14450]  ret_from_fork_asm+0x1a/0x30
[  686.932106][T14496] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1821'.
[  686.954807][T14496] netlink: 242 bytes leftover after parsing attributes in process `syz.0.1821'.
[  689.370080][T14553] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1831'.
[  690.228052][T14559] can: request_module (can-proto-0) failed.
[  690.680227][ T5875] Process accounting resumed
[  691.148378][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[  691.155987][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  694.293230][T14627] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1849'.
[  694.379747][T14635] i2c i2c-0: Frontend requested software zigzag, but didn't set the frequency step size
[  695.878734][T14665] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1855'.
[  698.351282][T14694] netlink: 'syz.1.1862': attribute type 11 has an invalid length.
[  698.365342][T14694] netlink: 'syz.1.1862': attribute type 11 has an invalid length.
[  698.397764][T14694] netlink: 'syz.1.1862': attribute type 11 has an invalid length.
[  703.933259][T14785] block2mtd: parameter too long
[  704.835612][T14802] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input22
[  706.761932][T14834] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [3]
[  710.758953][T14886] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1905'.
[  712.411035][T14911] hub 8-0:1.0: USB hub found
[  712.418261][T14911] hub 8-0:1.0: 1 port detected
[  713.047542][T14929] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1914'.
[  714.529458][T14955] can: request_module (can-proto-3) failed.
[  714.846813][T14964] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1919'.
[  716.029659][T14997] random: crng reseeded on system resumption
[  716.105315][T14999] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1926'.
	

	
		


	

	
	

	
	

	
	

	

	
		

	


	
	

		
	
		
	
	

	



			








	







	









				




		
		
	











	






	
	






	




	




		







	

	
	

	


		

	

	
	

	
	

	

	
		

	


	

	

		
	
		
	
	

	



			








	

	






	
	




































	


	



	



		
	
	









	


	



	


	
		









	
	






	













	
		






	








	
	








	






	







		










	

	
		
	

	
		
	

	
		
	

	
		
					

	
		

	


	
	

		
	
		
	
	

	



			








	







	









				




		
		
	











	






	
	






	




	




		







		

	
		

	


	
	

		
	
		
	
	

	



			








	







	









				




		
		
	











	












	






	






		









	

	
	

	
	

	
	

	
	

	
	

	
		
	

	
	

	
	

	

	
		

	


	
	

		
	
		
	
	

	



			








	





	












	






	
	






	




	





		








	
		

	


	
	

		
	
		
	
	

	



			








	





	



	
	









				




		
		
	











	






	
	






	





	




		










	
				
	
	



	
	
	

	
		

	
		

	


	
	

		
	
		
	
	

	



			








	







	









				




		
		
	











	






	
	






	




	




		






	

	
		
	

				


		

				

	

	
		
	
	

	




	

	
		

	
	

	
				
	
	



	
		
	
	
	
	
	
	
	

	
		

	

	
		

	


	
	

		
	
		
	
	

	



			








	







	









				




		
		
	











	






	
	






	




	




		







	
				
	
	



	
		
	

	
		

	
		

	


	
	

		
	
		
	
	

	



			








	







	









				




		
		
	











	






	
	






	





	




		







	
				
	
	



	
		


	

		
	
	

	
	
		
	
	
	
	

	
		

	
	
	
	
	
	
	
		




		

			

				
				

			
			
		

	
	
	
		


	
		


	

	
		
	

	
		

	


	
	

		
	
		
	
	

	



			








	




	






















				





		

		
		
	











	






	
	






	






	






		









	

	
	

	
		

	


	
	

		
	
	

	
		
		
	
	

	



			








	







	









				




		
		
	











	






	
	






	




	





		








	

	

	
		

	


	
	

		
	
		
	
	

	



			








	




	






















				





		

		
		
	











	






	
	






	






	






		









	

	
		
	

	
		

	
		

	


	
	

		
	
		
	
	

	



			








	







	









				




		
		
	











	






	
	






	






	






		










	

	

	
		

	


	
	

		
	
		
	
	

	



			








	




	





		

	
	
	
	
	

	




	

		










	
	










	
	






	




	





		








	

	
	
	

	
	
	

	
		
	




	
		

	


		

		
	
		
	
	

	



			








	
	


		

	













	












	
	






	




	





