last executing test programs:

4m15.306916277s ago: executing program 3 (id=758):
mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x7ffd) (async)
r0 = prctl$auto(0x1000000003b, 0x2000007ff, 0x0, 0x4, 0x7)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) (async)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x60742, 0x0) (async)
write$auto(0x3, 0x0, 0x5)
mmap$auto(0x0, 0xe983, 0x2, 0xeb1, 0x401, 0x8000) (async, rerun: 64)
r1 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) (rerun: 64)
mmap$auto(0x4, 0x20006, 0x4000000000df, 0xeb1, r1, 0x8000)
connect$auto(0x4, 0x0, 0x10) (async)
read$auto(r0, 0x0, 0x3)
read$auto(0x4, 0x0, 0xfdef)
write$auto(0x1, 0x0, 0x80000000) (async)
openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000100), 0x2a00, 0x0)
preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0x2000fffffffd}, 0x34713e6d, 0x8, 0x5) (async)
r2 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0)
mmap$auto(0x0, 0x202000a, 0x3, 0xeb3, 0xfffffffffffffffa, 0x2) (async, rerun: 32)
sendmsg$auto_NFC_CMD_DEP_LINK_DOWN(r0, 0x0, 0x20000044) (async, rerun: 32)
mmap$auto(0x0, 0x400005, 0xe3, 0x9b72, 0xffffffffffffffff, 0xa) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb3, r2, 0x3) (async, rerun: 32)
r3 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x80100, 0x0) (rerun: 32)
read$auto(r3, 0x0, 0x1f40) (async)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x3}, 0x3)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/block/ram5/queue/atomic_write_unit_min_bytes\x00', 0x8400, 0x0) (async, rerun: 64)
r4 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sg0\x00', 0x80000, 0x0) (rerun: 64)
ioctl$auto_SG_GET_RESERVED_SIZE2(r4, 0x2272, &(0x7f0000000000)) (async)
madvise$auto(0x0, 0xffffffffffff0004, 0x19) (async)
kill$auto(0x0, 0x21)
madvise$auto(0x0, 0x2003f0, 0x15) (async)
mmap$auto(0x9, 0x7, 0x10000000000000df, 0x16, 0x401, 0x89fd)

4m11.947905841s ago: executing program 3 (id=767):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r0, 0x0, 0xe8)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000001240)='/proc/thread-self/fail-nth\x00', 0xa0302, 0x0)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/037/001\x00', 0xa901, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ram7\x00', 0x4ac2, 0x0)
write$auto(0x3, 0x0, 0xfffffdef)
openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000240)='/dev/usbmon35\x00', 0x400, 0x0)
mkdir$auto(&(0x7f0000000100)='./file0\x00', 0x7)
openat$dir(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x10000, 0x41)
rmdir$auto(&(0x7f0000000380)='./file0\x00')
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x101102, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D3\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
madvise$auto(0x0, 0xffffffffffff0004, 0x19)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x200007, 0x8)
lseek$auto(0x3, 0x7ffffffffffffffd, 0x2)
prctl$auto(0x23, 0x7, 0x2008, 0x0, 0x0)
mmap$auto(0x0, 0x20009, 0x7fffffff, 0xeb1, 0x401, 0x8000)
mknod$auto(&(0x7f0000000180)=':,\x00', 0xcb, 0xfffffffa)
execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r2)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000001c0)={'wlan0\x00'})

4m8.276055509s ago: executing program 3 (id=778):
r0 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f00000001c0), 0x80040, 0x0)
ioctl$auto_UBI_IOCDET(r0, 0x40046f41, &(0x7f0000000300))
openat$auto_proc_timens_offsets_operations_base(0xffffffffffffff9c, &(0x7f0000002440), 0x80c02, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/ipv6/neigh/netdevsim0/unres_qlen_bytes\x00', 0x40000, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
readv$auto(0x3, &(0x7f0000000100)={0x0, 0x8}, 0x4000000000000009)
epoll_create$auto(0x401)
ioctl$auto_TUNGETIFF(0xffffffffffffffff, 0x800454d2, &(0x7f0000000080)=0x89)
open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
socket(0x2, 0x1, 0x106)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/workqueue/nf_ft_offload_stats/affinity_scope\x00', 0x2, 0x0)
r1 = socket(0x10, 0x2, 0x14)
sendmsg$auto_NLBL_MGMT_C_REMOVE(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, 0x0, 0x1, 0x70bd2b, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x400000c)
read$auto(0x3, 0x0, 0x20f34)
r2 = openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
write$auto_ima_measure_policy_ops_ima_fs(r2, 0x0, 0x0)
write$auto(0x3, 0x0, 0xffd8)
ioctl$auto_TIOCSETD2(0xffffffffffffffff, 0x5423, &(0x7f0000000180)="ba49572bbdb42fa0b0b7efb749434c4d3d3d0cb6fc7badd2d40c3ef62e")
fallocate$auto(0x8000000000000003, 0x0, 0x8000000d, 0x2cbd5d)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
getpid()
r4 = openat$auto_dfs_sched_itmt_fops_itmt(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/netdevsim/netdevsim5/ports/3/bpf_tc_non_bound_accept\x00', 0x30b1c0, 0x0)
accept$auto(r4, &(0x7f0000000280)=@l2tp={0x2, 0x0, @private=0xa010101, 0x3}, &(0x7f00000002c0)=0x3)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptye0\x00', 0x88000, 0x0)
ioctl$auto_KVM_GET_MSRS(r3, 0xc008ae88, &(0x7f0000000040)={0x10, 0x0, [{0x481, 0x400, 0x9}]})
write$auto(0x3, 0x0, 0xfffffdef)

4m6.661961212s ago: executing program 3 (id=784):
r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0)
mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x8e051, r0, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/zram0/stat\x00', 0x0, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000001100)=""/4106, 0x100a)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8400)
socket(0xa, 0x1, 0x100)
r2 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x101100, 0x0)
ioctl$auto_SW_SYNC_GET_DEADLINE(r2, 0xc0105702, &(0x7f0000000000)={0x0, 0x0, r2})
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r4 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
syz_genetlink_get_family_id$auto_psample(0x0, 0xffffffffffffffff)
sendmsg$auto_PSAMPLE_CMD_GET_GROUP(r4, 0x0, 0x801)
sendmsg$auto_GTP_CMD_ECHOREQ(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)={0x1c, 0x0, 0x1, 0x70bd2a, 0x25dfdbfb, {}, [@GTPA_FLOW={0x6, 0x6, 0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40000d4)
r5 = socket(0x10, 0x2, 0x0)
sendmsg$auto_OVS_DP_CMD_DEL(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x14, 0x0, 0x1, 0x70bd2b, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x8044}, 0x4001090)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='R'], 0x1ac}}, 0x40000)
sendmmsg$auto(r5, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x8)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x7, 0x20009, 0x5, 0xffffffff, 0x405, 0x8000)
sendmsg$auto_MAC802154_HWSIM_CMD_GET_RADIO(r4, &(0x7f0000004200)={0x0, 0x0, &(0x7f00000041c0)={&(0x7f0000004240)=ANY=[@ANYBLOB="c4260000", @ANYRES16=0x0, @ANYBLOB="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", @ANYBLOB="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"], 0x26c4}, 0x1, 0x0, 0x0, 0x80}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc850}, 0x8800)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x10, 0x7)

4m3.898860051s ago: executing program 3 (id=790):
close_range$auto(0x0, 0x5, 0x0)
pipe$auto(0x0)
fcntl$auto(0xff80000000000000, 0x4, 0xfffffffffffffffc)
pipe$auto(0x0)
tee$auto(0x2000000000000, 0x3, 0x402, 0xd)

4m2.380944681s ago: executing program 3 (id=794):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x101e81, 0x0)
unshare$auto(0x40000080)
socket(0x21, 0x2, 0x2)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
accept$auto(0x3, 0xffffffffffffffff, 0xffffffffffffffff)
socket(0x10, 0x2, 0x0)
fstat$auto(0xffffffffffffffff, 0x0)
syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000040), 0xffffffffffffffff)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram11\x00', 0x20000, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/mptcp/pm_type\x00', 0xe0002, 0x0)
sendfile$auto(0x1, r0, 0x0, 0xc01)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
mincore$auto(0x1000, 0x4000000, 0x0)

3m46.765312135s ago: executing program 32 (id=794):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x101e81, 0x0)
unshare$auto(0x40000080)
socket(0x21, 0x2, 0x2)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
accept$auto(0x3, 0xffffffffffffffff, 0xffffffffffffffff)
socket(0x10, 0x2, 0x0)
fstat$auto(0xffffffffffffffff, 0x0)
syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000040), 0xffffffffffffffff)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram11\x00', 0x20000, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/mptcp/pm_type\x00', 0xe0002, 0x0)
sendfile$auto(0x1, r0, 0x0, 0xc01)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
mincore$auto(0x1000, 0x4000000, 0x0)

10.226088986s ago: executing program 0 (id=1513):
r0 = socket(0x2, 0x1, 0x106)
r1 = socket(0x18, 0x5, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x6, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
connect$auto(0x3, &(0x7f00000018c0)=@in={0x2, 0x300, @loopback=0xac14140a}, 0x55)
setsockopt$auto(r0, 0x1, 0x9, 0x0, 0xeb66)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000180), 0xffffffffffffffff)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003140), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_COALESCE_GET(0xffffffffffffffff, &(0x7f0000003200)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000440)=ANY=[@ANYRESHEX=r1, @ANYBLOB="000bdef06fdddd8d98aba467514127d3f412557e80f1eb993a886ef5cf5c0fd222f076eb55d53f12ec0100553f8d569f6b9598fae51ee3f0966f06866d2b27dbb380f64d80f9ae9f84717ed9fb497206dffdef0cc0b2310d45e3361d43dc3871cfdb7405678883bb0de31aea0b13e7bff43325b874511790e55f480edd7eaec6a153a2ff56c044322d4692f958439c90b8122393bee7bced39d8ad74e962007c18b2836f5b819d2a462571081cdab6d5798b507fff3de7541b39086c1d82ac821f0f2e8e2554f52dffe40df48a8a455d527febdc26d357a0b45cf55b93e42385f21b06991a3988990b381f85de8d523f72cd882342517b609dbb72a6836f22a9dce1a91aacda43b6d6b7d900f6074b8c48611d40a299e306e8b44fab73b006861e95ed7619c1cde9c60d9e1dd4f6df66ff7b141ca894da115925370970ee8a5e0174388c2c0b7594c8e7ee26f01c2fe7793d3a1637dc300c7b0b4b777cdb460515ec0fd9ba64871b5bb1a2f7f059b877ef68a3a578efbc2e706a25c2ff8d112cd08d7a338fc0c96b05dd18df733e7846dd0def547290dd50d695f32a9d7b1be96207b16236e150b5b21065221eaefd79c4b935f9bc363eef68e0ca3c28d8fec26ccca7a4269a", @ANYRESOCT=r0], 0x14}}, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
r4 = open(&(0x7f0000000800)='./file0\x00', 0xe4201, 0x17c)
fcntl$auto(r4, 0x400, 0x1)
unshare$auto(0x40000080)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/ip6_mr_vif\x00', 0x0, 0x0)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='/sys/kernel/mm/transparent_hugepage/shrink_underused\x00', 0x0, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f0000000140)=""/1, 0x1)
setsockopt$auto(0x400000000000003, 0x20000029, 0x21b, 0x0, 0x3)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd3/queue/iosched/write_expire\x00', 0x20681, 0x0)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x30)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r6)
sendmsg$auto_NL80211_CMD_GET_WIPHY(r6, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000140)=ANY=[@ANYBLOB="18000000", @ANYBLOB="810b25bd7080fbdbdf25010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x20000000}, 0xc004)
recvmmsg$auto(r6, &(0x7f0000000180)={{0x0, 0x5, 0x0, 0x0, 0x0, 0x6, 0x5}, 0x20000804}, 0x210a, 0x6, 0x0)
sendmsg$auto_OVS_CT_LIMIT_CMD_GET(r2, &(0x7f0000000140)={0x0, 0x82, &(0x7f0000000000)={&(0x7f0000000bc0)=ANY=[@ANYBLOB=' 6\x00\x00', @ANYRES16=r3, @ANYBLOB="010025bd7000fcdbdf250300000004000180083601"], 0x3620}, 0x1, 0x0, 0x0, 0x20000055}, 0x200400d0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x1ad240, 0x1b1)
socket(0xa, 0x3, 0x3b)

8.290793092s ago: executing program 0 (id=1519):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sda1\x00', 0x100, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x11, 0x80003, 0x300)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
ioctl$auto(0x3, 0x8905, 0xfffffffffffff4e0)
r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0)
r1 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r2 = open(&(0x7f0000000100)='.\x00', 0x0, 0x110)
getdents64$auto(r2, 0x0, 0x400)
ioctl$auto_VHOST_SET_OWNER(r1, 0xaf01, 0x5)
ioctl$auto(r1, 0x4008af13, r0)

7.938145355s ago: executing program 0 (id=1522):
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x8000}, 0x4040804)
lstat$auto(0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})
close_range$auto(0x2, 0x8, 0x0)
syz_genetlink_get_family_id$auto_ovs_datapath(0x0, 0xffffffffffffffff)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x129800, 0x0)
sendmsg$auto_IOAM6_CMD_ADD_NAMESPACE(0xffffffffffffffff, &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8040}, 0x24004054)
socketpair$auto(0x0, 0x200, 0xc7, 0x0)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x10b142, 0x0)
mmap$auto(0x0, 0xb991, 0x5, 0x19, 0xffffffffffffffff, 0x2)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/jfs/loglevel\x00', 0x1a9701, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x0, 0x0)
r2 = openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)
fadvise64$auto_POSIX_FADV_DONTNEED(r1, 0xabfc016, 0x8, 0x4)
read$auto_rng_chrdev_ops_core(r2, &(0x7f0000000040)=""/4096, 0xfffffe82)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/input/event0\x00', 0x200, 0x0)
setsockopt$auto(0xffffffffffffffff, 0x6, 0xd, 0x0, 0x6)
sendmsg$auto_OVS_METER_CMD_GET(0xffffffffffffffff, 0x0, 0x8000000)

7.874262407s ago: executing program 4 (id=1523):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8400)
r0 = prctl$auto(0x23, 0x1, 0x2008, 0x5, 0x0)
socket(0xa, 0x1, 0x100)
r1 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x101100, 0x0)
r2 = ioctl$auto_SW_SYNC_GET_DEADLINE(r1, 0xc0105702, &(0x7f0000000000)={0x5, 0x0, r1})
ioperm$auto(0x7, 0x1, 0x7)
modify_ldt$auto(0x1, 0x0, 0x10)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
ioperm$auto(0x7, 0x6, 0x2)
rt_sigaction$auto(0x1, &(0x7f00000001c0)={&(0x7f0000000080)=0x0, 0x7fffffffffffffff, 0x0, {0x5}}, 0x0, 0x8)
rt_sigaction$auto(0x4, &(0x7f0000000300)={&(0x7f0000000240)=0x0, 0x0, 0x0, {0x1}}, 0x0, 0x8)
readahead$auto(r2, 0x4, 0x1ff)
gettid()
rseq$auto(&(0x7f0000000340)={0xe, 0x200, 0x5, 0x10805, 0xffffffff, 0x2}, 0x8000, 0x0, 0x8000006)
keyctl$auto_KEYCTL_PKEY_DECRYPT(0x1a, 0x0, 0x0, 0x0, 0x4)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(r0, 0x8, 0x6a4c87a5)
socket(0x2, 0x3, 0x100)
preadv2$auto(0x3, &(0x7f0000001000)={0x0, 0x80000000}, 0x5, 0x0, 0x7, 0x2e)
mmap$auto(0x0, 0x400008, 0xdf, 0x1ff, 0x2, 0x8000)
socket(0x37, 0x4, 0xa)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmsg$auto_IOAM6_CMD_DUMP_SCHEMAS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8d0}, 0x800)
r3 = open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0x1, 0x538, 0x80, 0x10000, 0x0, r3, 0x1000, "72fea04183dce563f03f2a25077b3383", 0x0, r3, 0x4, 0x6, 0xff, 0x1, r3}, 0x6f3)
mount$auto(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='nfs4\x00', 0x200, &(0x7f00000001c0))
r4 = syz_open_procfs$namespace(0x0, 0x0)
fstat$auto(r4, 0x0)

7.759880928s ago: executing program 4 (id=1524):
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) (async)
socket(0x10, 0x2, 0x0) (async)
mq_timedsend$auto(0xffffffffffffffff, &(0x7f0000000040)='@*!:}\xc1-.!\\#[./\',-\x00', 0x80, 0x9, 0x0) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
r0 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$auto_BATADV_CMD_GET_MCAST_FLAGS(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r0], 0x1c}, 0x1, 0x0, 0x0, 0xae31e9c9e702e50}, 0x20048005) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYRES32=r0, @ANYBLOB="18"], 0x1ac}}, 0x40000) (async)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

7.365723227s ago: executing program 4 (id=1526):
write$auto(0xca, &(0x7f0000000040)='\x04>2\x0f\x00\x00\x96\x18am\xea\xf4\x1b\xf8', 0x7e)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0xfffffffd, 0x401bf, 0x7352, 0x3c, 0xfffff7ffffffffff, 0x1ffde, 0x5, 0xfffffffffffffff4, 0x2, 0x9, 0x9, 0x6, 0x8000000000000004, 0xb2, 0x80000000009, 0x6, 0x10003, 0xb, 0x4, 0x0, 0x8, 0x2000, 0x203, 0x3, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x7, 0xfffffffffffffffd, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x59e74468, 0x800000000, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x2, 0x0, 0x0, 0x7, 0x6, 0xffff]}, 0x1fe, 0xd)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000826bd7000fedbdf25030000000600070008000000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a00010000000000000000000a00010000000000000000000600060040"], 0x6c}, 0x1, 0x0, 0x0, 0x40080}, 0x0) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
keyctl$auto(0x2000000000000017, 0x8000, 0x2d, 0xc4, 0x20803)
write$auto(0xffffffffffffffff, 0x0, 0x7d) (async)
unshare$auto(0x40000080)
r0 = socket(0x10, 0x2, 0x0) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x40000) (async)
recvmmsg$auto(r0, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={&(0x7f0000000040), 0xcb}, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0) (async)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/007/001\x00', 0xa901, 0x0) (async)
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[], 0x24}, 0x1, 0x0, 0x0, 0xc005}, 0x4)
close_range$auto(0x2, 0x8, 0x0) (async)
socket(0x2, 0x3, 0x100) (async)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