		







syzkaller
syzkaller login: [  781.289345][T16116] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2159'.
[  786.017205][T16201] Line length is too long: Should be less than 4094
[  786.073654][T16201] sp0: Synchronizing with TNC
[  786.285885][T16207] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2180'.
[  789.549710][T16250] FAULT_INJECTION: forcing a failure.
[  789.549710][T16250] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  789.563545][T16250] CPU: 1 UID: 0 PID: 16250 Comm: syz.0.2189 Tainted: G     U              6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  789.563596][T16250] Tainted: [U]=USER
[  789.563606][T16250] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  789.563624][T16250] Call Trace:
[  789.563631][T16250]  <TASK>
[  789.563639][T16250]  dump_stack_lvl+0x16c/0x1f0
[  789.563678][T16250]  should_fail_ex+0x512/0x640
[  789.563716][T16250]  _copy_from_user+0x2e/0xd0
[  789.563754][T16250]  snd_rawmidi_kernel_write1+0x50a/0x8a0
[  789.563803][T16250]  snd_rawmidi_write+0x26e/0xc10
[  789.563848][T16250]  ? __pfx_snd_rawmidi_write+0x10/0x10
[  789.563887][T16250]  ? __pfx_default_wake_function+0x10/0x10
[  789.563914][T16250]  ? bpf_lsm_file_permission+0x9/0x10
[  789.563952][T16250]  ? security_file_permission+0x71/0x210
[  789.563985][T16250]  ? rw_verify_area+0xcf/0x680
[  789.564023][T16250]  vfs_write+0x25c/0x1180
[  789.564043][T16250]  ? __pfx_snd_rawmidi_write+0x10/0x10
[  789.564086][T16250]  ? __pfx_vfs_write+0x10/0x10
[  789.564106][T16250]  ? find_held_lock+0x2b/0x80
[  789.564129][T16250]  ? __fget_files+0x204/0x3c0
[  789.564171][T16250]  ? __fget_files+0x20e/0x3c0
[  789.564215][T16250]  ksys_write+0x205/0x240
[  789.564237][T16250]  ? __pfx_ksys_write+0x10/0x10
[  789.564267][T16250]  do_syscall_64+0xcd/0x230
[  789.564311][T16250]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  789.564335][T16250] RIP: 0033:0x7efee0b8e969
[  789.564354][T16250] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  789.564377][T16250] RSP: 002b:00007efee192d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  789.564399][T16250] RAX: ffffffffffffffda RBX: 00007efee0db5fa0 RCX: 00007efee0b8e969
[  789.564414][T16250] RDX: 000000100000a3d9 RSI: 0000200000000400 RDI: 000000000000000a
[  789.564429][T16250] RBP: 00007efee0c10ab1 R08: 0000000000000000 R09: 0000000000000000
[  789.564444][T16250] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  789.564457][T16250] R13: 0000000000000000 R14: 00007efee0db5fa0 R15: 00007ffd884518c8
[  789.564486][T16250]  </TASK>
[  792.570809][T16284] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2192'.
[  794.212752][T16310] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2197'.
[  794.296094][T16304] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2197'.
[  795.829043][T16333] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2201'.
[  796.628852][T16340] usb usb15: usbfs: process 16340 (syz.0.2203) did not claim interface 0 before use