6.560831995s ago: executing program 0 (id=1529):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_IPVS_CMD_GET_SERVICE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000500)={0x11a8, 0x0, 0x4, 0x70bd26, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_SERVICE={0x110, 0x1, 0x0, 0x1, [@nested={0x101, 0x116, 0x0, 0x1, [@generic="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"]}, @typed={0x8, 0x5c, 0x0, 0x0, @fd=r0}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x9}, @IPVS_CMD_ATTR_DEST={0x107c, 0x2, 0x0, 0x1, [@nested={0x1078, 0xda, 0x0, 0x1, [@typed={0x61, 0x9f, 0x0, 0x0, @binary="4d8b3c4267089464b4aa1bab29ba85b4292fed2f8b900e0101096d00fcf9c595552d54be4ebe3d547ff067f1a26893f5f1131ef9e9b26672e3b1ea0e9e302c7136cc4d46ee3098174d51c9d48fd52224d6245f9b63bd03195708387543"}, @generic="05e969299377c515fba1ec068cf4bc524696ccfa31f0636e86e9ead7a57c5dbae9d25916617bca2061dd5109486efe289114244d0c6b80caaf44760684e204b8876de8a0be5b0e17915bb9319b3c9b0ea637785ac9c473387c78951f2e5681ea6de1c41585d4670ddf860bee32d836b7c722958b98d3c6ca547a8d2a99f065c895a7a693ce1c31ee96b46349a872953f95a123cdd6b248acb46bfdee74435ae6960a7f9110d0ea3cea56807ee682aa3818fef4060a827c6c620eab5f613a328e5b19470fa68d3e826521934812845d14a26c47162bcf977874cd87d5daf11c6ddff26a7c90d36a2d49505279443e865f2beec2a52ff4647a39e8a9095099451761676eeef529b758e77058e60eee85cc1a11b8173bdc6390f34fe4b2d2b6aa970a1f910e17f15b76f23cebd2db9a666baa88a0af389db9d878b62228aabdb38027a0099eb28639daf5bd097fcb651bd20c6285ef1132bcd652c10d1a82e509664187f88d18fb34fece5cd402d2d44de461c8e4e245904bd84a5b84536f98bc99656e175bc70d347c1ae0db88bb8f8a83dc6ad41337219bf9a455fd49d08fa9e1510fd2bc9aa21cc0d2f0a7da678b1131e84cbb17f4bae6a4e1275a923da597227894408b42621463854c2413378da3ac87ee8a3e062eb7b848d75e2f8b7829def9cb40535f8692e425829e9ac0897f2bc69101b37560cf143836552c50503f4935b0da024cff0eb4c078717e8333a12d535fa892b66b83fb53d54fc86f2f35ec87270380abe8c87cacf9b19aec7ea950bd374ecefa9c64c1d9e607a6fd71a4192aa1ab0e56d7cf158926d30423efc5d623475976b104306eef14bde160ce0921bb758c1967d648b8783fc7990e3f3850fd0d81297d7b69bbe8b9337a7e308e36b7bade455e0fb1adb59c65ccc16ec14eae89bb24c748d7e4c191e75f6bbf4712f0c40a926f46382c545d8798866b9e5019ca6a9c810eda98396710d530e9767e13ac6140eb5bc7c62aed158d6b745d5f450e1fd95e082c68de1376bd039d5638542e82595b381c4d6cac2006a120b7be7f1d991705a7334750227013dd1b6f163545231183609cba6bb9b53baffb8957472ab6e485c86c71c26bd8d2b8b5c2fc479a6e4f1ff5eee91ce71d624ccc44d758ce3d2f5043603d4933cf8b8b09eb894227b4dea165c9ad122b5f4ce583d1cf08ed47da02bb5108fe332f239e6906273d91354e9f695d18df47fbcbd0e59a2432748dc7f5ca673b085cf19a4fb9d642708e1c991bd8f25cf7d48c0e14e59b39be576916e317e72a64d8c40f8a75eee9efb7276dab0122cda1ca10b2c48692537475b41bc52c1c8bee6278097e8fd1dfd711578397b50ca9f50d6ae3a97eced747f78fa7d137331221af418526280ec2cd5c69e7e793854749b99b314c8e2132a32841ba7af631c0a26af6f1954b0209ce52d933ba21680638f7fcd89eee4c5862f15d17cb6a047ee1c64cf2e1461d01eb88b5f847992cf1bde67e105f5b624aebd2d9757dd6ad37c07b16a9db75ab3ea399219cb5e32785bfe8cd8f150b35b21b44db2a3f707a02e46858b09d24cc077fe2f093da116f11816fb1b2573f975986e624ecba2365b0ed2f0f6afb05d1214b36f539afbe471335b9f7de18f909937abe5c17357f9acb42ff7b8980b8ffc6da6a65c0edb22d715137dce8fe4f4b1230482ed972db6f11e15fac7080cea74ec9008f1cf20de595cab5fb8649b6e0cfed593bd4ff0170f5622888e91338b48592253cedb683e4e9ae867c03f3e776bc4b8981312fbe7846d8301906f194a011f7aebbb100b222861e29027c5c349b1bd338ee5b4294baa16e49cd2dc2146d5f05c431487293312f6cf653b7673ea562100b61140074020b0533a382adb694b6786d2b34ae9a241ae3e181b8c992342a5b3cb02744e92a78a730fbaaab85216af83e555f8adb2ae5bb99a307ac267b133236c7755b468232ffff426a681a3cdef4f53643e1a90d82980b925c3740dd29f08965457c10fb9147044583e704834cbb2e4e3c69d1e74442e5609040be9dfd7dff2cadf6a24b600c518807b32144687c3fba2ba5805b7b51057788a46697ce43d0f34f59dd2b7d561bf2dac257c884e75a48edf1bc4f4b401ff9505d0af256adf15d68c9ee379cceae7173dcfb3c1f059eae48c172960678e2d0667473f62d32518c1911e9e2dd8d83e81587acca80dd1d3e10e89633800c2e13732d2bbb86104e3eafafd82c77ab90ecb456956b037fa6a553dead7c79e0750172bf7af249a785bb4cc4a065f010cee838deb927a52ae05ac784d9d21703cc9b027d35706a48acef6370a4089a99f7dd845b555621ca8e590cab078b854dc927679be72e0e0f88383f19fb69a2c5ca6427b1cd6bb41a8fe0cdfdaeb46dd2e27e80c212261b29a495bb7914955a8e1cb69e909758dc6ef70110154f53e884d85908eaa3b51e79ec503c9b5733b2bbe95ffd6ec85352f1a881e17e68482682273d3d11b79078422f6e7ea6e99a684549b3730eb92128d648bca0684577b755ce744cdd42bc2ad13210ff7f9e5a9456c3f401aea24c6908a2636e78bd5a63ab34d1b21517c8bc8ec3b208c6e41c7c37ecfd00cc6900ba878144a0d837c13faf60157ed992822286638f53da5ab06f6156324cfb41ab21071fcb937ddea75684b0e0e0e69a6b28584d6778f087562f4b9ee86f3b6c90b2ff034e5eac3dd2cbae0657e3488d9ec9b4fbbec603ffbff3c4f32c3773fdfc2e8212933d73bd7d17585a80dc95dc021a4e3eaac4ae7e667e00070dd9bc73396a05541c3deb75bf3fe0b087aedde6f6e3b799ddbda9b956ff0f00ec8b3fb1191065fb1ecd95dec19bcdf7c853f2a40b34fbfe2a19ec10c47f6760512ec777fd0c883ec0b582ec6c826cc9956fa2abb79e2703f5b342b3a58409ded5286e22aa38698c5eb67fda19ac9acd4c99674570903afcf1bc4ba33ab07e9e0f9409de9bb017d7b0a4c515305c9c303c5b0abfc0aeace5ea0d8f0fd490ee21d4f27a15b287c135ac50c57061285131bda6bff26ede739439dc7d5fbb34da6dc6688cb11b4946965e500e2408625d5e12169bf6f2a1013db2fd36d9b47e5b9bbaad78b4911d6f594e9c737f789f69c565ebb26546a3b43e5e58ded9ad8ee641935f96bd822cfaa8052e9d80966a4a9c098a0f2dde8217f5b78ce2f30f5937bd34e3043307c07111a589c5353fa4c9366888736dc028989d3a37c8ff808765311f79215e5826c4dccc28c7a07e9761e5e01440ed9326b01ef93aca1746fa9f22672606fb88259628140b03969c2a5d63e7bfcc23402325b9c8f90db38dd595f9cbba61ba986239bbdd6f2593cabdd7bcdc214b9957dedf8555578d5f7d76a64fa34b142ce797f66885525307c7295e636db234373f83bad1342bef2005b7ec46336b490b5c7780d702b29ad7c36769ac1fdc7f546da90cf89f24342ba13f4f5b5fde7f9bb17a2345de8b35f71864df71199440fbd61881ffad29f724eed9f69b11612c5d874ec380d2db36852f323fc6217af901e5da7a6221f6b6f4afe109330b45f6a0dfde85655364cab4bebe5f8ea17c71a2fcbcbc2fd8a98884280397f56edb866f9c433b2cdaaef44616d9e2e60eb4562478a6646ea07aa62e1e7e9e6fbf9d877a58987bcc5ce4b08a5626aa27d1440cfcde40bf73e5bec45996ab2b49ee2671e533a51f43865ed8ce4e5acc5d4dbe5f6def946163d5ca80ea13321d28eaa39849a5df1c9f3bd843fae2ea3f3cbf45f7cccb0f9aec1cc805f98bd107348bdcd4df6fa8101888b40509cc9f8538df9bb1ba9c967371944e56d5874205794028ba1b058580bc9d643a65883d6f8bb66a9d3f495d5f0d536e9a09880785b36394aaf282984d2d507299594c400bb342d1549b3bfbe3fc5d4f3bf1ba0a9f052fad2b154b2b70d8b2301abe560d401b49a73be841e01c3862893d7f331a591a3c1a3102c06c160bcc4b28012491c9fce12040cd1350819a84b987a2d4fc1a7545a471d851734f6a9d3efb3c98691aa8f9cfca66fd6f8d32593ed8bfe38de4df0bd67814bd4f5265fcaaf304fd5fe293d26293310ecc435a7b4f5d5856b48cebd76f1cb893b4702d8c9d6afe817417fe3d2b912b6f55fe16da06ef8af4820ca663c5407ff26138aef71f5ea224e934eff457ff15039562d912956792de629950f34056491dd55151e1bae121935ffee29a8bc111fae40bd5142bc4b8db2e8d12d7cb9685d640c6e45fa6756233e66bf36598cbea763c6981593f929f1139873e1f8cdcb012bbd3e5aff727ff5924b6bfe1af0299be572410fce75bbbfda569a000000000636526fbc3988156e3128b73af7c15071a426bc334c46f17da1b2ddb5e0e7ec81bd6d15375ba3eb7d513c33bef3fa657b2cbd571605332aa1ea19c26edef6faa4583d4e19624f3977e431c865b7c7875d1797f2a0e852f1c079455516e58d2307449f91e0870957432389a9a9f2d93945ff82210a832cb897d20e3d79cc5a6e9c4ea225bfa8a9045b19fa9deeb6fc21ebfb1d51d6cbc79f44e4f332315653d33bb22d8e937ea64b6edaac0e60e53ae46de7e39271b61a4f453b188e98532d466f1178446ad5825a7a21b6b4c58ce976194712ce3ac659f01333b1af7cf39773b928755f1355e485f3f967266dad1477947852d673305cdae415f9df6e79cca071e3f14c274364de4f96c311f0a97088c4ac27279695ea1095d69c6ee07596f97a0676fbb35cd1dbc57e6cf70acb2a9bac3fed32ea3b1acf9c17519f3e81a54f18223a388a17b1189b85ebce5cd29d8b18b61bc376ad4a326b1d75d58a08d7e39e1e7844c75368654aed1913672af26e581f6e37dd78f126a714caddf3f1105e408af62c04fa36f64f397c8dda6662ba358521d7c99d34a73d3967eb4b46484806e1216d1c860c0765430e30585a9974b00fe7c54389543ba6a799697552b0b41fa4eacc5c4866026696bafc514165e44bcf02d5e4c9de21a29afc2ce12994e89c3cc2023030b07c4ea682a0e4fce4f7ad0f56067879df126c1d8e765a7301b644e99d70e211526600e40413782a8aec4eb291528ee38ee2813867f09eba11ddfcc11a6d120dec1d5efc95d2b87d243e6d409e9c8fbc86d2ef6df25effc8963bb7696e48225cab0051d7834fba2eab31349a733a070fd360f2e21ffb6ae10163b16b15d7fcfec2a86393d4a0dd4b595997b4daab910e54d616fdcadf044f07741bc524a59371547e77e35879d1fe668b8afde20c213814e8d0690bdb6cd161071262c33b4a08c6ac8b7ef1cda312dd955f9ee3c2557f87dc80ba982515e58d90b94f91c84c4ce0975f2041336c5e9c06a391d5f54f88f0fde464d434b8abaff232fdf4b28e9dde394bad38dad3ed4b80e3b98ea8de07c0056131d8c3f748c020a9da9de9852eb53dfd181bef6b95576f9e387c0f270c60a7a119729c66a570f9fdb6f70c38113df91447ed3d8d88202b151f9f45336c0dff5100ac02c65fe0dd66d2afb1e274328acc56845ffc04302aa41a3fe1887f279f265ba6f1b976cf2d2535d6aa7d6bde2307c6041094eb79c61fe882ac6de71f588efff2c5266444d3500eb09e0872ea2a5473f4c59a3eeaa3a408f80ed0ae40f095c97286fb774d7ebdb5366c23d250a06ecc3768bdfa5c79bd3e2649e8843b31ca01547bd67b066bb3c7e3ab25bdd4d2c999de0f400843d5a027876f314d7387bc1a0e45347cbcdc8199bddaef867f403750f", @typed={0x8, 0xf3, 0x0, 0x0, @fd}, @typed={0xc, 0xab, 0x0, 0x0, @u64=0x2}, @typed={0x14, 0xbd, 0x0, 0x0, @ipv6=@private0}]}]}]}, 0x11a8}, 0x1, 0x0, 0x0, 0x90}, 0x0)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000000), r0)
recvmmsg$auto(r0, &(0x7f0000000140)={{0x0, 0x4, &(0x7f0000000080)={0x0, 0x803}, 0x5, 0x0, 0x2, 0x8}, 0x800}, 0x10a, 0x8, 0x0)

6.417532675s ago: executing program 2 (id=1531):
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC2\x00', 0x0, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f00000001c0)=0x6) (async)
unshare$auto(0x40000080)
unshare$auto(0x9) (async)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) (async)
socket(0x1e, 0x1, 0x0) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r1 = socket(0xa, 0x1, 0x84) (async)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x7, 0x0, 0x5, 0x20003, 0x2000000000210006, 0x0, 0x7, 0x5, 0x2, 0x7, 0xaf, 0x9, 0xfffffffffffffffe, 0x3, 0x105, 0x7, 0x0, 0x0, 0x2}, 0x1fe, 0x81) (async)
sendmsg$auto_NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000001f40)={0x0, 0x0, &(0x7f0000001f00)={&(0x7f0000000180)=ANY=[@ANYBLOB='*', @ANYRES16, @ANYBLOB="010029bd"], 0x28}, 0x1, 0x0, 0x0, 0x4000}, 0x0) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000"], 0x1ac}}, 0x4004) (async)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0x4)
r2 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) (async)
pipe$auto(0x0) (async)
setsockopt$auto(0x3, 0x1, 0x10, 0x0, 0x9) (async)
recvmmsg$auto(r1, &(0x7f0000000100)={{0x0, 0xbb, 0x0, 0x8, 0x0, 0x81, 0x9}, 0xfffffffb}, 0x5, 0x6586, 0x0)
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0) (async)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
socket(0x11, 0xfffffffffffffffe, 0xb)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000380)='/dev/midi2\x00', 0x80102, 0x0)
write$auto(r0, &(0x7f0000000340)='/dev/vhost-vsock\x00', 0x7)
mmap$auto(0x0, 0x2000d, 0xdf, 0xeb1, 0x401, 0x8000) (async)
mmap$auto(0x0, 0x400005, 0xdb, 0x16, 0x2, 0x8000) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
madvise$auto(0x0, 0xffffffffffff0005, 0x17) (async)
setgroups$auto(0xe32, 0x0) (async)
madvise$auto(0x0, 0x200007, 0x19) (async)
mmap$auto(0xa, 0x400008, 0xdf, 0x111, 0x2, 0x8004)

5.863070053s ago: executing program 4 (id=1532):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$auto(0x1ff, r0, 0x4, 0x6)
ptrace$auto(0xf, r0, 0xfffffffffffffffe, 0x8000000000000000)
r1 = clone$auto(0xfff, 0xa5d, &(0x7f0000000000)=0x1, &(0x7f0000000040)=0x9, 0xffffffff)
r2 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
msgctl$auto_IPC_RMID(0x37, 0x0, &(0x7f0000000100)={{0x2, <r3=>0x0, 0x0, 0x100, 0x5, 0x8, 0xffff}, &(0x7f0000000000)=0x1, &(0x7f0000000040)=0x1, 0x7, 0x6, 0x2, 0xdff, 0x15f, 0x6, 0xd, 0x7, @raw=0x1, @inferred=0xffffffffffffffff})
r4 = getuid()
newfstatat$auto(r2, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)={0x4795, 0x40, 0x54dd, 0x2, 0xffffffffffffffff, <r5=>0xffffffffffffffff, 0x0, 0xfffffffffffffff9, 0x5, 0xffffffffffffff2d, 0x8, 0x10001, 0x54e, 0x4, 0x1, 0xc, 0x1}, 0x8)
keyctl$auto(0x8, r3, r4, r5, 0x2)
rt_sigqueueinfo$auto(r0, 0xfffffff9, &(0x7f0000000080)={@siginfo_0_0={0x8, 0x0, 0x6, @_rt={r1, r4, @sival_int=0xaf6000}}})
r6 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r7, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000400)={0x40, r6, 0x1b, 0x70bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0x4}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f17790485908286dd"}, @OVS_PACKET_ATTR_KEY={0xa, 0x2, 0x0, 0x1, [@generic="00b487080d9c"]}, @OVS_PACKET_ATTR_PROBE={0x4}]}, 0x40}, 0x1, 0x0, 0x0, 0x44000884}, 0xc880)

5.738394288s ago: executing program 2 (id=1533):
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
close_range$auto(0x2, 0x8, 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x101800, 0x100)
read$auto_nsim_dev_trap_fa_cookie_fops_dev(r0, 0x0, 0x0)
setsockopt$auto_SO_RCVBUF(r0, 0x9, 0x8, &(0x7f0000000000)='/sys/kernel/debug/tracing/options/test_nop_refuse\x00', 0x2)
r1 = openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/kvm/pf_guest\x00', 0x800, 0x0)
read$auto(r1, 0x0, 0x4)
openat$auto_trace_options_fops_trace(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/debug/tracing/options/test_nop_refuse\x00', 0x101, 0x0)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{0x0, 0x6, 0x0, 0x9, 0x0, 0x1, 0xb}, 0x80000c}, 0x5, 0x2000fdff)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8)

5.59218138s ago: executing program 2 (id=1535):
alarm$auto(0x2)
socket(0xa, 0x1, 0x100)
ioperm$auto(0x7, 0x5ad2, 0x8)
modify_ldt$auto(0x1, 0x0, 0x10)
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x8000, 0x0)
ioctl$auto_SNDCTL_DSP_SPEED(r1, 0xc0045002, 0x0)
read$auto(r1, 0x0, 0xcefbce6)
read$auto_nsim_dev_trap_fa_cookie_fops_dev(r1, &(0x7f0000000000)=""/156, 0x9c)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r2 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/exception_policy\x00', 0x40802, 0x0)
write$auto_tomoyo_operations_securityfs_if(r2, &(0x7f00000001c0)="0a1b9a3ce8040000cd1aec49ec53c2efa0149258607deb6e163bb15497886d8ea5c2574c58e9867ecec3371cadb848770dc8f745b2c76eedba12b9bdbcf3401910e7733aca465c9bd40a", 0x4a)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x60240, 0x0)
write$auto(0x3, 0x0, 0xfffffffffffffff7)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x8800)
openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
open(0x0, 0x261c2, 0x84)
read$auto(0x3, 0x0, 0x80)
close_range$auto(0x2, 0x8, 0x0)
ptrace$auto(0x4206, 0x1, 0x0, 0x200005)

5.567677324s ago: executing program 0 (id=1536):
mmap$auto(0x0, 0x9, 0xdf, 0xeb1, 0x1, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) (async)
r0 = openat$auto_proc_pid_smaps_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/smaps\x00', 0xc0000, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/cgroup.subtree_control\x00', 0x142, 0x0) (async)
readv$auto(0x3, &(0x7f00000002c0)={0x0, 0x8}, 0x8) (async, rerun: 64)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) (async, rerun: 64)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) (async, rerun: 32)
close_range$auto(0x0, 0xfffffffffffff000, 0x2) (rerun: 32)
open(&(0x7f0000000040)='.\x00', 0x0, 0x161) (async)
getdents64$auto(0x0, 0x0, 0x18) (async)
r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/time_for_children\x00')
mmap$auto(0x0, 0x400008, 0xdb, 0x9b72, r1, 0x8000) (async, rerun: 32)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) (async, rerun: 32)
readahead$auto(r0, 0x4, 0x3) (async, rerun: 64)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/zram0/queue/write_zeroes_max_bytes\x00', 0x6400, 0x0) (async, rerun: 64)
socketpair$auto(0x3, 0x5, 0x7, 0x0)

4.621299084s ago: executing program 2 (id=1540):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0)
mremap$auto(0x0, 0xffffffffffffffff, 0x3fd6, 0x3, 0x7fffffffb000)
r1 = prctl$auto(0x23, 0x7, 0x7fffffffefff, 0x0, 0x0)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/icmp\x00', 0xc0880, 0x0)
read$auto(r2, &(0x7f0000000040)='/proc/self/net/icmp\x00', 0x80000001)
mmap$auto(0x7fff, 0x400008, 0xda, 0x9b72, 0x2, 0x480000000008001)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
getrandom$auto(0x0, 0x6000000, 0x3)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
mmap$auto(0x0, 0x8001, 0xdf, 0x10, 0xffffffffffffffff, 0x0)
r3 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, 0x0, 0x181800, 0x0)
read$auto(r3, 0x0, 0x39b8)
write$auto(0x3, 0x0, 0xfffffdef)
fstat$auto(0xffffffffffffffff, 0x0)
read$auto_clk_dump_fops_(0xffffffffffffffff, &(0x7f0000000040)=""/59, 0x3b)
io_uring_setup$auto(0x6, 0x0)
ioctl$auto_BLKRRPART(r0, 0x125f, 0x0)
sendmsg$auto_NL80211_CMD_SET_MESH_CONFIG(0xffffffffffffffff, 0x0, 0x24008804)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x401bf, 0x734f, 0x36, 0x67f, 0x1ffde, 0x7, 0x3, 0x20000002, 0xd, 0x3, 0x1, 0x2091, 0xb4, 0x9, 0x6, 0x6, 0x80, 0x4, 0x1cd7, 0x1000, 0x2000, 0x203, 0x0, 0x84, 0x4, 0x0, 0x0, 0x0, 0x0, [0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0x0, 0x0, 0x2]}, 0x1fe, 0xd)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, 0x0, 0x8040)
r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), r1)
sendmsg$auto_NL80211_CMD_VENDOR(r1, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000100)={&(0x7f0000000380)=ANY=[@ANYBLOB="14000000", @ANYRES16=r4, @ANYBLOB="0004ff7f0000ffdbdf2567000000"], 0x14}, 0x1, 0x0, 0x0, 0x4000058}, 0x8001)
mmap$auto(0x4, 0x10000, 0x4000000000e3, 0x11, 0xffffffffffffffff, 0x10008001)
keyctl$auto(0x200000000000020, 0xffffffffffffffff, 0x5, 0x5, 0x8)
keyctl$auto(0x1d, 0xffffffffffffffff, 0x5, 0xffffffffffffffff, 0x8)
open(0x0, 0x591002, 0x408)

3.903901807s ago: executing program 1 (id=1542):
r0 = socket(0x2, 0x1, 0x106)
r1 = socket(0x18, 0x5, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x6, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
connect$auto(0x3, &(0x7f00000018c0)=@in={0x2, 0x300, @loopback=0xac14140a}, 0x55)
setsockopt$auto(r0, 0x1, 0x9, 0x0, 0xeb66)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000180), 0xffffffffffffffff)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003140), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_COALESCE_GET(0xffffffffffffffff, &(0x7f0000003200)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000440)=ANY=[@ANYRESHEX=r1, @ANYBLOB="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", @ANYRESOCT=r0], 0x14}}, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
r4 = open(&(0x7f0000000800)='./file0\x00', 0xe4201, 0x17c)
fcntl$auto(r4, 0x400, 0x1)
unshare$auto(0x40000080)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/ip6_mr_vif\x00', 0x0, 0x0)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='/sys/kernel/mm/transparent_hugepage/shrink_underused\x00', 0x0, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f0000000140)=""/1, 0x1)
setsockopt$auto(0x400000000000003, 0x20000029, 0x21b, 0x0, 0x3)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd3/queue/iosched/write_expire\x00', 0x20681, 0x0)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x30)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r6)
sendmsg$auto_NL80211_CMD_GET_WIPHY(r6, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000140)=ANY=[@ANYBLOB="18000000", @ANYBLOB="810b25bd7080fbdbdf25010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x20000000}, 0xc004)
recvmmsg$auto(r6, &(0x7f0000000180)={{0x0, 0x5, 0x0, 0x0, 0x0, 0x6, 0x5}, 0x20000804}, 0x210a, 0x6, 0x0)
sendmsg$auto_OVS_CT_LIMIT_CMD_GET(r2, &(0x7f0000000140)={0x0, 0x82, &(0x7f0000000000)={&(0x7f0000000bc0)=ANY=[@ANYBLOB=' 6\x00\x00', @ANYRES16=r3, @ANYBLOB="010025bd7000fcdbdf250300000004000180083601"], 0x3620}, 0x1, 0x0, 0x0, 0x20000055}, 0x200400d0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x1ad240, 0x1b1)
socket(0xa, 0x3, 0x3b)

3.109456902s ago: executing program 2 (id=1543):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
r0 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x3a}}, 0x6e)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x9, 0x20000000)
r1 = io_uring_setup$auto(0x1, 0x0)
r2 = socket(0x1f, 0x2, 0x200000)
sendmsg$auto_NL80211_CMD_PEER_MEASUREMENT_START(r2, 0x0, 0x24048048)
mmap$auto(0xffffffffffffffff, 0x0, 0xe2, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socketpair$auto(0x1, 0x0, 0xfffffffc, 0x0)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptyy9\x00', 0xc7f16bff2a10ba01, 0x0)
r4 = openat$auto_proc_tid_children_operations_internal(0xffffffffffffff9c, &(0x7f0000000080), 0x41180, 0x0)
exit$auto(0x2)
read$auto(r4, 0x0, 0x58b22256)
ioctl$auto_TIOCSETD2(r3, 0x5423, 0x0)
r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
ioctl$auto_TIOCSETD2(r5, 0x5423, 0x0)
ioctl$auto_TIOCVHANGUP2(r3, 0x5437, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x7)
write$auto(0x3, 0x0, 0xfffffdef)
unshare$auto(0x40000080)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x3b87, 0xa)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
openat$dir(0xffffffffffffff9c, 0x0, 0x381000, 0x100)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/system/node/node1/compact\x00', 0xc2481, 0x0)
writev$auto(r6, &(0x7f0000000080)={&(0x7f0000000040), 0x1000}, 0x3)
ioctl$auto_RNDADDENTROPY2(r1, 0x40085203, &(0x7f0000000080)=[0x3, 0x4010])
close_range$auto(0x2, 0x8, 0x0)

3.037661649s ago: executing program 1 (id=1544):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
listmount$auto(&(0x7f0000000100)={0x1f, @inferred, 0x9, 0xfffffffffffffff7, 0x2}, 0x0, 0xf4240, 0x1)
socket(0xa, 0x2, 0x0)
io_uring_setup$auto(0x6, 0x0)
setsockopt$auto(0x3, 0x29, 0x40, 0x0, 0x10001)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x60800, 0x0)
r0 = openat$auto_hwsim_fops_ps_(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/ieee80211/phy18/hwsim/ps\x00', 0x828182, 0x0)
close_range$auto(0xffffffffffffffff, r0, 0x9bc)
unshare$auto(0x3)
openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000100), 0x105240, 0x0)
r1 = socket(0x11, 0x80003, 0x300)
sendfile$auto(0x1, r1, 0x0, 0x8fb5)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000040), r2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_SMC_NETLINK_DISABLE_SEID(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="14000000", @ANYRES16=r3, @ANYBLOB="013bbc40a8e71953412f0d"], 0x14}, 0x1, 0x0, 0x0, 0x880}, 0x810)
read$auto(0x3, 0x0, 0x18)
dup2$auto(0x0, 0x3)
fcntl$auto(0x3, 0x4, 0xa553)
ioctl$auto(0x3, 0x541b, 0x10000000000402)
open(0x0, 0x2002, 0x1)
r4 = prctl$auto(0x23, 0x3, 0x2009, 0x0, 0x0)
socket(0xa, 0x1, 0x84)
r5 = socket(0x2a, 0x2, 0xdd2a)
bpf$auto(0x0, &(0x7f00000002c0)=@bpf_attr_4={0x16, r4, 0x4, r5}, 0x11)
socket(0xa, 0x4, 0x3)
mmap$auto(0x0, 0x202000d, 0x8000000002, 0xeb1, 0xffffffffffffffff, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000080), 0xffffffffffffffff)

2.273926773s ago: executing program 0 (id=1545):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000000), r0)
recvmmsg$auto(r0, &(0x7f0000000140)={{0x0, 0x4, &(0x7f0000000080)={0x0, 0x803}, 0x5, 0x0, 0x2, 0x8}, 0x800}, 0x10a, 0x8, 0x0)

2.273001728s ago: executing program 4 (id=1546):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
r0 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
userfaultfd$auto(0x1)
rt_tgsigqueueinfo$auto(0x0, 0x0, 0x21, 0x0)
sendmsg$auto_OVS_FLOW_CMD_GET(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000000), 0xc, &(0x7f0000000280)={&(0x7f0000000300)={0x34, 0x0, 0x100, 0x70bd27, 0x25dfdbff, {}, [@OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_MASK={0x4}, @OVS_FLOW_ATTR_UFID_FLAGS={0x8, 0xa, 0x8}, @OVS_FLOW_ATTR_UFID={0x5, 0x9, 0x43}, @OVS_FLOW_ATTR_CLEAR={0x4}, @OVS_FLOW_ATTR_PROBE={0x4}]}, 0x34}}, 0x1)
r1 = pidfd_open$auto(0x0, 0xffffff80)
fsopen$auto(&(0x7f0000000000)='nlctrl\x00', 0x3)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
clone$auto(0x21002, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x9)
r2 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000010c0), 0xffffffffffffffff)
madvise$auto(0x6, 0x1, 0xb)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000001180)={&(0x7f0000001100)={0x14, r2, 0x301, 0x70bd25, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0xc040810)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r5=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000040)={0x24, r3, 0x1, 0x70bd2a, 0x25dfdbfd, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r5}, @NL80211_ATTR_WIPHY_COVERAGE_CLASS={0x5, 0x59, 0xfd}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000023}, 0x4008098)
bpf$auto_BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000100)=@bpf_attr_5={@target_ifindex=r5, r0, 0x5, 0x4, r0, @relative_fd=r1, 0xfffffffffffffffa}, 0x5)
sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x400c810}, 0x20000041)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
fstat$auto(0xffffffffffffffff, &(0x7f0000000000)={0x5, 0x9, 0x0, 0x103, 0xee01, 0x0, 0x0, 0xffffffffffffff91, 0x0, 0x2, 0xec, 0x4, 0x2, 0x1, 0x4, 0xfffffffffffffff8})

1.921758573s ago: executing program 1 (id=1547):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
semctl$auto(0x1ff, 0x2, 0x13, 0x1)
lsm_list_modules$auto(0x0, 0x0, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
fanotify_init$auto(0x65, 0x2)
dup2$auto(0x5, 0x4)
setsockopt$auto(0x3, 0x1, 0x4c, 0x0, 0x9)
recvmmsg$auto(0x3, 0x0, 0x6, 0x7bd6, 0x0)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
r0 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x2, 0xb}, 0x9}, 0x2, 0x20000000)
r1 = getpgrp(0xffffffffffffffff)
fcntl$auto_F_SETOWN(r0, 0x8, r1)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc0}, 0x1, 0x0, 0x0, 0x9}, 0x100007}, 0x31cd3c7c, 0xb1)

1.751267022s ago: executing program 1 (id=1548):
socket(0xa, 0x1, 0x100)
ioperm$auto(0x7, 0x5ad2, 0x8)
modify_ldt$auto(0x1, 0x0, 0x10)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40, 0x0)
r0 = eventfd2$auto(0x6af3, 0x800)
readv$auto(r0, &(0x7f0000000580)={0x0, 0x29e4}, 0xe8)
read$auto_fops_u8_(r0, &(0x7f0000001e40)=""/109, 0x6d)
pread64$auto(0xffffffffffffffff, 0x0, 0x7ff, 0x400)
socket(0x1e, 0x1, 0x0)
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0)
semget$auto(0x1, 0x1, 0xfffffff8)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000180)={[0x1f9, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x4, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0)
mmap$auto(0x0, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x8000000000008000)
r2 = socket(0xa, 0x5, 0x0)
getsockopt$auto(r2, 0x84, 0xb, 0x0, &(0x7f0000000080)=0x9c8)
write$auto(0x3, 0x0, 0xffd8)
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000)
newfstatat$auto(0xffffffffffffff9c, 0x0, 0x0, 0x1000)
socketcall$auto_SYS_GETSOCKOPT(0xf, &(0x7f0000000200))
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
mount$auto(0x0, &(0x7f0000001500)='./file0\x00', &(0x7f0000001540)='cifs\x00', 0x8002, 0x0)

1.750867519s ago: executing program 2 (id=1549):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyu3\x00', 0x1, 0x0)
ioctl$auto_TIOCSETD2(r1, 0x5423, &(0x7f0000000080)="f5c94556d7b994ee4c7d6b964e87cfce41d8b86d8574badcc9a0191d85605665e0fa950b247f4667f57ca338d45bd2f88e5dd3dfe6600774e6503521259e0c7c3ddd5099d8b948915c1d3f49efad80b766")
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0)
unshare$auto(0x40000080)
close_range$auto(0x2, r2, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$auto_TIOCSTI2(r1, 0x5412, &(0x7f0000000240)="e25a43a65c6cca6c9411c2746b41e9359a2d8bb15d8a3e5581af2300e0e4d52dab848a5e99dd3fb47ef1848ca5105bfd0c8db60ef1fef0e9bebc947cd9f6f1ca5ee8ebf43d91905392610ada852e3312f6cb3e874aa0eb47f59245386744ef1087c9dd1ca2d1f1cd3c844c1199b1dbaccbc09f1638f2f27352ee732b3daa6560b50e0a797394f17d0530dd316d542e58")
sendmsg$auto_ETHTOOL_MSG_EEE_GET(r3, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={0x0, 0x2c}, 0x1, 0x0, 0x0, 0x804}, 0x400c850)
write$auto(0x3, 0x0, 0xfdef)
mmap$auto(0x0, 0x580f, 0xffb, 0x8000000008011, 0x3, 0x0)
madvise$auto(0x0, 0x2003f0, 0x15)
getresgid$auto(0x0, &(0x7f0000000a40)=0x2, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0xe0002, 0x0)
write$auto(r1, &(0x7f0000000100)='/sys/kernel/security/tomoyo/domain_policy\x00', 0xb8)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$auto(r4, 0x1, 0x10, &(0x7f0000000040)='\x00\x15\x8d\xca`\xbcgY\xd2w\xf6\xaedN\xfb\xc2_\xf54\xb4z\n*\xaaL\'\xab>q\x9e\xdd`\x84_\r\xc2\x17\xb1\xaf\xd2\f\xfd[Iy\xbb*$\xec\xca\x8b\xde\xdcV@\x04+\x00'/82, 0xba)
close_range$auto(0x2, 0xa, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/vhci_hcd.0/usbip_debug\x00', 0x8002, 0x0)
r5 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0)
read$auto(r5, 0x0, 0xb4d3)
write$auto(r0, 0x0, 0x7ff)
write$auto(0x3, 0x0, 0xffd8)
syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000001a40), r0)

414.422869ms ago: executing program 1 (id=1550):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r0 = socket(0xa, 0x801, 0x84)
close_range$auto(0x2, 0x8, 0x0)
r1 = socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x1, 0x10, 0x0, 0x9)
sendmsg$auto_NL80211_CMD_GET_REG(r0, 0x0, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x6)
clock_getres$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
r3 = ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0)
write$auto_snd_seq_f_ops_seq_clientmgr(r4, &(0x7f00000000c0)="632d1bfe595046ab5c98199adf260600de16baef6176e669a216eae1836674fdd800000000000000e0ffffff003fffffff00000000000000", 0x2a)
ioctl$auto(r4, 0x5, 0x38)
r5 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000040), r1)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r3, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0xc80}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)={0xfc, r5, 0x100, 0x70bd27, 0x25dfdbfb, {}, [@L2TP_ATTR_MRU={0x6, 0x1d, 0xef}, @L2TP_ATTR_STATS={0x8, 0x1e, 0x0, 0x1, [@typed={0x4, 0x46}]}, @L2TP_ATTR_L2SPEC_LEN={0x5, 0x6, 0x6e}, @L2TP_ATTR_PEER_COOKIE={0xc}, @L2TP_ATTR_PEER_SESSION_ID={0x8, 0xc, 0x100}, @L2TP_ATTR_DEBUG={0x8, 0x11, 0x6}, @L2TP_ATTR_PEER_COOKIE={0xc, 0x10, 0x10000}, @L2TP_ATTR_L2SPEC_LEN={0x5, 0x6, 0x2}, @L2TP_ATTR_STATS={0x9e, 0x1e, 0x0, 0x1, [@typed={0x4, 0x2d}, @generic="22b637e78fe2df6166e4c7739b7b8dafcbff9d78270870e0182f5d0eac74f2609ef17e062c8b386262d1cd4e0456b52faecc1af9f941fe895502386523fff14a6b0a4886d6a905e39ec49af1cbdfdf06567d9ddcf98ef6dd6f2c98ac9d59d0dbe547e70622eb64a45f11f988e44c061c8fb829df54a337d728fda4e871e3f70d1432e1dbee2f43fd5fd99e17f21f61a0b7b6764084e2"]}]}, 0xfc}, 0x1, 0x0, 0x0, 0x20000001}, 0x80008)

91.636241ms ago: executing program 4 (id=1551):
mmap$auto(0xf729, 0x20009, 0x4000010000df, 0xeb1, 0x401, 0x8400) (async, rerun: 32)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vbi15\x00', 0x802, 0x0) (async, rerun: 32)
mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x8000) (async)
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) (async)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x2200, 0x0)
ioctl$auto_TCFLSH2(r0, 0x540b, 0xfffffffffffffffd)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
ioctl$auto_TCFLSH2(r1, 0x5453, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) (async, rerun: 64)
sendmsg$auto_NLBL_UNLABEL_C_STATICADD(r3, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10010}, 0xc, &(0x7f00000000c0)={&(0x7f0000001500)=ANY=[@ANYBLOB="495f3237fdb3b8e09c9a66284652800d556977c13f59a5ea3359750964ebe9e39e905c886925cb2d70881f7c46d2413c5cebbcd88eebbb90ee7a34f0672b56552c9f24bb4b8dbde9f4f1bc22799220fc58a17ea0deb29755c0642f642134013188424a62cd16b5b4f653c02cd066828622f8090434cdc8bbaed908000000fe69c4f291121189527a3f437df00f288acd5233d74aceb2fdbdf0476cc5682fee6ed95513dcb8ef7249c3a6c00766324549e356f51b9a0488db8f639cf76f590f9e3bdc5618d9317d5d573908e65baef2285104013fc85abaff0fe82f15bbd2496d52ae729a6564cd05528df7b5dd", @ANYRES16], 0x1094}, 0x1, 0x0, 0x0, 0x80}, 0x40040) (async, rerun: 64)
r4 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) (async)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
ioctl$auto_posix_clock_file_operations_posix_clock(0xffffffffffffffff, 0xc0603d06, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffdfffffff, 0x3, 0x62, 0x84000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) (async)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) (async)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000440)={[0x1ff, 0x7, 0xd, 0x1, 0x1f, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000027, 0x0, 0x6d40, 0x1, 0x1, 0x6]}, 0x0) (async, rerun: 32)
ioctl$auto(r3, 0x57, r2) (async, rerun: 32)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32)
socket(0x28, 0x801, 0x0) (async, rerun: 32)
connect$auto(0x3, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2711}, 0x51) (async)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/dummy_hcd.4/usb5/authorized_default\x00', 0x141000, 0x0) (async)
r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000240), r3)
sendmsg$auto_NL80211_CMD_SET_MCAST_RATE(r4, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x24, r6, 0x100, 0x70bd27, 0x25dfdbff, {}, [@NL80211_ATTR_TXQ_QUANTUM={0x8, 0x10c, 0x2}, @NL80211_ATTR_SCHED_SCAN_DELAY={0x8, 0xdc, 0x4}]}, 0x24}, 0x1, 0x0, 0x0, 0xc080}, 0x45) (async)
read$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f0000003e80)=""/238, 0xee) (async)
getpid() (async, rerun: 64)
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/psaux\x00', 0x2, 0x0) (rerun: 64)

0s ago: executing program 1 (id=1552):
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x22d02, 0x0)
io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7ffffffc, 0x8, 0x3000, 0x6, 0x7, 0x400a, <r0=>0xffffffffffffffff, [], {0x6, 0x6, 0x8c48, 0x29b, 0x3, 0x80, 0x104, 0x6, 0x20000000003}, {0x100, 0x1, 0x101, 0x85, 0x2, 0x1a7b870a, 0x76c5, 0x8, 0x100000000}})
r1 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
write$auto_console_fops_tty_io(r1, &(0x7f0000000000)="1f91f2c388274610e18d5fc5e5bfd9800e9b4d", 0x13)
syz_genetlink_get_family_id$auto_macsec(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r2 = openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000d00), 0x60100, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/pm_trace_dev_match\x00', 0x20080, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000280)=""/175, 0xaf)
listmount$auto(0x0, &(0x7f0000000140)=0x10000, 0xf, 0x5)
read$auto_vhci_fops_hci_vhci(r2, &(0x7f0000000d40)=""/16, 0x10)
mmap$auto(0x0, 0x8000000000020006, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x8000)
unshare$auto(0x40000080)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
fsconfig$auto_SHMEM_HUGE_WITHIN_SIZE(r0, 0xffffffff, &(0x7f0000000040)='\x00', &(0x7f0000000100)="3d70aa42ea72d62d7d2fe39f29603dff8f97c1b1b50e7e992be3959f9d7ee99631dcfa2436c0c16d6b7ce4ee4ec8cf2014a1b7042667e1556a1e592d73cb9181caa36be823fa68b77e63ca01d8a165e47bc429172f0e53852fb397d6dcaa0527abb4ca74db06a015a927aef31bc4804bb0595644acb2b83cbe1a201edd1befdc2cd21c360f43fbfbde7672c5485582b3b5e1f57505c660d153201f663f086f8d37a45d457285063c7ab32e0a0ccec8488beacb7556197bb94b0d63ae87ff5c7af050968766e3ba3ff8b53b44c0add5e509588a9269cf36fb81cdd73a47cd77", 0x2)
execve$auto(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r4 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/swradio12\x00', 0x0, 0x0)
poll$auto(&(0x7f0000000480)={r4, 0xffff, 0x29}, 0x3, 0x8)
unshare$auto(0x40000080)
openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000000), 0x8080, 0x0)
mmap$auto(0xfffffffffffffffc, 0x40000b, 0xdf, 0x9b72, 0x2, 0x8000)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/mm/ksm/ksm_zero_pages\x00', 0x80000, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f0000000000)=""/45, 0x2d)
r6 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dri/card1\x00', 0x101002, 0x0)
ioctl$auto(r6, 0x9000643a, 0xc35)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/tty/ttyc7/dev\x00', 0x4000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_FLOW_CMD_GET(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES64=0x0, @ANYBLOB="01002cbd7000fbdbdf2503000000040008000c000180080003"], 0x24}, 0x1, 0x0, 0x0, 0x40010}, 0x800)

kernel console output (not intermixed with test programs):

		
	
	



	
		

	
		

	


	
	

		
	
		
	
	



			








	




	








	











	






	

	

	







	
	
	










	
	






	





	





	

	










	

	
	
	
	

	
		





	

	









		









	

	









		




	

	
		
	

	
		
	
	
	

	
		


		
	

	
		
	

	
				
	
	



	
		
		



	
	

	
				
	
	



	
		