syzkaller
syzkaller login: [  796.846706][T16351] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2204'.
[  798.239797][T16364] busy
[  801.826807][T16414] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2217'.
[  803.085454][T16426] FAULT_INJECTION: forcing a failure.
[  803.085454][T16426] name failslab, interval 1, probability 0, space 0, times 0
[  803.169349][T16426] CPU: 0 UID: 0 PID: 16426 Comm: syz.3.2219 Tainted: G     U              6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  803.169403][T16426] Tainted: [U]=USER
[  803.169414][T16426] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  803.169433][T16426] Call Trace:
[  803.169444][T16426]  <TASK>
[  803.169456][T16426]  dump_stack_lvl+0x16c/0x1f0
[  803.169508][T16426]  should_fail_ex+0x512/0x640
[  803.169554][T16426]  ? __kvmalloc_node_noprof+0x122/0x600
[  803.169594][T16426]  should_failslab+0xc2/0x120
[  803.169634][T16426]  __kvmalloc_node_noprof+0x135/0x600
[  803.169666][T16426]  ? lockdep_init_map_type+0x5c/0x280
[  803.169710][T16426]  ? alloc_netdev_mqs+0xb5b/0x1570
[  803.169757][T16426]  ? alloc_netdev_mqs+0xb5b/0x1570
[  803.169793][T16426]  alloc_netdev_mqs+0xb5b/0x1570
[  803.169838][T16426]  ? __pfx_loopback_net_init+0x10/0x10
[  803.169880][T16426]  loopback_net_init+0x38/0x170
[  803.169922][T16426]  ? __pfx_loopback_net_init+0x10/0x10
[  803.169961][T16426]  ops_init+0x1df/0x5f0
[  803.170005][T16426]  setup_net+0x21e/0x850
[  803.170060][T16426]  ? __pfx_setup_net+0x10/0x10
[  803.170098][T16426]  ? lockdep_init_map_type+0x5c/0x280
[  803.170144][T16426]  ? __pfx_down_read_killable+0x10/0x10
[  803.170202][T16426]  ? debug_mutex_init+0x37/0x70
[  803.170236][T16426]  copy_net_ns+0x2a6/0x5f0
[  803.170283][T16426]  create_new_namespaces+0x3ea/0xad0
[  803.170329][T16426]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  803.170370][T16426]  ksys_unshare+0x45b/0xa40
[  803.170417][T16426]  ? __pfx_ksys_unshare+0x10/0x10
[  803.170460][T16426]  ? xfd_validate_state+0x5d/0x180
[  803.170515][T16426]  ? rcu_is_watching+0x12/0xc0
[  803.170555][T16426]  __x64_sys_unshare+0x31/0x40
[  803.170600][T16426]  do_syscall_64+0xcd/0x230
[  803.170650][T16426]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  803.170684][T16426] RIP: 0033:0x7f366238e969
[  803.170708][T16426] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  803.170741][T16426] RSP: 002b:00007f3663216038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  803.170771][T16426] RAX: ffffffffffffffda RBX: 00007f36625b5fa0 RCX: 00007f366238e969
[  803.170794][T16426] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  803.170813][T16426] RBP: 00007f3662410ab1 R08: 0000000000000000 R09: 0000000000000000
[  803.170833][T16426] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  803.170852][T16426] R13: 0000000000000000 R14: 00007f36625b5fa0 R15: 00007ffd9fef2238
[  803.170895][T16426]  </TASK>
[  803.427004][    C0] vkms_vblank_simulate: vblank timer overrun
[  803.672935][T16443] bridge0: port 3(syz_tun) entered blocking state
[  803.718052][T16443] bridge0: port 3(syz_tun) entered disabled state
[  803.722760][T16431] FAULT_INJECTION: forcing a failure.
[  803.722760][T16431] name failslab, interval 1, probability 0, space 0, times 0
[  803.724882][T16443] syz_tun: entered allmulticast mode
[  803.745444][T16443] syz_tun: entered promiscuous mode
[  803.769148][T16443] bridge0: port 3(syz_tun) entered blocking state
[  803.775894][T16443] bridge0: port 3(syz_tun) entered forwarding state
[  803.793446][T16431] CPU: 0 UID: 0 PID: 16431 Comm: syz.2.2221 Tainted: G     U              6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  803.793500][T16431] Tainted: [U]=USER
[  803.793510][T16431] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  803.793530][T16431] Call Trace:
[  803.793540][T16431]  <TASK>