syzkaller
syzkaller login: [  294.434054][ T9019] Invalid ELF header magic: != ELF
[  294.736409][ T9027] binder: 9025:9027 ioctl c018620c 200000001a40 returned -22
[  294.807637][ T9032] mkiss: ax0: crc mode is auto.
[  296.319308][ T9058] FAULT_INJECTION: forcing a failure.
[  296.319308][ T9058] name failslab, interval 1, probability 0, space 0, times 0
[  296.363924][ T9058] CPU: 1 UID: 0 PID: 9058 Comm: syz.0.725 Not tainted 6.15.0-rc7-syzkaller #0 PREEMPT(full) 
[  296.363971][ T9058] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  296.363990][ T9058] Call Trace:
[  296.364001][ T9058]  <TASK>
[  296.364013][ T9058]  dump_stack_lvl+0x16c/0x1f0
[  296.364069][ T9058]  should_fail_ex+0x512/0x640
[  296.364118][ T9058]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  296.364165][ T9058]  should_failslab+0xc2/0x120
[  296.364207][ T9058]  __kmalloc_cache_noprof+0x6a/0x3e0
[  296.364242][ T9058]  ? snd_pcm_oss_change_params_locked+0x247/0x3b40
[  296.364297][ T9058]  snd_pcm_oss_change_params_locked+0x247/0x3b40
[  296.364341][ T9058]  ? __pfx___might_resched+0x10/0x10
[  296.364370][ T9058]  ? rcu_is_watching+0x12/0xc0
[  296.364393][ T9058]  ? trace_contention_end+0xdd/0x130
[  296.364428][ T9058]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  296.364469][ T9058]  ? snd_pcm_oss_read+0x379/0x760
[  296.364526][ T9058]  snd_pcm_oss_make_ready_locked+0xb7/0x130
[  296.364567][ T9058]  snd_pcm_oss_read+0x39b/0x760
[  296.364606][ T9058]  ? security_file_permission+0x71/0x210
[  296.364642][ T9058]  ? __pfx_snd_pcm_oss_read+0x10/0x10
[  296.364683][ T9058]  vfs_read+0x1e1/0xc70
[  296.364712][ T9058]  ? __pfx_vfs_read+0x10/0x10
[  296.364733][ T9058]  ? find_held_lock+0x2b/0x80
[  296.364756][ T9058]  ? __fget_files+0x204/0x3c0
[  296.364785][ T9058]  ? __fget_files+0x20e/0x3c0
[  296.364815][ T9058]  ksys_read+0x12a/0x240
[  296.364838][ T9058]  ? __pfx_ksys_read+0x10/0x10
[  296.364879][ T9058]  ? rcu_is_watching+0x12/0xc0
[  296.364909][ T9058]  do_syscall_64+0xcd/0x230
[  296.364948][ T9058]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  296.364972][ T9058] RIP: 0033:0x7f3eae78e969
[  296.364990][ T9058] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  296.365012][ T9058] RSP: 002b:00007f3eaf5bc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  296.365033][ T9058] RAX: ffffffffffffffda RBX: 00007f3eae9b6080 RCX: 00007f3eae78e969
[  296.365048][ T9058] RDX: 000000000cefbce6 RSI: 0000000000000000 RDI: 0000000000000009
[  296.365061][ T9058] RBP: 00007f3eae810ab1 R08: 0000000000000000 R09: 0000000000000000
[  296.365075][ T9058] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  296.365089][ T9058] R13: 0000000000000000 R14: 00007f3eae9b6080 R15: 00007ffeb620b588
[  296.365126][ T9058]  </TASK>
[  298.420183][ T9083] RDS: rds_bind could not find a transport for 7bc:c94c:4e37:70c4:7374:6174:7573:0, load rds_tcp or rds_rdma?
[  299.500593][ T5842] Bluetooth: hci0: unexpected subevent 0x01 length: 4 < 18
[  299.510099][   T30] audit: type=1800 audit(6042734080.766:14): pid=9109 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.738" name="dbroot" dev="configfs" ino=23651 res=0 errno=0
[  300.610150][ T9127] FAULT_INJECTION: forcing a failure.
[  300.610150][ T9127] name failslab, interval 1, probability 0, space 0, times 0
[  300.623245][ T9127] CPU: 0 UID: 0 PID: 9127 Comm: syz.2.742 Not tainted 6.15.0-rc7-syzkaller #0 PREEMPT(full) 
[  300.623273][ T9127] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  300.623286][ T9127] Call Trace:
[  300.623294][ T9127]  <TASK>
[  300.623302][ T9127]  dump_stack_lvl+0x16c/0x1f0
[  300.623343][ T9127]  should_fail_ex+0x512/0x640
[  300.623384][ T9127]  should_failslab+0xc2/0x120
[  300.623416][ T9127]  __kmalloc_cache_noprof+0x6a/0x3e0
[  300.623442][ T9127]  ? sctp_add_bind_addr+0xae/0x3f0
[  300.623481][ T9127]  sctp_add_bind_addr+0xae/0x3f0
[  300.623520][ T9127]  sctp_copy_local_addr_list+0x39d/0x5a0
[  300.623566][ T9127]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  300.623611][ T9127]  ? sctp_auth_asoc_copy_shkeys+0x2a5/0x360
[  300.623643][ T9127]  ? sctp_bind_addr_copy+0xe0/0x530
[  300.623678][ T9127]  sctp_bind_addr_copy+0xe0/0x530
[  300.623720][ T9127]  sctp_connect_new_asoc+0x1d7/0x790
[  300.623752][ T9127]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  300.623789][ T9127]  ? sctp_endpoint_lookup_assoc+0x15c/0x2a0
[  300.623823][ T9127]  __sctp_connect+0x3f3/0xc60
[  300.623856][ T9127]  ? do_raw_spin_lock+0x12c/0x2b0
[  300.623895][ T9127]  ? __pfx___sctp_connect+0x10/0x10
[  300.623925][ T9127]  ? __pfx_sctp_inet_connect+0x10/0x10
[  300.623955][ T9127]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  300.623992][ T9127]  ? __pfx_sctp_inet_connect+0x10/0x10
[  300.624019][ T9127]  sctp_inet_connect+0x15f/0x200
[  300.624050][ T9127]  __sys_connect_file+0x141/0x1a0
[  300.624079][ T9127]  __sys_connect+0x14d/0x170
[  300.624103][ T9127]  ? __pfx___sys_connect+0x10/0x10
[  300.624140][ T9127]  ? rcu_is_watching+0x12/0xc0
[  300.624168][ T9127]  __x64_sys_connect+0x72/0xb0
[  300.624190][ T9127]  ? lockdep_hardirqs_on+0x7c/0x110
[  300.624225][ T9127]  do_syscall_64+0xcd/0x230
[  300.624264][ T9127]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  300.624287][ T9127] RIP: 0033:0x7ff128f8e969
[  300.624305][ T9127] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  300.624327][ T9127] RSP: 002b:00007ff129d8f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  300.624348][ T9127] RAX: ffffffffffffffda RBX: 00007ff1291b6080 RCX: 00007ff128f8e969
[  300.624363][ T9127] RDX: 0000000000000055 RSI: 00002000000018c0 RDI: 0000000000000003
[  300.624377][ T9127] RBP: 00007ff129010ab1 R08: 0000000000000000 R09: 0000000000000000
[  300.624391][ T9127] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  300.624405][ T9127] R13: 0000000000000000 R14: 00007ff1291b6080 R15: 00007ffebf3f96b8
[  300.624434][ T9127]  </TASK>
[  300.877762][    C0] vkms_vblank_simulate: vblank timer overrun
[  301.189649][ T9125] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  301.196352][ T9125] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  301.238925][ T9125] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  301.268172][ T9125] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  301.299025][ T9125] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  301.305067][ T9125] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  301.387225][ T9125] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  301.433267][ T9125] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  303.205519][ T5842] Bluetooth: hci0: command 0x0406 tx timeout
[  303.285558][ T5842] Bluetooth: hci1: command 0x0c1a tx timeout
[  303.365753][ T5842] Bluetooth: hci2: command 0x0406 tx timeout
[  303.445689][ T5842] Bluetooth: hci3: command 0x0406 tx timeout
[  305.287412][ T5842] Bluetooth: hci0: command 0x0406 tx timeout
[  305.377200][ T5842] Bluetooth: hci1: command 0x0c1a tx timeout
[  305.459014][ T5842] Bluetooth: hci2: command 0x0406 tx timeout
[  305.525772][ T5842] Bluetooth: hci3: command 0x0406 tx timeout
[  306.357238][ T9213] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  310.306390][ T9276] FAULT_INJECTION: forcing a failure.
[  310.306390][ T9276] name failslab, interval 1, probability 0, space 0, times 0
[  310.354371][ T9276] CPU: 0 UID: 0 PID: 9276 Comm: syz.2.766 Not tainted 6.15.0-rc7-syzkaller #0 PREEMPT(full) 
[  310.354416][ T9276] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  310.354446][ T9276] Call Trace:
[  310.354457][ T9276]  <TASK>
[  310.354469][ T9276]  dump_stack_lvl+0x16c/0x1f0
[  310.354524][ T9276]  should_fail_ex+0x512/0x640
[  310.354572][ T9276]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  310.354609][ T9276]  should_failslab+0xc2/0x120
[  310.354650][ T9276]  __kmalloc_cache_noprof+0x6a/0x3e0
[  310.354683][ T9276]  ? snd_pcm_hw_param_near.constprop.0+0xbc/0x8e0
[  310.354743][ T9276]  snd_pcm_hw_param_near.constprop.0+0xbc/0x8e0
[  310.354800][ T9276]  ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10
[  310.354853][ T9276]  ? kfree+0x2b6/0x4d0
[  310.354880][ T9276]  ? snd_pcm_oss_change_params_locked+0x958/0x3b40
[  310.354938][ T9276]  snd_pcm_oss_change_params_locked+0x9cd/0x3b40
[  310.355017][ T9276]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  310.355104][ T9276]  snd_pcm_oss_make_ready_locked+0xb7/0x130
[  310.355160][ T9276]  snd_pcm_oss_read+0x39b/0x760
[  310.355212][ T9276]  ? security_file_permission+0x71/0x210
[  310.355261][ T9276]  ? __pfx_snd_pcm_oss_read+0x10/0x10
[  310.355314][ T9276]  vfs_read+0x1e1/0xc70
[  310.355354][ T9276]  ? __pfx_vfs_read+0x10/0x10
[  310.355387][ T9276]  ? find_held_lock+0x2b/0x80
[  310.355420][ T9276]  ? __fget_files+0x204/0x3c0
[  310.355454][ T9276]  ? __fget_files+0x20e/0x3c0
[  310.355492][ T9276]  ksys_read+0x12a/0x240
[  310.355520][ T9276]  ? __pfx_ksys_read+0x10/0x10
[  310.355548][ T9276]  ? rcu_is_watching+0x12/0xc0
[  310.355588][ T9276]  do_syscall_64+0xcd/0x230
[  310.355640][ T9276]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  310.355671][ T9276] RIP: 0033:0x7ff128f8e969
[  310.355697][ T9276] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  310.355727][ T9276] RSP: 002b:00007ff129db0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  310.355758][ T9276] RAX: ffffffffffffffda RBX: 00007ff1291b5fa0 RCX: 00007ff128f8e969
[  310.355778][ T9276] RDX: 000000000cefbce6 RSI: 0000000000000000 RDI: 0000000000000009
[  310.355797][ T9276] RBP: 00007ff129010ab1 R08: 0000000000000000 R09: 0000000000000000
[  310.355817][ T9276] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  310.355836][ T9276] R13: 0000000000000000 R14: 00007ff1291b5fa0 R15: 00007ffebf3f96b8
[  310.355878][ T9276]  </TASK>
[  310.594375][    C0] vkms_vblank_simulate: vblank timer overrun
[  312.251821][   T30] audit: type=1326 audit(6042734093.496:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9307 comm="syz.2.774" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7ff128f8e969 code=0x0
[  314.427779][ T9337] ubi0: detaching mtd0
[  314.657236][ T9337] ubi0: mtd0 is detached
[  314.781765][ T9342] FAULT_INJECTION: forcing a failure.
[  314.781765][ T9342] name failslab, interval 1, probability 0, space 0, times 0
[  314.794712][ T9342] CPU: 1 UID: 0 PID: 9342 Comm: syz.2.780 Not tainted 6.15.0-rc7-syzkaller #0 PREEMPT(full) 
[  314.794753][ T9342] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  314.794772][ T9342] Call Trace:
[  314.794783][ T9342]  <TASK>
[  314.794796][ T9342]  dump_stack_lvl+0x16c/0x1f0
[  314.794852][ T9342]  should_fail_ex+0x512/0x640
[  314.794900][ T9342]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  314.794940][ T9342]  should_failslab+0xc2/0x120
[  314.794982][ T9342]  __kmalloc_cache_noprof+0x6a/0x3e0
[  314.795015][ T9342]  ? snd_pcm_hw_param_first+0x30d/0x6f0
[  314.795063][ T9342]  ? snd_pcm_hw_param_near.constprop.0+0x72f/0x8e0
[  314.795113][ T9342]  ? snd_pcm_hw_param_near.constprop.0+0xbc/0x8e0
[  314.795171][ T9342]  snd_pcm_hw_param_near.constprop.0+0xbc/0x8e0
[  314.795233][ T9342]  ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10
[  314.795287][ T9342]  ? __asan_memset+0x23/0x50
[  314.795316][ T9342]  ? calc_src_frames.isra.0+0x187/0x1d0
[  314.795357][ T9342]  snd_pcm_oss_change_params_locked+0x1398/0x3b40
[  314.795444][ T9342]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  314.795532][ T9342]  snd_pcm_oss_make_ready_locked+0xb7/0x130
[  314.795588][ T9342]  snd_pcm_oss_read+0x39b/0x760
[  314.795638][ T9342]  ? security_file_permission+0x71/0x210
[  314.795689][ T9342]  ? __pfx_snd_pcm_oss_read+0x10/0x10
[  314.795745][ T9342]  vfs_read+0x1e1/0xc70
[  314.795788][ T9342]  ? __pfx_vfs_read+0x10/0x10
[  314.795817][ T9342]  ? find_held_lock+0x2b/0x80
[  314.795852][ T9342]  ? __fget_files+0x204/0x3c0
[  314.795890][ T9342]  ? __fget_files+0x20e/0x3c0
[  314.795933][ T9342]  ksys_read+0x12a/0x240
[  314.795966][ T9342]  ? __pfx_ksys_read+0x10/0x10
[  314.795995][ T9342]  ? rcu_is_watching+0x12/0xc0
[  314.796040][ T9342]  do_syscall_64+0xcd/0x230
[  314.796096][ T9342]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  314.796130][ T9342] RIP: 0033:0x7ff128f8e969
[  314.796157][ T9342] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  314.796189][ T9342] RSP: 002b:00007ff129db0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  314.796220][ T9342] RAX: ffffffffffffffda RBX: 00007ff1291b5fa0 RCX: 00007ff128f8e969
[  314.796242][ T9342] RDX: 000000000cefbce6 RSI: 0000000000000000 RDI: 0000000000000009
[  314.796261][ T9342] RBP: 00007ff129010ab1 R08: 0000000000000000 R09: 0000000000000000
[  314.796280][ T9342] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  314.796299][ T9342] R13: 0000000000000000 R14: 00007ff1291b5fa0 R15: 00007ffebf3f96b8
[  314.796343][ T9342]  </TASK>
[  315.165727][ T9336] ima: policy update failed
[  315.191328][   T30] audit: type=1802 audit(6042734096.446:16): pid=9336 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.778" res=0 errno=0
[  315.678652][ T9355] syz.1.782 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  315.752854][ T9357] FAULT_INJECTION: forcing a failure.
[  315.752854][ T9357] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  315.815600][ T9357] CPU: 1 UID: 0 PID: 9357 Comm: syz.1.782 Not tainted 6.15.0-rc7-syzkaller #0 PREEMPT(full) 
[  315.815645][ T9357] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  315.815663][ T9357] Call Trace:
[  315.815674][ T9357]  <TASK>
[  315.815686][ T9357]  dump_stack_lvl+0x16c/0x1f0
[  315.815743][ T9357]  should_fail_ex+0x512/0x640
[  315.815801][ T9357]  should_fail_alloc_page+0xe7/0x130
[  315.815847][ T9357]  prepare_alloc_pages+0x3c2/0x610
[  315.815901][ T9357]  ? rcu_is_watching+0x12/0xc0
[  315.815937][ T9357]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[  315.815978][ T9357]  ? __kernel_text_address+0xd/0x40
[  315.816008][ T9357]  ? unwind_get_return_address+0x59/0xa0
[  315.816047][ T9357]  ? arch_stack_walk+0xa6/0x100
[  315.816100][ T9357]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  315.816140][ T9357]  ? stack_trace_save+0x8e/0xc0
[  315.816175][ T9357]  ? __pfx_stack_trace_save+0x10/0x10
[  315.816209][ T9357]  ? stack_depot_save_flags+0x28/0xa50
[  315.816262][ T9357]  ? find_held_lock+0x2b/0x80
[  315.816301][ T9357]  ? kasan_save_stack+0x42/0x60
[  315.816342][ T9357]  ? __lock_acquire+0xaa4/0x1ba0
[  315.816393][ T9357]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  315.816444][ T9357]  ? policy_nodemask+0xea/0x4e0
[  315.816491][ T9357]  alloc_pages_mpol+0x1fb/0x550
[  315.816535][ T9357]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  315.816575][ T9357]  ? __page_table_check_ptes_set+0x1ae/0x420
[  315.816619][ T9357]  ? find_held_lock+0x2b/0x80
[  315.816659][ T9357]  alloc_pages_noprof+0x131/0x390
[  315.816702][ T9357]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  315.816735][ T9357]  get_free_pages_noprof+0xc/0x40
[  315.816781][ T9357]  kasan_populate_vmalloc_pte+0x2d/0x160
[  315.816817][ T9357]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  315.816852][ T9357]  __apply_to_page_range+0x61a/0xd60
[  315.816910][ T9357]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  315.816952][ T9357]  ? __pfx___apply_to_page_range+0x10/0x10
[  315.817006][ T9357]  ? alloc_vmap_area+0x872/0x2970
[  315.817064][ T9357]  alloc_vmap_area+0x919/0x2970
[  315.817132][ T9357]  ? __pfx_alloc_vmap_area+0x10/0x10
[  315.817192][ T9357]  __get_vm_area_node+0x1ca/0x330
[  315.817253][ T9357]  __vmalloc_node_range_noprof+0x277/0x1540
[  315.817311][ T9357]  ? __do_sys_listmount+0x1c2/0xed0
[  315.817382][ T9357]  ? __do_sys_listmount+0x1c2/0xed0
[  315.817442][ T9357]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  315.817518][ T9357]  __kvmalloc_node_noprof+0x2ff/0x600
[  315.817555][ T9357]  ? __do_sys_listmount+0x1c2/0xed0
[  315.817606][ T9357]  ? __do_sys_listmount+0x1c2/0xed0
[  315.817665][ T9357]  ? __do_sys_listmount+0x1c2/0xed0
[  315.817711][ T9357]  __do_sys_listmount+0x1c2/0xed0
[  315.817769][ T9357]  ? native_tss_update_io_bitmap+0x3ca/0x720
[  315.817803][ T9357]  ? __x64_sys_futex+0x1e9/0x4c0
[  315.817843][ T9357]  ? __pfx___do_sys_listmount+0x10/0x10
[  315.817894][ T9357]  ? xfd_validate_state+0x5d/0x180
[  315.817943][ T9357]  do_syscall_64+0xcd/0x230
[  315.817997][ T9357]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  315.818032][ T9357] RIP: 0033:0x7f457158e969
[  315.818058][ T9357] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  315.818090][ T9357] RSP: 002b:00007f457240d038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[  315.818121][ T9357] RAX: ffffffffffffffda RBX: 00007f45717b6160 RCX: 00007f457158e969
[  315.818142][ T9357] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100
[  315.818162][ T9357] RBP: 00007f4571610ab1 R08: 0000000000000000 R09: 0000000000000000
[  315.818183][ T9357] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[  315.818201][ T9357] R13: 0000000000000000 R14: 00007f45717b6160 R15: 00007ffddb9e8a38
[  315.818243][ T9357]  </TASK>
[  315.818726][ T9357] syz.1.782: vmalloc error: size 8000000, vm_struct allocation failed, mode:0x400cc0(GFP_KERNEL_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1
[  316.287295][ T9357] CPU: 0 UID: 0 PID: 9357 Comm: syz.1.782 Not tainted 6.15.0-rc7-syzkaller #0 PREEMPT(full) 
[  316.287338][ T9357] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  316.287355][ T9357] Call Trace:
[  316.287365][ T9357]  <TASK>
[  316.287378][ T9357]  dump_stack_lvl+0x16c/0x1f0
[  316.287430][ T9357]  warn_alloc+0x248/0x3a0
[  316.287470][ T9357]  ? __pfx_warn_alloc+0x10/0x10
[  316.287522][ T9357]  ? kfree+0x2b6/0x4d0
[  316.287561][ T9357]  ? __get_vm_area_node+0x208/0x330
[  316.287621][ T9357]  __vmalloc_node_range_noprof+0xd31/0x1540
[  316.287692][ T9357]  ? __do_sys_listmount+0x1c2/0xed0
[  316.287753][ T9357]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  316.287827][ T9357]  __kvmalloc_node_noprof+0x2ff/0x600
[  316.287864][ T9357]  ? __do_sys_listmount+0x1c2/0xed0
[  316.287916][ T9357]  ? __do_sys_listmount+0x1c2/0xed0
[  316.287973][ T9357]  ? __do_sys_listmount+0x1c2/0xed0
[  316.288020][ T9357]  __do_sys_listmount+0x1c2/0xed0
[  316.288079][ T9357]  ? native_tss_update_io_bitmap+0x3ca/0x720
[  316.288112][ T9357]  ? __x64_sys_futex+0x1e9/0x4c0
[  316.288151][ T9357]  ? __pfx___do_sys_listmount+0x10/0x10
[  316.288203][ T9357]  ? xfd_validate_state+0x5d/0x180
[  316.288251][ T9357]  do_syscall_64+0xcd/0x230
[  316.288306][ T9357]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  316.288340][ T9357] RIP: 0033:0x7f457158e969
[  316.288364][ T9357] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  316.288395][ T9357] RSP: 002b:00007f457240d038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[  316.288425][ T9357] RAX: ffffffffffffffda RBX: 00007f45717b6160 RCX: 00007f457158e969
[  316.288445][ T9357] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100
[  316.288464][ T9357] RBP: 00007f4571610ab1 R08: 0000000000000000 R09: 0000000000000000
[  316.288484][ T9357] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[  316.288509][ T9357] R13: 0000000000000000 R14: 00007f45717b6160 R15: 00007ffddb9e8a38
[  316.288551][ T9357]  </TASK>
[  316.288600][ T9357] Mem-Info:
[  316.535161][ T9357] active_anon:83790 inactive_anon:1 isolated_anon:0
[  316.535161][ T9357]  active_file:18265 inactive_file:40445 isolated_file:0
[  316.535161][ T9357]  unevictable:768 dirty:686 writeback:0
[  316.535161][ T9357]  slab_reclaimable:10804 slab_unreclaimable:96119
[  316.535161][ T9357]  mapped:36406 shmem:68601 pagetables:1151
[  316.535161][ T9357]  sec_pagetables:0 bounce:0
[  316.535161][ T9357]  kernel_misc_reclaimable:0
[  316.535161][ T9357]  free:1255567 free_pcp:543 free_cma:0
[  316.631132][ T9357] Node 0 active_anon:335360kB inactive_anon:4kB active_file:73060kB inactive_file:161644kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:149224kB dirty:2740kB writeback:0kB shmem:273068kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11768kB pagetables:4404kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  316.725926][ T9357] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:136kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  316.885862][ T9357] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  317.078582][ T9357] lowmem_reserve[]: 0 2484 2486 2486 2486
[  317.097833][ T9357] Node 0 DMA32 free:1082056kB boost:0kB min:34108kB low:42632kB high:51156kB reserved_highatomic:0KB active_anon:338864kB inactive_anon:4kB active_file:73080kB inactive_file:159856kB unevictable:1536kB writepending:2760kB present:3129332kB managed:2544136kB mlocked:0kB bounce:0kB free_pcp:8032kB local_pcp:7256kB free_cma:0kB
[  317.200020][ T9357] lowmem_reserve[]: 0 0 1 1 1
[  317.224039][ T9357] Node 0 Normal free:16kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1796kB unevictable:0kB writepending:0kB present:1048580kB managed:1900kB mlocked:0kB bounce:0kB free_pcp:40kB local_pcp:12kB free_cma:0kB
[  317.283765][ T9357] lowmem_reserve[]: 0 0 0 0 0
[  317.289079][ T9357] Node 1 Normal free:3909244kB boost:0kB min:55768kB low:69708kB high:83648kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:136kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:268kB local_pcp:0kB free_cma:0kB
[  317.392670][ T9357] lowmem_reserve[]: 0 0 0 0 0
[  317.402787][ T9357] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  317.450131][ T9357] Node 0 DMA32: 76*4kB (ME) 57*8kB (ME) 75*16kB (ME) 71*32kB (UME) 101*64kB (UME) 29*128kB (M) 10*256kB (ME) 6*512kB (UME) 9*1024kB (UME) 5*2048kB (UE) 255*4096kB (UM) = 1083976kB
[  317.480408][ T9357] Node 0 Normal: 0*4kB 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 16kB
[  317.605596][ T9357] Node 1 Normal: 169*4kB (UME) 63*8kB (UME) 46*16kB (UME) 212*32kB (UME) 100*64kB (UME) 35*128kB (UME) 18*256kB (UME) 10*512kB (UM) 3*1024kB (UM) 3*2048kB (U) 945*4096kB (M) = 3909244kB
[  317.655691][ T9357] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  317.678418][ T9357] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  317.738629][ T9357] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  317.767468][ T9357] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  317.802170][ T9357] 122928 total pagecache pages
[  317.807501][ T9357] 1 pages in swap cache
[  317.859024][ T9357] Free swap  = 124992kB
[  317.887541][ T9357] Total swap = 124996kB
[  317.891781][ T9357] 2097051 pages RAM
[  317.914872][ T9357] 0 pages HighMem/MovableOnly
[  317.956514][ T9357] 428911 pages reserved
[  317.983373][ T9357] 0 pages cma reserved
[  322.258129][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  322.264699][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  322.318439][ T9455] netlink: 8 bytes leftover after parsing attributes in process `syz.2.803'.
[  322.371404][ T9458] netlink: 28 bytes leftover after parsing attributes in process `syz.1.804'.
[  326.809915][ T9528] can: request_module (can-proto-3) failed.
[  327.936450][ T9545] netlink: 4 bytes leftover after parsing attributes in process `syz.2.817'.
[  328.273563][ T9546] netlink: 354 bytes leftover after parsing attributes in process `syz.2.817'.
[  330.137109][ T9554] Setting dangerous option i915.mitigations - tainting kernel
[  333.125854][ T9605] netlink: 8 bytes leftover after parsing attributes in process `syz.0.827'.
[  335.087523][ T9618] FAULT_INJECTION: forcing a failure.
[  335.087523][ T9618] name failslab, interval 1, probability 0, space 0, times 0
[  335.100365][ T9618] CPU: 1 UID: 0 PID: 9618 Comm: syz.2.829 Tainted: G     U              6.15.0-rc7-syzkaller #0 PREEMPT(full) 
[  335.100417][ T9618] Tainted: [U]=USER
[  335.100428][ T9618] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  335.100448][ T9618] Call Trace:
[  335.100459][ T9618]  <TASK>
[  335.100472][ T9618]  dump_stack_lvl+0x16c/0x1f0
[  335.100528][ T9618]  should_fail_ex+0x512/0x640
[  335.100577][ T9618]  ? fs_reclaim_acquire+0xae/0x150
[  335.100633][ T9618]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  335.100685][ T9618]  should_failslab+0xc2/0x120
[  335.100727][ T9618]  __kmalloc_noprof+0xd2/0x510
[  335.100777][ T9618]  tomoyo_realpath_from_path+0xc2/0x6e0
[  335.100854][ T9618]  tomoyo_check_open_permission+0x2ab/0x3c0
[  335.100902][ T9618]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  335.100993][ T9618]  ? do_raw_spin_lock+0x12c/0x2b0
[  335.101061][ T9618]  tomoyo_file_open+0x6b/0x90
[  335.101097][ T9618]  security_file_open+0x84/0x1e0
[  335.101145][ T9618]  do_dentry_open+0x596/0x1c10
[  335.101195][ T9618]  vfs_open+0x82/0x3f0
[  335.101245][ T9618]  path_openat+0x1e5e/0x2d40
[  335.101297][ T9618]  ? __pfx_path_openat+0x10/0x10
[  335.101343][ T9618]  do_filp_open+0x20b/0x470
[  335.101379][ T9618]  ? __pfx_do_filp_open+0x10/0x10
[  335.101445][ T9618]  ? alloc_fd+0x471/0x7d0
[  335.101512][ T9618]  do_sys_openat2+0x11b/0x1d0