[  803.793552][T16431]  dump_stack_lvl+0x16c/0x1f0
[  803.793606][T16431]  should_fail_ex+0x512/0x640
[  803.793650][T16431]  ? __kmalloc_noprof+0xbf/0x510
[  803.793688][T16431]  ? vb2_core_allocated_buffers_storage+0xc4/0x220
[  803.793740][T16431]  should_failslab+0xc2/0x120
[  803.793780][T16431]  __kmalloc_noprof+0xd2/0x510
[  803.793825][T16431]  vb2_core_allocated_buffers_storage+0xc4/0x220
[  803.793880][T16431]  vb2_core_reqbufs+0x398/0xfe0
[  803.793941][T16431]  ? __pfx_vb2_core_reqbufs+0x10/0x10
[  803.794017][T16431]  __vb2_init_fileio+0x3f1/0x1100
[  803.794047][T16431]  ? __mutex_lock+0x1ca/0xb90
[  803.794095][T16431]  ? vb2_fop_read+0xe6/0x3e0
[  803.794146][T16431]  __vb2_perform_fileio+0x9c2/0x1660
[  803.794189][T16431]  ? __pfx___vb2_perform_fileio+0x10/0x10
[  803.794232][T16431]  ? iovec_from_user+0xbb/0x140
[  803.794301][T16431]  vb2_fop_read+0x215/0x3e0
[  803.794355][T16431]  v4l2_read+0x226/0x360
[  803.794393][T16431]  ? __pfx_v4l2_read+0x10/0x10
[  803.794430][T16431]  vfs_readv+0x6bc/0x8a0
[  803.794489][T16431]  ? __pfx_vfs_readv+0x10/0x10
[  803.794565][T16431]  ? __fget_files+0x20e/0x3c0
[  803.794622][T16431]  ? do_readv+0x132/0x330
[  803.794666][T16431]  do_readv+0x132/0x330
[  803.794712][T16431]  ? __pfx_do_readv+0x10/0x10
[  803.794756][T16431]  ? rcu_is_watching+0x12/0xc0
[  803.794798][T16431]  do_syscall_64+0xcd/0x230
[  803.794847][T16431]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  803.794878][T16431] RIP: 0033:0x7fb15158e969
[  803.794902][T16431] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  803.794933][T16431] RSP: 002b:00007fb1524d0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000013
[  803.794962][T16431] RAX: ffffffffffffffda RBX: 00007fb1517b5fa0 RCX: 00007fb15158e969
[  803.794983][T16431] RDX: 0000000000000008 RSI: 0000200000000080 RDI: 0000000000000007
[  803.795002][T16431] RBP: 00007fb151610ab1 R08: 0000000000000000 R09: 0000000000000000
[  803.795021][T16431] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  803.795039][T16431] R13: 0000000000000000 R14: 00007fb1517b5fa0 R15: 00007ffe54cb08e8
[  803.795079][T16431]  </TASK>
[  804.039368][    C0] vkms_vblank_simulate: vblank timer overrun
[  804.833787][T16453] 
[  804.836194][T16453] ======================================================
[  804.843268][T16453] WARNING: possible circular locking dependency detected
[  804.843287][T16453] 6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 Tainted: G     U             
[  804.843307][T16453] ------------------------------------------------------
[  804.843318][T16453] syz.1.2225/16453 is trying to acquire lock:
[  804.843335][T16453] ffff888143704a18 (&q->elevator_lock){+.+.}-{4:4}, at: queue_requests_store+0x1c7/0x310
[  804.843408][T16453] 
[  804.843408][T16453] but task is already holding lock:
[  804.843418][T16453] ffff8881437044e8 (&q->q_usage_counter(io)#29){++++}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20
[  804.900773][T16453] 
[  804.900773][T16453] which lock already depends on the new lock.
[  804.900773][T16453] 
[  804.900787][T16453] 
[  804.900787][T16453] the existing dependency chain (in reverse order) is:
[  804.900798][T16453] 
[  804.900798][T16453] -> #2 (&q->q_usage_counter(io)#29){++++}-{0:0}:
[  804.928902][T16453]        blk_alloc_queue+0x619/0x760
[  804.934218][T16453]        blk_mq_alloc_queue+0x179/0x290
[  804.939809][T16453]        __blk_mq_alloc_disk+0x29/0x120
[  804.945393][T16453]        loop_add+0x496/0xb70
[  804.950105][T16453]        loop_init+0x164/0x270
[  804.954893][T16453]        do_one_initcall+0x120/0x6e0
[  804.960207][T16453]        kernel_init_freeable+0x5c2/0x900
[  804.965957][T16453]        kernel_init+0x1c/0x2b0
[  804.970881][T16453]        ret_from_fork+0x45/0x80
[  804.975857][T16453]        ret_from_fork_asm+0x1a/0x30