[  335.101559][ T9618]  ? __pfx_do_sys_openat2+0x10/0x10
[  335.101622][ T9618]  __x64_sys_openat+0x174/0x210
[  335.101670][ T9618]  ? __pfx___x64_sys_openat+0x10/0x10
[  335.101731][ T9618]  ? rcu_is_watching+0x12/0xc0
[  335.101774][ T9618]  do_syscall_64+0xcd/0x230
[  335.101836][ T9618]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  335.101871][ T9618] RIP: 0033:0x7ff128f8e969
[  335.101897][ T9618] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  335.101929][ T9618] RSP: 002b:00007ff129db0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  335.101960][ T9618] RAX: ffffffffffffffda RBX: 00007ff1291b5fa0 RCX: 00007ff128f8e969
[  335.101981][ T9618] RDX: 0000000000000000 RSI: 0000200000000300 RDI: ffffffffffffff9c
[  335.102000][ T9618] RBP: 00007ff129010ab1 R08: 0000000000000000 R09: 0000000000000000
[  335.102019][ T9618] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  335.102037][ T9618] R13: 0000000000000000 R14: 00007ff1291b5fa0 R15: 00007ffebf3f96b8
[  335.102079][ T9618]  </TASK>
[  335.102109][ T9618] ERROR: Out of memory at tomoyo_realpath_from_path.
[  335.619132][ T9624] FAULT_INJECTION: forcing a failure.
[  335.619132][ T9624] name failslab, interval 1, probability 0, space 0, times 0
[  335.666444][ T9624] CPU: 0 UID: 0 PID: 9624 Comm: syz.1.830 Tainted: G     U              6.15.0-rc7-syzkaller #0 PREEMPT(full) 
[  335.666501][ T9624] Tainted: [U]=USER
[  335.666511][ T9624] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  335.666531][ T9624] Call Trace:
[  335.666541][ T9624]  <TASK>
[  335.666554][ T9624]  dump_stack_lvl+0x16c/0x1f0
[  335.666611][ T9624]  should_fail_ex+0x512/0x640
[  335.666663][ T9624]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  335.666703][ T9624]  should_failslab+0xc2/0x120
[  335.666745][ T9624]  __kmalloc_cache_noprof+0x6a/0x3e0
[  335.666782][ T9624]  ? alloc_tty_struct+0x96/0x8c0
[  335.666843][ T9624]  alloc_tty_struct+0x96/0x8c0
[  335.666892][ T9624]  ? __pfx_alloc_tty_struct+0x10/0x10
[  335.666953][ T9624]  tty_init_dev.part.0+0x1e/0x500
[  335.667004][ T9624]  tty_open+0xa50/0xf90
[  335.667058][ T9624]  ? __pfx_tty_open+0x10/0x10
[  335.667104][ T9624]  ? chrdev_open+0x10b/0x6a0
[  335.667147][ T9624]  ? __pfx_tty_open+0x10/0x10
[  335.667192][ T9624]  chrdev_open+0x234/0x6a0
[  335.667228][ T9624]  ? __pfx_apparmor_file_open+0x10/0x10
[  335.667276][ T9624]  ? __pfx_chrdev_open+0x10/0x10
[  335.667317][ T9624]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  335.667379][ T9624]  do_dentry_open+0x744/0x1c10
[  335.667417][ T9624]  ? __pfx_chrdev_open+0x10/0x10
[  335.667465][ T9624]  vfs_open+0x82/0x3f0
[  335.667515][ T9624]  path_openat+0x1e5e/0x2d40
[  335.667568][ T9624]  ? __pfx_path_openat+0x10/0x10
[  335.667615][ T9624]  do_filp_open+0x20b/0x470
[  335.667651][ T9624]  ? __pfx_do_filp_open+0x10/0x10
[  335.667718][ T9624]  ? alloc_fd+0x471/0x7d0
[  335.667785][ T9624]  do_sys_openat2+0x11b/0x1d0
[  335.667837][ T9624]  ? __pfx_do_sys_openat2+0x10/0x10
[  335.667889][ T9624]  ? __sys_sendmsg+0x199/0x220
[  335.667943][ T9624]  __x64_sys_openat+0x174/0x210
[  335.667992][ T9624]  ? __pfx___x64_sys_openat+0x10/0x10
[  335.668044][ T9624]  ? rcu_is_watching+0x12/0xc0
[  335.668091][ T9624]  do_syscall_64+0xcd/0x230
[  335.668149][ T9624]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  335.668185][ T9624] RIP: 0033:0x7f457158e969
[  335.668211][ T9624] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  335.668243][ T9624] RSP: 002b:00007f457244f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  335.668275][ T9624] RAX: ffffffffffffffda RBX: 00007f45717b5fa0 RCX: 00007f457158e969
[  335.668297][ T9624] RDX: 0000000000002800 RSI: 00002000000001c0 RDI: ffffffffffffff9c
[  335.668319][ T9624] RBP: 00007f4571610ab1 R08: 0000000000000000 R09: 0000000000000000
[  335.668339][ T9624] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  335.668360][ T9624] R13: 0000000000000000 R14: 00007f45717b5fa0 R15: 00007ffddb9e8a38
[  335.668403][ T9624]  </TASK>
[  335.944538][    C0] vkms_vblank_simulate: vblank timer overrun
[  336.403534][ T5838] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  336.414459][ T5838] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  336.424375][ T5838] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  336.461113][ T5838] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  336.471142][ T5838] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  337.430161][ T9632] chnl_net:caif_netlink_parms(): no params data found
[  338.090131][ T9632] bridge0: port 1(bridge_slave_0) entered blocking state
[  338.115730][ T9632] bridge0: port 1(bridge_slave_0) entered disabled state
[  338.123874][ T9632] bridge_slave_0: entered allmulticast mode
[  338.160690][ T9632] bridge_slave_0: entered promiscuous mode
[  338.207264][ T9632] bridge0: port 2(bridge_slave_1) entered blocking state
[  338.214496][ T9632] bridge0: port 2(bridge_slave_1) entered disabled state
[  338.275921][ T9632] bridge_slave_1: entered allmulticast mode
[  338.284119][ T9632] bridge_slave_1: entered promiscuous mode
[  338.554242][ T9632] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  338.566682][ T5842] Bluetooth: hci4: command tx timeout
[  338.678282][ T9632] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  338.834763][ T9632] team0: Port device team_slave_0 added
[  338.857603][ T9632] team0: Port device team_slave_1 added
[  339.410341][ T9632] batman_adv: batadv0: Adding interface: batadv_slave_0
[  339.479626][ T9632] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  339.505674][    C1] vkms_vblank_simulate: vblank timer overrun
[  339.559006][ T9632] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  339.621372][ T9632] batman_adv: batadv0: Adding interface: batadv_slave_1
[  339.645559][ T9632] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  339.671699][    C1] vkms_vblank_simulate: vblank timer overrun
[  339.715514][ T9632] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  340.414192][ T9632] hsr_slave_0: entered promiscuous mode
[  340.452694][ T9632] hsr_slave_1: entered promiscuous mode
[  340.475707][ T9632] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  340.494801][ T9632] Cannot create hsr debugfs directory
[  340.645624][ T5842] Bluetooth: hci4: command tx timeout
[  341.458444][ T9632] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  341.547647][ T9632] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  341.590160][ T9632] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  341.692353][ T9632] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  342.232044][ T9632] 8021q: adding VLAN 0 to HW filter on device bond0
[  342.463318][ T9632] 8021q: adding VLAN 0 to HW filter on device team0
[  342.480179][ T9488] bridge0: port 1(bridge_slave_0) entered blocking state
[  342.487447][ T9488] bridge0: port 1(bridge_slave_0) entered forwarding state
[  342.595319][ T9488] bridge0: port 2(bridge_slave_1) entered blocking state
[  342.602677][ T9488] bridge0: port 2(bridge_slave_1) entered forwarding state
[  342.627022][ T9698] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input11
[  342.729620][ T5842] Bluetooth: hci4: command tx timeout
[  342.822888][ T9701] netlink: 8 bytes leftover after parsing attributes in process `syz.1.845'.
[  343.203008][ T9704] random: crng reseeded on system resumption
[  344.017442][ T9632] 8021q: adding VLAN 0 to HW filter on device batadv0
[  344.808417][ T5842] Bluetooth: hci4: command tx timeout
[  345.108971][ T9632] veth0_vlan: entered promiscuous mode
[  345.345298][ T9632] veth1_vlan: entered promiscuous mode
[  345.662652][ T9632] veth0_macvtap: entered promiscuous mode
[  345.833303][ T9632] veth1_macvtap: entered promiscuous mode
[  346.040384][ T9632] batman_adv: batadv0: Interface activated: batadv_slave_0
[  346.118216][ T9632] batman_adv: batadv0: Interface activated: batadv_slave_1
[  346.304609][ T9632] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  346.343416][ T9632] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  346.357214][ T9632] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  346.367752][ T9632] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  346.696636][ T6200] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  346.716763][ T6200] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  346.858658][ T6200] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  346.886624][ T6200] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  347.192959][ T9775] netlink: 338 bytes leftover after parsing attributes in process `syz.1.858'.
[  347.400374][ T9780] FAULT_INJECTION: forcing a failure.
[  347.400374][ T9780] name failslab, interval 1, probability 0, space 0, times 0
[  347.488339][ T9780] CPU: 1 UID: 0 PID: 9780 Comm: syz.2.860 Tainted: G     U              6.15.0-rc7-syzkaller #0 PREEMPT(full) 
[  347.488381][ T9780] Tainted: [U]=USER
[  347.488389][ T9780] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  347.488404][ T9780] Call Trace:
[  347.488412][ T9780]  <TASK>
[  347.488420][ T9780]  dump_stack_lvl+0x16c/0x1f0
[  347.488465][ T9780]  should_fail_ex+0x512/0x640
[  347.488503][ T9780]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  347.488536][ T9780]  should_failslab+0xc2/0x120
[  347.488568][ T9780]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  347.488598][ T9780]  ? __kernfs_new_node+0xd2/0x8a0
[  347.488626][ T9780]  __kernfs_new_node+0xd2/0x8a0
[  347.488653][ T9780]  ? __pfx___kernfs_new_node+0x10/0x10
[  347.488684][ T9780]  ? find_held_lock+0x2b/0x80
[  347.488709][ T9780]  ? kernfs_root+0xee/0x2a0
[  347.488738][ T9780]  kernfs_new_node+0x13c/0x1e0
[  347.488771][ T9780]  __kernfs_create_file+0x53/0x350
[  347.488816][ T9780]  sysfs_add_file_mode_ns+0x207/0x3c0
[  347.488863][ T9780]  internal_create_group+0x578/0xf30
[  347.488896][ T9780]  ? __pfx_internal_create_group+0x10/0x10
[  347.488926][ T9780]  ? kernfs_create_link+0x1bd/0x240
[  347.488966][ T9780]  internal_create_groups+0x9d/0x150
[  347.488994][ T9780]  device_add+0x731/0x1a70
[  347.489034][ T9780]  ? __pfx_device_add+0x10/0x10
[  347.489067][ T9780]  ? __pfx___mutex_lock+0x10/0x10
[  347.489107][ T9780]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  347.489149][ T9780]  input_register_device+0x7e8/0x1130
[  347.489189][ T9780]  uinput_ioctl_handler.isra.0+0x1357/0x1df0
[  347.489218][ T9780]  ? __pfx_uinput_ioctl_handler.isra.0+0x10/0x10
[  347.489251][ T9780]  ? find_held_lock+0x2b/0x80
[  347.489290][ T9780]  ? __pfx_uinput_ioctl+0x10/0x10
[  347.489314][ T9780]  __x64_sys_ioctl+0x190/0x200
[  347.489353][ T9780]  do_syscall_64+0xcd/0x230
[  347.489393][ T9780]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  347.489418][ T9780] RIP: 0033:0x7ff128f8e969
[  347.489438][ T9780] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  347.489462][ T9780] RSP: 002b:00007ff129db0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  347.489485][ T9780] RAX: ffffffffffffffda RBX: 00007ff1291b5fa0 RCX: 00007ff128f8e969
[  347.489501][ T9780] RDX: 0000000000000000 RSI: 0000000000005501 RDI: 0000000000000006
[  347.489516][ T9780] RBP: 00007ff129010ab1 R08: 0000000000000000 R09: 0000000000000000
[  347.489531][ T9780] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  347.489545][ T9780] R13: 0000000000000000 R14: 00007ff1291b5fa0 R15: 00007ffebf3f96b8
[  347.489576][ T9780]  </TASK>
[  347.752263][    C1] vkms_vblank_simulate: vblank timer overrun
[  347.767439][ T9783] can: request_module (can-proto-3) failed.
[  348.660377][ T9800] FAULT_INJECTION: forcing a failure.
[  348.660377][ T9800] name failslab, interval 1, probability 0, space 0, times 0
[  348.701682][ T9800] CPU: 0 UID: 0 PID: 9800 Comm: syz.4.864 Tainted: G     U              6.15.0-rc7-syzkaller #0 PREEMPT(full) 
[  348.701735][ T9800] Tainted: [U]=USER
[  348.701746][ T9800] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  348.701765][ T9800] Call Trace:
[  348.701775][ T9800]  <TASK>
[  348.701787][ T9800]  dump_stack_lvl+0x16c/0x1f0
[  348.701843][ T9800]  should_fail_ex+0x512/0x640
[  348.701893][ T9800]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  348.701938][ T9800]  should_failslab+0xc2/0x120
[  348.701988][ T9800]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  348.702027][ T9800]  ? shmem_alloc_inode+0x25/0x50
[  348.702080][ T9800]  ? __pfx_shmem_alloc_inode+0x10/0x10
[  348.702128][ T9800]  shmem_alloc_inode+0x25/0x50
[  348.702174][ T9800]  alloc_inode+0x61/0x240
[  348.702217][ T9800]  new_inode+0x22/0x1c0
[  348.702257][ T9800]  ? trace_cap_capable+0x18d/0x200
[  348.702297][ T9800]  shmem_get_inode+0x19a/0xfb0
[  348.702331][ T9800]  ? __vm_enough_memory+0x184/0x3f0
[  348.702385][ T9800]  __shmem_file_setup+0x16f/0x300
[  348.702427][ T9800]  shmem_zero_setup+0x93/0x1a0
[  348.702468][ T9800]  __mmap_region+0x2036/0x27c0
[  348.702509][ T9800]  ? __pfx___mmap_region+0x10/0x10
[  348.702547][ T9800]  ? trace_sched_exit_tp+0xde/0x130
[  348.702619][ T9800]  ? __pfx___schedule+0x10/0x10
[  348.702722][ T9800]  ? trace_cap_capable+0x18d/0x200
[  348.702762][ T9800]  ? cap_capable+0xb3/0x250
[  348.702803][ T9800]  mmap_region+0x1ab/0x3f0
[  348.702849][ T9800]  do_mmap+0xd8e/0x11b0
[  348.702909][ T9800]  ? __pfx_do_mmap+0x10/0x10
[  348.702959][ T9800]  ? __pfx_down_write_killable+0x10/0x10
[  348.703010][ T9800]  vm_mmap_pgoff+0x281/0x450
[  348.703070][ T9800]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  348.703120][ T9800]  ? find_held_lock+0x2b/0x80
[  348.703159][ T9800]  ? __x64_sys_futex+0x1e0/0x4c0
[  348.703194][ T9800]  ? __x64_sys_futex+0x1e9/0x4c0
[  348.703239][ T9800]  ksys_mmap_pgoff+0x7d/0x5c0
[  348.703290][ T9800]  ? rcu_is_watching+0x12/0xc0
[  348.703325][ T9800]  __x64_sys_mmap+0x125/0x190
[  348.703360][ T9800]  do_syscall_64+0xcd/0x230
[  348.703410][ T9800]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  348.703443][ T9800] RIP: 0033:0x7facd6d8e969
[  348.703468][ T9800] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  348.703500][ T9800] RSP: 002b:00007facd7caa038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  348.703531][ T9800] RAX: ffffffffffffffda RBX: 00007facd6fb5fa0 RCX: 00007facd6d8e969
[  348.703552][ T9800] RDX: 00000000000000e2 RSI: 0000000000020009 RDI: 0000000000000000
[  348.703573][ T9800] RBP: 00007facd6e10ab1 R08: 0000000000000405 R09: 0000000000008000
[  348.703594][ T9800] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000
[  348.703614][ T9800] R13: 0000000000000000 R14: 00007facd6fb5fa0 R15: 00007fffa57132a8
[  348.703658][ T9800]  </TASK>
[  349.236396][ T9794] bond0: option all_slaves_active: invalid value ()
[  349.551427][ T9809] ima: policy update failed
[  349.576603][   T30] audit: type=1802 audit(6042734130.836:17): pid=9809 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.865" res=0 errno=0
[  349.952496][ T9817] Invalid ELF header magic: != ELF
[  355.829572][ T9925] netlink: 186 bytes leftover after parsing attributes in process `syz.4.890'.
[  357.090287][ T9920] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input13
[  357.465760][ T9951] netlink: 342 bytes leftover after parsing attributes in process `syz.1.895'.
[  359.186832][   T30] audit: type=1800 audit(6042734140.436:18): pid=9983 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.899" name="lu_gp_id" dev="configfs" ino=27410 res=0 errno=0
[  359.236403][ T9983] kstrtoul() returned -22 for lu_gp_id
[  361.367505][   T30] audit: type=1800 audit(6042734142.626:19): pid=10002 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.904" name="SYSV0000000a" dev="hugetlbfs" ino=0 res=0 errno=0
[  361.412831][T10004] FAULT_INJECTION: forcing a failure.
[  361.412831][T10004] name failslab, interval 1, probability 0, space 0, times 0
[  361.426903][T10004] CPU: 0 UID: 0 PID: 10004 Comm: syz.2.903 Tainted: G     U              6.15.0-rc7-syzkaller #0 PREEMPT(full) 
[  361.426976][T10004] Tainted: [U]=USER
[  361.426986][T10004] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  361.427006][T10004] Call Trace:
[  361.427018][T10004]  <TASK>
[  361.427030][T10004]  dump_stack_lvl+0x16c/0x1f0
[  361.427087][T10004]  should_fail_ex+0x512/0x640
[  361.427138][T10004]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[  361.427189][T10004]  should_failslab+0xc2/0x120
[  361.427233][T10004]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  361.427279][T10004]  ? smc_sysctl_net_init+0x42/0x3d0
[  361.427316][T10004]  ? __pfx_smc_net_init+0x10/0x10
[  361.427353][T10004]  kmemdup_noprof+0x29/0x60
[  361.427396][T10004]  smc_sysctl_net_init+0x42/0x3d0
[  361.427431][T10004]  ? __pfx_smc_net_init+0x10/0x10
[  361.427468][T10004]  smc_net_init+0x16/0x50
[  361.427502][T10004]  ops_init+0x1e2/0x5f0
[  361.427563][T10004]  setup_net+0x21e/0x850
[  361.427620][T10004]  ? __pfx_setup_net+0x10/0x10
[  361.427668][T10004]  ? lockdep_init_map_type+0x5c/0x280
[  361.427717][T10004]  ? __pfx_down_read_killable+0x10/0x10
[  361.427759][T10004]  ? debug_mutex_init+0x37/0x70
[  361.427797][T10004]  copy_net_ns+0x2a6/0x5f0
[  361.427850][T10004]  create_new_namespaces+0x3ea/0xad0
[  361.427905][T10004]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  361.427960][T10004]  ksys_unshare+0x45b/0xa40
[  361.428008][T10004]  ? __pfx_ksys_unshare+0x10/0x10
[  361.428050][T10004]  ? xfd_validate_state+0x5d/0x180
[  361.428084][T10004]  ? rcu_is_watching+0x12/0xc0
[  361.428128][T10004]  __x64_sys_unshare+0x31/0x40
[  361.428175][T10004]  do_syscall_64+0xcd/0x230
[  361.428231][T10004]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  361.428266][T10004] RIP: 0033:0x7ff128f8e969
[  361.428293][T10004] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  361.428325][T10004] RSP: 002b:00007ff129d6e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  361.428358][T10004] RAX: ffffffffffffffda RBX: 00007ff1291b6160 RCX: 00007ff128f8e969
[  361.428380][T10004] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  361.428399][T10004] RBP: 00007ff129010ab1 R08: 0000000000000000 R09: 0000000000000000
[  361.428419][T10004] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  361.428439][T10004] R13: 0000000000000000 R14: 00007ff1291b6160 R15: 00007ffebf3f96b8
[  361.428483][T10004]  </TASK>
[  363.379235][T10036] netlink: 16 bytes leftover after parsing attributes in process `syz.1.910'.
[  363.383340][T10028] sp0: Synchronizing with TNC
[  365.234961][T10062] random: crng reseeded on system resumption
[  366.668600][T10102] netlink: 330 bytes leftover after parsing attributes in process `syz.0.919'.
[  366.879875][T10102] netlink: 330 bytes leftover after parsing attributes in process `syz.0.919'.
[  368.814139][T10142] FAULT_INJECTION: forcing a failure.
[  368.814139][T10142] name failslab, interval 1, probability 0, space 0, times 0
[  368.841640][T10142] CPU: 1 UID: 0 PID: 10142 Comm: syz.0.926 Tainted: G     U              6.15.0-rc7-syzkaller #0 PREEMPT(full) 
[  368.841696][T10142] Tainted: [U]=USER
[  368.841708][T10142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  368.841727][T10142] Call Trace:
[  368.841738][T10142]  <TASK>
[  368.841750][T10142]  dump_stack_lvl+0x16c/0x1f0
[  368.841807][T10142]  should_fail_ex+0x512/0x640
[  368.841855][T10142]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[  368.841904][T10142]  should_failslab+0xc2/0x120
[  368.841946][T10142]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  368.841992][T10142]  ? kasprintf+0xc7/0x100
[  368.842030][T10142]  kvasprintf+0xbc/0x160
[  368.842062][T10142]  ? __pfx_kvasprintf+0x10/0x10
[  368.842099][T10142]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  368.842155][T10142]  ? lockdep_hardirqs_on+0x7c/0x110
[  368.842202][T10142]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  368.842256][T10142]  kasprintf+0xc7/0x100
[  368.842286][T10142]  ? __pfx_kasprintf+0x10/0x10
[  368.842329][T10142]  ? __pfx_sta_info_cleanup+0x10/0x10
[  368.842388][T10142]  ieee80211_alloc_led_names+0x243/0x420
[  368.842460][T10142]  ieee80211_alloc_hw_nm+0x1941/0x2260
[  368.842502][T10142]  mac80211_hwsim_new_radio+0x1d4/0x54d0
[  368.842576][T10142]  ? __asan_memset+0x23/0x50
[  368.842608][T10142]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  368.842674][T10142]  hwsim_new_radio_nl+0xb51/0x12c0
[  368.842728][T10142]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  368.842792][T10142]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  368.842846][T10142]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  368.842908][T10142]  genl_family_rcv_msg_doit+0x206/0x2f0
[  368.842961][T10142]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  368.843011][T10142]  ? trace_cap_capable+0x18d/0x200
[  368.843057][T10142]  ? bpf_lsm_capable+0x9/0x10
[  368.843091][T10142]  ? security_capable+0x7e/0x260
[  368.843134][T10142]  ? ns_capable+0xd7/0x110
[  368.843173][T10142]  genl_rcv_msg+0x55c/0x800
[  368.843228][T10142]  ? __pfx_genl_rcv_msg+0x10/0x10
[  368.843276][T10142]  ? __pfx___dev_queue_xmit+0x10/0x10
[  368.843311][T10142]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  368.843366][T10142]  ? __lock_acquire+0xaa4/0x1ba0
[  368.843417][T10142]  netlink_rcv_skb+0x16d/0x440
[  368.843461][T10142]  ? __pfx_genl_rcv_msg+0x10/0x10
[  368.843512][T10142]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  368.843578][T10142]  ? __pfx_down_read+0x10/0x10
[  368.843611][T10142]  ? netlink_deliver_tap+0x1ae/0xd30
[  368.843660][T10142]  genl_rcv+0x28/0x40
[  368.843703][T10142]  netlink_unicast+0x53a/0x7f0
[  368.843752][T10142]  ? __pfx_netlink_unicast+0x10/0x10
[  368.843793][T10142]  ? __lock_acquire+0xaa4/0x1ba0
[  368.843847][T10142]  netlink_sendmsg+0x8d1/0xdd0
[  368.843899][T10142]  ? __pfx_netlink_sendmsg+0x10/0x10
[  368.843960][T10142]  ____sys_sendmsg+0xa95/0xc70
[  368.844010][T10142]  ? copy_msghdr_from_user+0x10a/0x160
[  368.844051][T10142]  ? __pfx_____sys_sendmsg+0x10/0x10
[  368.844131][T10142]  ___sys_sendmsg+0x134/0x1d0
[  368.844176][T10142]  ? __pfx____sys_sendmsg+0x10/0x10
[  368.844272][T10142]  __sys_sendmsg+0x16d/0x220
[  368.844315][T10142]  ? __pfx___sys_sendmsg+0x10/0x10
[  368.844353][T10142]  ? __x64_sys_futex+0x1e0/0x4c0
[  368.844401][T10142]  ? rcu_is_watching+0x12/0xc0
[  368.844446][T10142]  do_syscall_64+0xcd/0x230
[  368.844499][T10142]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  368.844533][T10142] RIP: 0033:0x7f3eae78e969
[  368.844578][T10142] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  368.844610][T10142] RSP: 002b:00007f3eaf5dd038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  368.844644][T10142] RAX: ffffffffffffffda RBX: 00007f3eae9b5fa0 RCX: 00007f3eae78e969
[  368.844666][T10142] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000007
[  368.844687][T10142] RBP: 00007f3eae810ab1 R08: 0000000000000000 R09: 0000000000000000
[  368.844707][T10142] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  368.844728][T10142] R13: 0000000000000000 R14: 00007f3eae9b5fa0 R15: 00007ffeb620b588
[  368.844772][T10142]  </TASK>
[  369.242807][    C1] vkms_vblank_simulate: vblank timer overrun
[  370.538352][   T30] audit: type=1800 audit(6042734151.796:20): pid=10160 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.930" name="dbroot" dev="configfs" ino=29714 res=0 errno=0
[  371.066712][T10162] RDS: rds_bind could not find a transport for 7bc:c94c:4e37:70c4:7374:6174:7573:0, load rds_tcp or rds_rdma?
[  374.982657][T10218] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  375.015474][T10218] CIFS mount error: No usable UNC path provided in device string!
[  375.015474][T10218] 
[  375.027589][T10218] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  375.097771][T10175] vivid-003: =================  START STATUS  =================
[  375.136388][T10175] vivid-003: Radio HW Seek Mode: Bounded
[  375.143305][T10175] vivid-003: Radio Programmable HW Seek: false
[  375.161562][T10175] vivid-003: RDS Rx I/O Mode: Block I/O
[  375.175517][T10175] vivid-003: Generate RBDS Instead of RDS: false
[  375.182119][T10175] vivid-003: RDS Reception: true
[  375.187296][T10175] vivid-003: RDS Program Type: 0 inactive
[  375.193915][T10175] vivid-003: RDS PS Name:  inactive
[  375.204277][T10175] vivid-003: RDS Radio Text:  inactive
[  375.213034][T10175] vivid-003: RDS Traffic Announcement: false inactive
[  375.220231][T10175] vivid-003: RDS Traffic Program: false inactive
[  375.226792][T10175] vivid-003: RDS Music: false inactive
[  375.232595][T10175] vivid-003: ==================  END STATUS  ==================
[  375.577803][T10181] syz.0.933 (10181) used greatest stack depth: 19912 bytes left
[  376.714366][T10242] bond0: option all_slaves_active: invalid value ()
[  380.582401][T10278] zswap: compressor  not available
[  382.634191][T10323] netlink: 4 bytes leftover after parsing attributes in process `syz.1.961'.
[  383.675338][T10341] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(3)
[  383.702728][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  383.702816][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  384.724199][T10349] lo: entered allmulticast mode
[  384.807290][T10353] lo: left allmulticast mode
[  384.979307][T10356] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  384.986176][T10356] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  385.809091][T10367] Invalid ELF header magic: != ELF
[  386.484689][ T1036] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  386.921238][ T1036] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  386.995904][T10388] netlink: 28 bytes leftover after parsing attributes in process `syz.4.976'.
[  387.044102][T10388] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[  387.530203][ T1036] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  387.819444][T10416] binder: BINDER_SET_CONTEXT_MGR already set
[  387.828250][T10416] binder: 10415:10416 ioctl 40046207 0 returned -16
[  387.852932][ T1036] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  388.055305][T10422] netlink: 4 bytes leftover after parsing attributes in process `syz.4.982'.
[  388.640023][ T1036] bridge_slave_1: left allmulticast mode
[  388.651911][ T1036] bridge_slave_1: left promiscuous mode
[  388.680677][ T1036] bridge0: port 2(bridge_slave_1) entered disabled state
[  388.691479][T10428] netlink: 8 bytes leftover after parsing attributes in process `syz.2.984'.
[  388.838810][ T1036] bridge_slave_0: left allmulticast mode
[  388.844544][ T1036] bridge_slave_0: left promiscuous mode
[  388.885828][ T1036] bridge0: port 1(bridge_slave_0) entered disabled state
[  389.257183][T10443] netlink: 93 bytes leftover after parsing attributes in process `syz.4.988'.
[  390.102587][ T1036] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  390.131680][ T1036] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  390.147315][ T1036] bond0 (unregistering): Released all slaves
[  390.350030][T10455] Invalid ELF header magic: != ELF
[  391.525789][T10470] svc: failed to register nfsdv3 RPC service (errno 111).
[  391.554196][T10470] svc: failed to register nfsaclv3 RPC service (errno 111).
[  391.767894][T10467] ima: policy update failed
[  391.777766][   T30] audit: type=1802 audit(6042734173.036:21): pid=10467 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.991" res=0 errno=0
[  392.814676][ T1036] hsr_slave_0: left promiscuous mode
[  392.903327][ T1036] hsr_slave_1: left promiscuous mode
[  392.916140][T10494] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x7fe00
[  392.955837][T10494] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  392.964777][T10494] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  393.017105][ T1036] veth1_macvtap: left promiscuous mode
[  393.023163][ T1036] veth0_macvtap: left promiscuous mode
[  393.036860][T10494] page_type: f5(slab)
[  393.045557][T10494] raw: 00fff00000000040 ffff88801b44b500 dead000000000122 0000000000000000
[  393.064501][ T1036] veth1_vlan: left promiscuous mode
[  393.085678][T10494] raw: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000
[  393.106073][ T1036] veth0_vlan: left promiscuous mode
[  393.118624][T10494] head: 00fff00000000040 ffff88801b44b500 dead000000000122 0000000000000000
[  393.147940][T10494] head: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000
[  393.176186][T10494] head: 00fff00000000003 ffffea0001ff8001 00000000ffffffff 00000000ffffffff
[  393.195664][T10494] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  393.222970][T10494] page dumped because: unmovable page
[  393.238101][T10494] page_owner tracks the page as allocated
[  393.254321][T10494] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd60c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_RETRY_MAYFAIL|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5829, tgid 5829 (syz-executor), ts 106056102150, free_ts 106042579502
[  393.341003][T10494]  post_alloc_hook+0x181/0x1b0
[  393.359191][T10494]  get_page_from_freelist+0x135c/0x3920
[  393.364861][T10494]  __alloc_frozen_pages_noprof+0x263/0x23a0
[  393.401744][T10494]  alloc_pages_mpol+0x1fb/0x550
[  393.408522][T10494]  new_slab+0x244/0x340
[  393.413308][T10494]  ___slab_alloc+0xd9c/0x1940
[  393.465558][T10494]  __slab_alloc.constprop.0+0x56/0xb0
[  393.471028][T10494]  __kvmalloc_node_noprof+0x3a6/0x600
[  393.527759][T10494]  alloc_netdev_mqs+0xd2/0x1570
[  393.551409][T10494]  rtnl_create_link+0xc10/0xfa0
[  393.585249][T10494]  rtnl_newlink+0xb69/0x2000
[  393.615657][T10494]  rtnetlink_rcv_msg+0x95b/0xe90
[  393.621582][T10494]  netlink_rcv_skb+0x16d/0x440
[  393.648158][T10494]  netlink_unicast+0x53a/0x7f0
[  393.674593][T10494]  netlink_sendmsg+0x8d1/0xdd0
[  393.701976][T10494]  __sys_sendto+0x495/0x510
[  393.721545][T10494] page last free pid 5837 tgid 5837 stack trace:
[  393.740391][T10494]  __free_frozen_pages+0x69d/0xff0
[  393.762702][T10494]  __put_partials+0x16d/0x1c0
[  393.788702][T10494]  qlist_free_all+0x4e/0x120
[  393.793680][T10494]  kasan_quarantine_reduce+0x195/0x1e0
[  393.806409][T10494]  __kasan_slab_alloc+0x69/0x90
[  393.811358][T10494]  __kmalloc_cache_noprof+0x1f1/0x3e0
[  393.828535][T10494]  kset_create_and_add+0x4d/0x190
[  393.833662][T10494]  netdev_register_kobject+0x1c8/0x3a0
[  393.855633][T10494]  register_netdevice+0x13dc/0x2270
[  393.875467][T10494]  macvlan_common_newlink+0x10e7/0x1a20
[  393.885461][T10494]  macvtap_newlink+0x17a/0x240
[  393.890421][T10494]  rtnl_newlink+0xc42/0x2000
[  393.895079][T10494]  rtnetlink_rcv_msg+0x95b/0xe90
[  393.943180][T10494]  netlink_rcv_skb+0x16d/0x440
[  393.949982][T10494]  netlink_unicast+0x53a/0x7f0
[  393.954832][T10494]  netlink_sendmsg+0x8d1/0xdd0
[  395.441832][ T1036] team0 (unregistering): Port device team_slave_1 removed
[  395.538767][ T1036] team0 (unregistering): Port device team_slave_0 removed
[  397.004037][T10553] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  397.594450][T10573] : Can't lookup blockdev
[  398.472481][T10583] netlink: zone id is out of range
[  401.399788][T10648] zram: Added device: zram0
[  402.309754][T10684] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1018'.
[  402.507307][T10688] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1021'.
[  402.619147][T10690] netlink: zone id is out of range
[  405.376958][T10742] netlink: 186 bytes leftover after parsing attributes in process `syz.4.1027'.
[  405.971724][T10754] FAULT_INJECTION: forcing a failure.
[  405.971724][T10754] name failslab, interval 1, probability 0, space 0, times 0
[  405.971794][T10754] CPU: 1 UID: 0 PID: 10754 Comm: syz.1.1029 Tainted: G     U              6.15.0-rc7-syzkaller #0 PREEMPT(full) 
[  405.971844][T10754] Tainted: [U]=USER
[  405.971855][T10754] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  405.971874][T10754] Call Trace:
[  405.971884][T10754]  <TASK>
[  405.971897][T10754]  dump_stack_lvl+0x16c/0x1f0
[  405.971952][T10754]  should_fail_ex+0x512/0x640
[  405.972002][T10754]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  405.972041][T10754]  should_failslab+0xc2/0x120
[  405.972084][T10754]  __kmalloc_cache_noprof+0x6a/0x3e0
[  405.972119][T10754]  ? device_create_groups_vargs+0x8a/0x270
[  405.972177][T10754]  device_create_groups_vargs+0x8a/0x270
[  405.972234][T10754]  device_create+0xed/0x130
[  405.972285][T10754]  ? __pfx_device_create+0x10/0x10
[  405.972332][T10754]  ? do_raw_spin_lock+0x12c/0x2b0
[  405.972386][T10754]  ? is_console_locked+0x9/0x20
[  405.972424][T10754]  ? con_is_visible+0x65/0x150
[  405.972471][T10754]  ? csi_J+0x54a/0xad0
[  405.972520][T10754]  vcs_make_sysfs+0x32/0x80
[  405.972553][T10754]  vc_allocate+0x501/0x880
[  405.972595][T10754]  ? __pfx_vc_allocate+0x10/0x10
[  405.972649][T10754]  con_install+0xa1/0x600
[  405.972693][T10754]  ? __pfx_con_install+0x10/0x10
[  405.972742][T10754]  ? __pfx_con_install+0x10/0x10
[  405.972786][T10754]  tty_init_dev.part.0+0x99/0x500
[  405.972838][T10754]  tty_open+0xa50/0xf90
[  405.972892][T10754]  ? __pfx_tty_open+0x10/0x10
[  405.972937][T10754]  ? chrdev_open+0x10b/0x6a0
[  405.972981][T10754]  ? __pfx_tty_open+0x10/0x10
[  405.973026][T10754]  chrdev_open+0x234/0x6a0
[  405.973062][T10754]  ? __pfx_apparmor_file_open+0x10/0x10
[  405.973109][T10754]  ? __pfx_chrdev_open+0x10/0x10
[  405.973150][T10754]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  405.973211][T10754]  do_dentry_open+0x744/0x1c10
[  405.973249][T10754]  ? __pfx_chrdev_open+0x10/0x10
[  405.973296][T10754]  vfs_open+0x82/0x3f0
[  405.973347][T10754]  path_openat+0x1e5e/0x2d40
[  405.973400][T10754]  ? __pfx_path_openat+0x10/0x10
[  405.973454][T10754]  do_filp_open+0x20b/0x470
[  405.973490][T10754]  ? __pfx_do_filp_open+0x10/0x10
[  405.973559][T10754]  ? alloc_fd+0x471/0x7d0
[  405.973625][T10754]  do_sys_openat2+0x11b/0x1d0
[  405.973672][T10754]  ? __pfx_do_sys_openat2+0x10/0x10
[  405.973737][T10754]  __x64_sys_openat+0x174/0x210
[  405.973787][T10754]  ? __pfx___x64_sys_openat+0x10/0x10
[  405.973837][T10754]  ? rcu_is_watching+0x12/0xc0
[  405.973883][T10754]  do_syscall_64+0xcd/0x230
[  405.973939][T10754]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  405.973974][T10754] RIP: 0033:0x7f457158e969
[  405.974000][T10754] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  405.974033][T10754] RSP: 002b:00007f457244f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  405.974065][T10754] RAX: ffffffffffffffda RBX: 00007f45717b5fa0 RCX: 00007f457158e969
[  405.974087][T10754] RDX: 0000000000040002 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  405.974110][T10754] RBP: 00007f4571610ab1 R08: 0000000000000000 R09: 0000000000000000
[  405.974130][T10754] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000
[  405.974151][T10754] R13: 0000000000000000 R14: 00007f45717b5fa0 R15: 00007ffddb9e8a38
[  405.974192][T10754]  </TASK>
[  407.548826][T10784] ima: policy update failed
[  407.550076][   T30] audit: type=1802 audit(6042734196.806:22): pid=10784 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.1035" res=0 errno=0
[  407.706502][T10754] tty tty26: ldisc open failed (-12), clearing slot 25
[  408.748201][T10824] tipc: Started in network mode
[  408.783332][T10824] tipc: Node identity ee00, cluster identity 4711
[  408.875812][T10824] tipc: Node number set to 60928
[  409.253551][T10837] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1045'.
[  409.306557][T10837] netlink: 25 bytes leftover after parsing attributes in process `syz.1.1045'.
[  409.681353][ T5842] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[  414.114145][T10952] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1061'.
[  414.298425][T10952] bond0: (slave bond_slave_0): Releasing backup interface
[  414.317671][T10952] bond_slave_0 (unregistering): left promiscuous mode
[  414.407364][T10952] bond_slave_0 (unregistering): left allmulticast mode
[  415.617153][T10977] netlink: 'syz.4.1065': attribute type 3 has an invalid length.
[  415.960307][T10985] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1067'.
[  418.926567][T11015] Invalid ELF header magic: != ELF
[  419.027770][T11030] vivid-007: =================  START STATUS  =================
[  419.405722][T11030] vivid-007: Generate PTS: true
[  419.430151][T11030] vivid-007: Generate SCR: true
[  419.438563][T11030] tpg source WxH: 640x360 (Y'CbCr)
[  419.443740][T11030] tpg field: 1
[  419.458713][T11030] tpg crop: (0,0)/640x360
[  419.468484][T11030] tpg compose: (0,0)/640x360
[  419.492918][T11030] tpg colorspace: 8
[  419.496995][T11030] tpg transfer function: 0/0
[  419.545534][T11030] tpg Y'CbCr encoding: 0/0
[  419.593772][T11030] tpg quantization: 0/0
[  419.602672][T11030] tpg RGB range: 0/2
[  419.688052][T11030] vivid-007: ==================  END STATUS  ==================
[  423.828953][T11103] netlink: zone id is out of range
[  425.728499][T11148] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1089'.
[  426.806739][T11178] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  428.476301][T11214] netlink: zone id is out of range
[  431.385653][T11263] ima: policy update failed
[  431.395227][   T30] audit: type=1802 audit(65202.810:23): pid=11263 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.1106" res=0 errno=0
[  431.555558][T11265] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1105'.
[  431.658959][T11265] bridge0: port 2(bridge_slave_1) entered disabled state
[  431.949882][T11265] bridge_slave_1 (unregistering): left allmulticast mode
[  432.050524][T11265] bridge_slave_1 (unregistering): left promiscuous mode
[  432.121799][T11265] bridge0: port 2(bridge_slave_1) entered disabled state
[  432.308675][T11302] netlink: zone id is out of range
[  432.382500][T11280] netlink: 'syz.0.1108': attribute type 20 has an invalid length.
[  432.392224][T11280] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1108'.
[  432.431971][T11280] IPv6: NLM_F_CREATE should be specified when creating new route
[  437.151507][T11390] bridge0: port 4(vlan1) entered blocking state
[  437.175693][T11390] bridge0: port 4(vlan1) entered disabled state
[  437.182238][T11390] vlan1: entered allmulticast mode
[  437.217758][T11390] vlan1: entered promiscuous mode
[  437.224015][T11390] bridge0: port 4(vlan1) entered blocking state
[  437.230557][T11390] bridge0: port 4(vlan1) entered forwarding state
[  437.379595][T11390] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1125'.
[  440.049577][T11431] FAULT_INJECTION: forcing a failure.
[  440.049577][T11431] name failslab, interval 1, probability 0, space 0, times 0
[  440.071753][T11431] CPU: 1 UID: 0 PID: 11431 Comm: syz.1.1132 Tainted: G     U              6.15.0-rc7-syzkaller #0 PREEMPT(full) 
[  440.071807][T11431] Tainted: [U]=USER
[  440.071818][T11431] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  440.071838][T11431] Call Trace:
[  440.071848][T11431]  <TASK>
[  440.071860][T11431]  dump_stack_lvl+0x16c/0x1f0
[  440.071916][T11431]  should_fail_ex+0x512/0x640
[  440.071965][T11431]  ? __kmalloc_noprof+0xbf/0x510
[  440.072005][T11431]  ? xfrm_hash_alloc+0xd1/0x100
[  440.072054][T11431]  should_failslab+0xc2/0x120
[  440.072094][T11431]  __kmalloc_noprof+0xd2/0x510
[  440.072129][T11431]  ? proc_create_reg+0xe3/0x180
[  440.072174][T11431]  ? __pfx_xfrm_net_init+0x10/0x10
[  440.072206][T11431]  xfrm_hash_alloc+0xd1/0x100
[  440.072265][T11431]  xfrm_state_init+0xdd/0x630
[  440.072315][T11431]  ? __pfx_xfrm_net_init+0x10/0x10
[  440.072343][T11431]  xfrm_net_init+0x210/0xcc0
[  440.072379][T11431]  ? __pfx_xfrm_net_init+0x10/0x10
[  440.072407][T11431]  ops_init+0x1e2/0x5f0
[  440.072452][T11431]  setup_net+0x21e/0x850
[  440.072514][T11431]  ? __pfx_setup_net+0x10/0x10
[  440.072552][T11431]  ? lockdep_init_map_type+0x5c/0x280
[  440.072613][T11431]  ? __pfx_down_read_killable+0x10/0x10
[  440.072653][T11431]  ? debug_mutex_init+0x37/0x70
[  440.072689][T11431]  copy_net_ns+0x2a6/0x5f0
[  440.072741][T11431]  create_new_namespaces+0x3ea/0xad0
[  440.072788][T11431]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  440.072840][T11431]  ksys_unshare+0x45b/0xa40
[  440.072901][T11431]  ? __pfx_ksys_unshare+0x10/0x10
[  440.072944][T11431]  ? xfd_validate_state+0x5d/0x180
[  440.072979][T11431]  ? rcu_is_watching+0x12/0xc0
[  440.073020][T11431]  __x64_sys_unshare+0x31/0x40
[  440.073076][T11431]  do_syscall_64+0xcd/0x230
[  440.073131][T11431]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  440.073164][T11431] RIP: 0033:0x7f457158e969
[  440.073190][T11431] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  440.073222][T11431] RSP: 002b:00007f457244f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  440.073253][T11431] RAX: ffffffffffffffda RBX: 00007f45717b5fa0 RCX: 00007f457158e969
[  440.073285][T11431] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  440.073303][T11431] RBP: 00007f4571610ab1 R08: 0000000000000000 R09: 0000000000000000
[  440.073321][T11431] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  440.073340][T11431] R13: 0000000000000000 R14: 00007f45717b5fa0 R15: 00007ffddb9e8a38
[  440.073379][T11431]  </TASK>
[  440.392330][T11460] FAULT_INJECTION: forcing a failure.
[  440.392330][T11460] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  440.406165][T11460] CPU: 1 UID: 0 PID: 11460 Comm: syz.2.1136 Tainted: G     U              6.15.0-rc7-syzkaller #0 PREEMPT(full) 
[  440.406218][T11460] Tainted: [U]=USER
[  440.406229][T11460] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  440.406249][T11460] Call Trace:
[  440.406260][T11460]  <TASK>
[  440.406272][T11460]  dump_stack_lvl+0x16c/0x1f0
[  440.406329][T11460]  should_fail_ex+0x512/0x640
[  440.406385][T11460]  _copy_from_iter+0x2a4/0x15b0
[  440.406447][T11460]  ? policy_nodemask+0xea/0x4e0
[  440.406490][T11460]  ? __pfx__copy_from_iter+0x10/0x10
[  440.406541][T11460]  ? alloc_pages_mpol+0x25a/0x550
[  440.406584][T11460]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  440.406638][T11460]  copy_page_from_iter+0xa5/0x120
[  440.406696][T11460]  anon_pipe_write+0xbe7/0x1a70
[  440.406759][T11460]  ? __pfx_anon_pipe_write+0x10/0x10
[  440.406800][T11460]  ? apparmor_file_permission+0x251/0x400
[  440.406844][T11460]  ? bpf_lsm_file_permission+0x9/0x10
[  440.406875][T11460]  ? security_file_permission+0x71/0x210
[  440.406923][T11460]  ? rw_verify_area+0xcf/0x680
[  440.406980][T11460]  vfs_write+0x5ba/0x1180
[  440.407013][T11460]  ? __pfx_anon_pipe_write+0x10/0x10
[  440.407055][T11460]  ? __pfx_vfs_write+0x10/0x10
[  440.407085][T11460]  ? find_held_lock+0x2b/0x80
[  440.407147][T11460]  ksys_write+0x205/0x240
[  440.407180][T11460]  ? __pfx_ksys_write+0x10/0x10
[  440.407211][T11460]  ? rcu_is_watching+0x12/0xc0
[  440.407257][T11460]  do_syscall_64+0xcd/0x230
[  440.407312][T11460]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  440.407346][T11460] RIP: 0033:0x7ff128f8e969
[  440.407373][T11460] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  440.407406][T11460] RSP: 002b:00007ff129db0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  440.407437][T11460] RAX: ffffffffffffffda RBX: 00007ff1291b5fa0 RCX: 00007ff128f8e969
[  440.407458][T11460] RDX: 000000000200ffd8 RSI: 0000000000000000 RDI: 0000000000000003
[  440.407479][T11460] RBP: 00007ff129010ab1 R08: 0000000000000000 R09: 0000000000000000
[  440.407499][T11460] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  440.407519][T11460] R13: 0000000000000000 R14: 00007ff1291b5fa0 R15: 00007ffebf3f96b8
[  440.407562][T11460]  </TASK>
[  441.545004][T11470] CIFS: VFS: Invalid SecurityFlags: 0
[  441.545004][T11470] 
[  442.227606][T11488] netlink: 'syz.2.1140': attribute type 19 has an invalid length.
[  442.322761][T11488] netlink: 334 bytes leftover after parsing attributes in process `syz.2.1140'.
[  442.507343][T11498] netlink: 'syz.2.1140': attribute type 19 has an invalid length.
[  442.515228][T11498] netlink: 334 bytes leftover after parsing attributes in process `syz.2.1140'.
[  445.139744][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  445.146162][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  445.552783][T11551] hub 8-0:1.0: USB hub found
[  445.565637][T11551] hub 8-0:1.0: 1 port detected
[  446.326737][T11559] FAULT_INJECTION: forcing a failure.
[  446.326737][T11559] name failslab, interval 1, probability 0, space 0, times 0
[  446.385546][T11559] CPU: 0 UID: 0 PID: 11559 Comm: syz.2.1156 Tainted: G     U              6.15.0-rc7-syzkaller #0 PREEMPT(full) 
[  446.385596][T11559] Tainted: [U]=USER
[  446.385607][T11559] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  446.385625][T11559] Call Trace:
[  446.385635][T11559]  <TASK>
[  446.385645][T11559]  dump_stack_lvl+0x16c/0x1f0
[  446.385691][T11559]  should_fail_ex+0x512/0x640
[  446.385731][T11559]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[  446.385782][T11559]  should_failslab+0xc2/0x120
[  446.385815][T11559]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  446.385850][T11559]  ? devinet_init_net+0xeb/0x910
[  446.385891][T11559]  kmemdup_noprof+0x29/0x60
[  446.385925][T11559]  devinet_init_net+0xeb/0x910
[  446.385963][T11559]  ? __pfx_devinet_init_net+0x10/0x10
[  446.385999][T11559]  ops_init+0x1e2/0x5f0
[  446.386038][T11559]  setup_net+0x21e/0x850
[  446.386075][T11559]  ? __pfx_setup_net+0x10/0x10
[  446.386106][T11559]  ? lockdep_init_map_type+0x5c/0x280
[  446.386143][T11559]  ? __pfx_down_read_killable+0x10/0x10
[  446.386174][T11559]  ? debug_mutex_init+0x37/0x70
[  446.386202][T11559]  copy_net_ns+0x2a6/0x5f0
[  446.386243][T11559]  create_new_namespaces+0x3ea/0xad0
[  446.386287][T11559]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  446.386321][T11559]  ksys_unshare+0x45b/0xa40
[  446.386357][T11559]  ? __pfx_ksys_unshare+0x10/0x10
[  446.386391][T11559]  ? xfd_validate_state+0x5d/0x180
[  446.386437][T11559]  ? rcu_is_watching+0x12/0xc0
[  446.386471][T11559]  __x64_sys_unshare+0x31/0x40
[  446.386519][T11559]  do_syscall_64+0xcd/0x230
[  446.386562][T11559]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  446.386588][T11559] RIP: 0033:0x7ff128f8e969
[  446.386608][T11559] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  446.386634][T11559] RSP: 002b:00007ff129db0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  446.386657][T11559] RAX: ffffffffffffffda RBX: 00007ff1291b5fa0 RCX: 00007ff128f8e969
[  446.386675][T11559] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  446.386690][T11559] RBP: 00007ff129010ab1 R08: 0000000000000000 R09: 0000000000000000
[  446.386706][T11559] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  446.386721][T11559] R13: 0000000000000000 R14: 00007ff1291b5fa0 R15: 00007ffebf3f96b8
[  446.386753][T11559]  </TASK>
[  446.627992][    C0] vkms_vblank_simulate: vblank timer overrun
[  447.068044][T11564] ovs_��: entered promiscuous mode
[  451.732055][T11648] FAULT_INJECTION: forcing a failure.
[  451.732055][T11648] name failslab, interval 1, probability 0, space 0, times 0
[  451.831041][T11648] CPU: 1 UID: 0 PID: 11648 Comm: syz.1.1172 Tainted: G     U              6.15.0-rc7-syzkaller #0 PREEMPT(full) 
[  451.831080][T11648] Tainted: [U]=USER
[  451.831088][T11648] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  451.831102][T11648] Call Trace:
[  451.831110][T11648]  <TASK>
[  451.831118][T11648]  dump_stack_lvl+0x16c/0x1f0
[  451.831160][T11648]  should_fail_ex+0x512/0x640
[  451.831197][T11648]  ? __kmalloc_noprof+0xbf/0x510
[  451.831227][T11648]  ? net_alloc_generic+0x1e/0x70
[  451.831259][T11648]  should_failslab+0xc2/0x120
[  451.831289][T11648]  __kmalloc_noprof+0xd2/0x510
[  451.831315][T11648]  ? inc_ucount+0x240/0x2f0
[  451.831351][T11648]  net_alloc_generic+0x1e/0x70
[  451.831383][T11648]  copy_net_ns+0xc6/0x5f0
[  451.831415][T11648]  ? copy_cgroup_ns+0xa4/0x6f0
[  451.831441][T11648]  create_new_namespaces+0x3ea/0xad0
[  451.831476][T11648]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  451.831507][T11648]  ksys_unshare+0x45b/0xa40
[  451.831541][T11648]  ? __pfx_ksys_unshare+0x10/0x10
[  451.831579][T11648]  ? xfd_validate_state+0x5d/0x180
[  451.831604][T11648]  ? rcu_is_watching+0x12/0xc0
[  451.831633][T11648]  __x64_sys_unshare+0x31/0x40
[  451.831664][T11648]  do_syscall_64+0xcd/0x230
[  451.831701][T11648]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  451.831725][T11648] RIP: 0033:0x7f457158e969
[  451.831743][T11648] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  451.831766][T11648] RSP: 002b:00007f457242e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  451.831788][T11648] RAX: ffffffffffffffda RBX: 00007f45717b6080 RCX: 00007f457158e969
[  451.831804][T11648] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  451.831818][T11648] RBP: 00007f4571610ab1 R08: 0000000000000000 R09: 0000000000000000
[  451.831833][T11648] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  451.831847][T11648] R13: 0000000000000000 R14: 00007f45717b6080 R15: 00007ffddb9e8a38
[  451.831880][T11648]  </TASK>
[  452.035163][    C1] vkms_vblank_simulate: vblank timer overrun
[  453.795701][T11661] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  453.801935][T11661] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  453.859795][T11661] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  453.895597][T11661] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  453.998023][T11661] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  454.004143][T11661] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  454.153589][T11661] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  454.215923][   T30] audit: type=1326 audit(4295032521.614:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11677 comm="syz.2.1179" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7ff128f8e969 code=0x0
[  455.295535][ T5838] Bluetooth: hci0: command 0x0406 tx timeout
[  455.846216][ T5838] Bluetooth: hci2: command 0x0406 tx timeout
[  455.925514][ T5838] Bluetooth: hci3: command 0x0406 tx timeout
[  456.015525][ T5838] Bluetooth: hci4: command 0x0c1a tx timeout