[  804.981172][T16453] 
[  804.981172][T16453] -> #1 (fs_reclaim){+.+.}-{0:0}:
[  804.988417][T16453]        fs_reclaim_acquire+0x102/0x150
[  804.993999][T16453]        kmem_cache_alloc_noprof+0x53/0x3b0
[  804.999914][T16453]        __kernfs_new_node+0xd2/0x8a0
[  805.005319][T16453]        kernfs_new_node+0x13c/0x1e0
[  805.010623][T16453]        kernfs_create_dir_ns+0x4c/0x1a0
[  805.016280][T16453]        sysfs_create_dir_ns+0x13a/0x2b0
[  805.021948][T16453]        kobject_add_internal+0x2c4/0x9b0
[  805.027702][T16453]        kobject_add+0x16e/0x240
[  805.032675][T16453]        elv_register_queue+0xd3/0x2a0
[  805.038158][T16453]        blk_register_queue+0x3c4/0x560
[  805.043727][T16453]        add_disk_fwnode+0x911/0x13a0
[  805.049131][T16453]        nbd_dev_add+0x78e/0xbb0
[  805.054085][T16453]        nbd_init+0x181/0x320
[  805.058804][T16453]        do_one_initcall+0x120/0x6e0
[  805.064122][T16453]        kernel_init_freeable+0x5c2/0x900
[  805.069868][T16453]        kernel_init+0x1c/0x2b0
[  805.074736][T16453]        ret_from_fork+0x45/0x80
[  805.079707][T16453]        ret_from_fork_asm+0x1a/0x30
[  805.085032][T16453] 
[  805.085032][T16453] -> #0 (&q->elevator_lock){+.+.}-{4:4}:
[  805.092878][T16453]        __lock_acquire+0x1173/0x1ba0
[  805.098542][T16453]        lock_acquire+0x179/0x350
[  805.103600][T16453]        __mutex_lock+0x199/0xb90
[  805.108665][T16453]        queue_requests_store+0x1c7/0x310
[  805.114411][T16453]        queue_attr_store+0x270/0x310
[  805.119812][T16453]        sysfs_kf_write+0xef/0x150
[  805.124968][T16453]        kernfs_fop_write_iter+0x351/0x510
[  805.130838][T16453]        iter_file_splice_write+0x91c/0x1150
[  805.136857][T16453]        direct_splice_actor+0x18f/0x6c0
[  805.142527][T16453]        splice_direct_to_actor+0x342/0xa30
[  805.148452][T16453]        do_splice_direct+0x174/0x240
[  805.153861][T16453]        do_sendfile+0xafd/0xe50
[  805.158835][T16453]        __x64_sys_sendfile64+0x1d8/0x220
[  805.164577][T16453]        do_syscall_64+0xcd/0x230
[  805.169640][T16453]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  805.176070][T16453] 
[  805.176070][T16453] other info that might help us debug this:
[  805.176070][T16453] 
[  805.186310][T16453] Chain exists of:
[  805.186310][T16453]   &q->elevator_lock --> fs_reclaim --> &q->q_usage_counter(io)#29
[  805.186310][T16453] 
[  805.200090][T16453]  Possible unsafe locking scenario:
[  805.200090][T16453] 
[  805.207557][T16453]        CPU0                    CPU1
[  805.212932][T16453]        ----                    ----
[  805.218327][T16453]   lock(&q->q_usage_counter(io)#29);
[  805.223815][T16453]                                lock(fs_reclaim);
[  805.230338][T16453]                                lock(&q->q_usage_counter(io)#29);
[  805.238258][T16453]   lock(&q->elevator_lock);
[  805.242869][T16453] 
[  805.242869][T16453]  *** DEADLOCK ***
[  805.242869][T16453] 
[  805.251020][T16453] 5 locks held by syz.1.2225/16453:
[  805.256226][T16453]  #0: ffff88802ef34420 (sb_writers#7){.+.+}-{0:0}, at: splice_direct_to_actor+0x342/0xa30
[  805.266299][T16453]  #1: ffff88807ded1888 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x510
[  805.276103][T16453]  #2: ffff888143777f08 (kn->active#276){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2b2/0x510
[  805.286254][T16453]  #3: ffff8881437044e8 (&q->q_usage_counter(io)#29){++++}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20
[  805.297972][T16453]  #4: ffff888143704520 (&q->q_usage_counter(queue)#24){+.+.}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20
[  805.310058][T16453] 
[  805.310058][T16453] stack backtrace:
[  805.315972][T16453] CPU: 1 UID: 0 PID: 16453 Comm: syz.1.2225 Tainted: G     U              6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  805.316012][T16453] Tainted: [U]=USER