[  456.405518][ T5842] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  458.025868][ T5842] Bluetooth: hci3: command 0x0406 tx timeout
[  458.085531][ T5842] Bluetooth: hci4: command 0x0c1a tx timeout
[  459.068239][T11754] FAULT_INJECTION: forcing a failure.
[  459.068239][T11754] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  459.137315][T11754] CPU: 1 UID: 0 PID: 11754 Comm: syz.1.1192 Tainted: G     U              6.15.0-rc7-syzkaller #0 PREEMPT(full) 
[  459.137371][T11754] Tainted: [U]=USER
[  459.137383][T11754] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  459.137402][T11754] Call Trace:
[  459.137414][T11754]  <TASK>
[  459.137427][T11754]  dump_stack_lvl+0x16c/0x1f0
[  459.137483][T11754]  should_fail_ex+0x512/0x640
[  459.137541][T11754]  should_fail_alloc_page+0xe7/0x130
[  459.137590][T11754]  prepare_alloc_pages+0x3c2/0x610
[  459.137643][T11754]  ? rcu_is_watching+0x12/0xc0
[  459.137681][T11754]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[  459.137747][T11754]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  459.137789][T11754]  ? do_raw_spin_lock+0x12c/0x2b0
[  459.137847][T11754]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  459.137899][T11754]  ? find_held_lock+0x2b/0x80
[  459.137944][T11754]  ? __lock_acquire+0xaa4/0x1ba0
[  459.137988][T11754]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  459.138039][T11754]  ? policy_nodemask+0xea/0x4e0
[  459.138085][T11754]  alloc_pages_mpol+0x1fb/0x550
[  459.138131][T11754]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  459.138189][T11754]  folio_alloc_mpol_noprof+0x36/0x2f0
[  459.138240][T11754]  shmem_alloc_folio+0x135/0x160
[  459.138284][T11754]  shmem_alloc_and_add_folio+0x499/0xc20
[  459.138339][T11754]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  459.138386][T11754]  ? shmem_allowable_huge_orders+0xcb/0x2f0
[  459.138438][T11754]  shmem_get_folio_gfp+0x687/0x1530
[  459.138496][T11754]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  459.138544][T11754]  ? filemap_map_pages+0xf6c/0x1680
[  459.138595][T11754]  shmem_fault+0x1fe/0xa30
[  459.138639][T11754]  ? __pfx_shmem_fault+0x10/0x10
[  459.138700][T11754]  ? __pfx_filemap_map_pages+0x10/0x10
[  459.138761][T11754]  __do_fault+0x10a/0x490
[  459.138810][T11754]  do_pte_missing+0x1031/0x3fb0
[  459.138850][T11754]  ? __handle_mm_fault+0x1010/0x2a40
[  459.138894][T11754]  __handle_mm_fault+0x103d/0x2a40
[  459.138944][T11754]  ? __pfx___handle_mm_fault+0x10/0x10
[  459.139008][T11754]  ? find_vma+0xbf/0x140
[  459.139056][T11754]  ? __pfx_find_vma+0x10/0x10
[  459.139112][T11754]  handle_mm_fault+0x3fe/0xad0
[  459.139157][T11754]  do_user_addr_fault+0x7a6/0x1370
[  459.139198][T11754]  ? rcu_is_watching+0x12/0xc0
[  459.139235][T11754]  exc_page_fault+0x5c/0xc0
[  459.139296][T11754]  asm_exc_page_fault+0x26/0x30
[  459.139329][T11754] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  459.139373][T11754] Code: cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 e9 7f 09 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  459.139406][T11754] RSP: 0018:ffffc9000aed78b8 EFLAGS: 00050206
[  459.139433][T11754] RAX: 0000000000000001 RBX: 0000000000001000 RCX: 0000000000001000
[  459.139454][T11754] RDX: 0000000000000000 RSI: 0000000000018000 RDI: ffff88805155a000
[  459.139475][T11754] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed100a2ab5ff
[  459.139496][T11754] R10: ffff88805155afff R11: 0000000000000000 R12: 0000000000018000
[  459.139517][T11754] R13: ffffc9000aed7d38 R14: 0000000000019000 R15: ffff88805155a000
[  459.139563][T11754]  _copy_from_iter+0x391/0x15b0
[  459.139627][T11754]  ? policy_nodemask+0xea/0x4e0
[  459.139669][T11754]  ? __pfx__copy_from_iter+0x10/0x10
[  459.139726][T11754]  ? alloc_pages_mpol+0x25a/0x550
[  459.139772][T11754]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  459.139827][T11754]  copy_page_from_iter+0xa5/0x120
[  459.139889][T11754]  anon_pipe_write+0xbe7/0x1a70
[  459.139945][T11754]  ? __pfx_anon_pipe_write+0x10/0x10
[  459.139982][T11754]  ? event_filter_pid_sched_wakeup_probe_post+0x103/0x270
[  459.140030][T11754]  ? __pfx_autoremove_wake_function+0x10/0x10
[  459.140075][T11754]  ? preempt_schedule_common+0x44/0xc0
[  459.140134][T11754]  do_iter_readv_writev+0x654/0x950
[  459.140193][T11754]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  459.140262][T11754]  ? bpf_lsm_file_permission+0x9/0x10
[  459.140292][T11754]  ? security_file_permission+0x71/0x210
[  459.140341][T11754]  ? rw_verify_area+0xcf/0x680
[  459.140397][T11754]  vfs_writev+0x353/0xdc0
[  459.140441][T11754]  ? __pfx_vfs_writev+0x10/0x10
[  459.140475][T11754]  ? percpu_counter_add_batch+0xb8/0x1f0
[  459.140522][T11754]  ? errseq_sample+0x53/0x70
[  459.140578][T11754]  ? __fget_files+0x20e/0x3c0
[  459.140622][T11754]  ? do_writev+0x295/0x330
[  459.140650][T11754]  do_writev+0x295/0x330
[  459.140681][T11754]  ? __pfx_do_writev+0x10/0x10
[  459.140710][T11754]  ? rcu_is_watching+0x12/0xc0
[  459.140755][T11754]  do_syscall_64+0xcd/0x230
[  459.140811][T11754]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  459.140846][T11754] RIP: 0033:0x7f457158e969
[  459.140873][T11754] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  459.140905][T11754] RSP: 002b:00007f457244f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  459.140936][T11754] RAX: ffffffffffffffda RBX: 00007f45717b5fa0 RCX: 00007f457158e969
[  459.140987][T11754] RDX: 0000000000000001 RSI: 0000200000000100 RDI: 0000000000000001
[  459.141008][T11754] RBP: 00007f4571610ab1 R08: 0000000000000000 R09: 0000000000000000
[  459.141028][T11754] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  459.141047][T11754] R13: 0000000000000000 R14: 00007f45717b5fa0 R15: 00007ffddb9e8a38
[  459.141090][T11754]  </TASK>
[  459.657592][    C1] vkms_vblank_simulate: vblank timer overrun
[  460.165552][ T5842] Bluetooth: hci4: command 0x0c1a tx timeout
[  460.249800][T11767] sysfs_service_op_show: Client not running :-5:
[  460.898731][T11794] capability: warning: `syz.0.1199' uses deprecated v2 capabilities in a way that may be insecure
[  461.410448][T11801] can: request_module (can-proto-3) failed.
[  461.513665][   T30] audit: type=1326 audit(4295032528.924:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11790 comm="syz.2.1200" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7ff128f8e969 code=0x0
[  462.254673][T11816] netlink: 186 bytes leftover after parsing attributes in process `syz.0.1203'.
[  462.326702][T11818] ACPI: Can not change Invalid GPE/Fixed Event status
[  466.065417][T11867] netlink: 330 bytes leftover after parsing attributes in process `syz.2.1212'.
[  466.294598][T11875] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1214'.
[  467.118499][T11900] i2c i2c-0: Frontend requested software zigzag, but didn't set the frequency step size
[  469.106904][T11920] zswap: compressor  not available
[  469.353551][T11920] Setting dangerous option i915.mitigations - tainting kernel
[  469.380507][T11918] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  469.837473][T11943] netlink: 'syz.1.1228': attribute type 1 has an invalid length.
[  469.856938][T11942] netlink: 'syz.1.1228': attribute type 1 has an invalid length.
[  470.087169][   T30] audit: type=1800 audit(4295032537.504:26): pid=11948 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1225" name="SYSV00000400" dev="tmpfs" ino=0 res=0 errno=0
[  470.653989][T11963] netlink: zone id is out of range
[  473.732169][T12009] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1240'.
[  473.741700][T12009] nbd: must specify at least one socket
[  473.928305][T12016] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1241'.
[  473.961665][T12015] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1241'.
[  474.239699][T12015] bond0: (slave bond_slave_1): Releasing backup interface
[  474.519667][T12025] FAULT_INJECTION: forcing a failure.
[  474.519667][T12025] name failslab, interval 1, probability 0, space 0, times 0
[  474.574986][T12025] CPU: 0 UID: 0 PID: 12025 Comm: syz.0.1243 Tainted: G     U              6.15.0-rc7-syzkaller #0 PREEMPT(full) 
[  474.575041][T12025] Tainted: [U]=USER
[  474.575052][T12025] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  474.575071][T12025] Call Trace:
[  474.575081][T12025]  <TASK>
[  474.575094][T12025]  dump_stack_lvl+0x16c/0x1f0
[  474.575149][T12025]  should_fail_ex+0x512/0x640
[  474.575198][T12025]  ? __kmalloc_noprof+0xbf/0x510
[  474.575238][T12025]  ? devlink_fmsg_put_name+0xf0/0x3f0
[  474.575275][T12025]  should_failslab+0xc2/0x120
[  474.575321][T12025]  __kmalloc_noprof+0xd2/0x510
[  474.575370][T12025]  devlink_fmsg_put_name+0xf0/0x3f0
[  474.575416][T12025]  devlink_fmsg_bool_pair_put+0xff/0x2f0
[  474.575460][T12025]  ? __pfx_devlink_fmsg_bool_pair_put+0x10/0x10
[  474.575503][T12025]  ? __kasan_kmalloc+0xaa/0xb0
[  474.575540][T12025]  ? devlink_fmsg_nest_common.part.0+0xcd/0x1e0
[  474.575590][T12025]  nsim_dev_dummy_fmsg_put+0xe7/0x1e0
[  474.575631][T12025]  devlink_health_do_dump+0x240/0x620
[  474.575681][T12025]  devlink_health_report+0x3c9/0x9c0
[  474.575733][T12025]  ? __pfx_devlink_health_report+0x10/0x10
[  474.575780][T12025]  ? _copy_from_user+0x59/0xd0
[  474.575860][T12025]  nsim_dev_health_break_write+0x166/0x210
[  474.575900][T12025]  ? __pfx_nsim_dev_health_break_write+0x10/0x10
[  474.575955][T12025]  full_proxy_write+0x13f/0x200
[  474.575998][T12025]  vfs_write+0x25f/0x1180
[  474.576025][T12025]  ? __pfx_full_proxy_write+0x10/0x10
[  474.576066][T12025]  ? __pfx___mutex_lock+0x10/0x10
[  474.576115][T12025]  ? __pfx_vfs_write+0x10/0x10
[  474.576175][T12025]  ? __fget_files+0x20e/0x3c0
[  474.576220][T12025]  ksys_write+0x12a/0x240
[  474.576253][T12025]  ? __pfx_ksys_write+0x10/0x10
[  474.576284][T12025]  ? rcu_is_watching+0x12/0xc0
[  474.576330][T12025]  do_syscall_64+0xcd/0x230
[  474.576385][T12025]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  474.576419][T12025] RIP: 0033:0x7f3eae78e969
[  474.576447][T12025] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  474.576479][T12025] RSP: 002b:00007f3eaf5dd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  474.576511][T12025] RAX: ffffffffffffffda RBX: 00007f3eae9b5fa0 RCX: 00007f3eae78e969
[  474.576533][T12025] RDX: 00000000000001ff RSI: 0000000000000000 RDI: 0000000000000005
[  474.576552][T12025] RBP: 00007f3eae810ab1 R08: 0000000000000000 R09: 0000000000000000
[  474.576573][T12025] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  474.576593][T12025] R13: 0000000000000000 R14: 00007f3eae9b5fa0 R15: 00007ffeb620b588
[  474.576638][T12025]  </TASK>
[  475.214101][T12032] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  475.880217][T12053] netlink: zone id is out of range
[  476.660956][T12068] HfR: entered promiscuous mode
[  476.776874][T12069] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1251'.
[  477.648236][T12088] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1255'.
[  479.937778][T12094] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1256'.
[  480.512178][   T30] audit: type=1804 audit(4295032547.924:27): pid=12128 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1262" name="/newroot/318/file0" dev="tmpfs" ino=1681 res=1 errno=0
[  480.573882][   T30] audit: type=1800 audit(4295032547.924:28): pid=12128 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1262" name="file0" dev="tmpfs" ino=1681 res=0 errno=0
[  480.887868][T12143] netlink: 'syz.0.1266': attribute type 4 has an invalid length.
[  485.470725][T12215] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1290'.
[  485.490393][T12215] bridge0: port 3(vlan1) entered disabled state
[  485.830732][T12215] vlan1 (unregistering): left allmulticast mode
[  485.873408][T12215] veth0_vlan (unregistering): left allmulticast mode
[  485.904277][T12215] vlan1 (unregistering): left promiscuous mode
[  485.935548][T12215] bridge0: port 3(vlan1) entered disabled state
[  486.374711][T12229] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1284'.
[  487.003351][T12231] FAULT_INJECTION: forcing a failure.
[  487.003351][T12231] name failslab, interval 1, probability 0, space 0, times 0
[  487.017963][T12231] CPU: 1 UID: 0 PID: 12231 Comm: syz.1.1286 Tainted: G     U              6.15.0-rc7-syzkaller #0 PREEMPT(full) 
[  487.018018][T12231] Tainted: [U]=USER
[  487.018030][T12231] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  487.018051][T12231] Call Trace:
[  487.018062][T12231]  <TASK>
[  487.018074][T12231]  dump_stack_lvl+0x16c/0x1f0
[  487.018132][T12231]  should_fail_ex+0x512/0x640
[  487.018183][T12231]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  487.018223][T12231]  should_failslab+0xc2/0x120
[  487.018268][T12231]  __kmalloc_cache_noprof+0x6a/0x3e0
[  487.018302][T12231]  ? resv_map_alloc+0x7e/0x400
[  487.018351][T12231]  resv_map_alloc+0x7e/0x400
[  487.018398][T12231]  hugetlbfs_get_inode+0x33f/0x730
[  487.018448][T12231]  hugetlb_file_setup+0x15b/0x620
[  487.018497][T12231]  ksys_mmap_pgoff+0x189/0x5c0
[  487.018549][T12231]  ? rcu_is_watching+0x12/0xc0
[  487.018587][T12231]  __x64_sys_mmap+0x125/0x190
[  487.018625][T12231]  do_syscall_64+0xcd/0x230
[  487.018680][T12231]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  487.018714][T12231] RIP: 0033:0x7f457158e969
[  487.018740][T12231] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  487.018800][T12231] RSP: 002b:00007f457244f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  487.018838][T12231] RAX: ffffffffffffffda RBX: 00007f45717b5fa0 RCX: 00007f457158e969
[  487.018861][T12231] RDX: 0000000000000002 RSI: 0000000000200006 RDI: 0000000000000000
[  487.018881][T12231] RBP: 00007f4571610ab1 R08: 0000000000000602 R09: 0000300000000000
[  487.018902][T12231] R10: 0000000000040eb1 R11: 0000000000000246 R12: 0000000000000000
[  487.018923][T12231] R13: 0000000000000000 R14: 00007f45717b5fa0 R15: 00007ffddb9e8a38
[  487.018966][T12231]  </TASK>
[  487.201609][    C1] vkms_vblank_simulate: vblank timer overrun
[  489.116758][T12264] can: request_module (can-proto-3) failed.
[  489.869102][   T30] audit: type=1326 audit(4295032557.244:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12257 comm="syz.4.1293" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7facd6d8e969 code=0x0
[  491.069612][T12292] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1297'.
[  491.926319][T12303] bridge0: port 3(vlan1) entered blocking state
[  491.974751][T12303] bridge0: port 3(vlan1) entered disabled state
[  491.992650][T12303] vlan1: entered allmulticast mode
[  492.035746][T12303] veth0_vlan: entered allmulticast mode
[  492.056617][T12303] vlan1: entered promiscuous mode
[  492.076544][T12303] bridge0: port 3(vlan1) entered blocking state
[  492.083032][T12303] bridge0: port 3(vlan1) entered forwarding state
[  492.408091][T12309] tc_dump_action: action bad kind
[  492.430330][T12309] bcache: register_bcache() error : failed to open device
[  492.617049][T12322] FAULT_INJECTION: forcing a failure.
[  492.617049][T12322] name failslab, interval 1, probability 0, space 0, times 0
[  492.632679][T12322] CPU: 0 UID: 0 PID: 12322 Comm: syz.0.1305 Tainted: G     U              6.15.0-rc7-syzkaller #0 PREEMPT(full) 
[  492.632732][T12322] Tainted: [U]=USER
[  492.632742][T12322] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  492.632761][T12322] Call Trace:
[  492.632771][T12322]  <TASK>
[  492.632784][T12322]  dump_stack_lvl+0x16c/0x1f0
[  492.632838][T12322]  should_fail_ex+0x512/0x640
[  492.632887][T12322]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  492.632930][T12322]  should_failslab+0xc2/0x120
[  492.632973][T12322]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  492.633012][T12322]  ? dup_fd+0x4e/0xb90
[  492.633048][T12322]  dup_fd+0x4e/0xb90
[  492.633076][T12322]  ? __pfx_audit_alloc+0x10/0x10
[  492.633129][T12322]  ? apparmor_task_alloc+0x2c2/0x3b0
[  492.633170][T12322]  copy_process+0x25c1/0x91b0
[  492.633210][T12322]  ? find_held_lock+0x2b/0x80
[  492.633243][T12322]  ? schedule+0x2d7/0x3a0
[  492.633307][T12322]  ? __pfx_copy_process+0x10/0x10
[  492.633347][T12322]  ? __pfx___futex_wait+0x10/0x10
[  492.633408][T12322]  ? __pfx_futex_wake_mark+0x10/0x10
[  492.633474][T12322]  kernel_clone+0xfc/0x960
[  492.633519][T12322]  ? __pfx_kernel_clone+0x10/0x10
[  492.633585][T12322]  __do_sys_clone+0xce/0x120
[  492.633628][T12322]  ? __pfx___do_sys_clone+0x10/0x10
[  492.633692][T12322]  ? rcu_is_watching+0x12/0xc0
[  492.633736][T12322]  do_syscall_64+0xcd/0x230
[  492.633789][T12322]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  492.633821][T12322] RIP: 0033:0x7f3eae78e969
[  492.633846][T12322] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  492.633877][T12322] RSP: 002b:00007f3eaf5dcfe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  492.633907][T12322] RAX: ffffffffffffffda RBX: 00007f3eae9b5fa0 RCX: 00007f3eae78e969
[  492.633928][T12322] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000011
[  492.633947][T12322] RBP: 00007f3eae810ab1 R08: 0000000000000000 R09: 0000000000000000
[  492.633967][T12322] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  492.633986][T12322] R13: 0000000000000000 R14: 00007f3eae9b5fa0 R15: 00007ffeb620b588
[  492.634028][T12322]  </TASK>
[  495.084688][T12368] FAULT_INJECTION: forcing a failure.
[  495.084688][T12368] name failslab, interval 1, probability 0, space 0, times 0
[  495.103050][T12368] CPU: 1 UID: 0 PID: 12368 Comm: syz.0.1313 Tainted: G     U              6.15.0-rc7-syzkaller #0 PREEMPT(full) 
[  495.103102][T12368] Tainted: [U]=USER
[  495.103112][T12368] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  495.103130][T12368] Call Trace:
[  495.103140][T12368]  <TASK>
[  495.103152][T12368]  dump_stack_lvl+0x16c/0x1f0
[  495.103207][T12368]  should_fail_ex+0x512/0x640
[  495.103245][T12368]  ? __kmalloc_noprof+0xbf/0x510
[  495.103275][T12368]  ? ops_init+0x77/0x5f0
[  495.103305][T12368]  should_failslab+0xc2/0x120
[  495.103337][T12368]  __kmalloc_noprof+0xd2/0x510
[  495.103373][T12368]  ops_init+0x77/0x5f0
[  495.103415][T12368]  setup_net+0x21e/0x850
[  495.103451][T12368]  ? __pfx_setup_net+0x10/0x10
[  495.103482][T12368]  ? lockdep_init_map_type+0x5c/0x280
[  495.103518][T12368]  ? __pfx_down_read_killable+0x10/0x10
[  495.103548][T12368]  ? debug_mutex_init+0x37/0x70
[  495.103575][T12368]  copy_net_ns+0x2a6/0x5f0
[  495.103613][T12368]  create_new_namespaces+0x3ea/0xad0
[  495.103649][T12368]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  495.103692][T12368]  ksys_unshare+0x45b/0xa40
[  495.103726][T12368]  ? __pfx_ksys_unshare+0x10/0x10
[  495.103758][T12368]  ? xfd_validate_state+0x5d/0x180
[  495.103782][T12368]  ? rcu_is_watching+0x12/0xc0
[  495.103813][T12368]  __x64_sys_unshare+0x31/0x40
[  495.103846][T12368]  do_syscall_64+0xcd/0x230
[  495.103886][T12368]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  495.103910][T12368] RIP: 0033:0x7f3eae78e969
[  495.103929][T12368] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  495.103952][T12368] RSP: 002b:00007f3eaf59b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  495.103974][T12368] RAX: ffffffffffffffda RBX: 00007f3eae9b6160 RCX: 00007f3eae78e969
[  495.103990][T12368] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  495.104004][T12368] RBP: 00007f3eae810ab1 R08: 0000000000000000 R09: 0000000000000000
[  495.104019][T12368] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  495.104033][T12368] R13: 0000000000000000 R14: 00007f3eae9b6160 R15: 00007ffeb620b588
[  495.104063][T12368]  </TASK>
[  495.580488][T12370] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  495.595732][T12370] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  495.649419][T12370] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  495.687208][T12370] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  497.606654][ T5842] Bluetooth: hci2: command 0x0406 tx timeout
[  497.606773][ T5838] Bluetooth: hci0: command 0x0406 tx timeout
[  497.685804][ T5838] Bluetooth: hci3: command 0x0406 tx timeout
[  497.731710][T12420] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1328'.
[  497.765426][ T5838] Bluetooth: hci4: command 0x0c1a tx timeout
[  498.029522][T12423] FAULT_INJECTION: forcing a failure.
[  498.029522][T12423] name failslab, interval 1, probability 0, space 0, times 0
[  498.043431][T12423] CPU: 1 UID: 0 PID: 12423 Comm: syz.1.1327 Tainted: G     U              6.15.0-rc7-syzkaller #0 PREEMPT(full) 
[  498.043486][T12423] Tainted: [U]=USER
[  498.043497][T12423] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  498.043516][T12423] Call Trace:
[  498.043528][T12423]  <TASK>
[  498.043541][T12423]  dump_stack_lvl+0x16c/0x1f0
[  498.043598][T12423]  should_fail_ex+0x512/0x640
[  498.043655][T12423]  should_failslab+0xc2/0x120
[  498.043692][T12423]  __kmalloc_cache_noprof+0x6a/0x3e0
[  498.043718][T12423]  ? cfmuxl_create+0x40/0x210
[  498.043758][T12423]  ? __pfx_caif_init_net+0x10/0x10
[  498.043793][T12423]  cfmuxl_create+0x40/0x210
[  498.043830][T12423]  cfcnfg_create+0x78/0x500
[  498.043865][T12423]  ? debug_mutex_init+0x37/0x70
[  498.043889][T12423]  ? __pfx_caif_init_net+0x10/0x10
[  498.043923][T12423]  caif_init_net+0x7d/0xe0
[  498.043959][T12423]  ops_init+0x1e2/0x5f0
[  498.043995][T12423]  setup_net+0x21e/0x850
[  498.044031][T12423]  ? __pfx_setup_net+0x10/0x10
[  498.044062][T12423]  ? lockdep_init_map_type+0x5c/0x280
[  498.044096][T12423]  ? __pfx_down_read_killable+0x10/0x10
[  498.044125][T12423]  ? debug_mutex_init+0x37/0x70
[  498.044152][T12423]  copy_net_ns+0x2a6/0x5f0
[  498.044191][T12423]  create_new_namespaces+0x3ea/0xad0
[  498.044234][T12423]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  498.044266][T12423]  ksys_unshare+0x45b/0xa40
[  498.044302][T12423]  ? __pfx_ksys_unshare+0x10/0x10
[  498.044337][T12423]  ? xfd_validate_state+0x5d/0x180
[  498.044362][T12423]  ? rcu_is_watching+0x12/0xc0
[  498.044394][T12423]  __x64_sys_unshare+0x31/0x40
[  498.044428][T12423]  do_syscall_64+0xcd/0x230
[  498.044469][T12423]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  498.044493][T12423] RIP: 0033:0x7f457158e969
[  498.044513][T12423] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  498.044537][T12423] RSP: 002b:00007f457240d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  498.044560][T12423] RAX: ffffffffffffffda RBX: 00007f45717b6160 RCX: 00007f457158e969
[  498.044577][T12423] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  498.044591][T12423] RBP: 00007f4571610ab1 R08: 0000000000000000 R09: 0000000000000000
[  498.044606][T12423] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  498.044621][T12423] R13: 0000000000000000 R14: 00007f45717b6160 R15: 00007ffddb9e8a38
[  498.044652][T12423]  </TASK>
[  498.977452][T12434] tc_dump_action: action bad kind
[  499.135092][T12430] bcache: register_bcache() error : failed to open device
[  500.827462][T12445] FAULT_INJECTION: forcing a failure.
[  500.827462][T12445] name failslab, interval 1, probability 0, space 0, times 0
[  500.862566][T12445] CPU: 0 UID: 0 PID: 12445 Comm: syz.2.1334 Tainted: G     U              6.15.0-rc7-syzkaller #0 PREEMPT(full) 
[  500.862619][T12445] Tainted: [U]=USER
[  500.862631][T12445] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  500.862650][T12445] Call Trace:
[  500.862661][T12445]  <TASK>
[  500.862672][T12445]  dump_stack_lvl+0x16c/0x1f0
[  500.862738][T12445]  should_fail_ex+0x512/0x640
[  500.862789][T12445]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  500.862834][T12445]  should_failslab+0xc2/0x120
[  500.862878][T12445]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  500.862920][T12445]  ? dup_fd+0x4e/0xb90
[  500.862955][T12445]  dup_fd+0x4e/0xb90
[  500.862985][T12445]  ? __pfx_audit_alloc+0x10/0x10
[  500.863041][T12445]  ? apparmor_task_alloc+0x2c2/0x3b0
[  500.863083][T12445]  copy_process+0x25c1/0x91b0
[  500.863124][T12445]  ? find_held_lock+0x2b/0x80
[  500.863158][T12445]  ? schedule+0x2d7/0x3a0
[  500.863219][T12445]  ? __pfx_copy_process+0x10/0x10
[  500.863257][T12445]  ? __pfx___futex_wait+0x10/0x10
[  500.863308][T12445]  ? __pfx_futex_wake_mark+0x10/0x10
[  500.863372][T12445]  kernel_clone+0xfc/0x960
[  500.863414][T12445]  ? __pfx_kernel_clone+0x10/0x10
[  500.863480][T12445]  __do_sys_clone+0xce/0x120
[  500.863523][T12445]  ? __pfx___do_sys_clone+0x10/0x10
[  500.863586][T12445]  ? rcu_is_watching+0x12/0xc0
[  500.863631][T12445]  do_syscall_64+0xcd/0x230
[  500.863681][T12445]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  500.863724][T12445] RIP: 0033:0x7ff128f8e969
[  500.863753][T12445] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  500.863785][T12445] RSP: 002b:00007ff129daffe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  500.863816][T12445] RAX: ffffffffffffffda RBX: 00007ff1291b5fa0 RCX: 00007ff128f8e969
[  500.863838][T12445] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000011
[  500.863857][T12445] RBP: 00007ff129010ab1 R08: 0000000000000000 R09: 0000000000000000
[  500.863877][T12445] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  500.863896][T12445] R13: 0000000000000000 R14: 00007ff1291b5fa0 R15: 00007ffebf3f96b8
[  500.863938][T12445]  </TASK>
[  501.080037][    C0] vkms_vblank_simulate: vblank timer overrun
[  502.080666][T12457] random: crng reseeded on system resumption
[  502.525156][T12468] ALSA: mixer_oss: invalid OSS volume ''
[  504.442316][T12500] vivid-003: =================  START STATUS  =================
[  504.515102][T12500] vivid-003: Radio HW Seek Mode: Bounded
[  504.610461][T12500] vivid-003: Radio Programmable HW Seek: false
[  504.701992][T12500] vivid-003: RDS Rx I/O Mode: Block I/O
[  504.766507][T12500] vivid-003: Generate RBDS Instead of RDS: false
[  504.773069][T12500] vivid-003: RDS Reception: true
[  504.778356][T12500] vivid-003: RDS Program Type: 0 inactive
[  504.784672][T12500] vivid-003: RDS PS Name:  inactive
[  504.790273][T12500] vivid-003: RDS Radio Text:  inactive
[  504.795997][T12500] vivid-003: RDS Traffic Announcement: false inactive
[  504.803029][T12500] vivid-003: RDS Traffic Program: false inactive
[  504.810528][T12500] vivid-003: RDS Music: false inactive
[  504.816603][T12500] vivid-003: ==================  END STATUS  ==================
[  505.703029][T12525] bridge0: port 2(vlan1) entered blocking state
[  505.721868][T12525] bridge0: port 2(vlan1) entered disabled state
[  505.745641][T12525] vlan1: entered allmulticast mode
[  505.751011][T12525] veth0_vlan: entered allmulticast mode
[  505.795621][T12525] vlan1: entered promiscuous mode
[  505.801711][T12525] bridge0: port 2(vlan1) entered blocking state
[  505.808185][T12525] bridge0: port 2(vlan1) entered forwarding state
[  506.210023][T12538] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input20
[  506.583377][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  506.589893][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  506.719760][T12543] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1350'.
[  507.685386][T12553] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1353'.
[  508.768496][T12580] FAULT_INJECTION: forcing a failure.
[  508.768496][T12580] name failslab, interval 1, probability 0, space 0, times 0
[  508.800556][T12580] CPU: 1 UID: 0 PID: 12580 Comm: syz.1.1360 Tainted: G     U              6.15.0-rc7-syzkaller #0 PREEMPT(full) 
[  508.800608][T12580] Tainted: [U]=USER
[  508.800619][T12580] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  508.800638][T12580] Call Trace:
[  508.800648][T12580]  <TASK>
[  508.800660][T12580]  dump_stack_lvl+0x16c/0x1f0
[  508.800716][T12580]  should_fail_ex+0x512/0x640
[  508.800767][T12580]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  508.800804][T12580]  should_failslab+0xc2/0x120
[  508.800847][T12580]  __kmalloc_cache_noprof+0x6a/0x3e0
[  508.800878][T12580]  ? snd_pcm_hw_param_first+0x30d/0x6f0
[  508.800928][T12580]  ? snd_pcm_hw_param_near.constprop.0+0x72f/0x8e0
[  508.800980][T12580]  ? snd_pcm_hw_param_near.constprop.0+0xbc/0x8e0
[  508.801040][T12580]  snd_pcm_hw_param_near.constprop.0+0xbc/0x8e0
[  508.801112][T12580]  ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10
[  508.801166][T12580]  ? __asan_memset+0x23/0x50
[  508.801195][T12580]  ? calc_src_frames.isra.0+0x187/0x1d0
[  508.801227][T12580]  ? calc_dst_frames.constprop.0.isra.0+0x103/0x130
[  508.801271][T12580]  snd_pcm_oss_change_params_locked+0x13f9/0x3b40
[  508.801349][T12580]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  508.801408][T12580]  ? snd_pcm_oss_sync+0x30c/0x840
[  508.801489][T12580]  snd_pcm_oss_make_ready_locked+0xb7/0x130
[  508.801545][T12580]  snd_pcm_oss_sync+0x32e/0x840
[  508.801602][T12580]  ? __pfx_snd_pcm_oss_release+0x10/0x10
[  508.801653][T12580]  snd_pcm_oss_release+0x28b/0x310
[  508.801709][T12580]  ? __pfx_snd_pcm_oss_release+0x10/0x10
[  508.801762][T12580]  __fput+0x402/0xb70
[  508.801815][T12580]  task_work_run+0x150/0x240
[  508.801870][T12580]  ? __pfx_task_work_run+0x10/0x10
[  508.801924][T12580]  ? __pfx___do_sys_close_range+0x10/0x10
[  508.801958][T12580]  ? rcu_is_watching+0x12/0xc0
[  508.801999][T12580]  syscall_exit_to_user_mode+0x27b/0x2a0
[  508.802058][T12580]  do_syscall_64+0xda/0x230
[  508.802121][T12580]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  508.802155][T12580] RIP: 0033:0x7f457158e969
[  508.802181][T12580] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  508.802213][T12580] RSP: 002b:00007f457244f038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  508.802245][T12580] RAX: 0000000000000000 RBX: 00007f45717b5fa0 RCX: 00007f457158e969
[  508.802268][T12580] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  508.802287][T12580] RBP: 00007f4571610ab1 R08: 0000000000000000 R09: 0000000000000000
[  508.802308][T12580] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  508.802328][T12580] R13: 0000000000000000 R14: 00007f45717b5fa0 R15: 00007ffddb9e8a38
[  508.802372][T12580]  </TASK>
[  509.279566][T12582] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1361'.
[  509.502796][T12591] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1363'.
[  509.539475][T12591] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  509.556083][T12591] batman_adv: batadv0: Removing interface: batadv_slave_0
[  509.578117][T12591] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  509.597797][T12591] batman_adv: batadv0: Removing interface: batadv_slave_1
[  509.883210][T12603] netlink: zone id is out of range
[  510.586466][T12611] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input21
[  511.308725][T12628] ptrace attach of "./syz-executor exec"[5835] was attempted by "./syz-executor exec"[12628]
[  511.651836][T12624] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  513.346238][T12650] random: crng reseeded on system resumption
[  514.300143][T12671] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input22
[  514.628582][T12677] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1379'.
[  515.546434][T12691] ICMPv6: process `syz.1.1383' is using deprecated sysctl (syscall) net.ipv6.neigh.veth0_to_bridge.base_reachable_time - use net.ipv6.neigh.veth0_to_bridge.base_reachable_time_ms instead
[  518.056080][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  518.062471][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  518.336342][T12728] ALSA: mixer_oss: invalid OSS volume ''
[  518.730072][T12735] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1394'.
[  518.785696][T12735] netlink: 302 bytes leftover after parsing attributes in process `syz.0.1394'.
[  518.940747][T12737] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1395'.
[  518.977625][T12737] bridge0: port 4(vlan1) entered disabled state
[  519.360435][T12746] i2c i2c-0: new_device: Can't parse I2C address
[  520.367959][T12774] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1403'.
[  520.378684][T12774] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[  520.845019][T12737] vlan1 (unregistering): left allmulticast mode
[  520.845058][T12737] vlan1 (unregistering): left promiscuous mode
[  520.845176][T12737] bridge0: port 4(vlan1) entered disabled state
[  522.856119][T12797] ALSA: mixer_oss: invalid OSS volume ''
[  523.749126][T12818] Invalid ELF header magic: != ELF
[  523.765551][T12816] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1408'.
[  523.776711][T12816] netlink: zone id is out of range
[  523.971330][T12824] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1413'.
[  524.005740][T12824] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[  524.815929][T12839] openvswitch: netlink: Flow actions attr not present in new flow.
[  526.832994][T12857] kexec: Could not allocate control_code_buffer
[  527.122341][T12868] pty pty171: ldisc open failed (-12), clearing slot 171
[  527.807501][T12871] ptrace attach of "./syz-executor exec"[5837] was attempted by "./syz-executor exec"[12871]
[  528.137923][T12881] bridge0: port 3(netdevsim1) entered blocking state
[  528.245696][T12881] bridge0: port 3(netdevsim1) entered disabled state
[  528.252637][T12881] netdevsim netdevsim0 netdevsim1: entered allmulticast mode
[  528.346467][T12881] netdevsim netdevsim0 netdevsim1: entered promiscuous mode
[  528.436210][T12881] bridge0: port 3(netdevsim1) entered blocking state
[  528.443089][T12881] bridge0: port 3(netdevsim1) entered forwarding state
[  528.487555][T12888] lo: entered allmulticast mode
[  528.657692][T12890] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  528.664132][T12890] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  528.762661][T12889] lo: left allmulticast mode
[  530.432367][   T30] audit: type=1326 audit(4295032597.844:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12911 comm="syz.2.1430" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7ff128f8e969 code=0x0
[  531.054045][T12926] netlink: 492 bytes leftover after parsing attributes in process `syz.0.1432'.
[  532.526417][T12951] netlink: zone id is out of range
[  532.883727][T12949] FAULT_INJECTION: forcing a failure.
[  532.883727][T12949] name failslab, interval 1, probability 0, space 0, times 0
[  532.910589][T12949] CPU: 1 UID: 0 PID: 12949 Comm: syz.4.1436 Tainted: G     U              6.15.0-rc7-syzkaller #0 PREEMPT(full) 
[  532.910643][T12949] Tainted: [U]=USER
[  532.910654][T12949] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  532.910672][T12949] Call Trace:
[  532.910683][T12949]  <TASK>
[  532.910695][T12949]  dump_stack_lvl+0x16c/0x1f0
[  532.910752][T12949]  should_fail_ex+0x512/0x640
[  532.910804][T12949]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  532.910842][T12949]  should_failslab+0xc2/0x120
[  532.910885][T12949]  __kmalloc_cache_noprof+0x6a/0x3e0
[  532.910919][T12949]  ? append_filter_err+0x41f/0x5e0
[  532.910952][T12949]  ? apply_subsystem_event_filter+0x4c6/0x1450
[  532.910997][T12949]  apply_subsystem_event_filter+0x4c6/0x1450
[  532.911050][T12949]  ? __pfx_apply_subsystem_event_filter+0x10/0x10
[  532.911104][T12949]  ? _copy_from_user+0x59/0xd0
[  532.911162][T12949]  subsystem_filter_write+0x95/0x120
[  532.911207][T12949]  vfs_write+0x25f/0x1180
[  532.911246][T12949]  ? __pfx_subsystem_filter_write+0x10/0x10
[  532.911294][T12949]  ? __pfx___mutex_lock+0x10/0x10
[  532.911345][T12949]  ? __pfx_vfs_write+0x10/0x10
[  532.911393][T12949]  ? __fget_files+0x20e/0x3c0
[  532.911445][T12949]  ksys_write+0x12a/0x240
[  532.911477][T12949]  ? __pfx_ksys_write+0x10/0x10
[  532.911509][T12949]  ? rcu_is_watching+0x12/0xc0
[  532.911556][T12949]  do_syscall_64+0xcd/0x230
[  532.911610][T12949]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  532.911644][T12949] RIP: 0033:0x7facd6d8e969
[  532.911670][T12949] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  532.911702][T12949] RSP: 002b:00007facd7caa038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  532.911734][T12949] RAX: ffffffffffffffda RBX: 00007facd6fb5fa0 RCX: 00007facd6d8e969
[  532.911756][T12949] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000004
[  532.911776][T12949] RBP: 00007facd6e10ab1 R08: 0000000000000000 R09: 0000000000000000
[  532.911797][T12949] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  532.911817][T12949] R13: 0000000000000000 R14: 00007facd6fb5fa0 R15: 00007fffa57132a8
[  532.911861][T12949]  </TASK>
[  534.688124][T12974] netlink: 93 bytes leftover after parsing attributes in process `syz.2.1440'.
[  536.153672][T12998] Invalid ELF header magic: != ELF
[  538.551624][T13035] netlink: zone id is out of range
[  541.323910][T13087] can: request_module (can-proto-3) failed.
[  541.832276][T13089] netlink: zone id is out of range
[  541.945413][T13099] block ram8: the capability attribute has been deprecated.
[  543.531635][T13139] zswap: compressor Ȯ9Q��z%;0*l��H`Bk�j�wj�ӳ<85��'.Y[�`��2�Y$�`�Yv�gִ�q�"b%�z�N[O	EiF�i�
�(Sh��3Kx�>ԝ�RS=��kH�ɟ���{�?B����b��ޝ4)�>��� not available
[  543.763422][T13143] netlink: zone id is out of range
[  543.960696][T13148] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1476'.
[  545.301057][T13173] netlink: zone id is out of range
[  545.578512][ T5838] Bluetooth: hci2: ISO packet for unknown connection handle 0
[  545.698965][T13196] netlink: 330 bytes leftover after parsing attributes in process `syz.2.1485'.
[  545.845566][T13196] : renamed from bond0 (while UP)
[  546.748985][T13220] random: crng reseeded on system resumption
[  546.814827][T13211] netlink: zone id is out of range
[  548.056724][T13247] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  549.354019][T13273] netlink: zone id is out of range
[  550.369178][T13285] FAULT_INJECTION: forcing a failure.
[  550.369178][T13285] name failslab, interval 1, probability 0, space 0, times 0
[  550.427496][T13285] CPU: 0 UID: 0 PID: 13285 Comm: syz.0.1506 Tainted: G     U              6.15.0-rc7-syzkaller #0 PREEMPT(full) 
[  550.427547][T13285] Tainted: [U]=USER
[  550.427559][T13285] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  550.427578][T13285] Call Trace:
[  550.427588][T13285]  <TASK>
[  550.427600][T13285]  dump_stack_lvl+0x16c/0x1f0
[  550.427656][T13285]  should_fail_ex+0x512/0x640
[  550.427701][T13285]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  550.427748][T13285]  should_failslab+0xc2/0x120
[  550.427791][T13285]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  550.427832][T13285]  ? __kernfs_new_node+0xd2/0x8a0
[  550.427871][T13285]  __kernfs_new_node+0xd2/0x8a0
[  550.427909][T13285]  ? __pfx___kernfs_new_node+0x10/0x10
[  550.427953][T13285]  ? find_held_lock+0x2b/0x80
[  550.427987][T13285]  ? kernfs_root+0xee/0x2a0
[  550.428034][T13285]  kernfs_new_node+0x13c/0x1e0
[  550.428081][T13285]  __kernfs_create_file+0x53/0x350
[  550.428131][T13285]  sysfs_add_file_mode_ns+0x207/0x3c0
[  550.428192][T13285]  internal_create_group+0x578/0xf30
[  550.428237][T13285]  ? __pfx_internal_create_group+0x10/0x10
[  550.428278][T13285]  ? kernfs_create_link+0x1bd/0x240
[  550.428330][T13285]  internal_create_groups+0x9d/0x150
[  550.428366][T13285]  device_add+0x77f/0x1a70
[  550.428417][T13285]  ? __pfx_device_add+0x10/0x10
[  550.428463][T13285]  ? lockdep_init_map_type+0x5c/0x280
[  550.428510][T13285]  ? __init_waitqueue_head+0xca/0x150
[  550.428551][T13285]  netdev_register_kobject+0x182/0x3a0
[  550.428605][T13285]  register_netdevice+0x13dc/0x2270
[  550.428658][T13285]  ? idr_alloc+0xdd/0x130
[  550.428702][T13285]  ? __pfx_register_netdevice+0x10/0x10
[  550.428759][T13285]  ppp_dev_configure+0x99b/0xc80
[  550.428814][T13285]  ppp_ioctl+0x17e0/0x2660
[  550.428861][T13285]  ? find_held_lock+0x2b/0x80
[  550.428893][T13285]  ? __pfx_ppp_ioctl+0x10/0x10
[  550.428947][T13285]  ? __fget_files+0x20e/0x3c0
[  550.428984][T13285]  ? __pfx_ppp_ioctl+0x10/0x10
[  550.429039][T13285]  __x64_sys_ioctl+0x190/0x200
[  550.429092][T13285]  do_syscall_64+0xcd/0x230
[  550.429149][T13285]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  550.429183][T13285] RIP: 0033:0x7f3eae78e969
[  550.429210][T13285] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  550.429244][T13285] RSP: 002b:00007f3eaf5dd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  550.429276][T13285] RAX: ffffffffffffffda RBX: 00007f3eae9b5fa0 RCX: 00007f3eae78e969
[  550.429297][T13285] RDX: 0000000000000000 RSI: 00000000c004743e RDI: 0000000000000005
[  550.429317][T13285] RBP: 00007f3eae810ab1 R08: 0000000000000000 R09: 0000000000000000
[  550.429337][T13285] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  550.429357][T13285] R13: 0000000000000000 R14: 00007f3eae9b5fa0 R15: 00007ffeb620b588
[  550.429401][T13285]  </TASK>
[  552.406855][T13332] netlink: zone id is out of range
[  553.028164][T13335] Invalid ELF header magic: != ELF
[  553.200113][T13351] block2mtd: illegal erase size
[  553.209026][T13351] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1515'.
[  553.223988][T13351] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  554.178230][T13357] can: request_module (can-proto-3) failed.
[  554.601291][T13388] netlink: 30 bytes leftover after parsing attributes in process `syz.4.1524'.
[  554.723872][T13386] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !PjE�r��҄y�*�"�l-���y–��
[  554.931194][T13398] netlink: 338 bytes leftover after parsing attributes in process `syz.4.1526'.
[  555.302480][T13398] macsec0: entered promiscuous mode
[  555.329762][T13398] macsec0: entered allmulticast mode
[  555.347147][T13393] could not allocate digest TFM handle 
[  555.355484][T13398] veth1_macvtap: entered allmulticast mode
[  555.835026][T13421] netlink: zone id is out of range
[  557.000291][T13455] ptrace attach of "./syz-executor exec"[5837] was attempted by "./syz-executor exec"[13455]
[  557.149653][T13457] netlink: 334 bytes leftover after parsing attributes in process `syz.1.1538'.
[  557.190130][T13462] netlink: 334 bytes leftover after parsing attributes in process `syz.1.1538'.
[  558.622111][T13478] netlink: zone id is out of range
[  559.718864][T12506] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm kworker/u8:37: bg 2: bad block bitmap checksum
[  559.751962][T12506] EXT4-fs (sda1): Delayed block allocation failed for inode 2027 at logical offset 901 with max blocks 22 with error 74
[  559.797619][T12506] EXT4-fs (sda1): This should not happen!! Data will be lost
[  559.797619][T12506] 
[  562.254953][T13525] ==================================================================
[  562.254979][T13525] BUG: KASAN: vmalloc-out-of-bounds in sys_fillrect+0x15d4/0x17b0
[  562.255026][T13525] Write of size 8 at addr ffffc90003849000 by task syz.1.1552/13525
[  562.255056][T13525] 
[  562.255075][T13525] CPU: 1 UID: 0 PID: 13525 Comm: syz.1.1552 Tainted: G     U              6.15.0-rc7-syzkaller #0 PREEMPT(full) 
[  562.255123][T13525] Tainted: [U]=USER
[  562.255134][T13525] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  562.255153][T13525] Call Trace:
[  562.255164][T13525]  <TASK>
[  562.255176][T13525]  dump_stack_lvl+0x116/0x1f0
[  562.255228][T13525]  print_report+0xc3/0x670
[  562.255269][T13525]  ? __virt_addr_valid+0x5e/0x590
[  562.255316][T13525]  ? sys_fillrect+0x15d4/0x17b0
[  562.255343][T13525]  kasan_report+0xe0/0x110
[  562.255378][T13525]  ? sys_fillrect+0x15d4/0x17b0
[  562.255411][T13525]  sys_fillrect+0x15d4/0x17b0
[  562.255445][T13525]  ? __pfx_sys_fillrect+0x10/0x10
[  562.255478][T13525]  drm_fbdev_shmem_defio_fillrect+0x22/0x140
[  562.255523][T13525]  bit_clear+0x17a/0x220
[  562.255559][T13525]  ? __pfx_bit_clear+0x10/0x10
[  562.255597][T13525]  ? __pfx___might_resched+0x10/0x10
[  562.255632][T13525]  ? fb_get_color_depth+0x120/0x250
[  562.255665][T13525]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  562.255704][T13525]  ? __pfx_bit_clear+0x10/0x10
[  562.255743][T13525]  __fbcon_clear+0x600/0x780
[  562.255784][T13525]  fbcon_scroll+0x48b/0x690
[  562.255833][T13525]  con_scroll+0x45c/0x690
[  562.255869][T13525]  do_con_write+0x6869/0x7c90
[  562.255916][T13525]  ? __pfx_do_con_write+0x10/0x10
[  562.255962][T13525]  con_write+0x23/0xb0
[  562.255997][T13525]  n_tty_write+0x40f/0x1160
[  562.256045][T13525]  ? __pfx_n_tty_write+0x10/0x10
[  562.256089][T13525]  ? rcu_is_watching+0x12/0xc0
[  562.256119][T13525]  ? __pfx_woken_wake_function+0x10/0x10
[  562.256148][T13525]  ? kfree+0x252/0x4d0
[  562.256172][T13525]  ? file_tty_write.constprop.0+0x6ed/0x9b0
[  562.256212][T13525]  ? __pfx_n_tty_write+0x10/0x10
[  562.256255][T13525]  file_tty_write.constprop.0+0x502/0x9b0
[  562.256296][T13525]  redirected_tty_write+0xd4/0x150
[  562.256335][T13525]  vfs_write+0x5ba/0x1180
[  562.256366][T13525]  ? __pfx_redirected_tty_write+0x10/0x10
[  562.256407][T13525]  ? __pfx_vfs_write+0x10/0x10
[  562.256438][T13525]  ? find_held_lock+0x2b/0x80
[  562.256490][T13525]  ksys_write+0x12a/0x240
[  562.256516][T13525]  ? __pfx_ksys_write+0x10/0x10
[  562.256541][T13525]  ? rcu_is_watching+0x12/0xc0
[  562.256576][T13525]  do_syscall_64+0xcd/0x230
[  562.256627][T13525]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  562.256662][T13525] RIP: 0033:0x7f457158e969
[  562.256686][T13525] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  562.256722][T13525] RSP: 002b:00007f457244f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  562.256755][T13525] RAX: ffffffffffffffda RBX: 00007f45717b5fa0 RCX: 00007f457158e969
[  562.256778][T13525] RDX: 0000000000000013 RSI: 0000200000000000 RDI: 0000000000000005
[  562.256799][T13525] RBP: 00007f4571610ab1 R08: 0000000000000000 R09: 0000000000000000
[  562.256875][T13525] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  562.256896][T13525] R13: 0000000000000000 R14: 00007f45717b5fa0 R15: 00007ffddb9e8a38
[  562.256930][T13525]  </TASK>
[  562.256942][T13525] 
[  562.256957][T13525] The buggy address ffffc90003849000 belongs to a vmalloc virtual mapping
[  562.256976][T13525] Memory state around the buggy address:
[  562.256993][T13525]  ffffc90003848f00: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  562.257017][T13525]  ffffc90003848f80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  562.257042][T13525] >ffffc90003849000: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  562.257060][T13525]                    ^
[  562.257078][T13525]  ffffc90003849080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  562.257102][T13525]  ffffc90003849100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  562.257121][T13525] ==================================================================
[  562.269170][T13525] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  562.269205][T13525] CPU: 1 UID: 0 PID: 13525 Comm: syz.1.1552 Tainted: G     U              6.15.0-rc7-syzkaller #0 PREEMPT(full) 
[  562.269255][T13525] Tainted: [U]=USER
[  562.269268][T13525] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  562.269288][T13525] Call Trace:
[  562.269299][T13525]  <TASK>
[  562.269312][T13525]  dump_stack_lvl+0x3d/0x1f0
[  562.269368][T13525]  panic+0x71c/0x800
[  562.269417][T13525]  ? __pfx_panic+0x10/0x10
[  562.269464][T13525]  ? mark_held_locks+0x49/0x80
[  562.269510][T13525]  ? preempt_schedule_thunk+0x16/0x30
[  562.269570][T13525]  ? sys_fillrect+0x15d4/0x17b0
[  562.269602][T13525]  ? preempt_schedule_common+0x44/0xc0
[  562.269656][T13525]  ? sys_fillrect+0x15d4/0x17b0
[  562.269689][T13525]  check_panic_on_warn+0xab/0xb0
[  562.269739][T13525]  end_report+0x107/0x170
[  562.269780][T13525]  kasan_report+0xee/0x110
[  562.269832][T13525]  ? sys_fillrect+0x15d4/0x17b0
[  562.269871][T13525]  sys_fillrect+0x15d4/0x17b0
[  562.269909][T13525]  ? __pfx_sys_fillrect+0x10/0x10
[  562.269950][T13525]  drm_fbdev_shmem_defio_fillrect+0x22/0x140
[  562.270004][T13525]  bit_clear+0x17a/0x220
[  562.270048][T13525]  ? __pfx_bit_clear+0x10/0x10
[  562.270094][T13525]  ? __pfx___might_resched+0x10/0x10
[  562.270131][T13525]  ? fb_get_color_depth+0x120/0x250
[  562.270174][T13525]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  562.270224][T13525]  ? __pfx_bit_clear+0x10/0x10
[  562.270268][T13525]  __fbcon_clear+0x600/0x780
[  562.270314][T13525]  fbcon_scroll+0x48b/0x690
[  562.270357][T13525]  con_scroll+0x45c/0x690
[  562.270402][T13525]  do_con_write+0x6869/0x7c90
[  562.270460][T13525]  ? __pfx_do_con_write+0x10/0x10
[  562.270512][T13525]  con_write+0x23/0xb0
[  562.270554][T13525]  n_tty_write+0x40f/0x1160
[  562.270613][T13525]  ? __pfx_n_tty_write+0x10/0x10
[  562.270662][T13525]  ? rcu_is_watching+0x12/0xc0
[  562.270696][T13525]  ? __pfx_woken_wake_function+0x10/0x10
[  562.270729][T13525]  ? kfree+0x252/0x4d0
[  562.270756][T13525]  ? file_tty_write.constprop.0+0x6ed/0x9b0
[  562.270802][T13525]  ? __pfx_n_tty_write+0x10/0x10
[  562.270862][T13525]  file_tty_write.constprop.0+0x502/0x9b0
[  562.270912][T13525]  redirected_tty_write+0xd4/0x150
[  562.270955][T13525]  vfs_write+0x5ba/0x1180
[  562.270989][T13525]  ? __pfx_redirected_tty_write+0x10/0x10
[  562.271035][T13525]  ? __pfx_vfs_write+0x10/0x10
[  562.271066][T13525]  ? find_held_lock+0x2b/0x80
[  562.271112][T13525]  ksys_write+0x12a/0x240
[  562.271144][T13525]  ? __pfx_ksys_write+0x10/0x10
[  562.271177][T13525]  ? rcu_is_watching+0x12/0xc0
[  562.271214][T13525]  do_syscall_64+0xcd/0x230
[  562.271267][T13525]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  562.271301][T13525] RIP: 0033:0x7f457158e969
[  562.271328][T13525] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  562.271362][T13525] RSP: 002b:00007f457244f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  562.271395][T13525] RAX: ffffffffffffffda RBX: 00007f45717b5fa0 RCX: 00007f457158e969
[  562.271418][T13525] RDX: 0000000000000013 RSI: 0000200000000000 RDI: 0000000000000005
[  562.271439][T13525] RBP: 00007f4571610ab1 R08: 0000000000000000 R09: 0000000000000000
[  562.271461][T13525] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  562.271482][T13525] R13: 0000000000000000 R14: 00007f45717b5fa0 R15: 00007ffddb9e8a38
[  562.271516][T13525]  </TASK>
[  562.271676][T13525] Kernel Offset: disabled