[  805.316019][T16453] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  805.316034][T16453] Call Trace:
[  805.316042][T16453]  <TASK>
[  805.316052][T16453]  dump_stack_lvl+0x116/0x1f0
[  805.316094][T16453]  print_circular_bug+0x275/0x350
[  805.316128][T16453]  check_noncircular+0x14c/0x170
[  805.316163][T16453]  __lock_acquire+0x1173/0x1ba0
[  805.316202][T16453]  lock_acquire+0x179/0x350
[  805.316233][T16453]  ? queue_requests_store+0x1c7/0x310
[  805.316258][T16453]  ? __pfx___might_resched+0x10/0x10
[  805.316287][T16453]  ? do_raw_spin_lock+0x12c/0x2b0
[  805.316326][T16453]  __mutex_lock+0x199/0xb90
[  805.316361][T16453]  ? queue_requests_store+0x1c7/0x310
[  805.316385][T16453]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  805.316417][T16453]  ? queue_requests_store+0x1c7/0x310
[  805.316439][T16453]  ? lockdep_hardirqs_on+0x7c/0x110
[  805.316473][T16453]  ? __pfx___mutex_lock+0x10/0x10
[  805.316512][T16453]  ? __pfx_autoremove_wake_function+0x10/0x10
[  805.316546][T16453]  ? queue_requests_store+0x1c7/0x310
[  805.316568][T16453]  queue_requests_store+0x1c7/0x310
[  805.316592][T16453]  ? __pfx_queue_requests_store+0x10/0x10
[  805.316617][T16453]  ? __mutex_trylock_common+0xe9/0x250
[  805.316652][T16453]  ? __pfx_queue_requests_store+0x10/0x10
[  805.316675][T16453]  queue_attr_store+0x270/0x310
[  805.316715][T16453]  ? __pfx_queue_attr_store+0x10/0x10
[  805.316762][T16453]  ? find_held_lock+0x2b/0x80
[  805.316785][T16453]  ? sysfs_file_kobj+0xe4/0x290
[  805.316822][T16453]  ? __pfx_queue_attr_store+0x10/0x10
[  805.316861][T16453]  sysfs_kf_write+0xef/0x150
[  805.316897][T16453]  kernfs_fop_write_iter+0x351/0x510
[  805.316929][T16453]  ? __pfx_sysfs_kf_write+0x10/0x10
[  805.316965][T16453]  iter_file_splice_write+0x91c/0x1150
[  805.317015][T16453]  ? __pfx_iter_file_splice_write+0x10/0x10
[  805.317056][T16453]  ? __pfx_copy_splice_read+0x10/0x10
[  805.317107][T16453]  ? __pfx_iter_file_splice_write+0x10/0x10
[  805.317148][T16453]  direct_splice_actor+0x18f/0x6c0
[  805.317188][T16453]  splice_direct_to_actor+0x342/0xa30
[  805.317226][T16453]  ? __pfx_direct_splice_actor+0x10/0x10
[  805.317268][T16453]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  805.317310][T16453]  do_splice_direct+0x174/0x240
[  805.317348][T16453]  ? __pfx_do_splice_direct+0x10/0x10
[  805.317385][T16453]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  805.317424][T16453]  ? rw_verify_area+0xcf/0x680
[  805.317463][T16453]  do_sendfile+0xafd/0xe50
[  805.317504][T16453]  ? __pfx_do_sendfile+0x10/0x10
[  805.317545][T16453]  ? __x64_sys_futex+0x1e0/0x4c0
[  805.317572][T16453]  ? __x64_sys_futex+0x1e9/0x4c0
[  805.317600][T16453]  __x64_sys_sendfile64+0x1d8/0x220
[  805.317630][T16453]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  805.317658][T16453]  ? rcu_is_watching+0x12/0xc0
[  805.317685][T16453]  do_syscall_64+0xcd/0x230
[  805.317732][T16453]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  805.317758][T16453] RIP: 0033:0x7fafe338e969
[  805.317778][T16453] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  805.317804][T16453] RSP: 002b:00007fafe42df038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  805.317827][T16453] RAX: ffffffffffffffda RBX: 00007fafe35b5fa0 RCX: 00007fafe338e969
[  805.317845][T16453] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000004
[  805.317860][T16453] RBP: 00007fafe3410ab1 R08: 0000000000000000 R09: 0000000000000000
[  805.317875][T16453] R10: 000000007fffe000 R11: 0000000000000246 R12: 0000000000000000
[  805.317890][T16453] R13: 0000000000000000 R14: 00007fafe35b5fa0 R15: 00007ffd7af305d8
[  805.317913][T16453]  </TASK>
[  814.074743][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[  814.081167][ T1294] ieee802154 phy1 wpan1: encryption failed: -22